Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 08.03.2024 Ejecutado por Luis Eduardo Cortés (administrador) sobre LCORTES (LENOVO 20366) (10-03-2024 11:06:06) Ejecutado desde C:\Users\Luis Eduardo Cortés\Desktop\FRST64.exe Perfiles cargados: Luis Eduardo Cortés Plataforma: Microsoft Windows 10 Pro Versión 22H2 19045.4046 (X64) Idioma: Español (México) Navegador predeterminado: Chrome Modo de Inicio: Normal ==================== Procesos (Lista blanca) ================= (Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\1.3.863.1\DropboxCrashHandler.exe (C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessCore.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdODIS\V1\Setup\ui-launcher\AdskAccessUIHost.exe <4> (C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessCore.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdskIdentityManager\1.10.4.0\AdskIdentityManager.exe (C:\Program Files\Autodesk\AdskIdentityManager\1.10.4.0\AdskIdentityManager.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Users\Luis Eduardo Cortés\AppData\Roaming\Autodesk\ADPSDK\bin\ADPClientService.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <7> (explorer.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessCore.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <18> (explorer.exe ->) (Realtek Semiconductor Corp -> Realtek semiconductor) C:\Windows\RTFTrack.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.363\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.363\GoogleCrashHandler64.exe (Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (MiniTool Software Limited -> ) C:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe (services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (services.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe (services.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Remote Desktop\123.0.6312.16\remoting_host.exe <2> (services.exe ->) (Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\NisSrv.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2407.10.0_x64__cv1g1gvanyjgm\WhatsApp.exe (svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (svchost.exe ->) (Infatica Pte. Ltd. -> ) C:\Program Files (x86)\Infatica P2B\infatica_agent.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.3989_none_7ddb45627cb30e03\TiWorker.exe (svchost.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe <3> (svchost.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe ==================== Registro (Lista blanca) =================== (Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.) HKLM\...\Run: [RtsFT] => C:\Windows\RTFTrack.exe [5158144 2016-05-12] (Realtek Semiconductor Corp -> Realtek semiconductor) HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart [1767944 2016-06-15] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [Archivo no firmado] HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-07-22] (Intel Corporation - Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [Autodesk Access] => C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessCore.exe [20689696 2024-02-07] (Autodesk, Inc. -> Autodesk, Inc.) HKLM\...\Run: [Acrobat Assistant 8.0] => C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrotray.exe [7909792 2024-03-07] (Adobe Inc. -> Adobe Systems Inc.) [Archivo no firmado] HKLM\...\Run: [] => [X] HKLM\...\Run: [Seagull Drivers V3] => C:\Program Files\Seagull\Printer Drivers\Common\Seagull_DriverStartup.exe [533776 2021-06-22] (Seagull Scientific, Inc -> Seagull Scientific, Inc.) HKLM\...\Run: [MTPW] => C:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe [219616 2020-02-19] (MiniTool Software Limited -> ) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [557768 2015-02-03] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [4096992 2023-11-07] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11557776 2024-03-02] (Dropbox, Inc -> Dropbox, Inc.) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restricción <==== ATENCIÓN HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center: Restricción <==== ATENCIÓN HKLM\Software\Policies\...\system: [EnableSmartScreen] 0 HKU\S-1-5-21-1611775910-2190744936-3610887148-1001\...\Run: [Adobe Acrobat Synchronizer] => "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe" (Ningún archivo) HKU\S-1-5-21-1611775910-2190744936-3610887148-1001\...\Run: [Spotify] => C:\Users\Luis Eduardo Cortés\AppData\Roaming\Spotify\Spotify.exe [28824440 2023-09-25] (Spotify AB -> Spotify Ltd) HKU\S-1-5-21-1611775910-2190744936-3610887148-1001\...\Run: [MicrosoftEdgeAutoLaunch_7FB457AA04CA72DF8FFA142434EA95B1] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4060608 2024-03-07] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1611775910-2190744936-3610887148-1001\...\Run: [RiotClient] => C:\Riot Games\Riot Client\RiotClientServices.exe --launch-background-mode (Ningún archivo) HKU\S-1-5-21-1611775910-2190744936-3610887148-1001\...\Run: [com.messenger] => "C:\Users\Luis Eduardo Cortés\AppData\Local\Programs\Messenger\Messenger.exe" messenger://openAtLogin (Ningún archivo) HKU\S-1-5-21-1611775910-2190744936-3610887148-1001\...\Run: [Sideloadly Daemon] => C:\Users\Luis Eduardo Cortés\AppData\Local\Sideloadly\sideloadlydaemon.exe [44612608 2023-09-29] () [Archivo no firmado] HKU\S-1-5-21-1611775910-2190744936-3610887148-1001\...\Run: [electron.app.Easy File Organizer] => C:\Users\Luis Eduardo Cortés\AppData\Local\Programs\easy-file-organizer\Easy File Organizer.exe autostart (Ningún archivo) HKU\S-1-5-21-1611775910-2190744936-3610887148-1001\...\MountPoints2: {d224c534-b13d-11ed-abb9-806e6f6e6963} - "D:\Lite.exe" HKLM\...\Windows x64\Print Processors\Canon iP7200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBA.DLL [30208 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [203936 2024-02-22] (Adobe Inc. -> Adobe Systems Inc) HKLM\...\Print\Monitors\Canon BJ Language Monitor iP7200 series: C:\Windows\system32\CNMLMBA.DLL [389120 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor iP7200 series XPS: C:\Windows\system32\CNMXLMBA.DLL [392192 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJNP Port: C:\Windows\system32\CNMN6PPM.DLL [359936 2012-06-14] (CANON INC.) [Archivo no firmado] HKLM\...