Scribd
Upload
122 views11 pages

FRST

Uploaded by

Jesus
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
122 views11 pages

FRST

Uploaded by

Jesus
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 11

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64)

Versión: 07-12-2023
Ejecutado por alfonso.gonzalez (administrador) sobre STIC-JGONZALEZV (Dell Inc.
Latitude 5400) (07-12-2023 20:50:11)
Ejecutado desde C:\Users\alfonso.gonzalez\Downloads\FRST64.exe
Perfiles cargados: Soporte & alfonso.gonzalez
Plataforma: Microsoft Windows 11 Pro Versión 22H2 22621.2715 (X64) Idioma: Español
(México)
Navegador predeterminado: Edge
Modo de Inicio: Normal

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no


será movido.)

(C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe ->) (Microsoft


Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files\Symantec\Symantec Endpoint Protection\14.3.10148.8000.105\Bin64\
ccSvcHst.exe ->) (Symantec Corporation -> Broadcom) C:\Program Files\Symantec\
Symantec Endpoint Protection\14.3.10148.8000.105\Bin64\SETDADCollector.exe
(cmd.exe ->) (Symantec Corporation -> Broadcom) C:\ProgramData\Symantec\Symantec
Endpoint Protection\14.3.10148.8000.105\Data\Definitions\WebExtDefs\20231206.136\
webextbridge.exe
(DriverStore\FileRepository\dptf_cpu.inf_amd64_1da48d5885266bb7\esif_uf.exe ->)
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\
FileRepository\dptf_cpu.inf_amd64_1da48d5885266bb7\dptf_helper.exe
(explorer.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\
FileRepository\wavesapo8de.inf_amd64_b4d0b189ff2aba03\WavesSvc64.exe
(explorer.exe ->) (Wondershare Technology Group Co.,Ltd -> Wondershare) C:\Program
Files\Wondershare\PDFelement10\PENotify.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.363\
GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.363\
GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\
Edge\Application\msedge.exe <37>
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot -
Search & Destroy 2\SDTray.exe
(services.exe ->) ("STMicroelectronics Srl" -> ) C:\Windows\System32\drivers\
DellFFDPWmiService.exe
(services.exe ->) (Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\
Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Broadcom Inc -> ) C:\Windows\System32\bcmUshUpgradeService.exe
(services.exe ->) (Broadcom Inc -> Broadcom Corporation) C:\Windows\System32\
bcmHostControlService.exe
(services.exe ->) (Broadcom Inc -> Broadcom Corporation) C:\Windows\System32\
bcmHostStorageService.exe
(services.exe ->) (Broadcom Inc -> Broadcom) C:\Program Files\Symantec\Symantec
Endpoint Protection\14.3.10148.8000.105\Bin64\sepWscSvc64.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\
DriverStore\FileRepository\cui_dch.inf_amd64_e6d6f5a306002a89\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\
DriverStore\FileRepository\dal.inf_amd64_64d7fcfcde9b9c10\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\
DriverStore\FileRepository\dptf_cpu.inf_amd64_1da48d5885266bb7\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\
DriverStore\FileRepository\igcc_dch.inf_amd64_141eb88527011137\
OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\
DriverStore\FileRepository\iigd_dch.inf_amd64_d0b39b11619fd0c4\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\
DriverStore\FileRepository\iigd_dch.inf_amd64_d0b39b11619fd0c4\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\
DriverStore\FileRepository\lms.inf_amd64_981d034327bfbdcc\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\
DriverStore\FileRepository\mewmiprov.inf_amd64_f3c201b4c28c14d0\
WMIRegistrationService.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\
Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_9c788f1d162b1224\
RstMwService.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\
Microsoft Update Health Tools\uhssvc.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\
Windows\System32\DriverStore\FileRepository\
realtekservice.inf_amd64_b55ed36a9a78cc75\RtkAudUService64.exe <3>
(services.exe ->) (Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files
(x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(services.exe ->) (Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files
(x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(services.exe ->) (Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\
Intel(R) Audio Service\IntelAudioService.exe
(services.exe ->) (Symantec Corporation -> Broadcom) C:\Program Files\Symantec\
Symantec Endpoint Protection\14.3.10148.8000.105\Bin64\ccSvcHst.exe <3>
(services.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\
FileRepository\wavesapo8de.inf_amd64_b4d0b189ff2aba03\WavesSysSvc64.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\
WindowsApps\Microsoft.GamingApp_2311.1001.7.0_x64__8wekyb3d8bbwe\
XboxGameBarWidgets.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\
WindowsApps\Microsoft.GamingApp_2311.1001.7.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\
MicrosoftWindows.Client.WebExperience_423.30700.0.0_x64__cw5n1h2txyewy\Dashboard\
WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\
dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\
smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\
wlanext.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado
a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\


