Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 04.04.2024 Ejecutado por jigonzalezaller (administrador) sobre PT-005 (LENOVO 20XYCTO1WW) (04-04-2024 16:46:07) Ejecutado desde C:\Users\jigonzalezaller\Desktop\FRST64.exe Perfiles cargados: jigonzalezaller Plataforma: Microsoft Windows 11 Pro Versión 23H2 22631.3374 (X64) Idioma: Inglés (Estados Unidos) -> Español (España, internacional) Navegador predeterminado: Edge Modo de Inicio: Normal ==================== Procesos (Lista blanca) ================= (Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2> (C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\1.3.863.1\DropboxCrashHandler.exe (C:\Program Files (x86)\Jabra\Direct6\jabra-direct.exe ->) (GN Audio A/S -> GN Audio A/S) C:\Program Files (x86)\Jabra\Direct6\SoftphoneIntegrations.exe (C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\LenovoVantage-(GenericMessagingAddin).exe (C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\LenovoVantage-(LenovoServiceBridgeAddin).exe (C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\LenovoVantage-(VantageCoreAddin).exe (C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ai.exe (C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe ->) (Adobe Inc. -> Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat DC\Acrobat\acrotray.exe (C:\Program Files\Fortinet\FortiClient\scheduler.exe ->) (Fortinet Technologies (Canada) ULC -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FCDBLog.exe (C:\Program Files\Fortinet\FortiClient\scheduler.exe ->) (Fortinet Technologies (Canada) ULC -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiSettings.exe (C:\Program Files\Fortinet\FortiClient\scheduler.exe ->) (Fortinet Technologies (Canada) ULC -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiSSLVPNdaemon.exe (C:\Program Files\Fortinet\FortiClient\scheduler.exe ->) (Fortinet Technologies (Canada) ULC -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiTray.exe (C:\Program Files\WindowsApps\MSTeams_24033.813.2773.520_x64__8wekyb3d8bbwe\ms-teams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\123.0.2420.65\msedgewebview2.exe <16> (DriverStore\FileRepository\cui_dch.inf_amd64_19704598c1c9840a\igfxCUIServiceN.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_19704598c1c9840a\igfxEMN.exe (DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_ce09737aeee31fb0\DAX3API.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\DAX3_S~3.INF\DAX3API.exe (DriverStore\FileRepository\dptf_cpu.inf_amd64_897ea327b3fe52f7\esif_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_897ea327b3fe52f7\dptf_helper.exe (DriverStore\FileRepository\fn.inf_amd64_341d0836121cf573\driver\tphkload.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\FNF910~1.INF\driver\shtctky.exe (DriverStore\FileRepository\fn.inf_amd64_341d0836121cf573\driver\tphkload.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\FNF910~1.INF\driver\tposd.exe (DriverStore\FileRepository\lnvsst.inf_amd64_cefff9257b7dd5b1\SmartSense.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lnvsst.inf_amd64_cefff9257b7dd5b1\UserSSCtrl.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <7> (EPDService.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\EPDCtrl.exe (explorer.exe ->) (GN Audio A/S -> GN Audio A/S) C:\Program Files (x86)\Jabra\Direct6\jabra-direct.exe <4> (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <15> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\24.050.0310.0001\Microsoft.SharePoint.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe <2> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <21> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MSTeams_24033.813.2773.520_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe (SearchIndexer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_ce09737aeee31fb0\DAX3API.exe (services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\fusion_swc_aposvc.inf_amd64_7170de9ee75e0a70\FusionAPI.exe (services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (services.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\EPDService.exe (services.exe ->) (Fortinet Technologies (Canada) ULC -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\scheduler.exe (services.exe ->) (Intel Corporation -> ) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_3de31b09a0024837\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_19704598c1c9840a\igfxCUIServiceN.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_897ea327b3fe52f7\esif_uf.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_9e319854146417f3\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_ab7d4ea1d12c01d4\WMIRegistrationService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\TbtP2pShortcutService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_29fd1afabcf5470c\AS\IAS\IntelAudioService.exe (services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe (services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\System32\drivers\Lenovo\udc\Service\UDClientService.exe (services.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\LenovoVantageService.exe (services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\fn.inf_amd64_341d0836121cf573\driver\tphkload.exe (services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_7b52940a5893ba07\x64\ibmpmsvc.exe (services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lnvsst.inf_amd64_cefff9257b7dd5b1\SmartSense.exe (services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lnvvsndmft.inf_amd64_a1a974b0994de01d\LenovoVisionService.exe (services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\smartstandbycomponent.inf_amd64_1a7a38fb4d407c19\SmartStandby.exe (services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\SSMonitor.exe (services.exe ->) (Lenovo -> Lenovo.) C:\Windows\System32\DriverStore\FileRepository\litsdrv.inf_amd64_328e373c8f88e5d8\LITSSvc.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Microsoft Update Health Tools\uhssvc.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\NisSrv.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_cd9395798dc1b01f\RtkAudUService64.exe <3> (services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated.) C:\Windows\System32\DriverStore\FileRepository\synawudfbiousbuwp.inf_amd64_b4553f061288fdeb\SynRpcServer.exe (services.exe ->) (Wacom Co., Ltd. -> Wacom Technology, Corp.) C:\Windows\System32\DriverStore\FileRepository\wtabletserviceisd.inf_amd64_ea6d34af6531ab7c\WTabletServiceISD.exe <2> (svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2412.4.0_x64__cv1g1gvanyjgm\WhatsApp.exe (svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (svchost.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_19704598c1c9840a\igfxextN.exe (svchost.exe ->) (Lenovo -> Lenovo) C:\Windows\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\24.050.0310.0001\FileCoAuth.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.450.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <5> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Windows.Media.BackgroundPlayback.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe <2> (svchost.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe <3> ==================== Registro (Lista blanca) =================== (Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [Acrobat Assistant 8.0] => C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrotray.exe [7604128 2024-03-31] (Adobe Inc. -> Adobe Systems Inc.) HKLM\...\Run: [] => [X] HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11551624 2024-04-02] (Dropbox, Inc -> Dropbox, Inc.) HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> ) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [707256 2021-12-15] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [M17A] => C:\WINDOWS\twain_32\Brimm17a\Common\TwDsUiLaunch.exe [85912 2021-09-15] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139264 2017-04-05] (Brother Industries, Ltd.) [Archivo no firmado] HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3146752 2022-02-07] (Brother Industries, Ltd.) [Archivo no firmado] HKLM-x32\...