reporte Additions.txt
Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 09-09-2020
Ejecutado por CRISEIDA (10-09-2020 18:46:31)
Ejecutado desde C:\Users\CRISEIDA\Desktop
Windows 10 Home Single Language Versión 1909 18363.1082 (X64) (2020-08-08 03:24:41)
Modo de Inicio: Normal
==========================================================
==================== Cuentas: =============================
Administrador (S-1-5-21-2444298320-3582548934-135162116-500 - Administrator - Disabled)
CRISEIDA (S-1-5-21-2444298320-3582548934-135162116-1001 - Administrator - Enabled) => C:\Users\CRISEIDA
DefaultAccount (S-1-5-21-2444298320-3582548934-135162116-503 - Limited - Disabled)
Invitado (S-1-5-21-2444298320-3582548934-135162116-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2444298320-3582548934-135162116-504 - Limited - Disabled)
==================== Centro de Seguridad ========================
(Si una entrada es incluida en el fixlist, será eliminada.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Disabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AS: ESET Security (Disabled - Up to date) {333C65BB-8923-0EAA-C47E-C486E687BEFD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas instalados ======================
(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)
7-Zip 16.04 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1604-000001000000}) (Version: 16.04.00.0 - Igor Pavlov)
Actualización de NVIDIA 35.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 35.0.0.0 - NVIDIA Corporation) Hidden
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 19.021.20049 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.7.0.270 - Adobe Systems Incorporated)
Adobe Photoshop CC 2015.5 (HKLM-x32\...\PHSP_17_0_1) (Version: 17.0.1 - Adobe Systems Incorporated)
Audacity 2.4.2 (HKLM-x32\...\Audacity_is1) (Version: 2.4.2 - Audacity Team)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.52 - Piriform)
Cisco Webex Meetings (HKLM-x32\...\{C138C448-9453-F523-D6F2-95B8F573AC85}) (Version: 40.6.3.8 - Cisco Webex LLC)
Discord (HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\Discord) (Version: 0.0.308 - Discord Inc.)
Eines de correcció del Microsoft Office 2016: català (HKLM\...\{90160000-001F-0403-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Epic Games Launcher (HKLM-x32\...\{90D54587-044D-4B17-AA6D-BB7976F3211C}) (Version: 1.1.279.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epson Customer Research Participation (HKLM\...\{B26449A6-6007-4460-B4FE-C4776115BCEA}) (Version: 1.83.0000 - Seiko Epson Corporation)
Epson Easy Photo Print 2 (HKLM-x32\...\{816185C8-7C13-4650-9AB4-FC2EC9651A77}) (Version: 2.8.0.0 - Seiko Epson Corporation)
Epson Event Manager (HKLM-x32\...\{9F205E94-9E42-4486-A92A-DF3F6CB85444}) (Version: 3.10.0061 - Seiko Epson Corporation)
EPSON L475 Series Printer Uninstall (HKLM\...\EPSON L475 Series) (Version: - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
Epson Software Updater (HKLM-x32\...\{FD036A57-F81D-4865-AAF0-811558EA76AE}) (Version: 4.5.1 - Seiko Epson Corporation)
EpsonNet Print (HKLM\...\{96ED1D58-440C-4345-8FEE-C4781366C67F}) (Version: 3.1.4.0 - SEIKO EPSON Corporation)
ESET Security (HKLM\...\{D8E84711-EDFC-4D4E-B579-95AEB40DAA4D}) (Version: 13.2.18.0 - ESET, spol. s r.o.)
Ferramentas de verificación de Microsoft Office 2016 - Galego (HKLM\...\{90160000-001F-0456-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
FileZilla Client 3.49.1 (HKLM-x32\...\FileZilla Client) (Version: 3.49.1 - Tim Kosse)
Firestorm Launcher versión 1.3 (HKLM-x32\...\{008D5963-9A73-4472-8C16-A5BF04491B9D}_is1) (Version: 1.3 - Firestorm)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 85.0.4183.102 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Java 8 Update 261 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180261F0}) (Version: 8.0.2610.12 - Oracle Corporation)
JDownloader 2 (HKLM-x32\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Keysticks (HKLM-x32\...\{9D35B3D2-5F59-422D-9790-01FE76552B88}) (Version: 2.10 - Keysticks.net)
K-Lite Mega Codec Pack 12.3.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.3.5 - KLCP)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LG United Mobile Drivers (HKLM-x32\...\{2D5218EB-6992-46E3-8ECE-76C79AB955CE}) (Version: 3.13.2.0 - LG Electronics)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 85.0.564.51 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.29 - )
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\OneDriveSetup.exe) (Version: 20.134.0705.0008 - Microsoft Corporation)
Microsoft Project Standard 2016 (HKLM\...\Office16.PRJSTD) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{127D3B81-C5CB-4340-AC96-8F7EF322C910}) (Version: 2.60.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{5c75eda4-d029-43bf-a70b-a73d380f52ee}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.27.29016 (HKLM-x32\...\{40d3fee2-b257-46c2-bdc0-cb1088d97327}) (Version: 14.27.29016.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 3.1.6 (x64) (HKLM-x32\...\{7bc97a3a-1c5c-4743-bba3-f20f8eb448b8}) (Version: 3.1.6.29016 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{449EFED6-5F86-4428-8EB2-3DA1F6E67CE4}) (Version: 1.20.146.0 - Microsoft)
Nitro Pro 10 (HKLM\...\{7242D889-1E07-40C9-8FC6-670707B34EE1}) (Version: 10.5.9.9 - Nitro)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.13 - NVIDIA Corporation) Hidden
NVIDIA Controlador de gráficos 451.67 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 451.67 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.17.0.126 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.17.0.126 - NVIDIA Corporation)
NVIDIA Software del sistema PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 25.0.8 - OBS Project)
OpenVPN 2.4.9-I601-Win10 (HKLM\...\OpenVPN) (Version: 2.4.9-I601-Win10 - OpenVPN Technologies, Inc.)
