Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 06.04.2024 Ejecutado por Paúl Lalvay Mejía (administrador) sobre MIRADA-DIGITAL (Dell Inc. Latitude 7480) (09-04-2024 09:08:48) Ejecutado desde C:\Users\Paúl Lalvay Mejía\Desktop\FRST64.exe Perfiles cargados: Paúl Lalvay Mejía & SQLTELEMETRY$SQLEXPRESS & MSSQL$SQLEXPRESS Plataforma: Microsoft Windows 10 Pro Versión 22H2 19045.4170 (X64) Idioma: Español (España, internacional) -> Español (México) Navegador predeterminado no detectado! Modo de Inicio: Normal ==================== Procesos (Lista blanca) ================= (Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe (ALPS ALPINE CO., LTD. -> ALPSALPINE CO., LTD.) C:\Windows\System32\DellTPad\ApntEx.exe (C:\Program Files (x86)\Common Files\Autodesk Shared\Network License Manager\lmgrd.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) [Archivo no firmado] C:\Program Files (x86)\Common Files\Autodesk Shared\Network License Manager\adskflex.exe (C:\Program Files (x86)\NetSupport\NetSupport School\client32.exe ->) (NetSupport Ltd -> NetSupport Ltd) C:\Program Files (x86)\NetSupport\NetSupport School\runplugin.exe <2> (C:\Program Files (x86)\NetSupport\NetSupport School\client32.exe ->) (NetSupport Ltd -> NetSupport Ltd) C:\Program Files (x86)\NetSupport\NetSupport School\Runplugin64.exe <2> (C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe (C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe (C:\Program Files\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe (C:\Program Files\Microsoft Office\root\Office16\WINWORD.EXE ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ai.exe (cmd.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Autodesk Shared\Network License Manager\lmgrd.exe (DellTPad\ApMsgFwd.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe (DellTPad\Apoint.exe ->) (ALPS ALPINE CO., LTD. -> ALPSALPINE CO., LTD.) C:\Windows\System32\DellTPad\ApMsgFwd.exe (DellTPad\Apoint.exe ->) (ALPS ALPINE CO., LTD. -> ALPSALPINE Co., Ltd.) C:\Windows\System32\DellTPad\hidfind.exe (DellTPad\Apoint.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> ALPSALPINE Co., Ltd.) C:\Windows\System32\DellTPad\ApRemote.exe (DellTPad\HidMonitorSvc.exe ->) (ALPS ALPINE CO.,LTD. -> ALPSALPINE Co., Ltd.) C:\Windows\System32\DellTPad\Apoint.exe (explorer.exe ->) (FLEXTECH INC. -> Flextech Inc.) C:\Users\Paúl Lalvay Mejía\AppData\Roaming\TeraBox\teraboxwebservice.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <40> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\WINWORD.EXE (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe (explorer.exe ->) (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIRWE.EXE (explorer.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Driver Booster\Pub\PubPlatform.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (ALPS ALPINE CO., LTD. -> ALPSALPINE Co., Ltd.) C:\Windows\System32\DellTPad\HidMonitorSvc.exe (services.exe ->) (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe (services.exe ->) (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe (services.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\14.0.0.10160\AdskLicensingService\AdskLicensingService.exe (services.exe ->) (DEVGURU CO LTD -> DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe (services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe (services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_c2c5b0e17a28a48f\esif_uf.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_3de4831720bb2934\RstMwService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_141eb88527011137\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_77369ead7ddd9683\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_77369ead7ddd9683\IntelCpHeciSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL16.SQLEXPRESS\MSSQL\Binn\sqlceip.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL16.SQLEXPRESS\MSSQL\Binn\sqlservr.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\NisSrv.exe (services.exe ->) (NetSupport Ltd -> NetSupport Ltd) C:\Program Files (x86)\NetSupport\NetSupport School\client32.exe <2> (services.exe ->) (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files\epson\EpsonCustomerResearchParticipation\EPCP.exe (services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe (services.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe (svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2413.1.0_x64__cv1g1gvanyjgm\WhatsApp.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileCoAuth.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Windows.Media.BackgroundPlayback.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe <3> ==================== Registro (Lista blanca) =================== (Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.) HKLM\...\Run: [RtHDVBg_PushButton] => "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /IM (Ningún archivo) HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [1236688 2020-12-04] (Waves Inc -> Waves Audio Ltd.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3476960 2022-09-27] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> ) HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.) HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1092304 2016-03-14] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [750680 2023-12-19] (Oracle America, Inc. -> Oracle Corporation) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restricción <==== ATENCIÓN HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center: Restricción <==== ATENCIÓN HKU\S-1-5-21-3362455666-1927825294-654507049-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-04] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3362455666-1927825294-654507049-1001\...\Run: [WarThunderLauncher] => "C:\Users\Paúl Lalvay Mejía\AppData\Local\WarThunder\launcher.exe" (Ningún archivo) HKU\S-1-5-21-3362455666-1927825294-654507049-1001\...\Run: [MicrosoftEdgeAutoLaunch_63163AC808CB26D53FB2F189581F4A47] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4063784 2024-04-04] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3362455666-1927825294-654507049-1001\...