(code)
==================== Módulos cargados (Lista blanca) =============
2023-02-28 06:34 - 2023-02-27 07:23 - 000164864 _____ () [Archivo no firmado] C:\Program Files\LGHUB\resources\app.asar.unpacked\keytar.node
2021-12-27 08:04 - 2021-12-27 08:04 - 000047104 _____ (CTI) [Archivo no firmado] C:\Program Files\ENE\Aac_ENE_DRAM_RGB_AIO\x86\MsIo32_ENE.dll
2022-05-19 09:07 - 2018-11-15 13:08 - 002200784 _____ (Dexin Corp → MICRO-STAR INTERNATIONAL) [Archivo no firmado] C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\IcMSIDll.dll
2021-11-05 16:07 - 2021-11-05 16:07 - 000236544 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [Archivo no firmado] C:\Program Files (x86)\GIGABYTE\RGBFusion\yccV3.DLL
2022-03-04 10:33 - 2022-03-04 10:33 - 000499200 _____ (GIGABYTE Technology Co.,Ltd.) [Archivo no firmado] C:\Program Files (x86)\GIGABYTE\RGBFusion\GVDisplay.dll
2020-11-05 13:16 - 2020-11-05 13:16 - 000268800 _____ (GIGABYTE Technology Co.,Ltd.) [Archivo no firmado] C:\Program Files (x86)\GIGABYTE\RGBFusion\GvIllumLib.dll
2022-02-17 09:48 - 2022-02-17 09:48 - 001991680 _____ (GIGABYTE) [Archivo no firmado] C:\Program Files (x86)\GIGABYTE\RGBFusion\AACDDR_Lib.dll
2022-02-17 09:48 - 2022-02-17 09:48 - 001992704 _____ (GIGABYTE) [Archivo no firmado] C:\Program Files (x86)\GIGABYTE\RGBFusion\AACPCIeSSD_Lib.dll
2022-02-17 09:48 - 2022-02-17 09:48 - 001987584 _____ (GIGABYTE) [Archivo no firmado] C:\Program Files (x86)\GIGABYTE\RGBFusion\AACSSD_Lib.dll
2022-05-19 09:07 - 2018-08-31 06:26 - 000053760 _____ (MS) [Archivo no firmado] C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\MsIo32_Galax.dll
2013-01-09 00:03 - 2013-01-09 00:03 - 000221184 _____ (SafeNet, Inc.) [Archivo no firmado] C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\MD5CHAP.dll
2017-10-05 14:26 - 2017-10-05 14:26 - 002247168 _____ (TODO: ) [Archivo no firmado] C:\Program Files (x86)\GIGABYTE\RGBFusion\CRtive.dll
2018-12-08 07:22 - 2018-12-08 07:22 - 002059264 _____ (TODO: ) [Archivo no firmado] C:\Program Files (x86)\GIGABYTE\RGBFusion\GHidApi.dll
2022-03-28 17:40 - 2022-03-28 17:40 - 000434688 _____ (TODO: ) [Archivo no firmado] C:\Program Files (x86)\GIGABYTE\RGBFusion\GvLedLib.dll
2022-03-25 14:37 - 2022-03-25 14:37 - 002050560 _____ (TODO: ) [Archivo no firmado] C:\Program Files (x86)\GIGABYTE\RGBFusion\SMBCtrl.dll
==================== Alternate Data Streams (Lista blanca) ========
==================== Modo Seguro (Lista blanca) ==================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El “AlternateShell” será restaurado.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => “”=“Service”
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => “”=“Service”
==================== Asociación (Lista blanca) =================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado.)
HKU\S-1-5-21-4003751786-3574171539-299679313-1001\Software\Classes.scr: AutoCADScriptFile => C:\WINDOWS\system32\notepad.exe “%1”
==================== Internet Explorer (Lista blanca) ==========
BHO-x32: Microsoft OneDrive for Business Browser Helper → {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} → C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation → Microsoft Corporation)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation → Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation → Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation → Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation → Microsoft Corporation)
==================== Hosts contenido: =========================
(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)
2019-03-18 22:49 - 2019-03-18 22:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Otras Áreas ===========================
(Actualmente no existe una corrección automática para esta sección.)