realtekservice.inf_amd64_b55ed36a9a78cc75\RtkAudUService64.exe [3505456 2022-08-22]
(Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\
wavesapo8de.inf_amd64_b4d0b189ff2aba03\WavesSvc64.exe [1774584 2021-02-18] (Waves
Inc -> Waves Audio Ltd.)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\
SDTray.exe [5109624 2023-01-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restricción <====
ATENCIÓN
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restricción <====
ATENCIÓN
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Microsoft\WindowsFirewall: Restricción <==== ATENCIÓN
HKLM\Software\Policies\...\system: [GroupPolicyRefreshTime] 10
HKLM\Software\Policies\...\system: [GroupPolicyRefreshTimeOffset] 5
HKU\S-1-5-21-57989841-1592454029-725345543-8249104\...\Run:
[MicrosoftEdgeAutoLaunch_DF057715C8BF96194FF3769C5E9CAB72] => "C:\Program Files
(x86)\Microsoft\Edge\Application\msedge.exe" --win-session-start [3896768 2023-11-
29] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-57989841-1592454029-725345543-8249104\...\Policies\system: [Wallpaper]
%USERPROFILE%\Wallpaper.jpg
HKU\S-1-5-21-57989841-1592454029-725345543-8249104\...\Policies\system:
[WallpaperStyle] 4
HKLM\...\Print\Monitors\Wondershare PDFelement Monitor: C:\WINDOWS\system32\
PEPrinterMonitor.dll [292592 2023-11-13] (Wondershare Technology Group Co.,Ltd ->
Wondershare Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-
AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\
119.0.6045.200\Installer\chrmstp.exe [2023-11-30] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-
0586ADD46B35}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Wondershare
PEScreenshot.lnk [2023-11-17]
ShortcutTarget: Wondershare PEScreenshot.lnk -> C:\Program Files\Wondershare\
PDFelement10\PENotify.exe (Wondershare Technology Group Co.,Ltd -> Wondershare)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Wondershare
PEToolbox.lnk [2023-11-17]
ShortcutTarget: Wondershare PEToolbox.lnk -> C:\Program Files\Wondershare\
PDFelement10\PENotify.exe (Wondershare Technology Group Co.,Ltd -> Wondershare)
BootExecute: autocheck autochk * sdnclean64.exe
GroupPolicy: Restricción - Chrome <==== ATENCIÓN
Policies: C:\ProgramData\NTUSER.pol: Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restricción <==== ATENCIÓN

==================== Tareas programadas (Lista blanca) =================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo
no se moverá a menos que sea añadido al listado por separado.)

Task: {43434538-09E4-441F-9CE0-92DB34FD82A9} - System32\Tasks\Adobe Acrobat Update


Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1160408
2017-02-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {9CD356EB-CD68-42E6-A983-880036212C31} - System32\Tasks\
GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\
GoogleUpdate.exe [156104 2023-10-10] (Google LLC -> Google LLC)
Task: {25EE7AC8-5458-456D-AF35-5EDD39468043} - System32\Tasks\
GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[156104 2023-10-10] (Google LLC -> Google LLC)
Task: {8F55C095-8CA3-4468-BC06-EC1E836E8C5B} - System32\Tasks\Microsoft\Office\
Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\
Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation ->
Microsoft Corporation)
Task: {F68E74A6-38AA-46F0-B73A-1603272A1AF1} - System32\Tasks\Microsoft\Office\
OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\
msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {A1040DA4-5EF8-4B77-A3A5-9542FA7EB141} - System32\Tasks\Microsoft\Office\
OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\
msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {55C79A0F-BE78-4DC5-B91B-C16F85B8D6DF} - System32\Tasks\Microsoft\Windows\
GroupPolicy\{3E0A038B-D834-4930-9981-E89C9BFF83AA} => C:\WINDOWS\system32\
gpupdate.exe [53248 2022-05-06] (Microsoft Windows -> Microsoft Corporation)
Task: {C4101BF3-AFBB-4DB5-9B72-01BF2A18782A} - System32\Tasks\Microsoft\Windows\
GroupPolicy\{A7719E0F-10DB-4640-AD8C-490CC6AD5202} => C:\WINDOWS\system32\
gpupdate.exe [53248 2022-05-06] (Microsoft Windows -> Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\
Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\
MbaeParserTask.exe (Ningún archivo)
Task: {1F4C1623-299B-44F7-BA20-1C1DC18FF293} - System32\Tasks\Microsoft\Windows\
UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC
RebootDialog (Ningún archivo)
Task: {D0D0C7BA-2780-4C47-8E2B-C25BA7231585} - System32\Tasks\Microsoft\Windows\
UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe
/RunOnBattery RebootDialog (Ningún archivo)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\
UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe
(Ningún archivo)
Task: {C459629B-15E2-42C7-912D-4C559E579022} - System32\Tasks\Safer-Networking\
Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot -
Search & Destroy 2\SDUpdate.exe [5339512 2023-02-14] (Safer-Networking Ltd. ->
Safer-Networking Ltd.)
Task: {7D515CB8-40A6-439C-8540-D2CEC467CFFA} - System32\Tasks\Symantec Endpoint
Protection\Symantec Endpoint Protection Autofix => C:\Program Files\Symantec\
Symantec Endpoint Protection\14.3.10148.8000.105\Bin64\SymErr.exe [100040 2023-10-
19] (Symantec Corporation -> Broadcom)
Task: {AAF25934-53BE-4934-A161-8D5421F171E8} - System32\Tasks\Symantec Endpoint
Protection\Symantec Endpoint Protection Error Analyzer => C:\Program Files\
Symantec\Symantec Endpoint Protection\14.3.10148.8000.105\Bin64\SymErr.exe [100040
2023-10-19] (Symantec Corporation -> Broadcom)
Task: {EC971772-EF5F-46BE-AB90-B60B581A8FE7} - System32\Tasks\Symantec Endpoint
Protection\Symantec Endpoint Protection Error Processor => C:\Program Files\
Symantec\Symantec Endpoint Protection\14.3.10148.8000.105\Bin64\SymErr.exe [100040
2023-10-19] (Symantec Corporation -> Broadcom)

