Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 13-09-2021 Ejecutado por PEPE (13-09-2021 14:53:11) Ejecutado desde C:\Users\davau\Downloads Windows 10 Home Versión 21H1 19043.1202 (X64) (2021-09-06 15:44:49) Modo de Inicio: Normal ========================================================== ==================== Cuentas: ============================= (Si una entrada es incluida en el fixlist, será eliminada.) Administrador (S-1-5-21-1073182029-1482883918-227264295-500 - Administrator - Disabled) davau_zvyv66y (S-1-5-21-1073182029-1482883918-227264295-1004 - Limited - Disabled) DefaultAccount (S-1-5-21-1073182029-1482883918-227264295-503 - Limited - Disabled) Invitado (S-1-5-21-1073182029-1482883918-227264295-501 - Limited - Disabled) PEPE (S-1-5-21-1073182029-1482883918-227264295-1001 - Administrator - Enabled) => C:\Users\davau WDAGUtilityAccount (S-1-5-21-1073182029-1482883918-227264295-504 - Limited - Disabled) ==================== Centro de Seguridad ======================== (Si una entrada es incluida en el fixlist, será eliminada.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Kaspersky Total Security (Enabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Kaspersky Total Security (Enabled) {774D7037-0984-41B0-3A87-5E88E680AD58} ==================== Programas instalados ====================== (Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.) Ace Stream Media 3.1.32 (HKU\S-1-5-21-1073182029-1482883918-227264295-1001\...\AceStream) (Version: 3.1.32 - Ace Stream Media) <==== ATENCIÓN Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Energy Star (HKLM\...\{5CB22648-35F8-41BC-9C35-1E41FE6E12A5}) (Version: 1.1.1 - HP Inc.) Epson Event Manager (HKLM-x32\...\{9F205E94-9E42-4486-A92A-DF3F6CB85444}) (Version: 3.10.0061 - Seiko Epson Corporation) Epson FAX Utility (HKLM-x32\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 3.22.00 - Seiko Epson Corporation) Epson PC-FAX Driver (HKLM-x32\...\EPSON PC-FAX Driver 2) (Version: - Seiko Epson Corporation) EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation) Epson Software Updater (HKLM-x32\...\{28C66F35-69BF-4376-BC80-4D5F4808FF3C}) (Version: 4.6.1 - Seiko Epson Corporation) EPSON WF-2630 Series Printer Uninstall (HKLM\...\EPSON WF-2630 Series) (Version: - SEIKO EPSON Corporation) EpsonNet Print (HKLM\...\{96ED1D58-440C-4345-8FEE-C4781366C67F}) (Version: 3.1.4.0 - SEIKO EPSON Corporation) Foxit PDF Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 11.0.1.49938 - Foxit Software Inc.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 93.0.4577.63 - Google LLC) HP Audio Switch (HKLM-x32\...\{BC852AA8-58F6-4F07-ACB1-7377E52CA4F3}) (Version: 1.0.150.0 - HP Inc.) HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.9.0 - HP Inc.) HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.) HP ePrint SW (HKLM-x32\...\{cdb5f70f-5107-4613-bf69-15de903b5b5d}) (Version: 5.5.22560 - HP Inc.) HP JumpStart Apps (HKLM-x32\...\HP JumpStart Apps) (Version: 7.0.32 - HP Inc.) HP JumpStart Bridge (HKLM-x32\...\{3FC961DB-BD36-4D8D-B276-0C456A2BB638}) (Version: 1.4.0.441 - HP Inc.) HP JumpStart Launch (HKLM-x32\...\{F213102E-FD30-4E22-AF73-4C682D65FFEE}) (Version: 1.4.441.0 - HP Inc.) HP Support Assistant (HKLM-x32\...\{4AAC4B07-77EF-4BCF-88DC-D24E4DE683E8}) (Version: 8.5.37.19 - HP Inc.) HP Support Solutions Framework (HKLM-x32\...\{B7053964-E2C7-4BA9-84DE-D3A98B5FBA24}) (Version: 12.8.37.11 - HP Inc.) HP System Event Utility (HKLM-x32\...\{4B0A7A8A-ECE5-4639-9A0D-C535F354313D}) (Version: 1.4.26 - HP Inc.) HP Wireless Button Driver (HKLM-x32\...