Virus de doble tilde

Buenas tardes! He acabado por aqui porque he caido en el famoso virus de la doble tilde. Recuerdo hace muchos años que lo tuve en un PC antiguo, pero en aquel entonces se eliminaba muy facil. En este caso he intentado todo lo que se me ha ocurrido y no ha habido manera (pasar el defender de Microsoft y el Malwarebytes, que si que ha encontrado alguna cosa, pero no ha dado resultado). El problema ha venido porque he descargado una ROM de Nintendo DS que vendria contaminada (mal por mi parte que suelo ser bastante precavido…). Como ya he visto lo que se suele solicitar me he adelantado y he realizado el Farbar. Adjunto por aqui los resultados. Muchisimas gracias de antemano, haceis un trabajo espectacular por aqui.

FRST

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 01-04-2025
Ejecutado por asier (administrador) sobre DESKTOP-LV6HL6C (Micro-Star International Co., Ltd. MS-7C75) (03-04-2025 18:12:56)
Ejecutado desde C:\Users\asier\Desktop\FRST64.exe
Perfiles cargados: asier
Plataforma: Microsoft Windows 10 Pro Versión 22H2 19045.5608 (X64) Idioma: Español (España, internacional)
Navegador predeterminado: Chrome
Modo de Inicio: Normal

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzAppManager
(C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzBTLEManager
(C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzChromaConnectManager
(C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzChromaConnectServer
(C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzDeviceManager
(C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzDiagnostic
(C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzIoTDeviceManager
(C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSmartlightingDeviceManager
(C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe ->) (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(explorer.exe ->) (Focusrite Audio Engineering Ltd -> Focusrite Audio Engineering, Ltd.) C:\Program Files\Focusrite\Drivers\Focusrite Notifier.exe
(explorer.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.SurfaceWirelessDisplayAdapter_4.232.137.0_x64__8wekyb3d8bbwe\Desktop\WDADesktopService.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\MSBuild.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_a55aa2cd52a3429d\LMS.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WSL\wslservice.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25020.1009-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25020.1009-0\MsMpEng.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Plex, Inc. -> Plex, Inc.) C:\Program Files\Plex\Plex Media Server\Plex Update Service.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzChromaStreamServer.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_550508a90a3c9a47\RtkAudUService64.exe <2>
(services.exe ->) (Skutta Software GmbH -> ) C:\Windows\SysWOW64\wallpaperservice32.exe
(sihost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2502.2.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_11.2502.4.0_x64__8wekyb3d8bbwe\Microsoft.Media.Player.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_550508a90a3c9a47\RtkAudUService64.exe [1618320 2022-11-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Focusrite Notifier] => C:\Program Files\Focusrite\Drivers\Focusrite Notifier.exe [906840 2023-10-13] (Focusrite Audio Engineering Ltd -> Focusrite Audio Engineering, Ltd.)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [4143376 2025-03-19] (Riot Games, Inc. -> Riot Games, Inc.)
HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3599496 2025-03-11] (Razer USA Ltd. -> Razer Inc.)
HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\Run: [RiotClient] => E:\Riot Games\Riot Client\RiotClientServices.exe [74683360 2025-04-01] (Riot Games, Inc. -> Riot Games, Inc.)
HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\Run: [Steam] => E:\Program Files (x86)\Steam\steam.exe [4694624 2025-04-02] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\Run: [com.blitz.app] => C:\Users\asier\AppData\Local\Programs\Blitz\Blitz.exe [180674464 2025-04-01] (Swift Media Entertainment, Inc. -> Blitz, Inc.)
HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\Run: [EpicGamesLauncher] => E:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37352464 2025-03-28] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\Run: [Docker Desktop] => C:\Program Files\Docker\Docker\Docker Desktop.exe [2348104 2023-12-13] (Docker Inc -> Docker Inc.)
HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\Run: [AF_uuid_2139460] => da5435ee-067b-45b3-ae6d-cb0844de48bd (Ningún archivo)
HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\Run: [AF_counter_2139460] => 2 (Ningún archivo)
HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\Run: [AceStream] => C:\Users\asier\AppData\Roaming\ACEStream\engine\ace_engine.exe [96192 2024-07-09] (Innovative Digital Technologies, LLC -> Innovative Digital Technologies, LLC)
HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\Run: [Plex Media Server] => C:\Program Files\Plex\Plex Media Server\Plex Media Server.exe [29753608 2024-08-23] (Plex, Inc. -> Plex, Inc.)
HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\Run: [GogGalaxy] => E:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [14359888 2024-11-12] (GOG  sp. z o.o -> GOG.com)
HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\Run: [MicrosoftEdgeAutoLaunch_65D608756315D3D26C4944115B9602E9] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4291144 2025-03-26] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3599496 2025-03-11] (Razer USA Ltd. -> Razer Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\134.0.6998.179\Installer\chrmstp.exe [2025-04-02] (Google LLC -> Google LLC)
Startup: C:\Users\asier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\metallizations.vbs [2025-04-03] () [Archivo no firmado]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Ableton Push Control Panel Autostart.lnk [2024-02-26]
ShortcutTarget: Ableton Push Control Panel Autostart.lnk -> C:\Program Files\Ableton\Push Driver\x64\AbletonPushCpl.exe (Thesycon Software Solutions GmbH & Co. KG -> )
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Valeton USB Audio Device Control Panel Autostart.lnk [2023-12-01]
ShortcutTarget: Valeton USB Audio Device Control Panel Autostart.lnk -> C:\Program Files\Valeton\USB Audio Device Driver\x64\ValetonUsbAudioCpl.exe (Changsha Hotone Audio Co,. LTD -> )
GroupPolicy: Restricción ? <==== ATENCIÓN
Policies: C:\ProgramData\NTUSER.pol: Restricción <==== ATENCIÓN

==================== Tareas programadas (Lista blanca) =================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {BC2D68A7-4089-4719-82F7-1C7F7C13B182} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem136.0.7079.0{5284BEE0-4E6A-4415-A822-095F648C532E} => C:\Program Files (x86)\Google\GoogleUpdater\136.0.7079.0\updater.exe [7017568 2025-03-20] (Google LLC -> Google LLC)
Task: {FB27A4ED-7F26-4119-9536-B5D9E699AE10} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25020.1009-0\MpCmdRun.exe [1745192 2025-04-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9F7372E7-0CAE-4510-907D-A558873F3D8B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25020.1009-0\MpCmdRun.exe [1745192 2025-04-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6896DBF8-FE84-48D7-8013-4D42AECFD96A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25020.1009-0\MpCmdRun.exe [1745192 2025-04-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {40B38AE6-AF74-4911-8751-1D1A645836B1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25020.1009-0\MpCmdRun.exe [1745192 2025-04-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {94F3102B-68BD-4D1A-8176-FDFD932FD406} - System32\Tasks\OneDrive Startup Task-S-1-5-21-3457603053-2513319760-2250614245-1001 => C:\Users\asier\AppData\Local\Microsoft\OneDrive\25.041.0303.0002\OneDriveLauncher.exe [673064 2025-04-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {162E8036-CF96-4247-A5FE-6C8494D51BDF} - System32\Tasks\UpdateTask => C:\Users\asier\AppData\Roaming\IPEvcon\AvastBrowserUpdate.exe [180240 2025-04-03] (Avast Software s.r.o. -> AVAST Software)

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)


==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Hosts: Hay más de una entrada en Hosts. Consulte la sección Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2ce20538-a5e7-4539-8107-11191be6e8f0}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2ce20538-a5e7-4539-8107-11191be6e8f0}: [DhcpDomain] home
Tcpip\..\Interfaces\{74f75eee-f8ca-4d73-9db8-5b0a3ac25a6f}: [DhcpNameServer] 212.142.173.65 77.26.11.233

Edge: 
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\asier\AppData\Local\Microsoft\Edge\User Data\Default [2025-04-03]
Edge Extension: (Documentos de Google sin conexión) - C:\Users\asier\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-03-31]hxxps://clients2.google.com/service/update2/crx
Edge Extension: (Edge relevant text changes) - C:\Users\asier\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-05-24]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx
Edge Extension: (Google Docs) - C:\Users\asier\AppData\Local\reisa\llg [2025-04-03] [UpdateUrl:0] <==== ATENCIÓN