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido.
El archivo que está siendo ejecutado por la tarea no será movido.)

==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será


eliminado o restaurado a su valor predeterminado.)

Hosts: Hay más de una entrada en Hosts. Consulte la sección Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{4ea8d3e9-de09-4a87-b08c-a5956c683c59}: [DhcpNameServer]
192.168.1.254
Tcpip\..\Interfaces\{659f67dc-54d5-426b-beca-2ad4cf07d7ec}: [DhcpNameServer]
192.168.1.254

Edge:
=======
Edge Profile: C:\Users\alfonso.gonzalez\AppData\Local\Microsoft\Edge\User Data\
Default [2023-12-07]
Edge Extension: (Documentos de Google sin conexión) - C:\Users\alfonso.gonzalez\
AppData\Local\Microsoft\Edge\User Data\Default\Extensions\
ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-19]
Edge Extension: (Symantec Endpoint Protection) - C:\Users\alfonso.gonzalez\AppData\
Local\Microsoft\Edge\User Data\Default\Extensions\gnhglcnkcmhnocgkcnlliammpmagaghd
[2023-10-19]
Edge Extension: (Edge relevant text changes) - C:\Users\alfonso.gonzalez\AppData\
Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha
[2023-10-19]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office16\
NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\
Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\
nppdf32.dll [2014-12-03] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\alfonso.gonzalez\AppData\Local\Google\Chrome\User Data\
Default [2023-12-07]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\alfonso.gonzalez\
AppData\Local\Google\Chrome\User Data\Default\Extensions\
ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-17]
CHR Extension: (Symantec Endpoint Protection) - C:\Users\alfonso.gonzalez\AppData\
Local\Google\Chrome\User Data\Default\Extensions\gnhglcnkcmhnocgkcnlliammpmagaghd
[2023-10-19]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\alfonso.gonzalez\
AppData\Local\Google\Chrome\User Data\Default\Extensions\
nmmhkkegccagdldgiimedpiccmgmieda [2023-10-11]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo
no se moverá a menos que sea añadido al listado por separado.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe


[82640 2017-02-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
S3 CloudBackupRestoreSvc; C:\WINDOWS\System32\CloudRestoreLauncher.dll [1355776
2023-11-24] (Microsoft Windows -> Microsoft Corporation)
R2 DellFFDPWmiService; C:\WINDOWS\System32\drivers\DellFFDPWmiService.exe [32528
2020-02-17] ("STMicroelectronics Srl" -> )
R2 hostcontrolsvc; C:\WINDOWS\System32\bcmHostControlService.exe [840416 2023-07-
05] (Broadcom Inc -> Broadcom Corporation)
R2 hoststoragesvc; C:\WINDOWS\System32\bcmHostStorageService.exe [176864 2023-07-
05] (Broadcom Inc -> Broadcom Corporation)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
[2737016 2023-02-14] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
[4588408 2023-02-14] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe
[534584 2023-11-24] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 SepLpsService; C:\Program Files\Symantec\Symantec Endpoint Protection\
14.3.10148.8000.105\Bin64\ccSvcHst.exe [190152 2023-10-19] (Symantec Corporation ->
Broadcom)
R2 SepMasterService; C:\Program Files\Symantec\Symantec Endpoint Protection\
14.3.10148.8000.105\Bin64\ccSvcHst.exe [190152 2023-10-19] (Symantec Corporation ->
Broadcom)
R2 SepScanService; C:\Program Files\Symantec\Symantec Endpoint Protection\
14.3.10148.8000.105\bin64\ccSvcHst.exe [190152 2023-10-19] (Symantec Corporation ->
Broadcom)
R2 sepWscSvc; C:\Program Files\Symantec\Symantec Endpoint Protection\
14.3.10148.8000.105\Bin64\sepWscSvc64.exe [1389320 2023-10-19] (Broadcom Inc ->
Broadcom)
S3 SNAC; C:\Program Files\Symantec\Symantec Endpoint Protection\
14.3.10148.8000.105\Bin64\snac64.exe [173256 2023-10-19] (Symantec Corporation ->
Broadcom)
R2 ushupgradesvc; C:\WINDOWS\System32\bcmUshUpgradeService.exe [333064 2023-07-05]
(Broadcom Inc -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\
NisSrv.exe [3116904 2023-10-10] (Microsoft Windows Publisher -> Microsoft
Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\
MsMpEng.exe [133584 2023-10-10] (Microsoft Windows Publisher -> Microsoft
Corporation)

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo
no se moverá a menos que sea añadido al listado por separado.)

R1 BHDrvx64; C:\ProgramData\Symantec\Symantec Endpoint Protection\


14.3.10148.8000.105\Data\Definitions\BASHDefs\20231207.001\BHDrvx64.sys [1706512
2023-10-19] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R1 ccSettings_{C318BC88-A510-4BD5-8625-1784CE31C040}; C:\WINDOWS\System32\Drivers\
SEP\0E0327A4\1F40.105\x64\ccSetx64.sys [190464 2023-10-19] (Microsoft Windows
Hardware Compatibility Publisher -> Broadcom)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
[527832 2023-10-10] (Microsoft Windows Hardware Compatibility Publisher ->
Broadcom)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\
EENGINE\EraserUtilRebootDrv.sys [159720 2023-11-06] (Microsoft Windows Hardware
Compatibility Publisher -> Broadcom)
R1 IDSVia64; C:\ProgramData\Symantec\Symantec Endpoint Protection\
14.3.10148.8000.105\Data\Definitions\IPSDefs\20231207.091\IDSvia64.sys [1554400
2023-11-17] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R1 SRTSP; C:\ProgramData\Symantec\Symantec Endpoint Protection\14.3.10148.8000.105\
Data\SymPlatform\SRTSP64.SYS [996304 2023-10-19] (Microsoft Windows Hardware
Compatibility Publisher -> Broadcom)
R1 SRTSPX; C:\WINDOWS\System32\Drivers\SEP\0E0327A4\1F40.105\x64\SRTSPX64.SYS
[43472 2023-10-19] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S3 SyDvCtrl; C:\WINDOWS\System32\Drivers\SEP\0E0327A4\1F40.105\x64\sydvctrl.sys
[30160 2023-10-19] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R0 SymEFASI; C:\WINDOWS\System32\drivers\symefasi\0705030.031\symefasi64.sys
[2169312 2023-10-19] (Microsoft Windows Hardware Compatibility Publisher ->
Broadcom)
S0 SymELAM; C:\WINDOWS\System32\Drivers\SEP\0E0327A4\1F40.105\x64\SymELAM.sys
[27136 2023-10-11] (Microsoft Windows Early Launch Anti-malware Publisher ->
Broadcom)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [100832 2023-10-11]
(Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R3 SymEvnt; C:\ProgramData\Symantec\Symantec Endpoint Protection\
14.3.10148.8000.105\Data\SymPlatform\SymEvnt.sys [951264 2023-10-11] (Microsoft
Windows Hardware Compatibility Publisher -> Broadcom)
R1 SymIRON; C:\WINDOWS\System32\Drivers\SEP\0E0327A4\1F40.105\x64\Ironx64.SYS
[297488 2023-10-19] (Microsoft Windows Hardware Compatibility Publisher ->
Broadcom)
R1 SYMNETS; C:\WINDOWS\System32\Drivers\SEP\0E0327A4\1F40.105\x64\symnets.sys
[483296 2023-10-19] (Microsoft Windows Hardware Compatibility Publisher ->
Broadcom)
R1 SysPlant; C:\WINDOWS\System32\Drivers\SEP\0E0327A4\1F40.105\x64\sysplant.sys
[223248 2023-10-19] (Microsoft Windows Hardware Compatibility Publisher ->
Broadcom)
R1 Teefer2; C:\WINDOWS\system32\DRIVERS\Teefer.sys [107536 2023-10-19] (Microsoft
Windows Hardware Compatibility Publisher -> Broadcom)
S4 UCPD; C:\WINDOWS\System32\drivers\UCPD.sys [29184 2023-10-23] (Microsoft Windows
-> Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [55856 2023-10-10] (Microsoft
Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [572712 2023-10-10]
(Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105872 2023-10-10]
(Microsoft Windows -> Microsoft Corporation)
R3 WiMan; C:\WINDOWS\System32\DriverStore\FileRepository\
wiman.inf_amd64_420e5de7a8744212\WiMan\WiMan.sys [166480 2021-04-19] (Intel
Corporation -> )
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo
no se moverá a menos que sea añadido al listado por separado.)

