Se abre CMD al iniciar windows 10

Estado
Cerrado para nuevas respuestas.

jbex

El que peca y reza empata
Administrador
Normalmente suelen ser tareas programadas de Office que garantizan que todos los componentes estén actualizados.
Escribe en el buscador Programador de tareas accede al Administrador de tareas programadas y mira si lo que tienes programado.
Dentro del Programador de tareas veras que se ha añadido Office
En Biblioteca del administrador de tareas > Microsoft > Office .
Y dentro de ahí veremos estas tareas:

OfficeBackgroundTaskHandlerLogon (Se inicia con cada inicio de sesión)
OfficeBackgroundTaskHandlerRegistration (Se inicia para actualizar)
OfficeTelemetryAgentFallBack2016
OfficeTelemetryAgentLogOn2016

Tampoco estaría de mas siguieras esta guía: Importante - Limpieza de spyware

Y por ultimo, revisa tus temas y veras que ya expusiste esta misma duda Cuando enciendo el ordenador a veces 'solo' a veces se abre varios comando CMD rapido y se cierran, eso por que?
Un saludo
 

Principiante90

Miembro
Miembro
Hola. Gracias por responder! virus no creo que tenga porque lo reviso a de vez en cuando..

lo he mirado admistrador de tareas y no me sale microsoft office, tengo solo la app office

Que hacer como desactivarlo?
 

Adjuntos

jbex

El que peca y reza empata
Administrador
Estas en tareas programadas revisalas, alguna de ellas es la culpable.
Te veo por ejemplo CCleaner que a día de hoy no es recomendable su uso.
Un saludo
 

Principiante90

Miembro
Miembro
Gracias por responder! Pero como esta en ingles y yo ingles nanai no entiendo. Si me ayudas?? O no es un tema del que me debo preocupar demaciado? Como digo, sale de vez en cuando cuando se enciende el portatil en el escritorio sale por ejemplo 3 ventanas CMD y se van al instante.

Tengo que hacer algo al respecto?
 

jbex

El que peca y reza empata
Administrador
Descarga Farbar Recovery Scan Tool - Descargar programas - software acorde a tu sistema operativo.
Ejecuta Farbar Recovery Scan Tool
Haz doble clic para ejecutarlo. Cuando se abre la herramienta, haga clic en para exención de responsabilidad.
Presiona el botón Escanear .
Hará un registro ( FRST.txt ) en el mismo directorio donde se ejecuta la herramienta. Adjúntalo a tu respuesta.
La primera vez que se ejecuta la herramienta, también crea otro registro ( Addition.txt ). Adjúntalo también a tu respuesta.
 

Principiante90

Miembro
Miembro
Ya esta, aqui lo tienes los dos logs:

Código:
Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 27-01-2020
Ejecutado por Florenci (administrador) sobre FLORENCI-PC (Acer Aspire 5733Z) (31-01-2020 21:23:02)
Ejecutado desde C:\Users\Florenci\Desktop
Perfiles cargados: Florenci (Perfiles disponibles: Florenci & Administrador)
Platform: Windows 10 Home Versión 1909 18363.628 (X64) Idioma: Espanyol (Espanya, alfabet internacional)
Navegador predeterminado: Chrome
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

() [Archivo no firmado] C:\Program Files (x86)\arcai.com\netcut_windows.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Arcai.com) [Archivo no firmado] C:\Program Files (x86)\arcai.com\aips.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler64.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12430.20136.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12430.20136.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12001.1001.5.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.36.6003.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.36.6003.0_x64__8wekyb3d8bbwe\GameBarFT.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\NisSrv.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(SUPERAntiSpyware.com -> SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Windscribe Limited -> Windscribe Limited) C:\Program Files (x86)\Windscribe\WindscribeService.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11779176 2011-02-18] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-549940460-2404856339-1566757125-1000\...\Run: [Windscribe] => C:\Program Files (x86)\Windscribe\Windscribe.exe [10106544 2019-01-19] (Windscribe Limited -> Windscribe Limited)
HKU\S-1-5-21-549940460-2404856339-1566757125-1000\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [47552040 2019-12-22] (Google LLC -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.130\Installer\chrmstp.exe [2020-01-25] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{9459C573-B17A-45AE-9F64-1857B5D58CEE}] -> C:\Program Files (x86)\Microsoft\Edge\Application\79.0.309.71\Installer\setup.exe [2020-01-22] (Microsoft Corporation -> Microsoft Corporation)
BootExecute: autocheck autochk * PCloudBroom64.exe \systemroot\system32\BroomData.bitPCloudBroom64.exe \systemroot\system32\BroomData.bitPCloudBroom64.exe \systemroot\system32\BroomData.bit
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {025F52B1-B162-4003-A164-CCC454F4CC83} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineCore => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [223336 2020-01-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {11E73C56-782A-40F5-B4E7-E6EF4BB4206C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-06-10] (Google Inc -> Google Inc.)
Task: {29F34675-81DC-416D-8993-7564A3C10CC6} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {3A138F57-0858-4F54-9E93-2FEADD41ACE8} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe
Task: {51E31B49-5AE4-44AF-8BA1-4A601BCBE905} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {577C6C9A-3574-4C89-BE8D-D814AD01B522} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Florenci\Desktop\esetonlinescanner_esn.exe [7982616 2019-08-09] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {762D77D3-BCB4-4779-90D5-147F5E0FFB63} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {770659AF-BAC3-4672-A2BD-08630D76422A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {779A71B1-2D1E-4467-8922-DF1E6AE73221} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {98E42B25-A34C-4B47-B5AD-3F84F6F6FDCD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-06-10] (Google Inc -> Google Inc.)
Task: {9959F706-559C-4A43-95D8-718F51927494} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-15] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {C39F2885-B627-44AD-B7BA-9B2CA48416EB} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Florenci\Desktop\esetonlinescanner_esn.exe [7982616 2019-08-09] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {C9057363-D0A6-4343-93E7-F75107A77D78} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E63FF77B-11B5-48FF-AC69-6E6B4433EEF3} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineUA => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [223336 2020-01-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {F37E8075-F98C-4F8A-A8E0-D96F336A10C2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-15] (Piriform Software Ltd -> Piriform Ltd)
Task: {F85DE2DD-B569-44A7-8EF2-767BB4044835} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Tcpip\Parameters: [DhcpNameServer] 1.1.1.1 1.0.0.1 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{421f5d7b-84f6-48c8-944c-f06057d9db72}: [DhcpNameServer] 1.1.1.1 1.0.0.1 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{f8556924-b71e-458e-8333-de356950292b}: [DhcpNameServer] 8.8.8.8 8.8.4.4

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-549940460-2404856339-1566757125-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/es-es/?ocid=iehp

Edge:
======
DownloadDir: C:\Users\Florenci\Downloads
Edge Extension: (uBlock Origin) -> EdgeExtension_37833NikRollsuBlockOrigin_f8jsg5mm64m62 => C:\Program Files\WindowsApps\37833NikRolls.uBlockOrigin_1.15.24.0_neutral__f8jsg5mm64m62 [2018-12-28]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Florenci\AppData\Local\Microsoft\Edge\User Data\Default [2020-01-30]
Edge DownloadDir: C:\Users\Florenci\Downloads
Edge Extension: (uBlock Origin) - C:\Users\Florenci\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2020-01-17]

FireFox:
========
FF DefaultProfile: dr0dfxpp.Florenci-1540316640948
FF ProfilePath: C:\Users\Florenci\AppData\Roaming\Mozilla\Firefox\Profiles\dr0dfxpp.Florenci-1540316640948 [2020-01-25]
FF Homepage: Mozilla\Firefox\Profiles\dr0dfxpp.Florenci-1540316640948 -> hxxps://www.google.cat/
FF Extension: (uBlock Origin) - C:\Users\Florenci\AppData\Roaming\Mozilla\Firefox\Profiles\dr0dfxpp.Florenci-1540316640948\Extensions\uBlock0@raymondhill.net.xpi [2019-12-06]
FF SearchPlugin: C:\Users\Florenci\AppData\Roaming\Mozilla\Firefox\Profiles\dr0dfxpp.Florenci-1540316640948\searchplugins\bing-lavasoft-ff59.xml [2018-12-23]
FF ProfilePath: C:\Users\Florenci\AppData\Roaming\Mozilla\Firefox\Profiles\rebb3myb.default-1505571765827 [2020-01-15]
FF Extension: (Avast Passwords) - C:\Users\Florenci\AppData\Roaming\Mozilla\Firefox\Profiles\rebb3myb.default-1505571765827\Extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi [2018-09-03] [UpdateUrl: hxxps://pamcdn.avast.com/pamcdn/extensions/firefox/update.json]
FF Extension: (Malwarebytes Browser Extension) - C:\Users\Florenci\AppData\Roaming\Mozilla\Firefox\Profiles\rebb3myb.default-1505571765827\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2018-09-03]
FF Extension: (Adblock Plus) - C:\Users\Florenci\AppData\Roaming\Mozilla\Firefox\Profiles\rebb3myb.default-1505571765827\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-09-03]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\local.js [2019-07-21] <==== ATENCIÓN (Apunta a archivo *.cfg)
FF ExtraCheck: C:\Program Files\mozilla firefox\mozilla.cfg [2019-07-21] <==== ATENCIÓN