\Print\Monitors\Seagull V3 Network Monitor: C:\Windows\system32\Seagull_V3_NetMonDispatcher.dll [558880 2021-06-27] (Seagull Scientific Inc. -> Seagull Scientific, Inc.) HKLM\...\Print\Monitors\ZDesigner Language Monitor: C:\Windows\system32\zdnNLM64.dll [892056 2023-08-28] (Euro Plus d.o.o. -> Euro Plus d.o.o.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8237E44A-0054-442C-B6B6-EA0509993955}] -> C:\Program Files\Google\Chrome Beta\Application\123.0.6312.28\Installer\chrmstp.exe [2024-03-06] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\122.0.6261.112\Installer\chrmstp.exe [2024-03-08] (Google LLC -> Google LLC) Startup: C:\Users\Luis Eduardo Cortés\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ManageinstallQi_4.lnk [2023-10-02] ShortcutTarget: ManageinstallQi_4.lnk -> C:\Users\Luis Eduardo Cortés\Downloads\Passwwrd-2023-Setup\Setup.exe (Ningún archivo) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Zebra Status Monitor.lnk [2024-02-16] ShortcutTarget: Zebra Status Monitor.lnk -> C:\Program Files (x86)\Zebra Technologies\Status Monitor\Status Monitor\StatusMonitor.exe (Zebra Technologies Corporation) [Archivo no firmado] Policies: C:\ProgramData\NTUSER.pol: Restricción <==== ATENCIÓN ==================== Tareas programadas (Lista blanca) ================= (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) Task: {596B4350-4E1E-4293-819F-D5BDBF2B606A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.) Task: {7C37919B-1326-44BB-94E3-CE935BFE0F62} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [4096992 2023-11-07] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {B5706EB9-79E9-4FC3-877E-34BE685EF442} - System32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [4434400 2023-11-07] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {FE73EECD-5707-4A95-854A-8C567EAA80A7} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-03-08] (Dropbox, Inc -> Dropbox, Inc.) Task: {F8061126-60B4-4945-98FB-0C01F33DBBB1} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-03-08] (Dropbox, Inc -> Dropbox, Inc.) Task: {D2A20FE9-CAE5-4A5A-92C5-B4669CB4C5A5} - System32\Tasks\GoogleUpdateTaskMachineCore{B4CC197F-7207-4381-BE23-493FEB5908FD} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-02-20] (Google LLC -> Google LLC) Task: {9DBB46AF-DEAE-45F8-88AE-09D8987FED6A} - System32\Tasks\GoogleUpdateTaskMachineUA{AD26A59B-C7F4-49E3-BECD-1C4FA5F7D9D0} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-02-20] (Google LLC -> Google LLC) Task: {E06EBAD0-0839-43DC-A14C-DBBF36623A88} - System32\Tasks\infatica_p2b => C:\Program Files (x86)\Infatica P2B\infatica_agent.exe [3708512 2023-10-30] (Infatica Pte. Ltd. -> ) Task: {4B9FF318-5912-41C8-ADF6-D18D0FEBA46C} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2113024 2024-01-15] () [Archivo no firmado] Task: {6F99A6F2-E26A-46F9-91AA-33E2F5739A36} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-1611775910-2190744936-3610887148-1001 => "C:\Users\Luis Eduardo Cortés\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe" (Ningún archivo) Task: {D9D35AD1-924D-4FFA-96D0-41082E64D331} - System32\Tasks\Meta\Messenger-SL-Helper-S-1-5-21-1611775910-2190744936-3610887148-1001 => C:\Users\Luis Eduardo Cortés\AppData\Local\Programs\Messenger\MessengerHelper.exe [2289400 2023-08-28] (Facebook, Inc. -> Meta Platforms, Inc.) Task: {A9136FC1-72D2-4796-B4BD-02D634A41CC2} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21916640 2024-02-02] (Microsoft Corporation -> Microsoft Corporation) Task: {621C0A93-5034-4AB2-8FA0-9C32AF6F2625} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21916640 2024-02-02] (Microsoft Corporation -> Microsoft Corporation) Task: {DF93F95F-BD62-46B0-B77A-CD4E931BCF2A} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141496 2024-02-29] (Microsoft Corporation -> Microsoft Corporation) Task: {152D84CA-C453-4EF1-B8DF-882C376883F4} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141496 2024-02-29] (Microsoft Corporation -> Microsoft Corporation) Task: {D6FEF45B-9B8B-47F5-9539-C9578AC69E40} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [170128 2024-02-04] (Microsoft Corporation -> Microsoft Corporation) Task: {D6F57D41-16F1-4AFB-8513-B528B58849F3} - System32\Tasks\Microsoft\Windows\Active Directory Rights Management Services Client\StateRntrt => C:\Windows\SysWOW64\rundll32.exe [61440 2023-11-15] (Microsoft Windows -> Microsoft Corporation) -> "C:\Program Files (x86)\HoldData\BandlgPrbperties\NETAZboftwIysvr.dll",CNHS7wsfNel0407 <==== ATENCIÓN Task: {E10F8B46-F1C0-403C-977A-87E011D90CB3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\MpCmdRun.exe [1646000 2024-02-28] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {8A4F5439-B042-42E9-8E34-A9F111192625} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\MpCmdRun.exe [1646000 2024-02-28] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {0EC431AC-A656-46A6-AB0B-DC00CE1C8DBF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\MpCmdRun.exe [1646000 2024-02-28] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {333E7EBD-E415-4B01-865F-6E89E7EFFB77} - System32\Tasks\MiniToolPartitionWizard => C:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe [219616 2020-02-19] (MiniTool Software Limited -> ) Task: {C9F31163-7533-4B08-9495-398902B07791} - System32\Tasks\Nvbackend_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-06-15] (NVIDIA Corporation -> NVIDIA Corporation) Task: {9D3E3FE6-FC0B-446E-ABDC-83B61A6B4BAD} - System32\Tasks\TVT\TVSUUpdateTask => "C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe" /CM -search R -action INSTALL -includerebootpackages 1,3,4,5 -noicon -noreboot -nolicense -defaultupdate -schtask (Ningún archivo) Task: {8D2234CE-C245-4B39-85D2-D68646ED038D} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => "C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe" PendingTask (Ningún archivo) (Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.) Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (Lista blanca) ==================== (Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.) Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.) Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.) Hosts: Hay más de una entrada en Hosts. Consulte la sección Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.100.1 Tcpip\..\Interfaces\{30dec196-7796-462a-b175-fc423da67368}: [DhcpNameServer] 192.168.0.1 0.0.0.0 Tcpip\..\Interfaces\{daa30d43-ae28-48cb-9edf-402b54bc9edf}: [DhcpNameServer] 192.168.100.1 Tcpip\..\Interfaces\{daa30d43-ae28-48cb-9edf-402b54bc9edf}\54E44554C484F4741425D2236343: [DhcpNameServer] 192.168.8.1 192.168.8.1 Tcpip\..\Interfaces\{daa30d43-ae28-48cb-9edf-402b54bc9edf}\74F6A457D607: [DhcpNameServer] 200.28.4.129 200.28.4.130 Tcpip\..\Interfaces\{daa30d43-ae28-48cb-9edf-402b54bc9edf}\960586F6E65602465602C4579637: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{daa30d43-ae28-48cb-9edf-402b54bc9edf}\C45636F62747830343: [DhcpNameServer] 200.83.1.4 190.160.0.14 200.30.192.15 Tcpip\..\Interfaces\{daa30d43-ae28-48cb-9edf-402b54bc9edf}\C45636F62747830343F55374: [DhcpNameServer] 200.83.1.4 190.160.0.14 200.30.192.15 Tcpip\..\Interfaces\{fd450af6-ad99-47c9-83f4-5783589edae1}: [DhcpNameServer] 192.168.0.1 0.0.0.0 Tcpip\..\Interfaces\{fd450af6-ad99-47c9-83f4-5783589edae1}\960586F6E65602465602C4579637: [DhcpNameServer] 172.20.10.1 HKLM\System\...\Parameters\PersistentRoutes: [169.254.0.0,255.255.0.0,192.168.0.131,1] Edge: ======= Edge Profile: C:\Users\Luis Eduardo Cortés\AppData\Local\Microsoft\Edge\User Data\Default [2024-03-07] Edge HomePage: Default -> hxxps://achilles0.crm4.dynamics.com/ Edge StartupUrls: Default -> "hxxps://www.google.cl/?gfe_rd=cr&ei=JuvVVdeQMYiF8QfNhI-ABg&gws_rd=ssl" Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Luis Eduardo Cortés\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bojobppfploabceghnmlahpoonbcbacn [2024-03-05] Edge Extension: (Conversor de archivos de Online-Convert.com) - C:\Users\Luis Eduardo Cortés\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dicgkflojhbopmagcacdklcpdfdcnhko [2023-06-20] Edge Extension: (WA Web Plus by Elbruz Technologies) - C:\Users\Luis Eduardo Cortés\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ekcgkejcjdcmonfpmnljobemcbpnkamh [2024-02-16] Edge Extension: (Documentos de Google sin conexión) - C:\Users\Luis Eduardo Cortés\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-02-29] Edge Extension: (Docs Online Viewer) - C:\Users\Luis Eduardo Cortés\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmpljdlgcdkljlppaekciacdmdlhfeon [2023-05-29] Edge Extension: (Chrome Remote Desktop) - C:\Users\Luis Eduardo Cortés\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2023-05-29] Edge Extension: (Edge relevant text changes) - C:\Users\Luis Eduardo Cortés\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-30] Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn] Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn] FireFox: ======== FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Extension: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2021-02-01] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-02-29] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-02-22] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-01-23] (Adobe Systems Incorporated -> Adobe Systems) FF Plugin-x32: @DVR/npplugin,version=3.1.0.4 -> C:\Program Files (x86)\webrec\WEB30\WebPlugin_V2\npPlugin.dll [Ningún archivo] FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-02-29] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @NVR/npmedia4.1.63.0,version=4.1.63.0 -> C:\Program Files (x86)\webrec\Torch\4.1.63.0\npmedia.dll [2018-11-14] (Zhejiang Dahua Technology CO.,LTD. -> ) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-01-23] (Adobe Systems Incorporated -> Adobe Systems) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Default [2024-03-10] CHR Notifications: Default -> hxxps://meet.google.com; hxxps://www.messenger.com CHR HomePage: Default -> hxxps://achilles0.crm4.dynamics.com/ CHR StartupUrls: Default -> "hxxps://www.google.cl/?gfe_rd=cr&ei=JuvVVdeQMYiF8QfNhI-ABg&gws_rd=ssl" CHR Extension: (Conversor de archivos de Online-Convert.com) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Default\Extensions\dicgkflojhbopmagcacdklcpdfdcnhko [2023-06-21] CHR Extension: (Adobe Acrobat: herramientas para convertir, editar y firmar PDFs) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-02-29] CHR Extension: (WA Web Plus by Elbruz Technologies) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekcgkejcjdcmonfpmnljobemcbpnkamh [2024-02-12] CHR Extension: (Documentos de Google sin conexión) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-02-27] CHR Extension: (Docs Online Viewer) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmpljdlgcdkljlppaekciacdmdlhfeon [2023-02-20] CHR Extension: (Kindle Cloud Reader) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdipabjmbhpdkjaihfjoikhjjeneebd [2023-02-20] CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2024-03-01] CHR Extension: (Chrome Remote Desktop) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2023-02-20] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-02-20] CHR Extension: (Contraseñas en iCloud) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Default\Extensions\pejdijmoenmkgeppbflobdenhhabjlaj [2024-02-29] CHR Extension: (Google Drive) - C:\Users\Luis Eduardo Cortés\AppData\Local\Default [2024-03-10] CHR Profile: C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-02-29] CHR Profile: C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-02-29] CHR Extension: (Documentos de Google sin conexión) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-25] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-03-06] CHR Profile: C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 10 [2024-02-29] CHR Extension: (Adobe Acrobat: herramientas para convertir, editar y firmar PDFs) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-02-29] CHR Extension: (Documentos de Google sin conexión) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-02-29] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-03-06] CHR Profile: C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 14 [2024-02-29] CHR Extension: (Adobe Acrobat: herramientas para convertir, editar y firmar PDFs) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 14\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-11-13] CHR