==================== Un mes (creado) (Lista blanca) =========

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2023-12-07 20:50 - 2023-12-07 20:51 - 000022282 _____ C:\Users\alfonso.gonzalez\


Downloads\FRST.txt
2023-12-07 20:49 - 2023-12-07 20:50 - 000000000 ____D C:\FRST
2023-12-07 20:49 - 2023-12-07 20:49 - 000000000 ____D C:\Users\alfonso.gonzalez\
Downloads\FRST-OlderVersion
2023-12-07 20:48 - 2023-12-07 20:49 - 002384896 _____ (Farbar) C:\Users\
alfonso.gonzalez\Downloads\FRST64.exe
2023-12-07 20:41 - 2023-10-30 15:27 - 000009663 _____ C:\Users\alfonso.gonzalez\
Documents\Libro1.decryptedKLR.xlsx
2023-12-07 20:40 - 2023-12-07 20:41 - 007990996 _____ C:\
RectorDecryptor.2.7.0.2_07.12.2023_20.40.41_log.txt
2023-12-07 20:40 - 2023-12-07 20:40 - 000985504 _____ (Kaspersky Lab AO) C:\Users\
alfonso.gonzalez\Downloads\rectordecryptor.exe
2023-12-07 20:32 - 2023-12-07 20:32 - 000770486 _____ C:\WINDOWS\system32\
perfh00A.dat
2023-12-07 20:32 - 2023-12-07 20:32 - 000154960 _____ C:\WINDOWS\system32\
perfc00A.dat
2023-12-07 20:32 - 2019-12-07 03:12 - 000000824 _____ C:\WINDOWS\system32\Drivers\
etc\hosts.20231207-203224.backup
2023-12-07 20:09 - 2023-12-07 20:09 - 000001414 _____ C:\Users\Public\Desktop\
Spybot Anti-Beacon.lnk
2023-12-07 20:09 - 2023-12-07 20:09 - 000000000 ____D C:\WINDOWS\system32\Tasks\
Safer-Networking
2023-12-07 20:09 - 2023-12-07 20:09 - 000000000 ____D C:\Users\alfonso.gonzalez\
AppData\Local\Safer-Networking Ltd
2023-12-07 20:09 - 2023-12-07 20:09 - 000000000 ____D C:\ProgramData\Microsoft\
Windows\Start Menu\Programs\Spybot Anti-Beacon
2023-12-07 20:09 - 2023-12-07 20:09 - 000000000 ____D C:\Program Files (x86)\Safer-
Networking Ltd
2023-12-07 19:48 - 2023-12-07 20:25 - 000000000 ____D C:\ProgramData\Spybot -
Search & Destroy
2023-12-07 19:48 - 2023-12-07 20:25 - 000000000 ____D C:\Program Files (x86)\Spybot
- Search & Destroy 2
2023-12-07 19:48 - 2023-12-07 19:48 - 000001464 _____ C:\ProgramData\Microsoft\
Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2023-12-07 19:48 - 2023-12-07 19:48 - 000001452 _____ C:\Users\Public\Desktop\
Spybot-S&D Start Center.lnk
2023-12-07 19:48 - 2023-12-07 19:48 - 000000000 ____D C:\ProgramData\Microsoft\
Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2023-12-07 19:48 - 2018-02-06 18:04 - 000032168 _____ (Safer-Networking Ltd.) C:\
WINDOWS\system32\sdnclean64.exe
2023-12-07 19:45 - 2023-12-07 19:45 - 005659583 _____ (Swearware) C:\Users\
alfonso.gonzalez\Downloads\ComboFix.exe
2023-12-07 19:43 - 2023-12-07 19:44 - 065069568 _____ (Safer-Networking Ltd. ) C:\
Users\alfonso.gonzalez\Downloads\spybotsd-2.9.85.5.exe
2023-12-07 17:25 - 2023-12-07 17:25 - 000995310 _____ C:\Users\alfonso.gonzalez\
AppData\Local\census.cache
2023-12-07 17:25 - 2023-12-07 17:25 - 000424341 _____ C:\Users\alfonso.gonzalez\
AppData\Local\ars.cache
2023-12-07 17:16 - 2023-12-07 17:16 - 003333936 _____ (Trend Micro Inc.) C:\Users\
alfonso.gonzalez\Downloads\HousecallLauncher64.exe
2023-12-07 17:16 - 2023-12-07 17:16 - 000000036 _____ C:\Users\alfonso.gonzalez\
AppData\Local\housecall.guid.cache
2023-12-07 17:12 - 2023-12-07 17:12 - 000001864 __RSH C:\ProgramData\ntuser.pol
2023-11-24 10:14 - 2023-11-24 10:14 - 000016240 _____ C:\WINDOWS\system32\