HKU\S-1-5-21-4003751786-3574171539-299679313-1001\Control Panel\Desktop\Wallpaper → d:\imagenes\jon-tyson-ql0faxaq2z0-unsplash.jpg
DNS Servers: El medio no está conectado a internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Firewall de Windows está deshabilitado.
Network Binding:
Wi-Fi: cFosSpeed for faster Internet connections (NDIS 6) → cfosspeed (enabled)
Ethernet: cFosSpeed for faster Internet connections (NDIS 6) → cfosspeed (enabled)
==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==
(Si una entrada es incluida en el fixlist, será eliminada.)
HKLM.…\StartupApproved\StartupFolder: => “CCBService.lnk”
HKU\S-1-5-21-4003751786-3574171539-299679313-1001.…\StartupApproved\Run: => “CCXProcess”
HKU\S-1-5-21-4003751786-3574171539-299679313-1001.…\StartupApproved\Run: => “Steam”
HKU\S-1-5-21-4003751786-3574171539-299679313-1001.…\StartupApproved\Run: => “GogGalaxy”
HKU\S-1-5-21-4003751786-3574171539-299679313-1001.…\StartupApproved\Run: => “EpicGamesLauncher”
==================== Reglas de firewall (Lista blanca) ================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
FirewallRules: [TCP Query User{FB766FFD-E25F-4D53-B3BF-471ED63E8DA3}C:\program files (x86)\microsoft\edge\application\msedge.exe] => (Block) C:\program files (x86)\microsoft\edge\application\msedge.exe (Microsoft Corporation → Microsoft Corporation)
FirewallRules: [UDP Query User{51CB186D-7FAE-4114-821F-DF3C641B70D9}C:\program files (x86)\microsoft\edge\application\msedge.exe] => (Block) C:\program files (x86)\microsoft\edge\application\msedge.exe (Microsoft Corporation → Microsoft Corporation)
FirewallRules: [{BC972EAE-07C9-45DC-B337-E890C1124EC8}] => (Allow) C:\Program Files\Chaos Group\Chaos Cosmos\cbservice.exe (ChaosGroup) [Archivo no firmado]
FirewallRules: [{AA5FE795-0F3D-4DB7-9AC3-AF72A9D31E8A}] => (Allow) C:\Program Files\Chaos Group\Chaos Cosmos\cbservice.exe (ChaosGroup) [Archivo no firmado]
FirewallRules: [{289203F7-DA3F-4686-8F55-6B68510818DB}] => (Allow) LPort=30305
FirewallRules: [{FC25B29A-89EE-433A-A6EC-C8D1D5E39B9E}] => (Allow) LPort=30306
FirewallRules: [{2E02E2D6-DB16-4C9A-B232-CB307E995F98}] => (Allow) C:\Program Files\Chaos Group\VRLService\OLS\vrol.exe (“Chaos Software” Ltd → ) [Archivo no firmado]
FirewallRules: [{30065F79-00D7-4F7B-B408-75B0BA34D20E}] => (Allow) C:\Program Files\Chaos Group\VRLService\OLS\vrol.exe (“Chaos Software” Ltd → ) [Archivo no firmado]
FirewallRules: [{5BA04EA4-4865-47E8-A0C5-1E721E310B12}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. → Valve Corporation)
FirewallRules: [{B460B56B-4F67-4C2D-94D5-4D2D5C22FD67}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. → Valve Corporation)
FirewallRules: [{D6688DBC-B420-4EF3-96FF-C292D4A0EE4A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. → Valve Corporation)
FirewallRules: [{52063FB0-93BF-4B91-9E23-6C7476D855ED}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. → Valve Corporation)
FirewallRules: [{616564F0-9E21-4EB4-A78A-0B6B55427225}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation → Mozilla Corporation)
FirewallRules: [{06B2F726-9E80-4B79-BFAA-D9A649E8971C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation → Mozilla Corporation)
FirewallRules: [{E6A91891-8E52-442A-8B36-9A9BEA258AA6}] => (Allow) D:\SteamLibrary\steamapps\common\MultiVersus\start_protected_game.exe (EasyAntiCheat Oy → Epic Games, Inc.)