Chrome:
=======
CHR DefaultProfile: Profile 8
CHR Profile: C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Profile 8 [2020-01-31]
CHR Notifications: Profile 8 -> hxxps://www.facebook.com; hxxps://www.instagram.com; hxxps://www.youtube.com
CHR HomePage: Profile 8 -> hxxp://www.google.cat/
CHR StartupUrls: Profile 8 -> "hxxps://www.google.cat/"
CHR DefaultSearchURL: Profile 8 -> hxxp://www.elitegol.me/elitegol/img/favicon.ico
CHR Extension: (Presentacions) - C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-09]
CHR Extension: (Documents) - C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-09]
CHR Extension: (Google Drive) - C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-07-09]
CHR Extension: (YouTube) - C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-09]
CHR Extension: (uBlock Origin) - C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2020-01-03]
CHR Extension: (Canal Partidazo Plus en directo onlin...) - C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\emhhkhofpmflafmpejplpbmnidicjjkl [2020-01-31]
CHR Extension: (Fulls de càlcul) - C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-09]
CHR Extension: (Documents de Google sense connexió) - C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-03]
CHR Extension: (VER CANAL MOVISTAR PARTIDAZO ONLINE E...) - C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\ihobjaompgheafiigdjbablamjbhdggn [2020-01-31]
CHR Extension: (ROJADIRECTA: Tarjeta Roja TV - Interg...) - C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\khcbmelncakfefpbioaneecjmidciecl [2020-01-31]
CHR Extension: (Translation Comparison) - C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\kicpmhgmcajloefloefojbfdmenhmhjf [2019-12-14]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2019-07-12]
CHR Extension: (Diresport) - C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\nhmklomilgafkfgfghfjfbblcmgonhbg [2020-01-31]
CHR Extension: (Free VPN - the fastest VPN in the house) - C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\nkomfibbgccdjcahcpleidblgknecfhh [2019-12-14]
CHR Extension: (Sistema de pagaments de Chrome Web Store) - C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-05]
CHR Extension: (ImTranslator: Translator, Dictionary, TTS) - C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\noaijdpnepcgjemiklgfkcfbkokogabh [2020-01-15]
CHR Extension: (Gmail) - C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-07-09]
CHR Extension: (Chrome Media Router) - C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-01-17]
CHR Profile: C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\System Profile [2020-01-15]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKU\S-1-5-21-549940460-2404856339-1566757125-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [173472 2017-01-31] (SUPERAntiSpyware.com -> SUPERAntiSpyware.com)
R2 AIPS; C:\Program Files (x86)\arcai.com\aips.exe [2677760 2018-05-11] (Arcai.com) [Archivo no firmado]
S2 edgeupdate; C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [223336 2020-01-17] (Microsoft Corporation -> Microsoft Corporation)
S3 edgeupdatem; C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [223336 2020-01-17] (Microsoft Corporation -> Microsoft Corporation)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6960640 2019-11-19] (Malwarebytes Inc -> Malwarebytes)
S3 MicrosoftEdgeElevationService; C:\Program Files (x86)\Microsoft\Edge\Application\79.0.309.71\elevation_service.exe [1089928 2020-01-20] (Microsoft Corporation -> Microsoft Corporation)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [269400 2017-01-17] (Synaptics Incorporated -> Synaptics Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WindscribeService; C:\Program Files (x86)\Windscribe\WindscribeService.exe [493232 2019-01-19] (Windscribe Limited -> Windscribe Limited)