IntegratedServicesRegionPolicySet.json
2023-11-23 12:53 - 2023-12-07 20:41 - 000000000 ____D C:\Users\alfonso.gonzalez\
Documents\Docs para contrato
2023-11-23 11:00 - 2023-11-24 11:01 - 000000000 ____D C:\Users\alfonso.gonzalez\
AppData\Roaming\Microsoft\Word
2023-11-23 11:00 - 2023-11-23 11:00 - 000000000 ____D C:\Users\alfonso.gonzalez\
AppData\Roaming\Microsoft\Document Building Blocks
2023-11-17 15:24 - 2023-11-17 15:24 - 000000118 _____ C:\Users\alfonso.gonzalez\
Documents\extraccion_Extraer Datos.csv
2023-11-17 15:23 - 2023-11-17 15:23 - 000000120 _____ C:\Users\alfonso.gonzalez\
Documents\extraccion_Extraer Datos_1.csv
2023-11-17 15:21 - 2023-11-17 15:22 - 000000000 ____D C:\ProgramData\ABBYY
2023-11-17 14:16 - 2023-11-17 14:16 - 000000000 ____D C:\Users\alfonso.gonzalez\
Documents\REPORTES DIGITALES-20231117T165929Z-004
2023-11-17 14:13 - 2023-11-17 11:06 - 2077533469 _____ C:\Users\alfonso.gonzalez\
Documents\REPORTES DIGITALES-20231117T165929Z-003.zip
2023-11-17 14:11 - 2023-11-17 11:06 - 2097447069 _____ C:\Users\alfonso.gonzalez\
Documents\REPORTES DIGITALES-20231117T165929Z-002.zip
2023-11-17 14:10 - 2023-11-17 11:06 - 2107825790 _____ C:\Users\alfonso.gonzalez\
Documents\REPORTES DIGITALES-20231117T165929Z-001.zip
2023-11-17 14:09 - 2023-11-17 11:05 - 604332846 _____ C:\Users\alfonso.gonzalez\
Documents\REPORTES DIGITALES-20231117T165929Z-004.zip
2023-11-17 12:48 - 2023-11-17 12:48 - 000000016 _____ C:\ProgramData\mntemp
2023-11-17 12:37 - 2023-11-17 12:37 - 000001047 _____ C:\Users\Public\Desktop\
Wondershare PDFelement.lnk
2023-11-17 12:37 - 2023-11-17 12:37 - 000000000 ____D C:\Users\alfonso.gonzalez\
AppData\Roaming\Wondershare
2023-11-17 12:37 - 2023-11-17 12:37 - 000000000 ____D C:\ProgramData\Wondershare
2023-11-17 12:37 - 2023-11-17 12:37 - 000000000 ____D C:\ProgramData\Microsoft\
Windows\Start Menu\Programs\Wondershare
2023-11-17 12:37 - 2023-11-17 12:37 - 000000000 ____D C:\Program Files\Wondershare
2023-11-17 12:37 - 2023-11-17 12:37 - 000000000 ____D C:\Program Files\Common
Files\Wondershare
2023-11-17 12:37 - 2023-11-13 18:01 - 000292592 _____ (Wondershare Software) C:\
WINDOWS\system32\PEPrinterMonitor.dll
2023-11-17 12:37 - 2023-11-13 17:58 - 011106544 _____ () C:\WINDOWS\SysWOW64\
PECRT32.dll
2023-11-17 12:36 - 2023-11-17 12:37 - 000000000 ____D C:\Users\Public\Documents\
Wondershare
2023-11-17 12:32 - 2023-11-17 12:32 - 002203640 _____ C:\Users\alfonso.gonzalez\
Downloads\pdfelement-pro_setup_full5257.exe
2023-11-17 12:24 - 2023-11-17 12:24 - 000000000 ___RD C:\Users\alfonso.gonzalez\
Downloads\WavesAudio.MaxxAudioProforDell2019_fh4rh281wavaa!App
2023-11-17 09:58 - 2020-12-11 12:28 - 535156523 _____ C:\Users\alfonso.gonzalez\
Documents\Vampire Hunter D.mp4
2023-11-17 09:57 - 2023-02-14 11:54 - 1126415467 _____ C:\Users\alfonso.gonzalez\
Documents\Tesis.mp4
2023-11-17 09:57 - 2022-05-19 05:22 - 2688572520 _____ C:\Users\alfonso.gonzalez\
Documents\Blame!.mkv
2023-11-17 09:57 - 2022-02-18 21:46 - 731305984 _____ C:\Users\alfonso.gonzalez\
Documents\Perfect blue.avi
2023-11-17 09:56 - 2023-11-17 09:56 - 000000000 ____D C:\Users\alfonso.gonzalez\
Documents\Overlord
2023-11-10 11:44 - 2023-11-10 11:44 - 000000000 ____D C:\Users\alfonso.gonzalez\
AppData\Local\PlaceholderTileLogoFolder

