Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 01-04-2025 Ejecutado por 57300 (administrador) sobre YARAEXPRESS (10-04-2025 19:15:47) Ejecutado desde C:\Users\57300\Desktop\FRST64.exe Perfiles cargados: 57300 Plataforma: Microsoft Windows 10 Education Versión 22H2 19045.5737 (X64) Idioma: Español (España, internacional) Navegador predeterminado: FF Modo de Inicio: Normal ==================== Procesos (Lista blanca) ================= (Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.) (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe (C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe (C:\Program Files\Mozilla Firefox\firefox.exe ->) (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2> (C:\Users\57300\AppData\Local\Programs\Opera\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\57300\AppData\Local\Programs\Opera\117.0.5408.197\opera_crashreporter.exe (explorer.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Driver Updater\DriverUpdUI.exe <2> (explorer.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\TuneUp\TuneupUI.exe <3> (explorer.exe ->) (FxSound, LLC -> FxSound LLC) C:\Program Files\FxSound LLC\FxSound\FxSound.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <18> (explorer.exe ->) (Opera Norway AS -> Opera Software) C:\Users\57300\AppData\Local\Programs\Opera\opera.exe <29> (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\AddInProcess32.exe <2> (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <37> (nvvsvc.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Driver Updater\DriverUpdSvc.exe (services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\TuneUp\TuneupSvc.exe (services.exe ->) (Logitech Inc -> Logitech) C:\Program Files\Logitech\LogiCapture\bin\Service\LogiFacecamService.exe (services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Microsoft Update Health Tools\uhssvc.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpDefenderCoreService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MsMpEng.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe (svchost.exe ->) (Skype Software Sarl -> ) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.53.77.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe ==================== Registro (Lista blanca) =================== (Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.) HKLM\...\Run: [PowerDVD21Agent] => C:\Program Files\CyberLink\PowerDVD21\PowerDVD21Agent.exe [564904 2021-08-19] (CyberLink Corp. -> CyberLink Corp.) HKLM\...\Run: [DriverUpdUI.exe] => C:\Program Files\AVG\Driver Updater\DriverUpdUI.exe [8225096 2025-03-27] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\AVG\TuneUp\TuneupUI.exe [6945608 2025-04-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) HKLM\SYSTEM\...\Terminal Server: [fDenyTSConnections] = 0 <==== ATENCIÓN HKU\S-1-5-21-979982421-863876996-3069389525-1001\...\Run: [Spotify] => C:\Users\57300\AppData\Roaming\Spotify\Spotify.exe [36639048 2025-03-26] (Spotify AB -> Spotify Ltd) HKU\S-1-5-21-979982421-863876996-3069389525-1001\...\Run: [CyberlinkPowerPlayerMediaServer_PowerDVD21] => C:\Program Files\CyberLink\PowerDVD21\Common\CLMediaServer\clmediaserver.exe [6706856 2021-08-19] (CyberLink Corp. -> CyberLink Corp.) HKU\S-1-5-21-979982421-863876996-3069389525-1001\...\Run: [Microsoft Edge Update] => C:\Users\57300\AppData\Local\Microsoft\EdgeUpdate\1.3.195.49\MicrosoftEdgeUpdateCore.exe [268360 2025-04-05] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-979982421-863876996-3069389525-1001\...\Run: [MicrosoftEdgeAutoLaunch_D43EE07753EB9EA0999B32F1A2C615FC] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4418088 2025-04-03] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-979982421-863876996-3069389525-1001\...\Run: [Opera Browser Assistant] => C:\Users\57300\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3996064 2024-03-04] (Opera Norway AS -> Opera Software) HKU\S-1-5-21-979982421-863876996-3069389525-1001\...\Run: [filezilla] => cmd.exe /c "cd /d "C:\Users\57300\AppData\Roaming\Launcher" && "Launcher.exe"" --no-startup-window /prefetch:5 (Ningún archivo) <==== ATENCIÓN HKU\S-1-5-21-979982421-863876996-3069389525-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\SysWOW64\RETROS~1.SCR [1089536 2013-04-09] (Andy Fielding (ander5151@yahoo.com)) [Archivo no firmado] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\135.0.7049.85\Installer\chrmstp.exe [2025-04-10] (Google LLC -> Google LLC) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FxSound.lnk [2022-03-10] ShortcutTarget: FxSound.lnk -> C:\Program Files\FxSound LLC\FxSound\FxSound.exe (FxSound, LLC -> FxSound LLC) ==================== Tareas programadas (Lista blanca) ================= (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) Task: {22A551B4-FE9E-4DB8-BFE9-DF36717181C0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Ningún archivo) Task: {7C0C9A9D-84DB-412F-95FD-74CCA7831DF5} - System32\Tasks\AVG\AVG Driver Updater BugReport => C:\Program Files\AVG\Driver Updater\AvBugReport.exe [6079304 2025-03-27] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) -> --send "dumps|report" --silent --product 149 --programpath "C:\Program Files\AVG\Driver Updater" --configpath "C:\ProgramData\AVG\Driver Updater" --path "C:\ProgramData\AVG\Driver Updater\log" --path "C:\ProgramData\AVG\Icarus\Logs" --logpath "C:\ProgramData\AVG\Driver Updater\log" --guid c4f85c5b- (la entrada de datos tiene 27 más caracteres). Task: {D4DB6E80-4D86-4A9D-BF82-678DD77432A0} - System32\Tasks\AVG\AVG Driver Updater Update => C:\Program Files\Common Files\AVG\Icarus\avg-du\icarus.exe [8618824 2025-03-19] (AVG Technologies USA, LLC -> Gen Digital Inc.) Task: {906E7A1B-EA29-4ACC-95B3-51A620EABC11} - System32\Tasks\AVG\AVG TuneUp BugReport => C:\Program Files\AVG\TuneUp\AvBugReport.exe [6079304 2025-04-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) -> --send "dumps|report" --silent --product 74 --programpath "C:\Program Files\AVG\TuneUp" --configpath "C:\ProgramData\AVG\TuneUp" --path "C:\ProgramData\AVG\TuneUp\log" --path "C:\ProgramData\AVG\Icarus\Logs" --logpath "C:\ProgramData\AVG\TuneUp\log" --guid 2ea49211-2498-4007-8160-8c46d100af6b Task: {FF287B1F-C154-4D30-B6B8-C9A21B10803D} - System32\Tasks\AVG\AVG TuneUp Update => C:\Program Files\Common Files\AVG\Icarus\avg-tu\icarus.exe [8618824 2025-03-31] (AVG Technologies USA, LLC -> Gen Digital Inc.) Task: {C4DEDED6-32BA-47DC-ACFA-E7A380F288D0} - System32\Tasks\CLToast => C:\Program Files (x86)\CyberLink\Shared files\CLToast.exe [2320256 2021-03-19] (CyberLink Corp. -> ) Task: {7EAB4617-B493-4306-893C-770E97D9537A} - System32\Tasks\CLToastRun => C:\Program Files (x86)\CyberLink\Shared files\CLToast.exe [2320256 2021-03-19] (CyberLink Corp. -> ) Task: {EB799480-144A-454C-BFEA-09C3BB0FC656} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5965664 2025-03-29] (Microsoft Windows -> Microsoft Corporation) Task: {09B629F0-71CB-4A83-BF8E-A3E3F883C665} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\57300\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [21737944 2023-11-19] (ESET, spol. s r.o. -> ESET) Task: {DAF512DF-FE2B-4B87-A8D9-D027DC009947} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\57300\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [21737944 2023-11-19] (ESET, spol. s r.o. -> ESET) Task: {028A4516-5D9A-411F-899D-826CC3B7CD10} - System32\Tasks\FxSound\Update => C:\Program -> Files\FxSound LLC\FxSound\updater.exe /silent Task: {6C776CBD-10AF-4A35-830B-B33EC31AF62F} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem134.0.6985.0{2F68364C-C375-41FF-8A90-D3B6B184960E} => "C:\Program Files (x86)\Google\GoogleUpdater\134.0.6985.0\updater.exe" --wake --system (Ningún archivo) Task: {4EC991AE-286A-4503-AD03-DFF4D71E35DA} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem136.0.7079.0{1009F1E6-DCE2-43A4-AFCB-F48139841BB1} => C:\Program Files (x86)\Google\GoogleUpdater\136.0.7079.0\updater.exe [7017568 2025-03-20] (Google LLC -> Google LLC) Task: {04AEE1AF-E962-4DE8-82D3-7EE6B6ADA00B} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2118144 2024-10-20] () [Archivo no firmado] Task: {FD242AC1-81D4-4F75-BE10-FCE4BAFD30F2} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28491744 2024-03-19] (Microsoft Corporation -> Microsoft Corporation) Task: {28DA5E11-0BD2-42EB-B4F6-885A9E240FA7} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28491744 2024-03-19] (Microsoft Corporation -> Microsoft Corporation) Task: {593AB309-2224-41B9-857D-26DA307495A5} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309184 2024-03-19] (Microsoft Corporation -> Microsoft Corporation) Task: {01B079D1-5859-46D3-9712-39F70ED75C7A} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309184 2024-03-19] (Microsoft Corporation -> Microsoft Corporation) Task: {A9A598F2-819E-422C-96AF-4AF359697E58} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [170136 2024-03-19] (Microsoft Corporation -> Microsoft Corporation) Task: {7670795C-435E-4880-87DB-0082389364C7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-04-10] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {03DFD879-86F4-4F30-A849-5042F58B9053} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-04-10] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {63DC14C5-31AE-4ACA-8588-4EBBE6F82D91} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-04-10] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {FCB90028-78C1-4DFC-A548-C05F6E18B694} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-04-10] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {D040C6FD-1197-47D8-B87B-13D4C655B444} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-979982421-863876996-3069389525-1001Core{76DB40A5-0253-4607-92AD-F4B883E5A324} => C:\Users\57300\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [206256 2023-01-11] (Microsoft Corporation -> Microsoft Corporation) Task: {E4193B09-B667-41E7-A19A-D067EBA93933} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-979982421-863876996-3069389525-1001UA{4E3BB5F2-EB36-44E9-B689-5FA3AFA3A113} => C:\Users\57300\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [206256 2023-01-11] (Microsoft Corporation -> Microsoft Corporation) Task: {DA605170-6692-4BAF-AE07-C4AE576D172C} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [695360 2025-04-08] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (la entrada de datos tiene 6 más caracteres). Task: {A072F0D0-51F4-4EA5-A5AF-C303101ECA72} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34880 2025-04-08] (Mozilla Corporation -> Mozilla Foundation) Task: {ECF70659-B3CF-4F72-A401-CB84E55D5FCF} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-25] (Nvidia Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {127CEA5D-1888-4EFE-951C-3356C16F9879} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3341432 2022-05-06] (Nvidia Corporation -> NVIDIA Corporation) Task: {986D8FEB-BF18-4202-BD58-790F66D0912C} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647424 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler Task: {CC53D365-43BF-4D1D-974A-7F3248119C1C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905984 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation) Task: {A3F757CD-DF18-4F85-BA63-C9E956319BF1} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905984 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation) Task: {859076C5-5D21-4C1C-819F-BBA71ABA3577} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation) Task: {2031A201-10BC-44CB-BF63-B7A376C7D110} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation) Task: {AC4EE420-B724-4071-9EB0-BEC7DEFAFB54} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation) Task: {179B3260-E9CA-4558-AAEE-4BA97FC0FBD7} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation) Task: {83CB3828-D0A5-42D5-A7B4-54DD1836F70D} - System32\Tasks\OneDrive Startup Task-S-1-5-21-979982421-863876996-3069389525-1001 => C:\Users\57300\AppData\Local\Microsoft\OneDrive\25.046.0310.0005\OneDriveLauncher.exe [673600 2025-04-05] (Microsoft Corporation -> Microsoft Corporation) Task: {66A43212-9091-4BF1-B2E8-C535D4EEB019} - System32\Tasks\Opera scheduled assistant Autoupdate 1629411056 => C:\Users\57300\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\57300\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {3E775E34-0B73-48D2-862A-DDE280ECE0FF} - System32\Tasks\Opera scheduled Autoupdate 1629411047 => C:\Users\57300\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5647768 2025-04-02] (Opera Norway AS -> Opera Software) (Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.) ==================== Internet (Lista blanca) ==================== (Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.) Tcpip\Parameters: [DhcpNameServer] 192.168.10.1 Tcpip\..\Interfaces\{3ae6f4a4-2b5b-4ffa-bddb-795d9eb1c30e}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{6b659faf-ca49-4288-858c-24fcc9c1e850}: [DhcpNameServer] 192.168.10.1 Tcpip\..\Interfaces\{ffde0b7c-6069-4256-ae7f-4e1684e4c267}: [DhcpNameServer] 192.168.0.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\57300\AppData\Local\Microsoft\Edge\User Data\Default [2025-04-11] Edge Notifications: Default -> hxxps://www.mercadolibre.com.co Edge Extension: (Magic Actions for YouTube™) - C:\Users\57300\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2025-01-06]hxxps://clients2.google.com/service/update2/crx Edge Extension: (Documentos de Google sin conexión) - C:\Users\57300\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-04-01]hxxps://clients2.google.com/service/update2/crx Edge Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\57300\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2025-04-09]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx Edge Extension: (Edge relevant text changes) - C:\Users\57300\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx FireFox: ======== FF DefaultProfile: q5hnv0n7.default FF ProfilePath: C:\Users\57300\AppData\Roaming\Mozilla\Firefox\Profiles\q5hnv0n7.default [2021-07-31] FF ProfilePath: C:\Users\57300\AppData\Roaming\Mozilla\Firefox\Profiles\fqlgksvm.default-release-1700443382586 [2025-04-11] FF Notifications: Mozilla\Firefox\Profiles\fqlgksvm.default-release-1700443382586 -> hxxps://es.aliexpress.com; hxxps://trovo.live; hxxps://dlive.tv; hxxps://drive.google.com FF Extension: (Magic Actions for YouTube™) - C:\Users\57300\AppData\Roaming\Mozilla\Firefox\Profiles\fqlgksvm.default-release-1700443382586\Extensions\jid0-UVAeBCfd34Kk5usS8A1CBiobvM8@jetpack.xpi [2024-10-25] FF Extension: (Al traductor de Google) - C:\Users\57300\AppData\Roaming\Mozilla\Firefox\Profiles\fqlgksvm.default-release-1700443382586\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2024-11-05] FF Extension: (Language: English (US)) - C:\Users\57300\AppData\Roaming\Mozilla\Firefox\Profiles\fqlgksvm.default-release-1700443382586\Extensions\langpack-en-US@firefox.mozilla.org.xpi [2025-04-07] FF Extension: (TWP - Translate Web Pages) - C:\Users\57300\AppData\Roaming\Mozilla\Firefox\Profiles\fqlgksvm.default-release-1700443382586\Extensions\{036a55b4-5e72-4d05-a06c-cba2dfcc134a}.xpi [2025-03-28] FF Extension: (Classic Blue) - C:\Users\57300\AppData\Roaming\Mozilla\Firefox\Profiles\fqlgksvm.default-release-1700443382586\Extensions\{065a1db8-6bba-4e1e-bcdc-d3dd53b68828}.xpi [2025-01-31] FF Extension: (r ansba) - C:\Users\57300\AppData\Roaming\Mozilla\Firefox\Profiles\fqlgksvm.default-release-1700443382586\Extensions\{1a40f5a0-5a4e-4cb8-bbc4-024a1b68756f}.xpi [2025-01-31] FF Extension: (Blue Glass Moon) - C:\Users\57300\AppData\Roaming\Mozilla\Firefox\Profiles\fqlgksvm.default-release-1700443382586\Extensions\{1e31de6c-eb68-4e09-999a-209d0d4d8515}.xpi [2024-11-05] FF Extension: (Malwarebytes Browser Guard) - C:\Users\57300\AppData\Roaming\Mozilla\Firefox\Profiles\fqlgksvm.default-release-1700443382586\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2024-11-05] FF Extension: (Download All Images) - C:\Users\57300\AppData\Roaming\Mozilla\Firefox\Profiles\fqlgksvm.default-release-1700443382586\Extensions\{32af1358-428a-446d-873e-5f8eb5f2a72e}.xpi [2024-11-05] FF Extension: (AliHelper - asistente de compras) - C:\Users\57300\AppData\Roaming\Mozilla\Firefox\Profiles\fqlgksvm.default-release-1700443382586\Extensions\{333f4540-f467-419b-8410-233078ae8813}.xpi [2025-03-26] FF Extension: (Surmount) - C:\Users\57300\AppData\Roaming\Mozilla\Firefox\Profiles\fqlgksvm.default-release-1700443382586\Extensions\{9a0be525-4e0d-4954-8b9e-1ef2218d851d}.xpi [2024-10-29] FF Extension: (Video DownloadHelper) - C:\Users\57300\AppData\Roaming\Mozilla\Firefox\Profiles\fqlgksvm.default-release-1700443382586\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2025-02-03] FF Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\57300\AppData\Roaming\Mozilla\Firefox\Profiles\fqlgksvm.default-release-1700443382586\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2025-04-08] FF Extension: (Argon - experemental) - C:\Users\57300\AppData\Roaming\Mozilla\Firefox\Profiles\fqlgksvm.default-release-1700443382586\Extensions\{d5b228b7-c364-4ce3-bb9f-c6ac361a9a6a}.xpi [2024-11-05] FF Extension: (Grenen 2 Seas Dark Mod) - C:\Users\57300\AppData\Roaming\Mozilla\Firefox\Profiles\fqlgksvm.default-release-1700443382586\Extensions\{d812469e-821e-4770-8513-e42e9eccfd45}.xpi [2025-01-31] FF Extension: (Furfox Tail Twister) - C:\Users\57300\AppData\Roaming\Mozilla\Firefox\Profiles\fqlgksvm.default-release-1700443382586\Extensions\{f5a6e853-427c-4a7d-99f8-ee2b49dd15e3}.xpi [2024-11-05] FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-02-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-02-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-11-14] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Archivo no firmado] FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-11-14] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Archivo no firmado] FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-07-24] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\57300\AppData\Local\Google\Chrome\User Data\Default [2025-04-10] CHR Notifications: Default -> hxxps://www.facebook.com CHR Extension: (VPN gratuita para Chrome - Troywell VPN) - C:\Users\57300\AppData\Local\Google\Chrome\User Data\Default\Extensions\adlpodnneegcnbophopdmhedicjbcgco [2025-03-10]hxxps://clients2.google.com/service/update2/crx CHR Extension: (Descargador de imágenes - Imageye) - C:\Users\57300\AppData\Local\Google\Chrome\User Data\Default\Extensions\agionbommeaifngbhincahgmoflcikhm [2025-04-10]hxxps://clients2.google.com/service/update2/crx CHR Extension: (Video Downloader Professional) - C:\Users\57300\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2024-10-23]hxxps://clients2.google.com/service/update2/crx CHR Extension: (Documentos de Google sin conexión) - C:\Users\57300\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-04-10]hxxps://clients2.google.com/service/update2/crx CHR Extension: (Descargador videos de Facebook Plus) - C:\Users\57300\AppData\Local\Google\Chrome\User Data\Default\Extensions\icphfngeemckldjnnoemfadfploieehk [2024-03-03]hxxps://clients2.google.com/service/update2/crx CHR Extension: (Shazam: Find song names from your browser) - C:\Users\57300\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmioliijnhnoblpgimnlajmefafdfilb [2025-03-10]hxxps://clients2.google.com/service/update2/crx CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\57300\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-06-12]hxxps://clients2.google.com/service/update2/crx Opera: ======= OPR DefaultProfile: Default StartMenuInternet: (HKU\S-1-5-21-979982421-863876996-3069389525-1001) OperaStable - "C:\Users\57300\AppData\Local\Programs\Opera\opera.exe" ==================== Servicios (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) R2 CleanupPSvc; C:\Program Files\AVG\TuneUp\TuneupSvc.exe [19304776 2025-04-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) S4 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14097992 2024-03-19] (Microsoft Corporation -> Microsoft Corporation) R2 DriverUpdSvc; C:\Program Files\AVG\Driver Updater\DriverUpdSvc.exe [17396552 2025-03-27] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 LogiFacecamService; C:\Program Files\Logitech\LogiCapture\bin\Service\LogiFacecamService.exe [497568 2021-10-25] (Logitech Inc -> Logitech) R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpDefenderCoreService.exe [2009608 2025-04-10] (Microsoft Windows Publisher -> Microsoft Corporation) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [559304 2025-03-29] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\NisSrv.exe [4538400 2025-04-10] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MsMpEng.exe [278320 2025-04-10] (Microsoft Windows Publisher -> Microsoft Corporation) S2 GoogleUpdaterInternalService134.0.6985.0; "C:\Program Files (x86)\Google\GoogleUpdater\134.0.6985.0\updater.exe" --system --windows-service --service=update-internal [X] S2 GoogleUpdaterService134.0.6985.0; "C:\Program Files (x86)\Google\GoogleUpdater\134.0.6985.0\updater.exe" --system --windows-service --service=update [X] ===================== Controladores (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 BEHRINGER_2902; C:\WINDOWS\System32\Drivers\BUSB2902.sys [460864 2009-10-30] (Ploytec GmbH -> BEHRINGER) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Archivo no firmado] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Archivo no firmado] S3 BUSB_AUDIO_WDM; C:\WINDOWS\system32\drivers\busbwdm.sys [49728 2009-10-30] (Ploytec GmbH -> BEHRINGER) R2 CLFCL5.21; C:\WINDOWS\System32\drivers\CLFCL5.21\000.fcl [46752 2021-08-19] (CyberLink Corp. -> CyberLink Corp.) S3 DFX11_1; C:\WINDOWS\system32\drivers\dfx11_1x64.sys [28008 2015-08-31] (Power Technology -> Windows (R) Win 