\Run: [TeraBoxWeb] => C:\Users\Paúl Lalvay Mejía\AppData\Roaming\TeraBox\TeraBoxWebService.exe [1139824 2024-01-23] (FLEXTECH INC. -> Flextech Inc.) HKU\S-1-5-21-3362455666-1927825294-654507049-1001\...\Run: [EPSDNMON] => C:\Program Files (x86)\EPSON Software\Download Navigator\EPSDNMON.EXE [350032 2022-07-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKU\S-1-5-21-3362455666-1927825294-654507049-1001\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIRWE.EXE [417776 2014-11-13] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKU\S-1-5-21-3362455666-1927825294-654507049-1001\...\Policies\Explorer: [] HKU\S-1-5-80-1985561900-798682989-2213159822-1904180398-3434236965\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-04] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-04] (Microsoft Corporation -> Microsoft Corporation) HKLM\...\Print\Monitors\EPSON L395 Series 64MonitorBE: C:\Windows\system32\E_YLMBRWE.DLL [187392 2018-06-14] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation) HKLM\...\Print\Monitors\EpsonNet Print Port: C:\Windows\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Archivo no firmado] HKLM\Software\Microsoft\Active Setup\Installed Components: [{28B89EEF-5107-0000-7102-CF3F3A09B77D}] -> msiexec /fus {28B89EEF-5107-0000-7102-CF3F3A09B77D} HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\123.0.6312.106\Installer\chrmstp.exe [2024-04-04] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\123.1.64.116\Installer\chrmstp.exe [2024-04-04] (Brave Software, Inc. -> Brave Software, Inc.) HKLM\Software\...\Authentication\Credential Providers: [{71C5A887-11E0-4c5a-9B9B-D4A074555692}] -> C:\Windows\system32\Client32Provider.dll [2020-02-11] (NetSupport Ltd -> NetSupport Ltd) HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN ==================== Tareas programadas (Lista blanca) ================= (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) Task: {86249A8D-D8D7-48F2-8067-A9E7FC461477} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.) Task: {4750C6D0-553C-436C-A24B-C8C96F361429} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3476960 2022-09-27] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {B932CBDD-3AFC-4A44-98B9-280415821F0B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.) Task: {4C4E79B7-2987-4394-92B8-6C1138DC9B59} - System32\Tasks\BlueStacksHelper_nxt => C:\Program Files\BlueStacks_nxt\BlueStacksHelper.exe [274912 2023-01-06] (Bluestack Systems, Inc -> BlueStack Systems, Inc.) Task: {6AD648DD-B3D7-4625-A835-D3635D77BA19} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{B963EA52-D272-4444-BD08-54E7C7285635} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2024-03-13] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {5C7FC2CF-1437-4182-9680-85937B8591D9} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{AB8C3B47-379E-4F8A-B2CC-8D1564D91B8C} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2024-03-13] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {A059AE77-9066-4F6D-A42D-1DEED8C11A89} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\11.3.0\Scheduler.exe [160744 2024-01-18] (IObit CO., LTD -> IObit) Task: {AB1CA353-7628-4BD1-B6AD-1BA92279731C} - System32\Tasks\Driver Booster SkipUAC (Paúl Lalvay Mejía) => C:\Program Files (x86)\IObit\Driver Booster\11.3.0\DriverBooster.exe [9045480 2024-02-27] (IObit CO., LTD -> IObit) Task: {E4ACFCCE-21FA-41A2-BFC3-947E2885A44F} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\11.3.0\AutoUpdate.exe [2525160 2024-02-27] (IObit CO., LTD -> IObit) Task: {C5F1A2ED-0953-4C39-AB36-6C8FF47CA212} - System32\Tasks\EPSON L395 Series Update {5F62C63B-6E91-4FA8-9D7C-3E2B816DDD7C} => C:\Windows\System32\spool\drivers\x64\3\E_YTSRWE.EXE [690536 2013-11-21] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) Task: {9DB090AA-7676-4345-987E-54F371482B03} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem125.0.6386.0{BEDE6A3F-6848-40AA-A4A5-DD0E2BE312FE} => C:\Program Files (x86)\Google\GoogleUpdater\125.0.6386.0\updater.exe [4774176 2024-03-29] (Google LLC -> Google LLC) Task: {AD5492B2-5378-4EB0-A9C1-497ED5E1EA66} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452976 2024-03-29] (Microsoft Corporation -> Microsoft Corporation) Task: {E4468CAC-059A-43B5-BE13-CF9468B1834F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452976 2024-03-29] (Microsoft Corporation -> Microsoft Corporation) Task: {A075F85D-8FE7-4E00-846E-1A88310AA467} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309696 2024-04-05] (Microsoft Corporation -> Microsoft Corporation) Task: {0A6ECD2F-603B-4596-8B5E-37F1899A04C2} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309696 2024-04-05] (Microsoft Corporation -> Microsoft Corporation) Task: {1B35C3E4-684E-4115-ACBA-237E15D76EC7} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [168488 2024-04-05] (Microsoft Corporation -> Microsoft Corporation) Task: {FC87CBBC-EA18-4FB9-89BA-1A8E1DF6B0C3} - System32\Tasks\Microsoft\Windows\Autodesk\Autodesk => C:\Windows\system32\wscript.exe [170496 2023-10-20] (Microsoft Windows -> Microsoft Corporation) -> "%CommonProgramFiles(x86)%\Autodesk Shared\Network License Manager\Service.vbs" "%CommonProgramFiles(x86)%\Autodesk Shared\Network License Manager\Service.bat" Task: {D8B70090-A5F4-4530-903E-D1DBC1CAEC59} - System32\Tasks\Microsoft\Windows\Chkdsk\Microsoft.GroupPokgroundPlayback => C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe [58864 2022-06-24] (Microsoft Corporation -> Microsoft Corporation) -> C:\Program Files (x86)\CharScroll\AdmamSkssion\/U "C:\Program Files (x86)\CharScroll\AdmamSkssion\wipaoShellQSsres.dll" Task: {D9E81DA0-4BB8-4FBD-BFA1-E4EC1D32E607} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\MpCmdRun.exe [1650024 2024-03-13] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {01A6677B-3DF0-4F03-8682-CBF65164F3BE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\MpCmdRun.exe [1650024 2024-03-13] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {6FB18DF8-FE03-41E6-8345-62EB1937F968} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\MpCmdRun.exe [1650024 2024-03-13] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {46B30740-0437-4080-85FB-270A3902CC33} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671648 2024-03-06] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (la entrada de datos tiene 6 más caracteres). Task: {381178FF-B991-48CE-A9FA-8ACCA882C14D} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-3362455666-1927825294-654507049-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671648 2024-03-06] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (la entrada de datos tiene 6 más caracteres). Task: {7FC7FF8C-A8D4-4CA4-A00D-A013E27BC640} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34720 2024-03-06] (Mozilla Corporation -> Mozilla Foundation) Task: {7E7102E0-EB4A-4694-953F-D9638057A8DD} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4207120 2024-04-04] (Microsoft Corporation -> Microsoft Corporation) Task: {F45EFF33-CF93-4A08-AF8A-1CFE54645168} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3362455666-1927825294-654507049-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4207120 2024-04-04] (Microsoft Corporation -> Microsoft Corporation) Task: {01C72A65-378C-4C87-90FC-8ADAC8AAE49A} - System32\Tasks\VideoStudioUpdater2020 => C:\Program Files\Corel\Corel VideoStudio 2020\VSNotification.exe [669320 2020-06-18] (Corel Corporation -> ) (Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.) Task: C:\Windows\Tasks\EPSON L395 Series Update {5F62C63B-6E91-4FA8-9D7C-3E2B816DDD7C}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSRWE.EXE:/EXE:{5F62C63B-6E91-4FA8-9D7C-3E2B816DDD7C} /F:UpdateWORKGROUP\MIRADA-DIGITAL$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi ==================== Internet (Lista blanca) ==================== (Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.) Hosts: Hay más de una entrada en Hosts. Consulte la sección Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 201.159.221.11 201.159.221.68 Tcpip\..\Interfaces\{17a5b31b-5408-4d67-8a31-0cf93fc58d51}: [DhcpNameServer] 201.159.221.11 201.159.221.68 Tcpip\..\Interfaces\{17a5b31b-5408-4d67-8a31-0cf93fc58d51}\55544535D235563796F6E65637: [DhcpNameServer] 201.159.221.11 201.159.221.68 Tcpip\..\Interfaces\{17a5b31b-5408-4d67-8a31-0cf93fc58d51}\75966496D255544535D20527F6665637F6275637: [DhcpNameServer] 201.159.221.11 201.159.221.68 Tcpip\..\Interfaces\{17a5b31b-5408-4d67-8a31-0cf93fc58d51}\75966496D255544535D20527F6665637F6275637: [DhcpDomain] wlan-aulas-uets.edu.ec Tcpip\..\Interfaces\{17a5b31b-5408-4d67-8a31-0cf93fc58d51}\75966496D255544535D234F6C6963756F6: [DhcpNameServer] 201.159.221.11 201.159.221.68 Tcpip\..\Interfaces\{17a5b31b-5408-4d67-8a31-0cf93fc58d51}\85472796D6F54456B4F685472756D6: [DhcpNameServer] 200.25.144.1 200.63.212.110 192.168.1.1 Tcpip\..\Interfaces\{37dddd6e-edb4-47c6-813a-92ad2268bd8e}: [DhcpNameServer] 201.159.221.11 201.159.221.68 Tcpip\..\Interfaces\{37dddd6e-edb4-47c6-813a-92ad2268bd8e}: [DhcpDomain] profesores-itss.edu.ec Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Paúl Lalvay Mejía\AppData\Local\Microsoft\Edge\User Data\Default [2024-04-09] Edge Extension: (Documentos de Google sin conexión) - C:\Users\Paúl Lalvay Mejía\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-02] Edge Extension: (Edge relevant text changes) - C:\Users\Paúl Lalvay Mejía\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24] Edge HKU\S-1-5-21-3362455666-1927825294-654507049-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [dpadflhmiohjfhhaehelneimpllfbpcg] - C:\Users\Paúl Lalvay Mejía\AppData\Roaming\TeraBox\terabox_ext_chrome.crx [2023-10-16] FireFox: ======== FF DefaultProfile: gl71m3gi.default FF ProfilePath: C:\Users\Paúl Lalvay Mejía\AppData\Roaming\Mozilla\Firefox\Profiles\gl71m3gi.default [2023-08-02] FF ProfilePath: C:\Users\Paúl Lalvay Mejía\AppData\Roaming\Mozilla\Firefox\Profiles\x2io3ybk.default-release [2024-04-07] FF Plugin: @java.com/DTPlugin,version=11.401.2 -> C:\Program Files\Java\jre-1.8\bin\dtplugin\npDeployJava1.dll [2023-12-19] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.401.2 -> C:\Program Files\Java\jre-1.8\bin\plugin2\npjp2.dll [2023-12-19] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-03-30] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [Ningún archivo] FF Plugin-x32: @java.com/DTPlugin,version=11.401.2 -> C:\Program Files (x86)\Java\jre-1.8\bin\dtplugin\npDeployJava1.dll [2023-12-19] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.401.2 -> C:\Program Files (x86)\Java\jre-1.8\bin\plugin2\npjp2.dll [2023-12-19] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR DefaultProfile: Profile 1 CHR Profile: C:\Users\Paúl Lalvay Mejía\AppData\Local\Google\Chrome\User Data\Default [2024-04-07] CHR Extension: (Adobe Acrobat: herramientas para convertir, editar y firmar PDFs) - C:\Users\Paúl Lalvay Mejía\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-02-21] CHR Extension: (Documentos de Google sin conexión) - C:\Users\Paúl Lalvay Mejía\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-01-13] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Paúl Lalvay Mejía\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-01-13] CHR Profile: C:\Users\Paúl Lalvay Mejía\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-04-07] CHR Profile: C:\Users\Paúl Lalvay Mejía\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-04-09] CHR Extension: (Acortador de URL para Google Chrome ™) - C:\Users\Paúl Lalvay Mejía\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aacgdipdhmilcpcpbdcloifondogabco [2023-01-13] CHR Extension: (Google Traductor) - C:\Users\Paúl Lalvay Mejía\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-08-10] CHR Extension: (Speak It) - C:\Users\Paúl Lalvay Mejía\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\amcnjejmdfilapnnfgnhnidhkififadk [2023-12-11] CHR Extension: (Bitmoji) - C:\Users\Paúl Lalvay Mejía\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bfgdeiadkckfbkeigkoncpdieiiefpig [2023-01-13] CHR Extension: (Documentos de Google sin conexión) - C:\Users\Paúl Lalvay Mejía\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-02] CHR Extension: (Shazam: identifica música desde tu navegador) - C:\Users\Paúl Lalvay Mejía\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mmioliijnhnoblpgimnlajmefafdfilb [2024-01-05] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Paúl Lalvay Mejía\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-01-13] CHR Profile: C:\Users\Paúl Lalvay Mejía\AppData\Local\Google\Chrome\User Data\System Profile [2024-04-09] CHR HKU\S-1-5-21-3362455666-1927825294-654507049-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dpadflhmiohjfhhaehelneimpllfbpcg] - C:\Users\Paúl Lalvay Mejía\AppData\Roaming\TeraBox\terabox_ext_chrome.crx [2023-10-16] CHR HKU\S-1-5-21-3362455666-1927825294-654507049-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] Brave: ======= BRA Profile: C:\Users\Paúl Lalvay Mejía\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2024-03-16] BRA Extension: (Adobe Acrobat: herramientas para convertir, editar y firmar PDFs) - C:\Users\Paúl Lalvay Mejía\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-03-13] BRA Profile: C:\Users\Paúl Lalvay Mejía\AppData\Local\BraveSoftware\Brave-Browser\User Data\Profile 1 [2024-03-16] BRA Extension: (Acortador de URL para Google Chrome ™) - C:\Users\Paúl Lalvay Mejía\AppData\Local\BraveSoftware\Brave-Browser\User Data\Profile 1\Extensions\aacgdipdhmilcpcpbdcloifondogabco [2024-03-13] BRA Extension: (Traductor de Google) - C:\Users\Paúl Lalvay Mejía\AppData\Local\BraveSoftware\Brave-Browser\User Data\Profile 1\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2024-03-13] BRA Extension: (Speak It) - C:\Users\Paúl Lalvay Mejía\AppData\Local\BraveSoftware\Brave-Browser\User Data\Profile 1\Extensions\amcnjejmdfilapnnfgnhnidhkififadk [2024-03-13] BRA Extension: (Bitmoji) - C:\Users\Paúl Lalvay Mejía\AppData\Local\BraveSoftware\Brave-Browser\User Data\Profile 1\Extensions\bfgdeiadkckfbkeigkoncpdieiiefpig [2024-03-13] BRA Extension: (Adobe Acrobat: herramientas para convertir, editar y firmar PDFs) - C:\Users\Paúl Lalvay Mejía\AppData\Local\BraveSoftware\Brave-Browser\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-03-13] BRA Extension: (Shazam: identifica música desde tu navegador) - C:\Users\Paúl Lalvay Mejía\AppData\Local\BraveSoftware\Brave-Browser\User Data\Profile 1\Extensions\mmioliijnhnoblpgimnlajmefafdfilb [2024-03-13] BRA Profile: C:\Users\Paúl Lalvay Mejía\AppData\Local\BraveSoftware\Brave-Browser\User Data\Profile 2 [2024-03-16] BRA Extension: (Adobe Acrobat: herramientas para convertir, editar y firmar PDFs) - C:\Users\Paúl Lalvay Mejía\AppData\Local\BraveSoftware\Brave-Browser\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-03-13] BRA Extension: (Brave Ad Block Updater (Brave Ad Block First Party Filters (plaintext))) - C:\Users\Paúl Lalvay Mejía\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2024-03-13] BRA Extension: (Brave Local Data Files Updater) - C:\Users\Paúl Lalvay Mejía\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2024-03-15] BRA Extension: (Brave NTP background images) - C:\Users\Paúl Lalvay Mejía\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2024-03-13] BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\Paúl Lalvay Mejía\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2024-03-15] BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\Paúl Lalvay Mejía\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2024-03-15] BRA Extension: (Brave Ad Block Updater (EasyList Spanish (plaintext))) - C:\Users\Paúl Lalvay Mejía\AppData\Local\BraveSoftware\Brave-Browser\User Data\fejmaeodjeekfldnbegjagemjgnmhfof [2024-03-15] BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\Paúl Lalvay Mejía\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2024-03-13] BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\Paúl Lalvay Mejía\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2024-03-13] BRA Extension: (Brave Ad Block Updater (Brave Ad Block Updater (plaintext))) - C:\Users\Paúl Lalvay Mejía\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2024-03-16] BRA Extension: (Brave Ad Block Updater (Adguard Spanish/Portuguese (plaintext))) - C:\Users\Paúl Lalvay Mejía\AppData\Local\BraveSoftware\Brave-Browser\User Data\meimhmgfbckapkbbbdaoefgnbppmkodp [2024-03-15] BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\Paúl Lalvay Mejía\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2024-03-13] BRA Extension: (Brave NTP sponsored images) - C:\Users\Paúl Lalvay Mejía\AppData\Local\BraveSoftware\Brave-Browser\User Data\oencalbobamnpldcfkjdpkhhmghfapbn [2024-03-15] ==================== Servicios (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.) R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [17084704 2023-11-14] (Autodesk, Inc. -> Autodesk) S2 AdskNLM; C:\Program Files (x86)\Common Files\Autodesk Shared\Network License Manager\lmgrd.exe [1201488 2021-02-24] (Flexera Software LLC -> Flexera) S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3866592 2022-09-27] (Adobe Inc. -> Adobe Systems, Incorporated) S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3702240 2022-09-27] (Adobe Inc. -> Adobe Systems, Incorporated) R2 ApHidMonitorService; C:\Windows\system32\DellTPad\HidMonitorSvc.exe [894848 2021-05-25] (ALPS ALPINE CO., LTD. -> ALPSALPINE Co., Ltd.) S3 Autodesk Access Service Host; C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe [13247264 2024-02-16] (Autodesk, Inc. -> Autodesk, Inc.) R2 AzureAttestService; C:\Program Files\Microsoft\AzureAttestService\AzureAttestService.dll [152312 2019-08-20] (Microsoft Windows -> Microsoft Corporation) S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2024-03-13] (Brave Software, Inc. -> BraveSoftware Inc.) S3 BraveElevationService; C:\Program Files\BraveSoftware\Brave-Browser\Application\123.1.64.116\elevation_service.exe [2671128 2024-04-03] (Brave Software, Inc. -> Brave Software, Inc.) S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2024-03-13] (Brave Software, Inc. -> BraveSoftware Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14221312 2024-03-29] (Microsoft Corporation -> Microsoft Corporation) R2 Client32; C:\Program Files (x86)\NetSupport\NetSupport School\client32.exe [111664 2020-02-11] (NetSupport Ltd -> NetSupport Ltd) R2 EpsonCustomerResearchParticipation; C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe [678328 2018-06-11] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [206304 2020-10-02] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncHelper.exe [3512224 2024-04-04] (Microsoft Corporation -> Microsoft Corporation) S2 GoogleUpdaterInternalService125.0.6386.0; C:\Program Files (x86)\Google\GoogleUpdater\125.0.6386.0\updater.exe [4774176 2024-03-29] (Google LLC -> Google LLC) S2 GoogleUpdaterService125.0.6386.0; C:\Program Files (x86)\Google\GoogleUpdater\125.0.6386.0\updater.exe [4774176 2024-03-29] (Google LLC -> Google LLC) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [234968 2024-03-07] (HP Inc. -> HP Inc.) R2 MSSQL$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL16.