FireFox:
========
FF HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\Firefox\Extensions: [[email protected]] - C:\Users\asier\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi
FF Extension: (Ace Script) - C:\Users\asier\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi [2018-11-26]
FF Plugin HKU\S-1-5-21-3457603053-2513319760-2250614245-1001: @acestream.net/acestreamplugin,version=3.2.8 -> C:\Users\asier\AppData\Roaming\ACEStream\player\npace_plugin.dll [2017-01-13] (Innovative Digital Technologies -> Innovative Digital Technologies)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\asier\AppData\Local\Google\Chrome\User Data\Default [2025-04-03]
CHR DownloadDir: E:\Descargas
CHR Notifications: Default -> hxxps://aternos.org; hxxps://web.telegram.org
CHR HomePage: Default -> hxxp://www.google.es/
CHR StartupUrls: Default -> "hxxp://www.google.es/"
CHR Extension: (uBlock Origin) - C:\Users\asier\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2025-03-22]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Documentos de Google sin conexión) - C:\Users\asier\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-03-26]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (AdBlock — block ads across the web) - C:\Users\asier\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2025-04-03]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (TweetDeck by Twitter) - C:\Users\asier\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdpomandigafcibbmofojjchbcdagbl [2023-11-28]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Google Keep - Notes and Lists) - C:\Users\asier\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2025-03-28]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Rastreador de precios de Booking.com) - C:\Users\asier\AppData\Local\Google\Chrome\User Data\Default\Extensions\kddajedgmmccjldkcbafjlmcpcgkaodp [2024-10-28]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Notion Web Clipper) - C:\Users\asier\AppData\Local\Google\Chrome\User Data\Default\Extensions\knheggckgoiihginacbkhaalnibhilkk [2023-11-28]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Extensión de Google Keep para Chrome) - C:\Users\asier\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2025-04-03]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Ace Script) - C:\Users\asier\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2024-08-27]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Keepa - Amazon Price Tracker) - C:\Users\asier\AppData\Local\Google\Chrome\User Data\Default\Extensions\neebplgakaahbhdphmkckjjcegoiijjo [2025-02-10]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\asier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-11-28]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Google Docs) - C:\Users\asier\AppData\Local\reisa\llg [2025-04-03] [UpdateUrl:0] <==== ATENCIÓN
CHR HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [3318400 2025-02-24] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
S3 com.docker.service; C:\Program Files\Docker\Docker\com.docker.service [20072 2023-12-13] (Docker Inc -> Docker Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1134624 2023-09-23] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [954704 2024-06-23] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicGamesUpdater; E:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesUpdater.exe [3064848 2025-03-28] (Epic Games Inc. -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-08-02] (Epic Games Inc. -> Epic Games, Inc.)
S3 GalaxyClientService; \\?\E:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2368848 2024-11-12] (GOG  sp. z o.o -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7627600 2024-11-12] (GOG  sp. z o.o -> GOG.com)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9484384 2025-04-03] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [2788304 2025-04-03] (Malwarebytes Inc. -> Malwarebytes)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25020.1009-0\MpDefenderCoreService.exe [1968320 2025-04-01] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe [1275000 2024-09-15] (NVIDIA Corporation -> NVIDIA Corporation)
R2 PlexUpdateService; C:\Program Files\Plex\Plex Media Server\Plex Update Service.exe [903944 2024-08-23] (Plex, Inc. -> Plex, Inc.)
R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [1882024 2024-10-18] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [232360 2024-10-18] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Chroma Stream Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzChromaStreamServer.exe [1268176 2024-07-18] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [256256 2024-10-15] (Razer USA Ltd. -> Razer Inc)
R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [300168 2025-03-11] (Razer USA Ltd. -> Razer Inc.)
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [513672 2025-03-06] (Razer USA Ltd. -> Razer Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [559328 2025-03-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [40071784 2025-03-19] (Riot Games, Inc. -> Riot Games, Inc.)
R2 Wallpaper Engine Service; E:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe [3647928 2025-02-23] (Skutta Software GmbH -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25020.1009-0\NisSrv.exe [4464024 2025-04-01] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25020.1009-0\MsMpEng.exe [270040 2025-04-01] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R3 FocusritePCIeSwRoot; C:\Windows\System32\drivers\FocusritePCIeSwRoot.sys [106824 2023-10-13] (Focusrite Audio Engineering Ltd -> Focusrite Audio Engineering Ltd.)
R3 FocusriteUsb; C:\Windows\System32\drivers\FocusriteUsb.sys [169800 2023-10-13] (Focusrite Audio Engineering Ltd -> Focusrite Audio Engineering Ltd.)
R3 FocusriteUsbAudio; C:\Windows\System32\drivers\FocusriteUsbAudio.sys [110408 2023-10-13] (Focusrite Audio Engineering Ltd -> Focusrite Audio Engineering Ltd.)
R3 FocusriteUsbSwRoot; C:\Windows\System32\drivers\FocusriteUsbSwRoot.sys [112968 2023-10-13] (Focusrite Audio Engineering Ltd -> Focusrite Audio Engineering Ltd.)
R3 KslD; C:\Windows\System32\drivers\wd\KslD.sys [278960 2025-04-01] (Microsoft Windows -> Microsoft Corporation)
R2 mbamchameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [234072 2025-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [22120 2025-04-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239568 2025-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 RzCommon; C:\Windows\System32\drivers\RzCommon.sys [64168 2022-08-18] (Razer USA Ltd. -> Razer Inc)
R3 RzDev_0064; C:\Windows\System32\drivers\RzDev_0064.sys [54152 2020-08-24] (Razer USA Ltd. -> Razer Inc)
R3 RzDev_021e; C:\Windows\System32\drivers\RzDev_021e.sys [54168 2020-08-24] (Razer USA Ltd. -> Razer Inc)
S3 ValetonUsbAudio; C:\Windows\System32\drivers\ValetonUsbAudio.sys [413728 2022-08-17] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 ValetonUsbAudioks; C:\Windows\System32\drivers\ValetonUsbAudioks.sys [54808 2022-08-17] (Microsoft Windows Hardware Compatibility Publisher -> )
S1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [27067392 2025-03-19] (Riot Games, Inc. -> Riot Games, Inc.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [20016 2025-04-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [601520 2025-04-01] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [100744 2025-04-01] (Microsoft Windows -> Microsoft Corporation)
S3 NEProtect; \??\E:\Program Files (x86)\Steam\steamapps\common\Once Human\NEProtect.sys [X]

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) (Lista blanca) =========

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2025-04-03 18:12 - 2025-04-03 18:13 - 000024058 _____ C:\Users\asier\Desktop\FRST.txt
2025-04-03 18:11 - 2025-04-03 18:13 - 000000000 ____D C:\FRST
2025-04-03 16:28 - 2025-04-03 16:28 - 002404864 _____ (Farbar) C:\Users\asier\Desktop\FRST64.exe
2025-04-03 15:56 - 2025-04-03 18:12 - 000000000 ____D C:\Users\asier\AppData\Local\Malwarebytes
2025-04-03 15:56 - 2025-04-03 15:56 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2025-04-03 15:56 - 2025-04-03 15:56 - 000002081 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2025-04-03 15:56 - 2025-04-03 15:56 - 000000000 ____D C:\ProgramData\Malwarebytes
2025-04-03 15:56 - 2025-04-03 15:56 - 000000000 ____D C:\Program Files\Malwarebytes
2025-04-03 15:42 - 2025-04-03 15:42 - 000000000 ____D C:\Users\asier\AppData\Local\reisa
2025-04-03 15:41 - 2025-04-03 16:00 - 000000000 ____D C:\Users\asier\AppData\Roaming\IPEvcon
2025-04-03 15:41 - 2025-04-03 15:41 - 000003324 _____ C:\Windows\system32\Tasks\UpdateTask
2025-04-03 15:41 - 2025-04-03 15:41 - 000000000 ____D C:\Users\asier\AppData\Local\Yandex
2025-04-01 11:29 - 2025-04-01 11:29 - 000280625 _____ C:\Users\asier\Documents\entradas_21529446.pdf
2025-03-13 09:44 - 2025-03-13 09:44 - 000000000 ___HD C:\$WinREAgent

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2025-04-03 18:10 - 2024-05-01 16:04 - 000000001 _____ C:\Windows\vgkbootstatus.dat
2025-04-03 18:10 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-04-03 18:02 - 2023-11-28 21:08 - 000000000 ____D C:\Windows\system32\SleepStudy
2025-04-03 16:08 - 2023-11-28 21:21 - 001773382 _____ C:\Windows\system32\PerfStringBackup.INI
2025-04-03 16:08 - 2019-12-07 16:55 - 000788510 _____ C:\Windows\system32\perfh00A.dat
2025-04-03 16:08 - 2019-12-07 16:55 - 000155898 _____ C:\Windows\system32\perfc00A.dat
2025-04-03 16:08 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2025-04-03 16:02 - 2023-12-23 19:08 - 000000000 ____D C:\Users\asier\AppData\Local\CrashDumps
2025-04-03 16:01 - 2023-12-13 20:49 - 000001607 _____ C:\Windows\system32\config\VSMIDK
2025-04-03 16:01 - 2023-11-28 21:21 - 000000000 ____D C:\ProgramData\NVIDIA
2025-04-03 16:01 - 2023-11-28 21:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2025-04-03 16:01 - 2021-04-28 02:11 - 000008192 ___SH C:\DumpStack.log.tmp
2025-04-03 16:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState
2025-04-03 16:01 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI
2025-04-03 15:56 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2025-04-03 09:15 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-04-03 09:15 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2025-04-02 18:05 - 2023-11-29 18:48 - 000000000 ____D C:\Users\asier\AppData\Roaming\Blitz
2025-04-02 17:08 - 2024-02-23 17:30 - 000000000 ____D C:\Users\asier\AppData\Roaming\riot-client-ux
2025-04-02 17:08 - 2023-11-29 18:48 - 000000032 _____ C:\Users\asier\AppData\Roaming\.machineId
2025-04-02 17:08 - 2023-11-28 22:08 - 000000000 ____D C:\ProgramData\Riot Games
2025-04-02 08:19 - 2023-11-28 21:31 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-04-02 08:19 - 2023-05-05 14:24 - 000000000 ____D C:\Windows\SystemTemp
2025-04-01 18:44 - 2024-09-13 11:33 - 134222904 _____ C:\Windows\392667600.dat
2025-04-01 13:21 - 2025-02-06 10:06 - 000003576 _____ C:\Windows\system32\Tasks\OneDrive Startup Task-S-1-5-21-3457603053-2513319760-2250614245-1001
2025-04-01 13:21 - 2023-11-28 21:22 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3457603053-2513319760-2250614245-1001
2025-04-01 13:21 - 2023-11-28 21:22 - 000003380 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3457603053-2513319760-2250614245-1001
2025-04-01 13:21 - 2023-11-28 21:18 - 000002417 _____ C:\Users\asier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-04-01 07:59 - 2023-11-28 21:08 - 000000000 ____D C:\Windows\system32\Drivers\wd
2025-03-31 18:11 - 2024-04-06 16:56 - 000000000 ____D C:\Users\asier\Desktop\Miyoo
2025-03-31 13:28 - 2023-11-28 21:20 - 000000000 ____D C:\Users\asier\AppData\Local\D3DSCache
2025-03-31 07:50 - 2023-11-28 21:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2025-03-31 07:48 - 2024-05-01 16:00 - 000000000 ____D C:\Program Files\Riot Vanguard
2025-03-28 18:35 - 2023-11-28 21:20 - 000000000 ____D C:\Users\asier\AppData\Local\Packages
2025-03-28 09:21 - 2023-11-28 21:08 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-03-20 09:13 - 2023-12-26 10:55 - 002897472 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll
2025-03-20 09:13 - 2023-12-26 10:55 - 000788008 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll
2025-03-20 09:13 - 2023-12-26 10:55 - 000267816 _____ (Microsoft Corporation) C:\Windows\system32\gamelaunchhelper.dll
2025-03-20 09:13 - 2023-12-26 10:55 - 000243264 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll
2025-03-20 09:13 - 2023-12-26 10:55 - 000153152 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll
2025-03-20 09:13 - 2023-12-26 10:55 - 000124480 _____ (Microsoft Corporation) C:\Windows\system32\xgamehelper.exe
2025-03-20 09:13 - 2023-12-26 10:55 - 000075304 _____ (Microsoft Corporation) C:\Windows\system32\xgamecontrol.exe
2025-03-13 18:42 - 2023-11-28 21:08 - 000269576 _____ C:\Windows\system32\FNTCACHE.DAT
2025-03-13 18:41 - 2023-11-28 21:21 - 000000000 ___SD C:\Windows\system32\lxss
2025-03-13 18:41 - 2019-12-07 16:58 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2025-03-13 18:41 - 2019-12-07 16:56 - 000000000 ____D C:\Windows\system32\OpenSSH
2025-03-13 18:41 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2025-03-13 18:41 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2025-03-13 18:41 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2025-03-13 18:41 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2025-03-13 18:41 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2025-03-13 18:41 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences
2025-03-13 18:41 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2025-03-13 18:41 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\servicing
2025-03-13 09:51 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2025-03-13 09:48 - 2023-11-28 21:10 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2025-03-10 09:18 - 2023-11-28 21:08 - 000003708 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2025-03-10 09:18 - 2023-11-28 21:08 - 000003584 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore

==================== Archivos en la raíz de algunos directorios ========

2023-11-29 18:48 - 2025-04-02 17:08 - 000000032 _____ () C:\Users\asier\AppData\Roaming\.machineId
2024-12-30 21:36 - 2024-12-30 21:36 - 000000218 _____ () C:\Users\asier\AppData\Local\recently-used.xbel
2023-12-01 22:56 - 2023-12-01 22:56 - 000026564 _____ () C:\Users\asier\AppData\Local\TempTemporary.wav

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)

==================== Final de FRST.txt ========================

Addition

Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 01-04-2025
Ejecutado por asier (03-04-2025 18:13:57)
Ejecutado desde C:\Users\asier\Desktop
Microsoft Windows 10 Pro Versión 22H2 19045.5608 (X64) (2023-11-28 19:15:03)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================

(Si una entrada es incluida en el fixlist, será eliminada.)