FirewallRules: [{38ACA09D-3C74-41C2-A5FF-795B370D36B2}] => (Allow) D:\SteamLibrary\steamapps\common\MultiVersus\start_protected_game.exe (EasyAntiCheat Oy → Epic Games, Inc.)
FirewallRules: [{619C8DE4-5198-4F8D-B05C-9DB0B8DF75A2}] => (Allow) D:\SteamLibrary\steamapps\common\Halo Infinite\HaloInfinite.exe (343 Industries (Microsoft Corporation) → Microsoft Corporation)
FirewallRules: [{4B962DBC-9A2E-4ACA-B667-75208B792F67}] => (Allow) D:\SteamLibrary\steamapps\common\Halo Infinite\HaloInfinite.exe (343 Industries (Microsoft Corporation) → Microsoft Corporation)
FirewallRules: [{378B21C3-DFF6-4CF9-8C12-902B9620DD71}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation → NVIDIA Corporation)
FirewallRules: [{65C78EE4-4FE6-46BD-ADE1-58316FAFC398}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation → NVIDIA Corporation)
FirewallRules: [{5A4AA787-B95B-4041-AB0C-43B8BEE2FCF7}] => (Allow) D:\SteamLibrary\steamapps\common\AoE2DE\AoE2DE_s.exe (Wicked Witch Software Pty Ltd → Microsoft Corporation)
FirewallRules: [{F6F94400-8C61-4ED7-BD18-68E198595DC5}] => (Allow) D:\SteamLibrary\steamapps\common\AoE2DE\AoE2DE_s.exe (Wicked Witch Software Pty Ltd → Microsoft Corporation)
FirewallRules: [{5B6B7006-ADB0-477D-ACC6-7B47BBBFEB8B}] => (Allow) D:\SteamLibrary\steamapps\common\AoE2DE\BattleServer\BattleServer.exe () [Archivo no firmado]
FirewallRules: [{3271F9B9-1740-472F-B840-B0C5BCC29F1F}] => (Allow) D:\SteamLibrary\steamapps\common\AoE2DE\BattleServer\BattleServer.exe () [Archivo no firmado]
FirewallRules: [TCP Query User{9143B8DF-987A-45A1-96BB-28425B017D8B}D:\steamlibrary\steamapps\common\need for speed™ most wanted\nfs13.exe] => (Allow) D:\steamlibrary\steamapps\common\need for speed™ most wanted\nfs13.exe (Electronic Arts → Electronic Arts)
FirewallRules: [UDP Query User{A8FA64D3-E735-4B6A-81C5-9CD322A5CEB5}D:\steamlibrary\steamapps\common\need for speed™ most wanted\nfs13.exe] => (Allow) D:\steamlibrary\steamapps\common\need for speed™ most wanted\nfs13.exe (Electronic Arts → Electronic Arts)
FirewallRules: [{C733266D-24F3-4010-A40B-A2496C080ABC}] => (Allow) C:\Users\Juan\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. → Zoom Video Communications, Inc.)
FirewallRules: [TCP Query User{7F27F723-D422-48BF-9BB2-DBE271D79AC4}C:\program files\keyshot8\bin\keyshot.exe] => (Allow) C:\program files\keyshot8\bin\keyshot.exe (Luxion, Inc. → Luxion) [Archivo no firmado]
FirewallRules: [UDP Query User{9C107B6C-8F06-441D-87BA-09D9C8F1C345}C:\program files\keyshot8\bin\keyshot.exe] => (Allow) C:\program files\keyshot8\bin\keyshot.exe (Luxion, Inc. → Luxion) [Archivo no firmado]
FirewallRules: [{236BDC04-B61E-4019-B837-9658A0A0D09C}] => (Allow) D:\SteamLibrary\steamapps\common\brainbread2\bb2.exe () [Archivo no firmado]
FirewallRules: [{D30D7893-E263-4083-8A7B-F20682B6F405}] => (Allow) D:\SteamLibrary\steamapps\common\brainbread2\bb2.exe () [Archivo no firmado]
FirewallRules: [TCP Query User{945C740D-C9FA-4134-85A9-2EB82B683FDE}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. → Epic Games, Inc.)
