Hola
Mi pc utiliza muchos recursos sin tener ningún programa Abierto.
Tengo dos cuentas, una de invitado y la otra mi cuenta personal.
Ejecute el Malwarebytes en mi cuenta personal y no encontró ningún virus.
Y en la cuenta de invitado me encontró 4, y los mande a curentena.
Podrían ayudarme?..No se si es un problema de software, o es la memoria ram, que funciona mal …
Hola @manuelmdp1988
¿Tendras los reportes de malwarebytes? Si es así por favor traenoslos (los de ambos escaneos).
Adicional, revisa en el administrador de tareas y has clic en la columna de CPU. Esto organizara de mayor a menor. Usando esto para ver si hay algun proceso especifico que este usando muchos recursos. Algo similar a esta imagen de muestra:
Nos comentas.
Saludos
Cita
Malwarebytes
-Detalles del registro- Fecha del análisis: 24/6/21 Hora del análisis: 16:08 Archivo de registro: 82a1cb60-d51f-11eb-a76d-00ff3a83b0ac.json
-Información del software- Versión: 4.4.0.117 Versión de los componentes: 1.0.1344 Versión del paquete de actualización: 1.0.42187 Licencia: Prueba
-Información del sistema- SO: Windows 7 Service Pack 1 CPU: x64 Sistema de archivos: NTFS Usuario: Usuario-PC\Invitado
-Resumen del análisis- Tipo de análisis: Análisis de amenazas Análisis iniciado por:: Manual Resultado: Completado Objetos analizados: 295723 Amenazas detectadas: 4 Amenazas en cuarentena: 0 Tiempo transcurrido: 11 min, 36 seg
-Opciones de análisis- Memoria: Activado Inicio: Activado Sistema de archivos: Activado Archivo: Activado Rootkits: Desactivado Heurística: Activado PUP: Detectar PUM: Detectar
-Detalles del análisis- Proceso: 0 (No hay elementos maliciosos detectados)
Módulo: 0 (No hay elementos maliciosos detectados)
Clave del registro: 3 HackTool.KMSpico, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\AutoPico Daily Restart, Sin acciones por parte del usuario, 7247, 921559, , , , , , HackTool.KMSpico, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS{432A588B-D5C2-4F6E-A6D1-2C0C007E20A9}, Sin acciones por parte del usuario, 7247, 921559, , , , , , HackTool.KMSpico, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN{432A588B-D5C2-4F6E-A6D1-2C0C007E20A9}, Sin acciones por parte del usuario, 7247, 921559, , , , , ,
Valor del registro: 0 (No hay elementos maliciosos detectados)
Datos del registro: 0 (No hay elementos maliciosos detectados)
Secuencia de datos: 0 (No hay elementos maliciosos detectados)
Carpeta: 0 (No hay elementos maliciosos detectados)
Archivo: 1 HackTool.KMSpico, C:\WINDOWS\SYSTEM32\TASKS\AutoPico Daily Restart, Sin acciones por parte del usuario, 7247, 921559, 1.0.42187, , ame, , 0D35D4C5711544347DDBAB6B3E242CFB, 895961596320A2DAFABE7E44FDEA99119A0D2BBC2E9CE59D9933027717EC5D86
Sector físico: 0 (No hay elementos maliciosos detectados)
WMI: 0 (No hay elementos maliciosos detectados)
(end)
Cita
Lo que no entiendo, es que sin tener ningún programa abierto, me consume muchos recursos, y hace unos días no lo hacia.
Ejecute el Junkware Removal Tool . Y siempre encuentra lo mismo…
Cita
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 7 Ultimate x64
Ran by Usuario (Administrator) on 26/06/2021 at 18:10:50,53
File System: 8
Successfully deleted: C:\Users\Usuario\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E0EZFEC9 (Temporary Internet Files Folder) Successfully deleted: C:\Users\Usuario\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HKW8QNTL (Temporary Internet Files Folder) Successfully deleted: C:\Users\Usuario\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LNT8OKUR (Temporary Internet Files Folder) Successfully deleted: C:\Users\Usuario\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\W1RPSMK4 (Temporary Internet Files Folder) Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E0EZFEC9 (Temporary Internet Files Folder) Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HKW8QNTL (Temporary Internet Files Folder) Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LNT8OKUR (Temporary Internet Files Folder) Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\W1RPSMK4 (Temporary Internet Files Folder)
Registry: 0
Scan was completed on 26/06/2021 at 18:14:24,78
End of JRT log
Dice deleted y no los elimina… Alguna forma de eliminar complemente estos archivos?
Hola,
Respecto a lo que encuentra Junkware, te comento que no son infecciones y si los elimina. Como el mismo programa marca son archivos temporales. El quedarte mucho con eliminar estos y que no se re-generen es poco productivo y no te llevará a ningún lado; aunque de lograrlo te causará mas errores que otra cosa.
Esto es relativamente normal; si bien es cierto que en ocasiones puede indicar algún problema no siempre es el caso. Lo raro sería que este siempre al 100%.
En la captura que muestras del administrador de tareas el consumo no esta especialmente alto a pesar de tener el el navegador abierto.
Lo que detecto Malwarebytes eran cracks/activadores para Windows. Si bien no la mejor opción no necesariamente dañinos por si mismos.
Realiza lo siguiente:
Descargar: IFS (InfoSpyware First Steps) y colocalo en el escritorio
Esperamos ese reporte.
Saludos
[CODE][B]~~~~~~~~~~~| Inicio: [/B]
*IFS (InfoSpyware First Steps) v 1.3 *www.InfoSpyware.com | www.ForoSpyware.com *Iniciado: 27/06/2021 a las 12h.57m.59s
[B]~~~~~~~~~~~| Información del Sistema:[/B]
OS: Microsoft Windows 7 Ultimate x64 Service Pack 1 Idioma: Spanish (Argentina) (Argentina|es-AR) Permisos de Administrador / ON Windows se Inició en Modo Normal Drive: C:\Windows (Install: \Device\HarddiskVolume1)
[B]~~~~~~~~~~~| Arquitectura Fisica:[/B]
CPU: Gigabyte Technology Co., Ltd. CPU Modelo: M68MT-S2P Procesador: AMD Athlon™ II X2 250 Processor (x64-BasedPC) Memoria RAM: 8 Gb. En Uso: 52 % Video: NVIDIA GeForce 7025 / NVIDIA nForce 630a Chip: GeForce 7025 / nForce 630a Capacidad video:256 MB (Integrated RAMDAC)
[B]~~~~~~~~~~~| Unidades[/B]
C: [FIXED|NTFS|] - [465.7 Gb][356.4 Gb][109.4 Gb] D: [CDROM] E: [CDROM] F: [CDROM] C:\ Fragmentación total 30.48% - Desfragmentar unidad
[B]~~~~~~~~~~~| Seguridad del SO[/B]
SafeBoot: Inicio en Modo seguro Correcto Security Center: Correcto (Servicio Activo) Windows Update: Correcto (Servicio Activo) [LST: 2021-04-18 22:00:34][LD: 2021-04-18 23:27:51][LI: 2021-04-18 23:41:14][LRP: 2021-04-18 23:41:14] AV: Kaspersky Security Cloud Protección Residente [OFF] / Actualización vía la Nube SP: Windows Defender Protección Residente [OFF] / Actualizado SP: Kaspersky Security Cloud Protección Residente [OFF] / Actualización vía la Nube FW: Kaspersky Security Cloud Protección Residente [OFF] FW: Windows Firewall * Protección Residente [OFF]*
[B]~~~~~~~~~~~| Update Check[/B]
Internet Explorer Versión Instalada 11 Google Chrome Versión Instalada 91.0.4472.114 Adobe ShockWave Player Versión Instalada 12.3.5.205 Adobe Flash Player Versión Instalada 32.0 Microsoft SilverLigth Versión instalada 5.1.50901.0
[B]~~~~~~~~~~~| Process List[/B]
avp.exe (Kaspersky)
[B]~~~~~~~~~~~| Install Check[/B]
Kaspersky Security Cloud [21.3.10.391] Kaspersky Password Manager [9.0.2.767] Kaspersky VPN [21.3.10.391] CCleaner [5.81]
[B]~~~~~~~~~~~| Registry Check[/B]
HKLM\Run(x64): [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s HKLM\Run(x64): [Persistence] “C:\Windows\system32\igfxpers.exe” HKLM\Run(x64): [IgfxTray] “C:\Windows\system32\igfxtray.exe” HKLM\Run(x64): [HotKeysCmds] “C:\Windows\system32\hkcmd.exe” HKLM\Run(x64): [ShadowPlay] “C:\Windows\system32\rundll32.exe” C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\Run: [APSDaemon] “C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe” HKLM\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun Winlogon(x64): Shell = explorer.exe Winlogon: Shell = explorer.exe Userinit(x64): Userinit = userinit.exe, Userinit: Userinit = userinit.exe,
[HKCR…open\command] → No se pudo obtener la información.
[B]~~~~~~~~~~~| PUPs Check[/B]
[B]~~~~~~~~~~~| Listado 7 Días (Predeterminado)[/B]
[27/06/2021 12:27] - C:\Windows\setupact.log [27/06/2021 12:27] - C:\Windows\setuperr.log [27/06/2021 12:57] - C:\FSTool [27/06/2021 12:57] - C:\IFS.log
[B]~~~~~~~~~~~| C:\Windows\Tasks:[/B]
Gracias [ErdrickBass] por aclararme la duda acerca a Junkware.
Hola nuevamente,
Ejecuta IFS nuevamente y presiona desinstalar.
Aunque no veo alguna infección en los reportes. Si hay una linea que causa algunas dudas. Si te parece, vamos a realizar una revisión más amplia solo para revisar que no haya algo escondido o alguna cosa que pueda requerir reparación.
Revisa el siguiente manual y ejecuta FRST:
Nos traerías los reportes de FRST Frst.txt y Adition.txt.
Saludos
NOTAS IMPORTANTES:
° Evite realizar procedimientos fuera de este tema a partir de este punto.
° NO descargue o instale mas programas mientras terminamos la desinfección.
° No vuelva a ejecutar ningún otro programa antivirus/antimalwares ni FRST hasta que vuelva con una respuesta.
Saludosa
Hola… Si claro, mientras descartemos cualquier problema o virus , estoy de acuerdo.