Extension: (Documentos de Google sin conexión) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 14\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-23] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 14\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-06-28] CHR Profile: C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 15 [2024-02-29] CHR Extension: (Adobe Acrobat: herramientas para convertir, editar y firmar PDFs) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 15\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-02-27] CHR Extension: (Documentos de Google sin conexión) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 15\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-02-27] CHR Extension: (Chrome Remote Desktop) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 15\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2024-02-27] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 15\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-07-11] CHR Profile: C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 16 [2024-02-29] CHR Extension: (Adobe Acrobat: herramientas para convertir, editar y firmar PDFs) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 16\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-07-16] CHR Extension: (Documentos de Google sin conexión) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 16\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-07-16] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 16\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-07-16] CHR Profile: C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 17 [2024-02-29] CHR Extension: (Adobe Acrobat: herramientas para convertir, editar y firmar PDFs) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 17\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-02-27] CHR Extension: (Documentos de Google sin conexión) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 17\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-02-27] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 17\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-07-16] CHR Profile: C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 20 [2024-02-29] CHR StartupUrls: Profile 20 -> "hxxps://web.whatsapp.com/","hxxps://matricula.unab.cl/resumen","hxxps://www.unab.cl/carreras/mallas/psicologia.pdf","hxxps://www.chilexpress.cl/preguntas-frecuentes-envios-nacionales-internacionales","hxxps://www.google.com/search?q=motorhome&rlz=1C1SQJL_esCL870CL870&source=lnms&tbm=isch&sa=X&ved=2ahUKEwiKou3L0JPoAhWlA9QKHQpoAHcQ_AUoAXoECA0QAw","hxxps://www.santander.cl/" CHR Extension: (Adobe Acrobat: herramientas para convertir, editar y firmar PDFs) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 20\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-09-13] CHR Extension: (Documentos de Google sin conexión) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 20\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-13] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 20\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-07-22] CHR Profile: C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 3 [2024-02-29] CHR StartupUrls: Profile 3 -> "hxxp://www.google.com/" CHR Extension: (h264ify) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aleakchihdccplidncghkekgioiakgal [2023-03-06] CHR Extension: (uBlock Origin) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2023-11-23] CHR Extension: (Adobe Acrobat: herramientas para convertir, editar y firmar PDFs) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-11-23] CHR Extension: (Documentos de Google sin conexión) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-08] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-03-06] CHR Profile: C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 4 [2024-02-29] CHR Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2024-02-22] CHR Extension: (Adobe Acrobat: herramientas para convertir, editar y firmar PDFs) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-06-28] CHR Extension: (Documentos de Google sin conexión) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-04-24] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-03-06] CHR Profile: C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 9 [2024-03-05] CHR Session Restore: Profile 9 -> está habilitado. CHR Extension: (Adobe Acrobat: herramientas para convertir, editar y firmar PDFs) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-02-26] CHR Extension: (Documentos de Google sin conexión) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-02-22] CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2024-03-03] CHR Extension: (Chrome Remote Desktop) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2023-03-06] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-03-06] CHR Extension: (AdBlock Master) - C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\ofmjepimahcfbmcdfbmeihkondkfeobh [2024-03-05] CHR Profile: C:\Users\Luis Eduardo Cortés\AppData\Local\Google\Chrome\User Data\System Profile [2024-03-10] CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] CHR HKU\S-1-5-21-1611775910-2190744936-3610887148-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] StartMenuInternet: Google Chrome Beta - C:\Program Files\Google\Chrome Beta\Application\chrome.exe ==================== Servicios (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [4555744 2023-11-07] (Adobe Inc. -> Adobe Systems, Incorporated) R2 Autodesk Access Service Host; C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe [11630368 2024-02-07] (Autodesk, Inc. -> Autodesk, Inc.) R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\123.0.6312.16\remoting_host.exe [74016 2024-02-26] (Google LLC -> Google LLC) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9202360 2024-01-16] (Microsoft Corporation -> Microsoft Corporation) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-03-08] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-03-08] (Dropbox, Inc -> Dropbox, Inc.) S2 DbxSvc; C:\Windows\system32\DbxSvc.exe [46824 2024-03-02] (Dropbox, Inc -> Dropbox, Inc.) S3 GoogleChromeBetaElevationService; C:\Program Files\Google\Chrome