\Run: [BrotherSoftwareUpdateNotification] => C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe [3588608 2021-04-02] (Brother Industries, Ltd.) [Archivo no firmado] HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATENCIÓN HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %LocalAppData%\Temp\Rar*\*.com <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %LocalAppData%\Temp\*.zip\*.com <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %AppData%\*\*.com <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %LocalAppData%\*.exe <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %Temp%\*\*.scr <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %Temp%\*.scr <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %ProgramData%\*.com <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %LocalAppData%\*\*.exe <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %LocalAppData%\*.scr <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %LocalAppData%\*\*.com <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %LocalAppData%\Temp\7z*\*.exe <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %LocalAppData%\Temp\wz*\*.exe <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %ProgramData%\*.scr <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %ProgramData%\*\*.exe <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %AppData%\*\*.exe <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %ProgramData%\*\*.scr <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %ProgramData%\*\*.com <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %Temp%\*.com <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %Temp%\*.exe <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %AppData%\*.exe <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %LocalAppData%\*\*.scr <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %LocalAppData%\Temp\wz*\*.com <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %LocalAppData%\Temp\7z*\*.scr <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %Temp%\*\*.com <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %AppData%\*\*.scr <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %LocalAppData%\*.com <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %ProgramData%\*.exe <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %LocalAppData%\Temp\Rar*\*.scr <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %LocalAppData%\Temp\7z*\*.com <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %AppData%\*.scr <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %Temp%\*\*.exe <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %LocalAppData%\Temp\Rar*\*.exe <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %LocalAppData%\Temp\*.zip\*.scr <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %LocalAppData%\Temp\wz*\*.scr <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %AppData%\*.com <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %LocalAppData%\Temp\*.zip\*.exe <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATENCIÓN HKU\S-1-5-21-1935655697-838170752-839522115-1230 Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATENCIÓN HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restricción <==== ATENCIÓN HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center: Restricción <==== ATENCIÓN HKLM\SOFTWARE\Policies\Microsoft\WindowsFirewall: Restricción <==== ATENCIÓN HKLM\Software\Policies\...\system: [GroupPolicyRefreshTime] 3 HKLM\Software\Policies\...\system: [GroupPolicyRefreshTimeOffset] 10 HKLM\Software\Policies\...\system: [GpNetworkStartTimeoutPolicyValue] 30 HKLM\Software\Policies\...\system: [AllowDomainPINLogon] 1 HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306504 2024-04-01] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306504 2024-04-01] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1935655697-838170752-839522115-1230\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306504 2024-04-01] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1935655697-838170752-839522115-1230\...\Run: [MicrosoftEdgeAutoLaunch_095C3A883C24F61F9DA8A7E361E44496] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4063800 2024-03-27] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1935655697-838170752-839522115-1230\...\Run: [com.squirrel.slack.slack] => C:\ProgramData\jigonzalezaller\slack\slack.exe [309040 2022-10-24] (Slack Technologies, Inc. -> Slack Technologies Inc.) HKU\S-1-5-21-1935655697-838170752-839522115-1230\...\Run: [com.squirrel.Teams.Teams] => C:\ProgramData\jigonzalezaller\Microsoft\Teams\Update.exe [2591920 2024-02-15] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-1935655697-838170752-839522115-1230\...\Run: [Microsoft.Lists] => C:\Program Files\Microsoft OneDrive\24.050.0310.0001\Microsoft.SharePoint.exe [547856 2024-04-01] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1935655697-838170752-839522115-1230\...\Run: [Jabra Direct] => C:\Program Files (x86)\Jabra\Direct6\jabra-direct.exe [136268544 2024-01-18] (GN Audio A/S -> GN Audio A/S) HKU\S-1-5-21-1935655697-838170752-839522115-1230\...\Policies\Explorer: [NoStartMenuMyGames] 1 HKU\S-1-5-21-694449305-3802656285-542762977-500\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306504 2024-04-01] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-694449305-3802656285-542762977-500\...\Run: [MicrosoftEdgeAutoLaunch_8C9072580A6DB8C374DBD5ECD064243E] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4063800 2024-03-27] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-694449305-3802656285-542762977-500\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45285792 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) HKLM\...\Windows x64\Print Processors\XeroxV5Print: C:\Windows\System32\spool\prtprocs\x64\x5print.dll [90112 2019-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Xerox Corporation) HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [203936 2024-01-13] (Adobe Inc. -> Adobe Systems Inc) HKLM\...\Print\Monitors\Xerox Virtualization Port: C:\WINDOWS\system32\x5lrsl.dll [129024 2019-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Xerox Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\123.0.6312.88\Installer\chrmstp.exe [2024-04-03] (Google LLC -> Google LLC) Startup: C:\Users\jigonzalezaller\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DeepL auto-start.lnk [2022-06-30] ShortcutTarget: DeepL auto-start.lnk -> C:\Users\jigonzalezaller\AppData\Roaming\0install.net\desktop-integration\stubs\1eae01f3cdb5ff0ecf683b15a60a1489573c1188cb34abc205fcf7a924b4e54d\auto-start.exe () [Archivo no firmado] Startup: C:\Users\jigonzalezaller\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Enviar a OneNote.lnk [2024-03-26] ShortcutTarget: Enviar a OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TSPrintUser.lnk [2022-03-07] ShortcutTarget: TSPrintUser.lnk -> C:\Program Files (x86)\TerminalWorks\TSPrint\TSPrintUser.exe (TerminalWorks LTD.) [Archivo no firmado] Policies: C:\ProgramData\NTUSER.pol: Restricción <==== ATENCIÓN HKLM\SOFTWARE\Policies\Microsoft\Edge: Restricción <==== ATENCIÓN ==================== Tareas programadas (Lista blanca) ================= (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) Task: {D80256F1-FD5E-4127-97D9-F239FD2D3D51} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.) Task: {500109C8-3FB0-41C8-A62F-1F53138C166C} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {B5711B3D-F181-4465-926C-D2EE3F64E1D3} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "1c357a8e-03ae-421a-842c-9ad6ae9c9593" --version "6.22.10977" --silent Task: {ED709BAF-077D-4DDE-9277-F8FE9E7FFA57} - System32\Tasks\CCleanerSkipUAC - Administrador => C:\Program Files\CCleaner\CCleaner.exe [39024544 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {8F0C7DF2-A0D8-4D63-B88B-2697CC821D1B} - System32\Tasks\CCleanerSkipUAC - jigonzalezaller => C:\Program Files\CCleaner\CCleaner.exe [39024544 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {379E4A9D-4065-413C-A8BF-B29BEA7C1099} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5381288 2024-04-02] (Microsoft Windows -> Microsoft Corporation) Task: {564E6468-78D6-46BE-A48D-110CB3C0804B} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-03-01] (Dropbox, Inc -> Dropbox, Inc.) Task: {B41EB1D7-60B9-4F22-9BA6-7D53D13E3151} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-03-01] (Dropbox, Inc -> Dropbox, Inc.) Task: {B8C147E0-3C8A-451F-A863-1EF4EA3D3366} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem125.0.6386.0{C0F995B7-D08C-4C54-BBFB-1D40E01F8FD9} => C:\Program Files (x86)\Google\GoogleUpdater\125.0.6386.0\updater.exe [4774176 2024-03-29] (Google LLC -> Google LLC) Task: {CD9F85D0-1514-4557-90A8-BB75D7CE18C3} - System32\Tasks\Lenovo\AICC\LAICCUserAgent => C:\Windows\System32\DriverStore\FileRepository\lenovoaiccdisplay_cmp.inf_amd64_ab1d7000bacd781a\amd64\LenovoAICCUserAgent.exe [193920 2023-09-07] (Lenovo -> Lenovo Group Limited) Task: {95DC40C4-7CF5-4E39-8204-4A902E697A9A} - System32\Tasks\Lenovo\AICC\ReApplyHandler => C:\Windows\System32\DriverStore\FileRepository\lenovoaiccdisplay_cmp.inf_amd64_ab1d7000bacd781a\amd64\LenovoAICCReApplyHandler.exe [70528 2023-09-07] (Lenovo -> ) Task: {7864FC77-55BC-4311-9C23-31A95200E8F5} - System32\Tasks\Lenovo\AICC\UninstallTask => C:\Program Files\Lenovo\AICC\LenovoAICCUninstaller.exe [180608 2023-09-07] (Lenovo -> Lenovo Group Limited) Task: {A430B658-1167-45AD-9E17-ED7C048F0141} - System32\Tasks\Lenovo\BthMtpck.ni => C:\Windows\SysWOW64\rundll32.exe [41984 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> C:\Program Files (x86)\PolicyExtensions\BoykTrack\"C:\Program Files (x86)\PolicyExtensions\BoykTrack\KswXdowsOSmbus.dll" EicrxsgfrdTyehourcev <==== ATENCIÓN Task: {35700E2B-BAF3-437B-9E8E-3CBA3B09FF9A} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [74952 2022-11-20] (Lenovo -> Lenovo Group Ltd.) Task: {32E543E5-0062-4E7D-810C-041FD94521BA} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> START ImControllerService Task: {814BD878-FB4B-44FC-BC5A-3A85210FFF0D} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => C:\WINDOWS\System32\reg.exe [102400 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32 Task: {582456A8-9CFC-43EE-A384-D280299385DF} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\63cea539-c162-49f3-9882-62c412eb23cc => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.) Task: {B90E90A7-43D6-451C-BF4B-7C6597B4E374} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\65147c71-e238-4ac4-ba58-c6856e4e7572 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.) Task: {C4303658-A0B3-476A-955C-B4A79AC63EA7} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\ad18ad35-486e-4b49-989d-21de043958b6 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.) Task: {E4AA7F66-B9D1-44E7-A742-D1BE041633A8} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\fe36a47f-5fae-43fd-bc16-299116e9094b => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.) Task: {C057C3F8-C134-4F0A-A4FA-7A6BDEA0B22D} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe [128872 2023-12-20] (Lenovo -> Lenovo) Task: {9DC4CBFC-C3E1-497B-B8D9-8CB8D9CFE2F2} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\PowerMgrInst.exe [66920 2023-12-20] (Lenovo -> ) Task: {09D9F8D1-7F70-40D6-8C7B-19776EB072A8} - System32\Tasks\Lenovo\SmartStandby\Daily analysis => C:\Windows\System32\DriverStore\FileRepository\smartstandbycomponent.inf_amd64_1a7a38fb4d407c19\AutonomicMgr.exe [74232 2023-02-03] (Lenovo -> ) Task: {595FEC8C-F432-46EA-94B0-8B4C26BF6573} - System32\Tasks\Lenovo\SmartStandby\Uninstall Monitor => C:\WINDOWS\system32\SmartStandbyInst.exe [43512 2023-02-03] (Lenovo -> ) Task: {DBB6FB63-5B86-4271-99AF-918C81C7A41B} - System32\Tasks\Lenovo\UDC\Lenovo UDC Diagnostic Scan => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> control udcservice 210 Task: {25A3E342-E697-4557-AAB0-E1ED575533BB} - System32\Tasks\Lenovo\UDC\Lenovo UDC Idle Monitor => C:\windows\system32\drivers\Lenovo\udc\Service\UDCUserAgent.exe [90600 2023-11-02] (Lenovo -> Lenovo Group Ltd.) -> C:\windows\system32\drivers\Lenovo\udc\Service\/onidle Task: {5B6B062E-872E-45C8-923E-6927035A5724} - System32\Tasks\Lenovo\UDC\Lenovo UDC Monitor => C:\WINDOWS\system32\drivers\lenovo\udc\data\InfBackup\UdcInfInstaller.exe [185312 2023-11-02] (Lenovo -> Lenovo Group Ltd.) Task: {093561DD-2E96-4913-8881-3B098A2400F7} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService Task: {AE2AF7B8-8319-45EA-88EF-16772B13CFCB} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\ScheduleEventAction.exe [30176 2023-12-15] (Lenovo -> Lenovo) Task: {5F426A6D-F2FF-4182-BD51-C0516E709F8C} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\ScheduleEventAction.exe [30176 2023-12-15] (Lenovo -> Lenovo) Task: {00A9ADF0-E8E4-414E-901D-00F850493417} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\ScheduleEventAction.exe [30176 2023-12-15] (Lenovo -> Lenovo) Task: {60CDB5D4-4B5E-431E-BCAA-CD5ACAFD15AD} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\ScheduleEventAction.exe [30176 2023-12-15] (Lenovo -> Lenovo) Task: {B8DEC268-70F5-4CED-A5D2-26F33F3DBC20} - System32\Tasks\Lenovo\Vantage\StartupFixPlan => C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\uninstall.exe [311776 2023-12-15] (Lenovo -> Lenovo) Task: {3EC677D6-3241-4CE7-A930-D4BE5B317B24} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28491744 2024-03-07] (Microsoft Corporation -> Microsoft Corporation) Task: {5599F8CC-4E91-4D78-BA98-D7A01CD7EA9C} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28491744 2024-03-07] (Microsoft Corporation -> Microsoft Corporation) Task: {0C76E26A-E1FD-47FB-A7AE-30F10DF1A7DD} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [220608 2024-03-19] (Microsoft Corporation -> Microsoft Corporation) Task: {93B65FDE-CAE0-48BB-9EB3-55C9FE899FC9} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [220608 2024-03-19] (Microsoft Corporation -> Microsoft Corporation) Task: {412DB025-483D-4738-BA92-4459A026E96E} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4446400 2024-02-28] (Microsoft Corporation -> Microsoft Corporation) Task: {5B43A86D-574A-48B9-9C3C-6BD445D82407} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\48921D1F-2784-4CBA-A39C-CF6AB5138C5E\PushLaunch => C:\WINDOWS\system32\deviceenroller.exe [520192 2024-04-02] (Microsoft Windows -> Microsoft Corporation) Task: {A82CBE2E-05AB-47DE-BF7C-B23B84BDDBBD} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\48921D1F-2784-4CBA-A39C-CF6AB5138C5E\PushUpgrade => C:\WINDOWS\system32\deviceenroller.exe [520192 2024-04-02] (Microsoft Windows -> Microsoft Corporation) Task: {22A4A798-410D-41E4-A9B1-DA1DCDA2057A} - System32\Tasks\Microsoft\Windows\GroupPolicy\{3E0A038B-D834-4930-9981-E89C9BFF83AA} => C:\WINDOWS\system32\gpupdate.exe [53248 2024-03-19] (Microsoft Windows -> Microsoft Corporation) Task: {AD5C82D2-85F1-4B94-BD44-964AB7947214} - System32\Tasks\Microsoft\Windows\GroupPolicy\{A7719E0F-10DB-4640-AD8C-490CC6AD5202} => C:\WINDOWS\system32\gpupdate.exe [53248 2024-03-19] (Microsoft Windows -> Microsoft Corporation) Task: {BCC9F19D-01EB-4582-8F0A-D9D51299D43F} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_LogonUpdateResults => %systemroot%\system32\MusNotification.exe LogonUpdateResults (Ningún archivo) Task: {C176C3FA-CB97-4A30-94D6-B70B5DC8B5D8} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe ReadyToReboot /RunOnAC (Ningún archivo) Task: {3A87CED0-F7EC-4688-BBE6-81285ECA0CB3} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe ReadyToReboot /RunOnBattery (Ningún archivo) Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Ningún archivo) Task: {67339F45-BB25-49F0-AB72-7B6534AB0B29} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\MpCmdRun.exe [1650024 2024-03-13] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {79B0BDAD-9FF9-4EE6-8D1B-D4630555B596} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\MpCmdRun.exe [1650024 2024-03-13] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {C87D262A-1D05-4D26-9A3F-1ADD9D58632A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\MpCmdRun.exe [1650024 2024-03-13] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {C82B3765-E640-4446-8CC9-D50607AFCCB6} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671136 2024-04-03] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (la entrada de datos tiene 6 más caracteres). Task: {711F0068-1BB2-4420-80BF-418FE1CA8E7E} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34720 2024-04-03] (Mozilla Corporation -> Mozilla Foundation) Task: {625E263E-9502-4F7D-A469-665E5A6AF6A9} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4206096 2024-04-01] (Microsoft Corporation -> Microsoft Corporation) Task: {36E9FF5C-B5B8-4E7F-A347-00342FF12080} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1935655697-838170752-839522115-1230 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4206096 2024-04-01] (Microsoft Corporation -> Microsoft Corporation) Task: {D6AFABB3-1F2F-4A99-AF28-8E8E09F9AE95} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1935655697-838170752-839522115-4249 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4206096 2024-04-01] (Microsoft Corporation -> Microsoft Corporation) Task: {C64E0A6F-995A-4FC8-8609-4788AC41A3D6} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1935655697-838170752-839522115-500 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4206096 2024-04-01] (Microsoft Corporation -> Microsoft Corporation) Task: {265DBF87-A163-4DAA-9C00-E21F94694232} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-694449305-3802656285-542762977-1001 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (Ningún archivo) Task: {E69C71DC-5606-4098-B4B0-FBBF4E7504E6} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-694449305-3802656285-542762977-500 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4206096 2024-04-01] (Microsoft Corporation -> Microsoft Corporation) Task: {6D2C73AC-D481-4E9F-A486-1F0F6FB9EC0D} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_cd9395798dc1b01f\RtkAudUService64.exe [1991568 2023-11-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor) (Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (Lista blanca) ==================== (Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.) Hosts: Hay más de una entrada en Hosts. Consulte la sección Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 10.10.0.11 10.10.0.13 Tcpip\..\Interfaces\{975b7101-555e-4df9-bdd6-26948bd4cdd6}: [DhcpNameServer] 10.10.0.11 10.10.0.13 Tcpip\..\Interfaces\{975b7101-555e-4df9-bdd6-26948bd4cdd6}: [DhcpDomain] codespa.org Tcpip\..\Interfaces\{c70ff519-35bb-4cac-8416-90c5bc2e1ce5}: [DhcpNameServer] 10.10.0.11 10.10.0.13 Tcpip\..\Interfaces\{c70ff519-35bb-4cac-8416-90c5bc2e1ce5}: [DhcpDomain] codespa.org Tcpip\..\Interfaces\{c70ff519-35bb-4cac-8416-90c5bc2e1ce5}\146274: [DhcpNameServer] 8.8.8.8 Tcpip\..\Interfaces\{c70ff519-35bb-4cac-8416-90c5bc2e1ce5}\3414D405C45535D2245425E494E494: [DhcpNameServer] 10.29.0.254 Tcpip\..\Interfaces\{c70ff519-35bb-4cac-8416-90c5bc2e1ce5}\3414D405C45535D2245425E494E494: [DhcpDomain] bernini.pf.cubelibre.it Tcpip\..\Interfaces\{c70ff519-35bb-4cac-8416-90c5bc2e1ce5}\3424341303: [DhcpNameServer] 192.168.1.211 Tcpip\..\Interfaces\{c70ff519-35bb-4cac-8416-90c5bc2e1ce5}\353594445485: [DhcpNameServer] 8.8.8.8 1.1.1.1 Tcpip\..\Interfaces\{c70ff519-35bb-4cac-8416-90c5bc2e1ce5}\65940535D234C69656E6475637: [DhcpNameServer] 8.8.8.8 8.8.4.4 Tcpip\..\Interfaces\{c70ff519-35bb-4cac-8416-90c5bc2e1ce5}\8496C647F6E60284F6E6F62737: [DhcpNameServer] 192.168.20.1 Tcpip\..\Interfaces\{c70ff519-35bb-4cac-8416-90c5bc2e1ce5}\94E46594451444F435: [DhcpNameServer] 1.1.1.1 8.8.8.8 Tcpip\..\Interfaces\{c70ff519-35bb-4cac-8416-90c5bc2e1ce5}\D416272796F6474724F6E667F697: [DhcpNameServer] 172.20.0.1 Tcpip\..\Interfaces\{c70ff519-35bb-4cac-8416-90c5bc2e1ce5}\D416272796F6474724F6E667F697F57457563747: [DhcpNameServer] 172.20.0.1 Tcpip\..\Interfaces\{c70ff519-35bb-4cac-8416-90c5bc2e1ce5}\D49475946494F50563A626: [DhcpNameServer] 212.230.135.1 212.230.135.2 Tcpip\..\Interfaces\{c70ff519-35bb-4cac-8416-90c5bc2e1ce5}\D49475946494F50563A626: [DhcpDomain] Home Tcpip\..\Interfaces\{de6f41df-6a88-4857-88cd-4dddb744ab88}: [DhcpNameServer] 150.213.1.2 HKU\S-1-5-21-1935655697-838170752-839522115-1230\SOFTWARE\Policies\Microsoft\Internet Explorer: Restricción <==== ATENCIÓN Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\jigonzalezaller\AppData\Local\Microsoft\Edge\User Data\Default [2024-04-04] Edge Notifications: Default -> hxxps://chatsupport.apple.com; hxxps://crm.codespa.org; hxxps://meet.google.com; hxxps://totalrecaptcha.top; hxxps://www.checkmytrip.com; hxxps://www.iberia.com; hxxps://www.larazon.es; hxxps://www.qatarairways.com; hxxps://www.youtube.com Edge Extension: (NoMiner - Block Coin Miners) - C:\Users\jigonzalezaller\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bbidmaebbffkfehijoocpmgiiglbgaea [2023-04-10] Edge Extension: (Documentos de Google sin conexión) - C:\Users\jigonzalezaller\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-20] Edge Extension: (Edge relevant text changes) - C:\Users\jigonzalezaller\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24] FireFox: ======== FF DefaultProfile: mu2pwq3d.default FF ProfilePath: C:\Users\jigonzalezaller\AppData\Roaming\Mozilla\Firefox\Profiles\mu2pwq3d.default [2022-03-01] FF ProfilePath: C:\Users\jigonzalezaller\AppData\Roaming\Mozilla\Firefox\Profiles\yh3dm5oi.default-release [2024-04-04] FF user.js: detected! => C:\Users\jigonzalezaller\AppData\Roaming\Mozilla\Firefox\Profiles\yh3dm5oi.default-release\user.js [2023-03-30] FF Extension: (SaveFrom.net helper) - C:\Users\jigonzalezaller\AppData\Roaming\Mozilla\Firefox\Profiles\yh3dm5oi.default-release\Extensions\helper@savefrom.net.xpi [2023-12-11] FF Extension: (Turbo Download Manager (3rd edition)) - C:\Users\jigonzalezaller\AppData\Roaming\Mozilla\Firefox\Profiles\yh3dm5oi.default-release\Extensions\jid0-dsq67mf5kjjhiiju2dfb6kk8dfw@jetpack.xpi [2023-05-23] FF Extension: (Flash y descarga de video) - C:\Users\jigonzalezaller\AppData\Roaming\Mozilla\Firefox\Profiles\yh3dm5oi.default-release\Extensions\{adeadebb-fedc-4180-a7f4-cfdd87496551}.xpi [2023-05-23] FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Extension: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2021-02-01] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-03-31] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-01-23] (Adobe Systems Incorporated -> Adobe Systems) FF Plugin-x32: @java.com/DTPlugin,version=11.321.2 -> C:\Program Files (x86)\Java\jre1.8.0_321\bin\dtplugin\npDeployJava1.dll [2022-06-20] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.321.2 -> C:\Program Files (x86)\Java\jre1.8.0_321\bin\plugin2\npjp2.dll [2022-06-20] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-02-01] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-02-01] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-01-23] (Adobe Systems Incorporated -> Adobe Systems) Chrome: ======= CHR Profile: C:\Users\jigonzalezaller\AppData\Local\Google\Chrome\User Data\Default [2024-04-04] CHR Extension: (Adobe Acrobat: herramientas para convertir, editar y firmar PDFs) - C:\Users\jigonzalezaller\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-04-02] CHR Extension: (minerBlock) - C:\Users\jigonzalezaller\AppData\Local\Google\Chrome\User