Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 10-01-2022 01 Ejecutado por Lucia (administrador) sobre LUCIA-HP (Hewlett-Packard HP Pavilion dv6 Notebook PC) (13-01-2022 14:48:26) Ejecutado desde C:\Users\Lucia\Desktop Perfiles cargados: Lucia Plataforma: Microsoft Windows 10 Home Versión 20H2 19042.1415 (X64) Idioma: Español (España, internacional) Navegador predeterminado: Chrome Modo de Inicio: Normal ==================== Procesos (Lista blanca) ================= (Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\BridgeCommunication.exe <2> (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\DiagsCap.exe (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\NetworkCap.exe (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCopyAccelerator.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe ==================== Registro (Lista blanca) =================== (Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.) HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1425408 2013-08-02] (IDT, Inc.) [Archivo no firmado] HKLM\...\Run: [BTMTrayAgent] => C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [10372368 2011-07-12] (Intel Corporation - Mobile Wireless Group -> Intel Corporation) HKLM\...\Run: [HotKeysCmds] => "C:\WINDOWS\system32\hkcmd.exe" (Ningún archivo) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3954352 2016-04-28] (Synaptics Incorporated -> Synaptics Incorporated) HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2011-04-15] (Renesas Electronics Corporation -> Renesas Electronics Corporation) HKLM-x32\...\Run: [HPQuickWebProxy] => C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [169528 2011-10-08] (Hewlett-Packard Company -> Hewlett-Packard Company) HKLM-x32\...\Run: [HPOSD] => C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [379960 2011-08-19] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) HKLM-x32\...\Run: [HP CoolSense] => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey (Ningún archivo) HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [578944 2012-03-05] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [8806688 2022-01-02] (Dropbox, Inc -> Dropbox, Inc.) HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 0 HKU\S-1-5-21-2068952038-3349948466-1940529711-1001\...\Run: [LightScribe Control Panel] => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2736128 2011-06-20] (Hewlett-Packard Company) [Archivo no firmado] HKU\S-1-5-21-2068952038-3349948466-1940529711-1001\...\Run: [HP Deskjet 3520 series (NET)] => C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.) HKU\S-1-5-21-2068952038-3349948466-1940529711-1001\...\Run: [BingSvc] => C:\Users\Lucia\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2016-01-31] (Microsoft Corporation -> © 2015 Microsoft Corporation) HKU\S-1-5-21-2068952038-3349948466-1940529711-1001\...\Run: [VDownloader] => C:\Program Files\VDownloader\Vdownloader4.exe [13983232 2017-10-26] (Vitzo) [Archivo no firmado] HKU\S-1-5-21-2068952038-3349948466-1940529711-1001\...\Run: [HP5B6FAB (HP Deskjet 3520 series)] => C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.) HKU\S-1-5-21-2068952038-3349948466-1940529711-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [114017640 2021-08-10] (Skype Software Sarl -> Skype Technologies S.A.) HKU\S-1-5-21-2068952038-3349948466-1940529711-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35373696 2021-12-07] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-2068952038-3349948466-1940529711-1001\...\Policies\system: [DisableLockWorkstation] 0 HKU\S-1-5-21-2068952038-3349948466-1940529711-1001\...\Policies\system: [DisableChangePassword] 0 HKU\S-1-5-21-2068952038-3349948466-1940529711-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\LATIER~1.SCR [10638336 2013-09-22] () [Archivo no firmado] HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [109288 2018-10-12] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\HP B011 Status Monitor: C:\WINDOWS\system32\hpinkstsB011LM.dll [331664 2012-06-13] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 3520 series): C:\WINDOWS\system32\HPDiscoPMB011.dll [741480 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\...