Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 05-04-2020
Ejecutado por javier (10-04-2020 00:11:56)
Ejecutado desde C:\Users\javie\Desktop
Windows 10 Home Versión 1909 18363.720 (X64) (2020-01-22 19:12:12)
Modo de Inicio: Normal
==========================================================
==================== Cuentas: =============================
Administrador (S-1-5-21-3503952492-1416054308-399170389-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3503952492-1416054308-399170389-503 - Limited - Disabled)
Invitado (S-1-5-21-3503952492-1416054308-399170389-501 - Limited - Disabled)
javier (S-1-5-21-3503952492-1416054308-399170389-1001 - Administrator - Enabled) => C:\Users\javie
WDAGUtilityAccount (S-1-5-21-3503952492-1416054308-399170389-504 - Limited - Disabled)
==================== Centro de Seguridad ========================
(Si una entrada es incluida en el fixlist, será eliminada.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas instalados ======================
(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)
µTorrent (HKU\S-1-5-21-3503952492-1416054308-399170389-1001\...\uTorrent) (Version: 3.5.5.45449 - BitTorrent Inc.)
µTorrent (HKU\S-1-5-21-3503952492-1416054308-399170389-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092020111646478\...\uTorrent) (Version: 3.5.5.45449 - BitTorrent Inc.)
µTorrent (HKU\S-1-5-21-3503952492-1416054308-399170389-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092020111650958\...\uTorrent) (Version: 3.5.5.45449 - BitTorrent Inc.)
4K Video Downloader 4.10 (HKLM\...\{A730612F-DC69-4EEC-AB92-0366346D9CCD}) (Version: 4.10.1.3240 - Open Media LLC)
Ace Stream Media 3.1.1 (HKU\S-1-5-21-3503952492-1416054308-399170389-1001\...\AceStream) (Version: 3.1.1 - Ace Stream Media) <==== ATENCIÓN
Ace Stream Media 3.1.1 (HKU\S-1-5-21-3503952492-1416054308-399170389-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092020111646478\...\AceStream) (Version: 3.1.1 - Ace Stream Media) <==== ATENCIÓN
Ace Stream Media 3.1.1 (HKU\S-1-5-21-3503952492-1416054308-399170389-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092020111650958\...\AceStream) (Version: 3.1.1 - Ace Stream Media) <==== ATENCIÓN
Actualización de NVIDIA 38.0.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.4.0 - NVIDIA Corporation) Hidden
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 20.006.20042 - Adobe Systems Incorporated)
Adobe After Effects 2019 (HKLM-x32\...\AEFT_16_1) (Version: 16.1 - Adobe Systems Incorporated)
Adobe Lightroom (HKLM-x32\...\LRCC_3_1) (Version: 3.1 - Adobe Systems Incorporated)
Adobe Premiere Pro 2020 (HKLM-x32\...\PPRO_14_0_1) (Version: 14.0.1 - Adobe Systems Incorporated)
Adobe Premiere Rush (HKLM-x32\...\RUSH_1_2_8) (Version: 1.2.8 - Adobe Systems Incorporated)
Anki (HKLM-x32\...\Anki) (Version: 2.1.19 - )
Battery Calibration (HKLM-x32\...\{634AC01E-49DB-4AD2-B87C-90D4DCC6AFA1}) (Version: 1.0.1609.1901 - Micro-Star International Co., Ltd.) Hidden
Battery Calibration (HKLM-x32\...\InstallShield_{634AC01E-49DB-4AD2-B87C-90D4DCC6AFA1}) (Version: 1.0.1609.1901 - Micro-Star International Co., Ltd.)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.74.1086 - AB Team, d.o.o.)
calibre (HKLM-x32\...\{87CE002F-33CD-4C3A-95CA-6EC98DC1A6C3}) (Version: 0.9.21 - Kovid Goyal)
CCleaner (HKLM\...\CCleaner) (Version: 5.63 - Piriform)
Dragon Center (HKLM-x32\...\{C65B26BC-5A6F-4135-9678-55A877655471}) (Version: 1.2.1705.3101 - Micro-Star International Co., Ltd.) Hidden
Dragon Center (HKLM-x32\...\InstallShield_{C65B26BC-5A6F-4135-9678-55A877655471}) (Version: 1.2.1705.3101 - Micro-Star International Co., Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 81.0.4044.92 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Help Desk (HKLM-x32\...\{7E8181AF-9679-49B3-B133-C265709B6927}) (Version: 1.0.1610.3101 - Micro-Star International Co., Ltd.) Hidden
Help Desk (HKLM-x32\...\InstallShield_{7E8181AF-9679-49B3-B133-C265709B6927}) (Version: 1.0.1610.3101 - Micro-Star International Co., Ltd.)