Data\Default\Extensions\emikbbbebcdfohonlaifafnoanocnebl [2022-10-26] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\jigonzalezaller\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-03-01] CHR HKU\S-1-5-21-694449305-3802656285-542762977-500\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] ==================== Servicios (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.) S3 BarcoClickShareAutorunService; C:\WINDOWS\System32\DriverStore\FileRepository\barcoclicksharedrv.inf_amd64_2911b58ce63436e2\BarcoClickShareSvc.exe [941448 2021-08-02] (Microsoft Windows Hardware Compatibility Publisher -> Barco NV) S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [321536 2022-01-26] (Brother Industries, Ltd.) [Archivo no firmado] S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1081248 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14097992 2024-03-07] (Microsoft Corporation -> Microsoft Corporation) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-03-01] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-03-01] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46824 2024-04-02] (Dropbox, Inc -> Dropbox, Inc.) R2 DolbyDAXAPI; C:\WINDOWS\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_ce09737aeee31fb0\DAX3API.exe [2299944 2022-08-17] (Dolby Laboratories, Inc. -> Dolby Laboratories) R2 DolbyFusionAPI; C:\WINDOWS\System32\DriverStore\FileRepository\fusion_swc_aposvc.inf_amd64_7170de9ee75e0a70\FusionAPI.exe [780856 2023-08-15] (Dolby Laboratories, Inc. -> Dolby Laboratories) R2 EPDService; C:\WINDOWS\System32\EPDService.exe [209032 2022-05-31] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) R2 FA_Scheduler; C:\Program Files\Fortinet\FortiClient\scheduler.exe [410776 2022-02-25] (Fortinet Technologies (Canada) ULC -> Fortinet Inc.) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.050.0310.0001\FileSyncHelper.exe [3511312 2024-04-01] (Microsoft Corporation -> Microsoft Corporation) S2 GoogleUpdaterInternalService125.0.6386.0; C:\Program Files (x86)\Google\GoogleUpdater\125.0.6386.0\updater.exe [4774176 2024-03-29] (Google LLC -> Google LLC) S2 GoogleUpdaterService125.0.6386.0; C:\Program Files (x86)\Google\GoogleUpdater\125.0.6386.0\updater.exe [4774176 2024-03-29] (Google LLC -> Google LLC) R2 IBMPMSVC; C:\WINDOWS\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_7b52940a5893ba07\x64\ibmpmsvc.exe [1031024 2023-06-20] (Lenovo -> Lenovo) R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.) R2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_29fd1afabcf5470c\AS\IAS\IntelAudioService.exe [540288 2024-01-24] (Intel Corporation -> Intel) S3 JabraFWUpdater; C:\WINDOWS\System32\DriverStore\FileRepository\jabrafwupdater_component.inf_amd64_f21f1d8ef8cfbfab\JabraFWUpdater.exe [188037400 2023-10-10] (GN Audio A/S -> GN Audio A/S) S3 LenovoAICCLoader; C:\WINDOWS\System32\DriverStore\FileRepository\lenovoaiccdisplay_cmp.inf_amd64_ab1d7000bacd781a\amd64\LenovoAICCLoader.exe [265704 2023-09-07] (Lenovo -> Lenovo Group Limited) R2 LenovoSmartStandby; C:\WINDOWS\System32\DriverStore\FileRepository\smartstandbycomponent.inf_amd64_1a7a38fb4d407c19\SmartStandby.exe [332792 2023-02-03] (Lenovo -> Lenovo) R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\LenovoVantageService.exe [34272 2023-12-15] (Lenovo -> Lenovo) R2 LenovoVisionService; C:\WINDOWS\System32\DriverStore\FileRepository\lnvvsndmft.inf_amd64_a1a974b0994de01d\LenovoVisionService.exe [565616 2023-10-10] (Lenovo -> Lenovo) S3 LenovoVisionSetupService; C:\WINDOWS\System32\DriverStore\FileRepository\lnvvsndmft.inf_amd64_a1a974b0994de01d\LvfSetupService.exe [36720 2023-10-10] (Lenovo -> Lenovo Group Ltd.) R2 LITSSVC; C:\WINDOWS\System32\DriverStore\FileRepository\litsdrv.inf_amd64_328e373c8f88e5d8\LITSSvc.exe [1083352 2023-11-02] (Lenovo -> Lenovo.) S2 LPlatSvc; C:\WINDOWS\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_7b52940a5893ba07\x64\LPlatSvc.exe [915824 2023-06-20] (Lenovo -> Lenovo) S3 OfficeSvcManagerAddons; C:\Windows\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [46416 2022-05-07] (Microsoft Windows -> Microsoft Corporation) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.050.0310.0001\OneDriveUpdaterService.exe [3851296 2024-04-01] (Microsoft Corporation -> Microsoft Corporation) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522080 2024-04-02] (Microsoft Windows Publisher -> Microsoft Corporation) R2 SmartSense; C:\WINDOWS\System32\DriverStore\FileRepository\lnvsst.inf_amd64_cefff9257b7dd5b1\SmartSense.exe [203224 2024-01-14] (Lenovo -> Lenovo) S2 SonosLibraryService; C:\Program Files (x86)\SonosV2\SonosLibraryService.exe [27648 2023-10-03] () [Archivo no firmado] R2 SSMonitorSvc; C:\Windows\system32\SSMonitor.exe [140736 2021-11-26] (Lenovo -> Lenovo) R2 SynHsaService; C:\WINDOWS\System32\DriverStore\FileRepository\synawudfbiousbuwp.inf_amd64_b4553f061288fdeb\SynRpcServer.exe [188352 2023-11-08] (Synaptics Incorporated -> Synaptics Incorporated.) R2 TbtP2pShortcutService; C:\WINDOWS\TbtP2pShortcutService.exe [256856 2023-08-08] (Intel Corporation -> Intel Corporation) R2 TPHKLOAD; C:\WINDOWS\System32\DriverStore\FileRepository\fn.inf_amd64_341d0836121cf573\driver\TPHKLOAD.exe [197496 2024-01-09] (Lenovo -> Lenovo) R2 UDCService; C:\WINDOWS\system32\DRIVERS\Lenovo\udc\Service\UDClientService.exe [72160 2023-11-02] (Lenovo -> Lenovo Group Ltd.) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\NisSrv.exe [3191272 2024-03-13] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\MsMpEng.exe [133688 2024-03-13] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Controladores (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) S3 AcxHdAudio; C:\WINDOWS\System32\drivers\AcxHdAudio.sys [561152 2023-10-27] (Microsoft Windows -> Microsoft Corporation) S3 BarcoClickShareDrv; C:\WINDOWS\System32\drivers\BarcoClickShareDrv.sys [22408 2021-08-02] (Microsoft Windows Hardware Compatibility Publisher -> Barco NV) S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Archivo no firmado] R3 EPD; C:\WINDOWS\System32\drivers\EPD.sys [157344 2022-05-31] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) R1 FortiFilter; C:\WINDOWS\system32\DRIVERS\FortiFilter.sys [35400 2022-02-25] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc) S3 Fortips; C:\WINDOWS\System32\drivers\fortips.sys [164024 2022-02-25] (Fortinet, Inc. -> Fortinet Inc) S3 FortiTransCtrl; C:\WINDOWS\System32\drivers\FortiTransCtrl.sys [79032 2022-02-25] (Fortinet, Inc. -> Fortinet Inc) R3 ftsvnic; C:\WINDOWS\System32\drivers\ftsvnic.sys [70216 2022-02-25] (Fortinet, Inc. -> Fortinet Inc.) R3 ft_vnic; C:\WINDOWS\System32\drivers\ftvnic.sys [70368 2022-02-25] (Fortinet Technologies (Canada) Inc. -> Fortinet Corporation) R3 iaLPSS2_GPIO2_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_2546dafe2183e972\iaLPSS2_GPIO2_TGL.sys [131224 2021-07-20] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_I2C_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_tgl.inf_amd64_1308f85f1b0adf27\iaLPSS2_I2C_TGL.sys [204440 2021-07-20] (Intel Corporation -> Intel Corporation) R3 IBMPMDRV; C:\WINDOWS\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_7b52940a5893ba07\x64\ibmpmdrv.sys [56128 2023-06-20] (Lenovo -> Lenovo) R3 IntcUSB; C:\WINDOWS\System32\DriverStore\FileRepository\intcusb.inf_amd64_54061b48d6b36e19\IntcUSB.sys [932480 2024-01-24] (Intel Corporation -> Intel(R) Corporation) R3 IntelGNA; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_04d4eecc5838a558\gna.sys [88776 2022-06-24] (Intel Corporation -> Intel Corporation) R3 LISSkmdf; C:\WINDOWS\System32\drivers\LISSkmdf.sys [42528 2024-01-14] (Lenovo -> Lenovo) R3 MpKsl46d9cd42; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{29EA6E05-972B-4450-AC7F-20E8F1F8BE98}\MpKslDrv.sys [301336 2024-04-04] (Microsoft Windows -> Microsoft Corporation) R1 