\Print\Monitors\LIDIL hpzlllhn: C:\WINDOWS\system32\hpzlllhn.dll [48640 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company) HKLM\Software\Microsoft\Active Setup\Installed Components: [OpenVPN_UserSetup] -> reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /f HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\97.0.4692.71\Installer\chrmstp.exe [2022-01-13] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] -> Startup: C:\Users\Lucia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Enviar a OneNote.lnk [2020-03-16] ShortcutTarget: Enviar a OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) BootExecute: autocheck autochk * bootdelete Policies: C:\ProgramData\NTUSER.pol: Restricción <==== ATENCIÓN ==================== Tareas programadas (Lista blanca) ============ (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) Task: {04697B4D-9AD9-4515-9EC9-7ADB85241291} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22797704 2021-12-28] (Microsoft Corporation -> Microsoft Corporation) Task: {04C0B370-1419-4C06-84A3-8801FD9BB83B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.) Task: {0A991FBC-9367-4839-94ED-A80FBE3BA6FB} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe -pscn 0 (Ningún archivo) Task: {0DF7BCBA-EEC6-42BF-A955-6CC9BD8D20A5} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery (Ningún archivo) Task: {107EFBAC-5152-4D7D-9C35-2BB25FD9A9FC} - System32\Tasks\HPCustParticipation HP Deskjet 3520 series => C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPCustPartic.exe [4119656 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.) Task: {1120D916-A3DB-4F4A-A16C-6A88B0B0E773} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe /StartRecording (Ningún archivo) Task: {16F1AED6-1CF7-48A9-9A86-85C8F7B15E75} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22797704 2021-12-28] (Microsoft Corporation -> Microsoft Corporation) Task: {26AAEF79-9677-4BD0-A36E-C031CC840739} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1} Task: {26F5E9F9-3BCE-4F05-9C85-4BB37948265B} - System32\Tasks\{020601B1-4989-458D-9B3E-0ED5BA5813B9} => C:\Program Files (x86)\Ares\Ares.exe (Ningún archivo) Task: {28E9A23A-453F-4AEC-ACE8-1ED97A89F35B} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe /OCURActivate (Ningún archivo) Task: {31E495E6-A3A4-46DB-B3FE-6EE0FD053050} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe (Ningún archivo) Task: {3E5881BF-BF98-467F-B840-A6D1E411AF4F} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe -crl -hms -pscn 15 (Ningún archivo) Task: {40CE83E8-15BD-47F1-912E-844E307F693A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-12-07] (Piriform Software Ltd -> Piriform) Task: {412570F4-36F9-456D-9D29-C31576503657} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe /DeviceScanR6 (Ningún archivo) Task: {46D7CE7F-A01C-4476-AE35-AECC606C6583} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0) (Ningún archivo) Task: {478D1EE4-6DA8-4B12-9318-9C34433B1A98} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Lucia\Desktop\Para limpiar\esetonlinescanner.exe LOGON (Ningún archivo) Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB} Task: {48EFA1FA-F11E-41DF-981C-F145C28FFA30} - System32\Tasks\CCleanerSkipUAC - Lucia => C:\Program Files\CCleaner\CCleaner.exe [29442688 2021-12-07] (Piriform Software Ltd -> Piriform Software Ltd) Task: {49621A53-72B3-4374-96C6-889D9ECFA52E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-28] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {4A82E82A-7157-40F0-8B7E-039F01B6EA0B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-01] (Google Inc -> Google Inc.) Task: {4A9F105F-A1DC-4137-ABA3-56A5EB9A16FF} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316} Task: {53E8BB73-B297-44BD-AD36-810B4EF1DC47} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0) (Ningún archivo) Task: {5528F22C-2470-4715-ACAE-E274EF6898C7} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E} Task: {55C7A977-A577-4AF4-99DC-541C4BD78346} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -SqlLiteRecoveryTask (Ningún archivo) Task: {59C102F5-EE84-46C0-AC82-D064D73111BC} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe -PvrSchedule (Ningún archivo) Task: {5A3BAF13-54D6-4099-9505-271FDEBC4D7E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe /send (Ningún archivo) Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A} Task: {66710E16-CD00-4F71-9597-673F97DE9C17} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61} Task: {6BCE6362-4506-44A8-AFB4-8A54206317BE} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe /DoReindexSearchRoot (Ningún archivo) Task: {6F394181-CFD1-4903-B3FA-69FA523EB51F} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe /RestartRecording (Ningún archivo) Task: {6F9A1F0B-2045-498D-93CD-24D5188B4AE8} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -MediaCenterRecoveryTask (Ningún archivo) Task: {7B319D15-B6E0-4D92-BF7E-433D59B8EC2E} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe $(Arg0) (Ningún archivo) Task: {82BE8022-BF67-4C65-B043-DF2A3B773F41} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-28] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {86DAF0F1-B075-4959-9501-3FDA5FCA7D08} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -PvrRecoveryTask (Ningún archivo) Task: {88140C8D-44F1-4856-8259-BE47068F2A23} - System32\Tasks\{C635425E-F9F7-4B20-89C9-F91920B41AA2} => C:\Windows\system32\pcalua.exe -a C:\Users\Lucia\Downloads\Peter-J.