FirewallRules: [UDP Query User{B57F0122-7994-44CE-8B4C-F70703713F54}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. → Epic Games, Inc.)
FirewallRules: [{83470C85-5DB5-4117-8FEF-912971C798A7}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. → Electronic Arts)
FirewallRules: [{EB98CC4A-4925-4746-9C6B-D76A13948B60}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. → Electronic Arts)
FirewallRules: [{3F1CA02D-4B38-431A-AC37-076A81BD324D}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. → Electronic Arts)
FirewallRules: [{4649DCB0-14EC-40F1-B80B-FC967B8C2641}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. → Electronic Arts)
FirewallRules: [{61E4C726-1E2A-4B62-96F4-771B1D16F332}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. → Electronic Arts)
FirewallRules: [{92ED6588-07F2-4966-83C9-DEA62D3B75A6}] => (Allow) D:\SteamLibrary\steamapps\common\Bendy and the Dark Revival\Bendy and the Dark Revival.exe () [Archivo no firmado]
FirewallRules: [{FD7D35F9-A2A4-4139-B7A4-51B1FBA57959}] => (Allow) D:\SteamLibrary\steamapps\common\Bendy and the Dark Revival\Bendy and the Dark Revival.exe () [Archivo no firmado]
FirewallRules: [{927981F2-0130-4104-904F-CEEE6F927D48}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation → NVIDIA Corporation)
FirewallRules: [{BAC81A85-1176-4079-BD43-EEE6AC2D61B6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation → NVIDIA Corporation)
FirewallRules: [{BD856C4C-79F0-4CF0-92A8-F60262DFAC18}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation → NVIDIA Corporation)
FirewallRules: [{BDDE5523-B87F-4EF9-BB9B-2F3FA1EFDAF9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation → NVIDIA Corporation)
FirewallRules: [{5A033360-4768-47E5-8425-C04456D841EB}] => (Block) C:\Program Files\Adobe\Adobe Lightroom Classic\Lightroom.exe (Adobe Inc.) [Archivo no firmado]
FirewallRules: [{B3B63A45-AEDB-463A-839F-DF3E8521E81A}] => (Block) C:\Program Files\Adobe\Adobe Lightroom Classic\Lightroom.exe (Adobe Inc.) [Archivo no firmado]
FirewallRules: [{B6668C67-3AB8-4803-B53D-E0F6D2C7A4BE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl → )
FirewallRules: [{72E3FB05-A2E1-48E8-AD53-DDE28A564B7D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl → )
FirewallRules: [{6FBF7DA1-75B9-4EA9-B34C-C12F8E65F42D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl → )
FirewallRules: [{34777F2E-6A4D-4415-8455-6114345063F5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3207.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl → )
FirewallRules: [{72B01A61-50BC-4F03-B3D2-99304002B6B0}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH → TeamViewer Germany GmbH)
FirewallRules: [{11405B14-E7E0-4ABA-9AEA-ECF6253FCAA1}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH → TeamViewer Germany GmbH)
FirewallRules: [{A8437756-70EE-4746-9A4B-2B2192D17F51}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH → TeamViewer Germany GmbH)
FirewallRules: [{87B3ACA4-DCA8-4510-9961-2DEB9E9CEFA0}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH → TeamViewer Germany GmbH)
FirewallRules: [{8556E913-2893-4D8E-ACFD-21F462EB8290}] => (Allow) C:\Users\Juan\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. → Zoom Video Communications, Inc.)
FirewallRules: [{F5D7AD5E-BF0C-4FCE-8887-D2BDE67B6D40}] => (Allow) C:\Users\Juan\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. → Zoom Video Communications, Inc.)
FirewallRules: [{098534C7-6F05-4717-852E-CF19AA96CF82}] => (Allow) C:\Users\Juan\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. → Zoom Video Communications, Inc.)