PMDRVS; C:\WINDOWS\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_7b52940a5893ba07\x64\pmdrvs.sys [41792 2023-06-20] (Lenovo -> Lenovo) S3 rtu52cx22x64; C:\WINDOWS\System32\DriverStore\FileRepository\rtu52cx22x64.inf_amd64_44ac3895ac3dd280\rtu52cx22x64.sys [869760 2023-04-26] (Realtek Semiconductor Corp. -> Realtek Corporation) S3 rtu53cx22x64; C:\WINDOWS\System32\DriverStore\FileRepository\rtu53cx22x64.inf_amd64_191dda4f2e7775ce\rtu53cx22x64.sys [1082176 2023-08-03] (Realtek Semiconductor Corp. -> Realtek Corporation) S3 rtux64w10; C:\WINDOWS\System32\DriverStore\FileRepository\rtux64w10.inf_amd64_03831aeaaa2c730e\rtux64w10.sys [683520 2022-05-07] (Microsoft Windows -> Realtek Corporation) R3 WacHIDRouterISDF; C:\WINDOWS\System32\drivers\WacHIDRouterISDF.sys [127248 2022-06-03] (Wacom Co., Ltd. -> Wacom Technology, Corp.) S3 WacHIDRouterISDFV; C:\WINDOWS\System32\drivers\WacHIDRouterISDF.sys [127248 2022-06-03] (Wacom Co., Ltd. -> Wacom Technology, Corp.) R0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20928 2024-03-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [603416 2024-03-13] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105752 2024-03-13] (Microsoft Windows -> Microsoft Corporation) R3 WiManH; C:\WINDOWS\System32\DriverStore\FileRepository\wiman.inf_amd64_c34c898c5c4d0406\WiManH\WiManH.sys [175688 2021-12-08] (Intel Corporation -> Intel Corporation) S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) ==================== Un mes (creado) (Lista blanca) ========= (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2024-04-04 16:46 - 2024-04-04 16:46 - 000056527 _____ C:\Users\jigonzalezaller\Desktop\FRST.txt 2024-04-04 16:16 - 2024-04-04 16:16 - 000808892 _____ C:\WINDOWS\system32\perfh00A.dat 2024-04-04 16:16 - 2024-04-04 16:16 - 000163532 _____ C:\WINDOWS\system32\perfc00A.dat 2024-04-04 15:57 - 2024-04-04 15:58 - 000023430 _____ C:\Users\Administrador.PT-005\AppData\LocalLow\abdfbee3f482f410934d1e17c2f7f6fa1d3b379b2a07284ffda6ea337445c922 2024-04-04 15:57 - 2024-04-04 15:57 - 000000026 _____ C:\Users\Administrador.PT-005\AppData\LocalLow\6bdad7e2b2f0e006a1b2964609240b6498c71fd5a1aeb1e97866f9a43779a743 2024-04-04 15:55 - 2024-02-04 12:07 - 009506771 _____ C:\Users\Administrador.PT-005\Desktop\Presentación reunión de trabajo con el Rey 5.02.2024.pdf 2024-04-04 15:46 - 2024-04-04 15:46 - 002589624 _____ (Malwarebytes) C:\Users\Administrador.PT-005\Downloads\MBSetup-4.4.exe 2024-04-04 15:45 - 2024-04-04 15:45 - 000002918 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Administrador 2024-04-04 15:44 - 2024-04-04 15:44 - 000000000 ____D C:\Users\Administrador.PT-005\AppData\Roaming\Microsoft\Proof 2024-04-04 15:43 - 2024-04-04 15:43 - 000000000 ____D C:\Users\Administrador.PT-005\AppData\Roaming\Microsoft\Word 2024-04-04 15:43 - 2024-04-04 15:43 - 000000000 ____D C:\Users\Administrador.PT-005\AppData\Roaming\Microsoft\Office 2024-04-04 15:43 - 2024-04-04 15:43 - 000000000 ____D C:\Users\Administrador.PT-005\AppData\Roaming\Microsoft\AddIns 2024-04-04 15:23 - 2024-04-04 15:23 - 000000000 ____D C:\Users\jigonzalezaller\Desktop\FRST-OlderVersion 2024-04-04 15:22 - 2024-04-04 15:23 - 002393088 _____ (Farbar) C:\Users\jigonzalezaller\Desktop\FRST64.exe 2024-04-04 15:22 - 2024-04-04 15:22 - 002393088 _____ (Farbar) C:\Users\jigonzalezaller\Downloads\FRST64 (1).exe 2024-04-04 15:17 - 2024-04-04 15:17 - 000000000 ____D C:\Users\jigonzalezaller\AppData\Local\CrashDumps 2024-04-04 15:04 - 2024-04-04 15:04 - 002589624 _____ (Malwarebytes) C:\Users\jigonzalezaller\Downloads\MBSetup-4.4 (1).exe 2024-04-04 14:53 - 2024-04-04 14:53 - 000000000 ____D C:\ProgramData\Norton 2024-04-04 14:41 - 2024-04-04 14:41 - 002589624 _____ (Malwarebytes) C:\Users\jigonzalezaller\Downloads\MBSetup-4.4.exe 2024-04-04 14:30 - 2024-04-04 14:31 - 000079489 _____ C:\Users\jigonzalezaller\Downloads\FRST.txt 2024-04-04 14:30 - 2024-04-04 14:31 - 000074983 _____ C:\Users\jigonzalezaller\Downloads\Addition.txt 2024-04-04 13:21 - 2024-04-04 16:46 - 000000000 ____D C:\FRST 2024-04-04 13:18 - 2024-04-04 13:20 - 002393088 _____ (Farbar) C:\Users\jigonzalezaller\Downloads\FRST64.exe 2024-04-04 11:57 - 2024-04-04 11:57 - 000018072 __RSH C:\ProgramData\ntuser.pol 2024-04-04 10:20 - 2024-04-04 10:20 - 000000000 ____D C:\Users\jigonzalezaller\AppData\Local\mbam 2024-04-03 17:02 - 2024-04-04 09:40 - 000000000 ____D C:\Program Files\Mozilla Firefox 2024-04-03 13:01 - 2024-04-03 13:01 - 000002264 _____ C:\Users\Administrador.PT-005\AppData\LocalLow\3c75e537297a397e2d2b4b6d032a2ab976f41f013497f2154b6cab043af46d8c 2024-04-03 12:01 - 2024-04-04 16:04 - 000387613 _____ C:\Users\Administrador.PT-005\AppData\LocalLow\f68745aa7a9338028522371f61f4006042b0b517326f372ba707e936d2a1fab0 2024-04-03 12:01 - 2024-04-04 16:04 - 000000130 _____ C:\Users\Administrador.PT-005\AppData\LocalLow\542c1e7e7a3f794d97a241f547580e15b32e73702c3ce8d5d387f920a571694b 2024-04-03 11:42 - 2024-04-03 12:43 - 000000000 ___HD C:\ProgramData\Hpjk 2024-04-03 11:41 - 2024-04-03 11:41 - 000000000 ____D C:\Users\jigonzalezaller\AppData\Roaming\Duwus public 2024-04-03 11:26 - 2024-04-03 11:27 - 000000000 ____D C:\Users\jigonzalezaller\Desktop\Nueva carpeta 2024-04-03 10:23 - 2024-04-03 10:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2024-04-03 10:21 - 2024-04-03 10:21 - 000000000 ____D C:\Users\jigonzalezaller\AppData\Local\INetHistory 2024-04-02 17:24 - 2024-04-02 17:44 - 000000000 ____D C:\Users\jigonzalezaller\AppData\Roaming\com.adobe.dunamis 2024-04-02 17:24 - 2024-04-02 17:24 - 000000000 ____D C:\Users\jigonzalezaller\.ms-ad 2024-04-02 17:22 - 2024-04-03 11:45 - 000000000 ____D C:\Users\Administrador.PT-005\AppData\Roaming\com.adobe.dunamis 2024-04-02 17:22 - 2024-04-02 17:22 - 000000000 ____D C:\Users\Administrador.PT-005\AppData\Local\SolidDocuments 2024-04-02 17:22 - 2024-04-02 17:22 - 000000000 ____D C:\Users\Administrador.PT-005\.ms-ad 2024-04-02 17:20 - 2024-04-02 17:29 - 000002091 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller.lnk 2024-04-02 17:20 - 2024-04-02 17:29 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk 2024-04-02 17:07 - 2024-04-02 17:07 - 000011216 _____ C:\Users\Administrador.PT-005\AppData\LocalLow\183fe6247284088bf5e3cb9f4cf38746039fa07f000070dabdfab908a343a64e 2024-04-02 17:07 - 2024-04-02 17:07 - 000000026 _____ C:\Users\Administrador.PT-005\AppData\LocalLow\a8b141efd5a28a0535a4b1cef38c232052f69977de70ef5ac15dddb5a77f531f 2024-04-02 17:01 - 2024-04-04 16:05 - 000036763 _____ C:\Users\Administrador.PT-005\AppData\LocalLow\7c20ed46f96c41e8f4707573a4b5f44f7b40b89f3834b85911e9c253e71a658b 2024-04-02 17:01 - 2024-04-04 16:05 - 000000130 _____ C:\Users\Administrador.PT-005\AppData\LocalLow\d184b3a61bf4be513cbb771b07df842ddf56f91b67d9cbe187f53880ca9b5c5d 2024-04-02 16:58 - 2024-04-02 16:58 - 000002264 _____ C:\Users\Administrador.PT-005\AppData\LocalLow\38d2a21b25f0f18e2571284dcd6b30888c4fbf2fa9cafddafbf628e14d692368 2024-04-02 16:56 - 2024-04-04 15:44 - 000000130 _____ C:\Users\Administrador.PT-005\AppData\LocalLow\bb5af5617e94048fd46871ae6fef383e78b7276668ce45de4ae94c63ebdcfaf0 2024-04-02 16:56 - 2024-04-04 15:42 - 000017835 _____ C:\Users\Administrador.PT-005\AppData\LocalLow\6d1a0d74b8983cab26a68cd0cdace1fb63918ce4f5f6aeaeeefb13009d6d5154 2024-04-02 16:56 - 2024-04-04 15:42 - 000006740 _____ C:\Users\Administrador.PT-005\AppData\LocalLow\8d966663a6b08e60fb76da80a46eb09c9010dddd955098ea4a7156abd1d0760a 2024-04-02 16:56 - 2024-04-02 16:56 - 000000026 _____ C:\Users\Administrador.PT-005\AppData\LocalLow\7107d4cac2bc4428fa0187dfd88ac646a0a936ba0c71f8a4e27055a4333f4375 2024-04-02 13:02 - 2024-04-02 13:02 - 000046824 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2024-04-02 11:51 - 2024-04-04 15:11 - 000017835 _____ C:\Users\jigonzalezaller\AppData\LocalLow\6d1a0d74b8983cab26a68cd0cdace1fb63918ce4f5f6aeaeeefb13009d6d5154 2024-04-02 11:51 - 2024-04-02 11:51 - 000000026 _____ C:\Users\jigonzalezaller\AppData\LocalLow\7107d4cac2bc4428fa0187dfd88ac646a0a936ba0c71f8a4e27055a4333f4375 2024-04-02 11:48 - 2024-04-02 11:48 - 000000000 ____D C:\WINDOWS\SysWOW64\DDFs 2024-04-02 11:29 - 2024-04-02 11:29 - 000024320 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json 2024-04-02 11:29 - 2024-04-02 11:29 - 000024320 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json 2024-04-02 11:26 - 2024-04-02 11:27 - 000000000 ___HD C:\$WinREAgent 2024-03-27 10:53 - 2024-03-27 10:53 - 000000000 ___HD C:\OneDriveTemp 2024-03-25 13:17 - 2024-03-27 13:24 - 000000000 ____D C:\Users\jigonzalezaller\Desktop\Premios 2024-03-22 11:30 - 2024-03-22 11:30 - 000000000 ____D C:\Users\jigonzalezaller\AppData\Local\NEO 2024-03-20 11:17 - 2024-03-26 11:52 - 000000000 ____D C:\Users\jigonzalezaller\Desktop\Protección de datos 2024-03-19 12:42 - 2024-03-19 12:42 - 000002264 _____ C:\Users\jigonzalezaller\AppData\LocalLow\b96bb17673592d6ba8a10de910ba7aecfa89694c943a3da4413702474ce1b110 2024-03-19 12:30 - 2024-03-19 12:30 - 000002264 _____ C:\Users\jigonzalezaller\AppData\LocalLow\1601b4780ec90bb3e96b81accc7fc7435bcaa686ef0d15203be2de0db716fbe3 2024-03-18 11:24 - 2024-02-26 17:27 - 027983960 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll 2024-03-18 11:24 - 2024-02-26 17:27 - 020708032 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll 2024-03-18 11:24 - 2024-02-26 17:27 - 002115048 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2024-03-18 11:24 - 2024-02-26 17:27 - 002115048 _____ C:\WINDOWS\system32\vulkaninfo.exe 2024-03-18 11:24 - 2024-02-26 17:27 - 001673304 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2024-03-18 11:24 - 2024-02-26 17:27 - 001673304 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2024-03-18 11:24 - 2024-02-26 17:27 - 001462760 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2024-03-18 11:24 - 2024-02-26 17:27 - 001462760 _____ C:\WINDOWS\system32\vulkan-1.dll 2024-03-18 11:24 - 2024-02-26 17:27 - 001305176 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2024-03-18 11:24 - 2024-02-26 17:27 - 001305176 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2024-03-18 11:24 - 2024-02-26 17:27 - 000979360 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll 2024-03-18 11:24 - 2024-02-26 17:27 - 000783920 _____ (Intel) C:\WINDOWS\system32\libvpl.dll 2024-03-18 11:24 - 2024-02-26 17:27 - 000738088 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll 2024-03-18 11:24 - 2024-02-26 17:27 - 000668664 _____ (Intel) C:\WINDOWS\SysWOW64\libvpl.dll 2024-03-18 11:24 - 2024-02-26 17:27 - 000538088 _____ C:\WINDOWS\system32\ze_tracing_layer.dll 2024-03-18 11:24 - 2024-02-26 17:27 - 000499288 _____ C:\WINDOWS\system32\ze_loader.dll 2024-03-18 11:24 - 2024-02-26 17:27 - 000334936 _____ C:\WINDOWS\system32\ze_validation_layer.dll 2024-03-18 11:23 - 2024-02-26 17:27 - 000621800 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll 2024-03-18 11:23 - 2024-02-26 17:27 - 000554936 _____ C:\WINDOWS\SysWOW64\IntelControlLib32.dll 2024-03-18 11:23 - 2024-02-26 17:27 - 000480800 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll 2024-03-18 11:23 - 2024-02-26 17:27 - 000328544 _____ C:\WINDOWS\system32\ControlLib.dll 2024-03-18 11:23 - 2024-02-26 17:27 - 000274296 _____ C:\WINDOWS\SysWOW64\ControlLib32.dll ==================== Un mes (modificado) ================== (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2024-04-04 16:45 - 2023-12-04 14:10 - 000000130 _____ C:\Users\jigonzalezaller\AppData\LocalLow\d184b3a61bf4be513cbb771b07df842ddf56f91b67d9cbe187f53880ca9b5c5d 2024-04-04 16:44 - 2023-12-04 14:10 - 000039001 _____ C:\Users\jigonzalezaller\AppData\LocalLow\7c20ed46f96c41e8f4707573a4b5f44f7b40b89f3834b85911e9c253e71a658b 2024-04-04 16:39 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-04-04 16:34 - 2022-11-07 13:06 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2024-04-04 16:34 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps 2024-04-04 16:34 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness 2024-04-04 16:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp 2024-04-04 16:16 - 2022-11-07 13:09 - 001807552 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2024-04-04 16:16 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF 2024-04-04 16:14 - 2022-03-03 20:10 - 000000000 ____D C:\Program Files\CCleaner 2024-04-04 16:11 - 2024-02-02 13:39 - 000000000 ____D C:\Users\jigonzalezaller\AppData\Roaming\Jabra Direct 2024-04-04 16:10 - 2024-01-26 10:55 - 000000000 ___RD C:\Users\jigonzalezaller\FUNDACIÓN CODESPA 2024-04-04 16:10 - 2023-01-23 13:10 - 000000000 ___RD C:\Users\jigonzalezaller\OneDrive - FUNDACIÓN CODESPA 2024-04-04 16:10 - 2022-03-01 18:12 - 000000000 ____D C:\Users\jigonzalezaller\AppData\Roaming\Dropbox 2024-04-04 16:10 - 2022-03-01 18:11 - 000000000 ____D C:\Users\jigonzalezaller\AppData\Local\Dropbox 2024-04-04 16:09 - 2023-02-08 13:20 - 000001155 _____ C:\Users\jigonzalezaller\Desktop\FOTOS CODESPA.lnk 2024-04-04 16:09 - 2022-11-07 13:09 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2024-04-04 16:09 - 2022-09-20 17:54 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job 2024-04-04 16:09 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState 2024-04-04 16:09 - 2022-03-01 17:27 - 000000000 ____D C:\Users\jigonzalezaller\AppData\Roaming\Microsoft\Teams 2024-04-04 16:09 - 2022-03-01 12:53 - 000000000 ___RD C:\Users\jigonzalezaller\OneDrive 2024-04-04 16:09 - 2022-03-01 12:52 - 000000000 __SHD C:\Users\jigonzalezaller\IntelGraphicsProfiles 2024-04-04 16:09 - 2022-03-01 12:28 - 000000120 _____ C:\WINDOWS\system32\config\netlogon.ftl 2024-04-04 16:09 - 2022-02-22 17:17 - 000000000 ___HD C:\Intel 2024-04-04 16:09 - 2021-06-23 20:44 - 000012288 ___SH C:\DumpStack.log.tmp 2024-04-04 16:08 - 2022-05-07 07:17 - 001572864 _____ C:\WINDOWS\system32\config\BBI 2024-04-04 16:07 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2024-04-04 15:42 - 2022-03-01 18:52 - 000000000 ____D C:\Users\Administrador.PT-005\AppData\Local\Packages 2024-04-04 15:42 - 2022-03-01 18:52 - 000000000 ____D C:\Users\Administrador.PT-005\AppData\Local\Dropbox 2024-04-04 15:42 - 2022-03-01 18:52 - 000000000 ____D C:\Users\Administrador.PT-005\AppData\Local\D3DSCache 2024-04-04 15:38 - 2022-03-01 18:05 - 000000000 ____D C:\Users\jigonzalezaller\AppData\Roaming\Microsoft\Word 2024-04-04 15:16 - 2023-11-10 13:36 - 000032097 _____ C:\Users\jigonzalezaller\AppData\LocalLow\abdfbee3f482f410934d1e17c2f7f6fa1d3b379b2a07284ffda6ea337445c922 2024-04-04 14:53 - 2022-11-07 13:09 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2024-04-04 14:53 - 2022-11-07 13:09 - 000003378 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting 2024-04-04 13:55 - 2022-03-01 18:28 - 000000000 ____D C:\Users\jigonzalezaller\AppData\Roaming\Microsoft\Excel 2024-04-04 13:08 - 2022-11-07 13:06 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK 2024-04-04 10:15 - 2022-03-11 18:17 - 000000000 ____D C:\Users\jigonzalezaller\AppData\Local\ElevatedDiagnostics 2024-04-04 09:48 - 2022-02-22 17:19 - 000000000 ____D C:\WINDOWS\TempInst 2024-04-04 09:40 - 2022-11-07 13:06 - 000634448 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2024-04-04 09:40 - 2022-03-01 13:02 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2024-04-04 09:38 - 2022-03-01 13:02 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2024-04-03 13:25 - 2022-11-07 11:44 - 000000000 ____D C:\WINDOWS\SysWOW64\hpdmsg 2024-04-03 12:43 - 2022-11-07 13:09 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo 2024-04-03 11:47 - 2022-11-07 13:09 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2024-04-03 11:45 - 2022-03-02 11:16 - 000000000 ____D C:\Users\Administrador.PT-005\AppData\Local\Adobe 2024-04-03 11:41 - 2023-11-10 13:52 - 000021931 _____ C:\Users\jigonzalezaller\AppData\LocalLow\c471a3f3b88ab9b37460e73f6bb1a3e7a513a2a2866fad587ff56ef5a1ad7e6c 