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R3 athr; C:\WINDOWS\System32\drivers\athwnx.sys [4233728 2019-03-19] (Microsoft Windows -> Qualcomm Atheros Communications, Inc.)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-11-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R1 MpKslDrv; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{0926B770-DC70-4076-B67D-D3586EE8386F}\MpKslDrv.sys [43232 2020-01-31] (Microsoft Windows -> Microsoft Corporation)
R2 NEWDRIVER; C:\WINDOWS\SysWow64\WinVDEdrv6.sys [197648 2016-03-22] (NewSoftwares.net Inc. SDN. BHD. -> )
R3 NPF; C:\WINDOWS\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
S3 PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [50320 2015-01-29] (Panda Security S.L. -> Panda Security, S.L.)
S3 RSUSBSTOR; C:\WINDOWS\System32\Drivers\RtsUStor.sys [243712 2010-09-22] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 tapwindscribe0901; C:\WINDOWS\System32\drivers\tapwindscribe0901.sys [54896 2018-06-19] (Windscribe Limited -> The OpenVPN Project)
R1 TTDrv; C:\KOPLAYER\vbox\TTDrv.sys [317040 2017-11-01] (Fuzhou kaopu Network Co.,Ltd. -> Oracle Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45664 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [355760 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-07] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) ===================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-01-31 21:23 - 2020-01-31 21:24 - 000020914 _____ C:\Users\Florenci\Desktop\FRST.txt
2020-01-31 21:22 - 2020-01-31 21:24 - 000000000 ____D C:\FRST
2020-01-31 21:18 - 2020-01-31 21:18 - 002581504 _____ (Farbar) C:\Users\Florenci\Desktop\FRST64.exe
2020-01-30 19:32 - 2020-01-30 19:32 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 022635008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 019812864 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 018026496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 007754240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 007259648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 006285312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 005914112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 005764664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 004856832 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 004348616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 003819008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 003243080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 002493928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 002314952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 002225160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 002032128 _____ C:\WINDOWS\system32\rdpnano.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 001835128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 001541632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2020-01-30 19:32 - 2020-01-30 19:32 - 001489064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 001417760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 001399304 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-01-30 19:32 - 2020-01-30 19:32 - 001283592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2020-01-30 19:32 - 2020-01-30 19:32 - 001283584 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 001214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 001105776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 001083392 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 001073168 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-01-30 19:32 - 2020-01-30 19:32 - 001000960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000890368 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000805376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000788992 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-01-30 19:32 - 2020-01-30 19:32 - 000749568 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000510768 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2020-01-30 19:32 - 2020-01-30 19:32 - 000500736 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2020-01-30 19:32 - 2020-01-30 19:32 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2020-01-30 19:32 - 2020-01-30 19:32 - 000444928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2020-01-30 19:32 - 2020-01-30 19:32 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000421376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2020-01-30 19:32 - 2020-01-30 19:32 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\DispBroker.Desktop.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000399360 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000366416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000300392 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2020-01-30 19:32 - 2020-01-30 19:32 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2020-01-30 19:32 - 2020-01-30 19:32 - 000210744 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2020-01-30 19:32 - 2020-01-30 19:32 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000099712 _____ (Microsoft Corporation) C:\WINDOWS\system32\FsIso.exe
2020-01-30 19:32 - 2020-01-30 19:32 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedsbs.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000093704 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000084496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2020-01-30 19:32 - 2020-01-30 19:32 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeedsbs.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000059221 _____ C:\WINDOWS\system32\srms.dat
2020-01-30 19:32 - 2020-01-30 19:32 - 000042512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2020-01-30 19:32 - 2020-01-30 19:32 - 000021304 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2020-01-30 19:32 - 2020-01-30 19:32 - 000019768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2020-01-30 19:32 - 2020-01-30 19:32 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedssync.exe
2020-01-30 19:32 - 2020-01-30 19:32 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeedssync.exe
2020-01-30 19:32 - 2020-01-30 19:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-01-30 19:32 - 2020-01-30 19:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-01-30 19:32 - 2020-01-30 19:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-01-30 19:32 - 2020-01-30 19:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-01-30 19:32 - 2020-01-30 19:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-01-30 19:32 - 2020-01-30 19:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-01-30 19:32 - 2020-01-30 19:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-01-30 19:32 - 2020-01-30 19:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-01-30 19:32 - 2020-01-30 19:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-01-30 19:32 - 2020-01-30 19:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-01-30 19:32 - 2020-01-30 19:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-01-30 19:32 - 2020-01-30 19:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-01-30 19:31 - 2020-01-30 19:31 - 009926968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-01-30 19:31 - 2020-01-30 19:31 - 007905208 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 007600656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 007263992 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 006516648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 006435840 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 006231200 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 006167552 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 006083832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 005112320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 004615376 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-01-30 19:31 - 2020-01-30 19:31 - 004470784 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 004005888 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 003967888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-01-30 19:31 - 2020-01-30 19:31 - 003729408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-01-30 19:31 - 2020-01-30 19:31 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 003591184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-01-30 19:31 - 2020-01-30 19:31 - 003550208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 003372440 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 003110400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 002988552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-01-30 19:31 - 2020-01-30 19:31 - 002801152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-01-30 19:31 - 2020-01-30 19:31 - 002773776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 002766088 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 002703872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 002584008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 002284544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 002260176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 002125904 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 002084576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 002071552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 001942016 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 001916744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 001858560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 001841152 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 001757096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-01-30 19:31 - 2020-01-30 19:31 - 001748480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 001743672 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 001726480 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 001693184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 001602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 001512320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-01-30 19:31 - 2020-01-30 19:31 - 001480192 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-01-30 19:31 - 2020-01-30 19:31 - 001412096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 001394168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 001372160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 001366128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-01-30 19:31 - 2020-01-30 19:31 - 001300280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2020-01-30 19:31 - 2020-01-30 19:31 - 001182232 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2020-01-30 19:31 - 2020-01-30 19:31 - 001170960 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 001154448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-01-30 19:31 - 2020-01-30 19:31 - 001097216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 001083904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 001051448 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 001027000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000974336 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthSSO.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000928120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2020-01-30 19:31 - 2020-01-30 19:31 - 000916480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000913408 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000895488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000892488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000891736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000875144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000874512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-01-30 19:31 - 2020-01-30 19:31 - 000864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000824848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000803840 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000768488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000747320 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000737280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000732200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000704512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000679160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000673080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000661816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-01-30 19:31 - 2020-01-30 19:31 - 000642008 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000637968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2020-01-30 19:31 - 2020-01-30 19:31 - 000637440 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000617784 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000610816 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-01-30 19:31 - 2020-01-30 19:31 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000598528 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000589592 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2020-01-30 19:31 - 2020-01-30 19:31 - 000587064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000568120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000558592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-01-30 19:31 - 2020-01-30 19:31 - 000545432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000536064 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000518184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-01-30 19:31 - 2020-01-30 19:31 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-01-30 19:31 - 2020-01-30 19:31 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000490496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000486912 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-01-30 19:31 - 2020-01-30 19:31 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000467648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000465208 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000459896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-01-30 19:31 - 2020-01-30 19:31 - 000453432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-01-30 19:31 - 2020-01-30 19:31 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-01-30 19:31 - 2020-01-30 19:31 - 000441072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000416056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2020-01-30 19:31 - 2020-01-30 19:31 - 000415808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000404912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000375504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SpeechPrivacy.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000324616 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-01-30 19:31 - 2020-01-30 19:31 - 000311096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceDirectoryClient.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\msutb.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000259984 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2020-01-30 19:31 - 2020-01-30 19:31 - 000248064 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000221200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-01-30 19:31 - 2020-01-30 19:31 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msutb.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\regapi.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-01-30 19:31 - 2020-01-30 19:31 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000190464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regapi.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000190256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2020-01-30 19:31 - 2020-01-30 19:31 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatialAudioLicenseSrv.exe
2020-01-30 19:31 - 2020-01-30 19:31 - 000143160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000117264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2020-01-30 19:31 - 2020-01-30 19:31 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetDriverInstall.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000107832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingExperienceMEM.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000106808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compstui.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2020-01-30 19:31 - 2020-01-30 19:31 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-01-30 19:31 - 2020-01-30 19:31 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthSystray.exe
2020-01-30 19:31 - 2020-01-30 19:31 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetDriverInstall.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-01-30 19:31 - 2020-01-30 19:31 - 000072816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000071480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2020-01-30 19:31 - 2020-01-30 19:31 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\findnetprinters.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.exe
2020-01-30 19:31 - 2020-01-30 19:31 - 000063288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2020-01-30 19:31 - 2020-01-30 19:31 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.exe
2020-01-30 19:31 - 2020-01-30 19:31 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000047208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-01-30 19:31 - 2020-01-30 19:31 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcicda.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000027648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mciwave.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mciseq.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\bindflt.dll
2020-01-30 19:31 - 2020-01-30 19:31 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-01-30 19:30 - 2020-01-30 19:31 - 001413912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2020-01-30 19:30 - 2020-01-30 19:30 - 000727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2020-01-30 19:30 - 2020-01-30 19:30 - 000716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-01-30 19:30 - 2020-01-30 19:30 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-01-30 19:30 - 2020-01-30 19:30 - 000437776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2020-01-30 19:30 - 2020-01-30 19:30 - 000296760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2020-01-30 19:30 - 2020-01-30 19:30 - 000194064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2020-01-30 19:30 - 2020-01-30 19:30 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2020-01-30 19:30 - 2020-01-30 19:30 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationControlCSP.dll
2020-01-30 19:30 - 2020-01-30 19:30 - 000089912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2020-01-30 19:30 - 2020-01-30 19:30 - 000088352 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-01-30 19:30 - 2020-01-30 19:30 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcicda.dll
2020-01-30 19:30 - 2020-01-30 19:30 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mciwave.dll
2020-01-30 19:30 - 2020-01-30 19:30 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mciseq.dll
2020-01-17 19:14 - 2020-01-22 19:13 - 000002435 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-01-17 19:12 - 2020-01-25 14:54 - 000003638 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-01-17 19:12 - 2020-01-25 14:54 - 000003514 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-01-16 19:02 - 2020-01-16 19:02 - 000000000 ____D C:\WINDOWS\Panther
2020-01-15 21:41 - 2020-01-15 21:41 - 007016448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-01-15 21:41 - 2020-01-15 21:41 - 001106944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2020-01-15 21:41 - 2020-01-15 21:41 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-01-15 21:41 - 2020-01-15 21:41 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2020-01-15 21:41 - 2020-01-15 21:41 - 000363840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-01-15 21:41 - 2020-01-15 21:41 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 025900032 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 008012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 002870784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-01-15 21:40 - 2020-01-15 21:40 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 002473976 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 001985928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 001697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 001655880 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 001330952 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 001020032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000851456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-01-15 21:40 - 2020-01-15 21:40 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000678712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-01-15 21:40 - 2020-01-15 21:40 - 000646144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000571392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000542496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000432256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-01-15 21:40 - 2020-01-15 21:40 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-01-15 21:40 - 2020-01-15 21:40 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-01-15 21:40 - 2020-01-15 21:40 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV1.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-01-15 21:40 - 2020-01-15 21:40 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-01-15 21:40 - 2020-01-15 21:40 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti_ci.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000162696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2020-01-15 21:40 - 2020-01-15 21:40 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiadss.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000127520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiadss.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-01-15 21:40 - 2020-01-15 21:40 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiatrace.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-01-15 21:40 - 2020-01-15 21:40 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-01-15 21:29 - 2019-12-10 06:15 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-01-15 21:29 - 2019-12-10 05:59 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-01-31 21:14 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2020-01-31 21:13 - 2019-05-29 21:05 - 000004216 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{5C497AA6-8DA4-4F51-9231-255D2BE41896}
2020-01-31 21:13 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-01-31 21:07 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-01-31 21:06 - 2019-05-29 21:05 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-01-30 20:05 - 2019-03-19 05:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-01-30 20:03 - 2019-05-29 20:55 - 001773430 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-01-30 20:03 - 2019-03-19 12:59 - 000777334 _____ C:\WINDOWS\system32\perfh00A.dat
2020-01-30 20:03 - 2019-03-19 12:59 - 000155366 _____ C:\WINDOWS\system32\perfc00A.dat
2020-01-30 19:57 - 2017-10-21 13:47 - 000000000 ___RD C:\Users\Florenci\3D Objects
2020-01-30 19:57 - 2015-09-10 06:28 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-01-30 19:55 - 2019-05-29 20:39 - 000258152 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-01-30 19:52 - 2019-03-19 05:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-01-30 19:52 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-01-30 19:52 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2020-01-30 19:52 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2020-01-30 19:52 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-01-30 19:52 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-01-30 19:41 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-01-30 19:19 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-01-30 18:55 - 2019-07-12 11:50 - 000002077 _____ C:\Users\Public\Desktop\Google Slides.lnk
2020-01-30 18:55 - 2019-07-12 11:50 - 000002077 _____ C:\ProgramData\Desktop\Google Slides.lnk
2020-01-30 18:55 - 2019-07-12 11:50 - 000002075 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2020-01-30 18:55 - 2019-07-12 11:50 - 000002075 _____ C:\ProgramData\Desktop\Google Sheets.lnk
2020-01-30 18:55 - 2019-07-12 11:50 - 000002065 _____ C:\Users\Public\Desktop\Google Docs.lnk
2020-01-30 18:55 - 2019-07-12 11:50 - 000002065 _____ C:\ProgramData\Desktop\Google Docs.lnk
2020-01-30 18:55 - 2019-07-12 11:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2020-01-25 15:33 - 2016-11-18 20:03 - 000000000 ____D C:\Users\Florenci\AppData\LocalLow\Mozilla
2020-01-25 14:57 - 2017-10-21 13:22 - 000000000 ____D C:\Users\Florenci\AppData\Local\Packages
2020-01-25 14:54 - 2019-05-29 21:05 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-549940460-2404856339-1566757125-1000
2020-01-25 14:54 - 2019-05-29 19:50 - 000002378 _____ C:\Users\Florenci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-01-25 14:54 - 2017-06-10 14:43 - 000002305 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-01-25 14:54 - 2014-03-26 21:28 - 000000000 ___RD C:\Users\Florenci\OneDrive
2020-01-22 20:48 - 2017-11-13 07:50 - 000000000 ____D C:\Users\Florenci\AppData\Roaming\XnView
2020-01-22 20:47 - 2017-11-13 07:54 - 000001128 _____ C:\Users\Florenci\Desktop\XnView.lnk
2020-01-22 20:47 - 2017-11-13 07:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnView
2020-01-22 20:47 - 2017-11-13 07:54 - 000000000 ____D C:\Program Files (x86)\XnView
2020-01-22 20:45 - 2018-12-25 14:53 - 000000000 ____D C:\Users\Florenci\AppData\Roaming\vlc
2020-01-22 19:59 - 2019-05-29 20:39 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-01-17 18:47 - 2019-12-06 18:59 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-01-17 18:47 - 2018-10-23 18:43 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-01-16 19:10 - 2018-10-23 18:43 - 000001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-01-15 22:21 - 2018-09-29 07:08 - 000002056 _____ C:\Users\Florenci\Desktop\CrystalDiskInfo Kurei Kei Edition.lnk
2020-01-15 21:53 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-01-15 21:52 - 2016-03-21 10:53 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-01-15 21:47 - 2016-03-21 10:53 - 120202352 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-01-15 21:04 - 2016-06-11 18:43 - 000000000 ____D C:\Users\Florenci\AppData\Local\WiFi Guard
2020-01-15 21:01 - 2017-12-04 19:28 - 000000000 ____D C:\Users\Florenci\AppData\Local\PlaceholderTileLogoFolder
2020-01-12 19:50 - 2019-11-15 19:32 - 000003812 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2020-01-12 19:50 - 2019-11-15 19:32 - 000003370 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2020-01-03 20:33 - 2014-03-04 17:11 - 000000000 ____D C:\Copias de seguridad echas por ccleaner