Beta\Application\123.0.6312.28\elevation_service.exe [1670944 2024-03-05] (Google LLC -> Google LLC) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [534472 2023-12-14] (Microsoft Windows Publisher -> Microsoft Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\NisSrv.exe [3191256 2024-02-28] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24010.12-0\MsMpEng.exe [133576 2024-02-28] (Microsoft Windows Publisher -> Microsoft Corporation) S3 SUService; "C:\Program Files (x86)\Lenovo\System Update\SUService.exe" [X] ===================== Controladores (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) S3 AppleKmdfFilter; C:\Windows\System32\drivers\AppleKmdfFilter.sys [39272 2023-06-27] (Apple Inc. -> Apple Inc.) S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [55608 2023-06-27] (Apple Inc. -> Apple Inc.) R2 NPF; C:\Program Files (x86)\SADP\SADP\npf64.sys [36600 2023-03-27] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [37336 2021-03-09] (MiniTool Solution Ltd -> ) S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2019-11-08] (MiniTool Solution Ltd -> ) R0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [21040 2024-02-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [608648 2024-02-28] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105752 2024-02-28] (Microsoft Windows -> Microsoft Corporation) R3 WirelessKeyboardFilter; C:\Windows\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation) ==================== NetSvcs (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) ==================== Un mes (creado) (Lista blanca) ========= (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2024-03-08 15:47 - 2024-03-03 13:57 - 000019644 _____ C:\Users\Luis Eduardo Cortés\Downloads\Horarios 2024 GoJump Chile.xlsx 2024-03-08 14:04 - 2024-03-08 14:05 - 000071161 _____ C:\Users\Luis Eduardo Cortés\Desktop\Addition.txt 2024-03-08 13:43 - 2024-03-10 11:07 - 000038567 _____ C:\Users\Luis Eduardo Cortés\Desktop\FRST.txt 2024-03-08 13:42 - 2024-03-10 11:06 - 000000000 ____D C:\FRST 2024-03-08 13:41 - 2024-03-08 13:41 - 002390016 _____ (Farbar) C:\Users\Luis Eduardo Cortés\Desktop\FRST64.exe 2024-03-08 13:26 - 2024-03-08 13:26 - 000000260 _____ C:\Users\Luis Eduardo Cortés\Desktop\DelFix.txt 2024-03-08 13:26 - 2024-03-08 13:26 - 000000260 _____ C:\DelFix.txt 2024-03-08 13:26 - 2024-03-08 13:26 - 000000000 ____D C:\Windows\ERUNT 2024-03-08 13:25 - 2024-03-08 13:25 - 000797760 _____ C:\Users\Luis Eduardo Cortés\Desktop\delfix_1.013.exe 2024-03-08 13:14 - 2024-03-08 13:16 - 000000073 _____ C:\Bug_TKill.txt 2024-03-08 13:14 - 2024-03-08 13:16 - 000000000 ____D C:\DTRToll 2024-03-08 13:13 - 2024-03-08 13:14 - 000655848 _____ C:\Users\Luis Eduardo Cortés\Downloads\DT-Kill.zip 2024-03-08 13:12 - 2024-03-08 13:14 - 000000000 ____D C:\Users\Luis Eduardo Cortés\Downloads\DTKill 2024-03-08 13:11 - 2024-03-08 13:11 - 000425747 _____ C:\Users\Luis Eduardo Cortés\Downloads\DTKill.zip 2024-03-08 12:52 - 2024-03-08 12:52 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1611775910-2190744936-3610887148-1005 2024-03-08 12:52 - 2024-03-08 12:52 - 000000000 ___HD C:\OneDriveTemp 2024-03-08 12:50 - 2024-03-08 12:52 - 000003364 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1611775910-2190744936-3610887148-1005 2024-03-07 12:27 - 2024-03-07 12:27 - 000000000 ____D C:\Users\Luis Eduardo Cortés\.ms-ad 2024-03-07 12:26 - 2024-03-07 12:26 - 000003530 _____ C:\Windows\system32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0 2024-03-07 12:24 - 2024-03-07 12:24 - 000002084 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller.lnk 2024-03-07 12:24 - 2024-03-07 12:24 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk 2024-03-07 12:24 - 2024-03-07 12:24 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk 2024-03-07 12:22 - 2024-03-07 12:26 - 000003506 _____ C:\Windows\system32\Tasks\AdobeGCInvoker-1.0 2024-03-07 12:17 - 2024-03-10 11:06 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2024-03-07 12:15 - 2024-03-07 12:15 - 000000000 ____D C:\Program Files\Adobe 2024-03-07 12:08 - 2024-03-07 12:10 - 000000000 ___HD C:\$WinREAgent 2024-03-07 11:53 - 2024-03-07 12:26 - 000000000 ____D C:\Users\Luis Eduardo Cortés\Downloads\2023.008.20555.X64 2024-03-06 16:09 - 2024-03-06 16:09 - 000768667 _____ C:\Users\Luis Eduardo Cortés\Downloads\7431154.pdf 2024-03-06 15:25 - 2024-03-06 20:23 - 1353590078 _____ C:\Users\Luis Eduardo Cortés\Downloads\2023.008.20555.X64 (1).rar 2024-03-06 11:59 - 2024-03-06 11:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2024-03-04 16:26 - 2024-03-04 16:26 - 000020975 _____ C:\Users\Luis Eduardo Cortés\Downloads\ImprimirComprobante.pdf 2024-03-04 10:53 - 2024-03-04 10:53 - 008790880 _____ (Malwarebytes) C:\Users\Luis Eduardo Cortés\Downloads\adwcleaner(1).exe 2024-03-02 20:53 - 2024-03-02 20:53 - 000046824 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe 2024-03-02 13:32 - 2024-03-02 13:32 - 000000282 _____ C:\ProgramData\ntuser.pol 2024-03-01 18:57 - 2024-03-01 18:57 - 000000000 ____D C:\Users\Luis Eduardo Cortés\AppData\Local\mbam 2024-03-01 18:52 - 2024-03-01 18:52 - 000000000 ____D C:\Users\Luis Eduardo Cortés\AppData\Local\mbamtray 2024-03-01 18:50 - 2024-03-01 18:50 - 000000077 ___SH C:\Windows\config.json 2024-03-01 18:50 - 2024-03-01 18:50 - 000000000 _____ C:\Users\Luis Eduardo Cortés\AppData\Local\installLocal 2024-03-01 18:50 - 2023-03-29 08:40 - 000307200 _____ (Microsoft Corporation) C:\Windows\Windows Driver Foundаtion (WDF).exe 2024-03-01 18:50 - 2013-02-16 10:25 - 000004096 ___SH () C:\Windows\wudf.exe 2024-03-01 18:50 - 2011-02-16 11:41 - 000004608 ___SH () C:\Windows\wzone.exe 2024-03-01 18:50 - 2008-10-13 12:41 - 705930319 ___SH C:\Windows\Windows Driver Foundation (WDF).exe 2024-03-01 18:49 - 2024-03-01 18:49 - 000000000 __SHD C:\Users\Luis Eduardo Cortés\AppData\Local\GoogleDrive 2024-03-01 18:48 - 2024-03-01 18:48 - 000000000 __SHD C:\ProgramData\tl 2024-03-01 18:48 - 2024-03-01 18:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2024-03-01 18:48 - 2024-03-01 18:48 - 000000000 ____D C:\Program Files (x86)\7-Zip 2024-03-01 18:45 - 2024-03-01 18:45 - 000000000 ____D C:\Users\Luis Eduardo Cortés\Downloads\4.6.9.314 2024-03-01 18:43 - 