Cita
Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 26-06-2021 Ejecutado por Usuario (administrador) sobre USUARIO-PC (Gigabyte Technology Co., Ltd. M68MT-S2P) (28-06-2021 16:30:46) Ejecutado desde C:\Users\Usuario\Desktop Perfiles cargados: Usuario Platform: Windows 7 Ultimate Service Pack 1 (X64) Idioma: Español (España, internacional) Navegador predeterminado: Brave Modo de Inicio: Normal
==================== Procesos (Lista blanca) =================
(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)
(Adobe Inc. → Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Brave Software, Inc. → Brave Software, Inc.) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe <2> (Brave Software, Inc. → BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe (Kaspersky Lab JSC → AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avp.exe (Kaspersky Lab JSC → AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avpui.exe (Kaspersky Lab JSC → AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe (Kaspersky Lab JSC → AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksdeui.exe (Microsoft Corporation → Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation → Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Microsoft Windows → Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Windows → Microsoft Corporation) C:\Windows\System32\osk.exe (NVIDIA Corporation → NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation → NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation → NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation → NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation → NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (NVIDIA Corporation → NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (NVIDIA Corporation → NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe (NVIDIA Corporation → NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (NVIDIA Corporation → NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe <2> (NVIDIA Corporation → NVIDIA) C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneCmd.exe (NVIDIA Corporation → NVIDIA) C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe (Realtek Semiconductor Corp → Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe Error al acceder al proceso → brave.exe Error al acceder al proceso → brave.exe
==================== Registro (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM.…\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13874392 2015-01-22] (Realtek Semiconductor Corp → Realtek Semiconductor) HKLM.…\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1828160 2015-11-12] (NVIDIA Corporation PE Sign v2014 → NVIDIA Corporation) [Archivo no firmado] HKLM-x32.…\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. → Apple Inc.) HKLM.…\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-13] (Microsoft Windows → Hewlett-Packard Corporation) HKLM.…\Print\Monitors\PCL hpz3lw71: C:\Windows\system32\hpz3lw71.dll [46080 2009-07-13] (Microsoft Windows → Hewlett-Packard Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] → C:\Program Files (x86)\Google\Chrome\Application\91.0.4472.114\Installer\chrmstp.exe [2021-06-21] (Google LLC → Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] → C:\Program Files\BraveSoftware\Brave-Browser\Application\91.1.25.72\Installer\chrmstp.exe [2021-06-12] (Brave Software, Inc. → Brave Software, Inc.) HKLM\Software.…\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] → C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2012-07-17] (Microsoft Corporation → Microsoft Corp.) Policies: C:\ProgramData\NTUSER.pol: Restricción <==== ATENCIÓN
==================== Tareas programadas (Lista blanca) ============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
Task: {012E6190-AAF3-48F9-9C34-51698254F245} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} Task: {08FCC041-D5BF-4BEC-90E9-4F88E891C10B} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [155848 2020-09-21] (Brave Software, Inc. → BraveSoftware Inc.) Task: {1A2DA23F-1551-41EE-9F8A-E81A06B623AE} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_270_Plugin.exe [1457720 2019-10-12] (Adobe Inc. → Adobe) Task: {1B1D22B3-D5AF-48BA-9743-4D18A51539AD} - System32\Tasks{097E22D1-96C3-4EFA-88C3-393D72BA3114} => C:\Users\Usuario\Desktop\flashplayer32_xa_install (1).exe Task: {1C25A539-5266-4E5A-9881-C601708ED6B0} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-04-29] (Avast Software s.r.o. → Avast Software) Task: {20C1FBCB-2E70-4211-8B10-F526ECFF5576} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-10-12] (Adobe Inc. → Adobe) Task: {2CDAA9CD-76A4-4464-8448-E39883FEA4AB} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [155848 2020-09-21] (Brave Software, Inc. → BraveSoftware Inc.) Task: {2E5DDD75-0039-4121-9CF0-638FB2FE3BAA} - System32\Tasks{91152070-F5CA-47B1-921A-607F7CAF174A} => C:\Windows\system32\pcalua.exe -a “C:\Program Files (x86)\Vivid Games S.A\Real Boxing\Binaries\UnSetup.exe” -d “C:\Program Files (x86)\Vivid Games S.A\Real Boxing\Binaries” Task: {4EBC23CA-27B2-4E3D-ABF2-AB8BD48E5850} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. → Apple Inc.) Task: {5AB18766-19D1-4FA0-9365-1CA85EBE5BCF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-06-05] (Google LLC → Google LLC) Task: {76110869-7D99-4A02-96BB-CB3A01450DF4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. → Adobe Inc.) Task: {7AE7771D-4A22-4EC0-A0F2-15B3CC0B1960} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28985472 2021-06-07] (Piriform Software Ltd → Piriform Software Ltd) Task: {A2670295-463B-4493-9C2F-50DB77759A1C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-21] (Microsoft Corporation → Microsoft Corporation) Task: {BA8567A9-B07B-420F-8E8A-1F6F73920235} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-06-07] (Piriform Software Ltd → Piriform) Task: {BB1FD0F7-6671-4427-81D7-3361718033F8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-06-05] (Google LLC → Google LLC) Task: {E01A929D-E4C9-4AFE-A972-E0BF8499FB52} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe Task: {F1D1C2A9-D958-4FA1-B70C-C1FE91EBB7B4} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-21] (Microsoft Corporation → Microsoft Corporation)
(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)
==================== Internet (Lista blanca) ====================
(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)
Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648 2012-07-17] (Microsoft Corporation → Microsoft Corp.) Winsock: Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648 2012-07-17] (Microsoft Corporation → Microsoft Corp.) Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760 2012-07-17] (Microsoft Corporation → Microsoft Corp.) Winsock: Catalog5-x64 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760 2012-07-17] (Microsoft Corporation → Microsoft Corp.) Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 208.67.222.222 Tcpip..\Interfaces{20106B69-3646-4318-AD83-46A05B1A1073}: [DhcpNameServer] 8.8.8.8 208.67.222.222
Edge HKU\S-1-5-21-3306104381-707099750-1311680531-1000\SOFTWARE\Microsoft\Edge\Extensions.…\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] Edge HKU\S-1-5-21-3306104381-707099750-1311680531-501\SOFTWARE\Microsoft\Edge\Extensions.…\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]
FF DefaultProfile: du2qzntn.default FF ProfilePath: C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\du2qzntn.default [2021-06-26] FF DownloadDir: C:\Users\Usuario\Desktop FF NewTab: Mozilla\Firefox\Profiles\du2qzntn.default → about:newtab FF NewTabOverride: Mozilla\Firefox\Profiles\du2qzntn.default → Enabled: {24436206-088d-4a1a-8d0e-cf93ca7a2d23} FF HKLM.…\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\FFExt\light_plugin_firefox\addon.xpi => no encontrado FF HKLM-x32.…\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\FFExt\light_plugin_firefox\addon.xpi => no encontrado FF Plugin: @adobe.com/FlashPlayer → C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_270.dll [2019-10-12] (Adobe Inc. → ) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 → c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] (Microsoft Corporation → Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer → C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_270.dll [2019-10-12] (Adobe Inc. → ) FF Plugin-x32: @adobe.com/ShockwavePlayer → C:\Windows\SysWOW64\Adobe\Director\np32dsw_1235205.dll [2019-03-15] (Adobe Systems, Inc.) [Archivo no firmado] FF Plugin-x32: @java.com/DTPlugin,version=11.261.2 → C:\Program Files (x86)\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-07-15] (Oracle America, Inc. → Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.261.2 → C:\Program Files (x86)\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-07-15] (Oracle America, Inc. → Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 → C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-19] (Microsoft Corporation → Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 → c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] (Microsoft Corporation → Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 → C:\PROGRA~2\MICROS~3\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation → Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 → C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation → Microsoft Corporation) FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=3 → C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2020-09-21] (Brave Software, Inc. → BraveSoftware Inc.) FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=9 → C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2020-09-21] (Brave Software, Inc. → BraveSoftware Inc.) FF Plugin-x32: Adobe Reader → C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-05-28] (Adobe Inc. → Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-3306104381-707099750-1311680531-1000: @unity3d.com/UnityPlayer,version=1.0 → C:\Users\Usuario\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-12-07] (Unity Technologies SF → Unity Technologies ApS)
CHR DefaultProfile: Default CHR Profile: C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default [2021-06-26] CHR DownloadDir: C:\Users\Usuario\Desktop CHR DefaultSearchURL: Default → hxxps://www.edx.org/favicon.ico CHR Extension: (Presentaciones) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-06-05] CHR Extension: (Kaspersky Protection) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-05-18] CHR Extension: (Documentos) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-06-05] CHR Extension: (Google Drive) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-16] CHR Extension: (YouTube) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-06-05] CHR Extension: (Python: aprender a programar | edX) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\dacdheabbppkjoncplfpjhdgfjglkghd [2020-07-01] CHR Extension: (Programa XSeries en Grabación y producción musical | edX) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ebgglficdldljgckjpchkphbfggmkalm [2020-07-01] CHR Extension: (Adobe Acrobat) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-03-14] CHR Extension: (Universidad Nacional de Córdoba | edX) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\emjjodockgjhdoljojklcngkgleekijg [2020-07-01] CHR Extension: (Hojas de cálculo) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-06-05] CHR Extension: (Documentos de Google sin conexión) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-13] CHR Extension: (Plan de Estudio de la Carrera de Abogacía - 1985 | Facultad de Derecho - Universidad de Buenos Aires) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhhgcdcdmkcmffomhnhdafdlngefahh [2020-07-08] CHR Extension: (Libro de texto para AV003 | Campus Virtual - UNC) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfogmdjbleejokhpojdfllkongljdnij [2020-07-01] CHR Extension: (Shine) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidbpkjafbnohlnbflllphpkfmojpdac [2020-06-17] CHR Extension: (Orden de Extracción Punto Efectivo | Banco de la Provincia de Buenos Aires) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfmfkdelpplgfjnkkeinekhpilnfkoai [2020-07-01] CHR Extension: (Resumen Teoría General del Derecho - Cátedra Alegre-Mandelbaum B. | Teoria General y Filosofia del Derecho | Abogacia UBA | | Filadd) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\lehgepplpcldlncidpkaeolnfoiddfmh [2020-07-08] CHR Extension: (Story Saver) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\mafcolokinicfdmlidhaebadidhdehpk [2021-02-08] CHR Extension: (Curso | CV001 | edX) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjhafcmhejfbcbliolmhgfpndfapnchj [2020-07-01] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Gmail) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-16] CHR Extension: (Chrome Media Router) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-05] CHR HKLM.…\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm CHR HKLM-x32.…\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm CHR HKLM-x32.…\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
BRA DefaultProfile: Default BRA Profile: C:\Users\Usuario\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2021-06-28] BRA Notifications: Default → hxxps://www71.darenjarvis.pro BRA Extension: (Traductor de Google) - C:\Users\Usuario\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-09-25] BRA Extension: (AD&POP Block) - C:\Users\Usuario\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\mknlngfeicgfpljigaaeohppjdiaalid [2021-03-03] BRA Profile: C:\Users\Usuario\AppData\Local\BraveSoftware\Brave-Browser\User Data\Profile 1 [2021-03-06] BRA Extension: (Kaspersky Protection) - C:\Users\Usuario\AppData\Local\BraveSoftware\Brave-Browser\User Data\Profile 1\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-03-06] BRA Extension: (Adobe Acrobat) - C:\Users\Usuario\AppData\Local\BraveSoftware\Brave-Browser\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-11-13] BRA Extension: (Brave Local Data Files Updater) - C:\Users\Usuario\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2021-05-05] BRA Extension: (Brave Ads Resources) - C:\Users\Usuario\AppData\Local\BraveSoftware\Brave-Browser\User Data\ahiocclicnhmiobhocikfdamfccbehhn [2021-05-25] BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\Usuario\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2021-06-27] BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\Usuario\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2021-06-24] BRA Extension: (Brave Ads Resources) - C:\Users\Usuario\AppData\Local\BraveSoftware\Brave-Browser\User Data\elecgkckipdmnkkgndidemmdhdcdfhnp [2021-06-22] BRA Extension: (Brave NTP sponsored images) - C:\Users\Usuario\AppData\Local\BraveSoftware\Brave-Browser\User Data\golcdmhaefcpmdoofahgnhnfldidgjfl [2021-06-27] BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\Usuario\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2020-09-21] BRA Extension: (Brave SpeedReader Updater) - C:\Users\Usuario\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2021-05-05] BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Usuario\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2021-06-22]
==================== Servicios (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. → Adobe Inc.) S4 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-10-12] (Adobe Inc. → Adobe) R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avp.exe [184768 2021-06-20] (Kaspersky Lab JSC → AO Kaspersky Lab) S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [155848 2020-09-21] (Brave Software, Inc. → BraveSoftware Inc.) S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [155848 2020-09-21] (Brave Software, Inc. → BraveSoftware Inc.) S3 ComboCleaner.Guard; C:\Program Files (x86)\Combo Cleaner\ComboCleaner.Guard.exe [141440 2021-06-10] (RCS LT, UAB → RCS LT) S3 ComboCleaner.WinService; C:\Program Files (x86)\Combo Cleaner\ComboCleaner.WinService.exe [150144 2021-06-10] (RCS LT, UAB → RCS LT) S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC → AO Kaspersky Lab) S3 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [357272 2021-03-11] (Kaspersky Lab JSC → AO Kaspersky Lab) R2 KSDE5.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe [447104 2021-06-17] (Kaspersky Lab JSC → AO Kaspersky Lab) S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7391408 2021-06-24] (Malwarebytes Inc → Malwarebytes) R2 nTuneService; C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe [278336 2011-09-19] (NVIDIA Corporation → NVIDIA) S4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows → Microsoft Corporation) R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292480 2012-07-17] (Microsoft Corporation → Microsoft Corp.)