Administrador (S-1-5-21-3457603053-2513319760-2250614245-500 - Administrator - Disabled)
asier (S-1-5-21-3457603053-2513319760-2250614245-1001 - Administrator - Enabled) => C:\Users\asier
DefaultAccount (S-1-5-21-3457603053-2513319760-2250614245-503 - Limited - Disabled)
Invitado (S-1-5-21-3457603053-2513319760-2250614245-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3457603053-2513319760-2250614245-504 - Limited - Disabled)

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Malwarebytes (Disabled - Up to date) {0D452135-A081-B000-D6B6-132E52638543}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

7-Zip 23.01 (x64) (HKLM\...\7-Zip) (Version: 23.01 - Igor Pavlov)
Ableton Live 11 Intro (HKLM\...\{A57A41B5-973D-4071-B244-888401308897}) (Version: 11.0.0.0 - Ableton) Hidden
Ableton Live 11 Intro (HKLM-x32\...\{5c1b845d-5afe-4d79-ba0b-f5e8184c0704}) (Version: 11.0.0.0 - Ableton)
Ableton Push Driver v5.57.0 (HKLM\...\{2143CAA3-2BA4-4073-93D1-E440A65F42CD}) (Version: 5.57.0 - Ableton) Hidden
Ace Stream Media 3.2.8 (HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\AceStream) (Version: 3.2.8 - Ace Stream Media) <==== ATENCIÓN
Blitz (HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\153f8ce0-b97a-575b-ba12-4ff8b1481894) (Version: 2.1.286 - Blitz, Inc.)
calibre 64bit (HKLM\...\{72C7B39E-49F7-465C-9642-DCE91975BBE9}) (Version: 7.23.0 - Kovid Goyal)
Composer - PHP Dependency Manager (HKLM-x32\...\{7315AF68-E777-496A-A6A2-4763A98ED35A}_is1) (Version:  - getcomposer.org)
darktable (HKLM\...\darktable) (Version: 5.0.0 - the darktable project)
Diablo (HKLM-x32\...\1412601690_is1) (Version: 1.09 Hellfire v2 - GOG.com)
Discord (HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\Discord) (Version: 1.0.9025 - Discord Inc.)
Docker Desktop (HKLM\...\Docker Desktop) (Version: 4.26.0 - Docker Inc.)
Epic Games Launcher (HKLM-x32\...\{FA06BD44-6ED1-42D5-963C-D5B165C4D892}) (Version: 1.3.93.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{57A956AB-4BCC-45C6-9B40-957E4E125568}) (Version: 2.0.44.0 - Epic Games, Inc.)
Focusrite Audio Drivers 4.119.3.167 (HKLM\...\Focusrite Audio Drivers_is1) (Version: 4.119.3.167 - Focusrite Audio Engineering, Ltd.)
Git (HKLM\...\Git_is1) (Version: 2.43.0 - The Git Development Community)
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: 2.0.80.33 - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 134.0.6998.179 - Google LLC)
GP-200 (HKLM\...\GP-200) (Version: 1.4.0 - Valeton, Inc.)
Guitar Pro 5.2 (HKLM-x32\...\Guitar Pro 5_is1) (Version:  - Arobas Music)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\Riot Game league_of_legends.live) (Version:  - Riot Games, Inc)
Malwarebytes version 5.2.8.173 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.2.8.173 - Malwarebytes)
Microsoft .NET Host - 6.0.26 (x64) (HKLM\...\{87EBA554-A002-4EF4-A612-4FFD06092B5B}) (Version: 48.104.7000 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.26 (x64) (HKLM\...\{D81A418F-966D-4069-B3E8-5EE4843CA862}) (Version: 48.104.7000 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.26 (x64) (HKLM\...\{1A02C1B1-05BB-49F7-9DFF-99A66C6877FC}) (Version: 48.104.7000 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 134.0.3124.93 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\OneDriveSetup.exe) (Version: 25.041.0303.0002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.40.33810 (HKLM-x32\...\{5af95fd8-a22e-458f-acee-c61bd787178e}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.40.33810 (HKLM-x32\...\{47109d57-d746-4f8b-9618-ed6a17cc922b}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.40.33810 (HKLM\...\{59CED48F-EBFE-480C-8A38-FC079C2BEC0F}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.40.33810 (HKLM\...\{B8B3BB4A-A10D-4F51-91B7-A64FFAC31EA7}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.40.33810 (HKLM-x32\...\{5EA6C998-D5AC-4ED9-89C3-9F25B17CCD3D}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.40.33810 (HKLM-x32\...\{0C3457A0-3DCE-4A33-BEF0-9B528C557771}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual Studio Code (User) (HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.89.1 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 6.0.26 (x64) (HKLM\...\{1F0EB53C-BE30-436A-BC54-FA364227A870}) (Version: 48.104.6996 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.26 (x64) (HKLM-x32\...\{b2476903-b8da-4dcc-903f-378730bb4c48}) (Version: 6.0.26.33205 - Microsoft Corporation)
MPluginManager versión 01.10 (HKLM\...\{C1AF678B-36F6-48F3-964D-41610AACE13B}_is1) (Version: 01.10 - MeldaProduction)
Natural Docs 2.3 (HKLM-x32\...\{9B0AE68B-B320-434D-B32F-D6FEA72AF532}) (Version: 2.3.0 - Code Clear LLC)
New York L 1926 Lite version 1.0.5 (HKLM\...\New York L 1926 Lite_is1) (Version: 1.0.5 - Boz Digital Labs)
Node.js (HKLM\...\{50123E3C-0D04-4986-A5C8-3B3A11028673}) (Version: 21.6.1 - Node.js Foundation)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 8.6.7 - Notepad++ Team)
Notion 3.1.1 (HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\661f0cc6-343a-59cb-a5e8-8f6324cc6998) (Version: 3.1.1 - Notion Labs, Inc)
NVIDIA Controlador de gráficos 560.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 560.94 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 30.1.2 - OBS Project)
Plex Media Server 1.40.5.8921 (x64) (HKLM\...\{688e1d8f-188e-49cd-83ca-2669a7e3f8cc}_is1) (Version: 1.40.5.8921 - Plex, Inc.)
Postman x86_64 11.1.14 (HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\Postman) (Version: 11.1.14 - Postman)
Python 3.12.2 (64-bit) (HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\{b6178a40-1665-4565-b73e-48dd6e039a65}) (Version: 3.12.2150.0 - Python Software Foundation)
Python 3.12.2 Core Interpreter (64-bit) (HKLM\...\{4534F2ED-1616-434D-98A6-0DA358DCD466}) (Version: 3.12.2150.0 - Python Software Foundation) Hidden
Python 3.12.2 Development Libraries (64-bit) (HKLM\...\{F131E2DD-B8C5-42F3-85B7-3D4BAC9582CD}) (Version: 3.12.2150.0 - Python Software Foundation) Hidden
Python 3.12.2 Documentation (64-bit) (HKLM\...\{BD32BDE9-835D-4013-8F9A-45FF11456F02}) (Version: 3.12.2150.0 - Python Software Foundation) Hidden
Python 3.12.2 Executables (64-bit) (HKLM\...\{097D2A37-E94B-4FAD-8C89-D63443BD4D4A}) (Version: 3.12.2150.0 - Python Software Foundation) Hidden
Python 3.12.2 pip Bootstrap (64-bit) (HKLM\...\{BDE73EDC-76AE-475D-8885-9B583631B0FC}) (Version: 3.12.2150.0 - Python Software Foundation) Hidden
Python 3.12.2 Standard Library (64-bit) (HKLM\...\{E172CAF3-ABC7-4B62-BA8C-3A2472DE44F6}) (Version: 3.12.2150.0 - Python Software Foundation) Hidden
Python 3.12.2 Tcl/Tk Support (64-bit) (HKLM\...\{B50C92E9-2780-433A-AA61-E9F06D0AFF8A}) (Version: 3.12.2150.0 - Python Software Foundation) Hidden
Python 3.12.2 Test Suite (64-bit) (HKLM\...\{94087C99-E4F5-4637-A789-3B6059DF787B}) (Version: 3.12.2150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{3B36061E-A25F-4E12-BFD1-68E724723D48}) (Version: 3.12.2150.0 - Python Software Foundation)
qBittorrent (HKLM-x32\...\qBittorrent) (Version: 4.6.2 - The qBittorrent project)
Razer Synapse (HKLM-x32\...\Razer Synapse) (Version: 3.10.0315.031117 - Razer Inc.)
REAPER (x64) (HKLM\...\REAPER) (Version: 7.22 - Cockos Incorporated)
Riot Client  (HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\Riot Game Riot_Client.) (Version:  - Riot Games, Inc)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version:  - Riot Games, Inc.)
SD Card Formatter (HKLM-x32\...\{685D9469-D3C5-44CD-944D-0336A30D97FE}) (Version: 5.0.3 - SD Association)
SourceTree (HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\SourceTree) (Version: 3.4.15 - Atlassian)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stremio versión 5.0.1 (HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\{DD3870DA-AF3C-4C73-B010-72944AB610C6}_is1) (Version: 5.0.1 - Smart Code OOD)
TuxGuitar (HKLM-x32\...\TuxGuitar 1.5.6) (Version: 1.5.6 - TuxGuitar)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
Valeton USB Audio Device Driver v5.41.3 (HKLM\...\{30C7ECBC-52D5-4CA0-AECF-D32989592252}) (Version: 5.41.3 - Valeton)
Vortex (HKLM\...\57979c68-f490-55b8-8fed-8b017a5af2fe) (Version: 1.10.8 - Black Tree Gaming Ltd.)
WebView2 Runtime de Microsoft Edge (HKLM-x32\...\Microsoft EdgeWebView) (Version: 134.0.3124.93 - Microsoft Corporation) Hidden
Windows Subsystem for Linux (HKLM\...\{B65C3390-98CD-4624-B0CC-F44416BDF6A3}) (Version: 2.0.14.0 - Microsoft Corporation)
XAMPP (HKLM\...\xampp) (Version: 8.2.12-0 - Apache Friends)