-Roach----English-Phonetics-and-Phonology---A-Practical-Course-(Ebook-and-CD).exe -d C:\Users\Lucia\Downloads Task: {8B59E016-6A42-4CBC-91FC-9DBA83A25786} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-28] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {8D15191F-CA9B-4525-98FC-13ECA412A4B2} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /PBDADiscovery (Ningún archivo) Task: {8D79B617-A4CD-4C7B-8712-5C87906C3626} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1144496 2021-12-14] (HP Inc. -> HP Inc.) Task: {91AB053D-198E-4FC9-9D88-94FB1B724749} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoActivateWindowsSearch (Ningún archivo) Task: {92A300A0-0EC9-48EE-B92F-0213ECE6F6DD} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe /DRMInit (Ningún archivo) Task: {93AC8B49-0668-4F00-A18C-5F8F2C89D097} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138584 2021-12-28] (Microsoft Corporation -> Microsoft Corporation) Task: {9DE730C2-18FE-4DF6-8630-DFD8E91354DC} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Ningún archivo <==== ATENCIÓN Task: {A13A938E-A024-41A0-A576-98B756B47B2F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-28] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {A1401E03-E6A7-4A2B-A749-0B61A82B6BAC} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe /DoConfigureInternetTimeService (Ningún archivo) Task: {A178F64A-4D42-407F-ABC1-04A3CECE303B} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Ningún archivo <==== ATENCIÓN Task: {A2786550-96ED-418F-A561-BBEF79AF33CB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8388528 2021-12-28] (Microsoft Corporation -> Microsoft Corporation) Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {B26C94AF-3F3D-48DD-B299-85FABDBFFE1F} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery (Ningún archivo) Task: {B43071E7-B7C6-4D19-99D1-3335FB6DDFEC} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0) (Ningún archivo) Task: {B9CAE239-5C27-4BE6-8633-C62FEEE921BC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /f (Ningún archivo) Task: {D0A75C08-56AA-4E76-A964-93C6040FEFCF} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-16] (Dropbox, Inc -> Dropbox, Inc.) Task: {DC93353E-BBDB-4D9C-8971-46598F09D122} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-16] (Dropbox, Inc -> Dropbox, Inc.) Task: {E06B778F-728E-4BFB-BA98-76BE8A719114} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8388528 2021-12-28] (Microsoft Corporation -> Microsoft Corporation) Task: {E118816D-9855-45E3-AE6C-3D32D0F3E11D} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [862 2019-04-30] () [Archivo no firmado] Task: {E2CFED0C-72BD-4DCE-AF43-8FDF36937799} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969} Task: {E36346F8-C0AB-4C4F-B075-723C5E1C8D7F} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -ObjectStoreRecoveryTask (Ningún archivo) Task: {E50AC058-5A94-43BD-9EDE-EF80277D4233} - no ruta de acceso de archivo Task: {E70EB751-4AD5-419C-A023-3D3B1E3004C8} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} Task: {E8720663-32DE-42E3-9FCE-EB6768D47FB2} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Lucia\Desktop\Para limpiar\esetonlinescanner.exe SCHED (Ningún archivo) Task: {F2A855BF-854F-488D-97A1-18BE8F42189C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-01] (Google Inc -> Google Inc.) Task: {F6EB1B7A-B45A-41B4-BC29-6600D426BF1C} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138584 2021-12-28] (Microsoft Corporation -> Microsoft Corporation) Task: {FA03CADC-D7E7-40EB-8D2A-D541B62C0CFD} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0) (Ningún archivo) Task: {FCA17D01-1F10-40AB-8CDC-612501FF9506} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0) (Ningún archivo) (Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (Lista blanca) ==================== (Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.) Tcpip\Parameters: [DhcpNameServer] 80.58.61.250 80.58.61.254 Tcpip\..