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [722848 2022-10-08] (Microsoft Corporation -> Microsoft Corporation) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.055.0317.0002\OneDriveUpdaterService.exe [3852712 2024-04-04] (Microsoft Corporation -> Microsoft Corporation) R2 PSI_SVC_2; C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc) R2 PSI_SVC_2_x64; C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522184 2024-03-15] (Microsoft Windows Publisher -> Microsoft Corporation) S4 SQLAgent$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL16.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [726952 2022-10-08] (Microsoft Corporation -> Microsoft Corporation) R2 SQLTELEMETRY$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL16.SQLEXPRESS\MSSQL\Binn\sqlceip.exe [300968 2022-10-08] (Microsoft Corporation -> Microsoft Corporation) R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-12-02] (DEVGURU CO LTD -> DEVGURU Co., LTD.) S3 TeraBoxUtility; C:\Users\Paúl Lalvay Mejía\AppData\Roaming\TeraBox\YunUtilityService.exe [113776 2024-01-23] (FLEXTECH INC. -> Flextech Inc.) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\NisSrv.exe [3191272 2024-03-13] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\MsMpEng.exe [133688 2024-03-13] (Microsoft Windows Publisher -> Microsoft Corporation) S2 RtkAudioService; "C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe" [X] ===================== Controladores (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) R3 ApHidfiltrService; C:\Windows\System32\drivers\ApHidfiltr.sys [371312 2021-05-25] (ALPS ALPINE CO.,LTD. -> ALPSALPINE Co., Ltd.) R2 BlueStacksDrv_nxt; C:\Program Files\BlueStacks_nxt\BstkDrv_nxt.sys [322304 2023-01-06] (Bluestack Systems, Inc -> Bluestack System Inc.) S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [110488 2014-12-02] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr)) R3 e1dexpress; C:\Windows\System32\DriverStore\FileRepository\e1d.inf_amd64_7e337195b92a35b6\e1d.sys [611936 2024-01-30] (Intel Corporation -> Intel Corporation) S3 ew_usbccgpfilter; C:\Windows\System32\drivers\ew_usbccgpfilter.sys [18816 2023-04-19] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) R3 MpKsl7852c32a; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{606D3E95-AB9A-4488-B70D-B21B0EDB98DC}\MpKslDrv.sys [301336 2024-04-08] (Microsoft Windows -> Microsoft Corporation) R3 nskbfltr; C:\Windows\system32\drivers\nskbfltr.sys [33408 2017-05-26] (NetSupport Ltd -> NetSupport Ltd) R1 NSWebFilterDriver; C:\Windows\system32\DRIVERS\NSWebFilterDriver.sys [86832 2017-08-09] (NetSupport Ltd -> NetSupport) S4 RsFx0700; C:\Windows\System32\DRIVERS\RsFx0700.sys [298392 2022-10-08] (Microsoft Corporation -> Microsoft Corporation) S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [206104 2014-12-02] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr)) R0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [20928 2024-03-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [603416 2024-03-13] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105752 2024-03-13] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) ==================== Un mes (creado) (Lista blanca) ========= (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2024-04-09 09:08 - 2024-04-09 09:09 - 000041170 _____ C:\Users\Paúl Lalvay Mejía\Desktop\FRST.txt 2024-04-09 09:08 - 2024-04-09 09:09 - 000000000 ____D C:\FRST 2024-04-09 09:07 - 2024-04-09 09:07 - 002394112 _____ (Farbar) C:\Users\Paúl Lalvay Mejía\Desktop\FRST64.exe 2024-04-08 15:37 - 2024-04-08 15:37 - 000845406 _____ C:\Users\Paúl Lalvay Mejía\Downloads\Carchi-3F2-Mejoramiento-Ap4.rar 2024-04-08 15:37 - 2024-04-08 15:37 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\Downloads\Carchi-3F2-Mejoramiento-Ap4 2024-04-08 15:30 - 2024-04-08 15:30 - 001086311 _____ C:\Users\Paúl Lalvay Mejía\Downloads\vzfycx_3F2ArguelloMejoramientoAp4.rar 2024-04-08 15:30 - 2024-04-08 15:30 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\Downloads\vzfycx_3F2ArguelloMejoramientoAp4 2024-04-08 15:10 - 2024-04-08 15:10 - 001196289 _____ C:\Users\Paúl Lalvay Mejía\Downloads\jtdflk_3F1CuestaMejoramientoAp4.rar 2024-04-08 15:10 - 2024-04-08 15:10 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\Downloads\jtdflk_3F1CuestaMejoramientoAp4 2024-04-08 13:32 - 2024-04-08 13:32 - 002589624 _____ (Malwarebytes) C:\Users\Paúl Lalvay Mejía\Downloads\MBSetup.exe 2024-04-08 13:24 - 2024-04-08 15:50 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\AppData\Local\Avast Software 2024-04-08 13:21 - 2024-04-08 13:21 - 000000000 ____D C:\Windows\system32\o2 2024-04-08 13:19 - 2024-04-08 13:19 - 000888600 _____ (Google LLC) C:\Users\Public\Documents\gcapi.dll 2024-04-08 13:18 - 2024-04-08 15:50 - 000000000 ____D C:\ProgramData\Avast Software 2024-04-08 13:18 - 2024-04-08 13:18 - 000264088 _____ (AVAST Software) C:\Users\Paúl Lalvay Mejía\Downloads\instalación_en_línea_de_avast_free_antivirus.exe 2024-04-08 11:47 - 2024-04-08 11:47 - 001510844 _____ C:\Users\Paúl Lalvay Mejía\Downloads\3F3-Morocho-Mejoramiento-Ap4.zip 2024-04-08 11:19 - 2024-04-08 11:19 - 000514290 _____ C:\Users\Paúl Lalvay Mejía\Downloads\3F1-Guaman-Act1-Ap5.rar 2024-04-08 11:19 - 2024-04-08 11:19 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\Downloads\3F1-Guaman-Act1-Ap5 2024-04-08 11:14 - 2024-04-08 11:14 - 000545542 _____ C:\Users\Paúl Lalvay Mejía\Downloads\3F1-Fuentes-Act1-Ap5.rar 2024-04-08 11:14 - 2024-04-08 11:14 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\Downloads\3F1-Fuentes-Act1-Ap5 2024-04-08 10:55 - 2024-04-08 10:55 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\Downloads\3F1-Flores-Act1-Ap5 2024-04-08 10:54 - 2024-04-08 10:55 - 000635433 _____ C:\Users\Paúl