==================== Archivos en la raíz de algunos directorios ========

2019-01-28 18:00 - 2019-01-28 18:00 - 003305856 _____ () C:\Users\Florenci\ZHPCleaner.exe
2018-12-25 09:13 - 2018-12-25 09:13 - 000003584 _____ () C:\Users\Florenci\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)

==================== Final de FRST.txt ========================
Código:
Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 27-01-2020
Ejecutado por Florenci (31-01-2020 21:25:51)
Ejecutado desde C:\Users\Florenci\Desktop
Windows 10 Home Versión 1909 18363.628 (X64) (2019-05-29 20:06:59)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================

Administrador (S-1-5-21-549940460-2404856339-1566757125-500 - Administrator - Disabled) => C:\Users\Administrador
DefaultAccount (S-1-5-21-549940460-2404856339-1566757125-503 - Limited - Disabled)
Florenci (S-1-5-21-549940460-2404856339-1566757125-1000 - Administrator - Enabled) => C:\Users\Florenci
Invitado (S-1-5-21-549940460-2404856339-1566757125-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-549940460-2404856339-1566757125-504 - Limited - Disabled)

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

Asistente para actualización a Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22749 - Microsoft Corporation)
Backup and Sync from Google (HKLM\...\{825F60D9-2633-4D52-B2B0-5DA143433BBC}) (Version: 3.48.8668.1933 - Google, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.62 - Piriform)
CrystalDiskInfo 8.3.1 Kurei Kei Edition (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 8.3.1 - Crystal Dew World)
CrystalDiskInfo 8.3.2 Kurei Kei Edition (64-bit) (HKLM\...\CrystalDiskInfo_is1) (Version: 8.3.2 - Crystal Dew World)
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
File Splitter and Joiner (FFSJ v3.3) (HKLM-x32\...\File Splitter and Joiner_is1) (Version:  - Le Minh Hoang)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.130 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.421 - Google LLC) Hidden
Malwarebytes version 4.0.4.49 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.0.4.49 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 79.0.309.71 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.119.43 - )
Microsoft OneDrive (HKU\S-1-5-21-549940460-2404856339-1566757125-1000\...\OneDriveSetup.exe) (Version: 19.222.1110.0006 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 72.0.1 (x64 ca) (HKLM\...\Mozilla Firefox 72.0.1 (x64 ca)) (Version: 72.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 63.0 - Mozilla)
netcut version 3.5.4 (HKLM-x32\...\{6BE5152F-0885-4AA5-8385-4AD2D8472C71}_is1) (Version: 3.5.4 - arcai.com)
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 3.0 - NewBlue)
Panda Cloud Cleaner (HKLM-x32\...\{92B2B132-C7F0-43DC-921A-4493C04F78A4}_is1) (Version: 1.1.10 - Panda Security)
Paquete de controladores de Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass  (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.)
PerformanceTest v9.0 (HKLM\...\PerformanceTest 9_is1) (Version: 9.0.1035.0 - Passmark Software)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6314 - Realtek Semiconductor Corp.)
Revo Uninstaller 2.1.0 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.1.0 - VS Revo Group, Ltd.)
Screamer Radio (HKU\S-1-5-21-549940460-2404856339-1566757125-1000\...\Screamer) (Version: 1.6840.41260 - Steamcore)
SoftPerfect WiFi Guard version 2.1.2 (HKLM\...\{38AFD787-4D2E-4442-92D2-7739F5F92CF4}_is1) (Version: 2.1.2 - SoftPerfect)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 8.0.1026 - SUPERAntiSpyware.com)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.1.3.6 - Synaptics Incorporated)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Windscribe (HKLM-x32\...\{fa690e90-ddb0-4f0c-b3f1-136c084e5fc7}_is1) (Version: 1.83 Build 20 - Windscribe Limited)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
XnView 2.49.2 (HKLM-x32\...\XnView_is1) (Version: 2.49.2 - Gougelet Pierre-e)

Packages:
=========
Acer Explorer -> C:\Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.3007.0_x86__48frkmn4z8aw4 [2017-09-08] (Acer Incorporated)
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1690.1.0_x86__kgqvnymyfvs32 [2020-01-30] (king.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.156.300.0_x86__kgqvnymyfvs32 [2020-01-30] (king.com)
Comunitat lingüística -> C:\Program Files\WindowsApps\Microsoft.LanguageCommunity_2.1905.21511.0_x64__8wekyb3d8bbwe [2019-07-03] (Microsoft Corporation)
Fondos de Naturaleza -> C:\Program Files\WindowsApps\OnionSoftware.FreeNatureWallpapers_1.1.2.0_x64__ervdxkv9fa05r [2017-09-09] (Opening Code LTD) [MS Ad]
Fondos Hermosos -> C:\Program Files\WindowsApps\OnionSoftware.FreeBeautifulWallpapersHD_1.1.0.0_x64__ervdxkv9fa05r [2017-09-09] (Opening Code LTD) [MS Ad]
Ice Crystals PREMIUM -> C:\Program Files\WindowsApps\Microsoft.IceCrystalsPREMIUM_1.0.0.0_neutral__8wekyb3d8bbwe [2020-01-12] (Microsoft Corporation)
Kodi -> C:\Program Files\WindowsApps\XBMCFoundation.Kodi_18.5.500.0_x64__4n2hpmxwrvr6p [2019-12-14] (XBMC Foundation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-21] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-21] (Microsoft Corporation) [MS Ad]
Microsoft News: Noticias destacadas en español -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.34.20074.0_x64__8wekyb3d8bbwe [2020-01-15] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-14] (Microsoft Studios) [MS Ad]
MSN Deportes -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.34.20074.0_x64__8wekyb3d8bbwe [2020-01-15] (Microsoft Corporation) [MS Ad]
MSN Dinero -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.34.20074.0_x64__8wekyb3d8bbwe [2020-01-15] (Microsoft Corporation) [MS Ad]
MSN El Temps -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-18] (Microsoft Corporation) [MS Ad]
OneDrive -> C:\Program Files\WindowsApps\microsoft.microsoftskydrive_19.22.5.0_x64__8wekyb3d8bbwe [2019-11-02] (Microsoft Corporation)
Rellotge -> C:\Program Files\WindowsApps\12199Asparion.AsparionClock_4.0.2.69_x64__f89vgcf3qm37t [2017-09-08] (Asparion) [MS Ad]
River Delta PREMIUM -> C:\Program Files\WindowsApps\Microsoft.RiverDeltaPREMIUM_1.0.0.0_neutral__8wekyb3d8bbwe [2020-01-12] (Microsoft Corporation)
TuneIn Radio -> C:\Program Files\WindowsApps\TuneIn.TuneInRadio_4.0.7.0_x64__6bhtb546zcxnj [2019-09-20] (TuneIn) [MS Ad]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-13] (Twitter Inc.)
uBlock Origin -> C:\Program Files\WindowsApps\37833NikRolls.uBlockOrigin_1.15.24.0_neutral__f8jsg5mm64m62 [2018-12-28] (Nik Rolls)
Umbrellas -> C:\Program Files\WindowsApps\Microsoft.Umbrellas_1.0.0.0_neutral__8wekyb3d8bbwe [2020-01-03] (Microsoft Corporation)
VPN Shield 2 - conexión segura a Internet gratuito para el acceso anónimo privada ilimitada -> C:\Program Files\WindowsApps\D17A4821.VPNShield2_3.16.0.0_x64__2zm6z74hr5n3c [2019-08-14] (Defendemus sp. z o.o.)
What Next PREMIUM -> C:\Program Files\WindowsApps\Microsoft.WhatNextPREMIUM_1.0.0.0_neutral__8wekyb3d8bbwe [2020-01-12] (Microsoft Corporation)
WhatsApp Desktop -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_0.4.315.0_x64__cv1g1gvanyjgm [2020-01-30] (WhatsApp Inc.)
WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x64__8wekyb3d8bbwe [2017-09-08] (Microsoft Corporation)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-12-22] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-12-22] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-12-22] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Ningún archivo
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> Ningún archivo
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> Ningún archivo
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Ningún archivo
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers1-x32: [FFSJ] -> {AB0DFD4E-9145-4412-85E4-D1EC5F4F1B1F} => C:\WINDOWS\SysWow64\FFSJ\FFSJSHL.dll [2008-07-20] () [Archivo no firmado]
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-12-22] (Google LLC -> Google)
ContextMenuHandlers1-x32: [IXnView] -> {A5D35F9F-6A11-4EAA-B70B-7BB6FE32663A} => C:\Program Files (x86)\XnView\ShellEx\XnViewShellExt.dll [2015-02-19] () [Archivo no firmado]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> Ningún archivo
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> Ningún archivo
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-12-22] (Google LLC -> Google)
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Ningún archivo
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2012-11-26] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Ningún archivo
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Ningún archivo
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Lista blanca) ====================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [Archivo no firmado]