\Interfaces\{af553d94-4440-49ad-9b94-6973ed1a45e3}: [DhcpNameServer] 80.58.61.250 80.58.61.254 Tcpip\..\Interfaces\{dd732970-d199-42db-ae4f-7368ba543891}: [DhcpNameServer] 212.166.132.110 212.166.132.104 Tcpip\..\Interfaces\{e04ff302-7ec3-440e-9889-7218f8e66dc8}: [DhcpNameServer] 212.166.132.110 212.166.132.104 Edge: ======= Edge Extension: (Sin Nombre) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [no encontrado] Edge Extension: (Sin Nombre) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [no encontrado] Edge Extension: (Sin Nombre) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [no encontrado] Edge Extension: (Sin Nombre) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [no encontrado] Edge DefaultProfile: Default Edge Profile: C:\Users\Lucia\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-07] FireFox: ======== FF DefaultProfile: s9r8iqv7.default FF ProfilePath: C:\Users\Lucia\AppData\Roaming\Mozilla\Firefox\Profiles\s9r8iqv7.default [2022-01-07] FF Homepage: Mozilla\Firefox\Profiles\s9r8iqv7.default -> hxxps://links.malwarebytes.com/link/restorebrowser?lic=trial&product=MBAM-C FF SearchPlugin: C:\Users\Lucia\AppData\Roaming\Mozilla\Firefox\Profiles\s9r8iqv7.default\searchplugins\bing-lavasoft-ff59.xml [2018-05-23] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-12-28] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll [Ningún archivo] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-12-28] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @mozilla.zeniko.ch/PDFlite_Browser_Plugin -> C:\Program Files (x86)\PDFlite\npPdfViewer.dll [Ningún archivo] FF Plugin-x32: @Nero.com/KM -> C:\Program Files (x86)\Common Files\Nero\BrowserPlugin\npBrowserPlugin.dll [2012-08-10] (Nero AG -> Nero AG) FF Plugin-x32: @videolan.org/vlc,version=3.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Ningún archivo] FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Ningún archivo] FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Ningún archivo] FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Ningún archivo] FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Ningún archivo] FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Ningún archivo] FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-2068952038-3349948466-1940529711-1001: @mozilla.zeniko.ch/PDFlite_Browser_Plugin -> C:\Program Files (x86)\PDFlite\npPdfViewer.dll [Ningún archivo] Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default [2022-01-13] CHR HomePage: Default -> hxxps://www.google.com/ CHR StartupUrls: Default -> "hxxp://www.google.es/" CHR Extension: (Presentaciones) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2022-01-07] CHR Extension: (Safe Torrent Scanner) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2022-01-07] CHR Extension: (Documentos) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13] CHR Extension: (Moonlit Reflection) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\apakhamomlpjegjclmgimiapigoeoglb [2021-02-26] CHR Extension: (Google Drive) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-26] CHR Extension: (Kaspersky Protection) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\blbkdnmdcafmfhinpmnlhhddbepgkeaa [2014-08-11] CHR Extension: (YouTube) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-27] CHR Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-01-13] CHR Extension: (Convertio) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\eppjkefeiehhflmgkhdooajgbkkegpcl [2020-03-31] CHR Extension: (Hojas de cálculo) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2022-01-07] CHR Extension: (Documentos de Google sin conexión) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-29] CHR Extension: (AdBlock: el mejor bloqueador de anuncios) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-01-07] CHR Extension: (Hola Free VPN Proxy Unblocker - Best VPN) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2021-06-10] CHR Extension: (Kindle Cloud Reader) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdipabjmbhpdkjaihfjoikhjjeneebd [2016-02-03] CHR Extension: (HP Network Check Launcher) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkfpchpiljkaemlpmpebnglgkomamfeo [2021-09-29] CHR Extension: (Web Safety) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfhcmdonhekjhfbjmeacdjbhlfgpjabp [2021-09-29] CHR Extension: (AD&POP Block) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\mknlngfeicgfpljigaaeohppjdiaalid [2022-01-13] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30] CHR Extension: (Gmail) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-26] CHR Extension: (Fuck Cookies) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pngdnkbboiadbedpgcfggkcbpiochkfg [2017-04-12] CHR Profile: C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-01-07] CHR Profile: C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-01-07] CHR Extension: (Presentaciones) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-12-18] CHR Extension: (Documentos) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2018-12-18] CHR Extension: (Google Drive) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-12-18] CHR Extension: (Kaspersky Protection) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blbkdnmdcafmfhinpmnlhhddbepgkeaa [2018-12-18] CHR Extension: (YouTube) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-12-18] CHR Extension: (Hojas de cálculo) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-12-18] CHR Extension: (Documentos de Google sin conexión) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-12-19] CHR Extension: (HP Network Check Launcher) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jkfpchpiljkaemlpmpebnglgkomamfeo [2018-12-18] CHR Extension: (Skype) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2018-12-18] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-12-18] CHR Extension: (Gmail) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-12-18] CHR Extension: (Chrome Media Router) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-18] CHR Profile: C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\System Profile [2022-01-07] CHR HKLM\...\Chrome\Extension: [blbkdnmdcafmfhinpmnlhhddbepgkeaa] - hxxps://chrome.google.com/webstore/detail/blbkdnmdcafmfhinpmnlhhddbepgkeaa CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb] CHR HKLM-x32\...\Chrome\Extension: [blbkdnmdcafmfhinpmnlhhddbepgkeaa] - hxxps://chrome.google.com/webstore/detail/blbkdnmdcafmfhinpmnlhhddbepgkeaa CHR HKLM-x32\...\Chrome\Extension: [debkinhcgejcbfgjiaalomcmkedjmiaa] - C:\Program Files (x86)\HP SimplePass 2012\tschrome.crx [2011-08-25] CHR HKLM-x32\...\Chrome\Extension: [mfhcmdonhekjhfbjmeacdjbhlfgpjabp] ==================== Servicios (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.) S4 AESTFilters; C:\Program Files\IDT\WDM\AESTSr64.exe [89600 2013-08-02] (Andrea Electronics Corporation) [Archivo no firmado] R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12129128 2021-12-28] (Microsoft Corporation -> Microsoft Corporation) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-16] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-16] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44328 2022-01-02] (Dropbox, Inc -> Dropbox, Inc.) S4 FPLService; C:\Program Files (x86)\HP SimplePass 2012\TrueSuiteService.exe [260424 2011-08-26] (AuthenTec, Inc. -> HP) R2 HPAppHelperCap; C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe [756216 2021-12-14] (HP Inc. -> HP Inc.) R2 HPDiagsCap; C:\Program Files\HP\HP Enabling Services\DiagsCap.exe [755192 2021-12-14] (HP Inc. -> HP Inc.) R2 HPNetworkCap; C:\Program Files\HP\HP Enabling Services\NetworkCap.exe [753184 2021-12-14] (HP Inc. -> HP Inc.) R2 HPSysInfoCap; C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe [755192 2021-12-14] (HP Inc. -> HP Inc.) S4 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2413056 2011-06-29] (Realsil Microelectronics Inc.) [Archivo no firmado] S4 it.remote.cli; C:\Program Files\remoteit-bin\remoteit.exe [13215744 2020-05-26] () [Archivo no firmado] S4 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2011-06-20] (Hewlett-Packard Company) [Archivo no firmado] R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2022-01-07] (Malwarebytes Inc -> Malwarebytes) S4 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [311808 2013-08-02] (IDT, Inc.) [Archivo no firmado] R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2021-12-28] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2021-12-28] (Microsoft Windows Publisher -> Microsoft Corporation) S4 HPClientSvc; "C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe" [X] S2 HPSupportSolutionsFrameworkService; "C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe" [X] S4 HuaweiHiSuiteService64.exe; "C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service [X] ===================== Controladores (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) R3 AMPPAL; C:\WINDOWS\System32\drivers\AMPPAL.sys [299008 2011-08-08] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Archivo no