===================== Controladores (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
S3 athr; C:\Windows\System32\DRIVERS\athrx.sys [2673664 2010-11-24] (Microsoft Windows Hardware Compatibility Publisher → Atheros Communications, Inc.) S3 BdDci; C:\Windows\System32\DRIVERS\bddci.sys [802976 2020-12-04] (Bitdefender SRL → Bitdefender) R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [250032 2021-02-19] (Kaspersky Lab JSC → AO Kaspersky Lab) S3 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [195224 2020-09-03] (Bitdefender SRL → BitDefender LLC) S3 igfx; C:\Windows\System32\DRIVERS\igdkmd64.sys [5363200 2014-01-29] (Intel Corporation) [Archivo no firmado] R1 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [110336 2021-02-19] (Kaspersky Lab JSC → AO Kaspersky Lab) R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [211704 2021-02-19] (Kaspersky Lab JSC → AO Kaspersky Lab) R1 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [126216 2021-02-19] (Kaspersky Lab JSC → AO Kaspersky Lab) R1 klflt; C:\Windows\System32\DRIVERS\klflt.sys [514840 2021-02-19] (Kaspersky Lab JSC → AO Kaspersky Lab) R1 klgse; C:\Windows\System32\DRIVERS\klgse.sys [657696 2021-03-15] (Kaspersky Lab JSC → AO Kaspersky Lab) R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [1400600 2021-03-15] (Kaspersky Lab JSC → AO Kaspersky Lab) R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1042712 2021-02-19] (Kaspersky Lab JSC → AO Kaspersky Lab) R1 klim6; C:\Windows\System32\DRIVERS\klim6.sys [98040 2021-02-19] (Kaspersky Lab JSC → AO Kaspersky Lab) R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [112392 2021-02-19] (Kaspersky Lab JSC → AO Kaspersky Lab) R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [112904 2021-02-19] (Kaspersky Lab JSC → AO Kaspersky Lab) R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [85256 2021-02-19] (Kaspersky Lab JSC → AO Kaspersky Lab) R3 kltap; C:\Windows\System32\DRIVERS\kltap.sys [55592 2021-02-19] (AnchorFree Inc → The OpenVPN Project) R0 klupd_klif_arkmon; C:\Windows\System32\Drivers\klupd_klif_arkmon.sys [245752 2021-04-19] (Kaspersky Lab JSC → AO Kaspersky Lab) R3 klupd_klif_klark; C:\Windows\System32\Drivers\klupd_klif_klark.sys [283144 2021-04-19] (Kaspersky Lab JSC → AO Kaspersky Lab) R0 klupd_klif_klbg; C:\Windows\System32\Drivers\klupd_klif_klbg.sys [108576 2021-04-19] (Kaspersky Lab JSC → AO Kaspersky Lab) R3 klupd_klif_mark; C:\Windows\System32\Drivers\klupd_klif_mark.sys [216576 2021-04-19] (Kaspersky Lab JSC → AO Kaspersky Lab) R1 klwfp; C:\Windows\System32\DRIVERS\klwfp.sys [155912 2021-02-19] (Kaspersky Lab JSC → AO Kaspersky Lab) R1 klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [327936 2021-02-19] (Kaspersky Lab JSC → AO Kaspersky Lab) R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [300808 2021-02-19] (Kaspersky Lab JSC → AO Kaspersky Lab) R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [220752 2021-06-26] (Malwarebytes Inc → Malwarebytes) S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-06-24] (Malwarebytes Inc → Malwarebytes) R3 nvoclk64; C:\Windows\System32\DRIVERS\nvoclk64.sys [42088 2009-09-15] (NVIDIA Corporation → NVIDIA Corp.) R3 Serenum; C:\Windows\System32\DRIVERS\nuvserenum.sys [23552 2014-01-12] (Microsoft Windows Hardware Compatibility Publisher → Windows (R) Win 7 DDK provider) R3 Serial; C:\Windows\System32\DRIVERS\nuvserial.sys [86016 2014-01-12] (Microsoft Windows Hardware Compatibility Publisher → Nuvoton Technology Corp.) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [381608 2018-05-03] (Disc Soft Ltd → Duplex Secure Ltd.) R1 StarPortLite; C:\Windows\System32\DRIVERS\StarPortLite.sys [120704 2013-02-04] (StarWind Software Inc → StarWind Software) S3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [641736 2021-02-26] (Bitdefender SRL → Bitdefender) U3 am5ifb52; C:\Windows\System32\Drivers\am5ifb52.sys [0 0000-00-00] (Advanced Micro Devices) <==== ATENCIÓN (cero bytes Archivo/Carpeta)
==================== NetSvcs (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
==================== Un mes (creado) (Lista blanca) =========
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2021-06-28 16:30 - 2021-06-28 16:31 - 000026804 _____ C:\Users\Usuario\Desktop\FRST.txt 2021-06-28 16:26 - 2021-06-28 16:28 - 002300416 _____ (Farbar) C:\Users\Usuario\Desktop\FRST64.exe 2021-06-27 12:57 - 2021-06-27 13:01 - 000000000 ____D C:\FSTool 2021-06-27 12:56 - 2021-06-27 12:57 - 001599815 _____ C:\Users\Usuario\Desktop\IFS.exe 2021-06-26 18:24 - 2021-06-26 18:24 - 000220752 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys 2021-06-26 17:51 - 2021-06-26 17:51 - 000000000 ____D C:\Users\Invitado\Desktop\Autoruns 2021-06-26 17:51 - 2021-06-26 17:51 - 000000000 ____D C:\Users\Invitado\AppData\Roaming\WinRAR 2021-06-26 17:12 - 2021-06-26 17:12 - 000000000 ____D C:\Users\Usuario\AppData\Local\RCS_LT 2021-06-26 17:11 - 2021-06-26 17:11 - 000001890 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Combo Cleaner.lnk 2021-06-26 17:11 - 2021-06-26 17:11 - 000001884 _____ C:\Users\Public\Desktop\Combo Cleaner.lnk 2021-06-26 17:11 - 2021-06-26 17:11 - 000001884 _____ C:\ProgramData\Desktop\Combo Cleaner.lnk 2021-06-26 17:09 - 2021-06-26 17:13 - 000000000 ____D C:\Program Files (x86)\Combo Cleaner 2021-06-26 17:06 - 2021-06-26 17:07 - 002732604 _____ C:\Users\Invitado\Desktop\Autoruns.zip 2021-06-26 16:59 - 2021-06-26 17:00 - 003590288 _____ (RCS LT) C:\Users\Invitado\Desktop\CCSetup.exe 2021-06-24 16:24 - 2021-06-24 16:24 - 000002266 _____ C:\Users\Invitado\Desktop\Malwarebytes.txt 2021-06-24 15:47 - 2021-06-24 15:47 - 000248992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2021-06-24 15:47 - 2021-06-24 15:47 - 000001948 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2021-06-24 15:47 - 2021-06-24 15:47 - 000001948 _____ C:\ProgramData\Desktop\Malwarebytes.lnk 2021-06-24 15:47 - 2021-06-24 15:47 - 000000000 ____D C:\Users\Invitado\AppData\Local\mbam 2021-06-24 15:23 - 2021-06-24 15:24 - 008534696 _____ (Malwarebytes) C:\Users\Invitado\Desktop\adwcleaner_8.2.exe 2021-06-24 15:23 - 2021-06-24 15:23 - 002094168 _____ (Malwarebytes) C:\Users\Invitado\Desktop\MBSetup.exe 2021-06-24 15:22 - 2021-06-24 15:22 - 002300416 _____ (Farbar) C:\Users\Invitado\Desktop\FRST64.exe 2021-06-24 15:21 - 2021-06-24 15:21 - 001790024 _____ (Malwarebytes) C:\Users\Invitado\Desktop\JRT.exe 2021-06-24 15:17 - 2021-06-25 18:52 - 000000000 ____D C:\Users\Invitado\AppData\Local\CrashDumps 2021-06-24 15:13 - 2021-06-24 15:13 - 000000000 ____H C:\Users\Invitado\Documents\Default.rdp 2021-06-24 15:08 - 2021-06-24 15:08 - 000002317 _____ C:\Users\Invitado\Desktop\Google Chrome.lnk 2021-06-24 15:07 - 2021-06-24 15:07 - 000000000 ____D C:\Users\Invitado\AppData\Roaming\NVIDIA 2021-06-24 15:07 - 2021-06-24 15:07 - 000000000 ____D C:\Users\Invitado\AppData\Local\cache 2021-06-24 12:00 - 2021-06-24 12:00 - 000000000 ____D C:\Users\Usuario\Documents\REAPER Media 2021-06-24 11:58 - 2021-06-24 11:59 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\REAPER 2021-06-24 11:58 - 2021-06-24 11:58 - 000000828 _____ C:\Users\Public\Desktop\REAPER (x64).lnk 2021-06-24 11:58 - 2021-06-24 11:58 - 000000828 _____ C:\ProgramData\Desktop\REAPER (x64).lnk 2021-06-24 11:58 - 2021-06-24 11:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REAPER (x64) 2021-06-24 11:58 - 2021-06-24 11:58 - 000000000 ____D C:\Program Files\REAPER (x64) 2021-06-24 11:52 - 2021-06-26 18:14 - 000001872 _____ C:\Users\Usuario\Desktop\JRT.txt 2021-06-24 00:39 - 2019-12-03 07:21 - 000215044 _____ C:\Users\Usuario\Desktop\DL Clubbed.wav 2021-06-24 00:39 - 2019-12-03 07:20 - 000005516 _____ C:\Users\Usuario\Desktop\FX_Scratch.wav 2021-06-24 00:34 - 2019-12-03 07:21 - 000187104 _____ C:\Users\Usuario\Desktop\FX Spin Down.wav 2021-06-22 19:37 - 2021-06-22 19:37 - 000000000 ____D C:\Users\Usuario\Desktop\NUMEROS 2021-06-21 14:11 - 2021-06-21 14:11 - 008534696 _____ (Malwarebytes) C:\Users\Usuario\Desktop\adwcleaner_8.2.exe 2021-06-20 19:49 - 2021-06-20 19:49 - 000004299 _____ C:\Users\Usuario\Desktop\Nuevo documento de texto.txt 2021-06-16 19:32 - 2021-06-16 19:32 - 000010174 _____ C:\Users\Usuario\Desktop\MTB.txt 2021-06-12 04:34 - 2021-06-12 04:34 - 000892416 _____ (Farbar) C:\Users\Usuario\Desktop\MiniToolBox.exe 2021-06-09 13:55 - 2021-06-09 13:55 - 000000000 _____ C:\Users\Usuario\Downloads\devmgmt.msc.txt 2021-06-09 12:45 - 2021-06-09 12:45 - 000014801 _____ C:\Users\Usuario\Ajustar volumen del sistema - Acceso directo.lnk 2021-06-08 17:20 - 2021-06-08 17:20 - 000000868 _____ C:\Users\Usuario\Desktop\SystemLooka.txt 2021-06-08 17:20 - 2021-06-08 17:20 - 000000866 _____ C:\Users\Usuario\Desktop\SystemLook.txt 2021-06-08 17:17 - 2021-06-08 17:17 - 000096256 _____ C:\Users\Usuario\Desktop\SystemLook_x64.exe
==================== Un mes (modificado) ==================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2021-06-28 16:31 - 2020-05-15 20:36 - 000000000 ____D C:\FRST 2021-06-28 14:50 - 2009-07-14 01:45 - 000029504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2021-06-28 14:50 - 2009-07-14 01:45 - 000029504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2021-06-28 14:48 - 2019-08-30 14:53 - 000003994 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{E059EABC-E287-4913-8534-575568C6E4FE} 2021-06-28 14:44 - 2020-10-01 10:48 - 000000000 ____D C:\Program Files\CCleaner 2021-06-28 14:41 - 2009-07-14 02:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2021-06-27 17:30 - 2020-10-01 10:48 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update 2021-06-26 18:24 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\inf 2021-06-26 17:11 - 2014-03-30 20:10 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2021-06-25 01:05 - 2021-04-22 12:55 - 000002915 _____ C:\Users\Usuario\Desktop\CALENDARIO DIARIO.txt 2021-06-24 19:37 - 2009-07-14 00:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy 2021-06-24 19:33 - 2021-03-29 15:05 - 000000000 ____D C:\Users\Usuario\Desktop\Nueva carpeta 2021-06-24 19:32 - 2021-03-23 20:50 - 000000000 ____D C:\Users\Usuario\Documents\FL STUDIO 2021-06-24 17:36 - 2015-09-17 11:02 - 000000000 ____D C:\Users\Usuario 2021-06-24 15:47 - 2020-05-23 08:41 - 000001960 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2021-06-24 15:45 - 2017-10-23 04:33 - 000199128 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys 2021-06-24 15:08 - 2021-05-06 08:08 - 000002316 _____ C:\Users\Invitado\Desktop\Brave.lnk 2021-06-24 00:15 - 2019-10-18 21:17 - 000000000 ____D C:\Users\Usuario\Documents\Image-Line 2021-06-21 17:26 - 2020-06-05 02:34 - 000002222 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-06-20 19:34 - 2021-03-03 23:21 - 000000000 ____D C:\Users\Usuario\AppData\Local\CrashDumps 2021-06-17 14:23 - 2010-11-21 04:09 - 000747396 _____ C:\Windows\system32\perfh00A.dat 2021-06-17 14:23 - 2010-11-21 04:09 - 000158868 _____ C:\Windows\system32\perfc00A.dat 2021-06-17 14:23 - 2009-07-14 02:13 - 001676890 _____ C:\Windows\system32\PerfStringBackup.INI 2021-06-16 21:24 - 2017-04-15 14:37 - 002901504 ___SH C:\Users\Usuario\Downloads\Thumbs.db 2021-06-12 04:43 - 2020-09-21 00:13 - 000002285 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk 2021-06-10 18:27 - 2015-09-17 12:03 - 000002059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2021-06-06 12:36 - 2009-07-14 02:08 - 000032636 _____ C:\Windows\Tasks\SCHEDLGU.TXT
==================== Archivos en la raíz de algunos directorios ========
2015-09-28 19:06 - 2015-09-28 19:06 - 000000017 _____ () C:\Users\Usuario\AppData\Local\resmon.resmoncfg 2021-05-05 11:36 - 2021-05-05 11:36 - 000000000 _____ () C:\Users\Usuario\AppData\Local{903D7123-69F9-49E8-949B-B916D040B091}
==================== SigCheck ============================
(No existe una corrección automática para los archivos que no pasan la verificación.)
LastRegBack: 2021-06-21 00:42 ==================== Final de FRST.txt ========================
Cita
Cita
Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 26-06-2021
Ejecutado por Usuario (administrador) sobre USUARIO-PC (Gigabyte Technology Co., Ltd. M68MT-S2P) (28-06-2021 16:30:46)
Ejecutado desde C:\Users\Usuario\Desktop
Perfiles cargados: Usuario
Platform: Windows 7 Ultimate Service Pack 1 (X64) Idioma: Español (España, internacional)
Navegador predeterminado: Brave
Modo de Inicio: Normal
==================== Procesos (Lista blanca) =================
(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe <2>
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avp.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avpui.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksdeui.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\osk.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe <2>
(NVIDIA Corporation -> NVIDIA) C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneCmd.exe
(NVIDIA Corporation -> NVIDIA) C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
Error al acceder al proceso -> brave.exe
Error al acceder al proceso -> brave.exe
==================== Registro (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13874392 2015-01-22] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1828160 2015-11-12] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [Archivo no firmado]
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.)
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-13] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\PCL hpz3lw71: C:\Windows\system32\hpz3lw71.dll [46080 2009-07-13] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\91.0.4472.114\Installer\chrmstp.exe [2021-06-21] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\91.1.25.72\Installer\chrmstp.exe [2021-06-12] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Policies: C:\ProgramData\NTUSER.pol: Restricción <==== ATENCIÓN
==================== Tareas programadas (Lista blanca) ============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
Task: {012E6190-AAF3-48F9-9C34-51698254F245} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {08FCC041-D5BF-4BEC-90E9-4F88E891C10B} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [155848 2020-09-21] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {1A2DA23F-1551-41EE-9F8A-E81A06B623AE} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_270_Plugin.exe [1457720 2019-10-12] (Adobe Inc. -> Adobe)
Task: {1B1D22B3-D5AF-48BA-9743-4D18A51539AD} - System32\Tasks\{097E22D1-96C3-4EFA-88C3-393D72BA3114} => C:\Users\Usuario\Desktop\flashplayer32_xa_install (1).exe
Task: {1C25A539-5266-4E5A-9881-C601708ED6B0} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-04-29] (Avast Software s.r.o. -> Avast Software)
Task: {20C1FBCB-2E70-4211-8B10-F526ECFF5576} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-10-12] (Adobe Inc. -> Adobe)
Task: {2CDAA9CD-76A4-4464-8448-E39883FEA4AB} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [155848 2020-09-21] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {2E5DDD75-0039-4121-9CF0-638FB2FE3BAA} - System32\Tasks\{91152070-F5CA-47B1-921A-607F7CAF174A} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Vivid Games S.A\Real Boxing\Binaries\UnSetup.exe" -d "C:\Program Files (x86)\Vivid Games S.A\Real Boxing\Binaries"
Task: {4EBC23CA-27B2-4E3D-ABF2-AB8BD48E5850} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.)