\{2EC9AB64-3ACA-460D-B309-0A7052B0C8C0}) (Version: 1.1.21.1 - HP) Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.3.10205.4743 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1043 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 22.20.16.4815 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.7.0.1014 - Intel Corporation) Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.715.0 - Intel Corporation) Hidden Intel(R) Trusted Connect Services Client (HKLM-x32\...\{2b32b7d0-4f9f-47c8-adb7-807e6cb2fb75}) (Version: 1.47.715.0 - Intel Corporation) Hidden Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000010-0200-1034-84C8-B8D95FA3C8C3}) (Version: 20.10.0 - Intel Corporation) Juegos WildTangent (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.1.1.19 - WildTangent) Kaspersky Password Manager (HKLM-x32\...\{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab) Hidden Kaspersky Password Manager (HKLM-x32\...\InstallWIX_{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab) Kaspersky Total Security (HKLM-x32\...\{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky) Hidden Kaspersky Total Security (HKLM-x32\...\InstallWIX_{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky) Kaspersky VPN (HKLM-x32\...\{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 - Kaspersky) Hidden Kaspersky VPN (HKLM-x32\...\InstallWIX_{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 - Kaspersky) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 93.0.961.47 - Microsoft Corporation) Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.4518.1014 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1073182029-1482883918-227264295-1001\...\OneDriveSetup.exe) (Version: 21.160.0808.0002 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{7B981965-2FBC-433C-B4B3-E183EE97CD29}) (Version: 2.83.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24123 (HKLM-x32\...\{2cbcedbb-f38c-48a3-a3e1-6c6fd821a7f4}) (Version: 14.0.24123.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24123 (HKLM-x32\...\{206898cc-4b41-4d98-ac28-9f9ae57f91fe}) (Version: 14.0.24123.0 - Microsoft Corporation) Mozilla Firefox (x64 es-ES) (HKLM\...\Mozilla Firefox 92.0 (x64 es-ES)) (Version: 92.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 91.0.3 - Mozilla) Mozilla Thunderbird (x64 es-ES) (HKLM\...\Mozilla Thunderbird 91.1.0 (x64 es-ES)) (Version: 91.1.0 - Mozilla) MyEpson Portal (HKLM-x32\...\{3361D415-BA35-4143-B301-661991BA6219}) (Version: 1.1.3.5 - SEIKO EPSON CORPORATION) Hidden MyEpson Portal (HKLM-x32\...\MyEpson Portal) (Version: - Seiko Epson Corporation) Opera Stable 78.0.4093.184 (HKU\S-1-5-21-1073182029-1482883918-227264295-1001\...\Opera 78.0.4093.184) (Version: 78.0.4093.184 - Opera Software) ov2optimizer (HKLM-x32\...\ov2optimizer) (Version: - ) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.15063.31235 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.21.811.2017 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8940.1 - Realtek Semiconductor Corp.) Software Intel® PROSet/Wireless (HKLM-x32\...\{8060a69f-ee27-444b-b126-775f861232ea}) (Version: 20.0.2 - Intel Corporation) Software para dispositivos de chipset Intel® (HKLM-x32\...\{17408817-d415-4768-a160-ae6d46d6bdb0}) (Version: 10.1.1.44 - Intel(R) Corporation) Hidden Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.31.31 - Synaptics Incorporated) Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1) (Version: 1.0.54.1 - LunarG, Inc.) Hidden WildTangent Helper (HKLM-x32\...