7 DDK provider) S3 DFX12; C:\WINDOWS\system32\drivers\dfx12x64.sys [39048 2015-11-14] (Power Technology -> Windows (R) Win 7 DDK provider) R3 DroidCam; C:\WINDOWS\System32\drivers\droidcam.sys [32240 2020-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Dev47Apps) R3 DroidCamVideo; C:\WINDOWS\System32\DriverStore\FileRepository\droidcamvideo.inf_amd64_47e18363cbf3dfe0\droidcamvideo.sys [33784 2021-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) R3 FXVAD; C:\WINDOWS\system32\drivers\fxvad.sys [324072 2021-09-29] (Microsoft Windows Hardware Compatibility Publisher -> FxSound LLC) R3 iriuna0; C:\WINDOWS\system32\drivers\iriuna0.sys [46976 2021-04-07] (Iriun Oy -> Windows (R) Win 7 DDK provider) R3 iriunvid; C:\WINDOWS\System32\DriverStore\FileRepository\iriunvid.inf_amd64_daa9f7b9ae89ea8c\iriunvid.sys [164976 2022-08-24] (Iriun Oy -> Windows (R) Win 7 DDK provider) R3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [331168 2025-04-10] (Microsoft Windows -> Microsoft Corporation) R3 RTL8023x64; C:\WINDOWS\System32\drivers\Rtnic64.sys [61656 2014-01-23] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20016 2025-04-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [605576 2025-04-10] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [100744 2025-04-10] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) ==================== Un mes (creado) (Lista blanca) ========= (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2025-04-10 19:15 - 2025-04-10 19:16 - 000031286 _____ C:\Users\57300\Desktop\FRST.txt 2025-04-10 19:13 - 2025-04-10 19:16 - 000000000 ____D C:\FRST 2025-04-10 19:10 - 2025-04-10 19:10 - 002404864 _____ (Farbar) C:\Users\57300\Desktop\FRST64.exe 2025-04-10 18:29 - 2025-04-10 18:33 - 000000001 _____ C:\Users\57300\cui 2025-04-10 18:27 - 2025-04-10 18:27 - 000000000 _RSHD C:\Users\57300\AppData\Roaming\pythonw 2025-04-10 18:27 - 2025-04-10 18:27 - 000000000 _RSHD C:\Users\57300\AppData\Roaming\Launcher 2025-04-10 18:27 - 2025-04-10 18:27 - 000000000 _RSHD C:\Users\57300\AppData\Roaming\ffplay 2025-04-10 18:26 - 2025-04-10 18:26 - 000000000 _RSHD C:\winsystem 2025-04-10 17:55 - 2025-04-10 17:55 - 000033408 _____ C:\Users\57300\Downloads\file.enc 2025-04-10 17:05 - 2025-04-10 19:11 - 019022768 _____ C:\Users\57300\Downloads\Gema.psd 2025-04-10 15:06 - 2025-04-10 15:06 - 000000000 ____D C:\inetpub 2025-04-10 10:53 - 2025-04-10 10:53 - 000513865 _____ C:\Users\57300\Downloads\Salma.mp4 2025-04-10 05:05 - 2025-04-10 05:05 - 1074629463 _____ C:\WINDOWS\MEMORY.DMP 2025-04-10 00:53 - 2025-04-10 00:53 - 000986108 _____ C:\WINDOWS\Minidump\041025-41109-01.dmp 2025-04-10 00:09 - 2025-04-10 00:09 - 000424332 _____ C:\Users\57300\Downloads\Cronograma _ S00771 CO_Meli Tour landing 2 (1).pdf 2025-04-10 00:08 - 2025-04-10 00:08 - 000424332 _____ C:\Users\57300\Downloads\Cronograma _ S00771 CO_Meli Tour landing 2.pdf 2025-04-09 16:55 - 2025-04-09 16:55 - 000352165 _____ C:\Users\57300\Downloads\LOGO TAKODA (2)-1.pdf 2025-04-09 16:51 - 2025-04-09 16:51 - 000022136 _____ C:\Users\57300\Downloads\WhatsApp Image 2025-04-09 at 4.32.22 PM.jpeg 2025-04-09 16:50 - 2025-04-09 16:50 - 000169878 _____ C:\Users\57300\Downloads\Formato de Cotizacion - YARAEXPRESS.pdf 2025-04-09 16:36 - 2025-04-09 16:36 - 000352165 _____ C:\Users\57300\Downloads\LOGO TAKODA (2).pdf 2025-04-09 14:08 - 2025-04-09 14:08 - 000064324 _____ C:\Users\57300\Downloads\1472118BE39B216814DBEAE64815C8AF_labels.pdf 2025-04-08 18:08 - 2025-04-08 18:08 - 000111973 _____ C:\Users\57300\Downloads\WhatsApp Ptt 2025-04-07 at 6.43.34 PM.ogg 2025-04-08 18:01 - 2025-04-08 18:01 - 000108690 _____ C:\Users\57300\Downloads\INFORME DE LITERATURA MENSUAL.pdf 2025-04-08 16:33 - 2025-04-08 16:33 - 000586010 _____ C:\Users\57300\Downloads\Intrusive.mp4 2025-04-08 14:02 - 2025-04-08 14:02 - 012512553 _____ C:\Users\57300\Downloads\Pelea.mp4 2025-04-08 13:55 - 2025-04-08 13:55 - 000000000 ___HD C:\$WinREAgent 2025-04-08 13:45 - 2025-04-08 13:45 - 012312923 _____ C:\Users\57300\Downloads\Coreogrpahy.mp4 2025-04-08 13:41 - 2025-04-08 13:41 - 018662280 _____ C:\Users\57300\Downloads\China USA.mp4 2025-04-08 13:32 - 2025-04-09 23:12 - 000000000 ____D C:\Program Files\Mozilla Firefox 2025-04-08 10:06 - 2025-04-08 10:06 - 003136525 _____ C:\Users\57300\Downloads\Marco Aurelio.mp4 2025-04-07 17:42 - 2025-04-07 17:42 - 000108606 _____ C:\Users\57300\Downloads\4C369A238F1064826CFA52E1190FC360_labels.pdf 2025-04-07 17:20 - 2025-04-07 17:20 - 002373445 _____ C:\Users\57300\Downloads\dany-suarez-3604933-escort-bogota-f5356e6c58fcc5b8ac0b.mp4 2025-04-07 16:57 - 2025-04-07 16:57 - 000090455 _____ C:\Users\57300\Downloads\D2C14F9F389953DFAC81C6A7D42E9F67_labels.pdf 2025-04-07 11:29 - 2025-04-07 11:29 - 000012436 _____ C:\Users\57300\Downloads\reporte_de_envios_20250407 (1).xlsx 2025-04-07 11:26 - 2025-04-07 11:26 - 000012436 _____ C:\Users\57300\Downloads\reporte_de_envios_20250407.xlsx 2025-04-06 19:50 - 2025-04-06 19:50 - 001067428 _____ C:\WINDOWS\Minidump\040625-62281-01.dmp 2025-04-06 19:20 - 2025-04-06 19:20 - 000535368 _____ C:\Users\57300\Downloads\Libro Funciona Como y Porque - Completo.pdf 2025-04-06 18:53 - 2025-04-06 18:53 - 000001993 _____ C:\Users\57300\Downloads\Plan_Bismarck_Mensual_Abril.pdf 2025-04-06 14:26 - 2025-04-06 14:26 - 000047994 _____ C:\Users\57300\Downloads\B7E1A5936456619ABEEDAE59C6AF9A57_labels.pdf 2025-04-06 11:27 - 2025-04-06 11:27 - 000134278 _____ C:\Users\57300\Downloads\Street Aleja