Packages:
=========
Dead By Daylight -> C:\Program Files\WindowsApps\BehaviourInteractive.DeadbyDaylightWindows_8.5.200.0_x64__b1gz2xhdanwfm [2025-03-21] (Behaviour Interactive)
Minecraft for Windows -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.21.7101.0_x64__8wekyb3d8bbwe [2025-03-31] (Microsoft Studios)
Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_2.2.2.0_x64__8wekyb3d8bbwe [2025-02-19] (Microsoft Studios)
Minecraft: Java Edition -> C:\Program Files\WindowsApps\Microsoft.MinecraftJavaEdition_1.0.5.0_x64__8wekyb3d8bbwe [2024-09-03] (Microsoft Studios)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_7.0.8.0_neutral__mcm4njqhnhss8 [2025-02-11] (Netflix, Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.967.0_x64__56jybvy8sckqj [2024-12-26] (NVIDIA Corp.)
Pantalla inalámbrica Microsoft -> C:\Program Files\WindowsApps\Microsoft.SurfaceWirelessDisplayAdapter_4.232.137.0_x64__8wekyb3d8bbwe [2024-11-17] (Microsoft Corporation) [Startup Task]
Password Manager SafeInCloud -> C:\Program Files\WindowsApps\51041SafeInCloud.PasswordManagerSafeInCloud_24.14.1.0_x86__wh7zearnzvtm6 [2024-11-17] (Andrey Shcherbakov) [Startup Task]
Prime Video for Windows -> C:\Program Files\WindowsApps\AmazonVideo.PrimeVideo_1.0.173.0_x64__pwbj9vvecjh7j [2025-03-26] (Amazon Development Centre (London) Ltd)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.38.277.0_x64__dt26b99r8h8gj [2024-09-03] (Realtek Semiconductor Corp)
Sea of Thieves -> C:\Program Files\WindowsApps\Microsoft.SeaofThieves_2.138.1387.0_x64__8wekyb3d8bbwe [2025-03-21] (Microsoft Studios)
Slay The Spire -> C:\Program Files\WindowsApps\HumbleBundle.SlayTheSpire_2.4.0.0_x86__q2mcdwmzx4qja [2024-09-03] (Humble Bundle)
Spotify: música y pódcasts -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.260.564.0_x64__zpdnekdrzrea0 [2025-03-28] (Spotify AB) [Startup Task]
Stardew Valley -> C:\Program Files\WindowsApps\ConcernedApe.StardewValleyPC_1.6.60015.0_x64__0c8vynj4cqe4e [2025-03-21] (ConcernedApe)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

CustomCLSID: HKU\S-1-5-21-3457603053-2513319760-2250614245-1001_Classes\CLSID\{BEA218D2-6950-497B-9434-61683EC065FE}\InprocServer32 -> C:\Users\asier\AppData\Local\Programs\Python\Launcher\pyshellext.amd64.dll (Python Software Foundation -> Python Software Foundation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-06-20] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2025-04-03] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-06-20] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\nvshext.dll [2024-09-15] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-06-20] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2025-04-03] (Malwarebytes Inc. -> Malwarebytes)

==================== Codecs (Lista blanca) ====================

==================== Accesos directos & WMI ========================

(Las entradas pueden ser listadas para ser restauradas o eliminadas.)

ShortcutWithArgument: C:\Users\asier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Google Keep  notas y listas.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=hmjkmjkepdijhoojdojkdfohbdgmmhki

==================== Módulos cargados (Lista blanca) =============

2023-11-29 21:06 - 2023-06-20 10:00 - 000101376 _____ (Igor Pavlov) [Archivo no firmado] C:\Program Files\7-Zip\7-zip.dll

==================== Alternate Data Streams (Lista blanca) ========

(Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.)

AlternateDataStreams: C:\Windows\tracing:? [16]
AlternateDataStreams: C:\ProgramData\mntemp:8EAD8B3507 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini:B1DA6C571C [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Docker Desktop.lnk:CBB8C4555E [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk:BE32D07BC5 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk:159ADC9AA1 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plex Media Server.lnk:A4E18C6AEC [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WSL.lnk:E1AB424631 [3442]

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Asociación (Lista blanca) =================

==================== Internet Explorer (Lista blanca) =============


==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2019-12-07 11:14 - 2023-12-13 21:28 - 000001085 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1	www.asier.org
192.168.1.131 host.docker.internal
192.168.1.131 gateway.docker.internal
127.0.0.1 kubernetes.docker.internal

2023-12-13 20:59 - 2024-02-04 20:36 - 000000442 _____ C:\Windows\system32\drivers\etc\hosts.ics
172.21.96.1 DESKTOP-LV6HL6C.mshome.net # 2029 2 5 2 18 36 9 320

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Razer Chroma SDK\bin;C:\Program Files\Razer Chroma SDK\bin;C:\Program Files (x86)\Razer\ChromaBroadcast\bin;C:\Program Files\Razer\ChromaBroadcast\bin;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\Docker\Docker\resources\bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\WindowsApps;E:\xampp\php;C:\ProgramData\ComposerSetup\bin;C:\Program Files\Calibre2\;C:\Program Files\Git\cmd;C:\Program Files\nodejs\;C:\Program Files\dotnet\
HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img13.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall de Windows está habilitado.

Network Binding:
=============
Ethernet 2: Realtek Gaming 2.5GbE Family Controller #2 -> rt640x64.sys

vms_vsf: Filtro de extensión del conmutador virtual de Hyper-V
ms_vfpext: Microsoft Azure VFP Switch Extension
vms_vsp: Protocolo de extensión del conmutador virtual de Hyper-V

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_65D608756315D3D26C4944115B9602E9"
HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\StartupApproved\Run: => "RiotClient"
HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\StartupApproved\Run: => "com.blitz.app"
HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\StartupApproved\Run: => "Docker Desktop"
HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\StartupApproved\Run: => "AceStream"
HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\StartupApproved\Run: => "Plex Media Server"