Task: {5AB18766-19D1-4FA0-9365-1CA85EBE5BCF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-06-05] (Google LLC -> Google LLC)
Task: {76110869-7D99-4A02-96BB-CB3A01450DF4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {7AE7771D-4A22-4EC0-A0F2-15B3CC0B1960} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28985472 2021-06-07] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {A2670295-463B-4493-9C2F-50DB77759A1C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {BA8567A9-B07B-420F-8E8A-1F6F73920235} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-06-07] (Piriform Software Ltd -> Piriform)
Task: {BB1FD0F7-6671-4427-81D7-3361718033F8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-06-05] (Google LLC -> Google LLC)
Task: {E01A929D-E4C9-4AFE-A972-E0BF8499FB52} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {F1D1C2A9-D958-4FA1-B70C-C1FE91EBB7B4} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-21] (Microsoft Corporation -> Microsoft Corporation)
(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)
==================== Internet (Lista blanca) ====================
(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)
Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 208.67.222.222
Tcpip\..\Interfaces\{20106B69-3646-4318-AD83-46A05B1A1073}: [DhcpNameServer] 8.8.8.8 208.67.222.222
Edge:
=======
Edge HKU\S-1-5-21-3306104381-707099750-1311680531-1000\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]
Edge HKU\S-1-5-21-3306104381-707099750-1311680531-501\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]
FireFox:
========
FF DefaultProfile: du2qzntn.default
FF ProfilePath: C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\du2qzntn.default [2021-06-26]
FF DownloadDir: C:\Users\Usuario\Desktop
FF NewTab: Mozilla\Firefox\Profiles\du2qzntn.default -> about:newtab
FF NewTabOverride: Mozilla\Firefox\Profiles\du2qzntn.default -> Enabled: {24436206-088d-4a1a-8d0e-cf93ca7a2d23}
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\FFExt\light_plugin_firefox\addon.xpi => no encontrado
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\FFExt\light_plugin_firefox\addon.xpi => no encontrado
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_270.dll [2019-10-12] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_270.dll [2019-10-12] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1235205.dll [2019-03-15] (Adobe Systems, Inc.) [Archivo no firmado]
FF Plugin-x32: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-07-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-07-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-19] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=3 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2020-09-21] (Brave Software, Inc. -> BraveSoftware Inc.)
FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=9 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2020-09-21] (Brave Software, Inc. -> BraveSoftware Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-05-28] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3306104381-707099750-1311680531-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Usuario\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-12-07] (Unity Technologies SF -> Unity Technologies ApS)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default [2021-06-26]
CHR DownloadDir: C:\Users\Usuario\Desktop
CHR DefaultSearchURL: Default -> hxxps://www.edx.org/favicon.ico
CHR Extension: (Presentaciones) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-06-05]
CHR Extension: (Kaspersky Protection) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-05-18]
CHR Extension: (Documentos) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-06-05]
CHR Extension: (Google Drive) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-16]
CHR Extension: (YouTube) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-06-05]
CHR Extension: (Python: aprender a programar | edX) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\dacdheabbppkjoncplfpjhdgfjglkghd [2020-07-01]
CHR Extension: (Programa XSeries en Grabación y producción musical | edX) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ebgglficdldljgckjpchkphbfggmkalm [2020-07-01]
CHR Extension: (Adobe Acrobat) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-03-14]
CHR Extension: (Universidad Nacional de Córdoba | edX) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\emjjodockgjhdoljojklcngkgleekijg [2020-07-01]
CHR Extension: (Hojas de cálculo) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-06-05]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-13]
CHR Extension: (Plan de Estudio de la Carrera de Abogacía - 1985 | Facultad de Derecho - Universidad de Buenos Aires) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhhgcdcdmkcmffomhnhdafdlngefahh [2020-07-08]
CHR Extension: (Libro de texto para AV003 | Campus Virtual - UNC) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfogmdjbleejokhpojdfllkongljdnij [2020-07-01]
CHR Extension: (Shine) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidbpkjafbnohlnbflllphpkfmojpdac [2020-06-17]
CHR Extension: (Orden de Extracción Punto Efectivo | Banco de la Provincia de Buenos Aires) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfmfkdelpplgfjnkkeinekhpilnfkoai [2020-07-01]
CHR Extension: (Resumen Teoría General del Derecho - Cátedra Alegre-Mandelbaum B. | Teoria General y Filosofia del Derecho | Abogacia UBA | | Filadd) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\lehgepplpcldlncidpkaeolnfoiddfmh [2020-07-08]
CHR Extension: (Story Saver) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\mafcolokinicfdmlidhaebadidhdehpk [2021-02-08]
CHR Extension: (Curso | CV001 | edX) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjhafcmhejfbcbliolmhgfpndfapnchj [2020-07-01]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-16]
CHR Extension: (Chrome Media Router) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-05]
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
Brave:
=======
BRA DefaultProfile: Default
BRA Profile: C:\Users\Usuario\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2021-06-28]
BRA Notifications: Default -> hxxps://www71.darenjarvis.pro
BRA Extension: (Traductor de Google) - C:\Users\Usuario\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-09-25]
BRA Extension: (AD&POP Block) - C:\Users\Usuario\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\mknlngfeicgfpljigaaeohppjdiaalid [2021-03-03]
BRA Profile: C:\Users\Usuario\AppData\Local\BraveSoftware\Brave-Browser\User Data\Profile 1 [2021-03-06]
BRA Extension: (Kaspersky Protection) - C:\Users\Usuario\AppData\Local\BraveSoftware\Brave-Browser\User Data\Profile 1\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-03-06]
BRA Extension: (Adobe Acrobat) - C:\Users\Usuario\AppData\Local\BraveSoftware\Brave-Browser\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-11-13]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Usuario\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2021-05-05]
BRA Extension: (Brave Ads Resources) - C:\Users\Usuario\AppData\Local\BraveSoftware\Brave-Browser\User Data\ahiocclicnhmiobhocikfdamfccbehhn [2021-05-25]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\Usuario\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2021-06-27]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\Usuario\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2021-06-24]
BRA Extension: (Brave Ads Resources) - C:\Users\Usuario\AppData\Local\BraveSoftware\Brave-Browser\User Data\elecgkckipdmnkkgndidemmdhdcdfhnp [2021-06-22]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Usuario\AppData\Local\BraveSoftware\Brave-Browser\User Data\golcdmhaefcpmdoofahgnhnfldidgjfl [2021-06-27]
BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\Usuario\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2020-09-21]
BRA Extension: (Brave SpeedReader Updater) - C:\Users\Usuario\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2021-05-05]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Usuario\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2021-06-22]
==================== Servicios (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S4 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-10-12] (Adobe Inc. -> Adobe)
R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avp.exe [184768 2021-06-20] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [155848 2020-09-21] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [155848 2020-09-21] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 ComboCleaner.Guard; C:\Program Files (x86)\Combo Cleaner\ComboCleaner.Guard.exe [141440 2021-06-10] (RCS LT, UAB -> RCS LT)
S3 ComboCleaner.WinService; C:\Program Files (x86)\Combo Cleaner\ComboCleaner.WinService.exe [150144 2021-06-10] (RCS LT, UAB -> RCS LT)
S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [357272 2021-03-11] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 KSDE5.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe [447104 2021-06-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7391408 2021-06-24] (Malwarebytes Inc -> Malwarebytes)
R2 nTuneService; C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe [278336 2011-09-19] (NVIDIA Corporation -> NVIDIA)
S4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292480 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
===================== Controladores (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
S3 athr; C:\Windows\System32\DRIVERS\athrx.sys [2673664 2010-11-24] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
S3 BdDci; C:\Windows\System32\DRIVERS\bddci.sys [802976 2020-12-04] (Bitdefender SRL -> Bitdefender)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [250032 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [195224 2020-09-03] (Bitdefender SRL -> BitDefender LLC)
S3 igfx; C:\Windows\System32\DRIVERS\igdkmd64.sys [5363200 2014-01-29] (Intel Corporation) [Archivo no firmado]
R1 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [110336 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [211704 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [126216 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klflt; C:\Windows\System32\DRIVERS\klflt.sys [514840 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klgse; C:\Windows\System32\DRIVERS\klgse.sys [657696 2021-03-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [1400600 2021-03-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1042712 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klim6; C:\Windows\System32\DRIVERS\klim6.sys [98040 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [112392 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [112904 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [85256 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 kltap; C:\Windows\System32\DRIVERS\kltap.sys [55592 2021-02-19] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\Windows\System32\Drivers\klupd_klif_arkmon.sys [245752 2021-04-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\Windows\System32\Drivers\klupd_klif_klark.sys [283144 2021-04-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\Windows\System32\Drivers\klupd_klif_klbg.sys [108576 2021-04-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\Windows\System32\Drivers\klupd_klif_mark.sys [216576 2021-04-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwfp; C:\Windows\System32\DRIVERS\klwfp.sys [155912 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [327936 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [300808 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [220752 2021-06-26] (Malwarebytes Inc -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-06-24] (Malwarebytes Inc -> Malwarebytes)
R3 nvoclk64; C:\Windows\System32\DRIVERS\nvoclk64.sys [42088 2009-09-15] (NVIDIA Corporation -> NVIDIA Corp.)
R3 Serenum; C:\Windows\System32\DRIVERS\nuvserenum.sys [23552 2014-01-12] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 Serial; C:\Windows\System32\DRIVERS\nuvserial.sys [86016 2014-01-12] (Microsoft Windows Hardware Compatibility Publisher -> Nuvoton Technology Corp.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [381608 2018-05-03] (Disc Soft Ltd -> Duplex Secure Ltd.)