FirewallRules: [{59473A1F-020F-4AFC-A8A8-576B79B0008F}] => (Allow) LPort=32682
FirewallRules: [{0C1A3B05-FC0E-4A2B-82E1-9280AF631212}] => (Allow) D:\SteamLibrary\steamapps\common\Internet Cafe Simulator 2\windows_content\Internet Cafe Simulator 2.exe () [Archivo no firmado]
FirewallRules: [{3EEBA3EC-24D2-43E3-9C9C-A5691E9CE7DB}] => (Allow) D:\SteamLibrary\steamapps\common\Internet Cafe Simulator 2\windows_content\Internet Cafe Simulator 2.exe () [Archivo no firmado]
FirewallRules: [{30D1FA7D-4D82-47DC-BDAA-F938243AFEF1}] => (Allow) C:\Program Files\Google\Play Games\current\emulator\crosvm.exe (Google LLC → )
FirewallRules: [{3AAF2C46-8145-4D8B-91E6-1891646B9CC1}] => (Allow) C:\Program Files\Google\Play Games\current\emulator\crosvm.exe (Google LLC → )
FirewallRules: [{E642C243-98D2-4956-AC54-24A6D408EC3A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.209.743.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF → )
FirewallRules: [{2CB0C408-B0F4-4E61-8331-EAD332CF3351}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.209.743.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF → )
FirewallRules: [{D70E142E-6C67-4434-B62F-90CC38832324}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.209.743.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF → )
FirewallRules: [{A72E45B0-62A1-4DBA-8DB4-6EFF335EBC00}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.209.743.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF → )
FirewallRules: [{4974AFB6-D98D-40C9-812C-AC723F4EED48}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.209.743.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF → )
FirewallRules: [{BA8C3773-DF96-4A18-8EE4-7295413F307D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.209.743.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF → )
FirewallRules: [{ECC073A4-16A2-4BB0-91B6-A63B99D44177}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.209.743.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF → )
FirewallRules: [{28BA6981-50D3-4BC5-A3C5-0690A30C8DC1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.209.743.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF → )
FirewallRules: [{34DA5C44-1E60-4207-8E43-DC040849BF23}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.209.743.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF → )
FirewallRules: [{3686F5AA-40FB-4942-AF48-C16CDDEDDC03}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.209.743.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF → )
FirewallRules: [{6A182B84-01F7-4159-AD89-09F274D4075B}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\112.0.1722.48\msedgewebview2.exe (Microsoft Corporation → Microsoft Corporation)
==================== Puntos de Restauración =========================
11-04-2023 18:02:42 Punto de control programado
11-04-2023 18:08:07 Instalador de Módulos de Windows
11-04-2023 18:08:52 Instalador de Módulos de Windows
==================== Dispositivos defectuosos en el Administrador de dispositivos ============
==================== Errores del registro de eventos: ========================
Errores de aplicación:
Error: (04/18/2023 08:02:16 AM) (Source: Firefox Default Browser Agent) (EventID: 12007) (User: )
Description: Event-ID 12007
Error: (04/18/2023 08:02:16 AM) (Source: Firefox Default Browser Agent) (EventID: 0) (User: )
Description: Event-ID 0
Error: (04/16/2023 06:33:28 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: El programa Illustrator.exe (versión 16.0.3.691) dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible sobre el problema, comprueba el historial de problemas en el panel de control de seguridad y mantenimiento.
Id. de proceso: 45e0
Hora de Inicio: 01d970c3d65f5400
Hora de finalización: 18
Ruta de la aplicación: C:\Program Files (x86)\Adobe\Illustrator CS6\App\Illustrator\Support Files\Contents\Windows\Illustrator.exe
Id. de informe: 37d1d649-9817-45b3-921c-c2ca4c41d408
Nombre completo del paquete con errores:
Id. de la aplicación relativa al paquete con errores:
Tipo de bloqueo: Unknown
Error: (04/16/2023 06:13:01 PM) (Source: MsiInstaller) (EventID: 10005) (User: JUAN-DSGN)
Description: Producto: Adobe Acrobat DC (64-bit) – Error 2711. The specified Feature name (‘ARM’) not found in Feature table.