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{9EDD6A23-4DAB-4B45-A9D9-7E4F6A799808}] => (Allow) E:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{5E19A4A7-D059-40E6-86B8-D945389B14DA}] => (Allow) E:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{5A06D9F5-0AC5-4A7A-996D-8A7B2FE0BCB6}] => (Allow) E:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{467D7EFC-BFBB-4A3E-BCC8-A335DFE6336F}] => (Allow) E:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{72A76EF6-3B18-4477-826E-19E268CA688F}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta Software GmbH -> )
FirewallRules: [{65D829A8-70D6-438D-B28B-C5AF859E7827}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta Software GmbH -> )
FirewallRules: [{2BDD1DAD-EB2D-4454-BF74-AE718051B94C}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Phasmophobia\Phasmophobia.exe () [Archivo no firmado]
FirewallRules: [{41FC5F59-838C-416C-819E-2CEF2BF06FA0}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Phasmophobia\Phasmophobia.exe () [Archivo no firmado]
FirewallRules: [TCP Query User{63B0EB6B-73FD-47FB-8563-A14EE5FF9626}E:\xampp\apache\bin\httpd.exe] => (Allow) E:\xampp\apache\bin\httpd.exe => Ningún archivo
FirewallRules: [UDP Query User{72F831CC-2471-4919-9C1D-E9016EC086BB}E:\xampp\apache\bin\httpd.exe] => (Allow) E:\xampp\apache\bin\httpd.exe => Ningún archivo
FirewallRules: [TCP Query User{F86D1059-AE48-45FF-9703-C2F11B1F95B3}E:\xampp\mysql\bin\mysqld.exe] => (Allow) E:\xampp\mysql\bin\mysqld.exe => Ningún archivo
FirewallRules: [UDP Query User{082A6942-D94D-4B2C-BCFE-35FBD699B68E}E:\xampp\mysql\bin\mysqld.exe] => (Allow) E:\xampp\mysql\bin\mysqld.exe => Ningún archivo
FirewallRules: [TCP Query User{4D87F23E-FBE9-4991-B21A-E13D763338C6}C:\program files\docker\docker\resources\com.docker.backend.exe] => (Allow) C:\program files\docker\docker\resources\com.docker.backend.exe (Docker Inc -> Docker Inc.)
FirewallRules: [UDP Query User{93434946-1A2E-457C-ACB2-3C0C79F4B3BF}C:\program files\docker\docker\resources\com.docker.backend.exe] => (Allow) C:\program files\docker\docker\resources\com.docker.backend.exe (Docker Inc -> Docker Inc.)
FirewallRules: [TCP Query User{024018FB-B39F-46BD-B817-E7E60EC50EC7}E:\programdata\ableton\live 11 trial\program\ableton live 11 trial.exe] => (Allow) E:\programdata\ableton\live 11 trial\program\ableton live 11 trial.exe => Ningún archivo
FirewallRules: [UDP Query User{B9617A20-F62D-4FAC-BCB6-6FE21F2B634D}E:\programdata\ableton\live 11 trial\program\ableton live 11 trial.exe] => (Allow) E:\programdata\ableton\live 11 trial\program\ableton live 11 trial.exe => Ningún archivo
FirewallRules: [{4B3F1FC3-CC65-460A-ABF1-F60E42F92200}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\The Hex\TheHex.exe () [Archivo no firmado]
FirewallRules: [{72A827FE-0F28-46B1-B43F-EB73C26E760B}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\The Hex\TheHex.exe () [Archivo no firmado]
FirewallRules: [{126BAAAB-4E06-46AB-B003-AD98EFEA475C}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Pony Island\PonyIsland.exe () [Archivo no firmado]
FirewallRules: [{C2191BF2-734A-43D6-8CDC-28B5C74973AD}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Pony Island\PonyIsland.exe () [Archivo no firmado]
FirewallRules: [TCP Query User{7B2CE495-E3B2-4411-9444-DD6E108C268A}C:\users\asier\appdata\local\postman\app-10.21.0\postman.exe] => (Allow) C:\users\asier\appdata\local\postman\app-10.21.0\postman.exe => Ningún archivo
FirewallRules: [UDP Query User{F3068A25-C2D9-4D3B-814E-ADFDF62AE5D0}C:\users\asier\appdata\local\postman\app-10.21.0\postman.exe] => (Allow) C:\users\asier\appdata\local\postman\app-10.21.0\postman.exe => Ningún archivo
FirewallRules: [{3704049C-AAD1-4C3E-8851-CA3D048EA47A}] => (Allow) E:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Archivo no firmado]
FirewallRules: [{3EF102BD-5386-48C0-A922-A0579E1C2BD0}] => (Allow) E:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Archivo no firmado]
FirewallRules: [TCP Query User{FF20E50B-BD60-4293-BD5F-E166B1A0EB79}E:\games\baldurs gate 3\bin\bg3.exe] => (Allow) E:\games\baldurs gate 3\bin\bg3.exe => Ningún archivo
FirewallRules: [UDP Query User{B06877C9-F23A-4DCD-9D0B-92B9F756332B}E:\games\baldurs gate 3\bin\bg3.exe] => (Allow) E:\games\baldurs gate 3\bin\bg3.exe => Ningún archivo
FirewallRules: [TCP Query User{8FE2D2EA-75F8-4C87-A92C-0AEC60AD9FB0}E:\riot games\riot client\riotclientelectron\riot client.exe] => (Allow) E:\riot games\riot client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{13AE3535-151F-46D9-9E48-F9238E248541}E:\riot games\riot client\riotclientelectron\riot client.exe] => (Allow) E:\riot games\riot client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [TCP Query User{BBEEFC54-D7BC-44CA-81A7-030AC06B9848}E:\programdata\ableton\live 11 intro\program\ableton live 11 intro.exe] => (Allow) E:\programdata\ableton\live 11 intro\program\ableton live 11 intro.exe (Ableton AG -> Ableton)
FirewallRules: [UDP Query User{C38EFE4B-C31E-4165-AF18-4C102DEE0124}E:\programdata\ableton\live 11 intro\program\ableton live 11 intro.exe] => (Allow) E:\programdata\ableton\live 11 intro\program\ableton live 11 intro.exe (Ableton AG -> Ableton)
FirewallRules: [TCP Query User{9EB06568-DCBE-45D0-B4B7-E9FEA2520DA9}C:\xboxgames\dead by daylight\content\deadbydaylight\binaries\wingdk\deadbydaylight-wingdk-shipping.exe] => (Allow) C:\xboxgames\dead by daylight\content\deadbydaylight\binaries\wingdk\deadbydaylight-wingdk-shipping.exe (Acceso Denegado)  [Archivo no firmado?]
FirewallRules: [UDP Query User{64B5DA2F-9EA8-4229-8BC6-A649355812C5}C:\xboxgames\dead by daylight\content\deadbydaylight\binaries\wingdk\deadbydaylight-wingdk-shipping.exe] => (Allow) C:\xboxgames\dead by daylight\content\deadbydaylight\binaries\wingdk\deadbydaylight-wingdk-shipping.exe (Acceso Denegado)  [Archivo no firmado?]
FirewallRules: [TCP Query User{2B394E2C-5DB4-45C8-9C8B-CA4454AD06D7}C:\users\asier\appdata\local\programs\blitz\blitz.exe] => (Allow) C:\users\asier\appdata\local\programs\blitz\blitz.exe (Swift Media Entertainment, Inc. -> Blitz, Inc.)
FirewallRules: [UDP Query User{CD0E8751-E024-4F75-92CF-D0079688D9DA}C:\users\asier\appdata\local\programs\blitz\blitz.exe] => (Allow) C:\users\asier\appdata\local\programs\blitz\blitz.exe (Swift Media Entertainment, Inc. -> Blitz, Inc.)
FirewallRules: [TCP Query User{ED22B7A6-EB11-4A73-A1AF-7ADA065F140E}E:\program files (x86)\diablo iv\diablo iv.exe] => (Allow) E:\program files (x86)\diablo iv\diablo iv.exe => Ningún archivo
FirewallRules: [UDP Query User{5179FCB0-3D76-48A5-B694-0D270BDD2641}E:\program files (x86)\diablo iv\diablo iv.exe] => (Allow) E:\program files (x86)\diablo iv\diablo iv.exe => Ningún archivo
FirewallRules: [{65F9D6EB-E3A9-4DFF-9F64-C3FDA856B54F}] => (Allow) E:\GOG Games\Diablo\Diablo.exe (GOG Sp. z o.o. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{20DBB44B-64C0-4CB4-B3B3-9AB9D8D5B205}E:\xboxgames\stardew valley\content\stardew valley.exe] => (Allow) E:\xboxgames\stardew valley\content\stardew valley.exe (Acceso Denegado)  [Archivo no firmado?]
FirewallRules: [UDP Query User{8F86DDC9-86FE-4C3B-8211-299AF808D79F}E:\xboxgames\stardew valley\content\stardew valley.exe] => (Allow) E:\xboxgames\stardew valley\content\stardew valley.exe (Acceso Denegado)  [Archivo no firmado?]
FirewallRules: [TCP Query User{D6749911-9C77-4A46-85F2-88529D8E68DE}E:\xboxgames\fallout 76\content\project76_gamepass.exe] => (Allow) E:\xboxgames\fallout 76\content\project76_gamepass.exe => Ningún archivo
FirewallRules: [UDP Query User{AAC197D3-8AFE-47DE-B0C2-B5068ABA1AB9}E:\xboxgames\fallout 76\content\project76_gamepass.exe] => (Allow) E:\xboxgames\fallout 76\content\project76_gamepass.exe => Ningún archivo
FirewallRules: [TCP Query User{E506DDEE-8C53-4579-B1F3-BF08F9642F13}E:\program files (x86)\battle.net\battle.net.exe] => (Allow) E:\program files (x86)\battle.net\battle.net.exe => Ningún archivo
FirewallRules: [UDP Query User{43A5891F-2330-485D-A1C6-75A80BA82C4E}E:\program files (x86)\battle.net\battle.net.exe] => (Allow) E:\program files (x86)\battle.net\battle.net.exe => Ningún archivo
FirewallRules: [TCP Query User{5700CEAA-0590-4C25-96BC-5EE47FDDEAE3}E:\wpsystem\s-1-5-21-3457603053-2513319760-2250614245-1001\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe] => (Allow) E:\wpsystem\s-1-5-21-3457603053-2513319760-2250614245-1001\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe
FirewallRules: [UDP Query User{3472C76A-8AFA-4A2E-87E3-F384F52839E1}E:\wpsystem\s-1-5-21-3457603053-2513319760-2250614245-1001\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe] => (Allow) E:\wpsystem\s-1-5-21-3457603053-2513319760-2250614245-1001\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe
FirewallRules: [TCP Query User{5B965E9F-8E91-43D2-A160-23F564D5DB77}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Archivo no firmado]
FirewallRules: [UDP Query User{423E5219-3D3A-446E-8388-029572AEC59E}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Archivo no firmado]
FirewallRules: [TCP Query User{7FCD6536-9CD9-4EF5-8928-28886861A8E0}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe (MariaDB Corporation Ab -> )
FirewallRules: [UDP Query User{D986AEE9-ED85-4E6C-A487-5DF951CF09A3}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe (MariaDB Corporation Ab -> )
FirewallRules: [TCP Query User{3A7E1743-C84F-4CDD-BBC9-9F1F07B600E9}C:\users\asier\appdata\local\postman\app-10.22.0\postman.exe] => (Allow) C:\users\asier\appdata\local\postman\app-10.22.0\postman.exe => Ningún archivo
FirewallRules: [UDP Query User{596934DC-21F3-441A-B624-8F5E81ED6E4F}C:\users\asier\appdata\local\postman\app-10.22.0\postman.exe] => (Allow) C:\users\asier\appdata\local\postman\app-10.22.0\postman.exe => Ningún archivo
FirewallRules: [TCP Query User{4A2F3FC0-5A58-4904-958F-CC16DC643B65}C:\program files\nodejs\node.exe] => (Allow) C:\program files\nodejs\node.exe (OpenJS Foundation -> Node.js)
FirewallRules: [UDP Query User{D53865CC-44E4-4DC8-979C-4B45DA719C6D}C:\program files\nodejs\node.exe] => (Allow) C:\program files\nodejs\node.exe (OpenJS Foundation -> Node.js)
FirewallRules: [TCP Query User{A0A175E2-7B40-4EDC-A0A1-9DBB2A0906BE}C:\users\asier\appdata\local\postman\app-10.24.16\postman.exe] => (Allow) C:\users\asier\appdata\local\postman\app-10.24.16\postman.exe (Postman, Inc. -> Postman)
FirewallRules: [UDP Query User{9A1BAD23-02D1-431B-B030-91A439944357}C:\users\asier\appdata\local\postman\app-10.24.16\postman.exe] => (Allow) C:\users\asier\appdata\local\postman\app-10.24.16\postman.exe (Postman, Inc. -> Postman)
FirewallRules: [TCP Query User{2B578826-B4A6-4E8C-8890-683F47715E59}C:\users\asier\appdata\local\postman\app-11.1.14\postman.exe] => (Allow) C:\users\asier\appdata\local\postman\app-11.1.14\postman.exe (Postman, Inc. -> Postman)
FirewallRules: [UDP Query User{606A7FC6-59C7-47A5-B0F1-B02BF1F00216}C:\users\asier\appdata\local\postman\app-11.1.14\postman.exe] => (Allow) C:\users\asier\appdata\local\postman\app-11.1.14\postman.exe (Postman, Inc. -> Postman)
FirewallRules: [{1D69CC26-4913-4E3E-9A87-94F2F7ADFE44}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\ProjectZomboid\ProjectZomboid64.exe () [Archivo no firmado]
FirewallRules: [{62A9AA48-D3B0-439E-8A2A-8621A22E11C1}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\ProjectZomboid\ProjectZomboid64.exe () [Archivo no firmado]
FirewallRules: [TCP Query User{34604939-0841-4A65-9074-407F21AE7D31}E:\xboxgames\sea of thieves\content\athena\binaries\wingdk\sotgame.exe] => (Allow) E:\xboxgames\sea of thieves\content\athena\binaries\wingdk\sotgame.exe (Acceso Denegado)  [Archivo no firmado?]
FirewallRules: [UDP Query User{9E0B973C-B873-4500-B02A-7A7FB90B221B}E:\xboxgames\sea of thieves\content\athena\binaries\wingdk\sotgame.exe] => (Allow) E:\xboxgames\sea of thieves\content\athena\binaries\wingdk\sotgame.exe (Acceso Denegado)  [Archivo no firmado?]
FirewallRules: [TCP Query User{03962B97-ED79-4727-93CC-5E314EE0ADF9}E:\program files (x86)\steam\steamapps\common\dungeonborne\dungeonborne\binaries\win64\dungeonborne.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\dungeonborne\dungeonborne\binaries\win64\dungeonborne.exe => Ningún archivo
FirewallRules: [UDP Query User{02136E87-DDC0-4532-AE05-31021FD29E71}E:\program files (x86)\steam\steamapps\common\dungeonborne\dungeonborne\binaries\win64\dungeonborne.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\dungeonborne\dungeonborne\binaries\win64\dungeonborne.exe => Ningún archivo
FirewallRules: [TCP Query User{D10A6A66-7D52-4F6B-BC89-FCFF26AD86D3}E:\riot games\riot client\riotclientelectron\riot client.exe] => (Allow) E:\riot games\riot client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{7EC46D2D-6769-4246-9365-B6B0D723F096}E:\riot games\riot client\riotclientelectron\riot client.exe] => (Allow) E:\riot games\riot client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{F7429814-4A30-4667-91A0-8B01DF498D91}] => (Allow) C:\Users\asier\AppData\Roaming\ACEStream\engine\ace_engine.exe (Innovative Digital Technologies, LLC -> Innovative Digital Technologies, LLC)
FirewallRules: [{A50C44DB-BC51-4468-BA73-285CCDFB8606}] => (Allow) C:\Users\asier\AppData\Roaming\ACEStream\engine\ace_engine.exe (Innovative Digital Technologies, LLC -> Innovative Digital Technologies, LLC)
FirewallRules: [{CC222CF7-EE08-4BDB-8C97-A7538AD3A36F}] => (Allow) C:\Program Files\Plex\Plex Media Server\Plex Media Server.exe (Plex, Inc. -> Plex, Inc.)
FirewallRules: [{43FF8F57-038D-4C00-9F20-5C0D5CB45753}] => (Allow) C:\Program Files\Plex\Plex Media Server\PlexScriptHost.exe (Plex, Inc. -> )
FirewallRules: [{C47BDD5D-1640-49D1-B075-07E033DB64DF}] => (Allow) C:\Program Files\Plex\Plex Media Server\Plex DLNA Server.exe (Plex, Inc. -> Plex, Inc.)
FirewallRules: [{9EAEE05C-143D-4FFC-BC30-B2CD05ABA6BE}] => (Allow) C:\Program Files\Plex\Plex Media Server\Plex Tuner Service.exe (Plex, Inc. -> )
FirewallRules: [{9038AD57-73FD-4B0E-BF41-F32EFA91E4E4}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Keep Talking and Nobody Explodes\ktane.exe () [Archivo no firmado]
FirewallRules: [{11878300-625E-4C28-AFDB-1732B2035C27}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Keep Talking and Nobody Explodes\ktane.exe () [Archivo no firmado]
FirewallRules: [TCP Query User{8939C8A9-36C1-42D7-AF82-9ACA29DE809B}C:\users\asier\appdata\local\programs\stremio\stremio-runtime.exe] => (Allow) C:\users\asier\appdata\local\programs\stremio\stremio-runtime.exe (Smart Code OOD -> )
FirewallRules: [UDP Query User{141DAB2A-A3C7-47F5-ADFB-82D2243F9C59}C:\users\asier\appdata\local\programs\stremio\stremio-runtime.exe] => (Allow) C:\users\asier\appdata\local\programs\stremio\stremio-runtime.exe (Smart Code OOD -> )
FirewallRules: [{5B18E4B1-9C84-446A-B24E-58420CA6D1FC}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Ropuka's Idle Island\Ropuka's Idle Island.exe () [Archivo no firmado]
FirewallRules: [{BF7FA7FF-B891-4EF8-B374-EFB3D23F8694}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Ropuka's Idle Island\Ropuka's Idle Island.exe () [Archivo no firmado]
FirewallRules: [{8C34D0CB-FEF2-4D0E-87A7-DBE199990CB8}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\134.0.3124.93\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{92404217-AC80-41F7-9B26-F9796AF5A570}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.260.564.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{146559F8-27A6-443E-B9AE-81B7690DA485}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.260.564.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F2F686BA-3651-4B46-98D4-BCD2D1FF54E5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.260.564.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{09632538-78A6-4343-B2EB-61FDDEC14375}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.260.564.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{774DE8BC-735B-49A2-B186-F08540D0E1AD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.260.564.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{7B18A4DD-DBB6-4512-9C0B-299C906FC64E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.260.564.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B8FC7DC2-541E-462B-9193-DC23BA74AC78}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.260.564.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4205EF07-ECF7-4687-BDAD-80BD37430A5A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.260.564.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{90931B1A-9C51-4571-9783-23905DFA9E18}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.260.564.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B37B2191-FBF0-4C11-9257-417396A9656F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.260.564.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{08F9A32D-F820-4E18-90FC-99FCB4522063}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8F480FEC-B71F-48C5-82BE-79544F1ED83C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7F3928A7-1DE9-4DCB-8F31-8838CF2ABB9A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6F5D28E5-A76D-4460-88A2-5CA467F53021}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{42E5B6C0-7A34-42F4-90C8-52D4573FCF1D}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Puntos de Restauración =========================