==================== Accesos directos & WMI ========================

(Las entradas pueden ser listadas para ser restauradas o eliminadas.)

ShortcutWithArgument: C:\Users\Florenci\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory=Default
ShortcutWithArgument: C:\Users\Florenci\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9501e18d7c2ab92e\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 2"
ShortcutWithArgument: C:\Users\Florenci\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\371b6590bc8d800\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 6"

==================== Módulos cargados (Lista blanca) =============

==================== Alternate Data Streams (Lista blanca) ========

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Asociación (Lista blanca) =================

==================== Internet Explorer sitios de confianza/restringidos ==========

(Si una entrada es incluida en el fixlist, será eliminada del registro.)

IE trusted site: HKU\S-1-5-21-549940460-2404856339-1566757125-1000\...\localhost -> localhost

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2018-08-17 12:21 - 2018-12-09 07:26 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1       localhost

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKU\S-1-5-21-549940460-2404856339-1566757125-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Florenci\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 1.1.1.1 - 1.0.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Firewall de Windows está habilitado.

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

HKLM\...\StartupApproved\StartupFolder: => "HandyAndy.lnk"
HKLM\...\StartupApproved\Run32: => "Malwarebytes TrayApp"
HKU\S-1-5-21-549940460-2404856339-1566757125-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-549940460-2404856339-1566757125-1000\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-549940460-2404856339-1566757125-1000\...\StartupApproved\Run: => "FooPlayer"
HKU\S-1-5-21-549940460-2404856339-1566757125-1000\...\StartupApproved\Run: => "SUPERAntiSpyware"
HKU\S-1-5-21-549940460-2404856339-1566757125-1000\...\StartupApproved\Run: => "RainWallpaper"
HKU\S-1-5-21-549940460-2404856339-1566757125-1000\...\StartupApproved\Run: => "Windscribe"
HKU\S-1-5-21-549940460-2404856339-1566757125-1000\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-549940460-2404856339-1566757125-1000\...\StartupApproved\Run: => "Delete Cached Update Binary"
HKU\S-1-5-21-549940460-2404856339-1566757125-1000\...\StartupApproved\Run: => "Delete Cached Standalone Update Binary"
HKU\S-1-5-21-549940460-2404856339-1566757125-1000\...\StartupApproved\Run: => "GoogleDriveSync"

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [TCP Query User{62978C10-8242-4FF9-8E08-FDE6F7AD5FA9}C:\program files (x86)\google\chrome\application\chrome.exe] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{DD7EFB7A-E245-47E7-9BB5-D8AEA50F1DE4}C:\program files (x86)\google\chrome\application\chrome.exe] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{D94D2BBD-571E-4092-96C3-7B8DB7CFF02F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B29BD4AE-71F3-49A2-BC94-9EDDCAA1F29D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{E3098F87-A507-4884-8657-B9FCBFCE6909}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited)
FirewallRules: [UDP Query User{919A82A7-545A-49BC-BCB6-BF965F4676E6}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited)
FirewallRules: [TCP Query User{3E4700AC-0B8B-4800-948E-3714A6776A62}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited)
FirewallRules: [UDP Query User{B6301D1C-A74E-4F24-80EE-C06A08DFB2F1}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited)
FirewallRules: [{B9DC13F7-7606-48E5-B0E9-F73F6EBC3681}] => (Allow) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{060473E7-0AA5-428E-BD62-C81ED84AE5AC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{65AB0A4C-A669-4ACB-82A5-AE540373E235}] => (Allow) C:\Program Files (x86)\arcai.com\aips.exe (Arcai.com) [Archivo no firmado]
FirewallRules: [{AECC1162-AFBA-434E-8251-01865E1756ED}] => (Allow) C:\Program Files (x86)\arcai.com\aips.exe (Arcai.com) [Archivo no firmado]
FirewallRules: [{136997C0-0310-4679-88EB-D074BA1A1174}] => (Allow) C:\Program Files (x86)\arcai.com\netcut_windows.exe () [Archivo no firmado]
FirewallRules: [{F224D4AE-C3B9-438E-8736-3035CF52163B}] => (Allow) C:\Program Files (x86)\arcai.com\netcut_windows.exe () [Archivo no firmado]

==================== Puntos de Restauración =========================

15-11-2019 20:45:41 Instalador de Módulos de Windows
10-12-2019 21:36:45 Windows Update
15-01-2020 21:28:15 Windows Update
30-01-2020 18:50:07 Windows Update

==================== Dispositivos defectuosos en el Administrador de dispositivos ============


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (01/31/2020 09:26:56 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3104,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/30/2020 08:03:21 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: No se pueden leer las cadenas del contador de rendimiento definidas para el identificador de idioma 003. El primer valor DWORD de la sección de datos contiene el código de error de Win32.

Error: (01/30/2020 07:53:51 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina CoCreateInstance. HR = 0x8007045b, Se está cerrando el sistema.
.

Error: (01/30/2020 07:53:51 PM) (Source: VSS) (EventID: 13) (User: )
Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} y el nombre CEventSystem no puede iniciarse. [0x8007045b, Se está cerrando el sistema.
]

Error: (01/30/2020 07:53:51 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina CoCreateInstance. HR = 0x8007045b, Se está cerrando el sistema.
.

Error: (01/30/2020 07:53:51 PM) (Source: VSS) (EventID: 13) (User: )
Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} y el nombre CEventSystem no puede iniciarse. [0x8007045b, Se está cerrando el sistema.
]

Error: (01/30/2020 07:50:50 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (11836,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/30/2020 07:27:05 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3044,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.


Errores del sistema:
=============
Error: (01/15/2020 10:03:12 PM) (Source: DCOM) (EventID: 10010) (User: Florenci-PC)
Description: El servidor microsoft.windowscommunicationsapps_16005.12228.20410.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca no se registró con DCOM dentro del tiempo de espera requerido.

Error: (01/15/2020 10:01:59 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Servicio Orquestador de actualizaciones no pudo iniciarse debido al siguiente error:
El servicio no respondió a tiempo a la solicitud de inicio o de control.

Error: (01/15/2020 10:01:59 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Servicio Orquestador de actualizaciones.

Error: (01/15/2020 10:01:24 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Protección de software no pudo iniciarse debido al siguiente error:
El servicio no respondió a tiempo a la solicitud de inicio o de control.

Error: (01/15/2020 10:01:24 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Protección de software.

Error: (01/15/2020 10:00:49 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Agente de supervisión en tiempo de ejecución de Protección del sistema no pudo iniciarse debido al siguiente error:
El servicio no respondió a tiempo a la solicitud de inicio o de control.

Error: (01/15/2020 10:00:49 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Agente de supervisión en tiempo de ejecución de Protección del sistema.

Error: (01/15/2020 10:00:14 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Downloaded Maps Manager no pudo iniciarse debido al siguiente error:
El servicio no respondió a tiempo a la solicitud de inicio o de control.