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2023-12-07 20:49 - 2022-05-06 23:22 - 000000000 ____D C:\WINDOWS\INF


2023-12-07 20:46 - 2023-10-10 21:06 - 000000000 ____D C:\Program Files (x86)\Google
2023-12-07 20:46 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-12-07 20:41 - 2023-10-27 12:37 - 000000000 ____D C:\Users\alfonso.gonzalez\
Documents\2023
2023-12-07 20:38 - 2023-10-11 09:25 - 000000000 ____D C:\Users\alfonso.gonzalez\
AppData\Local\D3DSCache
2023-12-07 20:33 - 2022-05-06 23:24 - 000000000 ____D C:\ProgramData\regid.1991-
06.com.microsoft
2023-12-07 20:32 - 2023-10-23 13:24 - 001717366 _____ C:\WINDOWS\system32\
PerfStringBackup.INI
2023-12-07 20:30 - 2023-10-23 13:19 - 000000000 ____D C:\WINDOWS\system32\
SleepStudy
2023-12-07 20:27 - 2023-10-23 13:25 - 000000000 ____D C:\WINDOWS\system32\Tasks\
Symantec Endpoint Protection
2023-12-07 20:24 - 2022-05-06 23:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-12-07 20:24 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-12-07 20:22 - 2023-10-23 13:25 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-12-07 20:22 - 2023-10-10 20:54 - 000000000 ____D C:\Intel
2023-12-07 20:22 - 2023-10-10 19:35 - 000012288 ___SH C:\DumpStack.log.tmp
2023-12-07 20:22 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\ServiceState
2023-12-07 20:21 - 2023-10-23 11:04 - 000000000 ____D C:\Users\alfonso.gonzalez
2023-12-07 20:21 - 2022-05-06 23:17 - 000524288 _____ C:\WINDOWS\system32\config\
BBI
2023-12-07 20:09 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-12-07 17:37 - 2023-10-11 09:22 - 000000152 _____ C:\WINDOWS\system32\config\
netlogon.ftl
2023-12-07 11:41 - 2023-10-23 13:25 - 000003852 _____ C:\WINDOWS\system32\Tasks\
GoogleUpdateTaskMachineUA
2023-12-07 11:41 - 2023-10-23 13:25 - 000003728 _____ C:\WINDOWS\system32\Tasks\
GoogleUpdateTaskMachineCore
2023-12-07 11:41 - 2023-10-10 19:35 - 000002440 _____ C:\ProgramData\Microsoft\
Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-12-04 09:04 - 2023-10-23 11:04 - 000000000 ____D C:\Users\Soporte
2023-12-01 18:33 - 2023-10-27 12:37 - 000000000 ____D C:\Users\alfonso.gonzalez\
AppData\Roaming\Microsoft\Excel
2023-12-01 18:20 - 2022-05-06 23:17 - 000032768 _____ C:\WINDOWS\system32\config\
ELAM
2023-11-30 14:22 - 2023-10-10 21:07 - 000002299 _____ C:\ProgramData\Microsoft\
Windows\Start Menu\Programs\Google Chrome.lnk
2023-11-30 14:22 - 2023-10-10 21:07 - 000002258 _____ C:\Users\Public\Desktop\
Google Chrome.lnk
2023-11-24 15:59 - 2023-10-23 13:19 - 000468240 _____ C:\WINDOWS\system32\
FNTCACHE.DAT
2023-11-24 15:57 - 2023-10-23 10:52 - 000000000 ____D C:\WINDOWS\system32\
Microsoft-Edge-WebView
2023-11-24 15:57 - 2022-05-07 04:32 - 000000000 ___SD C:\WINDOWS\system32\AppV
2023-11-24 15:57 - 2022-05-07 04:32 - 000000000 ____D C:\Program Files\Windows
Defender Advanced Threat Protection
2023-11-24 15:57 - 2022-05-07 04:21 - 000000000 ____D C:\WINDOWS\SysWOW64\es
2023-11-24 15:57 - 2022-05-07 04:21 - 000000000 ____D C:\WINDOWS\system32\es
2023-11-24 15:57 - 2022-05-07 04:21 - 000000000 ____D C:\WINDOWS\system32\Drivers\
es-MX
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ___RD C:\WINDOWS\
ImmersiveControlPanel