31-03-2025 08:16:05 Punto de control programado

==================== Dispositivos defectuosos en el Administrador de dispositivos ============
Name: Dispositivo base del sistema
Description: Dispositivo base del sistema
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (04/03/2025 04:02:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: GalaxyClient Helper.exe, versión: 2.0.80.33, marca de tiempo: 0x671f8d67
Nombre del módulo con errores: ucrtbase.dll, versión: 10.0.19041.3636, marca de tiempo: 0x6763d3a2
Código de excepción: 0xc0000409
Desplazamiento de errores: 0x0009eddb
Identificador del proceso con errores: 0x29c4
Hora de inicio de la aplicación con errores: 0x01dba4a10afd7455
Ruta de acceso de la aplicación con errores: E:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe
Ruta de acceso del módulo con errores: C:\Windows\System32\ucrtbase.dll
Identificador del informe: 161658af-3d2c-4e00-b038-03021ac32e1b
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:

Error: (04/03/2025 09:50:17 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: El optimizador de almacenamiento no pudo completar volver a optimizar en (E:) debido a: El hardware del volumen no admite la operación solicitada. (0x8900002A)

Error: (04/03/2025 09:50:10 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: El optimizador de almacenamiento no pudo completar volver a optimizar en Media (D:) debido a: El hardware del volumen no admite la operación solicitada. (0x8900002A)

Error: (04/03/2025 09:17:30 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: El optimizador de almacenamiento no pudo completar volver a optimizar en (E:) debido a: El hardware del volumen no admite la operación solicitada. (0x8900002A)

Error: (04/03/2025 09:15:03 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: El optimizador de almacenamiento no pudo completar volver a optimizar en Media (D:) debido a: El hardware del volumen no admite la operación solicitada. (0x8900002A)

Error: (04/03/2025 08:24:20 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: GalaxyClient Helper.exe, versión: 2.0.80.33, marca de tiempo: 0x671f8d67
Nombre del módulo con errores: ucrtbase.dll, versión: 10.0.19041.3636, marca de tiempo: 0x6763d3a2
Código de excepción: 0xc0000409
Desplazamiento de errores: 0x0009eddb
Identificador del proceso con errores: 0x24f4
Hora de inicio de la aplicación con errores: 0x01dba461086812d5
Ruta de acceso de la aplicación con errores: E:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe
Ruta de acceso del módulo con errores: C:\Windows\System32\ucrtbase.dll
Identificador del informe: 6870d4dd-c7e8-4c05-88fa-00ebdc824afd
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:

Error: (04/02/2025 05:08:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: Blitz.exe, versión: 2.1.286.6708, marca de tiempo: 0x669ede81
Nombre del módulo con errores: blitz_core.node, versión: 0.0.0.0, marca de tiempo: 0x67d9fb19
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x0000000000048283
Identificador del proceso con errores: 0x2cbc
Hora de inicio de la aplicación con errores: 0x01dba3e106396a44
Ruta de acceso de la aplicación con errores: C:\Users\asier\AppData\Local\Programs\Blitz\Blitz.exe
Ruta de acceso del módulo con errores: \\?\C:\Users\asier\AppData\Roaming\Blitz\blitz-deps\2.1.286\blitz_core.node
Identificador del informe: 5d876e05-64ed-4b49-ad3f-884072eb17d0
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:

Error: (04/02/2025 08:19:31 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: GalaxyClient Helper.exe, versión: 2.0.80.33, marca de tiempo: 0x671f8d67
Nombre del módulo con errores: ucrtbase.dll, versión: 10.0.19041.3636, marca de tiempo: 0x6763d3a2
Código de excepción: 0xc0000409
Desplazamiento de errores: 0x0009eddb
Identificador del proceso con errores: 0x364c
Hora de inicio de la aplicación con errores: 0x01dba39731e39cb6
Ruta de acceso de la aplicación con errores: E:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe
Ruta de acceso del módulo con errores: C:\Windows\System32\ucrtbase.dll
Identificador del informe: f34d0a23-b724-4390-9dab-1f3cc548e4b7
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:


Errores del sistema:
=============
Error: (04/03/2025 04:03:55 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: El servicio Agente de supervisión en tiempo de ejecución de Protección del sistema se cerró con el siguiente error: 
%%3489660935

Error: (04/03/2025 04:03:54 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Servicio de Google Update (gupdate) no pudo iniciarse debido al siguiente error: 
El servicio no respondió a tiempo a la solicitud de inicio o de control.

Error: (04/03/2025 04:03:54 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Servicio de Google Update (gupdate).

Error: (04/03/2025 04:01:11 PM) (Source: Microsoft-Windows-Bits-Client) (EventID: 16392) (User: NT AUTHORITY)
Description: Error al iniciar el servicio BITS. Error 2147500053.

Error: (04/03/2025 03:04:45 PM) (Source: disk) (EventID: 11) (User: )
Description: El controlador detectó un error de controladora en \Device\Harddisk3\DR5.

Error: (04/03/2025 03:04:45 PM) (Source: disk) (EventID: 11) (User: )
Description: El controlador detectó un error de controladora en \Device\Harddisk3\DR5.

Error: (04/03/2025 03:04:45 PM) (Source: disk) (EventID: 11) (User: )
Description: El controlador detectó un error de controladora en \Device\Harddisk3\DR5.

Error: (04/03/2025 03:04:45 PM) (Source: disk) (EventID: 11) (User: )
Description: El controlador detectó un error de controladora en \Device\Harddisk3\DR5.