Opera Stable 70.0.3728.178 (HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\Opera 70.0.3728.178) (Version: 70.0.3728.178 - Opera Software)
Panel de control de NVIDIA 417.98 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 417.98 - NVIDIA Corporation) Hidden
qBittorrent 4.2.1 (HKLM-x32\...\qBittorrent) (Version: 4.2.1 - The qBittorrent project)
Radmin Viewer 3.5.2 (HKLM-x32\...\{9F9073EA-5DCE-4B23-8A0C-C7D2C89AEADC}) (Version: 3.52.1.0000 - Famatech)
Radmin VPN 1.1.6 (HKLM-x32\...\{2DD1F072-9CD3-40B9-8119-DC648CBDBF49}) (Version: 1.1.4164 - Famatech)
Revisores de Texto do Microsoft Office 2016 – Português (Brasil) (HKLM\...\{90160000-001F-0416-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Roblox Player for CRISEIDA (HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\roblox-player) (Version: - Roblox Corporation)
Servicio Lenovo Vantage (HKLM-x32\...\VantageSRV_is1) (Version: 3.3.115.0 - Lenovo Group Ltd.)
ShareX (HKLM\...\82E6AC09-0FEF-4390-AD9F-0DD3F5561EFC_is1) (Version: 13.1.0 - ShareX Team)
SlimDX Runtime .NET 4.0 x86 (January 2012) (HKLM-x32\...\{7EBD0E43-6AC0-4CA8-9990-00E50069AD29}) (Version: 2.0.13.43 - SlimDX Group)
Software para dispositivos de chipset Intel® (HKLM-x32\...\{fcfc894b-0d54-4d39-826f-dcb39ce5dde7}) (Version: 10.1.17861.8101 - Intel(R) Corporation)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TAP-Windows 9.24.2 (HKLM\...\TAP-Windows) (Version: 9.24.2 - OpenVPN Technologies, Inc.)
VirtualDJ 8 (HKLM-x32\...\{6CA212A6-6CE6-4235-9EA8-4DA53D13C58D}) (Version: 8.2.3286.0 - Atomix Productions)
Warcraft III (HKLM-x32\...\Warcraft III) (Version: - Blizzard Entertainment)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.)
Packages:
=========
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.42.2.0_x86__kgqvnymyfvs32 [2020-09-07] (king.com)
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1850.1.0_x86__kgqvnymyfvs32 [2020-09-10] (king.com)
Centro de comando de gráficos Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.2765.0_x64__8j3eq9eme6ctt [2020-08-26] (INTEL CORP) [Startup Task]
Complemento de motor multimedia para Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-04-09] (Microsoft Corporation)
Dolby Audio -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAudio_3.20500.501.0_x64__rz1tebttyb220 [2020-06-16] (Dolby Laboratories)
Extensión de video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2019-09-24] (Microsoft Corporation)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2020-02-17] (INTEL CORP)
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2006.41.0_x64__k1h2ywk1493x8 [2020-08-06] (LENOVO INC.)