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 24.20.100.6286 - Intel Corporation)
League of Legends (HKU\S-1-5-21-3503952492-1416054308-399170389-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
League of Legends (HKU\S-1-5-21-3503952492-1416054308-399170389-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092020111646478\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
League of Legends (HKU\S-1-5-21-3503952492-1416054308-399170389-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092020111650958\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProPlusRetail - en-us) (Version: 16.0.12624.20382 - Microsoft Corporation)
Microsoft OneDrive (HKLM-x32\...\OneDriveSetup.exe) (Version: 19.232.1124.0010 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 18.151.0729.0013 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.15.26706 (HKLM-x32\...\{95ac1cfa-f4fb-4d1b-8912-7f9d5fbb140d}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM-x32\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
MSI Remind Manager (HKLM-x32\...\{3E23F267-3E35-40F9-B6BF-BC034D214717}) (Version: 1.0.1608.1001 - Micro-Star International Co., Ltd.) Hidden
MSI Remind Manager (HKLM-x32\...\InstallShield_{3E23F267-3E35-40F9-B6BF-BC034D214717}) (Version: 1.0.1608.1001 - Micro-Star International Co., Ltd.)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA Controlador de gráficos 445.75 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 445.75 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.20.2.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.2.34 - NVIDIA Corporation)
NVIDIA Software del sistema PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12624.20320 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12624.20320 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12624.20382 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.12624.20320 - Microsoft Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8328 - Realtek Semiconductor Corp.)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-3503952492-1416054308-399170389-1001\...\ZoomUMX) (Version: 4.6 - Zoom Video Communications, Inc.)
Zoom (HKU\S-1-5-21-3503952492-1416054308-399170389-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092020111646478\...\ZoomUMX) (Version: 4.6 - Zoom Video Communications, Inc.)
Zoom (HKU\S-1-5-21-3503952492-1416054308-399170389-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092020111650958\...\ZoomUMX) (Version: 4.6 - Zoom Video Communications, Inc.)
Packages:
=========
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_6.5.9.0_x86__kgqvnymyfvs32 [2020-04-08] (king.com)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12105.12.48001.0_x64__nzyj5cx40ttqa [2020-04-10] (Apple Inc.) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-04-08] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-04-08] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.6.1224.0_x64__8wekyb3d8bbwe [2020-04-10] (Microsoft Studios) [MS Ad]
MSN El Tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-04-08] (Microsoft Corporation) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.956.0_x64__56jybvy8sckqj [2020-04-08] (NVIDIA Corp.)