R1 StarPortLite; C:\Windows\System32\DRIVERS\StarPortLite.sys [120704 2013-02-04] (StarWind Software Inc -> StarWind Software)
S3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [641736 2021-02-26] (Bitdefender SRL -> Bitdefender)
U3 am5ifb52; C:\Windows\System32\Drivers\am5ifb52.sys [0 0000-00-00] (Advanced Micro Devices) <==== ATENCIÓN (cero bytes Archivo/Carpeta)
==================== NetSvcs (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
==================== Un mes (creado) (Lista blanca) =========
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2021-06-28 16:30 - 2021-06-28 16:31 - 000026804 _____ C:\Users\Usuario\Desktop\FRST.txt
2021-06-28 16:26 - 2021-06-28 16:28 - 002300416 _____ (Farbar) C:\Users\Usuario\Desktop\FRST64.exe
2021-06-27 12:57 - 2021-06-27 13:01 - 000000000 ____D C:\FSTool
2021-06-27 12:56 - 2021-06-27 12:57 - 001599815 _____ C:\Users\Usuario\Desktop\IFS.exe
2021-06-26 18:24 - 2021-06-26 18:24 - 000220752 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2021-06-26 17:51 - 2021-06-26 17:51 - 000000000 ____D C:\Users\Invitado\Desktop\Autoruns
2021-06-26 17:51 - 2021-06-26 17:51 - 000000000 ____D C:\Users\Invitado\AppData\Roaming\WinRAR
2021-06-26 17:12 - 2021-06-26 17:12 - 000000000 ____D C:\Users\Usuario\AppData\Local\RCS_LT
2021-06-26 17:11 - 2021-06-26 17:11 - 000001890 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Combo Cleaner.lnk
2021-06-26 17:11 - 2021-06-26 17:11 - 000001884 _____ C:\Users\Public\Desktop\Combo Cleaner.lnk
2021-06-26 17:11 - 2021-06-26 17:11 - 000001884 _____ C:\ProgramData\Desktop\Combo Cleaner.lnk
2021-06-26 17:09 - 2021-06-26 17:13 - 000000000 ____D C:\Program Files (x86)\Combo Cleaner
2021-06-26 17:06 - 2021-06-26 17:07 - 002732604 _____ C:\Users\Invitado\Desktop\Autoruns.zip
2021-06-26 16:59 - 2021-06-26 17:00 - 003590288 _____ (RCS LT) C:\Users\Invitado\Desktop\CCSetup.exe
2021-06-24 16:24 - 2021-06-24 16:24 - 000002266 _____ C:\Users\Invitado\Desktop\Malwarebytes.txt
2021-06-24 15:47 - 2021-06-24 15:47 - 000248992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2021-06-24 15:47 - 2021-06-24 15:47 - 000001948 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-06-24 15:47 - 2021-06-24 15:47 - 000001948 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2021-06-24 15:47 - 2021-06-24 15:47 - 000000000 ____D C:\Users\Invitado\AppData\Local\mbam
2021-06-24 15:23 - 2021-06-24 15:24 - 008534696 _____ (Malwarebytes) C:\Users\Invitado\Desktop\adwcleaner_8.2.exe
2021-06-24 15:23 - 2021-06-24 15:23 - 002094168 _____ (Malwarebytes) C:\Users\Invitado\Desktop\MBSetup.exe
2021-06-24 15:22 - 2021-06-24 15:22 - 002300416 _____ (Farbar) C:\Users\Invitado\Desktop\FRST64.exe
2021-06-24 15:21 - 2021-06-24 15:21 - 001790024 _____ (Malwarebytes) C:\Users\Invitado\Desktop\JRT.exe
2021-06-24 15:17 - 2021-06-25 18:52 - 000000000 ____D C:\Users\Invitado\AppData\Local\CrashDumps
2021-06-24 15:13 - 2021-06-24 15:13 - 000000000 ____H C:\Users\Invitado\Documents\Default.rdp
2021-06-24 15:08 - 2021-06-24 15:08 - 000002317 _____ C:\Users\Invitado\Desktop\Google Chrome.lnk
2021-06-24 15:07 - 2021-06-24 15:07 - 000000000 ____D C:\Users\Invitado\AppData\Roaming\NVIDIA
2021-06-24 15:07 - 2021-06-24 15:07 - 000000000 ____D C:\Users\Invitado\AppData\Local\cache
2021-06-24 12:00 - 2021-06-24 12:00 - 000000000 ____D C:\Users\Usuario\Documents\REAPER Media
2021-06-24 11:58 - 2021-06-24 11:59 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\REAPER
2021-06-24 11:58 - 2021-06-24 11:58 - 000000828 _____ C:\Users\Public\Desktop\REAPER (x64).lnk
2021-06-24 11:58 - 2021-06-24 11:58 - 000000828 _____ C:\ProgramData\Desktop\REAPER (x64).lnk
2021-06-24 11:58 - 2021-06-24 11:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REAPER (x64)
2021-06-24 11:58 - 2021-06-24 11:58 - 000000000 ____D C:\Program Files\REAPER (x64)
2021-06-24 11:52 - 2021-06-26 18:14 - 000001872 _____ C:\Users\Usuario\Desktop\JRT.txt
2021-06-24 00:39 - 2019-12-03 07:21 - 000215044 _____ C:\Users\Usuario\Desktop\DL Clubbed.wav
2021-06-24 00:39 - 2019-12-03 07:20 - 000005516 _____ C:\Users\Usuario\Desktop\FX_Scratch.wav
2021-06-24 00:34 - 2019-12-03 07:21 - 000187104 _____ C:\Users\Usuario\Desktop\FX Spin Down.wav
2021-06-22 19:37 - 2021-06-22 19:37 - 000000000 ____D C:\Users\Usuario\Desktop\NUMEROS
2021-06-21 14:11 - 2021-06-21 14:11 - 008534696 _____ (Malwarebytes) C:\Users\Usuario\Desktop\adwcleaner_8.2.exe
2021-06-20 19:49 - 2021-06-20 19:49 - 000004299 _____ C:\Users\Usuario\Desktop\Nuevo documento de texto.txt
2021-06-16 19:32 - 2021-06-16 19:32 - 000010174 _____ C:\Users\Usuario\Desktop\MTB.txt
2021-06-12 04:34 - 2021-06-12 04:34 - 000892416 _____ (Farbar) C:\Users\Usuario\Desktop\MiniToolBox.exe
2021-06-09 13:55 - 2021-06-09 13:55 - 000000000 _____ C:\Users\Usuario\Downloads\devmgmt.msc.txt
2021-06-09 12:45 - 2021-06-09 12:45 - 000014801 _____ C:\Users\Usuario\Ajustar volumen del sistema - Acceso directo.lnk
2021-06-08 17:20 - 2021-06-08 17:20 - 000000868 _____ C:\Users\Usuario\Desktop\SystemLooka.txt
2021-06-08 17:20 - 2021-06-08 17:20 - 000000866 _____ C:\Users\Usuario\Desktop\SystemLook.txt
2021-06-08 17:17 - 2021-06-08 17:17 - 000096256 _____ C:\Users\Usuario\Desktop\SystemLook_x64.exe
==================== Un mes (modificado) ==================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2021-06-28 16:31 - 2020-05-15 20:36 - 000000000 ____D C:\FRST
2021-06-28 14:50 - 2009-07-14 01:45 - 000029504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-06-28 14:50 - 2009-07-14 01:45 - 000029504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-06-28 14:48 - 2019-08-30 14:53 - 000003994 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{E059EABC-E287-4913-8534-575568C6E4FE}
2021-06-28 14:44 - 2020-10-01 10:48 - 000000000 ____D C:\Program Files\CCleaner
2021-06-28 14:41 - 2009-07-14 02:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-06-27 17:30 - 2020-10-01 10:48 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-06-26 18:24 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\inf
2021-06-26 17:11 - 2014-03-30 20:10 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-06-25 01:05 - 2021-04-22 12:55 - 000002915 _____ C:\Users\Usuario\Desktop\CALENDARIO DIARIO.txt
2021-06-24 19:37 - 2009-07-14 00:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2021-06-24 19:33 - 2021-03-29 15:05 - 000000000 ____D C:\Users\Usuario\Desktop\Nueva carpeta
2021-06-24 19:32 - 2021-03-23 20:50 - 000000000 ____D C:\Users\Usuario\Documents\FL STUDIO
2021-06-24 17:36 - 2015-09-17 11:02 - 000000000 ____D C:\Users\Usuario
2021-06-24 15:47 - 2020-05-23 08:41 - 000001960 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-06-24 15:45 - 2017-10-23 04:33 - 000199128 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2021-06-24 15:08 - 2021-05-06 08:08 - 000002316 _____ C:\Users\Invitado\Desktop\Brave.lnk
2021-06-24 00:15 - 2019-10-18 21:17 - 000000000 ____D C:\Users\Usuario\Documents\Image-Line
2021-06-21 17:26 - 2020-06-05 02:34 - 000002222 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-06-20 19:34 - 2021-03-03 23:21 - 000000000 ____D C:\Users\Usuario\AppData\Local\CrashDumps
2021-06-17 14:23 - 2010-11-21 04:09 - 000747396 _____ C:\Windows\system32\perfh00A.dat
2021-06-17 14:23 - 2010-11-21 04:09 - 000158868 _____ C:\Windows\system32\perfc00A.dat
2021-06-17 14:23 - 2009-07-14 02:13 - 001676890 _____ C:\Windows\system32\PerfStringBackup.INI
2021-06-16 21:24 - 2017-04-15 14:37 - 002901504 ___SH C:\Users\Usuario\Downloads\Thumbs.db
2021-06-12 04:43 - 2020-09-21 00:13 - 000002285 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2021-06-10 18:27 - 2015-09-17 12:03 - 000002059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-06-06 12:36 - 2009-07-14 02:08 - 000032636 _____ C:\Windows\Tasks\SCHEDLGU.TXT
==================== Archivos en la raíz de algunos directorios ========
2015-09-28 19:06 - 2015-09-28 19:06 - 000000017 _____ () C:\Users\Usuario\AppData\Local\resmon.resmoncfg
2021-05-05 11:36 - 2021-05-05 11:36 - 000000000 _____ () C:\Users\Usuario\AppData\Local\{903D7123-69F9-49E8-949B-B916D040B091}
==================== SigCheck ============================
(No existe una corrección automática para los archivos que no pasan la verificación.)
LastRegBack: 2021-06-21 00:42
==================== Final de FRST.txt ========================
> CitaGracias por tu respuesta . Si es posible, me gustaría des-habilitar todas las actualizaciones automáticas… Aconsejas tener el Windows Update en actualización automática? o no es necesario?.. Hace un tiempo me marco un error, y no pude solucionarlo…
Hola nuevamente,
Faltaría el reporte de Addition.txt. Pegaste dos veces FRST.txt (uno con formato y otro sin el).
Por otro lado tengo una duda con el reporte que traes: ¿Tu PC es de marca(HP, Acer, Dell) o armada? Si es armada comenta si sabes si tienes algún componente de AMD.
En cuanto a las actualizaciones no se si recuerdes o puedas revisar que error te dio. Por otra parte te comento que tu SO ya sin soporte, por lo que ya no estarías recibiendo actualizaciones de igual forma. Convendría tener todas las que puedas puesto que ya no saldrán más.
Es conveniente tener actualizaciones activadas ya que estas pueden tapar agujeros de seguridad, corregir errores y mejorar el funcionamiento. Desgraciadamente hay algunas que salen mal y pueden causar algún estragos ir sin ellas puede ser también peligroso. Si acaso recomendaría crear puntos de restauración regularmente o antes de cada una.
Cita
==================== Cuentas: =============================
Administrador (S-1-5-21-3306104381-707099750-1311680531-500 - Administrator - Disabled) HomeGroupUser$ (S-1-5-21-3306104381-707099750-1311680531-1003 - Limited - Enabled) Invitado (S-1-5-21-3306104381-707099750-1311680531-501 - Limited - Enabled) => C:\Users\Invitado Usuario (S-1-5-21-3306104381-707099750-1311680531-1000 - Administrator - Enabled) => C:\Users\Usuario
==================== Centro de Seguridad ========================
(Si una entrada es incluida en el fixlist, será eliminada.)
AV: Kaspersky Security Cloud (Disabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Kaspersky Security Cloud (Disabled - Up to date) {F41710F6-65D1-4F66-2B68-CCCF63D4A09E} FW: Kaspersky Security Cloud (Disabled) {774D7037-0984-41B0-3A87-5E88E680AD58}
==================== Programas instalados ======================
(Solo los programas de adware con indicador “Oculto”, pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)
Adobe Acrobat Reader DC - Español (HKLM-x32.…{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 21.005.20048 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32.…\Adobe AIR) (Version: 31.0.0.96 - Adobe Systems Incorporated) Adobe Flash Player 32 ActiveX (HKLM-x32.…\Adobe Flash Player ActiveX) (Version: 32.0.0.223 - Adobe) Adobe Flash Player 32 NPAPI (HKLM-x32.…\Adobe Flash Player NPAPI) (Version: 32.0.0.270 - Adobe) Adobe Shockwave Player 12.3 (HKLM-x32.…\Adobe Shockwave Player) (Version: 12.3.5.205 - Adobe, Inc.) Apple Software Update (HKLM-x32.…{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.) ASIO4ALL (HKLM-x32.…\ASIO4ALL) (Version: 2.14 - Michael Tippach) Atheros Client Installation Program (HKLM-x32.…{D3694B69-6F8C-42D3-8A0A-EB2AB528C02C}) (Version: 7.0 - Atheros) Avidemux VC++ 64bits (HKU\S-1-5-21-3306104381-707099750-1311680531-1000.…{46019e5a-8ae6-4adc-9116-acb13dae325b}) (Version: 2.7.6 - Mean) BandLab Assistant 6.4.1 (HKU\S-1-5-21-3306104381-707099750-1311680531-1000.…\9b08bea4-021c-5f9d-a74e-ac0ceb51fb28) (Version: 6.4.1 - BandLab Technologies) Brave (HKLM-x32.…\BraveSoftware Brave-Browser) (Version: 91.1.25.72 - Los creadores de Brave) CCleaner (HKLM.…\CCleaner) (Version: 5.81 - Piriform) Combo Cleaner (HKLM.…{8C9F8853-52F7-46F3-BC78-98001D3FF40C}) (Version: 1.0.44.0 - RCS LT) Hidden Combo Cleaner (HKLM-x32.…\InstallShield_{8C9F8853-52F7-46F3-BC78-98001D3FF40C}) (Version: 1.0.44.0 - RCS LT) Compatibilidad con Aplicaciones de Apple (HKLM-x32.…{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.) D3DX10 (HKLM-x32.…{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden Eines de correcció del Microsoft Office 2013: català (HKLM-x32.…{90150000-001F-0403-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Ferramentas de verificación de Microsoft Office 2013 - Galego (HKLM-x32.…{90150000-001F-0456-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden FL Studio 20 (HKLM-x32.…\FL Studio 20) (Version: - Image-Line) FL Studio ASIO (HKLM-x32.…\FL Studio ASIO) (Version: - Image-Line) Galería de fotos (HKLM-x32.…{198CEF22-A27F-4DC7-9B66-2C22A4B1CA09}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Google Chrome (HKLM-x32.…\Google Chrome) (Version: 91.0.4472.114 - Google LLC) Google Update Helper (HKLM-x32.…{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.99.0 - Google Inc.) Hidden ImgBurn (HKLM-x32.…\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!) Java 8 Update 261 (HKLM-x32.…{26A24AE4-039D-4CA4-87B4-2F32180261F0}) (Version: 8.0.2610.12 - Oracle Corporation) Junk Mail filter update (HKLM-x32.…{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Kaspersky Password Manager (HKLM-x32.…{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab) Hidden Kaspersky Password Manager (HKLM-x32.…\InstallWIX_{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab) Kaspersky Security Cloud (HKLM-x32.…{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky) Hidden Kaspersky Security Cloud (HKLM-x32.…\InstallWIX_{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky) Kaspersky VPN (HKLM-x32.…{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 - Kaspersky) Hidden Kaspersky VPN (HKLM-x32.…\InstallWIX_{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 - Kaspersky) LG SP USB Driver (HKLM-x32.…{E2AE8456-CCFE-46C0-8629-71CC507660FC}) (Version: 1.0 - LG Electronics) LG USB WML Modem Driver (HKLM-x32.…{FBA0CA60-8BF2-4381-B819-74F020E165A9}) (Version: 1.0 - LG Electronics) Malwarebytes version 4.4.0.117 (HKLM.…{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.0.117 - Malwarebytes) Microsoft .NET Framework 4.8 (español) (HKLM.