Windows Defender:
================
Date: 2025-04-03 15:55:38
Description: 
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Full Scan

Date: 2025-04-03 15:41:58
Description: 
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.B!ml&threatid=2147735505&enterprise=0
Name: Trojan:Win32/Wacatac.B!ml
Severity: Severe
Category: Trojan
Path: file:_C:\Users\asier\AppData\Roaming\Microsoft\Windows\Templates\UserProcess\unins000.exe
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: System
Process Name: C:\Windows\System32\svchost.exe
Security intelligence Version: AV: 1.427.31.0, AS: 1.427.31.0, NIS: 1.427.31.0
Engine Version: AM: 1.1.25030.1, NIS: 1.1.25030.1

Date: 2025-04-03 15:41:56
Description: 
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.B!ml&threatid=2147735505&enterprise=0
Name: Trojan:Win32/Wacatac.B!ml
Severity: Severe
Category: Trojan
Path: file:_C:\Users\asier\AppData\Roaming\Microsoft\Windows\Templates\UserProcess\unins000.exe
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: System
Process Name: Unknown
Security intelligence Version: AV: 1.427.31.0, AS: 1.427.31.0, NIS: 1.427.31.0
Engine Version: AM: 1.1.25030.1, NIS: 1.1.25030.1

Date: 2025-04-03 09:14:58
Description: 
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2025-04-02 10:17:38
Description: 
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Event[0]:

Date: 2024-03-10 11:31:03
Description: 
Antivirus de Microsoft Defender has encountered an error trying to update security intelligence.
New security intelligence Version: 
Previous security intelligence Version: 1.407.102.0
Update Source: Centro de protección contra malware de Microsoft
Security intelligence Type: AntiVirus
Update Type: Completa
Current Engine Version: 
Previous Engine Version: 1.1.24020.9
Error code: 0x80072ee7
Error description: No se pudo resolver el nombre de servidor o su dirección 

Date: 2024-03-10 11:31:03
Description: 
Antivirus de Microsoft Defender has encountered an error trying to update security intelligence.
New security intelligence Version: 
Previous security intelligence Version: 1.407.102.0
Update Source: Centro de protección contra malware de Microsoft
Security intelligence Type: AntiSpyware
Update Type: Completa
Current Engine Version: 
Previous Engine Version: 1.1.24020.9
Error code: 0x80072ee7
Error description: No se pudo resolver el nombre de servidor o su dirección 

Date: 2024-03-10 11:31:03
Description: 
Antivirus de Microsoft Defender has encountered an error trying to update security intelligence.
New security intelligence Version: 
Previous security intelligence Version: 1.407.102.0
Update Source: Centro de protección contra malware de Microsoft
Security intelligence Type: AntiVirus
Update Type: Completa
Current Engine Version: 
Previous Engine Version: 1.1.24020.9
Error code: 0x80072ee7
Error description: No se pudo resolver el nombre de servidor o su dirección 

Date: 2024-03-10 11:31:03
Description: 
Antivirus de Microsoft Defender has encountered an error trying to update security intelligence.
New security intelligence Version: 
Previous security intelligence Version: 1.407.102.0
Update Source: Centro de protección contra malware de Microsoft
Security intelligence Type: AntiVirus
Update Type: Completa
Current Engine Version: 
Previous Engine Version: 1.1.24020.9
Error code: 0x80072ee7
Error description: No se pudo resolver el nombre de servidor o su dirección 

Date: 2024-03-10 11:31:03
Description: 
Antivirus de Microsoft Defender has encountered an error trying to update security intelligence.
New security intelligence Version: 
Previous security intelligence Version: 1.407.102.0
Update Source: Centro de protección contra malware de Microsoft
Security intelligence Type: AntiSpyware
Update Type: Completa
Current Engine Version: 
Previous Engine Version: 1.1.24020.9
Error code: 0x80072ee7
Error description: No se pudo resolver el nombre de servidor o su dirección 

CodeIntegrity:
===============
Date: 2025-04-03 16:26:20
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume7\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.


==================== Información de la memoria =========================== 

BIOS: American Megatrends Inc. A.C0 06/09/2022
Placa base: Micro-Star International Co., Ltd. MPG Z490 GAMING PLUS (MS-7C75)
Procesador: Intel(R) Core(TM) i5-10400F CPU @ 2.90GHz
Porcentaje de memoria en uso: 33%
RAM física total: 16305.69 MB
RAM física disponible: 10923.89 MB
Virtual total: 18737.69 MB
Virtual disponible: 12273.54 MB

==================== Unidades ================================

Drive c: () (Fixed) (Total:465.65 GB) (Free:154.05 GB) (Model: KIOXIA-EXCERIA PLUS SSD) NTFS
Drive d: (Media) (Fixed) (Total:465.32 GB) (Free:110.13 GB) (Model: ST500DM002-1BD142) NTFS
Drive e: () (Fixed) (Total:931.5 GB) (Free:455.96 GB) (Model: ST1000DM010-2EP102) NTFS

\\?\Volume{0ae676fb-0000-0000-0000-905474000000}\ () (Fixed) (Total:0.44 GB) (Free:0.07 GB) NTFS
\\?\Volume{6fbf5c5c-54e5-457d-90c0-60206d506af9}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 0AE676FB)
Partition 1: (Not Active) - (Size=465.3 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)

==========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 2 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)

Partition: GPT.

==================== Final de Addition.txt =======================

Hola @AsierInnsmouth

Aun necesitas ayuda?

Saludos

Buenas! Si, todavia sigo con el problema. Un saludo!

Hola @AsierInnsmouth

Realiza lo siguiente

Elimina la extensión Google Docs de edge (Agregar, desactivar o quitar extensiones en Microsoft Edge - Soporte técnico de Microsoft ) y chrome Cómo desinstalar apps o extensiones - Ayuda de Chromebook.

Ahora debes de hacer una COPIA DE SEGURIDAD DEL REGISTRO, para ello:

• Reinicias el ordenador en Modo Normal.

• Descargas DelFix en tu escritorio.

• Doble clic para ejecutarlo. (Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona - Ejecutar como Administrador)

• Marcas solamente la casilla de Create registry backup, el resto te aseguras de que no estén seleccionadas.

• Presionas en Run.

Se abrirá el informe (DelFix.txt), puedes cerrarlo. Pero lo guardas por si en el futuro te lo pido/hace falta.

Seguidamente, CIERRAS TODOS LOS PROGRAMAS, vas a Inicio >> Ejecutar y escribes Notepad.exe

• Ahora debes copiar y pegar los códigos/líneas que están en el interior del recuadro de más abajo, dentro del Notepad.

Start::
SystemRestore: On
CreateRestorePoint:


VirusScan: C:\Program Files\Plex\Plex Media Server\Plex Update Service.exe;C:\Program Files\Focusrite\Drivers\Focusrite Notifier.exe;C:\Users\asier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\metallizations.vbs


HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\Run: [AF_uuid_2139460] => da5435ee-067b-45b3-ae6d-cb0844de48bd (Ningún archivo)
HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\Run: [AF_counter_2139460] => 2 (Ningún archivo)
HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\Run: [GalaxyClient] => [X]

Startup: C:\Users\asier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\metallizations.vbs [2025-04-03] () [Archivo no firmado]
C:\Users\asier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\metallizations.vbs

GroupPolicy: Restricción ? <==== ATENCIÓN
Policies: C:\ProgramData\NTUSER.pol: Restricción <==== ATENCIÓN

S3 NEProtect; \??\E:\Program Files (x86)\Steam\steamapps\common\Once Human\NEProtect.sys [X]

2025-04-03 15:41 - 2025-04-03 15:41 - 000000000 ____D C:\Users\asier\AppData\Local\Yandex

AlternateDataStreams: C:\Windows\tracing:? [16]
AlternateDataStreams: C:\ProgramData\mntemp:8EAD8B3507 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini:B1DA6C571C [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Docker Desktop.lnk:CBB8C4555E [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk:BE32D07BC5 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk:159ADC9AA1 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plex Media Server.lnk:A4E18C6AEC [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WSL.lnk:E1AB424631 [3442]


CMD: DISM /Online /Cleanup-image /Restorehealth
CMD: sfc /scannow
CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
End::

Lo guardas con el nombre de FIXLIST.TXT en tu escritorio (MUY IMPORTANTE). Pues en caso contrario no funcionará el SCRIPT, ambos ficheros (FRST.exe y FIXLIST.TXT ) y deben de estar en la ubicación del ESCRITORIO.

El anterior Script de reparación es personalizado para la máquina en concreto para la cual se fabricó y está hecho específicamente por un miembro del Staff. Si se tiene un problema parecido, por favor abra su propio tema para recibir ayuda personalizada y específica. Utilizar Scripts de otros Sistemas puede causar daños graves en su ordenador.

Finalmente (OJO, en MODO NORMAL):

1. Ejecutas nuevamente FRST.exe (Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona - Ejecutar como Administrador).

2. Presionas sobre Fix/Corregir y esperas a que finalice el proceso. No hagas nada con el PC mientras este realizando dichas reparaciones, incluso si parece ser que se ha quedado colgado. No lo toques y esperas.

3. Cunado finalice, en el ESCRITORIO se creará el fichero FIXLOG.TXT lo traes en tu próxima respuesta.

4. Reinicias el ordenador en Modo Normal compruebas durante un rato el funcionamiento de este y comentas como sigue el problema inicialmente planteado.

Muy Importante Coloca el reporte que te he pedido como se muestra en la siguiente imagen:

report703×272 3.73 KB

Saludos

¡Buenas! Muchísimas gracias por la respuesta. Dejo por aquí el FIXLOG.TXT solicitado. Por el momento parece solucionado el problema, pero tendría que probarlo con un poco más de tiempo a la noche o mañana por la mañana, ya que ahora tengo que salir. ¡Mil millones de gracias!

Resultados de la corrección de Farbar Recovery Scan Tool (x64) Versión: 01-04-2025
Ejecutado por asier (09-04-2025 17:45:46) Run:1
Ejecutado desde C:\Users\asier\Desktop
Perfiles cargados: asier
Modo de Inicio: Normal
==============================================

fixlist contenido:
*****************
Start::
SystemRestore: On
CreateRestorePoint:


VirusScan: C:\Program Files\Plex\Plex Media Server\Plex Update Service.exe;C:\Program Files\Focusrite\Drivers\Focusrite Notifier.exe;C:\Users\asier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\metallizations.vbs


HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\Run: [AF_uuid_2139460] => da5435ee-067b-45b3-ae6d-cb0844de48bd (Ningún archivo)
HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\Run: [AF_counter_2139460] => 2 (Ningún archivo)
HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\...\Run: [GalaxyClient] => [X]

Startup: C:\Users\asier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\metallizations.vbs [2025-04-03] () [Archivo no firmado]
C:\Users\asier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\metallizations.vbs

GroupPolicy: Restricción ? <==== ATENCIÓN
Policies: C:\ProgramData\NTUSER.pol: Restricción <==== ATENCIÓN

S3 NEProtect; \??\E:\Program Files (x86)\Steam\steamapps\common\Once Human\NEProtect.sys [X]

2025-04-03 15:41 - 2025-04-03 15:41 - 000000000 ____D C:\Users\asier\AppData\Local\Yandex

AlternateDataStreams: C:\Windows\tracing:? [16]
AlternateDataStreams: C:\ProgramData\mntemp:8EAD8B3507 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini:B1DA6C571C [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Docker Desktop.lnk:CBB8C4555E [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk:BE32D07BC5 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk:159ADC9AA1 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plex Media Server.lnk:A4E18C6AEC [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WSL.lnk:E1AB424631 [3442]