firmado] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Archivo no firmado] R3 clwvd; C:\WINDOWS\System32\drivers\clwvd.sys [31088 2010-07-28] (CyberLink -> CyberLink Corporation) S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-11-07] (Disc Soft Ltd -> Disc Soft Ltd) S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-11-07] (Disc Soft Ltd -> Disc Soft Ltd) S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) R3 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [40976 2022-01-13] (Microsoft Windows Hardware Compatibility Publisher -> ) R3 iwdbus; C:\WINDOWS\System32\drivers\iwdbus.sys [25496 2011-08-05] (Wireless Display -> Intel Corporation) R3 kmloop; C:\WINDOWS\System32\drivers\loop.sys [17408 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [210352 2022-01-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2022-01-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2022-01-07] (Malwarebytes Inc -> Malwarebytes) S3 MonitorFunction; C:\WINDOWS\System32\drivers\lockscr.sys [24560 2019-01-21] (Remote Utilities LLC -> ) S3 MpKsl520eedef; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{676EDCBA-91C7-4A54-B57F-73045B9E55E1}\MpKslDrv.sys [134376 2022-01-13] (Microsoft Windows -> Microsoft Corporation) R1 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [80192 2019-07-30] (Insecure.Com LLC -> Insecure.Com LLC.) S4 npcap_wifi; C:\WINDOWS\system32\DRIVERS\npcap.sys [80192 2019-07-30] (Insecure.Com LLC -> Insecure.Com LLC.) R1 npf; C:\WINDOWS\system32\DRIVERS\npf.sys [80192 2019-07-30] (Insecure.Com LLC -> Insecure.Com LLC.) S4 npf_wifi; C:\WINDOWS\system32\DRIVERS\npf.sys [80192 2019-07-30] (Insecure.Com LLC -> Insecure.Com LLC.) S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2018-02-05] (Apple, Inc.) [Archivo no firmado] S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2021-12-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435432 2021-12-28] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86248 2021-12-28] (Microsoft Windows -> Microsoft Corporation) R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [34944 2018-05-11] (HP Inc. -> HP) ==================== NetSvcs (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) ==================== Un mes (creado) (Lista blanca) ========= (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2022-01-13 14:48 - 2022-01-13 14:50 - 000038514 _____ C:\Users\Lucia\Desktop\FRST.txt 2022-01-13 14:44 - 2022-01-13 14:50 - 000000000 ____D C:\FRST 2022-01-13 14:43 - 2022-01-13 14:43 - 002311680 _____ (Farbar) C:\Users\Lucia\Desktop\FRST64.exe 2022-01-13 14:35 - 2022-01-13 14:35 - 000210352 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2022-01-13 14:27 - 2022-01-13 14:27 - 000063980 _____ C:\WINDOWS\system32\.crusader 2022-01-13 14:02 - 2022-01-13 14:33 - 000040976 _____ C:\WINDOWS\system32\Drivers\hitmanpro37.sys 2022-01-13 14:00 - 2022-01-13 14:28 - 000000000 ____D C:\ProgramData\HitmanPro 2022-01-13 14:00 - 2022-01-13 14:00 - 000067697 _____ C:\Users\Lucia\Desktop\Report Aida64.txt 2022-01-13 13:59 - 2022-01-13 13:59 - 000000000 ____D C:\Users\Lucia\Documents\AIDA64 Reports 2022-01-13 13:56 - 2022-01-13 13:56 - 000001252 _____ C:\Users\Lucia\Desktop\AIDA64 Extreme.lnk 2022-01-13 13:56 - 2022-01-13 13:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FinalWire 2022-01-13 13:56 - 2022-01-13 13:56 - 000000000 ____D C:\Program Files (x86)\FinalWire 2022-01-13 13:55 - 2022-01-13 14:01 - 014239168 _____ (SurfRight B.V.) C:\Users\Lucia\Desktop\HitmanPro_x64.exe 2022-01-13 13:53 - 2022-01-13 13:53 - 014206611 _____ C:\Users\Lucia\Desktop\HitmanPro.zip 2022-01-09 10:04 - 2022-01-09 10:12 - 000001314 _____ C:\Users\Lucia\Desktop\ESET Online Scanner.lnk 2022-01-09 10:02 - 2022-01-09 10:03 - 013311448 _____ (ESET) C:\Users\Lucia\Downloads\esetonlinescanner.exe 2022-01-07 22:39 - 2022-01-07 22:39 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2022-01-07 21:34 - 2022-01-07 21:34 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2022-01-07 21:34 - 2022-01-07 21:34 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2022-01-07 21:33 - 2022-01-07 22:39 - 000160176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2022-01-07 21:33 - 2022-01-07 21:32 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2022-01-07 21:32 - 2022-01-07 21:32 - 000000000 ____D C:\Program Files\Malwarebytes 2022-01-07 20:49 - 2022-01-07 21:31 - 000000000 ____D C:\Users\Lucia\AppData\Roaming\ZHP 2022-01-07 20:49 - 2022-01-07 20:49 - 000000913 _____ C:\Users\Lucia\Desktop\ZHPCleaner.lnk 2022-01-07 20:49 - 2022-01-07 20:49 - 