SynMsiDApp -> C:\Program Files\WindowsApps\SynapticsIncorporated.SynMsiDApp_19005.31005.0.0_x64__807d65c4rvak2 [2020-04-08] (Synaptics Incorporated)
==================== Personalizado CLSID (Lista blanca): ==============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6722448 2010-03-25] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll [2020-03-22] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll [2020-03-22] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll [2020-03-22] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll [2020-03-22] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll [2020-03-22] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll [2020-03-22] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll [2020-03-22] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll [2020-03-22] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll [2020-03-22] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll [2020-03-22] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll [2020-03-22] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll [2020-03-22] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll [2020-03-22] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll [2020-03-22] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll [2020-03-22] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> Ningún archivo
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> Ningún archivo
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Ningún archivo
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> Ningún archivo
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll [2020-03-22] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> Ningún archivo
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Ningún archivo
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll [2020-03-22] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Ningún archivo
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_2f24486b42920c1d\igfxDTCM.dll [2018-08-28] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_bc0b9ab04b159ad8\nvshext.dll [2020-03-19] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Ningún archivo
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Ningún archivo
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll [2020-03-22] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll [2020-03-22] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll [2020-03-22] (Microsoft Corporation -> Microsoft Corporation)
==================== Codecs (Lista blanca) ====================
==================== Accesos directos & WMI ========================
==================== Módulos cargados (Lista blanca) =============
2015-06-11 20:35 - 2015-06-11 20:35 - 000047816 _____ (MICRO-STAR INTERNATIONAL CO., LTD -> www.internals.com) [Archivo no firmado] C:\Program Files (x86)\MSI\Dragon Center\WinIo64.dll
==================== Alternate Data Streams (Lista blanca) ========
==================== Modo Seguro (Lista blanca) ==================
==================== Asociación (Lista blanca) =================
==================== Internet Explorer sitios de confianza/restringidos ==========
==================== Hosts contenido: =========================
(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)
2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Otras Áreas ===========================
(Actualmente no existe una corrección automática para esta sección.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> %INTEL_DEV_REDIST%redist\intel64\compiler;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\Calibre2\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092020111643845\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092020111650036\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092020111652873\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092020111645491\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092020111650408\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092020111653314\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-3503952492-1416054308-399170389-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-21-3503952492-1416054308-399170389-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092020111646478\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-21-3503952492-1416054308-399170389-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092020111650958\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: El medio no está conectado a internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Firewall de Windows está habilitado.
==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==
(Si una entrada es incluida en el fixlist, será eliminada.)
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKU\S-1-5-21-3503952492-1416054308-399170389-1001\...\StartupApproved\Run: => "utweb"
HKU\S-1-5-21-3503952492-1416054308-399170389-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-3503952492-1416054308-399170389-1001\...\StartupApproved\Run: => "CCXProcess"
HKU\S-1-5-21-3503952492-1416054308-399170389-1001\...\StartupApproved\Run: => "AceStream"
HKU\S-1-5-21-3503952492-1416054308-399170389-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-3503952492-1416054308-399170389-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092020111646478\...\StartupApproved\Run: => "utweb"
HKU\S-1-5-21-3503952492-1416054308-399170389-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092020111646478\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-3503952492-1416054308-399170389-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092020111646478\...\StartupApproved\Run: => "CCXProcess"
HKU\S-1-5-21-3503952492-1416054308-399170389-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092020111646478\...\StartupApproved\Run: => "AceStream"
HKU\S-1-5-21-3503952492-1416054308-399170389-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092020111646478\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-3503952492-1416054308-399170389-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092020111650958\...\StartupApproved\Run: => "utweb"
HKU\S-1-5-21-3503952492-1416054308-399170389-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092020111650958\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-3503952492-1416054308-399170389-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092020111650958\...\StartupApproved\Run: => "CCXProcess"
HKU\S-1-5-21-3503952492-1416054308-399170389-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092020111650958\...\StartupApproved\Run: => "AceStream"