CMD: DISM /Online /Cleanup-image /Restorehealth
CMD: sfc /scannow
CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
End::
*****************

SystemRestore: On => completado
El punto de restauración fue creado correctamente.
Virusscan: C:\Program Files\Plex\Plex Media Server\Plex Update Service.exe => https://virusscan.jotti.org/filescanjob/mexlht3ebp
Virusscan: C:\Program Files\Focusrite\Drivers\Focusrite Notifier.exe => https://virusscan.jotti.org/filescanjob/jpn4ftpx9t
Virusscan: C:\Users\asier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\metallizations.vbs => https://virusscan.jotti.org/filescanjob/nfd0lp8b8j
"HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\Software\Microsoft\Windows\CurrentVersion\Run\\AF_uuid_2139460" => eliminado correctamente
"HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\Software\Microsoft\Windows\CurrentVersion\Run\\AF_counter_2139460" => eliminado correctamente
"HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\Software\Microsoft\Windows\CurrentVersion\Run\\GalaxyClient" => eliminado correctamente
C:\Users\asier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\metallizations.vbs => movido correctamente
"C:\Users\asier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\metallizations.vbs" => no encontrado

"C:\Windows\system32\GroupPolicy\Machine" Carpeta mover:

C:\Windows\system32\GroupPolicy\Machine => movido correctamente
C:\Windows\system32\GroupPolicy\GPT.ini => movido correctamente
C:\ProgramData\NTUSER.pol => movido correctamente
HKLM\System\CurrentControlSet\Services\NEProtect => eliminado correctamente
NEProtect => servicio eliminado correctamente

"C:\Users\asier\AppData\Local\Yandex" Carpeta mover:

C:\Users\asier\AppData\Local\Yandex => movido correctamente
C:\Windows\tracing => ":?" ADS eliminado correctamente
C:\ProgramData\mntemp => ":8EAD8B3507" ADS eliminado correctamente
C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini => ":B1DA6C571C" ADS eliminado correctamente
C:\ProgramData\Microsoft\Windows\Start Menu\Docker Desktop.lnk => ":CBB8C4555E" ADS eliminado correctamente
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk => ":BE32D07BC5" ADS eliminado correctamente
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk => ":159ADC9AA1" ADS eliminado correctamente
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plex Media Server.lnk => ":A4E18C6AEC" ADS eliminado correctamente
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WSL.lnk => ":E1AB424631" ADS eliminado correctamente

========= DISM /Online /Cleanup-image /Restorehealth =========


Herramienta Administraci¢n y mantenimiento de im genes de implementaci¢n
Versi¢n: 10.0.19041.3636

Versi¢n de imagen: 10.0.19045.5608


[==                         3.8%                           ] 

[==                         4.8%                           ] 

[===                        5.7%                           ] 

[===                        6.7%                           ] 

[====                       7.7%                           ] 

[=====                      8.7%                           ] 

[=====                      9.7%                           ] 

[======                     10.5%                          ] 

[======                     11.5%                          ] 

[=======                    12.5%                          ] 

[=======                    13.4%                          ] 

[========                   14.4%                          ] 

[========                   15.4%                          ] 

[=========                  16.4%                          ] 

[==========                 17.4%                          ] 

[==========                 18.3%                          ] 

[===========                19.3%                          ] 

[===========                20.3%                          ] 

[============               21.3%                          ] 

[============               21.7%                          ] 

[============               21.7%                          ] 

[============               21.8%                          ] 

[============               21.8%                          ] 

[============               21.9%                          ] 

[============               22.0%                          ] 

[=============              22.9%                          ] 

[=============              23.9%                          ] 

[==============             24.9%                          ] 

[===============            25.9%                          ] 

[===============            26.9%                          ] 

[================           27.8%                          ] 

[================           28.8%                          ] 

[=================          29.7%                          ] 

[=================          30.0%                          ] 

[=================          30.6%                          ] 

[=================          31.0%                          ] 

[==================         31.2%                          ] 

[==================         32.2%                          ] 

[===================        33.1%                          ] 

[===================        34.1%                          ] 

[====================       35.1%                          ] 

[====================       36.1%                          ] 

[=====================      37.1%                          ] 

[======================     38.0%                          ] 

[======================     39.0%                          ] 

[=======================    40.0%                          ] 

[=======================    40.5%                          ] 

[=======================    41.4%                          ] 

[========================   41.7%                          ] 

[========================   41.7%                          ] 

[========================   42.3%                          ] 

[========================   42.4%                          ] 

[=========================  43.3%                          ] 

[=========================  44.0%                          ] 

[=========================  44.5%                          ] 

[========================== 45.1%                          ] 

[========================== 45.5%                          ] 

[========================== 46.0%                          ] 

[========================== 46.2%                          ] 

[========================== 46.4%                          ] 

[===========================46.6%                          ] 

[===========================46.7%                          ] 

[===========================46.9%                          ] 

[===========================47.3%                          ] 

[===========================48.1%                          ] 

[===========================48.2%                          ] 

[===========================48.9%                          ] 

[===========================49.9%                          ] 

[===========================50.8%                          ] 

[===========================51.8%                          ] 

[===========================52.8%                          ] 

[===========================53.7%                          ] 

[===========================54.7%                          ] 

[===========================54.9%                          ] 

[===========================54.9%                          ] 

[===========================54.9%                          ] 

[===========================55.1%                          ] 

[===========================55.2%                          ] 

[===========================55.2%                          ] 

[===========================55.3%                          ] 

[===========================55.3%                          ] 

[===========================55.4%                          ] 

[===========================55.5%                          ] 

[===========================55.5%                          ] 

[===========================55.6%                          ] 

[===========================55.7%                          ] 

[===========================55.8%                          ] 

[===========================55.9%                          ] 

[===========================56.1%                          ] 

[===========================56.1%                          ] 

[===========================56.2%                          ] 

[===========================56.2%                          ] 

[===========================56.4%                          ] 

[===========================56.5%                          ] 

[===========================56.5%                          ] 

[===========================56.6%                          ] 

[===========================56.7%                          ] 

[===========================56.7%                          ] 

[===========================56.8%                          ] 

[===========================56.8%                          ] 

[===========================56.8%                          ] 

[===========================56.9%=                         ] 

[===========================57.0%=                         ] 

[===========================57.1%=                         ] 

[===========================57.1%=                         ] 

[===========================57.2%=                         ] 

[===========================57.4%=                         ] 

[===========================57.6%=                         ] 

[===========================57.7%=                         ] 

[===========================57.7%=                         ] 

[===========================57.8%=                         ] 

[===========================58.0%=                         ] 

[===========================58.0%=                         ] 

[===========================58.1%=                         ] 

[===========================58.1%=                         ] 

[===========================58.5%=                         ] 

[===========================59.5%==                        ] 

[===========================62.3%====                      ] 

[===========================84.9%=================         ] 

[===========================92.5%=====================     ] 

[==========================100.0%==========================] 
La operaci¢n de restauraci¢n finaliz¢ correctamente.
La operaci¢n se complet¢ correctamente.


========= Final de CMD: =========


========= sfc /scannow =========



Iniciando examen en el sistema. Este proceso tardará algún tiempo.




Está pendiente una reparación del sistema que requiere reiniciar para completarse. Reinicie Windows y vuelva a ejecutar sfc.



========= Final de CMD: =========


========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.


========= Final de CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows

No se puede realizar ninguna operaci¢n en Conexi¢n de red Bluetooth mientras los medios
est‚n desconectados.

Adaptador de Ethernet Ethernet 2:

   Sufijo DNS espec¡fico para la conexi¢n. . : home
   Direcci¢n IPv6 . . . . . . . . . . : fd8a:d8cf:76b9:3513:a883:bbf2:6479:cb15
   Direcci¢n IPv6 temporal. . . . . . : fd8a:d8cf:76b9:3513:d58a:7d95:42fa:55cb
   V¡nculo: direcci¢n IPv6 local. . . : fe80::8bf2:1474:a6b6:97bd%5
   Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.1.131
   M scara de subred . . . . . . . . . . . . : 255.255.255.0
   Puerta de enlace predeterminada . . . . . : 192.168.1.1

Adaptador de Ethernet Conexi¢n de red Bluetooth:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 


========= Final de CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.

0 out of 0 jobs canceled.


========= Final de CMD: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.



========= Final de CMD: =========


========= netsh advfirewall reset =========

Aceptar



========= Final de CMD: =========


========= netsh advfirewall set allprofiles state ON =========

Aceptar



========= Final de CMD: =========


========= netsh int ipv4 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.



========= Final de CMD: =========


========= netsh int ipv6 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.



========= Final de CMD: =========


========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-21-3457603053-2513319760-2250614245-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente


========= Final de RemoveProxy: =========

C:\Windows\System32\Drivers\etc\hosts => movido correctamente
Hosts restaurado correctamente.

=========== EmptyTemp: ==========

FlushDNS => completado
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 459080980 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 1048583542 B
Windows/system/drivers => 4227447 B
Edge => 0 B
Chrome => 4128406062 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 1027371 B
LocalService => 1043603 B
NetworkService => 1442875 B
asier => 701270794 B

RecycleBin => 0 B
EmptyTemp: => 5.9 GB datos temporales eliminados.

================================


El sistema necesita reiniciarse.

==== Final de Fixlog 17:50:42 ====

Hola @AsierInnsmouth

Prueba el equipo y luego me comentas para dar el tema por solucionado

Saludos

@AsierInnsmouth

Como sigue todo

Saludos

Buenos días!

Perdona, que estos días no he podido entrar por aquí. Tras haberlo probado no he vuelto a percibir nada, así que lo daría por solucionado. Muchísimas gracias, de verdad!

Un saludo

Hola @AsierInnsmouth

Por ultimo, vamos a eliminar las herramientas utilizadas.

Descarga KrPm

• Ejecútala, acepta el declaimer.
• Asegurate de que solo esten marcadas las opciones:
  • Delete Tools/ Eliminar herramientas
  • Delete now/Eliminar ahora (área de eliminar cuarentenas).
• Presiona en Run / Ejecutar

Gracias por confiar en InfoSpyware | Ayuda e información de Malwares en español.

Te invito a leer algunas noticias del mundo del software Recientes Foro de News - ForoSpyware

Y también a responder una encuesta que hice recientemente [Encuesta] Que versión de Windows utilizas - Bienvenidos - ForoSpyware

Un placer ayudarte

Saludos

Buenas!

Todo realizado, muchas gracias de nuevo!

Un saludo

Este tema se cerró automáticamente 2 días después de la última publicación. No se permiten nuevas respuestas.