LenovoUtility -> C:\Program Files\WindowsApps\E0469640.LenovoUtility_3.1.16.0_x64__5grkq8ppsgwt4 [2020-07-28] (LENOVO INC) [Startup Task]
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2019-09-03] (LinkedIn)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-09-03] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-09-03] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-08-20] (Microsoft Studios) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-14] (Netflix, Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.958.0_x64__56jybvy8sckqj [2020-06-22] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.10.216.0_x64__dt26b99r8h8gj [2020-06-16] (Realtek Semiconductor Corp)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0 [2020-09-05] (Spotify AB) [Startup Task]
==================== Personalizado CLSID (Lista blanca): ==============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
CustomCLSID: HKU\S-1-5-21-2444298320-3582548934-135162116-1001_Classes\CLSID\{C52B9871-E5E9-41FD-B84D-C5ACADBEC7AE}\InprocServer32 -> D:\ARCHIVOS BRAYAND\Programas\AppLocale\LEContextMenuHandler.DLL (Paddy Xu) [Archivo no firmado]
CustomCLSID: HKU\S-1-5-21-2444298320-3582548934-135162116-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> Ningún archivo
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Ningún archivo
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-09-03] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [NP8ShellExtension] -> {9C4B85B8-956C-49BF-9BA5-101384E562B2} => C:\Program Files\Nitro\Pro 10\NPShellExtension.dll [2016-07-22] (Nitro Software, Inc. -> Nitro PDF)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-09-03] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> Ningún archivo
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Ningún archivo
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_6de98d46a9fc896b\nvshext.dll [2020-07-15] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Ningún archivo
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-09-03] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Ningún archivo
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Lista blanca) ====================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\system32\lagarith.dll [148992 2011-12-07] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\system32\x264vfw64.dll [3642880 2016-05-08] (x264vfw project) [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\system32\xvidvfw.dll [309248 2015-12-18] () [Archivo no firmado]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\system32\ac3acm.acm [180736 2012-07-21] (fccHandler) [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\SysWOW64\lagarith.dll [216064 2011-12-07] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\SysWOW64\x264vfw.dll [3613696 2016-05-08] (x264vfw project) [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [282112 2015-12-18] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\SysWOW64\ff_vfw.dll [112128 2015-10-24] () [Archivo no firmado]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\SysWOW64\ac3acm.acm [122880 2012-07-21] (fccHandler) [Archivo no firmado]
==================== Accesos directos & WMI ========================
(Las entradas pueden ser listadas para ser restauradas o eliminadas.)
Shortcut: C:\Users\CRISEIDA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki
Shortcut: C:\Users\CRISEIDA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com
==================== Módulos cargados (Lista blanca) =============
2020-08-28 23:27 - 2020-07-28 10:20 - 001257984 _____ () [Archivo no firmado] [El archivo está en uso] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\ThirdParty\Chromium\x64\CefSharp.BrowserSubprocess.Core.dll
2020-08-28 23:27 - 2020-07-28 10:20 - 001928192 _____ () [Archivo no firmado] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\ThirdParty\Chromium\x64\CefSharp.Core.dll
2020-08-28 23:27 - 2020-07-28 10:20 - 122973696 _____ () [Archivo no firmado] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\ThirdParty\Chromium\x64\libcef.dll
2020-08-28 23:27 - 2020-07-28 10:20 - 000377856 _____ () [Archivo no firmado] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\ThirdParty\Chromium\x64\libegl.dll
2020-08-28 23:27 - 2020-07-28 10:20 - 007861760 _____ () [Archivo no firmado] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\ThirdParty\Chromium\x64\libglesv2.dll
2020-08-28 23:27 - 2017-09-17 22:08 - 000061952 _____ (Blue Spire Consulting, Inc.) [Archivo no firmado] [El archivo está en uso] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\Core\Caliburn.Micro.dll
2020-08-28 23:27 - 2017-09-17 22:08 - 000014848 _____ (Blue Spire Consulting, Inc.) [Archivo no firmado] [El archivo está en uso] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\Core\Caliburn.Micro.Platform.Core.dll
2020-08-28 23:27 - 2017-09-17 22:08 - 000083968 _____ (Blue Spire Consulting, Inc.) [Archivo no firmado] [El archivo está en uso] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\Core\Caliburn.Micro.Platform.dll
2020-08-28 23:27 - 2020-08-28 07:09 - 000222208 _____ (Meta.Vlc) [Archivo no firmado] [El archivo está en uso] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\Core\Meta.Vlc.dll
2020-08-07 20:26 - 2020-05-30 20:04 - 001638912 _____ (Robert Simpson, et al.) [Archivo no firmado] C:\Program Files (x86)\Lenovo\VantageService\3.3.115.0\x64\SQLite.Interop.dll
2020-08-05 08:21 - 2020-05-30 19:58 - 001280000 _____ (Robert Simpson, et al.) [Archivo no firmado] C:\ProgramData\Lenovo\iMController\Plugins\GenericMessagingPlugin\x86\SQLite.Interop.dll
2016-09-14 14:31 - 2016-09-14 14:31 - 000500736 ____S (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\WINDOWS\System32\enppmon.dll
2020-06-19 16:08 - 2020-04-09 09:17 - 000944840 _____ (SQLite Development Team) [Archivo no firmado] C:\ProgramData\Lenovo\iMController\Plugins\LenovoWiFiSecurityPlugin\x86\x86\e_sqlite3.dll
2020-08-28 23:27 - 2020-07-28 10:20 - 000226304 _____ (The CefSharp Authors) [Archivo no firmado] [El archivo está en uso] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\ThirdParty\Chromium\x64\CefSharp.dll
2020-08-28 23:27 - 2020-07-28 10:20 - 000084992 _____ (The CefSharp Authors) [Archivo no firmado] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\ThirdParty\Chromium\x64\CefSharp.Wpf.dll
2020-08-28 23:27 - 2020-07-28 10:20 - 000958976 _____ (The Chromium Authors) [Archivo no firmado] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\ThirdParty\Chromium\x64\chrome_elf.dll
2020-08-28 23:27 - 2020-08-28 07:09 - 000160768 _____ (Unbroken Software, LLC) [Archivo no firmado] [El archivo está en uso] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\Core\es\LaunchBox.resources.dll
2020-08-28 23:27 - 2020-08-28 07:09 - 000291840 _____ (Unbroken Software, LLC) [Archivo no firmado] [El archivo está en uso] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\Core\es\Unbroken.LaunchBox.resources.dll
2020-08-28 23:27 - 2020-08-28 07:10 - 007758336 _____ (Unbroken Software, LLC) [Archivo no firmado] [El archivo está en uso] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\Core\LaunchBox.dll
2020-08-28 23:27 - 2020-08-28 07:10 - 000071680 _____ (Unbroken Software, LLC) [Archivo no firmado] [El archivo está en uso] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\Core\Unbroken.dll
2020-08-28 23:27 - 2020-08-28 07:10 - 000970240 _____ (Unbroken Software, LLC) [Archivo no firmado] [El archivo está en uso] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\Core\Unbroken.LaunchBox.dll
2020-08-28 23:27 - 2020-08-28 07:08 - 000040960 _____ (Unbroken Software, LLC) [Archivo no firmado] [El archivo está en uso] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\Core\Unbroken.LaunchBox.Plugins.dll
2020-08-28 23:27 - 2020-08-28 07:10 - 048204800 _____ (Unbroken Software, LLC) [Archivo no firmado] [El archivo está en uso] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\Core\Unbroken.LaunchBox.Windows.dll
==================== Alternate Data Streams (Lista blanca) ========
(Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.)