\{A39303AB-4898-4F12-BAA0-0B8630F86DB4}) (Version: 1.0.0.446 - WildTangent) Hidden WinRAR 6.02 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH) Packages: ========= ¡Solitario! -> C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.SimpleSolitaire_7.3.1.0_x64__kx24dqmazqk8j [2021-09-09] (Random Salad Games LLC) HP JumpStart -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStart_1.4.443.0_x86__v10z8vjag6ke6 [2021-09-06] (HP Inc.) Microsoft Office Desktop Apps -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.14326.20348.0_x86__8wekyb3d8bbwe [2021-09-09] (Microsoft Corporation) Microsoft Outlook -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.14326.20348.0_x86__8wekyb3d8bbwe [2021-09-09] (Microsoft Corporation) Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.7290.0_x64__8wekyb3d8bbwe [2021-09-06] (Microsoft Studios) [MS Ad] Power Media Player 14 for HP Consumer PCs with DVD -> C:\Program Files\WindowsApps\cyberlinkcorp.hs.powermediaplayer14forhpconsumerpc_14.2.9528.0_x86__06qsbagp91rvg [2021-09-06] (CYBERLINKCOM CORP) Synaptics TouchPad -> C:\Program Files\WindowsApps\synapticsincorporated.synhpconsumerdapp_19005.35054.0.0_x64__807d65c4rvak2 [2021-09-06] (Synaptics Incorporated) WildTangent Games -> C:\Program Files\WindowsApps\WildTangentGames.63435CFB65F55_2.0.84.0_x64__qt5r5pa5dyg8m [2021-09-06] (WildTangent Games) ==================== Personalizado CLSID (Lista blanca): ============== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) ContextMenuHandlers1: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\x64\shellex.dll [2021-09-06] (Kaspersky Lab JSC -> AO Kaspersky Lab) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\x64\shellex.dll [2021-09-06] (Kaspersky Lab JSC -> AO Kaspersky Lab) ContextMenuHandlers4: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\x64\shellex.dll [2021-09-06] (Kaspersky Lab JSC -> AO Kaspersky Lab) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Ningún archivo ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\ki135422.inf_amd64_819df826076efbf4\igfxDTCM.dll [2020-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers6: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\x64\shellex.dll [2021-09-06] (Kaspersky Lab JSC -> AO Kaspersky Lab) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Lista blanca) ==================== ==================== Accesos directos & WMI ======================== ==================== Módulos cargados (Lista blanca) ============= 2011-06-12 15:06 - 2011-06-12 15:06 - 000287232 _____ () [Archivo no firmado] C:\Users\davau\AppData\Roaming\ACEStream\updater\lib\_hashlib.pyd 2011-06-12 15:09 - 2011-06-12 15:09 - 000038400 _____ () [Archivo no firmado] C:\Users\davau\AppData\Roaming\ACEStream\updater\lib\_socket.pyd 2011-06-12 15:09 - 2011-06-12 15:09 - 000720896 _____ () [Archivo no firmado] C:\Users\davau\AppData\Roaming\ACEStream\updater\lib\_ssl.pyd 2011-01-18 23:56 - 2011-01-18 23:56 - 000334336 _____ () [Archivo no firmado] C:\Users\davau\AppData\Roaming\ACEStream\updater\lib\M2Crypto.