2024-04-03 11:41 - 2023-11-10 13:52 - 000000026 _____ C:\Users\jigonzalezaller\AppData\LocalLow\bef33e67af07b07688c0a6330e732d016df14dc5824def44f89868a00efa36c8 2024-04-03 11:40 - 2022-03-01 13:10 - 000000000 ____D C:\Users\jigonzalezaller\AppData\Roaming\vlc 2024-04-03 11:06 - 2023-11-26 21:59 - 000034620 _____ C:\Users\jigonzalezaller\AppData\LocalLow\b15d3a108baf677bad705d2193ceb1d29295e9ae5672296ad2f6ec14fa4d226f 2024-04-03 11:06 - 2023-11-26 21:59 - 000000130 _____ C:\Users\jigonzalezaller\AppData\LocalLow\9efc7b77bc60a484afa1dbca8105b35ad2d2bcddf61075a21cfb283050ad9d1e 2024-04-03 10:23 - 2022-03-01 18:11 - 000000000 ____D C:\Program Files (x86)\Dropbox 2024-04-03 10:23 - 2022-03-01 13:02 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2024-04-02 17:33 - 2022-03-01 12:52 - 000000000 ____D C:\Users\jigonzalezaller\AppData\Local\D3DSCache 2024-04-02 17:32 - 2022-03-02 11:24 - 000000000 ____D C:\Users\jigonzalezaller\AppData\Local\Adobe 2024-04-02 17:29 - 2022-03-01 12:52 - 000000000 ____D C:\Users\jigonzalezaller\AppData\Local\Packages 2024-04-02 17:29 - 2022-03-01 11:53 - 000000000 ____D C:\ProgramData\Packages 2024-04-02 17:24 - 2022-11-07 11:52 - 000000000 ____D C:\Users\jigonzalezaller 2024-04-02 17:24 - 2022-03-02 11:24 - 000000000 ____D C:\Users\jigonzalezaller\AppData\LocalLow\Adobe 2024-04-02 17:24 - 2022-03-01 12:52 - 000000000 ____D C:\Users\jigonzalezaller\AppData\Roaming\Adobe 2024-04-02 17:22 - 2022-11-07 11:52 - 000000000 ____D C:\Users\Administrador.PT-005 2024-04-02 17:22 - 2022-03-02 11:21 - 000000000 ____D C:\Users\Administrador.PT-005\AppData\LocalLow\Adobe 2024-04-02 17:22 - 2022-03-01 18:52 - 000000000 ____D C:\Users\Administrador.PT-005\AppData\Roaming\Adobe 2024-04-02 17:18 - 2022-03-02 16:16 - 000000000 ____D C:\Program Files\Common Files\Adobe 2024-04-02 17:18 - 2022-03-02 16:16 - 000000000 ____D C:\Program Files\Adobe 2024-04-02 17:18 - 2022-03-02 11:16 - 000000000 ____D C:\ProgramData\Adobe 2024-04-02 17:12 - 2022-03-01 18:52 - 000002279 _____ C:\Users\Administrador.PT-005\Desktop\Google Chrome.lnk 2024-04-02 16:55 - 2022-03-01 13:02 - 000000000 ____D C:\Users\Administrador.PT-005\AppData\LocalLow\Intel 2024-04-02 16:34 - 2022-03-01 12:32 - 000000000 ____D C:\WINDOWS\system32\appmgmt 2024-04-02 12:05 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate 2024-04-02 11:48 - 2022-05-07 09:39 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2024-04-02 11:48 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2024-04-02 11:48 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2024-04-02 11:48 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources 2024-04-02 11:48 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2024-04-02 11:48 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences 2024-04-02 11:48 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm 2024-04-02 11:48 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe 2024-04-02 11:48 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient 2024-04-02 11:48 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\DDFs 2024-04-02 11:48 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents 2024-04-02 11:48 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning 2024-04-02 11:48 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2024-04-02 11:48 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr 2024-04-02 11:31 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp 2024-04-02 11:29 - 2022-11-07 13:08 - 003213824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2024-04-01 09:02 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth 2024-04-01 09:02 - 2021-06-23 20:45 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2024-04-01 09:01 - 2023-03-14 12:18 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1935655697-838170752-839522115-4249 2024-04-01 09:01 - 2022-11-07 13:09 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1935655697-838170752-839522115-1230 2024-04-01 09:01 - 2022-11-07 13:09 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-694449305-3802656285-542762977-500 2024-04-01 09:01 - 2022-11-07 13:09 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1935655697-838170752-839522115-500 2024-04-01 09:01 - 2022-11-07 13:09 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2024-04-01 09:01 - 2022-03-01 18:53 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2024-04-01 09:01 - 2022-03-01 13:29 - 000002173 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2024-03-27 20:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData 2024-03-27 13:24 - 2022-03-01 14:53 - 000000000 ____D C:\Users\jigonzalezaller\AppData\Roaming\Microsoft\Office 2024-03-27 11:36 - 2022-08-05 13:26 - 000000000 ____D C:\Users\jigonzalezaller\Desktop\Firmas 2024-03-27 10:49 - 2022-11-07 13:09 - 000003708 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2024-03-27 10:49 - 2022-11-07 13:09 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2024-03-25 13:18 - 2023-06-09 16:11 - 000000000 ____D C:\Users\jigonzalezaller\Desktop\Proyectos Angola 2024-03-22 10:52 - 2022-03-01 17:34 - 000000000 ____D C:\Users\jigonzalezaller\AppData\Roaming\Microsoft\UProof 2024-03-21 18:36 - 2022-03-01 17:59 - 000000000 ____D C:\Users\jigonzalezaller\Documents\My Kindle Content 2024-03-19 18:21 - 2023-11-14 17:20 - 000136671 _____ C:\Users\jigonzalezaller\AppData\LocalLow\dc3b4cbc6c61a5c44352c2760078142e22bef79ea7a91b7ed7312f7fd5aa36fc 2024-03-19 18:21 - 2023-11-14 17:20 - 000000130 _____ C:\Users\jigonzalezaller\AppData\LocalLow\8b9fe445df38ef1188cd6968bcf182c6ef67b58a03f72df38cf348cae9a4f8c7 2024-03-19 12:58 - 2022-09-29 09:55 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2024-03-19 12:37 - 2023-09-27 16:49 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView 2024-03-19 12:37 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2024-03-19 12:37 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\servicing 2024-03-19 12:35 - 2022-03-01 12:02 - 190470136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2024-03-19 12:35 - 2022-03-01 12:02 - 000000000 ____D C:\WINDOWS\system32\MRT 2024-03-19 12:31 - 2023-11-10 11:22 - 000000000 ____D C:\Program Files\dotnet 2024-03-19 12:31 - 2022-03-01 21:24 - 000000000 ____D C:\ProgramData\Package Cache 2024-03-19 10:47 - 2022-11-07 11:44 - 000000000 ____D C:\WINDOWS\system32\icmsg 2024-03-18 15:43 - 2023-11-10 13:36 - 000000026 _____ C:\Users\jigonzalezaller\AppData\LocalLow\6bdad7e2b2f0e006a1b2964609240b6498c71fd5a1aeb1e97866f9a43779a743 2024-03-18 15:38 - 2023-11-11 17:00 - 000011216 _____ C:\Users\jigonzalezaller\AppData\LocalLow\183fe6247284088bf5e3cb9f4cf38746039fa07f000070dabdfab908a343a64e 2024-03-18 15:38 - 2023-11-11 17:00 - 000000026 _____ C:\Users\jigonzalezaller\AppData\LocalLow\a8b141efd5a28a0535a4b1cef38c232052f69977de70ef5ac15dddb5a77f531f 2024-03-18 11:21 - 2022-02-22 17:18 - 000000000 ____D C:\Program Files (x86)\Lenovo 2024-03-13 15:46 - 2021-06-23 20:44 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2024-03-09 16:48 - 2023-03-02 10:34 - 000000000 ____D C:\Users\jigonzalezaller\AppData\Roaming\DeepL_SE 2024-03-08 16:32 - 2022-09-27 11:39 - 000196608 _____ C:\Users\jigonzalezaller\AppData\Roaming\fin.zup ==================== Archivos en la raíz de algunos directorios ======== 2022-09-27 11:39 - 2024-03-08 16:32 - 000196608 _____ () C:\Users\jigonzalezaller\AppData\Roaming\fin.zup 2022-04-17 16:52 - 2023-02-23 12:57 - 000535040 _____ (Dirección General de la Policía) C:\Users\jigonzalezaller\AppData\Local\DNIeService.exe 2022-03-02 11:30 - 2024-04-04 15:40 - 000000205 _____ () C:\Users\jigonzalezaller\AppData\Local\oobelibMkey.log ==================== SigCheck ============================ (No existe una corrección automática para los archivos que no pasan la verificación.) ==================== Final de FRST.txt ========================