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [488]
==================== Modo Seguro (Lista blanca) ==================
==================== Asociación (Lista blanca) =================
==================== Internet Explorer sitios de confianza/restringidos ==========
==================== Hosts contenido: =========================
(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)
2018-09-15 02:31 - 2019-09-03 02:04 - 000000272 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 na2m-pr.licenses.adobe.com
127.0.0.1 na4r.services.adobe.com
127.0.0.1 ims-na1-prprod.adobelogin.com
127.0.0.1 na1r.services.adobe.com
127.0.0.1 hlrcv.stage.adobe.com
2020-08-27 22:23 - 2020-08-27 22:23 - 000000504 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
192.168.137.1 LAPTOP-JDB9OKB5.mshome.net # 2025 8 3 27 3 23 46 222
192.168.137.14 LGwebOSTV.mshome.net # 2020 9 5 4 3 23 46 222
==================== Otras Áreas ===========================
(Actualmente no existe una corrección automática para esta sección.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\dotnet\
HKU\S-1-5-21-2444298320-3582548934-135162116-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\CRISEIDA\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img13.jpg
DNS Servers: 190.113.220.18 - 190.113.220.51
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Firewall de Windows está habilitado.
==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==
(Si una entrada es incluida en el fixlist, será eliminada.)
HKLM\...\StartupApproved\StartupFolder: => "ScpToolkit Tray Notifications.lnk"
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "RtkAudUService"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "EEventManager"
HKLM\...\StartupApproved\Run32: => "RadminVPN"
HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000000"
HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\StartupApproved\Run: => "Opera Browser Assistant"
HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\StartupApproved\Run: => "OPENVPN-GUI"
==================== Reglas de firewall (Lista blanca) ================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
FirewallRules: [UDP Query User{4713E96D-7EEA-4121-8D26-74A828292D99}C:\users\criseida\appdata\local\programs\opera\69.0.3686.77\opera.exe] => (Block) C:\users\criseida\appdata\local\programs\opera\69.0.3686.77\opera.exe => Ningún archivo
FirewallRules: [TCP Query User{099AFC0F-4F4E-4F39-8D3F-3889BFDA16B2}C:\users\criseida\appdata\local\programs\opera\69.0.3686.77\opera.exe] => (Block) C:\users\criseida\appdata\local\programs\opera\69.0.3686.77\opera.exe => Ningún archivo
FirewallRules: [UDP Query User{A4E97801-7088-4E68-95EE-9CBF8BD6EC0B}D:\archivos brayand\programas\nsui 3ds\new super ultimate injector for 3ds.exe] => (Allow) D:\archivos brayand\programas\nsui 3ds\new super ultimate injector for 3ds.exe (Asdolo) [Archivo no firmado]
FirewallRules: [TCP Query User{3EBDA7C7-F04C-421D-8A35-1F777E2CDC33}D:\archivos brayand\programas\nsui 3ds\new super ultimate injector for 3ds.exe] => (Allow) D:\archivos brayand\programas\nsui 3ds\new super ultimate injector for 3ds.exe (Asdolo) [Archivo no firmado]
FirewallRules: [UDP Query User{5D6AB5D3-5A68-4BE0-9F6E-7FD8C281550D}D:\archivos brayand\juegos\warcraft iii\_retail_\x86_64\warcraft iii.exe] => (Allow) D:\archivos brayand\juegos\warcraft iii\_retail_\x86_64\warcraft iii.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc)
FirewallRules: [TCP Query User{652F67A3-1CE1-4A4F-A19E-047DF39F20B3}D:\archivos brayand\juegos\warcraft iii\_retail_\x86_64\warcraft iii.exe] => (Allow) D:\archivos brayand\juegos\warcraft iii\_retail_\x86_64\warcraft iii.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc)
FirewallRules: [UDP Query User{170E2662-14E3-4475-9B38-7FFB7BFE72D6}C:\users\criseida\appdata\local\programs\opera\68.0.3618.173\opera.exe] => (Allow) C:\users\criseida\appdata\local\programs\opera\68.0.3618.173\opera.exe => Ningún archivo
FirewallRules: [TCP Query User{127F0E99-202C-4825-99CF-B2D60D30802D}C:\users\criseida\appdata\local\programs\opera\68.0.3618.173\opera.exe] => (Allow) C:\users\criseida\appdata\local\programs\opera\68.0.3618.173\opera.exe => Ningún archivo
FirewallRules: [UDP Query User{C4CB8C9C-D609-4F4A-B6E8-A333AAD886A2}C:\users\criseida\appdata\local\programs\opera\68.0.3618.125\opera.exe] => (Block) C:\users\criseida\appdata\local\programs\opera\68.0.3618.125\opera.exe => Ningún archivo