HKU\S-1-5-21-3503952492-1416054308-399170389-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04092020111650958\...\StartupApproved\Run: => "uTorrent"
==================== Reglas de firewall (Lista blanca) ================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
FirewallRules: [TCP Query User{C1A2DB23-8090-4779-8F22-AA86E590061A}C:\riot games\league of legends\game\league of legends.exe] => (Allow) C:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{D573F359-D7B1-4984-AB1A-8FCD4EB3E447}C:\riot games\league of legends\game\league of legends.exe] => (Allow) C:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{5518DFA2-1FFB-4DBA-9264-5D9F6437958B}] => (Allow) C:\Users\javie\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{82F22F77-FA36-4956-B4D7-06F8FBA1EF6A}] => (Allow) C:\Users\javie\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{7FC27B61-CBB3-4138-A875-E663E314379E}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6153D9A9-34D0-4BF6-BB62-D3B452A94443}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7C53DE15-36AF-47A2-AB14-CE248A9D9F76}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{83DFB7CE-D0A2-4DEC-9849-C848E74F03DF}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3DA341FB-A0DC-4689-8AB2-DD189AD7F83B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B448196C-9E27-4B3D-8EE3-ACEF00AECE97}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CCB7B6F6-5E80-4D31-9884-7D706FA04EC0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{7E8CE86B-3D4F-4919-A69B-FC388A938A2A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CABB1AC3-C865-44BB-89B4-603DFEAC7A50}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{ACE68F21-B6BA-4412-803D-3BCEE635DA9D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{82558CA9-9DE3-4082-9804-ECE4E6F5AE49}C:\users\javie\appdata\roaming\acestream\engine\ace_engine.exe] => (Allow) C:\users\javie\appdata\roaming\acestream\engine\ace_engine.exe (Innovative Digital Technologies -> )
FirewallRules: [UDP Query User{E9490067-0EDD-406A-B0D3-4BFF503E5BF0}C:\users\javie\appdata\roaming\acestream\engine\ace_engine.exe] => (Allow) C:\users\javie\appdata\roaming\acestream\engine\ace_engine.exe (Innovative Digital Technologies -> )
FirewallRules: [{95BDC0D9-52FB-4971-B0AE-A49D8AEEC12A}] => (Allow) C:\Users\javie\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{C776C8A9-3D08-49AB-8DB4-2DD7FEEFBD9C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{65FA6E53-7ADC-4B8D-8F1C-67579B15F209}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E7E13FE9-08DA-4EA6-B6E5-72CD69560ED3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12105.12.48001.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{872E3666-74E0-4BB0-BAE4-03FEECAA432F}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12105.12.48001.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5AA3949F-A0FE-491F-AB0D-2292EAB56765}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12105.12.48001.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{89B6DC5A-F0BA-409C-85A9-14252E9EDF86}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12105.12.48001.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0A6C1C25-310E-4ADE-8FBA-98F10A338D46}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12105.12.48001.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B9B279F8-F33C-4CE7-8F5D-448698B7039B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12105.12.48001.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9A1E9961-B788-4309-A5D6-EF0FCAEBCE66}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12105.12.48001.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2F78854E-1456-46FE-9F92-64AE062BF54C}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12105.12.48001.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
==================== Puntos de Restauración =========================
05-04-2020 15:12:40 Punto de control programado
08-04-2020 12:06:38 Operación de restauración
==================== Dispositivos defectuosos en el Administrador de dispositivos ============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Errores del registro de eventos: ========================
Errores de aplicación:
==================
Error: (04/10/2020 12:02:33 AM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center no pudo validar al autor de la llamada con el error %1.
Error: (04/09/2020 11:35:43 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: NVDisplay.Container.exe, versión: 1.25.2802.9499, marca de tiempo: 0x5e4ff156
Nombre del módulo con errores: AppXDeploymentClient.dll, versión: 10.0.18362.719, marca de tiempo: 0x84d6f8f6
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x0000000000012ddd
Identificador del proceso con errores: 0xe68
Hora de inicio de la aplicación con errores: 0x01d60e4f7ce4cc7e
Ruta de acceso de la aplicación con errores: C:\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_c99bc438b267d31e\Display.NvContainer\NVDisplay.Container.exe
Ruta de acceso del módulo con errores: C:\Windows\System32\AppXDeploymentClient.dll
Identificador del informe: ab86564c-f54e-4085-b411-9da0d23707a5
Nombre completo del paquete con errores:
Identificador de aplicación relativa del paquete con errores:
Error: (04/08/2020 11:38:20 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina CoCreateInstance. HR = 0x8007045b, Se está cerrando el sistema.
.
Error: (04/08/2020 11:38:20 PM) (Source: VSS) (EventID: 13) (User: )
Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} y el nombre CEventSystem no puede iniciarse. [0x8007045b, Se está cerrando el sistema.
]
Error: (04/08/2020 09:07:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: anki.exe, versión: 0.0.0.0, marca de tiempo: 0x5d24a2c1
Nombre del módulo con errores: CoreMessaging.dll, versión: 10.0.18362.1, marca de tiempo: 0x101a45b8
Código de excepción: 0xc0000602
Desplazamiento de errores: 0x0000000000067616
Identificador del proceso con errores: 0x2b00
Hora de inicio de la aplicación con errores: 0x01d60dd8c8625c21
Ruta de acceso de la aplicación con errores: C:\Program Files\Anki\anki.exe
Ruta de acceso del módulo con errores: C:\Windows\System32\CoreMessaging.dll
Identificador del informe: 5c0f8733-4a32-4247-8db5-bf47fad80583
Nombre completo del paquete con errores:
Identificador de aplicación relativa del paquete con errores:
Error: (04/08/2020 07:14:03 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina CoCreateInstance. HR = 0x8007045b, Se está cerrando el sistema.