Error: (04/16/2023 04:36:42 PM) (Source: Firefox Default Browser Agent) (EventID: 12007) (User: )
Description: Event-ID 12007
Error: (04/16/2023 04:36:42 PM) (Source: Firefox Default Browser Agent) (EventID: 0) (User: )
Description: Event-ID 0
Error: (04/15/2023 10:15:11 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: LEDKeeper2.exe, versión: 1.0.1.32, marca de tiempo: 0x61ef72bb
Nombre del módulo con errores: KERNELBASE.dll, versión: 10.0.19041.2846, marca de tiempo: 0xb9bbdd8b
Código de excepción: 0xc000041d
Desplazamiento de errores: 0x00138fc2
Identificador del proceso con errores: 0x34a0
Hora de inicio de la aplicación con errores: 0x01d96fabe18e6c4c
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LEDKeeper2.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\System32\KERNELBASE.dll
Identificador del informe: c7910d60-6a0e-4d53-94e3-9bb1383f922f
Nombre completo del paquete con errores:
Identificador de aplicación relativa del paquete con errores:
Error: (04/15/2023 10:15:10 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: LEDKeeper2.exe, versión: 1.0.1.32, marca de tiempo: 0x61ef72bb
Nombre del módulo con errores: KERNELBASE.dll, versión: 10.0.19041.2846, marca de tiempo: 0xb9bbdd8b
Código de excepción: 0xe0434352
Desplazamiento de errores: 0x00138fc2
Identificador del proceso con errores: 0x34a0
Hora de inicio de la aplicación con errores: 0x01d96fabe18e6c4c
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LEDKeeper2.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\System32\KERNELBASE.dll
Identificador del informe: 825b31af-7195-404a-bc91-00e801a2ebe2
Nombre completo del paquete con errores:
Identificador de aplicación relativa del paquete con errores:
Errores del sistema:
Error: (04/18/2023 03:58:52 PM) (Source: DCOM) (EventID: 10010) (User: JUAN-DSGN)
Description: El servidor {7966B4D8-4FDC-4126-A10B-39A3209AD251} no se registró con DCOM dentro del tiempo de espera requerido.
Error: (04/18/2023 03:58:52 PM) (Source: DCOM) (EventID: 10010) (User: JUAN-DSGN)
Description: El servidor {7966B4D8-4FDC-4126-A10B-39A3209AD251} no se registró con DCOM dentro del tiempo de espera requerido.
Error: (04/18/2023 02:53:23 PM) (Source: DCOM) (EventID: 10005) (User: JUAN-DSGN)
Description: Error de DCOM “87” al intentar iniciar el servicio GamingServices con argumentos “No disponible” para ejecutar el servidor:
{3E8C9ABE-9226-4609-BF5B-60288A391DEE}
Error: (04/18/2023 02:53:23 PM) (Source: DCOM) (EventID: 10005) (User: JUAN-DSGN)
Description: Error de DCOM “87” al intentar iniciar el servicio GamingServices con argumentos “No disponible” para ejecutar el servidor:
{3E8C9ABE-9226-4609-BF5B-60288A391DEE}
Error: (04/16/2023 06:37:10 PM) (Source: DCOM) (EventID: 10010) (User: JUAN-DSGN)
Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.
Error: (04/15/2023 12:00:22 PM) (Source: DCOM) (EventID: 10010) (User: JUAN-DSGN)
Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.
Error: (04/15/2023 12:00:22 PM) (Source: DCOM) (EventID: 10010) (User: JUAN-DSGN)
Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.
Error: (04/15/2023 12:00:22 PM) (Source: DCOM) (EventID: 10010) (User: JUAN-DSGN)
Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.
Windows Defender:
Date: 2023-04-18 08:10:02
Description:
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {9F3654A4-DBB5-40AD-BDCE-168B09AB58A2}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM
Date: 2023-04-16 18:42:10
Description:
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {C5B7059C-E130-4000-8044-3734DF6DF09E}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM
Date: 2023-04-11 17:20:40
Description:
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {7CAF11EE-E763-40F2-BDCB-BF41355797FC}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM
Date: 2023-04-06 12:22:10
Description:
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {0EC951FF-1D9F-46E9-A722-AA19BBD3A595}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM
Date: 2023-04-04 09:58:17
Description:
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {6E50462C-14C0-4B99-BE6D-80ADFAD972C4}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM
Event[0]:
Date: 2023-04-13 13:13:55
Description:
Antivirus de Microsoft Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad:
Versión anterior de inteligencia de seguridad: 1.387.792.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor:
Versión anterior del motor: 1.1.20200.4
Código de error: 0x8024402c
Descripción del error: Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulta Ayuda y soporte técnico.