Khalifa.jpeg 2025-04-06 11:18 - 2025-04-06 11:18 - 001401056 _____ C:\Users\57300\Downloads\Street Alja.mp4 2025-04-06 11:16 - 2025-04-06 11:16 - 001564087 _____ C:\Users\57300\Downloads\Mariana 1.mp4 2025-04-05 18:25 - 2025-04-05 18:25 - 001544885 _____ C:\Users\57300\Downloads\Exportafacil EMS Prop_Com_2025.pdf 2025-04-05 18:24 - 2025-04-05 18:24 - 000159206 _____ C:\Users\57300\Downloads\ZONAS INTERNACIONALES 4-72.pdf 2025-04-04 23:38 - 2025-04-04 23:38 - 007627128 _____ C:\Users\57300\Downloads\Dónde está el policía.mp4 2025-04-04 18:06 - 2025-04-04 18:06 - 000055003 _____ C:\Users\57300\Downloads\487167E29A13F1A3B9C8C4EA03FB0BCF_labels.pdf 2025-04-04 17:09 - 2025-04-04 17:09 - 001959336 _____ C:\Users\57300\Downloads\Mariana 2.mp4 2025-04-03 18:50 - 2025-04-03 18:50 - 010863263 _____ C:\Users\57300\Downloads\41d66a7f1d31208833e1bcb8762f1b7f.mp4 2025-04-03 17:43 - 2025-04-03 17:55 - 032649030 _____ C:\Users\57300\Downloads\Gaby.psd 2025-04-03 09:42 - 2025-04-03 09:42 - 000048108 _____ C:\Users\57300\Downloads\3323F3D517603826D695B5135B46F8D4_labels.pdf 2025-04-02 23:01 - 2025-04-02 23:01 - 004077705 _____ C:\Users\57300\Downloads\Paqueteria Prop_Com.pdf 2025-04-02 23:01 - 2025-04-02 23:01 - 001157368 _____ C:\Users\57300\Downloads\CorrNoPrioInternal_Cert_Tarifas2023.pdf 2025-04-02 23:01 - 2025-04-02 23:01 - 001144712 _____ C:\Users\57300\Downloads\CorreNoPrioInternal_Tarifas2023.pdf 2025-04-02 14:49 - 2025-04-02 14:49 - 000004810 _____ C:\Users\57300\Downloads\280x48.webp 2025-04-02 00:38 - 2025-04-02 00:38 - 013077574 _____ C:\Users\57300\Downloads\ssstwitter.com_1743502163510.mp4 2025-04-01 16:12 - 2025-04-01 16:12 - 000047472 _____ C:\Users\57300\Downloads\E92536C654798B2BB97247AA3D1305EB_labels.pdf 2025-04-01 14:15 - 2025-04-01 14:15 - 000105786 _____ C:\Users\57300\Downloads\F80D389BAC2CC9EECC4EFC9B9A2DF82B_labels.pdf 2025-04-01 14:15 - 2025-04-01 14:15 - 000075436 _____ C:\Users\57300\Downloads\05AA4511676E168A8EAB3FB4ED5DE513_labels.pdf 2025-04-01 09:46 - 2025-04-01 09:46 - 000076308 _____ C:\Users\57300\Downloads\81.pdf 2025-04-01 01:57 - 2025-04-01 01:57 - 104809734 _____ C:\Users\57300\Downloads\Jose Mora - Diccionario Filosofico.pdf 2025-03-31 09:57 - 2025-03-31 09:57 - 016028535 _____ C:\Users\57300\Downloads\VÍCTOS_GÓMEZ_PIN_Filosofía_Interrogaciones_que_a_Todos_Conciernen.pdf 2025-03-31 00:50 - 2025-03-31 00:50 - 004074332 _____ C:\Users\57300\Downloads\mano sofi.psd 2025-03-30 21:55 - 2025-03-30 21:55 - 002890378 _____ C:\Users\57300\Downloads\DODGE LLAVE.psd 2025-03-30 21:54 - 2025-03-30 21:54 - 002710552 _____ C:\Users\57300\Downloads\NISSAN LOGO LLAVE.psd 2025-03-30 21:47 - 2025-03-30 21:52 - 002531442 _____ C:\Users\57300\Downloads\CARKEY.psd 2025-03-30 21:37 - 2025-03-30 22:26 - 015137895 _____ C:\Users\57300\Downloads\LLAVEs.psd 2025-03-30 14:28 - 2025-03-30 14:28 - 000056300 _____ C:\Users\57300\Downloads\Sd17af13de85a456e9a7a791ffdee0727G.webp 2025-03-30 13:40 - 2025-03-30 13:40 - 019444597 _____ C:\Users\57300\Desktop\PLAN BISMARK.pdf 2025-03-30 03:00 - 2013-10-12 14:15 - 000962007 _____ C:\Users\57300\Desktop\FreeVector-Vintage-Cupid-And-Flowers.ai 2025-03-30 02:56 - 2013-06-09 09:20 - 000420908 _____ C:\Users\57300\Desktop\FreeVector-Cupids-Vector.ai 2025-03-30 02:53 - 2013-04-30 13:03 - 001988972 _____ C:\Users\57300\Desktop\FreeVector-God-Vector.ai 2025-03-29 13:50 - 2019-05-27 16:57 - 674215376 _____ C:\Users\57300\Downloads\Chernobyl - 1x01 [Mega Descargas].mkv 2025-03-29 13:48 - 2025-03-29 13:48 - 000334728 _____ C:\Users\57300\Downloads\SNCES.pdf 2025-03-29 11:05 - 2025-03-29 11:05 - 146739232 _____ C:\Users\57300\Downloads\Canales.rar 2025-03-27 01:20 - 2025-03-27 01:20 - 007708066 _____ C:\Users\57300\Downloads\e2454a09-fcdd-45c7-9c12-5bc586d1fdb0-h264-hd.mp4 2025-03-26 17:33 - 2025-03-26 17:33 - 001858324 _____ C:\Users\57300\Downloads\Wopu Col.mp4 2025-03-26 15:16 - 2025-03-26 15:16 - 000055692 _____ C:\Users\57300\Downloads\2CCE5015D4339BB4953F662933F0A0E9_labels.pdf 2025-03-25 19:34 - 2025-04-01 02:01 - 006670171 _____ C:\Users\57300\Desktop\Planner.pdf 2025-03-25 16:21 - 2025-03-25 16:23 - 000387744 _____ C:\Users\57300\Downloads\0157F66695A73D49E06E1EF5536241C6_labels.pdf 2025-03-25 16:21 - 2025-03-25 16:23 - 000234262 _____ C:\Users\57300\Downloads\122FDC9FF0B2597306EA8A3AD26CC406_labels.pdf 2025-03-24 21:52 - 2025-03-24 21:52 - 003456814 _____ C:\Users\57300\Downloads\Win.mp4 2025-03-24 15:35 - 2025-03-24 15:35 - 026424390 _____ C:\Users\57300\Downloads\WhatsApp Video 2025-03-24 at 1.17.09 PM.mp4 2025-03-24 13:12 - 2025-03-24 13:12 - 003418536 _____ C:\Users\57300\Downloads\kVxA9D0vBkfxL48lgTm_1100069167697_mp4_264_hd.mp4 2025-03-23 12:27 - 2025-03-23 12:27 - 000140967 _____ C:\Users\57300\Downloads\WhatsApp Image 2025-03-23 at 12.25.22 PM.jpeg 2025-03-23 01:24 - 2025-03-23 01:24 - 048684198 _____ C:\Users\57300\Downloads\Bogotá 2026-2.mp4 2025-03-22 14:25 - 2025-03-22 14:25 - 024259100 _____ C:\Users\57300\Downloads\Intro #758.zip 2025-03-22 14:23 - 2025-03-22 14:23 - 026576156 _____ C:\Users\57300\Downloads\Intro #759.zip 2025-03-22 03:26 - 2025-03-22 03:29 - 004651580 _____ C:\Users\57300\Desktop\Creative Title Animation2.mxf 2025-03-22 03:17 - 2025-03-22 03:19 - 003366972 _____ C:\Users\57300\Desktop\Creative Title Animation.mxf 2025-03-22 02:19 - 2025-03-22 02:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GenArts Sapphire OFX 2025-03-22 02:19 - 2025-03-22 02:19 - 000000000 ____D C:\Program Files (x86)\GenArts 2025-03-22 02:19 - 2010-02-04 07:58 - 000584376 _____ (Intel Corporation) C:\WINDOWS\system32\libiomp5md.dll 2025-03-22 02:19 - 2010-02-04 07:40 - 000575672 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libiomp5md.dll 2025-03-22 02:16 - 2020-05-18 13:12 - 000000000 ____D C:\Users\57300\Downloads\Sapphire OFX 6.10 2025-03-22 00:55 - 2024-03-06 20:36 - 000000000 ____D C:\Users\57300\Downloads\shinesfox.com_Boris_FX_Sapphire_Plug_ins_for_OFX_2024 2025-03-21 17:03 - 2025-03-21 17:03 - 000145056 _____ C:\Users\57300\Downloads\WhatsApp Image 2025-03-21 at 4.52.27 PM.jpeg 2025-03-21 02:00 - 2025-03-21 02:00 - 000814675 _____ C:\Users\57300\Downloads\WhatsApp Image 2025-03-21 at 2.00.02 AM.jpeg 2025-03-19 18:50 - 2025-03-19 18:50 - 000108758 _____ C:\Users\57300\Downloads\admision700153222498.pdf 2025-03-19 07:57 - 2025-03-19 07:57 - 000390890 _____ C:\Users\57300\Downloads\6tgr5akb2l4d1.jpeg 2025-03-17 21:03 - 2025-03-17 23:36 - 000901506 _____ C:\Users\57300\Desktop\7689862.ai 2025-03-17 21:01 - 2025-03-17 21:01 - 002281976 _____ C:\Users\57300\Downloads\flat-design-bogota-map-illustration.zip 2025-03-17 18:38 - 2025-03-17 18:38 - 006249735 _____ C:\Users\57300\Downloads\Manto de Turín.mp4 2025-03-17 11:36 - 2025-03-17 11:36 - 000351698 _____ C:\Users\57300\Downloads\WhatsApp Image 2025-03-17 at 11.36.03 AM.jpeg 2025-03-17 11:20 - 2025-03-17 11:21 - 000462577 _____ C:\Users\57300\Downloads\Dhoop Bodega YaraExpress.jpeg 2025-03-16 23:47 - 2025-03-16 23:47 - 153385098 _____ C:\Users\57300\Downloads\EsX-3.11[MegaDescargas-FabianLeyvaRodas].rmvb 2025-03-16 01:30 - 2025-03-16 01:30 - 000985004 _____ C:\WINDOWS\Minidump\031625-6843-01.dmp 2025-03-14 00:30 - 2025-03-14 00:30 - 023366306 _____ C:\Users\57300\Downloads\Freud-Amorrortu-1.pdf 2025-03-13 10:36 - 2025-03-13 10:36 - 000001574 _____ C:\Users\57300\Desktop\todos los archivos de informacion del usuario - Acceso directo (2).lnk 2025-03-12 19:10 - 2025-03-12 19:10 - 000146372 _____ C:\Users\57300\Downloads\Ac2fb5bc806dc42eaa4aade39de9d934eC.jpg_.webp 2025-03-12 19:10 - 2025-03-12 19:10 - 000087690 _____ C:\Users\57300\Downloads\Aec7040e412544f1c960ab9fced8e3589h.jpg_.webp 2025-03-12 10:23 - 2025-03-12 10:23 - 002241824 _____ C:\Users\57300\Downloads\600t16DOy24xuI2Pv0N_1100183556190_mp4_264_hd.mp4 2025-03-12 09:42 - 2025-03-12 09:42 - 034599708 _____ C:\Users\57300\Downloads\v1s5vp052745.mp4 2025-03-11 19:33 - 2025-03-11 19:33 - 003599668 _____ C:\Users\57300\Downloads\Las-guerras-siglo-XXI.pdf 2025-03-11 16:22 - 2025-03-11 16:22 - 005612026 _____ C:\Users\57300\Downloads\True.mp4 2025-03-11 09:47 - 2025-03-11 09:47 - 008498766 _____ C:\Users\57300\Downloads\3f598914-d1ad-4af2-9ba7-16154ce458c5-h264-hd.mp4 ==================== Un mes (modificado) ================== (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2025-04-10 19:15 - 2021-07-31 00:38 - 000000000 ____D C:\Users\57300\AppData\Local\Spotify 2025-04-10 19:11 - 2021-07-31 00:38 - 000000000 ____D C:\Users\57300\AppData\Roaming\Spotify 2025-04-10 19:09 - 2019-12-07 04:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2025-04-10 18:39 - 2023-03-22 01:47 - 001772866 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2025-04-10 18:39 - 2019-12-07 09:55 - 000788386 _____ C:\WINDOWS\system32\perfh00A.dat 2025-04-10 18:39 - 2019-12-07 09:55 - 000155774 _____ C:\WINDOWS\system32\perfc00A.dat 2025-04-10 18:39 - 2019-12-07 04:13 - 000000000 ____D C:\WINDOWS\INF 2025-04-10 18:35 - 2022-02-09 01:01 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2025-04-10 18:33 - 2021-07-31 01:47 - 000000000 ____D C:\Users\57300\AppData\Roaming\FxSound 2025-04-10 18:33 - 2021-07-31 00:00 - 000000000 ____D C:\ProgramData\NVIDIA 2025-04-10 18:32 - 2023-03-22 01:44 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2025-04-10 18:32 - 2021-09-21 14:28 - 000000000 ____D C:\ProgramData\AVG 2025-04-10 18:32 - 2019-12-07 04:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2025-04-10 18:29 - 2023-03-22 01:39 - 000000000 ____D C:\Users\57300 2025-04-10 18:28 - 2021-08-02 20:03 - 000000000 ____D C:\Users\57300\AppData\Local\CrashDumps 2025-04-10 17:51 - 2023-03-22 01:37 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2025-04-10 16:16 - 2023-03-22 01:44 - 000004216 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{73060A55-5D0C-4396-B5BA-98D8E3D453B2} 2025-04-10 15:56 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2025-04-10 15:49 - 2023-03-21 19:31 - 000000000 ____D C:\WINDOWS\SystemTemp 2025-04-10 15:49 - 2022-06-12 16:40 - 000002205 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2025-04-10 15:07 - 2024-05-23 09:10 - 000287592 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2025-04-10 15:06 - 2019-12-07 09:56 - 000000000 ____D C:\WINDOWS\system32\OpenSSH 2025-04-10 15:06 - 2019-12-07 04:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2025-04-10 15:06 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SystemResources 2025-04-10 15:06 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2025-04-10 15:06 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2025-04-10 15:06 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2025-04-10 14:18 - 2019-12-07 04:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2025-04-10 10:59 - 2021-08-02 19:02 - 000000000 ____D C:\Users\57300\dwhelper 2025-04-10 00:53 - 2023-11-20 10:30 - 000000000 ____D C:\WINDOWS\Minidump 2025-04-09 23:24 - 2021-07-31 01:46 