2024-03-01 18:45 - 358465630 _____ C:\Users\Luis Eduardo Cortés\Downloads\4.6.9.314.rar 2024-03-01 18:00 - 2024-03-01 18:01 - 000000000 ____D C:\AdwCleaner 2024-03-01 18:00 - 2024-03-01 18:00 - 008797968 _____ (Malwarebytes) C:\Users\Luis Eduardo Cortés\Downloads\adwcleaner.exe 2024-03-01 13:57 - 2024-03-01 13:57 - 002585496 _____ (Malwarebytes) C:\Users\Luis Eduardo Cortés\Downloads\MBSetup.exe 2024-03-01 13:51 - 2024-03-01 13:51 - 000124183 _____ C:\Users\Luis Eduardo Cortés\Downloads\Instrucciones de Pago -- Colegio Pedregales 2024 (1).pdf 2024-03-01 12:40 - 2024-03-01 12:40 - 000048214 _____ C:\Users\Luis Eduardo Cortés\Downloads\Libro-Remuneraciones-2024-2.xlsx 2024-03-01 12:11 - 2024-03-01 11:55 - 000014585 _____ C:\Users\Luis Eduardo Cortés\Downloads\Diferencias Sueldos Febrero Los Dominicos.xlsx 2024-02-29 20:06 - 2024-02-29 20:06 - 000001397 _____ C:\Users\Luis Eduardo Cortés\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk 2024-02-29 20:03 - 2024-02-29 20:03 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2024-02-29 20:02 - 2024-02-29 20:02 - 000002489 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk 2024-02-29 20:02 - 2024-02-29 20:02 - 000002452 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk 2024-02-29 20:02 - 2024-02-29 20:02 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk 2024-02-29 20:02 - 2024-02-29 20:02 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk 2024-02-29 20:02 - 2024-02-29 20:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Herramientas de Microsoft Office 2024-02-29 19:55 - 2024-02-29 19:55 - 000000000 ____D C:\Program Files\Microsoft Office 15 2024-02-29 19:51 - 2024-02-29 19:53 - 000000000 ____D C:\Users\Luis Eduardo Cortés\AppData\Local\SaraResults 2024-02-29 19:11 - 2024-02-29 19:11 - 000000000 ____D C:\Users\Luis Eduardo Cortés\AppData\Local\SaRALogs 2024-02-29 19:10 - 2024-02-29 19:11 - 000000000 ____D C:\Users\Luis Eduardo Cortés\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Corporation 2024-02-29 19:10 - 2024-02-29 19:10 - 000000520 _____ C:\Users\Luis Eduardo Cortés\Desktop\Asistente de soporte y recuperación de Microsoft.appref-ms 2024-02-29 18:59 - 2024-03-07 13:21 - 000000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job 2024-02-29 17:54 - 2024-02-29 18:00 - 000000000 ____D C:\Users\Luis Eduardo Cortés\AppData\LocalLow\Adobe 2024-02-29 17:40 - 2024-02-29 17:40 - 000000000 ____D C:\Program Files (x86)\Adobe 2024-02-29 16:19 - 2024-02-29 16:19 - 000000000 ____D C:\ProgramData\Apple Inc 2024-02-29 12:45 - 2024-02-29 13:03 - 1234159070 _____ C:\Users\Luis Eduardo Cortés\Downloads\2023.008.20555.X32.rar 2024-02-29 12:41 - 2023-08-24 19:59 - 000001528 ____R C:\Windows\system32\Drivers\etc\nslA35A.tmp 2024-02-29 12:38 - 2024-02-29 12:41 - 000000000 ____D C:\Users\Luis Eduardo Cortés\Downloads\Adobe.Acrobat.Pro.DC.v2023.008.20533.Portable_Awportables.com 2024-02-29 12:13 - 2024-02-29 12:13 - 000000000 ____D C:\Users\Luis Eduardo Cortés\Downloads\winrar 2024-02-29 11:57 - 2024-02-29 12:36 - 1148257835 _____ C:\Users\Luis Eduardo Cortés\Downloads\2023.008.20533.P.rar 2024-02-28 18:25 - 2024-03-10 11:03 - 000000000 ____D C:\Users\Luis Eduardo Cortés\AppData\Local\Default 2024-02-28 18:25 - 2024-02-28 18:33 - 000000000 ___HD C:\ProgramData\Dtera 2024-02-28 18:25 - 2024-02-28 18:25 - 000001368 _____ C:\Users\Luis Eduardo Cortés\Desktop\Google Chrome Beta.lnk 2024-02-28 18:25 - 2024-02-28 18:25 - 000001341 _____ C:\Users\Luis Eduardo Cortés\Desktop\Google Chrome.lnk 2024-02-28 18:25 - 2024-02-28 18:25 - 000000000 ____D C:\Users\Luis Eduardo Cortés\AppData\Local\DesktopCleanup 2024-02-28 18:24 - 2024-02-28 18:25 - 000000000 ____D C:\Users\Luis Eduardo Cortés\AppData\Roaming\Ques Civi 2024-02-28 18:24 - 2024-02-28 18:24 - 000000000 ____D C:\Users\Luis Eduardo Cortés\Downloads\setup 2024-02-28 18:07 - 2024-02-28 18:07 - 000041984 _____ C:\Users\Luis Eduardo Cortés\Desktop\Fwd Comunicación Apertura Registro de Accionista.msg 2024-02-27 18:02 - 2024-02-27 18:02 - 000002262 _____ C:\Users\Luis Eduardo Cortés\Downloads\sbi-feed-gojumpchile.json 2024-02-26 17:13 - 2024-02-26 17:13 - 000162680 _____ C:\Users\Luis Eduardo Cortés\Downloads\GestióndeAsistencia quilicura Feb24.pdf 2024-02-26 14:06 - 2024-02-26 14:06 - 000090192 _____ C:\Users\Luis Eduardo Cortés\Downloads\Comprobante Transferencia_24022613060302320853.pdf 2024-02-26 13:42 - 2024-02-26 13:42 - 000090192 _____ C:\Users\Luis Eduardo Cortés\Downloads\TEF_20240222100301782488.pdf 2024-02-26 12:53 - 2024-02-26 12:54 - 000425982 _____ C:\Users\Luis Eduardo Cortés\Downloads\background-remover.zip 2024-02-24 14:09 - 2024-02-24 14:09 - 000025130 _____ C:\Users\Luis Eduardo Cortés\Downloads\GestióndeAsistencia202402241409_8fef4c09-4d4b-4836-ba0b-92d7ee882dc91e32d115-a.pdf 2024-02-24 14:05 - 2024-02-24 14:05 - 000024659 _____ C:\Users\Luis Eduardo Cortés\Downloads\GestióndeAsistencia202402241405_e9085146-a7cf-4f6e-a5c7-edbdca1f274a2a604e20-5.pdf 2024-02-23 15:18 - 2024-02-23 15:18 - 000090192 _____ C:\Users\Luis Eduardo Cortés\Downloads\Comprobante Transferencia_20240223130301999517.pdf 2024-02-22 18:49 - 2024-02-22 18:49 - 000203936 _____ (Adobe Systems Inc) C:\Windows\system32\AdobePDF.dll 2024-02-22 18:49 - 2024-02-22 18:49 - 000146592 _____ (Adobe Systems Inc.) C:\Windows\system32\AdobePDFUI.dll 2024-02-22 18:24 - 2024-02-22 18:24 - 000970375 _____ C:\Users\Luis Eduardo Cortés\Downloads\Entradas GoJump Z3QaFC5j9svacP56Kuhu.pdf 2024-02-22 10:47 - 2024-02-22 10:47 - 000005492 _____ C:\Users\Luis Eduardo Cortés\Downloads\GestióndeAsistencia202402221047_66bf709e-d93c-40d3-b8fb-e7c3e22ba4cf.xlsx 2024-02-21 12:06 - 2024-02-21 12:06 - 000026202 _____ C:\Users\Luis Eduardo Cortés\Downloads\asistencia Erick.pdf 2024-02-21 11:27 - 2024-02-21 11:27 - 000002721 _____ C:\Users\Luis Eduardo Cortés\Desktop\Nueva Sucursal Virtual Movistar.lnk 2024-02-21 11:15 - 2024-02-21 11:15 - 000003288 _____ C:\Windows\system32\Tasks\MiniToolPartitionWizard 2024-02-21 11:15 - 2024-02-21 11:15 - 000001028 _____ C:\Users\Public\Desktop\MiniTool Partition Wizard.lnk 2024-02-21 11:15 - 2024-02-21 11:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool Partition Wizard 12 2024-02-19 16:48 - 2024-02-19 16:48 - 000122003 _____ C:\Users\Luis Eduardo Cortés\Downloads\avo-be-5283743.pdf 2024-02-19 16:45 - 2024-02-19 16:45 - 000107209 _____ C:\Users\Luis Eduardo Cortés\Downloads\avo-be-4266543.pdf 2024-02-16 13:15 - 2024-02-16 13:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zebra Technologies 2024-02-16 13:15 - 2024-02-16 13:15 - 000000000 ____D C:\Program Files (x86)\Zebra Technologies 2024-02-16 13:14 - 2023-08-28 12:34 - 000892056 _____ (Euro Plus d.o.o.) C:\Windows\system32\zdnNLM64.dll 2024-02-16 13:14 - 2023-08-28 12:34 - 000215744 _____ (Euro Plus d.o.o.) C:\Windows\system32\zdnPMS.dll 2024-02-16 13:14 - 2023-08-28 12:34 - 000197304 _____ (Euro Plus d.o.o.) C:\Windows\system32\zdnPMU.dll 2024-02-16 13:12 - 2024-02-16 13:12 - 000000000 ___HD C:\ProgramData\{B4A9FEBB-CC79-454C-89DC-A77DE773DEFE} 2024-02-16 13:12 - 2024-02-16 13:12 - 000000000 ____D C:\ZD5-1-17-7414 2024-02-16 13:12 - 2024-02-16 13:12 - 000000000 ____D C:\Users\Luis Eduardo Cortés\AppData\Local\IIIQF 2024-02-16 13:12 - 2024-02-16 13:12 - 000000000 ____D C:\ProgramData\mia1FAD.tmp 2024-02-16 13:10 - 2024-02-16 13:12 - 014691064 _____ (Zebra Technologies ) C:\Users\Luis Eduardo Cortés\Downloads\zd51177414-certified.exe 2024-02-14 13:35 - 2024-02-14 13:35 - 000019697 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json 2024-02-14 13:34 - 2024-02-14 13:34 - 000019697 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json 2024-02-12 21:28 - 2024-02-12 21:35 - 020405338 _____ (KLCP ) C:\Users\Luis Eduardo Cortés\Downloads\K-Lite_Codec_Pack_1805_Basic.exe ==================== Un mes (modificado) ================== (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2024-03-10 11:06 - 2023-02-20 16:32 - 000000000 ____D C:\Program Files (x86)\Google 2024-03-10 11:06 - 2023-02-20 16:07 - 000000000 ____D C:\Windows\SystemTemp 2024-03-10 11:06 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\AppReadiness 2024-03-10 11:04 - 2023-03-08 13:02 - 000000000 ____D C:\Users\Luis Eduardo Cortés\AppData\Roaming\Dropbox 2024-03-10 11:04 - 2023-03-08 13:01 - 000000000 ____D C:\Users\Luis Eduardo Cortés\AppData\Local\Dropbox 2024-03-10 11:03 - 2023-03-02 16:50 - 000000000 ____D C:\ProgramData\boost_interprocess 2024-03-08 18:16 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-03-08 18:09 - 2023-02-28 16:31 - 000000000 ____D C:\Users\Luis Eduardo Cortés\AppData\Roaming\Microsoft\Excel 2024-03-08 17:20 - 2023-02-20 12:52 - 000000000 ____D C:\Users\Luis Eduardo Cortés\AppData\Local\Packages 2024-03-08 15:38 - 2023-02-20 13:48 - 000000000 ____D C:\Users\Luis Eduardo Cortés\AppData\Roaming\Microsoft\Word 2024-03-08 12:48 - 2023-02-20 12:52 - 000000000 __RHD C:\Users\Public\AccountPictures 2024-03-08 12:48 - 2019-12-07 06:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2024-03-08 11:46 - 2023-02-20 12:44 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2024-03-08 11:46 - 2023-02-20 12:44 - 000002278 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2024-03-08 11:46 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps 2024-03-08 11:44 - 2023-02-20 16:33 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2024-03-08 11:42 - 2023-02-20 19:02 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2024-03-08 11:42 - 2023-02-20 19:02 - 000000000 __SHD C:\Users\Luis Eduardo Cortés\IntelGraphicsProfiles 2024-03-07 13:32 - 2023-02-20 12:55 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1611775910-2190744936-3610887148-1001 2024-03-07 13:32 - 2023-02-20 12:54 - 000003392 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1611775910-2190744936-3610887148-1001 2024-03-07 13:32 - 2023-02-20 12:51 - 000002462 _____ C:\Users\Luis Eduardo Cortés\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2024-03-07 13:30 - 2023-02-20 12:55 - 001681438 _____ C:\Windows\system32\PerfStringBackup.INI 2024-03-07 13:30 - 2019-12-07 12:03 - 000749340 _____ C:\Windows\system32\perfh00A.dat 2024-03-07 13:30 - 2019-12-07 12:03 - 000145660 _____ C:\Windows\system32\perfc00A.dat 2024-03-07 13:30 - 2019-12-07 06:13 - 000000000 ____D C:\Windows\INF 2024-03-07 13:25 - 2023-02-20 12:44 - 000008192 ___SH C:\DumpStack.log.tmp 2024-03-07 13:25 - 2023-02-20 12:44 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2024-03-07 13:24 - 2023-09-26 13:35 - 000491938 _____ C:\Windows\ntbtlog.txt 2024-03-07 13:24 - 2019-12-07 06:03 - 000786432 _____ C:\Windows\system32\config\BBI 2024-03-07 13:21 - 2023-02-20 12:44 - 000564344 _____ C:\Windows\system32\FNTCACHE.DAT 2024-03-07 12:27 - 2023-02-20 12:51 - 000000000 ____D C:\Users\Luis Eduardo Cortés 2024-03-07 12:25 - 2023-03-06 15:50 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task 2024-03-07 12:15 - 2023-08-24 19:47 - 000000000 ____D C:\Program Files\Common Files\Adobe 2024-03-07 12:15 - 2023-02-20 13:17 - 000000000 ____D C:\ProgramData\Adobe 2024-03-07 11:53 - 2023-02-20 12:44 - 000000000 ____D C:\Windows\system32\SleepStudy 2024-03-06 21:43 - 2023-09-06 15:20 - 000002300 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome Beta.lnk 2024-03-06 14:40 - 2023-10-10 13:36 - 000000000 ____D C:\Program Files\RUXIM 2024-03-06 11:59 - 2023-03-08 13:01 - 000000000 ____D C:\Program Files (x86)\Dropbox 2024-03-06 11:47 - 2023-02-20 12:44 - 000003636 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2024-03-06 11:47 - 2023-02-20 12:44 - 000003512 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2024-03-03 12:19 - 2019-12-07 06:03 - 000000000 ____D C:\Windows\CbsTemp 2024-03-03 11:52 - 2019-12-07 06:14 - 000000000 ___HD C:\Windows\ELAMBKUP 2024-03-03 11:07 - 2023-03-08 14:31 - 000000000 ____D C:\Users\Public\SmartPSS 2024-03-02 13:33 - 2023-10-01 11:10 - 000000000 ____D C:\Users\Luis Eduardo Cortés\AppData\Local\cache 2024-03-01 18:50 - 2023-02-20 17:15 - 000000000 ____D C:\ProgramData\Package Cache 2024-03-01 18:01 - 2023-11-14 11:49 - 000000000 ____D C:\Program Files (x86)\Lenovo 2024-03-01 18:01 - 2023-02-20 19:44 - 000000000 ____D C:\Users\Luis Eduardo Cortés\Documents\Dell 2024-03-01 17:53 - 2019-12-07 12:05 - 000000000 ____D C:\Windows\OCR 2024-03-01 17:52 - 2023-04-10 17:43 - 000000000 ____D C:\Program Files (x86)\webrec 2024-03-01 17:52 - 2023-02-20 16:13 - 000000000 ____D C:\Users\Luis Eduardo Cortés\Downloads\kmspico 2024-02-29 20:03 - 2023-02-20 13:26 - 000000000 ____D C:\Program Files\Microsoft Office 2024-02-29 20:03 - 2019-12-07 06:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2024-02-29 19:54 - 2023-02-20 17:45 - 000000000 ____D C:\Users\Luis Eduardo Cortés\AppData\Local\CrashDumps 2024-02-29 19:51 - 2023-02-20 19:51 - 000000000 ____D C:\Users\Luis Eduardo Cortés\AppData\Local\Deployment 2024-02-29 19:08 - 2023-02-20 19:51 - 000000000 ____D C:\Users\Luis Eduardo Cortés\AppData\Local\Apps\2.0 2024-02-29 18:00 - 2023-02-20 12:52 - 000000000 ____D C:\Users\Luis Eduardo Cortés\AppData\Roaming\Adobe 2024-02-29 17:58 - 2023-05-18 12:54 - 000000000 ____D C:\Users\Luis Eduardo Cortés\AppData\Local\Adobe 2024-02-29 17:43 - 2023-02-20 13:09 - 000000000 ____D C:\Users\Luis Eduardo Cortés\AppData\Roaming\Microsoft\Spelling 2024-02-29 17:42 - 2023-02-20 16:23 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2024-02-29 17:42 - 2019-12-07 12:07 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2024-02-29 17:42 - 2019-12-07 12:07 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2024-02-29 17:42 - 2019-12-07 12:03 - 000000000 ____D C:\Windows\SysWOW64\winrm 2024-02-29 17:42 - 2019-12-07 12:03 - 000000000 ____D C:\Windows\SysWOW64\WCN 2024-02-29 17:42 - 2019-12-07 12:03 - 000000000 ____D C:\Windows\SysWOW64\slmgr 2024-02-29 17:42 - 2019-12-07 12:03 - 000000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts 2024-02-29 17:42 - 2019-12-07 12:03 - 000000000 ____D C:\Windows\system32\winrm 2024-02-29 17:42 - 2019-12-07 12:03 - 000000000 ____D C:\Windows\system32\WCN 2024-02-29 17:42 - 2019-12-07 12:03 - 000000000 ____D C:\Windows\system32\slmgr 2024-02-29 17:42 - 2019-12-07 12:03 - 000000000 ____D C:\Windows\system32\Printing_Admin_Scripts 2024-02-29 17:42 - 2019-12-07 06:14 - 000000000 ___SD C:\Windows\SysWOW64\F12 2024-02-29 17:42 - 2019-12-07 06:14 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs 2024-02-29 17:42 - 2019-12-07 06:14 - 000000000 ___SD C:\Windows\system32\F12 2024-02-29 17:42 - 2019-12-07 06:14 - 000000000 ___SD C:\Windows\system32\dsc 2024-02-29 17:42 - 2019-12-07 06:14 - 000000000 ___SD C:\Windows\system32\DiagSvcs 2024-02-29 17:42 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns 2024-02-29 17:42 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform 2024-02-29 17:42 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation 2024-02-29 17:42 - 2019-12-07 06:14 - 000000000 ____D C:\Program Files\Windows Defender 2024-02-29 17:42 - 2019-12-07 06:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2024-02-29 17:42 - 2019-12-07 06:03 - 000000000 ____D C:\Windows\servicing 2024-02-29 17:37 - 2023-02-20 12:55 - 000000000 ____D C:\Users\Luis Eduardo Cortés\AppData\Local\PlaceholderTileLogoFolder 2024-02-29 16:26 - 2023-02-20 12:52 - 000000000 ____D C:\Users\Luis Eduardo Cortés\AppData\Local\D3DSCache 2024-02-29 16:19 - 2023-10-01 11:40 - 000000000 ____D C:\Users\Luis Eduardo Cortés\AppData\Roaming\Apple Computer 2024-02-29 12:43 - 2023-02-20 13:08 - 000000000 ____D C:\Users\Luis Eduardo Cortés\Downloads\OF64Bits 2024-02-29 12:42 - 2023-02-27 19:07 - 000000000 ____D C:\Users\Luis Eduardo Cortés\AppData\Local\SolidDocuments 2024-02-29 12:14 - 2023-03-06 13:53 - 000000000 ____D C:\Program Files\WinRAR 2024-02-28 18:25 - 2023-03-06 16:03 - 000002560 _____ C:\Users\Luis Eduardo Cortés\Desktop\Luis E. - Chrome.lnk 2024-02-28 13:54 - 2023-02-20 19:45 - 000000000 ____D C:\Users\Luis Eduardo Cortés\Documents\Juegos Talca 2024-02-28 12:21 - 2023-02-20 12:44 - 000000000 ____D C:\Windows\system32\Drivers\wd 2024-02-23 15:39 - 2023-02-20 19:44 - 000000000 ____D C:\Users\Luis Eduardo Cortés\Documents\Documentacion Sociedad 2024-02-22 10:16 - 2023-03-14 20:44 - 000000000 ____D C:\Program Files\MiniTool Partition Wizard 12 2024-02-21 11:27 - 2023-03-06 12:40 - 000000000 ____D C:\Users\Luis Eduardo Cortés\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome 2024-02-21 11:16 - 2023-03-14 20:46 - 000000000 ____D C:\Users\Luis Eduardo Cortés\AppData\Roaming\QtProject 2024-02-20 15:14 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\NDF 2024-02-15 16:46 - 2019-12-07 06:03 - 000032768 _____ C:\Windows\system32\config\ELAM 2024-02-14 14:14 - 2023-02-20 16:23 - 000000000 ___SD C:\Windows\system32\AppV 2024-02-14 14:14 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2024-02-14 14:14 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\setup 2024-02-14 14:14 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SystemResources 2024-02-14 14:14 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\WinMetadata 2024-02-14 14:14 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\setup 2024-02-14 14:14 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates 2024-02-14 14:14 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\oobe 2024-02-14 14:14 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\migwiz 2024-02-14 14:14 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\es-MX 2024-02-14 14:14 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\appraiser 2024-02-14 14:14 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\ShellComponents 2024-02-14 14:14 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\bcastdvr 2024-02-14 14:09 - 2023-02-20 13:54 - 000000000 ____D C:\Windows\system32\MRT 2024-02-14 14:04 - 2023-02-20 13:54 - 191155960 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2024-02-14 13:34 - 2023-02-20 12:47 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2024-02-12 21:39 - 2023-12-12 13:27 - 000003300 _____ C:\Windows\system32\Tasks\klcp_update 2024-02-12 21:39 - 2023-12-12 13:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack 2024-02-12 21:39 - 2023-12-12 13:27 - 000000000 ____D C:\Program Files (x86)\K-Lite Codec Pack ==================== Archivos en la raíz de algunos directorios ======== 2024-03-01 18:50 - 2024-03-01 18:50 - 000000000 _____ () C:\Users\Luis Eduardo Cortés\AppData\Local\installLocal 2023-09-15 20:35 - 2023-09-15 20:35 - 000007597 _____ () C:\Users\Luis Eduardo Cortés\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (No existe una corrección automática para los archivos que no pasan la verificación.) ==================== Final de FRST.txt ========================