000000000 ____D C:\Users\Lucia\AppData\Local\ZHP 2022-01-07 20:47 - 2022-01-07 20:49 - 000098076 _____ C:\TDSSKiller.3.1.0.28_07.01.2022_20.47.40_log.txt 2022-01-07 20:39 - 2022-01-07 20:44 - 000000000 ____D C:\AdwCleaner 2022-01-07 17:38 - 2022-01-13 13:53 - 000000000 ____D C:\Users\Lucia\Desktop\Para limpiar el ordenador 2022-01-07 17:24 - 2022-01-07 17:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2022-01-07 17:04 - 2022-01-13 13:40 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2022-01-07 17:04 - 2022-01-07 17:04 - 000002890 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Lucia 2022-01-07 17:03 - 2022-01-07 17:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2022-01-07 16:54 - 2022-01-07 16:57 - 000100726 _____ C:\TDSSKiller.3.1.0.28_07.01.2022_16.54.30_log.txt 2022-01-07 15:58 - 2022-01-07 15:58 - 000002725 _____ C:\Users\Lucia\Desktop\Página de inicio - Netflix.lnk 2022-01-07 15:58 - 2022-01-07 15:58 - 000000000 ____D C:\Users\Lucia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome 2022-01-02 00:57 - 2022-01-02 00:57 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys 2022-01-02 00:57 - 2022-01-02 00:57 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys 2022-01-02 00:57 - 2022-01-02 00:57 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys 2022-01-02 00:57 - 2022-01-02 00:57 - 000044328 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2021-12-28 23:35 - 2021-12-28 23:35 - 000000000 ____D C:\WINDOWS\SystemTemp 2021-12-28 23:14 - 2021-12-28 23:14 - 000011979 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-12-28 23:13 - 2021-12-28 23:13 - 000611960 _____ C:\WINDOWS\SysWOW64\TextShaping.dll 2021-12-28 23:12 - 2021-12-28 23:12 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe 2021-12-28 23:11 - 2021-12-28 23:11 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2021-12-28 23:09 - 2021-12-28 23:09 - 000706536 _____ C:\WINDOWS\system32\TextShaping.dll 2021-12-28 23:09 - 2021-12-28 23:09 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2021-12-28 23:08 - 2021-12-28 23:08 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe 2021-12-28 21:24 - 2021-12-28 21:24 - 000000000 ___HD C:\$WinREAgent 2021-12-28 19:50 - 2022-01-07 20:27 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2068952038-3349948466-1940529711-1001 2021-12-28 18:19 - 2021-12-28 18:19 - 000001146 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk 2021-12-28 18:19 - 2021-12-28 18:19 - 000000000 ____D C:\Program Files\PCHealthCheck ==================== Un mes (modificado) ================== (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2022-01-13 14:41 - 2020-08-21 15:38 - 002012442 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-01-13 14:41 - 2019-12-07 15:55 - 000865376 _____ C:\WINDOWS\system32\perfh00A.dat 2022-01-13 14:41 - 2019-12-07 15:55 - 000186620 _____ C:\WINDOWS\system32\perfc00A.dat 2022-01-13 14:41 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2022-01-13 14:40 - 2021-11-11 10:23 - 000000000 ____D C:\Program Files\CCleaner 2022-01-13 14:36 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-01-13 14:36 - 2013-07-31 22:08 - 000000000 ____D C:\Program Files (x86)\Google 2022-01-13 14:33 - 2020-08-21 16:20 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-01-13 14:31 - 2020-08-21 15:09 - 000008192 ___SH C:\DumpStack.log.tmp 2022-01-13 14:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState 2022-01-13 14:30 - 2020-08-21 15:16 - 000000000 ____D C:\Users\Lucia 2022-01-13 14:30 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2022-01-13 14:27 - 2013-09-09 17:57 - 000000000 ____D C:\ProgramData\HP 2022-01-13 14:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-01-13 14:13 - 2020-08-21 16:20 - 000004206 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{4F33ADEB-95C1-4788-9AB9-17F30A5E4F50} 2022-01-13 13:57 - 2013-07-31 22:10 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-01-09 17:24 - 2020-08-21 15:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-01-09 15:41 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-01-09 13:11 - 2013-08-01 00:51 - 000000000 ____D C:\Users\Lucia\AppData\Roaming\uTorrent 2022-01-09 10:14 - 2020-08-19 07:47 - 000001420 _____ C:\Users\Lucia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk 2022-01-09 10:04 - 2013-08-01 22:13 - 000000000 ____D C:\Users\Lucia\AppData\Local\CrashDumps 2022-01-08 10:11 - 2020-06-23 14:48 - 000002278 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2022-01-07 21:56 - 2020-08-19 17:25 - 000000000 ____D