Windows Defender:
===================================
Date: 2020-01-22 20:38:32.631
Description:
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {910CCDAC-8D19-492A-9986-1A649BE52EE2}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2020-01-22 20:25:59.211
Description:
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {177FD78D-EC5E-44C1-8877-C2CAA6F0EC18}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2020-01-17 19:09:15.840
Description:
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {544E0A37-957C-4361-9B89-9C2C267D085F}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2020-01-15 23:08:01.346
Description:
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {F2567F29-BC09-4BAA-8161-8CA486B0143C}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2020-01-09 20:14:10.004
Description:
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {3A61BD4E-05D3-4D5E-BCF8-89C24EE73B53}
Tipo de examen: Antimalware
Parámetros de examen: Examen completo
Usuario: Florenci-PC\Florenci

Date: 2020-01-15 22:02:04.181
Description:
La característica Protección en tiempo real de Antivirus de Windows Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x80004005
Descripción del error: Error no especificado
Motivo: El controlador de filtro no examinó los elementos y está en el modo indirecto. Esto puede deberse a recursos insuficientes.

Date: 2020-01-12 19:55:31.397
Description:
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad:
Versión anterior de inteligencia de seguridad: 1.307.2007.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor:
Versión anterior del motor: 1.1.16600.7
Código de error: 0x80240016
Descripción del error: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.

Date: 2019-12-07 09:07:54.076
Description:
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad:
Versión anterior de inteligencia de seguridad: 1.305.3478.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor:
Versión anterior del motor: 1.1.16600.7
Código de error: 0x80240022
Descripción del error: The program can't check for definition updates.

Date: 2019-11-19 20:46:31.458
Description:
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad:
Versión anterior de inteligencia de seguridad: 1.305.2435.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor:
Versión anterior del motor: 1.1.16500.1
Código de error: 0x80240438
Descripción del error: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.

Date: 2019-10-13 19:36:57.789
Description:
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad:
Versión anterior de inteligencia de seguridad: 1.303.1548.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor:
Versión anterior del motor: 1.1.16400.2
Código de error: 0x80240016
Descripción del error: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.

CodeIntegrity:
===================================

Date: 2019-11-19 19:47:14.694
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2019-11-19 19:47:14.680
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2019-11-19 19:47:14.060
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2019-11-19 19:47:14.046
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2019-11-19 19:47:14.028
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsreg.dll because the set of per-page image hashes could not be found on the system.

Date: 2019-11-19 19:47:14.009
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsreg.dll because the set of per-page image hashes could not be found on the system.

Date: 2019-11-19 19:47:13.063
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.

Date: 2019-11-19 19:47:12.964
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.

==================== Información de la memoria ===========================

BIOS: Acer V1.02 04/20/2011
Placa base: Acer Aspire 5733Z
Procesador: Intel(R) Pentium(R) CPU P6100 @ 2.00GHz
Porcentaje de memoria en uso: 37%
RAM física total: 7862.7 MB
RAM física disponible: 4927.36 MB
Virtual total: 15798.7 MB
Virtual disponible: 13008.51 MB

==================== Unidades ================================

Drive c: (Acer) (Fixed) (Total:449.66 GB) (Free:348.5 GB) NTFS

\\?\Volume{117a4172-a2e8-11e3-aced-806e6f6e6963}\ (SYSTEM RESERVED) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{117a4171-a2e8-11e3-aced-806e6f6e6963}\ (PQSERVICE) (Fixed) (Total:16 GB) (Free:2.78 GB) NTFS

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: AD5CD5F4)
Partition 1: (Not Active) - (Size=16 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=449.7 GB) - (Type=07 NTFS)

==================== Final de Addition.txt =======================


que tengo que hacer???
 

jbex

El que peca y reza empata
Administrador
Hay que limpiar Chrome o desinstalarlo y volverlo a instalar, procede así:
  1. Abre Chrome.
  2. Arriba a la derecha, haz clic en Más nfslP62AxJSwt5Nj0bNbpaYHz2pyscExleiofsH2kQ=w18-h18.png sZftTTIHjBrdV-WsGPIhGjaxcEXjfgdIfW_UNG7Sw0=w13-h18.png Configuración.
  3. Abajo, haz clic en Configuración avanzada.
  4. En la sección "Recuperar ajustes y borrar", haz clic en Limpiar ordenador.
  5. Haz clic en Buscar.
  6. Si se te pide que desinstales software no deseado, haz clic en Eliminar. Puede que tengas que reiniciar el ordenador.
Abre Notepad y copia lo siguiente, lo guardas con el nombre fixlist.txt. Es importante que la herramienta Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio o carpeta) o si no, no trabajara.
Código:
Start Create
RestorePoint:
CloseProcesses:
2018-12-25 09:13 - 2018-12-25 09:13 - 000003584 _____ () C:\Users\Florenci\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
END
Ejecutas Frst.exe y presionas el botón Fix y aguardas a que termine. La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).

Estas seguro de que seguiste los pasos que señalamos aquí: Importante - Limpieza de spyware
Por que yo veo problemas de infección en tu equipo. Quiero que sigas los pasos de la guia anterior.
Luego escanea con al menos dos antivirus online el sistema Los mejores antivirus online / Seguridad Windows / Trucos de Windows
 

Principiante90

Miembro
Miembro
Gracias por responder! No, no hice los pasos de tu primera respuesta sobre todo de pasar las herramientas, ahora lo hare...

Crees que el problema del que tratamos es debido a que hay virus en mi ordenador?

Puedo pasar las herramientas mientras estoy trabajando con el ordenador?

Y se me.olvidaba, los virus o infecciones son provocados por no actualizar programas tipo ccleaner etc? Windows update siempre lo reviso y esta al dia de actualizaciones!
 
Última edición:

Principiante90

Miembro
Miembro
Aqui lo tienes el log que me has pedido:
Código:
Resultados de la corrección de Farbar Recovery Scan Tool (x64) Versión: 01-02-2020
Ejecutado por Florenci (01-02-2020 18:21:38) Run:1
Ejecutado desde C:\Users\Florenci\Desktop
Perfiles cargados: Florenci (Perfiles disponibles: Florenci & Administrador)
Modo de Inicio: Normal
==============================================

fixlist contenido:
*****************
Start Create
RestorePoint:
CloseProcesses:
2018-12-25 09:13 - 2018-12-25 09:13 - 000003584 _____ () C:\Users\Florenci\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
END
*****************

Start Create => Error: Ninguna corrección automática encontrada para esta entrada.
RestorePoint: => Error: Ninguna corrección automática encontrada para esta entrada.
Procesos cerrados correctamente.
C:\Users\Florenci\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => movido correctamente
C:\Windows\System32\Drivers\etc\hosts => movido correctamente
Hosts restaurado correctamente.

========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-21-549940460-2404856339-1566757125-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-21-549940460-2404856339-1566757125-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente


========= Final de RemoveProxy: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= Final de CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows

No se puede realizar ninguna operaci¢n en Ethernet mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local* 2 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local* 3 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local* 12 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Ethernet 2 mientras los medios
est‚n desconectados.

Adaptador de Ethernet Ethernet:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . :

Adaptador de LAN inal mbrica Conexi¢n de  rea local* 2:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . :

Adaptador de LAN inal mbrica Conexi¢n de  rea local* 3:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . :

Adaptador de LAN inal mbrica Conexi¢n de  rea local* 12:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . :

Adaptador de Ethernet Ethernet 2:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . :

Adaptador de LAN inal mbrica Wi-Fi:

   Sufijo DNS espec¡fico para la conexi¢n. . :
   V¡nculo: direcci¢n IPv6 local. . . : fe80::44e3:8a4b:a705:fff2%6
   Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.0.219
   M scara de subred . . . . . . . . . . . . : 255.255.255.0
   Puerta de enlace predeterminada . . . . . : 192.168.0.1

========= Final de CMD: =========


========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= Final de CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.

0 out of 0 jobs canceled.

========= Final de CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 10772480 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 10661555 B
Java, Flash, Steam htmlcache => 492 B
Windows/system/drivers => 2480 B
Edge => 68798 B
Chrome => 15149151 B
Firefox => 32612953 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 1542 B
Florenci => 20370124 B
Administrador => 20395404 B

RecycleBin => 107353 B
EmptyTemp: => 105 MB datos temporales eliminados.

================================


El sistema necesita reiniciarse.

==== Final de Fixlog 18:22:15 ====
ahorame gustaria que me dijeras que ha echo esto, he echo lo que me has pedido he desinstalado chrome y lo he vuelto a instalar, ahora solo falta pasar las herramientas que me has dicho que lo hare
 

jbex

El que peca y reza empata
Administrador
Vuelve a ejecutar el Frst.exe y me subes el log.
Un saludo
 

Principiante90

Miembro
Miembro
Compañero, ahora estoy pasando Dr.Web CureIt y Eset Online Scanner como tu me has dicho, dos antivirus online de calidad.