__m2crypto.pyd 2011-06-12 15:06 - 2011-06-12 15:06 - 000152576 _____ () [Archivo no firmado] C:\Users\davau\AppData\Roaming\ACEStream\updater\lib\pyexpat.pyd 2012-02-07 18:38 - 2012-02-07 18:38 - 000358912 _____ () [Archivo no firmado] C:\Users\davau\AppData\Roaming\ACEStream\updater\lib\pythoncom27.dll 2012-02-07 18:35 - 2012-02-07 18:35 - 000110080 _____ () [Archivo no firmado] C:\Users\davau\AppData\Roaming\ACEStream\updater\lib\pywintypes27.dll 2011-06-12 15:06 - 2011-06-12 15:06 - 000011776 _____ () [Archivo no firmado] C:\Users\davau\AppData\Roaming\ACEStream\updater\lib\select.pyd 2011-06-12 15:06 - 2011-06-12 15:06 - 000688128 _____ () [Archivo no firmado] C:\Users\davau\AppData\Roaming\ACEStream\updater\lib\unicodedata.pyd 2012-02-07 18:37 - 2012-02-07 18:37 - 000098816 _____ () [Archivo no firmado] C:\Users\davau\AppData\Roaming\ACEStream\updater\lib\win32api.pyd 2012-02-07 18:36 - 2012-02-07 18:36 - 000111616 _____ () [Archivo no firmado] C:\Users\davau\AppData\Roaming\ACEStream\updater\lib\win32file.pyd 2012-02-07 18:36 - 2012-02-07 18:36 - 000024064 _____ () [Archivo no firmado] C:\Users\davau\AppData\Roaming\ACEStream\updater\lib\win32pdh.pyd 2011-07-15 21:38 - 2011-07-15 21:38 - 000966144 _____ () [Archivo no firmado] C:\Users\davau\AppData\Roaming\ACEStream\updater\lib\wx._controls_.pyd 2011-07-15 21:37 - 2011-07-15 21:37 - 000981504 _____ () [Archivo no firmado] C:\Users\davau\AppData\Roaming\ACEStream\updater\lib\wx._core_.pyd 2011-07-15 21:38 - 2011-07-15 21:38 - 000746496 _____ () [Archivo no firmado] C:\Users\davau\AppData\Roaming\ACEStream\updater\lib\wx._gdi_.pyd 2011-07-15 21:38 - 2011-07-15 21:38 - 000674816 _____ () [Archivo no firmado] C:\Users\davau\AppData\Roaming\ACEStream\updater\lib\wx._misc_.pyd 2011-07-15 21:38 - 2011-07-15 21:38 - 000670720 _____ () [Archivo no firmado] C:\Users\davau\AppData\Roaming\ACEStream\updater\lib\wx._windows_.pyd 2021-09-07 18:35 - 2021-09-07 18:35 - 000138240 _____ () [Archivo no firmado] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Interop.IWs06dcaa36#\dde04cd56ad121161c4aa922c0c96d23\Interop.IWshRuntimeLibrary.ni.dll 2021-09-07 18:35 - 2021-09-07 18:35 - 000134656 _____ (hardcodet.net) [Archivo no firmado] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Hardcodet.W6cab32f3#\2d37269616867a7551a94d345cad0aa8\Hardcodet.Wpf.TaskbarNotification.ni.dll 2021-09-07 18:35 - 2021-09-07 18:35 - 001585664 _____ (Mark Heath) [Archivo no firmado] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NAudio\389c718f053212aefc1f4f0f8e7589d4\NAudio.ni.dll 2021-09-07 18:33 - 2021-09-07 18:33 - 002306560 _____ (Newtonsoft) [Archivo no firmado] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\674ede3da4b4ad4b208dd2f8ef8b7a3a\Newtonsoft.Json.ni.dll 2011-06-12 15:09 - 2011-06-12 15:09 - 002206720 _____ (Python Software Foundation) [Archivo no firmado] C:\Users\davau\AppData\Roaming\ACEStream\updater\PYTHON27.DLL 2015-12-17 11:11 - 2015-12-17 11:11 - 000132096 _____ (Seiko Epson Corporation) [Archivo no firmado] C:\Program Files (x86)\Epson Software\Event Manager\epnsm.dll 2009-10-21 17:39 - 2009-10-21 17:39 - 000291328 _____ (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\Program Files (x86)\Epson Software\Event Manager\LcMgr.dll 2021-09-07 15:32 - 2021-08-06 03:22 - 000098304 _____ (Seiko Epson Corporation) [Archivo no firmado] C:\Program Files (x86)\Epson Software\FAX Utility\EbpD4Fax.dll 2021-09-07 15:32 - 2021-08-06 03:22 - 000212992 _____ (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\Program Files (x86)\Epson Software\FAX Utility\FUADRFIL.dll 2021-09-07 15:32 - 2021-08-06 03:22 - 000286720 _____ (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXCFG.dll 2021-09-07 15:32 - 2021-08-06 03:22 - 000446464 _____ (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXCSR.DLL 2021-09-07 15:32 - 2021-08-06 03:22 - 000393216 _____ (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXLDB.dll 2021-09-07 15:32 - 2021-08-06 