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2025-04-09 23:12 - 2021-07-31 00:11 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2025-04-09 09:06 - 2023-03-22 01:44 - 000004254 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1629411047 2025-04-09 09:06 - 2021-08-19 17:10 - 000001386 _____ C:\Users\57300\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navegador Opera.lnk 2025-04-09 09:03 - 2023-10-24 14:44 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2025-04-09 09:03 - 2021-07-31 00:11 - 000001069 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2025-04-06 01:45 - 2023-03-22 01:44 - 000003708 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2025-04-06 01:45 - 2023-03-22 01:44 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2025-04-05 12:15 - 2023-03-22 01:44 - 000003968 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-979982421-863876996-3069389525-1001UA{4E3BB5F2-EB36-44E9-B689-5FA3AFA3A113} 2025-04-05 12:15 - 2023-03-22 01:44 - 000003904 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-979982421-863876996-3069389525-1001Core{76DB40A5-0253-4607-92AD-F4B883E5A324} 2025-04-05 11:30 - 2021-07-31 17:51 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2025-04-04 23:18 - 2025-02-06 09:16 - 000003564 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-979982421-863876996-3069389525-1001 2025-04-04 23:18 - 2023-03-22 01:44 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-979982421-863876996-3069389525-1001 2025-04-04 23:18 - 2023-03-22 01:44 - 000003368 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-979982421-863876996-3069389525-1001 2025-04-04 23:18 - 2023-03-22 01:39 - 000002413 _____ C:\Users\57300\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2025-03-30 19:34 - 2024-03-14 01:54 - 000003850 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn 2025-03-30 19:34 - 2024-03-14 01:54 - 000003408 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime 2025-03-30 19:34 - 2023-11-18 22:52 - 000001378 _____ C:\Users\57300\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk 2025-03-29 03:19 - 2024-06-28 09:51 - 000000000 ____D C:\WINDOWS\system32\compatrel 2025-03-29 03:19 - 2019-12-07 09:58 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2025-03-29 03:19 - 2019-12-07 04:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2025-03-29 03:19 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2025-03-29 03:19 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2025-03-29 03:19 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences 2025-03-29 03:19 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2025-03-29 03:19 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2025-03-29 03:19 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2025-03-29 03:19 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2025-03-29 03:19 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\ShellComponents 2025-03-29 03:19 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2025-03-29 02:21 - 2023-03-22 01:39 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2025-03-27 00:12 - 2024-03-28 20:27 - 000055064 _____ (Gen Digital Inc.) C:\WINDOWS\system32\icarus_rvrt.exe 2025-03-26 15:21 - 2025-02-28 10:13 - 006113090 _____ C:\Users\57300\Desktop\Planner.ai 2025-03-23 00:32 - 2024-10-24 18:16 - 000000000 ____D C:\Users\57300\AppData\Roaming\aTubeCatcher_10 2025-03-22 02:22 - 2022-03-27 15:25 - 000000002 _____ C:\Users\57300\AppData\Roaming\ExplorerFavorites.txt 2025-03-22 01:56 - 2023-11-02 00:50 - 000000000 ____D C:\ProgramData\GenArts 2025-03-22 01:36 - 2021-07-31 01:46 - 000008192 ___SH C:\DumpStack.log.tmp 2025-03-22 01:03 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2025-03-22 00:59 - 2023-11-02 00:51 - 000000000 ____D C:\ProgramData\Reprise 2025-03-20 17:17 - 2025-02-15 14:11 - 050340681 _____ C:\Users\57300\Downloads\ABUELOS EDICION.psd 2025-03-18 23:16 - 2021-07-31 00:02 - 000000000 ____D C:\Users\57300\AppData\Local\Packages 2025-03-18 23:16 - 2019-12-07 04:14 - 000000000 ___HD C:\Program Files\WindowsApps 2025-03-13 10:29 - 2021-09-03 10:32 - 000000000 ____D C:\Users\57300\AppData\Roaming\Microsoft\Windows Photo Viewer ==================== Archivos en la raíz de algunos directorios ======== 2023-11-09 13:54 - 2023-11-09 17:15 - 000000132 _____ () C:\Users\57300\AppData\Roaming\Adobe CS6-PNG-Format - Voreinstellungen 2021-07-31 11:34 - 2023-11-17 11:10 - 000000033 _____ () C:\Users\57300\AppData\Roaming\AdobeWLCMCache.dat 2022-03-27 15:25 - 2025-03-22 02:22 - 000000002 _____ () C:\Users\57300\AppData\Roaming\ExplorerFavorites.txt 2024-08-08 18:02 - 2024-08-08 18:02 - 000000015 _____ () C:\Users\57300\AppData\Roaming\obs-virtualcam.txt 2022-04-23 15:20 - 2022-04-23 15:20 - 000000132 _____ () C:\Users\57300\AppData\Roaming\Prefs. de filtro IllExport de Adobe CS6 2021-09-06 13:59 - 2023-11-10 01:18 - 000000132 _____ () C:\Users\57300\AppData\Roaming\Prefs. de formato PNG de Adobe CS6 2023-05-24 08:24 - 2023-05-24 08:24 - 000001456 _____ () C:\Users\57300\AppData\Local\Adobe Guardar para Web 13.0 Prefs 2022-02-13 19:45 - 2022-03-03 13:08 - 000016438 _____ () C:\Users\57300\AppData\Local\partner.bmp 2021-08-04 20:18 - 2021-08-04 20:18 - 000000017 _____ () C:\Users\57300\AppData\Local\resmon.resmoncfg ==================== SigCheck ============================ (No existe una corrección automática para los archivos que no pasan la verificación.) ==================== Final de FRST.txt ========================