Lalvay Mejía\Downloads\3F1-Flores-Act1-Ap5.rar 2024-04-08 09:12 - 2024-04-08 09:12 - 000764586 _____ C:\Users\Paúl Lalvay Mejía\Downloads\3F1-Farfan-Act1-Ap5.zip 2024-04-08 09:12 - 2024-04-08 09:12 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\Downloads\3F1-Farfan-Act1-Ap5 2024-04-08 09:00 - 2024-04-08 09:00 - 000358600 _____ C:\Users\Paúl Lalvay Mejía\Downloads\3F1-Cuesta-Act1-Ap5.rar 2024-04-08 09:00 - 2024-04-08 09:00 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\Downloads\3F1-Cuesta-Act1-Ap5 2024-04-08 08:44 - 2024-04-08 08:44 - 000346200 _____ C:\Users\Paúl Lalvay Mejía\Downloads\3F1-Carvajal-Act1-Ap5.rar 2024-04-08 08:44 - 2024-04-08 08:44 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\Downloads\3F1-Carvajal-Act1-Ap5 2024-04-08 08:36 - 2024-04-08 08:36 - 000658784 _____ C:\Users\Paúl Lalvay Mejía\Downloads\3F1-Carrion-Act1-Ap5.rar 2024-04-08 08:36 - 2024-04-08 08:36 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\Downloads\3F1-Carrion-Act1-Ap5 2024-04-08 08:32 - 2024-04-08 08:32 - 000398382 _____ C:\Users\Paúl Lalvay Mejía\Downloads\3F1-Campoverde-Act1-Ap5.rar 2024-04-08 08:32 - 2024-04-08 08:32 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\Downloads\3F1-Campoverde-Act1-Ap5 2024-04-08 08:24 - 2024-04-08 08:24 - 000656857 _____ C:\Users\Paúl Lalvay Mejía\Downloads\3F1-CALDERÓN-Act1-Ap5.rar 2024-04-08 08:24 - 2024-04-08 08:24 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\Downloads\3F1-CALDERÓN-Act1-Ap5 2024-04-08 08:20 - 2024-04-08 08:20 - 000626393 _____ C:\Users\Paúl Lalvay Mejía\Downloads\3F1-Berrezueta-Act1-Ap5.rar 2024-04-08 08:20 - 2024-04-08 08:20 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\Downloads\3F1-Berrezueta-Act1-Ap5 2024-04-08 08:12 - 2024-04-08 08:12 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\Downloads\3F1-Baculima-Act1-Ap5 2024-04-08 08:11 - 2024-04-08 08:11 - 000673685 _____ C:\Users\Paúl Lalvay Mejía\Downloads\3F1-Baculima-Act1-Ap5.rar 2024-04-08 00:50 - 2024-04-08 00:50 - 000768520 _____ C:\Users\Paúl Lalvay Mejía\Downloads\3F1-Avila-Act1-Ap5.rar 2024-04-08 00:50 - 2024-04-08 00:50 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\Downloads\3F1-Avila-Act1-Ap5 2024-04-08 00:47 - 2024-04-08 00:47 - 000785870 _____ C:\Users\Paúl Lalvay Mejía\Downloads\3f1-Arias-Act1-Ap5.rar 2024-04-08 00:47 - 2024-04-08 00:47 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\Downloads\3f1-Arias-Act1-Ap5 2024-04-08 00:40 - 2024-04-08 00:40 - 000527657 _____ C:\Users\Paúl Lalvay Mejía\Downloads\3F1-Andrade-Act1-Ap5.rar 2024-04-08 00:40 - 2024-04-08 00:40 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\Downloads\3F1-Andrade-Act1-Ap5 2024-04-08 00:34 - 2024-04-08 00:34 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\Downloads\3F1-Alvarez-Act1-Ap5 2024-04-08 00:33 - 2024-04-08 00:33 - 000409108 _____ C:\Users\Paúl Lalvay Mejía\Downloads\3F1-Alvarez-Act1-Ap5.rar 2024-04-07 23:17 - 2024-04-07 23:17 - 003072455 _____ C:\Users\Paúl Lalvay Mejía\Downloads\Mejoramiento 4to Apote.pdf 2024-04-07 20:07 - 2024-04-07 20:07 - 000451977 _____ C:\Users\Paúl Lalvay Mejía\Downloads\UT1 Parcial 4_Mejora.pdf 2024-04-07 14:48 - 2024-04-07 14:56 - 000000000 ___HD C:\ProgramData\God 2024-04-07 14:47 - 2024-04-07 14:47 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\AppData\Roaming\public visqa 2024-04-07 14:43 - 2024-04-08 12:44 - 000000000 ____D C:\ProgramData\FLEXnet 2024-04-07 13:13 - 2024-04-07 13:13 - 000000000 ____D C:\Program Files\Common Files\Autodesk 2024-04-07 13:05 - 2024-04-08 12:38 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\Downloads\Autodesk Inventor Professional 2025 (x64) En_Ru 2024-04-06 23:49 - 2024-04-06 23:49 - 002881824 _____ (Autodesk, Inc.) C:\Windows\system32\styleman.cpl 2024-04-06 23:49 - 2024-04-06 23:49 - 002881824 _____ (Autodesk, Inc.) C:\Windows\system32\plotman.cpl 2024-04-06 22:13 - 2024-04-06 22:13 - 000000000 ____D C:\Program Files\Common Files\Macrovision Shared 2024-04-05 15:01 - 2024-04-05 15:01 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2024-04-05 07:06 - 2024-04-05 07:06 - 000357641 _____ C:\Users\Paúl Lalvay Mejía\Downloads\UT2 Parcial 5-Insumo1b (2).pdf 2024-04-05 07:04 - 2024-04-05 07:04 - 000357641 _____ C:\Users\Paúl Lalvay Mejía\Downloads\UT2 Parcial 5-Insumo1b (1).pdf 2024-04-03 15:36 - 2024-04-03 15:36 - 002530425 _____ C:\Users\Paúl Lalvay Mejía\Downloads\Dibujo_Tecnico_Metal_1_BASICO_1.pdf 2024-04-03 13:30 - 2024-04-03 13:30 - 000198897 _____ C:\Users\Paúl Lalvay Mejía\Downloads\Aporte 5. Insumo 1. Acotación.pdf 2024-04-03 10:12 - 2024-04-03 10:12 - 000276928 _____ C:\Users\Paúl Lalvay Mejía\Downloads\UT2 Parcial 5-Insumo1a.pdf 2024-04-02 09:05 - 2024-04-02 09:05 - 000326211 _____ C:\Users\Paúl Lalvay Mejía\Downloads\UT2 Parcial 5-Insumo1c.pdf 2024-03-29 21:55 - 2024-03-29 21:55 - 011144385 _____ C:\Users\Paúl Lalvay Mejía\Downloads\[100] Jennifer Lopez x Varios - Jenny From The Block [Cantaro Power M!x Coro].m4a 2024-03-29 21:54 - 2024-03-29 21:54 - 027339086 _____ C:\Users\Paúl Lalvay Mejía\Downloads\[080] Andre Silva - Jurame (Short) [#NEEY PRIVATE].aif 2024-03-29 21:53 - 2024-03-29 21:53 - 013618093 _____ C:\Users\Paúl Lalvay Mejía\Downloads\[096 - 108] Tchakabum - Danca Do Maozinha [Plus VIP Coro].m4a 2024-03-29 21:53 - 2024-03-29 21:53 - 013618093 _____ C:\Users\Paúl Lalvay Mejía\Downloads\[096 - 108] Tchakabum - Danca Do Maozinha [Plus VIP Coro] (1).m4a 2024-03-29 12:35 - 2024-03-29 12:35 - 000182414 _____ C:\Users\Paúl Lalvay Mejía\Downloads\respaldo (1).pdf 2024-03-29 12:33 - 2024-03-29 12:33 - 000046532 _____ C:\Users\Paúl Lalvay Mejía\Downloads\respaldo.pdf 2024-03-26 14:11 - 2024-03-26 14:11 - 000357641 _____ C:\Users\Paúl Lalvay Mejía\Downloads\UT2 Parcial 5-Insumo1b.pdf 2024-03-26 14:10 - 2024-03-26 14:10 - 000336376 _____ C:\Users\Paúl Lalvay Mejía\Downloads\UT2 Parcial 5-Insumo1_Mejora.docx.pdf 2024-03-25 10:35 - 2024-03-25 10:35 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\AppData\Local\Edraw 2024-03-25 10:34 - 2024-03-25 11:33 - 000000000 ____D C:\Program Files (x86)\Edrawsoft 2024-03-25 10:28 - 2024-03-25 10:35 - 000000000 ____D C:\Users\Public\Documents\Edrawsoft 2024-03-20 21:53 - 2024-03-20 21:53 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\Documents\Plantillas