FirewallRules: [TCP Query User{C6977C29-C6B4-419E-86AF-F403EFBA37C5}C:\users\criseida\appdata\local\programs\opera\68.0.3618.125\opera.exe] => (Block) C:\users\criseida\appdata\local\programs\opera\68.0.3618.125\opera.exe => Ningún archivo
FirewallRules: [UDP Query User{FDC90119-A9A5-433B-90B3-9A9FC729C936}C:\users\criseida\appdata\local\programs\opera\68.0.3618.104\opera.exe] => (Block) C:\users\criseida\appdata\local\programs\opera\68.0.3618.104\opera.exe => Ningún archivo
FirewallRules: [TCP Query User{C8EB909E-8C83-4AB4-A1A6-7EFFFDA23E73}C:\users\criseida\appdata\local\programs\opera\68.0.3618.104\opera.exe] => (Block) C:\users\criseida\appdata\local\programs\opera\68.0.3618.104\opera.exe => Ningún archivo
FirewallRules: [{3435E5ED-ED32-46D3-9E15-1BCF39AFA21A}] => (Block) C:\users\criseida\appdata\local\programs\opera\68.0.3618.63\opera.exe => Ningún archivo
FirewallRules: [{076D1E5F-212F-4D14-94BD-CB5B99E7FA3B}] => (Block) C:\users\criseida\appdata\local\programs\opera\68.0.3618.63\opera.exe => Ningún archivo
FirewallRules: [UDP Query User{99A7A758-AF18-4CA3-9564-F45BDFD63022}C:\users\criseida\appdata\local\programs\opera\68.0.3618.63\opera.exe] => (Allow) C:\users\criseida\appdata\local\programs\opera\68.0.3618.63\opera.exe => Ningún archivo
FirewallRules: [TCP Query User{E489C773-07A6-4A25-96C2-F588EDE08483}C:\users\criseida\appdata\local\programs\opera\68.0.3618.63\opera.exe] => (Allow) C:\users\criseida\appdata\local\programs\opera\68.0.3618.63\opera.exe => Ningún archivo
FirewallRules: [{12D69849-0080-44ED-98EB-DD112374B2EB}] => (Block) D:\archivos brayand\emuladores\citra\citra-qt.exe () [Archivo no firmado]
FirewallRules: [{51090A13-6289-4054-BA34-901BD7B4A19E}] => (Block) D:\archivos brayand\emuladores\citra\citra-qt.exe () [Archivo no firmado]
FirewallRules: [UDP Query User{EC18FD65-AD08-4C6F-8D2F-5579AFDF8EA2}D:\archivos brayand\emuladores\citra\citra-qt.exe] => (Allow) D:\archivos brayand\emuladores\citra\citra-qt.exe () [Archivo no firmado]
FirewallRules: [TCP Query User{666A652A-5ECA-498B-85C9-755B55C4E4C2}D:\archivos brayand\emuladores\citra\citra-qt.exe] => (Allow) D:\archivos brayand\emuladores\citra\citra-qt.exe () [Archivo no firmado]
FirewallRules: [{3C4DA197-5F64-4834-97E5-436398B4FC35}] => (Block) D:\archivos brayand\juegos\warcraft iii\x86_64\warcraft iii.exe => Ningún archivo
FirewallRules: [{5935C64B-2EB2-4728-A8F0-A72BFFCA1A3F}] => (Block) D:\archivos brayand\juegos\warcraft iii\x86_64\warcraft iii.exe => Ningún archivo
FirewallRules: [UDP Query User{F28CBE82-AE05-4992-8C8F-C4BB0802E578}D:\archivos brayand\juegos\warcraft iii\x86_64\warcraft iii.exe] => (Allow) D:\archivos brayand\juegos\warcraft iii\x86_64\warcraft iii.exe => Ningún archivo
FirewallRules: [TCP Query User{5F574AC8-8B79-4882-AAEB-0F6C4375BDE4}D:\archivos brayand\juegos\warcraft iii\x86_64\warcraft iii.exe] => (Allow) D:\archivos brayand\juegos\warcraft iii\x86_64\warcraft iii.exe => Ningún archivo
FirewallRules: [{681FEAE8-597B-4DED-95E8-4949C672DFB6}] => (Block) C:\users\criseida\appdata\local\programs\opera\67.0.3575.137\opera.exe => Ningún archivo
FirewallRules: [{0A01E2E0-5E67-4C84-B38B-1382DCD27809}] => (Block) C:\users\criseida\appdata\local\programs\opera\67.0.3575.137\opera.exe => Ningún archivo
FirewallRules: [UDP Query User{4480A28B-2769-42D1-A712-4FD5765CE3C4}C:\users\criseida\appdata\local\programs\opera\67.0.3575.137\opera.exe] => (Allow) C:\users\criseida\appdata\local\programs\opera\67.0.3575.137\opera.exe => Ningún archivo
FirewallRules: [TCP Query User{06487584-D563-4AB4-A4B4-DFCC799AB0AA}C:\users\criseida\appdata\local\programs\opera\67.0.3575.137\opera.exe] => (Allow) C:\users\criseida\appdata\local\programs\opera\67.0.3575.137\opera.exe => Ningún archivo
FirewallRules: [{720EED06-1714-4D31-ADF7-83961FA8929F}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe () [Archivo no firmado]
FirewallRules: [{18CF09AB-0CD3-4B7C-AD5D-F39E56D657E6}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe () [Archivo no firmado]
FirewallRules: [UDP Query User{A71D2F65-10DF-43B8-8F28-0EC88119AD2E}C:\users\criseida\appdata\local\programs\opera\67.0.3575.115\opera.exe] => (Block) C:\users\criseida\appdata\local\programs\opera\67.0.3575.115\opera.exe => Ningún archivo
FirewallRules: [TCP Query User{55D0428D-750D-4955-A622-653B0C766162}C:\users\criseida\appdata\local\programs\opera\67.0.3575.115\opera.exe] => (Block) C:\users\criseida\appdata\local\programs\opera\67.0.3575.115\opera.exe => Ningún archivo