C:\Users\Lucia\AppData\LocalLow\IGDump 2022-01-07 21:33 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2022-01-07 20:44 - 2019-02-02 14:04 - 000000000 ____D C:\Users\ADMIN\AppData\Local\Hewlett-Packard 2022-01-07 20:44 - 2013-09-09 17:57 - 000000000 ____D C:\Program Files\HP 2022-01-07 20:44 - 2013-07-31 21:56 - 000000000 ____D C:\Users\Lucia\AppData\Roaming\Hewlett-Packard 2022-01-07 20:44 - 2013-07-31 21:54 - 000000000 ____D C:\Users\Lucia\AppData\Local\Hewlett-Packard 2022-01-07 20:44 - 2011-11-09 21:01 - 000000000 ____D C:\ProgramData\Hewlett-Packard 2022-01-07 20:44 - 2011-11-09 20:45 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard 2022-01-07 20:44 - 2011-09-06 03:20 - 000000000 ____D C:\Program Files\Hewlett-Packard 2022-01-07 20:44 - 2011-08-31 19:05 - 000000000 ___HD C:\HP 2022-01-07 20:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2022-01-07 20:27 - 2020-08-21 16:20 - 000003366 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2068952038-3349948466-1940529711-1001 2022-01-07 20:27 - 2020-08-21 15:16 - 000002455 _____ C:\Users\Lucia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-01-07 17:29 - 2021-01-07 11:34 - 000000000 ____D C:\Users\Lucia\AppData\Local\Dropbox 2022-01-07 17:29 - 2013-08-01 00:47 - 000000000 ____D C:\Users\Lucia\Dropbox 2022-01-07 17:26 - 2021-01-07 11:34 - 000000000 ____D C:\Program Files (x86)\Dropbox 2022-01-07 16:42 - 2020-08-21 16:20 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2021-12-28 23:52 - 2021-10-05 21:40 - 000000000 ____D C:\Users\Lucia\AppData\Local\HP_Inc 2021-12-28 23:41 - 2020-08-21 15:10 - 000484440 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-12-28 23:37 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2021-12-28 23:37 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-12-28 23:36 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2021-12-28 23:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-12-28 23:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup 2021-12-28 23:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-12-28 23:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2021-12-28 23:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2021-12-28 23:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE 2021-12-28 23:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2021-12-28 23:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-12-28 23:35 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-12-28 23:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2021-12-28 23:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-12-28 23:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-12-28 23:35 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing 2021-12-28 23:30 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-12-28 22:32 - 2018-07-01 17:34 - 000000000 ____D C:\ProgramData\Packages 2021-12-28 22:13 - 2017-12-23 14:42 - 000000000 ____D C:\Users\Lucia\AppData\Local\Packages 2021-12-28 21:42 - 2018-02-22 17:50 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-12-28 20:14 - 2019-02-01 20:36 - 000000000 ____D C:\Program Files\Microsoft Office 2021-12-28 18:53 - 2013-08-20 01:49 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-12-28 18:43 - 2013-08-20 01:49 - 137938848 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-12-28 17:55 - 2020-08-21 16:20 - 000003652 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-12-28 17:55 - 2020-08-21 16:20 - 000003528 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore ==================== Archivos en la raíz de algunos directorios ======== 2020-05-25 16:17 - 2020-05-25 16:17 - 004310696 _____ (OpenVPN Inc.) C:\Users\Lucia\openvpn-install-2.4.9-I601-Win10.exe 2020-05-25 17:21 - 2020-05-25 17:21 - 062684472 _____ (remote.it) C:\Users\Lucia\remoteit-installer.exe 2016-02-09 17:25 - 2016-02-09 17:25 - 000000000 _____ () C:\Program Files (x86)\Common Files\AMD 2018-03-30 16:20 - 2018-03-30 22:31 - 000004152 _____ () C:\Users\Lucia\AppData\Roaming\logs.tmp 2018-03-30 16:20 - 2017-12-23 14:03 - 000053248 ____H (Microsoft Corporation) C:\Users\Lucia\AppData\Roaming\regasm.exe 2015-07-09 21:47 - 2019-11-27 01:47 - 000014848 _____ () C:\Users\Lucia\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2020-05-26 23:09 - 2020-05-26 23:09 - 000000000 _____ () C:\Users\Lucia\AppData\Local\zenmap.exe.log ==================== SigCheck ============================ (No existe una corrección automática para los archivos que no pasan la verificación.) ==================== Final de FRST.txt ========================