…{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.8.03761 - Microsoft Corporation) Microsoft .NET Framework 4.8 (HKLM.…{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32.…{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM-x32.…{59E4543A-D49D-4489-B445-473D763C79AF}) (Version: 2.0.672.0 - Microsoft Corporation) Microsoft Office Professional Plus 2013 (HKLM-x32.…\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Silverlight (HKLM.…{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32.…{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM.…{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32.…{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM.…{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32.…{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32.…{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32.…{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32.…{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM.…\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Movie Maker (HKLM-x32.…{9C82436F-F19C-42A4-B476-F87A28A95BF9}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32.…{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden MSXML 4.0 SP2 (KB954430) (HKLM-x32.…{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32.…{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) NVIDIA Controlador de gráficos 309.08 (HKLM.…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 309.08 - NVIDIA Corporation) NVIDIA Drivers (HKLM.…\NVIDIA Drivers) (Version: 1.10.62.40 - NVIDIA Corporation) NVIDIA GeForce Experience 2.7.4.10 (HKLM.…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}Display.GFExperience) (Version: 2.7.4.10 - NVIDIA Corporation) NVIDIA Performance (HKLM-x32.…\InstallShield{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}) (Version: 6.5 - NVIDIA Corporation) Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM-x32.…{90150000-001F-040C-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x64) - ESN (HKLM.…\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - ESN) (Version: 10.0.50903 - Microsoft Corporation) QuickTime 7 (HKLM-x32.…{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.) Realtek High Definition Audio Driver (HKLM-x32.…{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7443 - Realtek Semiconductor Corp.) REAPER (x64) (HKLM.…\REAPER) (Version: - ) Revisores de Texto do Microsoft Office 2013 – Português do Brasil (HKLM-x32.…{90150000-001F-0416-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Service Pack 1 for Microsoft Office 2013 (KB2817430) 32-Bit Edition (HKLM-x32.…{90150000-0011-0000-0000-0000000FF1CE}Office15.PROPLUS{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version: - Microsoft) StarBurn Version 15.7 (Build 0x20170407) (HKLM-x32.…\StarBurn_is1) (Version: 15.7 - StarBurn Software) swMSM (HKLM-x32.…{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden sXe Injected (HKLM-x32.…\sXe Injected) (Version: 15.8.0.0 - Alejandro Cortés) sXe Injected 15.9 (HKLM-x32.…\sXe Injected 15.9) (Version: 15.9 - By SantaCS) Unity Web Player (HKU\S-1-5-21-3306104381-707099750-1311680531-1000.…\UnityWebPlayer) (Version: 5.3.0f4 - Unity Technologies ApS) Update for Skype for Business 2015 (KB3039776) 32-Bit Edition (HKLM-x32.…{90150000-012B-0C0A-0000-0000000FF1CE}Office15.PROPLUS{D8C21FB1-47FD-4CCA-8579-E8EB7FA380B2}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3127934) 32-Bit Edition (HKLM-x32.…{90150000-0011-0000-0000-0000000FF1CE}Office15.PROPLUS{561D6567-A41D-407F-957C-39EEA3AB2D73}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3127934) 32-Bit Edition (HKLM-x32.…{90150000-002A-0000-1000-0000000FF1CE}Office15.PROPLUS{561D6567-A41D-407F-957C-39EEA3AB2D73}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3127934) 32-Bit Edition (HKLM-x32.…{90150000-012B-0C0A-0000-0000000FF1CE}Office15.PROPLUS{561D6567-A41D-407F-957C-39EEA3AB2D73}) (Version: - Microsoft) Windows Live Essentials (HKLM-x32.…\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) WinRAR 5.70 (64-bit) (HKLM.…\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
==================== Personalizado CLSID (Lista blanca): ==============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
ContextMenuHandlers1: [Kaspersky Anti-Virus 21.3] → {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\shellex.dll [2021-04-18] (Kaspersky Lab JSC → AO Kaspersky Lab) ContextMenuHandlers1: [WinRAR] → {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH → Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] → {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH → Alexander Roshal) ContextMenuHandlers2: [Kaspersky Anti-Virus 21.3] → {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\shellex.dll [2021-04-18] (Kaspersky Lab JSC → AO Kaspersky Lab) ContextMenuHandlers4: [Kaspersky Anti-Virus 21.3] → {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\shellex.dll [2021-04-18] (Kaspersky Lab JSC → AO Kaspersky Lab) ContextMenuHandlers5: [igfxcui] → {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2014-01-29] (Intel Corporation) [Archivo no firmado] ContextMenuHandlers5: [NvCplDesktopContext] → {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2015-01-30] (NVIDIA Corporation → NVIDIA Corporation) ContextMenuHandlers6: [Kaspersky Anti-Virus 21.3] → {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\shellex.dll [2021-04-18] (Kaspersky Lab JSC → AO Kaspersky Lab) ContextMenuHandlers6: [WinRAR] → {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH → Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] → {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH → Alexander Roshal)
==================== Codecs (Lista blanca) ====================
==================== Accesos directos & WMI ========================
(Las entradas pueden ser listadas para ser restauradas o eliminadas.)
ShortcutWithArgument: C:\Users\Usuario\Documents\FL STUDIO\Curso _ CV001 _ edX.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) → --profile-directory=Default --app-id=mjhafcmhejfbcbliolmhgfpndfapnchj ShortcutWithArgument: C:\Users\Usuario\Documents\FL STUDIO\Resumen Teoría General del Derecho - Cátedra Alegre-Mandelbaum B. _ Teoria General y Filosofia del Derecho _ Abogacia UBA _ _ Filadd.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) → --profile-directory=Default --app-id=lehgepplpcldlncidpkaeolnfoiddfmh ShortcutWithArgument: C:\Users\Usuario\Desktop\Nueva carpeta\Gmail3\guardar\derecho\DELIVERY\Libro de texto para AV003 _ Campus Virtual - UNC.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) → --profile-directory=Default --app-id=jfogmdjbleejokhpojdfllkongljdnij ShortcutWithArgument: C:\Users\Usuario\Desktop\Nueva carpeta\Gmail3\guardar\derecho\DELIVERY\Programa XSeries en Grabación y producción musical _ edX.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) → --profile-directory=Default --app-id=ebgglficdldljgckjpchkphbfggmkalm ShortcutWithArgument: C:\Users\Usuario\Desktop\Nueva carpeta\Gmail3\guardar\derecho\DELIVERY\Python_ aprender a programar _ edX.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) → --profile-directory=Default --app-id=dacdheabbppkjoncplfpjhdgfjglkghd ShortcutWithArgument: C:\Users\Usuario\Desktop\Nueva carpeta\Gmail3\guardar\derecho\DELIVERY\Universidad Nacional de Córdoba _ edX.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) → --profile-directory=Default --app-id=emjjodockgjhdoljojklcngkgleekijg ShortcutWithArgument: C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Curso _ CV001 _ edX.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) → --profile-directory=Default --app-id=mjhafcmhejfbcbliolmhgfpndfapnchj ShortcutWithArgument: C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Libro de texto para AV003 _ Campus Virtual - UNC.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) → --profile-directory=Default --app-id=jfogmdjbleejokhpojdfllkongljdnij ShortcutWithArgument: C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Orden de Extracción Punto Efectivo _ Banco de la Provincia de Buenos Aires.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) → --profile-directory=Default --app-id=kfmfkdelpplgfjnkkeinekhpilnfkoai ShortcutWithArgument: C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Plan de Estudio de la Carrera de Abogacía - 1985 _ Facultad de Derecho - Universidad de Buenos Aires.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) → --profile-directory=Default --app-id=hlhhgcdcdmkcmffomhnhdafdlngefahh ShortcutWithArgument: C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Programa XSeries en Grabación y producción musical _ edX.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) → --profile-directory=Default --app-id=ebgglficdldljgckjpchkphbfggmkalm ShortcutWithArgument: C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Python_ aprender a programar _ edX.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) → --profile-directory=Default --app-id=dacdheabbppkjoncplfpjhdgfjglkghd ShortcutWithArgument: C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Resumen Teoría General del Derecho - Cátedra Alegre-Mandelbaum B. _ Teoria General y Filosofia del Derecho _ Abogacia UBA _ _ Filadd.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) → --profile-directory=Default --app-id=lehgepplpcldlncidpkaeolnfoiddfmh ShortcutWithArgument: C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Universidad Nacional de Córdoba _ edX.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) → --profile-directory=Default --app-id=emjjodockgjhdoljojklcngkgleekijg ShortcutWithArgument: C:\Users\Usuario\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk → C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) → --profile-directory=“Profile 1”
==================== Módulos cargados (Lista blanca) =============
2014-01-29 18:02 - 2014-01-29 18:02 - 000064000 _____ (Intel Corporation) [Archivo no firmado] C:\Windows\system32\igfxsrvc.dll 2015-09-19 11:16 - 2015-11-12 15:37 - 001579288 _____ (NVIDIA Corporation PE Sign v2014 → NVIDIA Corporation) [Archivo no firmado] C:\Program Files\NVIDIA Corporation\NvStreamSrv\rxinput.dll
==================== Alternate Data Streams (Lista blanca) ========
==================== Modo Seguro (Lista blanca) ==================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El “AlternateShell” será restaurado.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => “”=“Service” HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => “”=“Service”
==================== Asociación (Lista blanca) =================
==================== Internet Explorer (Versión 11) (Lista blanca) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com HKU\S-1-5-21-3306104381-707099750-1311680531-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs SearchScopes: HKLM → DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 → DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3306104381-707099750-1311680531-1000 → {67E03EC4-A202-481F-B8B2-2B643DA348CD} URL = hxxps://ar.search.yahoo.com/search?p={searchTerms}&intl=ar&fr=yset_ie_syc_oracle&type=orcl_default&partnerexternal-oracle=external-oracle BHO: Windows Live ID Sign-in Helper → {9030D464-4C02-4ABF-8ECC-5164760863C6} → C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corporation → Microsoft Corp.) BHO: Office Document Cache Handler → {B4F3A835-0E21-4959-BA22-42B3008E02FF} → C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-21] (Microsoft Corporation → Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper → {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} → C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2016-10-11] (Microsoft Corporation → Microsoft Corporation) BHO-x32: Java™ Plug-In SSV Helper → {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} → C:\Program Files (x86)\Java\jre1.8.0_261\bin\ssv.dll [2020-07-15] (Oracle America, Inc. → Oracle Corporation) BHO-x32: Aplicación auxiliar de inicio de sesión en la cuenta Microsoft → {9030D464-4C02-4ABF-8ECC-5164760863C6} → C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corporation → Microsoft Corp.) BHO-x32: Office Document Cache Handler → {B4F3A835-0E21-4959-BA22-42B3008E02FF} → C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation → Microsoft Corporation) BHO-x32: Microsoft SkyDrive Pro Browser Helper → {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} → C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2016-10-11] (Microsoft Corporation → Microsoft Corporation) BHO-x32: Java™ Plug-In 2 SSV Helper → {DBC80044-A445-435b-BC74-9C25C1C588A9} → C:\Program Files (x86)\Java\jre1.8.0_261\bin\jp2ssv.dll [2020-07-15] (Oracle America, Inc. → Oracle Corporation) DPF: HKLM-x32 {74DBCB52-F298-4110-951D-AD2FF67BC8AB} hxxp://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab StartMenuInternet: IEXPLORE.EXE - iexplore.exe
(Si una entrada es incluida en el fixlist, será eliminada del registro.)
IE trusted site: HKU\S-1-5-21-3306104381-707099750-1311680531-1000.…\amazon.com → hxxps://amazon.com
==================== Hosts contenido: =========================
(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)
2009-07-13 23:34 - 2020-09-05 16:04 - 000000035 _____ C:\Windows\system32\drivers\etc\hosts
==================== Otras Áreas ===========================
(Actualmente no existe una corrección automática para esta sección.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\Path → C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0;C:\Program Files (x86)\QuickTime\QTSystem;C:\Program Files (x86)\Windows Live\Shared HKU\S-1-5-21-3306104381-707099750-1311680531-1000\Control Panel\Desktop\Wallpaper → C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg HKU\S-1-5-21-3306104381-707099750-1311680531-501\Control Panel\Desktop\Wallpaper → C:\Users\Invitado\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 8.8.8.8 - 208.67.222.222 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Firewall de Windows está deshabilitado.
==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==
(Si una entrada es incluida en el fixlist, será eliminada.)