.
Error: (04/08/2020 07:14:03 PM) (Source: VSS) (EventID: 13) (User: )
Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} y el nombre CEventSystem no puede iniciarse. [0x8007045b, Se está cerrando el sistema.
]
Error: (04/08/2020 07:14:03 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina CoCreateInstance. HR = 0x8007045b, Se está cerrando el sistema.
.
Errores del sistema:
=============
Error: (04/09/2020 11:57:24 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80073d02: 9NMPJ99VJBWV-Microsoft.YourPhone.
Error: (04/09/2020 04:21:28 PM) (Source: TPM) (EventID: 15) (User: )
Description: El controlador de dispositivo para el Módulo de plataforma segura (TPM) encontró en el hardware de TPM un error irrecuperable que impide que se usen los servicios de TPM (como el cifrado de datos). Para obtener más ayuda, póngase en contacto con el fabricante del equipo.
Error: (04/09/2020 11:35:38 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio NVIDIA LocalSystem Container terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 6000 milisegundos: Reiniciar el servicio.
Error: (04/09/2020 11:35:38 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: El servicio NVIDIA LocalSystem Container se cerró con el siguiente error:
Un ejecutable de comandos genéricos devolvió un resultado que indica un error.
Error: (04/09/2020 11:15:33 AM) (Source: TPM) (EventID: 15) (User: NT AUTHORITY)
Description: El controlador de dispositivo para el Módulo de plataforma segura (TPM) encontró en el hardware de TPM un error irrecuperable que impide que se usen los servicios de TPM (como el cifrado de datos). Para obtener más ayuda, póngase en contacto con el fabricante del equipo.
Error: (04/09/2020 11:16:00 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: El cierre anterior del sistema a las 11:13:21 del 09/04/2020 resultó inesperado.
Error: (04/09/2020 11:14:21 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la respuesta de transacción del servicio BFE.
Error: (04/09/2020 11:13:51 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la respuesta de transacción del servicio BFE.
Windows Defender:
===================================
Date: 2020-04-08 13:58:33.195
Description:
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {FF1FBB08-D949-4828-A5A0-0C167F0B04FA}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM
Date: 2020-04-08 14:19:12.878
Description:
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:JS/Denali.A!ml&threatid=2147742223&enterprise=0
Nombre: Trojan:JS/Denali.A!ml
Id.: 2147742223
Gravedad: Grave
Categoría: Caballo de Troya
Ruta de acceso: file:_C:\Users\javie\AppData\Roaming\Lr.worker.dll
Origen de detección: Equipo local
Tipo de detección: FastPath
Origen de detección: Protección en tiempo real
Usuario: DESKTOP-DDRBOLI\javier
Nombre de proceso: C:\Windows\System32\wscript.exe
Versión de inteligencia de seguridad: AV: 1.313.1037.0, AS: 1.313.1037.0, NIS: 1.313.1037.0
Versión de motor: AM: 1.1.16900.4, NIS: 1.1.16900.4
Date: 2020-04-08 14:08:35.492
Description:
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0
Nombre: HackTool:Win32/AutoKMS
Id.: 2147685180
Gravedad: Alta
Categoría: Herramienta
Ruta de acceso: file:_C:\Users\javie\AppData\Local\Temp\KMSAuto\SppExtComObjHook.dll
Origen de detección: Equipo local
Tipo de detección: Concreto
Origen de detección: Protección en tiempo real
Usuario: DESKTOP-DDRBOLI\javier
Nombre de proceso: C:\Windows\System32\cmd.exe
Versión de inteligencia de seguridad: AV: 1.313.946.0, AS: 1.313.946.0, NIS: 1.313.946.0
Versión de motor: AM: 1.1.16900.4, NIS: 1.1.16900.4
Date: 2020-04-08 14:08:28.060
Description:
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0
Nombre: HackTool:Win32/AutoKMS
Id.: 2147685180
Gravedad: Alta
Categoría: Herramienta
Ruta de acceso: file:_C:\Users\javie\AppData\Local\Temp\KMSAuto\SppExtComObjHook.dll
Origen de detección: Equipo local
Tipo de detección: Concreto
Origen de detección: Protección en tiempo real
Usuario: DESKTOP-DDRBOLI\javier
Nombre de proceso: C:\Users\javie\AppData\Local\Temp\SppPatcher_x64.dat
Versión de inteligencia de seguridad: AV: 1.313.946.0, AS: 1.313.946.0, NIS: 1.313.946.0
Versión de motor: AM: 1.1.16900.4, NIS: 1.1.16900.4
Date: 2020-04-08 08:35:00.026
Description:
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:O97M/Mountsi.D!ml&threatid=2147740682&enterprise=0
Nombre: Trojan:O97M/Mountsi.D!ml
Id.: 2147740682
Gravedad: Grave
Categoría: Caballo de Troya
Ruta de acceso: amsi:_C:\Windows\System32\wscript.exe
Origen de detección: Desconocido
Tipo de detección: FastPath
Origen de detección: AMSI
Usuario: DESKTOP-DDRBOLI\javier
Nombre de proceso: C:\Windows\System32\wscript.exe
Versión de inteligencia de seguridad: AV: 1.313.946.0, AS: 1.313.946.0, NIS: 1.313.946.0
Versión de motor: AM: 1.1.16900.4, NIS: 1.1.16900.4
Date: 2020-04-10 00:12:55.637
Description:
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad:
Versión anterior de inteligencia de seguridad: 1.313.1037.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor:
Versión anterior del motor: 1.1.16900.4
Código de error: 0x80240438
Descripción del error: Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulte Ayuda y soporte técnico.
Date: 2020-04-08 19:14:03.774
Description:
La característica Protección en tiempo real de Antivirus de Windows Defender encontró un error:
Característica: Sistema de inspección de red
Código de error: 0x8007045b
Descripción del error: Se está cerrando el sistema.
Motivo: El sistema no tiene las actualizaciones necesarias para ejecutar el Sistema de inspección de red. Instala las actualizaciones requeridas y reinicia el dispositivo.
Date: 2020-04-08 13:57:59.025
Description:
Antivirus de Windows Defender encontró un error al intentar cargar la inteligencia de seguridad e intentará revertir a una versión que sepa que es correcta.
Inteligencia de seguridad intentada: Actual
Código de error: 0x80070003
Descripción del error: El sistema no puede encontrar la ruta especificada.
Versión de inteligencia de seguridad: 0.0.0.0;0.0.0.0
Versión del motor: 0.0.0.0
==================== Información de la memoria ===========================
BIOS: American Megatrends Inc. E16J9IMS.310 02/23/2017
Placa base: Micro-Star International Co., Ltd. MS-16J9
Procesador: Intel(R) Core(TM) i7-7700HQ CPU @ 2.80GHz
Porcentaje de memoria en uso: 25%
RAM física total: 16298.93 MB
RAM física disponible: 12190.57 MB
Virtual total: 18730.93 MB
Virtual disponible: 13145.71 MB
==================== Unidades ================================
Drive c: () (Fixed) (Total:921.51 GB) (Free:668.62 GB) NTFS
Drive e: () (Fixed) (Total:237.98 GB) (Free:226.92 GB) NTFS
Drive f: () (Fixed) (Total:10 GB) (Free:8.98 GB) NTFS
\\?\Volume{a5d69057-0000-0000-0000-100000000000}\ (Reservado para el sistema) (Fixed) (Total:0.49 GB) (Free:0.17 GB) NTFS
==================== MBR & Tabla de particiones ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 238.5 GB) (Disk ID: A5D69057)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=238 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 931.5 GB) (Disk ID: 0CB5CC8E)
Partition 1: (Active) - (Size=921.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=10 GB) - (Type=07 NTFS)
==================== Final de Addition.txt =======================