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\UUS
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\SysWOW64\
WinMetadata
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\SysWOW64\
PerceptionSimulation
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\system32\
WinMetadata
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\system32\
WinBioPlugIns
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\system32\
ShellExperiences
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\system32\setup
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\system32\
PerceptionSimulation
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\system32\id-ID
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\system32\
HealthAttestationClient
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\system32\DDFs
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\Provisioning
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\DiagTrack
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-11-24 15:57 - 2022-05-06 23:24 - 000000000 ____D C:\Program Files\Common
Files\System
2023-11-24 15:57 - 2022-05-06 23:17 - 000000000 ____D C:\WINDOWS\servicing
2023-11-24 12:52 - 2023-10-11 09:33 - 000000000 ____D C:\Users\alfonso.gonzalez\
AppData\Roaming\Microsoft\Office
2023-11-24 12:45 - 2023-10-11 09:37 - 000000000 ____D C:\Users\alfonso.gonzalez\
AppData\Roaming\Microsoft\UProof
2023-11-24 10:56 - 2023-10-11 09:25 - 000000000 ____D C:\Users\alfonso.gonzalez\
AppData\Local\Packages
2023-11-24 10:22 - 2022-05-06 23:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-11-24 10:21 - 2022-05-07 04:32 - 000036864 _____ (Microsoft Corporation) C:\
WINDOWS\system32\OEMDefaultAssociations.dll
2023-11-24 10:21 - 2022-05-06 23:25 - 000209920 _____ (Microsoft Corporation) C:\
WINDOWS\SysWOW64\msclmd.dll
2023-11-24 10:21 - 2022-05-06 23:25 - 000076800 _____ (Khronos Group) C:\WINDOWS\
SysWOW64\opencl.dll
2023-11-24 10:21 - 2022-05-06 23:24 - 000249856 _____ (Microsoft Corporation) C:\
WINDOWS\system32\msclmd.dll
2023-11-24 10:21 - 2022-05-06 23:24 - 000118784 _____ (Khronos Group) C:\WINDOWS\
system32\opencl.dll
2023-11-24 10:16 - 2023-10-23 13:22 - 003212800 _____ (Microsoft Corporation) C:\
WINDOWS\SysWOW64\PrintConfig.dll
2023-11-23 13:25 - 2023-10-10 20:50 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-11-23 11:19 - 2023-10-11 09:33 - 000000000 ____D C:\Users\alfonso.gonzalez\
AppData\Roaming\Microsoft\Plantillas
2023-11-23 08:25 - 2023-10-10 20:54 - 000000000 ____D C:\Program Files\Microsoft
Update Health Tools
2023-11-23 08:23 - 2023-10-10 20:50 - 182871392 ____C (Microsoft Corporation) C:\
WINDOWS\system32\MRT.exe

==================== Archivos en la raíz de algunos directorios ========

2023-12-07 17:25 - 2023-12-07 17:25 - 000424341 _____ () C:\Users\alfonso.gonzalez\


AppData\Local\ars.cache
2023-12-07 17:25 - 2023-12-07 17:25 - 000995310 _____ () C:\Users\alfonso.gonzalez\
AppData\Local\census.cache
2023-12-07 17:16 - 2023-12-07 17:16 - 000000036 _____ () C:\Users\alfonso.gonzalez\
AppData\Local\housecall.guid.cache

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la
verificación.)

==================== Final de FRST.txt ========================

You might also like