personalizadas de Office 2024-03-19 15:14 - 2024-03-19 15:16 - 000076433 _____ C:\Users\Paúl Lalvay Mejía\Documents\Ejercicio 01.dwg 2024-03-19 15:14 - 2024-03-19 15:14 - 000050358 _____ C:\Users\Paúl Lalvay Mejía\Documents\Ejercicio 01.bak 2024-03-17 11:43 - 2024-03-17 11:43 - 000003376 _____ C:\Windows\system32\Tasks\Driver Booster SkipUAC (Paúl Lalvay Mejía) 2024-03-17 11:43 - 2024-03-17 11:43 - 000003240 _____ C:\Windows\system32\Tasks\Driver Booster Scheduler 2024-03-17 11:43 - 2024-03-17 11:43 - 000003226 _____ C:\Windows\system32\Tasks\Driver Booster Update 2024-03-17 11:43 - 2024-03-17 11:43 - 000002388 _____ C:\Users\Public\Desktop\Driver Booster 11.lnk 2024-03-17 11:43 - 2024-03-17 11:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 11 2024-03-16 19:56 - 2024-03-16 19:56 - 011911821 _____ C:\Users\Paúl Lalvay Mejía\Downloads\FILAMENT RECYCLER UPDATE - 6509504.zip 2024-03-16 19:56 - 2024-03-16 19:56 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\Downloads\FILAMENT RECYCLER UPDATE - 6509504 2024-03-15 21:42 - 2024-03-15 21:42 - 000019530 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json 2024-03-15 21:41 - 2024-03-15 21:41 - 000019530 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json 2024-03-15 21:33 - 2024-03-15 21:33 - 000000000 ___HD C:\$WinREAgent 2024-03-15 10:57 - 2024-03-15 10:57 - 000299887 _____ C:\Users\Paúl Lalvay Mejía\Downloads\Sumativa_Aporte4_MCM_1ros_23-24_DTA(1).docx (1).pdf 2024-03-13 11:46 - 2024-03-13 11:46 - 000058870 _____ C:\Users\Paúl Lalvay Mejía\Downloads\1A1_Vega_AP4_Ins2_Mejora.dwg 2024-03-13 11:41 - 2024-03-13 11:41 - 000081772 _____ C:\Users\Paúl Lalvay Mejía\Downloads\1A1 Pozo_Ap4_Ins2_Mejora.dwg 2024-03-13 10:11 - 2024-03-13 10:11 - 000002531 _____ C:\Users\Paúl Lalvay Mejía\Desktop\Perfil 1 - Brave.lnk 2024-03-13 10:10 - 2024-04-04 10:27 - 000002362 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk 2024-03-13 10:10 - 2024-04-04 10:27 - 000002321 _____ C:\Users\Public\Desktop\Brave.lnk 2024-03-13 10:10 - 2024-03-13 10:10 - 000000000 ____D C:\ProgramData\BraveSoftware 2024-03-13 10:10 - 2024-03-13 10:10 - 000000000 ____D C:\Program Files\BraveSoftware 2024-03-13 10:07 - 2024-04-08 12:52 - 000003950 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineUA{AB8C3B47-379E-4F8A-B2CC-8D1564D91B8C} 2024-03-13 10:07 - 2024-04-08 12:52 - 000003826 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineCore{B963EA52-D272-4444-BD08-54E7C7285635} 2024-03-13 10:07 - 2024-03-13 10:10 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\AppData\Local\BraveSoftware 2024-03-13 10:07 - 2024-03-13 10:07 - 000000000 ____D C:\Program Files (x86)\BraveSoftware ==================== Un mes (modificado) ================== (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2024-04-09 09:02 - 2023-01-15 01:03 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\AppData\Roaming\Microsoft\Excel 2024-04-09 09:02 - 2023-01-13 11:40 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\AppData\Roaming\Microsoft\Word 2024-04-09 08:58 - 2023-01-13 11:40 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\AppData\Roaming\Microsoft\UProof 2024-04-09 08:58 - 2023-01-13 02:30 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\AppData\Roaming\Microsoft\Spelling 2024-04-09 08:57 - 2022-09-07 22:14 - 000000000 ____D C:\Windows\SystemTemp 2024-04-09 08:49 - 2023-01-13 02:27 - 000000000 ___RD C:\Users\Paúl Lalvay Mejía\OneDrive 2024-04-08 15:58 - 2023-01-13 02:23 - 002109808 _____ C:\Windows\system32\PerfStringBackup.INI 2024-04-08 15:58 - 2019-12-07 09:55 - 000906654 _____ C:\Windows\system32\perfh00A.dat 2024-04-08 15:58 - 2019-12-07 09:55 - 000203078 _____ C:\Windows\system32\perfc00A.dat 2024-04-08 15:58 - 2019-12-07 04:13 - 000000000 ____D C:\Windows\INF 2024-04-08 15:51 - 2019-12-07 04:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-04-08 15:50 - 2023-01-13 03:04 - 000000000 ____D C:\Intel 2024-04-08 15:50 - 2023-01-13 02:14 - 000008192 ___SH C:\DumpStack.log.tmp 2024-04-08 15:50 - 2023-01-13 02:14 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2024-04-08 15:50 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\ServiceState 2024-04-08 15:50 - 2019-12-07 04:03 - 000786432 _____ C:\Windows\system32\config\BBI 2024-04-08 15:48 - 2019-12-07 04:14 - 000000000 ___HD C:\Windows\ELAMBKUP 2024-04-08 14:52 - 2023-01-13 02:14 - 000000000 ____D C:\Windows\system32\SleepStudy 2024-04-08 13:54 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\AppReadiness 2024-04-08 13:12 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\SysWOW64\es-MX 2024-04-08 13:12 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\es-MX 2024-04-08 13:12 - 2019-12-07 04:03 - 000000000 ____D C:\Windows\CbsTemp 2024-04-08 13:11 - 2019-12-07 09:58 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2024-04-08 13:11 - 2019-12-07 09:58 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2024-04-08 13:11 - 2019-12-07 09:58 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2024-04-08 13:11 - 2019-12-07 09:55 - 000000000 ____D C:\Windows\SysWOW64\WCN 2024-04-08 13:11 - 2019-12-07 09:55 - 000000000 ____D C:\Windows\system32\WCN 2024-04-08 13:11 - 2019-12-07 04:14 - 000000000 ___SD C:\Windows\SysWOW64\F12 2024-04-08 13:11 - 2019-12-07 04:14 - 000000000 ___SD C:\Windows\system32\F12 2024-04-08 13:11 - 2019-12-07 04:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2024-04-08 13:11 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\SysWOW64\oobe 2024-04-08 13:11 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform 2024-04-08 13:11 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\oobe 2024-04-08 13:11 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\migwiz 2024-04-08 13:11 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\PolicyDefinitions 2024-04-08 13:11 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\IME 2024-04-08 13:11 - 2019-12-07 04:14 - 000000000 ____D C:\Program Files\Windows Defender 2024-04-08 13:11 - 2019-12-07 04:14 - 000000000 ____D C:\Program Files\Common Files\System 2024-04-08 13:11 - 2019-12-07 04:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2024-04-08 13:11 - 2019-12-07 04:03 - 000000000 ____D