FirewallRules: [{31E4BD62-0B76-470B-AFE2-08769FBBBF04}] => (Allow) C:\Users\CRISEIDA\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{B2F010CD-3A5B-4E32-803A-A90E386F6D98}] => (Allow) LPort=25565
FirewallRules: [UDP Query User{20A60A9F-6058-46AE-98D1-88B0737805D3}C:\program files\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_241\bin\javaw.exe => Ningún archivo
FirewallRules: [TCP Query User{B02B1142-B039-43E0-B453-49D1B31D8DA7}C:\program files\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_241\bin\javaw.exe => Ningún archivo
FirewallRules: [{6EE4A225-D104-4621-84F2-714F2B3B79C9}] => (Block) C:\users\criseida\appdata\local\programs\opera\67.0.3575.97\opera.exe => Ningún archivo
FirewallRules: [{554C2315-196F-4120-AA80-C14831DFAE74}] => (Block) C:\users\criseida\appdata\local\programs\opera\67.0.3575.97\opera.exe => Ningún archivo
FirewallRules: [UDP Query User{F7575781-FD8E-4B4A-A61A-E1545D370FF3}C:\users\criseida\appdata\local\programs\opera\67.0.3575.97\opera.exe] => (Allow) C:\users\criseida\appdata\local\programs\opera\67.0.3575.97\opera.exe => Ningún archivo
FirewallRules: [TCP Query User{F49463A9-008D-4B62-816C-3EC740843B94}C:\users\criseida\appdata\local\programs\opera\67.0.3575.97\opera.exe] => (Allow) C:\users\criseida\appdata\local\programs\opera\67.0.3575.97\opera.exe => Ningún archivo
FirewallRules: [{CFB38B64-F60B-4EE1-8586-D75CD31C9F5A}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\steamapps\common\GarrysMod\hl2.exe () [Archivo no firmado]
FirewallRules: [{4BE5C5C9-DA14-4E5C-A91E-0C1FC9243EE4}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\steamapps\common\GarrysMod\hl2.exe () [Archivo no firmado]
FirewallRules: [UDP Query User{7FAA2F07-CBCD-400F-88E5-2836E84523CD}C:\program files\qbittorrent\qbittorrent.exe] => (Block) C:\program files\qbittorrent\qbittorrent.exe () [Archivo no firmado]
FirewallRules: [TCP Query User{5B8F4429-E998-4343-8052-6F7085BD2794}C:\program files\qbittorrent\qbittorrent.exe] => (Block) C:\program files\qbittorrent\qbittorrent.exe () [Archivo no firmado]
FirewallRules: [{C080C3D4-9EB8-48A2-9930-2F2A5AB55B0C}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [Archivo no firmado]
FirewallRules: [{783599D1-3EF0-4A4D-A7D1-EE34D37101A2}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [Archivo no firmado]
FirewallRules: [{49EA4C8F-AED5-49E2-B030-37E98C899AF0}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\steamapps\common\lethalleague\LethalLeague.exe () [Archivo no firmado]
FirewallRules: [{D4042478-1E05-4101-BF02-BD1264958B01}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\steamapps\common\lethalleague\LethalLeague.exe () [Archivo no firmado]
FirewallRules: [{DE9A7696-5196-4308-BDDA-02FC560E9175}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe (WB Games, Inc.) [Archivo no firmado]
FirewallRules: [{DAF8B1C3-385B-40F1-AE92-9FBB7FA5492C}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe (WB Games, Inc.) [Archivo no firmado]
FirewallRules: [{A72D677B-4512-4875-BD41-16E25318DC3B}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{0DBE98C8-1ABD-443B-AD10-10D662689E2A}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{A580AFEA-9461-449B-BABF-C148CCE9A40C}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{EB90658C-DFB1-41EB-A276-6297D5915F4F}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{4A2F9DF6-DEC1-4C90-A13D-C3D386A5AF5D}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [TCP Query User{88DE9CD8-0D32-4DDE-80EF-70DE91D78396}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{AA12815D-3958-4F15-B2E6-92D114A0FDB3}] => (Allow) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{EC1D0A2E-9191-44B6-B330-47007488716D}] => (Allow) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{06FF0DA7-BB57-467D-B03A-CD603E230809}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{61D629A2-6B1A-4278-99AC-E54ED7E90E34}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{9AC5B421-CA33-4069-A2D8-006E50F02AB6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{54312D48-81C6-499E-B945-CBF5B445BBAB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{37694C04-CAEA-4E22-B23A-0190106FDEE0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E6A4CF00-D6FD-4EBB-831B-E62889A60D17}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BA129BEC-4E8E-4353-AA98-A54F68BD7CC4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F02F28BB-471A-4099-8437-29BA4E50A3AD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{98F4A330-AF1B-4A3C-A6F1-F1E168977727}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16040.10730.20103.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{4E4EA2EA-4599-4BD9-80AF-8D56F1E48E89}C:\users\criseida\appdata\local\programs\opera\69.0.3686.95\opera.exe] => (Block) C:\users\criseida\appdata\local\programs\opera\69.0.3686.95\opera.exe => Ningún archivo