Que tengo que hacer con Frst.exe? solo analizar y poner el log y me dices lo que encuentra? lo digo para no pifiarla..

y por ultimo me dices como esta todo en mi ordenador y como eliminar dichas herramientas..

muchas gracias!
 

jbex

El que peca y reza empata
Administrador
Dejame el log para ver si esta limpio o sigue infectado.
Eliminar los programas no creo deba dejarte un manual, si no sabes eliminar un programa, creo deberíamos dejar la limpieza desde el foro y llevaras el equipo a una persona con algunos conocimientos básicos de lo que hace.
Un saludo
 

Principiante90

Miembro
Miembro
Ya esta: te dejo el log en su busqueda de FRST y (tambien de los demas logs de antivirus si te son necesarios)
Código:
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.18

Platform:  x64 Windows 10 (Home), 10.0.18363.628 (ReleaseId: 1909), Service Pack: 0
Time:      02.02.2020 - 13:08 (UTC+01:00)
Language:  OS: Spanish (0xC0A). Display: Catalan (0x403). Non-Unicode: Catalan (0x403)
Elevated:  Yes
Ran by:    Florenci    (group: Administrator) on FLORENCI-PC, FirstRun: yes

Chrome:  79.0.3945.130
Firefox: 72.0.2.7321
Edge:    11.0.18362.628
Internet Explorer: 11.592.18362.0
Default: "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Chrome)

Boot mode: Normal

Running processes:
Number | Path
   1  C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler.exe
   1  C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler64.exe
   1  C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
   1  C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
   1  C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
   1  C:\Program Files (x86)\Windscribe\WindscribeService.exe
   1  C:\Program Files (x86)\arcai.com\aips.exe
   1  C:\Program Files (x86)\arcai.com\netcut_windows.exe
   1  C:\Program Files\Bonjour\mDNSResponder.exe
   1  C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
   1  C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe
   1  C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
   1  C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
   1  C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
   1  C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
   1  C:\Program Files\SUPERAntiSpyware\SASCore64.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
   1  C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Weather.exe
   1  C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.55.131.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
   1  C:\Program Files\WindowsApps\Microsoft.WindowsStore_12001.1001.5.0_x64__8wekyb3d8bbwe\WinStore.App.exe
   1  C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19122.138.0_x64__8wekyb3d8bbwe\YourPhone.exe
   1  C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12430.20136.0_x64__8wekyb3d8bbwe\HxOutlook.exe
   1  C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12430.20136.0_x64__8wekyb3d8bbwe\HxTsr.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\MsMpEng.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\NisSrv.exe
   1  C:\Users\Florenci\Desktop\HiJackThis.exe
   1  C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\ApplicationFrameHost.exe
   8  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SecurityHealthSystray.exe
   1  C:\Windows\System32\SettingSyncHost.exe
   1  C:\Windows\System32\SgrmBroker.exe
   1  C:\Windows\System32\SrTasks.exe
   1  C:\Windows\System32\VSSVC.exe
   1  C:\Windows\System32\audiodg.exe
   3  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dasHost.exe
   2  C:\Windows\System32\dllhost.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\hkcmd.exe
   1  C:\Windows\System32\igfxpers.exe
   1  C:\Windows\System32\igfxtray.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\msiexec.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  75  C:\Windows\System32\svchost.exe
   2  C:\Windows\System32\taskhostw.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
   1  C:\Windows\explorer.exe

O4 - HKCU\..\StartupApproved\Run: [GoogleDriveSync] = C:\Program Files\Google\Drive\googledrivesync.exe /autostart (2019/07/12)
O4 - HKCU\..\StartupApproved\Run: [OneDrive] = C:\Users\Florenci\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background (2019/07/12)
O4 - HKCU\..\StartupApproved\Run: [Windscribe] = C:\Program Files (x86)\Windscribe\Windscribe.exe -os_restart (2019/11/19)
O4 - HKLM\..\Run: [HotKeysCmds] = C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [IgfxTray] = C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [Persistence] = C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RtHDVCpl] = C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
O4 - HKLM\..\Run: [SecurityHealth] = C:\WINDOWS\system32\SecurityHealthSystray.exe
O4 - HKLM\..\Session Manager: [BootExecute] = C:\WINDOWS\system32\PCloudBroom64.exe \systemroot\system32\BroomData.bit
O4 - HKLM\..\Session Manager: [BootExecute] = C:\WINDOWS\system32\PCloudBroom64.exe \systemroot\system32\BroomData.bit
O4 - HKLM\..\Session Manager: [BootExecute] = C:\WINDOWS\system32\PCloudBroom64.exe \systemroot\system32\BroomData.bit
O4 - HKU\S-1-5-19\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade
O4 - HKU\S-1-5-20\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade
O4-32 - HKLM\..\Run: [Intel Driver & Support Assistant] = C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
O9 - Button: HKLM\..\{48A61126-9A19-4C50-A214-FF08CB94995C}: McAfee WebAdvisor - (no file)
O9 - Tools menu item: HKLM\..\{48A61126-9A19-4C50-A214-FF08CB94995C}: McAfee WebAdvisor - (no file)
O9-32 - Button: HKLM\..\{48A61126-9A19-4C50-A214-FF08CB94995C}: McAfee WebAdvisor - (no file)
O9-32 - Tools menu item: HKLM\..\{48A61126-9A19-4C50-A214-FF08CB94995C}: McAfee WebAdvisor - (no file)
O15 - Trusted Zone: *.localhost
O17 - DHCP DNS 1: 1.1.1.1
O17 - DHCP DNS 2: 1.0.0.1
O17 - DHCP DNS 3: 8.8.8.8 (Well-known DNS: Google)
O17 - DHCP DNS 4: 8.8.4.4 (Well-known DNS: Google)
O21 - HKLM\..\ShellIconOverlayIdentifiers\  GoogleDriveBlacklisted: Google Drive Shell extension - {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} - C:\Program Files\Google\Drive\googledrivesync64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\  GoogleDriveSynced: Google Drive Shell extension - {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} - C:\Program Files\Google\Drive\googledrivesync64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\  GoogleDriveSyncing: Google Drive Shell extension - {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} - C:\Program Files\Google\Drive\googledrivesync64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\00asw: (no name) - {472083B0-C522-11CF-8763-00608CC02F24} - (no file)
O22 - Task (.job): (disabled) (Not scheduled) CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
O23 - Service R2: Arp Intelligent Protection Service - (AIPS) - C:\Program Files (x86)\arcai.com\aips.exe
O23 - Service R2: Energy Server Service queencreek - (ESRV_SVC_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe "--AUTO_START" "--start" "--start_options_registry_key" "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\ESRV_SVC_QUEENCREEK\_start"
O23 - Service R2: Intel(R) Driver & Support Assistant - (DSAService) - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
O23 - Service R2: Intel(R) System Usage Report Service SystemUsageReportSvc_QUEENCREEK - (SystemUsageReportSvc_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
O23 - Service R2: SAS Core Service - (!SASCORE) - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service R2: Servicio Bonjour - (Bonjour Service) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service R2: SynTPEnh Caller Service - (SynTPEnhService) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service R2: WindscribeService - C:\Program Files (x86)\Windscribe\WindscribeService.exe
O23 - Service R3: Intel(R) Driver & Support Assistant Updater - (DSAUpdateService) - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
O23 - Service R3: Malwarebytes Service - (MBAMService) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service S2: Servei Actualització del Microsoft Edge (edgeupdate) - (edgeupdate) - C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe /svc
O23 - Service S2: Servei de Google Update (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S3: Google Chrome Elevation Service - (GoogleChromeElevationService) - C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.130\elevation_service.exe
O23 - Service S3: Intel(R) SUR QC Software Asset Manager - (Intel(R) SUR QC SAM) - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe
O23 - Service S3: Microsoft Edge Elevation Service - (MicrosoftEdgeElevationService) - C:\Program Files (x86)\Microsoft\Edge\Application\79.0.309.71\elevation_service.exe
O23 - Service S3: Mozilla Maintenance Service - (MozillaMaintenance) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service S3: Remote Packet Capture Protocol v.0 (experimental) - (rpcapd) - C:\Program Files (x86)\WinPcap\rpcapd.exe -d -f "C:\Program Files (x86)\WinPcap\rpcapd.ini"
O23 - Service S3: Servei Actualització del Microsoft Edge (edgeupdatem) - (edgeupdatem) - C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe /medsvc
O23 - Service S3: Servei de Google Update (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc
O23 - Service S3: User Energy Server Service queencreek - (USER_ESRV_SVC_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe "--run_as_user_process"
--
End of file - Time spent: 52,3 sec. - 20826 bytes, CRC32: FFFFFFFF. Sign: 浠큍
 

Adjuntos

jbex

El que peca y reza empata
Administrador
Ejecuta HiJackThis y Fix a:

Código:
O4 - HKLM\..\Session Manager: [BootExecute] = C:\WINDOWS\system32\PCloudBroom64.exe \systemroot\system32\BroomData.bit
O4 - HKLM\..\Session Manager: [BootExecute] = C:\WINDOWS\system32\PCloudBroom64.exe \systemroot\system32\BroomData.bit
O4 - HKLM\..\Session Manager: [BootExecute] = C:\WINDOWS\system32\PCloudBroom64.exe \systemroot\system32\BroomData.bit