MSCONFIG\Services: AdobeARMservice => 2 MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3 MSCONFIG\Services: defragsvc => 3 MSCONFIG\Services: gupdate => 2 MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: IEEtwCollectorService => 3 MSCONFIG\Services: MBAMService => 3 MSCONFIG\Services: RemoteRegistry => 3 MSCONFIG\Services: TermService => 3 MSCONFIG\Services: WinDefend => 3 MSCONFIG\Services: WinRM => 3 MSCONFIG\startupreg: NvBackend => “C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe” MSCONFIG\startupreg: QuickTime Task => “C:\Program Files (x86)\QuickTime\QTTask.exe” -atboottime MSCONFIG\startupreg: Spotify Web Helper => “C:\Users\Usuario\AppData\Roaming\Spotify\SpotifyWebHelper.exe” MSCONFIG\startupreg: SunJavaUpdateSched => “C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe”
==================== Reglas de firewall (Lista blanca) ================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
FirewallRules: [TCP Query User{EEB5A849-EC9A-4CE9-86B2-96BCBE76B49D}C:\users\usuario\appdata\local\programs\bandlab-assistant\bandlab assistant.exe] => (Allow) C:\users\usuario\appdata\local\programs\bandlab-assistant\bandlab assistant.exe (BandLab Singapore Pte Ltd. → BandLab Technologies) FirewallRules: [UDP Query User{3336C1E9-64DE-41A2-A0F3-4D31D4206D98}C:\users\usuario\appdata\local\programs\bandlab-assistant\bandlab assistant.exe] => (Allow) C:\users\usuario\appdata\local\programs\bandlab-assistant\bandlab assistant.exe (BandLab Singapore Pte Ltd. → BandLab Technologies) FirewallRules: [{488D7122-95E6-497D-8743-6C3BDF3DCB38}] => (Allow) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. → Brave Software, Inc.) FirewallRules: [{1CBA94B7-78F7-4274-A5E4-2FDD1BA58361}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC → Google LLC)
==================== Puntos de Restauración =========================
14-06-2021 03:30:06 JRT Pre-Junkware Removal 21-06-2021 00:12:21 JRT Pre-Junkware Removal 21-06-2021 14:27:27 JRT Pre-Junkware Removal 24-06-2021 11:49:27 JRT Pre-Junkware Removal 24-06-2021 15:10:21 Removed DaVinci Resolve Keyboards 24-06-2021 15:11:14 Removed DaVinci Resolve Panels 24-06-2021 15:12:20 Removed Blackmagic RAW Common Components 24-06-2021 15:32:55 JRT Pre-Junkware Removal 24-06-2021 16:26:09 JRT Pre-Junkware Removal 24-06-2021 18:10:06 JRT Pre-Junkware Removal 26-06-2021 17:04:23 Removed Fairlight Studio Utility 26-06-2021 17:09:00 Installed Combo Cleaner 26-06-2021 18:10:54 JRT Pre-Junkware Removal
==================== Dispositivos defectuosos en el Administrador de dispositivos ============
Name: Adaptador de tunelización Teredo de Microsoft Description: Adaptador de tunelización Teredo de Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click “Update Driver” to update the drivers for this device. On the “General Properties” tab of the device, click “Troubleshoot” to start the troubleshooting wizard.
==================== Errores del registro de eventos: ========================
Error: (06/25/2021 02:13:58 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: El programa nvcplUI.exe, versión 4.8.760.0, dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible acerca del problema, compruebe el historial de problemas en el panel de control Centro de actividades.
Identificador de proceso: 10a4
Hora de inicio: 01d76980d026b130
Hora de finalización: 35
Ruta de acceso de la aplicación: C:\Program Files\NVIDIA Corporation\Control Panel Client\nvcplUI.exe
Identificador de informe: 222d8fd1-d574-11eb-9e1b-1c6f65fdca59
Error: (06/25/2021 02:13:21 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: Error al generar el contexto de activación para “C:\Program Files (x86)\NVIDIA Corporation\nTune\MFC80.DLL”. No se encontró el ensamblado dependiente Microsoft.VC80.MFCLOC,processorArchitecture=“amd64”,publicKeyToken=“1fc8b3b9a1e18e3b”,type=“win32”,version=“8.0.50608.0”. Use sxstrace.exe para obtener un diagnóstico detallado.
Error: (06/25/2021 02:13:21 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: Error al generar el contexto de activación para “C:\Program Files (x86)\NVIDIA Corporation\nTune\MFC80.DLL”. No se encontró el ensamblado dependiente Microsoft.VC80.MFCLOC,processorArchitecture=“amd64”,publicKeyToken=“1fc8b3b9a1e18e3b”,type=“win32”,version=“8.0.50608.0”. Use sxstrace.exe para obtener un diagnóstico detallado.
Error: (06/21/2021 02:47:46 PM) (Source: Windows Search Service) (EventID: 7010) (User: ) Description: No se puede inicializar el índice.
Detalles: El catálogo del índice de contenido está dañado. (HRESULT : 0xc0041801) (0xc0041801)
Error: (06/21/2021 02:47:46 PM) (Source: Windows Search Service) (EventID: 3058) (User: ) Description: No se puede inicializar la aplicación.
Contexto: aplicación Windows
Detalles: El catálogo del índice de contenido está dañado. (HRESULT : 0xc0041801) (0xc0041801)
Error: (06/21/2021 02:47:46 PM) (Source: Windows Search Service) (EventID: 3028) (User: ) Description: No se puede inicializar el objeto Recopilador.
Contexto: aplicación Windows, catálogo SystemIndex
Detalles: El catálogo del índice de contenido está dañado. (HRESULT : 0xc0041801) (0xc0041801)
Error: (06/21/2021 02:47:46 PM) (Source: Windows Search Service) (EventID: 3029) (User: ) Description: No se puede inicializar el complemento <Search.TripoliIndexer>.
Contexto: aplicación Windows, catálogo SystemIndex
Detalles: No se ha encontrado el elemento. (HRESULT : 0x80070490) (0x80070490)
Error: (06/21/2021 02:47:44 PM) (Source: Windows Search Service) (EventID: 3029) (User: ) Description: No se puede inicializar el complemento <Search.JetPropStore>.
Contexto: aplicación Windows, catálogo SystemIndex
Detalles: El catálogo del índice de contenido está dañado. (HRESULT : 0xc0041801) (0xc0041801)
Error: (06/28/2021 02:46:31 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY) Description: Se recibió la siguiente alerta irrecuperable: 40.
Error: (06/28/2021 02:46:31 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY) Description: Se recibió la siguiente alerta irrecuperable: 70.
Error: (06/28/2021 02:46:30 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY) Description: Se recibió la siguiente alerta irrecuperable: 80.
Error: (06/28/2021 02:46:30 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY) Description: Se recibió la siguiente alerta irrecuperable: 70.
Error: (06/28/2021 02:42:03 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY) Description: Se recibió la siguiente alerta irrecuperable: 40.
Error: (06/28/2021 02:42:03 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY) Description: Se recibió la siguiente alerta irrecuperable: 70.
Error: (06/28/2021 12:18:44 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY) Description: Se recibió la siguiente alerta irrecuperable: 70.
Error: (06/28/2021 12:18:44 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY) Description: Se generó la siguiente alerta irrecuperable: 70. El estado del error interno es 11.
Date: 2016-02-08 15:50:14.206 Description: El examen de Windows Defender se detuvo antes de completarse. Id. de examen:{6B372608-57DD-4841-B910-E8ED0F7A6670} Tipo de examen:AntiSpyware Parámetros de examen:Examen rápido Usuario:Usuario-PC\Usuario ==================== Información de la memoria ===========================
BIOS: Award Software International, Inc. F1 12/24/2010 Placa base: Gigabyte Technology Co., Ltd. M68MT-S2P Procesador: AMD Athlon™ II X2 250 Processor Porcentaje de memoria en uso: 38% RAM física total: 7934.46 MB RAM física disponible: 4855.01 MB Virtual total: 15867.07 MB Virtual disponible: 12764.78 MB
==================== Unidades ================================
Drive c: () (Fixed) (Total:465.76 GB) (Free:357.37 GB) NTFS ==>[unidad con componentes de arranque (obtenido de BCD)]
==================== MBR & Tabla de particiones ====================
========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 6B64BDA2) Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS)
==================== Final de Addition.txt =======================
Cita
Mi pc es AMD ATHLON Y hp es la impresora.
El error que marca Windows Update es el siguiente:
Cita
2019 (12) Paquete acumulativo de actualizaciones de calidad mensual de seguridad para Windows 7 para sistemas basados en x64 (KB4530734)
Fecha de instalación: 17/09/2020 04:36 p.m.
Estado de la instalación: Errores
Detalles del error: Código 80073701
Tipo de actualización: Importante
Se ha detectado un problema de seguridad en un producto de software de Microsoft que podría affectar a su equipo. Puede contribuir a mejorar la protección del sistema con esta actualización de Microsoft. Para obtener una lista completa de los problemas incluidos en esta actualización, consulte el artículo de Microsoft Knowledge Base asociado. Después de instalar esta actualización, es posible que tenga que reiniciar el sistema.
Más información:
Ayuda y soporte técnico:
Cita
Hola nuevamente,
Muy bien es el reporte que nos faltaba. Aunque se complica un poco leer. Revisa los anteriores posts y pegalo nuevamente. Ya sea usando el cuadruple ` o la etiqueta [code]. Ya tengo parte de la reparación pero me falta poder analizar bien este otro reporte para asegurar que no me dejo nada. Si tienes muchos problemas para pegarlo puedes adjuntarlo en un mensaje.
Saludos
Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 26-06-2021
Ejecutado por Usuario (28-06-2021 16:32:09)
Ejecutado desde C:\Users\Usuario\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2015-09-17 14:02:07)
Modo de Inicio: Normal
==========================================================
==================== Cuentas: =============================
Administrador (S-1-5-21-3306104381-707099750-1311680531-500 - Administrator - Disabled)
HomeGroupUser$ (S-1-5-21-3306104381-707099750-1311680531-1003 - Limited - Enabled)
Invitado (S-1-5-21-3306104381-707099750-1311680531-501 - Limited - Enabled) => C:\Users\Invitado
Usuario (S-1-5-21-3306104381-707099750-1311680531-1000 - Administrator - Enabled) => C:\Users\Usuario
==================== Centro de Seguridad ========================
(Si una entrada es incluida en el fixlist, será eliminada.)
AV: Kaspersky Security Cloud (Disabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Kaspersky Security Cloud (Disabled - Up to date) {F41710F6-65D1-4F66-2B68-CCCF63D4A09E}
FW: Kaspersky Security Cloud (Disabled) {774D7037-0984-41B0-3A87-5E88E680AD58}
==================== Programas instalados ======================
(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 21.005.20048 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 31.0.0.96 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.223 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.270 - Adobe)
Adobe Shockwave Player 12.3 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.3.5.205 - Adobe, Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach)
Atheros Client Installation Program (HKLM-x32\...\{D3694B69-6F8C-42D3-8A0A-EB2AB528C02C}) (Version: 7.0 - Atheros)
Avidemux VC++ 64bits (HKU\S-1-5-21-3306104381-707099750-1311680531-1000\...\{46019e5a-8ae6-4adc-9116-acb13dae325b}) (Version: 2.7.6 - Mean)
BandLab Assistant 6.4.1 (HKU\S-1-5-21-3306104381-707099750-1311680531-1000\...\9b08bea4-021c-5f9d-a74e-ac0ceb51fb28) (Version: 6.4.1 - BandLab Technologies)
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 91.1.25.72 - Los creadores de Brave)
CCleaner (HKLM\...\CCleaner) (Version: 5.81 - Piriform)
Combo Cleaner (HKLM\...\{8C9F8853-52F7-46F3-BC78-98001D3FF40C}) (Version: 1.0.44.0 - RCS LT) Hidden
Combo Cleaner (HKLM-x32\...\InstallShield_{8C9F8853-52F7-46F3-BC78-98001D3FF40C}) (Version: 1.0.44.0 - RCS LT)
Compatibilidad con Aplicaciones de Apple (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Eines de correcció del Microsoft Office 2013: català (HKLM-x32\...\{90150000-001F-0403-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Ferramentas de verificación de Microsoft Office 2013 - Galego (HKLM-x32\...\{90150000-001F-0456-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
FL Studio 20 (HKLM-x32\...\FL Studio 20) (Version: - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line)
Galería de fotos (HKLM-x32\...\{198CEF22-A27F-4DC7-9B66-2C22A4B1CA09}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 91.0.4472.114 - Google LLC)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.99.0 - Google Inc.) Hidden
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Java 8 Update 261 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180261F0}) (Version: 8.0.2610.12 - Oracle Corporation)
Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Kaspersky Password Manager (HKLM-x32\...\{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab) Hidden
Kaspersky Password Manager (HKLM-x32\...\InstallWIX_{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab)
Kaspersky Security Cloud (HKLM-x32\...\{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky) Hidden
Kaspersky Security Cloud (HKLM-x32\...\InstallWIX_{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky)
Kaspersky VPN (HKLM-x32\...\{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 - Kaspersky) Hidden
Kaspersky VPN (HKLM-x32\...\InstallWIX_{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 - Kaspersky)
LG SP USB Driver (HKLM-x32\...\{E2AE8456-CCFE-46C0-8629-71CC507660FC}) (Version: 1.0 - LG Electronics)
LG USB WML Modem Driver (HKLM-x32\...\{FBA0CA60-8BF2-4381-B819-74F020E165A9}) (Version: 1.0 - LG Electronics)
Malwarebytes version 4.4.0.117 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.0.117 - Malwarebytes)
Microsoft .NET Framework 4.8 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{59E4543A-D49D-4489-B445-473D763C79AF}) (Version: 2.0.672.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{9C82436F-F19C-42A4-B476-F87A28A95BF9}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NVIDIA Controlador de gráficos 309.08 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 309.08 - NVIDIA Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10.62.40 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.7.4.10 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.7.4.10 - NVIDIA Corporation)
NVIDIA Performance (HKLM-x32\...\InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}) (Version: 6.5 - NVIDIA Corporation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM-x32\...\{90150000-001F-040C-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x64) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - ESN) (Version: 10.0.50903 - Microsoft Corporation)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7443 - Realtek Semiconductor Corp.)