FirewallRules: [UDP Query User{EC5AB86A-438E-4854-9FAB-E1B43D07B572}C:\users\criseida\appdata\local\programs\opera\69.0.3686.95\opera.exe] => (Block) C:\users\criseida\appdata\local\programs\opera\69.0.3686.95\opera.exe => Ningún archivo
FirewallRules: [TCP Query User{66439DFE-B9E6-4A54-80F4-A996CFBC0925}C:\program files\java\jre1.8.0_261\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_261\bin\javaw.exe
FirewallRules: [UDP Query User{5233CDC5-F008-41AE-A8CA-EEED7E65444A}C:\program files\java\jre1.8.0_261\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_261\bin\javaw.exe
FirewallRules: [TCP Query User{A20CAA43-7D4B-4715-B745-2B1F5E697B59}C:\users\criseida\appdata\local\programs\opera\70.0.3728.106\opera.exe] => (Block) C:\users\criseida\appdata\local\programs\opera\70.0.3728.106\opera.exe => Ningún archivo
FirewallRules: [UDP Query User{3D62034C-1561-4502-A3D2-022A49F5CA11}C:\users\criseida\appdata\local\programs\opera\70.0.3728.106\opera.exe] => (Block) C:\users\criseida\appdata\local\programs\opera\70.0.3728.106\opera.exe => Ningún archivo
FirewallRules: [{7CE3841F-07DC-45EA-B309-2F04E54F8D78}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\steamapps\common\Fall Guys\FallGuys_client.exe () [Archivo no firmado]
FirewallRules: [{0841D53E-4B10-4FF3-A7A7-5B82535FCD3C}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\steamapps\common\Fall Guys\FallGuys_client.exe () [Archivo no firmado]
FirewallRules: [{15A4A0A3-8894-4B27-8518-92CCAE7B5E44}] => (Allow) C:\Program Files (x86)\Radmin VPN\RvControlSvc.exe (Famatech Corp. -> Famatech Corp.)
FirewallRules: [{BFB4E8FE-D5E0-438C-805E-D21F3A068907}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\steamapps\common\Among Us\Among Us.exe () [Archivo no firmado]
FirewallRules: [{F82E6C9A-197F-4233-AC6C-3CAA8E23C48C}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\steamapps\common\Among Us\Among Us.exe () [Archivo no firmado]
FirewallRules: [{CAAC0944-E137-4179-AD9C-1185D2FED6CC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B63FADE4-83FE-4FAB-AFEA-4A2ECA7EAA6B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F0E5B062-3EA1-489E-8942-1DEACF0440F0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7EE8AECC-C138-425F-A297-7AD186B5A814}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{88002EF8-75EB-47FA-975A-0F5FB1B6E6D6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{43189E7E-5393-4B9E-9972-16B59A226CF8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9208E25C-DC4E-4E56-B699-B3432F6D07F7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7F796B95-5585-427B-BFA3-502D72BB139C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{3BDB838A-31B0-448C-BF66-580F4BF4071D}C:\users\criseida\appdata\local\programs\opera\70.0.3728.154\opera.exe] => (Block) C:\users\criseida\appdata\local\programs\opera\70.0.3728.154\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [UDP Query User{FB6FE55E-2D84-4F11-B50B-5D3FE8977161}C:\users\criseida\appdata\local\programs\opera\70.0.3728.154\opera.exe] => (Block) C:\users\criseida\appdata\local\programs\opera\70.0.3728.154\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{0F2A3413-C686-4AC0-A67B-047614FEB88B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Puntos de Restauración =========================
09-09-2020 01:03:39 Windows Update
==================== Dispositivos defectuosos en el Administrador de dispositivos ============
==================== Errores del registro de eventos: ========================
Errores de aplicación:
==================
Error: (09/10/2020 06:46:04 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (10052,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (09/10/2020 06:39:39 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Error al generar el contexto de activación para "C:\Program Files (x86)\EPSON Software\Easy Photo Print\EPQuicker.exe".