Date: 2023-03-09 22:02:24
Description:
Antivirus de Microsoft Defender encontró un error crítico al realizar una acción en malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win64/DisguisedXMRigMiner&threatid=2147797945&enterprise=0
Nombre: Trojan:Win64/DisguisedXMRigMiner
Id.: 2147797945
Gravedad: Grave
Categoría: Caballo de Troya
Ruta de acceso: appmodel:_Windows.PrintDialog_6.2.1.0_neutral_neutral_cw5n1h2txyewy; file:_C:\Windows\PrintDialog\SystemPropertiesPerformance.exe; file:_C:\Windows\Resources\pcaui.exe
Origen de detección: Equipo local
Tipo de detección: Concreto
Origen de detección: Usuario
Usuario: JUAN-DSGN\Juan
Nombre de proceso: Unknown
Acción: Quitar
Estado de acción: No additional actions required
Código de error: 0x800710dd
Descripción del error: El identificador de operación no es válido.
Versión de inteligencia de seguridad: AV: 1.383.1419.0, AS: 1.383.1419.0, NIS: 1.383.1419.0
Versión del motor: AM: 1.1.20000.2, NIS: 1.1.20000.2
Date: 2023-02-26 23:00:26
Description:
Antivirus de Microsoft Defender encontró un error crítico al realizar una acción en malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win64/DisguisedXMRigMiner&threatid=2147797945&enterprise=0
Nombre: Trojan:Win64/DisguisedXMRigMiner
Id.: 2147797945
Gravedad: Grave
Categoría: Caballo de Troya
Ruta de acceso: appmodel:_Windows.PrintDialog_6.2.1.0_neutral_neutral_cw5n1h2txyewy; file:_C:\Windows\PrintDialog\SystemPropertiesPerformance.exe
Origen de detección: Equipo local
Tipo de detección: Concreto
Origen de detección: Protección en tiempo real
Usuario: NT AUTHORITY\SYSTEM
Nombre de proceso: C:\Windows\SysWOW64\cmd.exe
Acción: Cuarentena
Estado de acción: No additional actions required
Código de error: 0x800710dd
Descripción del error: El identificador de operación no es válido.
Versión de inteligencia de seguridad: AV: 1.383.713.0, AS: 1.383.713.0, NIS: 1.383.713.0
Versión del motor: AM: 1.1.20000.2, NIS: 1.1.20000.2
CodeIntegrity:
Date: 2023-04-16 16:44:28
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.2303.8-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-04-14 12:30:01
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2023-04-05 07:58:20
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Información de la memoria ===========================
BIOS: American Megatrends International, LLC. F13 07/08/2021
Placa base: Gigabyte Technology Co., Ltd. B550 GAMING X V2
Procesador: AMD Ryzen 5 5600X 6-Core Processor
Porcentaje de memoria en uso: 19%
RAM física total: 32712.29 MB
RAM física disponible: 26170.71 MB
Virtual total: 37576.29 MB
Virtual disponible: 28793.44 MB
==================== Unidades ================================
Drive c: (OS) (Fixed) (Total:953.24 GB) (Free:713.22 GB) (Model: ADATA SX8200PNP) NTFS
Drive d: (Data) (Fixed) (Total:3726.01 GB) (Free:3351.51 GB) (Model: WDC WD40EZAZ-00SF3B0) NTFS
\?\Volume{c9da13ba-5499-4285-a127-58c39192a33b}\ (Recuperación) (Fixed) (Total:0.52 GB) (Free:0.08 GB) NTFS
\?\Volume{8eed3e90-ac39-438c-a2e7-6f3e2051624a}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Tabla de particiones ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 3726 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 953.9 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Final de Addition.txt =======================
(/code)