REAPER (x64) (HKLM\...\REAPER) (Version: - )
Revisores de Texto do Microsoft Office 2013 – Português do Brasil (HKLM-x32\...\{90150000-001F-0416-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2817430) 32-Bit Edition (HKLM-x32\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version: - Microsoft)
StarBurn Version 15.7 (Build 0x20170407) (HKLM-x32\...\StarBurn_is1) (Version: 15.7 - StarBurn Software)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
sXe Injected (HKLM-x32\...\sXe Injected) (Version: 15.8.0.0 - Alejandro Cortés)
sXe Injected 15.9 (HKLM-x32\...\sXe Injected 15.9) (Version: 15.9 - By SantaCS)
Unity Web Player (HKU\S-1-5-21-3306104381-707099750-1311680531-1000\...\UnityWebPlayer) (Version: 5.3.0f4 - Unity Technologies ApS)
Update for Skype for Business 2015 (KB3039776) 32-Bit Edition (HKLM-x32\...\{90150000-012B-0C0A-0000-0000000FF1CE}_Office15.PROPLUS_{D8C21FB1-47FD-4CCA-8579-E8EB7FA380B2}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3127934) 32-Bit Edition (HKLM-x32\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{561D6567-A41D-407F-957C-39EEA3AB2D73}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3127934) 32-Bit Edition (HKLM-x32\...\{90150000-002A-0000-1000-0000000FF1CE}_Office15.PROPLUS_{561D6567-A41D-407F-957C-39EEA3AB2D73}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3127934) 32-Bit Edition (HKLM-x32\...\{90150000-012B-0C0A-0000-0000000FF1CE}_Office15.PROPLUS_{561D6567-A41D-407F-957C-39EEA3AB2D73}) (Version: - Microsoft)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
==================== Personalizado CLSID (Lista blanca): ==============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
ContextMenuHandlers1: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\shellex.dll [2021-04-18] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\shellex.dll [2021-04-18] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers4: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\shellex.dll [2021-04-18] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2014-01-29] (Intel Corporation) [Archivo no firmado]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2015-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\shellex.dll [2021-04-18] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Lista blanca) ====================
==================== Accesos directos & WMI ========================
(Las entradas pueden ser listadas para ser restauradas o eliminadas.)
ShortcutWithArgument: C:\Users\Usuario\Documents\FL STUDIO\Curso _ CV001 _ edX.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=mjhafcmhejfbcbliolmhgfpndfapnchj
ShortcutWithArgument: C:\Users\Usuario\Documents\FL STUDIO\Resumen Teoría General del Derecho - Cátedra Alegre-Mandelbaum B. _ Teoria General y Filosofia del Derecho _ Abogacia UBA _ _ Filadd.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=lehgepplpcldlncidpkaeolnfoiddfmh
ShortcutWithArgument: C:\Users\Usuario\Desktop\Nueva carpeta\Gmail3\guardar\derecho\DELIVERY\Libro de texto para AV003 _ Campus Virtual - UNC.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=jfogmdjbleejokhpojdfllkongljdnij
ShortcutWithArgument: C:\Users\Usuario\Desktop\Nueva carpeta\Gmail3\guardar\derecho\DELIVERY\Programa XSeries en Grabación y producción musical _ edX.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=ebgglficdldljgckjpchkphbfggmkalm
ShortcutWithArgument: C:\Users\Usuario\Desktop\Nueva carpeta\Gmail3\guardar\derecho\DELIVERY\Python_ aprender a programar _ edX.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=dacdheabbppkjoncplfpjhdgfjglkghd
ShortcutWithArgument: C:\Users\Usuario\Desktop\Nueva carpeta\Gmail3\guardar\derecho\DELIVERY\Universidad Nacional de Córdoba _ edX.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=emjjodockgjhdoljojklcngkgleekijg
ShortcutWithArgument: C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Curso _ CV001 _ edX.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=mjhafcmhejfbcbliolmhgfpndfapnchj
ShortcutWithArgument: C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Libro de texto para AV003 _ Campus Virtual - UNC.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=jfogmdjbleejokhpojdfllkongljdnij
ShortcutWithArgument: C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Orden de Extracción Punto Efectivo _ Banco de la Provincia de Buenos Aires.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kfmfkdelpplgfjnkkeinekhpilnfkoai
ShortcutWithArgument: C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Plan de Estudio de la Carrera de Abogacía - 1985 _ Facultad de Derecho - Universidad de Buenos Aires.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=hlhhgcdcdmkcmffomhnhdafdlngefahh
ShortcutWithArgument: C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Programa XSeries en Grabación y producción musical _ edX.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=ebgglficdldljgckjpchkphbfggmkalm
ShortcutWithArgument: C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Python_ aprender a programar _ edX.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=dacdheabbppkjoncplfpjhdgfjglkghd
ShortcutWithArgument: C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Resumen Teoría General del Derecho - Cátedra Alegre-Mandelbaum B. _ Teoria General y Filosofia del Derecho _ Abogacia UBA _ _ Filadd.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=lehgepplpcldlncidpkaeolnfoiddfmh
ShortcutWithArgument: C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Universidad Nacional de Córdoba _ edX.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=emjjodockgjhdoljojklcngkgleekijg
ShortcutWithArgument: C:\Users\Usuario\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"
==================== Módulos cargados (Lista blanca) =============
2014-01-29 18:02 - 2014-01-29 18:02 - 000064000 _____ (Intel Corporation) [Archivo no firmado] C:\Windows\system32\igfxsrvc.dll
2015-09-19 11:16 - 2015-11-12 15:37 - 001579288 _____ (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [Archivo no firmado] C:\Program Files\NVIDIA Corporation\NvStreamSrv\rxinput.dll
==================== Alternate Data Streams (Lista blanca) ========
==================== Modo Seguro (Lista blanca) ==================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Asociación (Lista blanca) =================
==================== Internet Explorer (Versión 11) (Lista blanca) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKU\S-1-5-21-3306104381-707099750-1311680531-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3306104381-707099750-1311680531-1000 -> {67E03EC4-A202-481F-B8B2-2B643DA348CD} URL = hxxps://ar.search.yahoo.com/search?p={searchTerms}&intl=ar&fr=yset_ie_syc_oracle&type=orcl_default&partnerexternal-oracle=external-oracle
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-21] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2016-10-11] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\ssv.dll [2020-07-15] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Aplicación auxiliar de inicio de sesión en la cuenta Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2016-10-11] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\jp2ssv.dll [2020-07-15] (Oracle America, Inc. -> Oracle Corporation)
DPF: HKLM-x32 {74DBCB52-F298-4110-951D-AD2FF67BC8AB} hxxp://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
(Si una entrada es incluida en el fixlist, será eliminada del registro.)
IE trusted site: HKU\S-1-5-21-3306104381-707099750-1311680531-1000\...\amazon.com -> hxxps://amazon.com
==================== Hosts contenido: =========================
(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)
2009-07-13 23:34 - 2020-09-05 16:04 - 000000035 _____ C:\Windows\system32\drivers\etc\hosts
==================== Otras Áreas ===========================
(Actualmente no existe una corrección automática para esta sección.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\QuickTime\QTSystem\;C:\Program Files (x86)\Windows Live\Shared
HKU\S-1-5-21-3306104381-707099750-1311680531-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-21-3306104381-707099750-1311680531-501\Control Panel\Desktop\\Wallpaper -> C:\Users\Invitado\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 8.8.8.8 - 208.67.222.222
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall de Windows está deshabilitado.
==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==
(Si una entrada es incluida en el fixlist, será eliminada.)
MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: defragsvc => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: IEEtwCollectorService => 3
MSCONFIG\Services: MBAMService => 3
MSCONFIG\Services: RemoteRegistry => 3
MSCONFIG\Services: TermService => 3
MSCONFIG\Services: WinDefend => 3
MSCONFIG\Services: WinRM => 3
MSCONFIG\startupreg: NvBackend => "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Usuario\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
==================== Reglas de firewall (Lista blanca) ================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
FirewallRules: [TCP Query User{EEB5A849-EC9A-4CE9-86B2-96BCBE76B49D}C:\users\usuario\appdata\local\programs\bandlab-assistant\bandlab assistant.exe] => (Allow) C:\users\usuario\appdata\local\programs\bandlab-assistant\bandlab assistant.exe (BandLab Singapore Pte Ltd. -> BandLab Technologies)
FirewallRules: [UDP Query User{3336C1E9-64DE-41A2-A0F3-4D31D4206D98}C:\users\usuario\appdata\local\programs\bandlab-assistant\bandlab assistant.exe] => (Allow) C:\users\usuario\appdata\local\programs\bandlab-assistant\bandlab assistant.exe (BandLab Singapore Pte Ltd. -> BandLab Technologies)
FirewallRules: [{488D7122-95E6-497D-8743-6C3BDF3DCB38}] => (Allow) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [{1CBA94B7-78F7-4274-A5E4-2FDD1BA58361}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Puntos de Restauración =========================
14-06-2021 03:30:06 JRT Pre-Junkware Removal
21-06-2021 00:12:21 JRT Pre-Junkware Removal
21-06-2021 14:27:27 JRT Pre-Junkware Removal
24-06-2021 11:49:27 JRT Pre-Junkware Removal
24-06-2021 15:10:21 Removed DaVinci Resolve Keyboards
24-06-2021 15:11:14 Removed DaVinci Resolve Panels
24-06-2021 15:12:20 Removed Blackmagic RAW Common Components
24-06-2021 15:32:55 JRT Pre-Junkware Removal
24-06-2021 16:26:09 JRT Pre-Junkware Removal
24-06-2021 18:10:06 JRT Pre-Junkware Removal
26-06-2021 17:04:23 Removed Fairlight Studio Utility
26-06-2021 17:09:00 Installed Combo Cleaner
26-06-2021 18:10:54 JRT Pre-Junkware Removal
==================== Dispositivos defectuosos en el Administrador de dispositivos ============
Name: Adaptador de tunelización Teredo de Microsoft
Description: Adaptador de tunelización Teredo de Microsoft
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Errores del registro de eventos: ========================
Errores de aplicación:
==================
Error: (06/25/2021 02:13:58 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: El programa nvcplUI.exe, versión 4.8.760.0, dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible acerca del problema, compruebe el historial de problemas en el panel de control Centro de actividades.
Identificador de proceso: 10a4
Hora de inicio: 01d76980d026b130
Hora de finalización: 35
Ruta de acceso de la aplicación: C:\Program Files\NVIDIA Corporation\Control Panel Client\nvcplUI.exe
Identificador de informe: 222d8fd1-d574-11eb-9e1b-1c6f65fdca59
Error: (06/25/2021 02:13:21 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Error al generar el contexto de activación para "C:\Program Files (x86)\NVIDIA Corporation\nTune\MFC80.DLL".
No se encontró el ensamblado dependiente Microsoft.VC80.MFCLOC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0".
Use sxstrace.exe para obtener un diagnóstico detallado.
Error: (06/25/2021 02:13:21 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Error al generar el contexto de activación para "C:\Program Files (x86)\NVIDIA Corporation\nTune\MFC80.DLL".
No se encontró el ensamblado dependiente Microsoft.VC80.MFCLOC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0".
Use sxstrace.exe para obtener un diagnóstico detallado.
Error: (06/21/2021 02:47:46 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: No se puede inicializar el índice.
Detalles:
El catálogo del índice de contenido está dañado. (HRESULT : 0xc0041801) (0xc0041801)
Error: (06/21/2021 02:47:46 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: No se puede inicializar la aplicación.
Contexto: aplicación Windows
Detalles:
El catálogo del índice de contenido está dañado. (HRESULT : 0xc0041801) (0xc0041801)
Error: (06/21/2021 02:47:46 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: No se puede inicializar el objeto Recopilador.
Contexto: aplicación Windows, catálogo SystemIndex
Detalles:
El catálogo del índice de contenido está dañado. (HRESULT : 0xc0041801) (0xc0041801)
Error: (06/21/2021 02:47:46 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: No se puede inicializar el complemento <Search.TripoliIndexer>.
Contexto: aplicación Windows, catálogo SystemIndex
Detalles:
No se ha encontrado el elemento. (HRESULT : 0x80070490) (0x80070490)
Error: (06/21/2021 02:47:44 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: No se puede inicializar el complemento <Search.JetPropStore>.
Contexto: aplicación Windows, catálogo SystemIndex
Detalles:
El catálogo del índice de contenido está dañado. (HRESULT : 0xc0041801) (0xc0041801)
Errores del sistema:
=============
Error: (06/28/2021 02:46:31 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Se recibió la siguiente alerta irrecuperable: 40.
Error: (06/28/2021 02:46:31 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Se recibió la siguiente alerta irrecuperable: 70.
Error: (06/28/2021 02:46:30 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Se recibió la siguiente alerta irrecuperable: 80.
Error: (06/28/2021 02:46:30 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Se recibió la siguiente alerta irrecuperable: 70.
Error: (06/28/2021 02:42:03 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Se recibió la siguiente alerta irrecuperable: 40.
Error: (06/28/2021 02:42:03 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Se recibió la siguiente alerta irrecuperable: 70.
Error: (06/28/2021 12:18:44 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Se recibió la siguiente alerta irrecuperable: 70.
Error: (06/28/2021 12:18:44 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Se generó la siguiente alerta irrecuperable: 70. El estado del error interno es 11.
Windows Defender:
================
Date: 2016-02-08 15:50:14.206
Description:
El examen de Windows Defender se detuvo antes de completarse.
Id. de examen:{6B372608-57DD-4841-B910-E8ED0F7A6670}
Tipo de examen:AntiSpyware
Parámetros de examen:Examen rápido
Usuario:Usuario-PC\Usuario
==================== Información de la memoria ===========================
BIOS: Award Software International, Inc. F1 12/24/2010
Placa base: Gigabyte Technology Co., Ltd. M68MT-S2P
Procesador: AMD Athlon(tm) II X2 250 Processor
Porcentaje de memoria en uso: 38%
RAM física total: 7934.46 MB
RAM física disponible: 4855.01 MB
Virtual total: 15867.07 MB
Virtual disponible: 12764.78 MB
==================== Unidades ================================
Drive c: () (Fixed) (Total:465.76 GB) (Free:357.37 GB) NTFS ==>[unidad con componentes de arranque (obtenido de BCD)]
==================== MBR & Tabla de particiones ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 6B64BDA2)
Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS)
==================== Final de Addition.txt =======================