C:\Windows\servicing 2024-04-08 13:09 - 2023-01-13 03:27 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\AppData\Local\PlaceholderTileLogoFolder 2024-04-08 13:09 - 2023-01-13 02:24 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\AppData\Local\Packages 2024-04-08 13:09 - 2019-12-07 04:14 - 000000000 ___HD C:\Program Files\WindowsApps 2024-04-08 12:51 - 2023-01-13 02:21 - 000000000 ____D C:\Users\Paúl Lalvay Mejía 2024-04-08 12:44 - 2023-01-13 02:43 - 000000000 ____D C:\ProgramData\IObit 2024-04-08 12:38 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\registration 2024-04-08 10:41 - 2023-01-13 02:42 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\AppData\Local\D3DSCache 2024-04-08 07:55 - 2023-10-30 13:48 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\Documents\Compras Ebay 2024-04-07 17:34 - 2023-01-13 10:44 - 000000000 ____D C:\ProgramData\boost_interprocess 2024-04-07 17:33 - 2024-03-06 11:53 - 000000000 ____D C:\Program Files\Mozilla Firefox 2024-04-07 15:49 - 2023-01-18 07:42 - 000002554 _____ C:\Windows\SysWOW64\pubfreeware.ini 2024-04-07 15:39 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\LiveKernelReports 2024-04-07 15:30 - 2023-09-14 20:45 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\AppData\Roaming\UI Launcher 2024-04-07 15:15 - 2023-08-02 15:23 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2024-04-07 15:15 - 2023-01-13 10:33 - 000000000 ____D C:\Program Files\Common Files\Autodesk Shared 2024-04-07 15:15 - 2023-01-13 10:29 - 000000000 ____D C:\ProgramData\Autodesk 2024-04-07 15:11 - 2023-01-13 10:29 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\AppData\Roaming\Autodesk 2024-04-07 15:11 - 2023-01-13 10:29 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\AppData\Local\Autodesk 2024-04-07 14:38 - 2023-01-13 10:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk 2024-04-07 13:45 - 2023-01-13 02:14 - 000542296 _____ C:\Windows\system32\FNTCACHE.DAT 2024-04-07 13:43 - 2023-01-13 10:30 - 000000000 ____D C:\Program Files\Autodesk 2024-04-07 13:40 - 2023-01-13 19:51 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\AppData\Local\CrashDumps 2024-04-07 13:34 - 2023-02-22 07:06 - 000000000 ____D C:\Windows\Minidump 2024-04-07 13:22 - 2023-01-13 10:50 - 000000000 ____D C:\Users\Public\Documents\Autodesk 2024-04-07 13:16 - 2023-01-13 10:31 - 000000000 ____D C:\ProgramData\Package Cache 2024-04-07 13:13 - 2023-01-13 10:31 - 000000000 ____D C:\Program Files\dotnet 2024-04-07 13:09 - 2023-03-07 09:08 - 000000000 ____D C:\Autodesk 2024-04-06 23:26 - 2023-01-13 10:52 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\Documents\Inventor 2024-04-06 21:52 - 2023-01-17 09:57 - 000002278 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2024-04-06 21:52 - 2023-01-13 02:15 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2024-04-05 15:01 - 2023-01-13 11:32 - 000000000 ____D C:\Program Files\Microsoft Office 2024-04-05 15:01 - 2019-12-07 04:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2024-04-05 14:55 - 2023-01-23 03:34 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task 2024-04-05 14:55 - 2023-01-23 03:33 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk 2024-04-05 14:55 - 2023-01-23 03:33 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk 2024-04-05 04:14 - 2023-02-09 15:28 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2024-04-04 19:29 - 2023-02-21 11:14 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\Documents\Impresiones 3D 2024-04-04 16:57 - 2023-01-13 03:16 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2024-04-04 16:57 - 2023-01-13 03:16 - 000002204 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2024-04-04 16:56 - 2023-02-09 15:28 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2024-04-04 16:56 - 2023-02-09 15:28 - 000002166 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2024-04-04 16:56 - 2023-01-13 03:08 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3362455666-1927825294-654507049-1001 2024-04-03 07:32 - 2023-01-13 02:14 - 000003636 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2024-04-03 07:32 - 2023-01-13 02:14 - 000003512 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2024-04-01 09:28 - 2023-01-14 12:10 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2024-03-29 12:34 - 2023-04-30 21:48 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\Documents\Certificados 2024-03-29 11:36 - 2023-10-07 21:07 - 000000000 ____D C:\Program Files\RUXIM 2024-03-20 14:00 - 2023-08-02 15:23 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2024-03-20 13:56 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\NDF 2024-03-17 20:56 - 2023-01-30 20:45 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\AppData\Roaming\exe 2024-03-17 11:43 - 2023-01-13 02:43 - 000000000 ____D C:\ProgramData\ProductData 2024-03-16 01:55 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2024-03-16 01:55 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\SystemResources 2024-03-16 01:55 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\Dism 2024-03-16 01:55 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\ShellExperiences 2024-03-16 01:55 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\bcastdvr 2024-03-15 21:57 - 2023-01-14 10:09 - 000000000 ____D C:\Windows\system32\MRT 2024-03-15 21:54 - 2023-01-14 10:09 - 190470136 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2024-03-15 21:41 - 2023-01-13 02:17 - 003017216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2024-03-15 18:24 - 2023-01-15 11:56 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\AppData\Roaming\com.adobe.dunamis 2024-03-13 21:23 - 2023-01-13 02:14 - 000000000 ____D C:\Windows\system32\Drivers\wd 2024-03-13 13:27 - 2023-02-01 07:42 - 000000000 ____D C:\Users\Paúl Lalvay Mejía\AppData\Roaming\Microsoft\PowerPoint ==================== Archivos en la raíz de algunos directorios ======== 2023-11-03 19:06 - 2023-11-03 19:09 - 000523264 _____ () C:\Users\Paúl Lalvay Mejía\AppData\Local\SageThumbs.db3 ==================== SigCheck ============================ (No existe una corrección automática para los archivos que no pasan la verificación.) ==================== Final de FRST.txt ========================