Abre Notepad y copia lo siguiente, lo guardas con el nombre fixlist.txt. Es importante que la herramienta Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio o carpeta) o si no, no trabajara.
Código:
Start Create
RestorePoint:
CloseProcesses:
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\local.js [2019-07-21] <==== ATENCIÓN (Apunta a archivo *.cfg)
FF ExtraCheck: C:\Program Files\mozilla firefox\mozilla.cfg [2019-07-21] <==== ATENCIÓN
CHR Profile: C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Default [2020-02-02]
CHR Extension: (Presentacions) - C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-02-01]
CHR Extension: (Documents) - C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-02-01]
CHR Extension: (Google Drive) - C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-02-01]
CHR Extension: (YouTube) - C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-02-01]
CHR Extension: (Fulls de càlcul) - C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-02-01]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2020-02-01]
CHR Extension: (Documents de Google sense connexió) - C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-02-01]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2020-02-01]
CHR Extension: (Sistema de pagaments de Chrome Web Store) - C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-02-01]
CHR Extension: (Gmail) - C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-02-01]
CHR Extension: (Chrome Media Router) - C:\Users\Florenci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-02-01]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKU\S-1-5-21-549940460-2404856339-1566757125-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
END
Ejecutas Frst.exe y presionas el botón Fix y aguardas a que termine. La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
 

Principiante90

Miembro
Miembro
aqui tienes los logs:
Código:
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.18

Platform:  x64 Windows 10 (Home), 10.0.18363.628 (ReleaseId: 1909), Service Pack: 0
Time:      03.02.2020 - 22:18 (UTC+01:00)
Language:  OS: Spanish (0xC0A). Display: Catalan (0x403). Non-Unicode: Catalan (0x403)
Elevated:  Yes
Ran by:    Florenci    (group: Administrator) on FLORENCI-PC, FirstRun: no

Chrome:  79.0.3945.130
Firefox: 72.0.2.7321
Edge:    11.0.18362.628
Internet Explorer: 11.592.18362.0
Default: "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Chrome)

Boot mode: Normal

Running processes:
Number | Path
   9  C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
   1  C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler.exe
   1  C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler64.exe
   1  C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
   1  C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
   1  C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
   1  C:\Program Files (x86)\Windscribe\WindscribeService.exe
   1  C:\Program Files\Bitdefender Agent\DiscoverySrv.exe
   1  C:\Program Files\Bitdefender Agent\ProductAgentService.exe
   1  C:\Program Files\Bitdefender Home Scanner\hvasrv.exe
   1  C:\Program Files\Bonjour\mDNSResponder.exe
   1  C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
   1  C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe
   1  C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
   1  C:\Program Files\SUPERAntiSpyware\SASCore64.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
   1  C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Weather.exe
   1  C:\Program Files\WindowsApps\Microsoft.WindowsStore_12001.1001.5.0_x64__8wekyb3d8bbwe\WinStore.App.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.7-0\MsMpEng.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.7-0\NisSrv.exe
   1  C:\Users\Florenci\Desktop\HiJackThis.exe
   1  C:\Windows\ImmersiveControlPanel\SystemSettings.exe
   1  C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\ApplicationFrameHost.exe
   5  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchFilterHost.exe
   1  C:\Windows\System32\SearchIndexer.exe
   2  C:\Windows\System32\SearchProtocolHost.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SecurityHealthSystray.exe
   1  C:\Windows\System32\SettingSyncHost.exe
   1  C:\Windows\System32\SgrmBroker.exe
   1  C:\Windows\System32\audiodg.exe
   1  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dasHost.exe
   3  C:\Windows\System32\dllhost.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\hkcmd.exe
   1  C:\Windows\System32\igfxpers.exe
   1  C:\Windows\System32\igfxtray.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  77  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\explorer.exe

O4 - HKCU\..\StartupApproved\Run: [OneDrive] = C:\Users\Florenci\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background (2019/07/12)
O4 - HKCU\..\StartupApproved\Run: [Windscribe] = C:\Program Files (x86)\Windscribe\Windscribe.exe -os_restart (2019/11/19)
O4 - HKLM\..\Run: [HotKeysCmds] = C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [IgfxTray] = C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [Persistence] = C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RtHDVCpl] = C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
O4 - HKLM\..\Run: [SecurityHealth] = C:\WINDOWS\system32\SecurityHealthSystray.exe
O4 - HKU\S-1-5-19\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade
O4 - HKU\S-1-5-20\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade
O4-32 - HKLM\..\Run: [Intel Driver & Support Assistant] = C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
O9 - Button: HKLM\..\{48A61126-9A19-4C50-A214-FF08CB94995C}: McAfee WebAdvisor - (no file)
O9 - Tools menu item: HKLM\..\{48A61126-9A19-4C50-A214-FF08CB94995C}: McAfee WebAdvisor - (no file)
O9-32 - Button: HKLM\..\{48A61126-9A19-4C50-A214-FF08CB94995C}: McAfee WebAdvisor - (no file)
O9-32 - Tools menu item: HKLM\..\{48A61126-9A19-4C50-A214-FF08CB94995C}: McAfee WebAdvisor - (no file)
O15 - Trusted Zone: *.localhost
O17 - DHCP DNS 1: 1.1.1.1
O17 - DHCP DNS 2: 1.0.0.1
O17 - DHCP DNS 3: 8.8.8.8 (Well-known DNS: Google)
O17 - DHCP DNS 4: 8.8.4.4 (Well-known DNS: Google)
O21 - HKLM\..\ShellIconOverlayIdentifiers\  GoogleDriveBlacklisted: Google Drive Shell extension - {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} - C:\Program Files\Google\Drive\googledrivesync64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\  GoogleDriveSynced: Google Drive Shell extension - {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} - C:\Program Files\Google\Drive\googledrivesync64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\  GoogleDriveSyncing: Google Drive Shell extension - {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} - C:\Program Files\Google\Drive\googledrivesync64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\00asw: (no name) - {472083B0-C522-11CF-8763-00608CC02F24} - (no file)
O22 - Task (.job): (disabled) (Not scheduled) CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
O23 - Service R2: Bitdefender Home Scanner - (hvasrv) - C:\Program Files\Bitdefender Home Scanner\hvasrv.exe
O23 - Service R2: Bitdefender Product Agent Service - (ProductAgentService) - C:\Program Files\Bitdefender Agent\ProductAgentService.exe
O23 - Service R2: Intel(R) Driver & Support Assistant - (DSAService) - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
O23 - Service R2: Intel(R) System Usage Report Service SystemUsageReportSvc_QUEENCREEK - (SystemUsageReportSvc_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
O23 - Service R2: SAS Core Service - (!SASCORE) - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service R2: Servicio Bonjour - (Bonjour Service) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service R2: SynTPEnh Caller Service - (SynTPEnhService) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service R2: WindscribeService - C:\Program Files (x86)\Windscribe\WindscribeService.exe
O23 - Service R3: Intel(R) Driver & Support Assistant Updater - (DSAUpdateService) - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
O23 - Service S2: Energy Server Service queencreek - (ESRV_SVC_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe "--AUTO_START" "--start" "--start_options_registry_key" "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\ESRV_SVC_QUEENCREEK\_start"
O23 - Service S2: Servei Actualització del Microsoft Edge (edgeupdate) - (edgeupdate) - C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe /svc
O23 - Service S2: Servei de Google Update (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S3: Google Chrome Elevation Service - (GoogleChromeElevationService) - C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.130\elevation_service.exe
O23 - Service S3: Intel(R) SUR QC Software Asset Manager - (Intel(R) SUR QC SAM) - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe
O23 - Service S3: Malwarebytes Service - (MBAMService) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service S3: Microsoft Edge Elevation Service - (MicrosoftEdgeElevationService) - C:\Program Files (x86)\Microsoft\Edge\Application\79.0.309.71\elevation_service.exe
O23 - Service S3: Mozilla Maintenance Service - (MozillaMaintenance) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service S3: Remote Packet Capture Protocol v.0 (experimental) - (rpcapd) - C:\Program Files (x86)\WinPcap\rpcapd.exe -d -f "C:\Program Files (x86)\WinPcap\rpcapd.ini"
O23 - Service S3: Servei Actualització del Microsoft Edge (edgeupdatem) - (edgeupdatem) - C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe /medsvc
O23 - Service S3: Servei de Google Update (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc
O23 - Service S3: User Energy Server Service queencreek - (USER_ESRV_SVC_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe "--run_as_user_process"
--
End of file - Time spent: 34,8 sec. - 19026 bytes, CRC32: FFFFFFFF. Sign: 䯬閝
que tal esta todo ahora?
 

Adjuntos

jbex

El que peca y reza empata
Administrador
Mira haz la restauración a fabrica eliminando perfiles y programas.
Una vez el sistema este limpio ve con cuidado instalando los programas que en verdad necesites.
 
Estado
Cerrado para nuevas respuestas.
Arriba Pie