No se encontró el ensamblado dependiente Microsoft.VC80.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195".
Use sxstrace.exe para obtener un diagnóstico detallado.
Error: (09/10/2020 06:23:02 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (2532,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (09/10/2020 05:26:18 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3712,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (09/10/2020 04:20:39 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (16336,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (09/10/2020 01:56:23 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (10568,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (09/10/2020 01:48:24 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (15880,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (09/10/2020 01:36:10 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Error al generar el contexto de activación para "C:\Program Files (x86)\EPSON Software\Easy Photo Print\EPQuicker.exe".
No se encontró el ensamblado dependiente Microsoft.VC80.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195".
Use sxstrace.exe para obtener un diagnóstico detallado.
Errores del sistema:
=============
Error: (09/09/2020 01:00:37 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio System Interface Foundation Service no pudo iniciarse debido al siguiente error:
El servicio no respondió a tiempo a la solicitud de inicio o de control.
Error: (09/09/2020 01:00:37 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio System Interface Foundation Service.
Error: (09/09/2020 01:00:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Windows Presentation Foundation Font Cache 3.0.0.0 no pudo iniciarse debido al siguiente error:
El servicio no respondió a tiempo a la solicitud de inicio o de control.
Error: (09/09/2020 01:00:30 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Windows Presentation Foundation Font Cache 3.0.0.0.
Error: (09/09/2020 12:58:40 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: El cierre anterior del sistema a las 12:35:33 del 09/09/2020 resultó inesperado.
Error: (09/09/2020 12:57:08 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
Description: 3221225684Error irrecuperable al procesar los datos de restauración.
Error: (09/09/2020 10:08:34 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Windows Presentation Foundation Font Cache 3.0.0.0 no pudo iniciarse debido al siguiente error:
El servicio no respondió a tiempo a la solicitud de inicio o de control.
Error: (09/09/2020 10:08:34 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Windows Presentation Foundation Font Cache 3.0.0.0.
Windows Defender:
===================================
Date: 2020-08-08 06:32:24.007
Description:
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:BAT/Starter.G!MSR&threatid=2147757246&enterprise=0
Nombre: Trojan:BAT/Starter.G!MSR
Id.: 2147757246
Gravedad: Grave
Categoría: Caballo de Troya
Ruta de acceso: file:_C:\Users\CRISEIDA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\KARDEX DE PERSONAL 2017 .xlsx.lnk
Origen de detección: Equipo local
Tipo de detección: Concreto
Origen de detección: Protección en tiempo real
Usuario: NT AUTHORITY\SYSTEM
Nombre de proceso: C:\Program Files\ESET\ESET Security\ekrn.exe
Versión de inteligencia de seguridad: AV: 1.321.883.0, AS: 1.321.883.0, NIS: 1.321.883.0
Versión de motor: AM: 1.1.17300.4, NIS: 1.1.17300.4
CodeIntegrity:
===================================
Date: 2020-09-10 18:40:55.925
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-09-10 09:03:04.878
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-09-10 09:03:04.873
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-09-10 09:03:04.803
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-09-10 09:03:04.798
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-09-10 09:03:02.327
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-09-09 13:02:52.364
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-09-09 13:02:49.834
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Información de la memoria ===========================
BIOS: LENOVO BGCN31WW 06/23/2020
Placa base: LENOVO LNVNB161216
Procesador: Intel(R) Core(TM) i5-9300H CPU @ 2.40GHz
Porcentaje de memoria en uso: 70%
RAM física total: 8072.24 MB
RAM física disponible: 2384.33 MB
Virtual total: 18242.95 MB
Virtual disponible: 9610.62 MB
==================== Unidades ================================
Drive c: (Windows) (Fixed) (Total:144.52 GB) (Free:46.82 GB) NTFS
Drive d: (Nuevo vol) (Fixed) (Total:785.75 GB) (Free:499.13 GB) NTFS
\\?\Volume{4c505242-9ec2-467c-9a3f-30441024f514}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.41 GB) NTFS
\\?\Volume{08d7d7bd-2214-46c6-8033-c9b182ce38fa}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Tabla de particiones ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 012BE8C4)
Partition: GPT.
==================== Final de Addition.txt =======================