03:22 - 000651264 _____ (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXTIF.dll 2021-09-07 15:32 - 2021-08-06 03:22 - 000421888 _____ (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\Program Files (x86)\Epson Software\FAX Utility\FUIMGCDC.dll 2021-09-07 15:32 - 2021-08-06 03:22 - 000278528 _____ (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\Program Files (x86)\Epson Software\FAX Utility\FULEPP.dll 2021-09-07 15:32 - 2021-08-06 03:22 - 000077824 _____ (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\Program Files (x86)\Epson Software\FAX Utility\FUSTMMSG.dll 2021-09-07 15:32 - 2021-08-06 03:22 - 000356352 _____ (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\Program Files (x86)\Epson Software\FAX Utility\FUSVCCLT.dll 2021-09-07 15:32 - 2021-08-06 03:22 - 000065536 _____ (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\Program Files (x86)\Epson Software\FAX Utility\FUUSBHLP.dll 2021-09-07 15:32 - 2021-08-06 03:22 - 000258048 _____ (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\Program Files (x86)\Epson Software\FAX Utility\FUVERDLG.dll 2021-09-07 15:32 - 2021-08-06 03:22 - 000073728 _____ (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\Program Files (x86)\Epson Software\FAX Utility\Library\FUDEVCOM.dll 2021-09-07 15:32 - 2021-08-06 03:22 - 000135168 _____ (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\Program Files (x86)\Epson Software\FAX Utility\Library\FUDRVUTL.dll 2021-09-07 15:32 - 2021-08-06 03:22 - 000339968 _____ (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\Program Files (x86)\Epson Software\FAX Utility\Library\FUPRBDEV.dll 2021-09-07 15:32 - 2021-08-06 03:22 - 000286720 _____ (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\Program Files (x86)\Epson Software\FAX Utility\Library\FUSNMPUT.dll 2021-09-07 15:32 - 2021-08-05 20:22 - 000090112 _____ (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUCMNMSG.dll 2021-09-07 15:32 - 2021-08-05 20:22 - 000090112 _____ (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUFAXCFGRes.dll 2021-09-07 15:32 - 2021-08-05 20:22 - 000245760 _____ (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUFAXRCV.dll 2021-09-07 15:32 - 2021-08-05 20:22 - 000110592 _____ (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUFAXSTM.dll 2021-09-07 15:32 - 2021-08-05 20:22 - 000022016 _____ (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FULEPPRes.dll 2021-09-07 15:32 - 2021-08-05 20:22 - 000077824 _____ (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUPRBDEVRes.dll 2019-02-22 17:01 - 2019-02-22 17:01 - 000704512 _____ (Seiko Epson Corporation) [Archivo no firmado] C:\Program Files (x86)\EPSON\MyEpson Portal\Configration_00000171\MepCfg.dll 2020-04-17 10:15 - 2020-04-17 10:15 - 000577536 _____ (Seiko Epson Corporation) [Archivo no firmado] C:\Program Files (x86)\EPSON\MyEpson Portal\MepUploader_00000542\MepUploader.dll 2019-02-22 15:09 - 2019-02-22 15:09 - 000475136 _____ (Seiko Epson Corporation) [Archivo no firmado] C:\Program Files (x86)\EPSON\MyEpson Portal\Online Manual_00000013\MepFAQ.dll 2015-12-11 16:14 - 2015-12-11 16:14 - 004968448 _____ (Seiko Epson Corporation) [Archivo no firmado] C:\Program Files\EpsonNet\EpsonNet Print\ENSTRMAPIe.dll 2016-09-14 14:31 - 2016-09-14 14:31 - 000500736 ____S (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\WINDOWS\System32\enppmon.dll 2021-09-07 15:32 - 2021-08-05 20:22 - 000234496 _____ (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\WINDOWS\system32\spool\DRIVERS\x64\3\EFXUI09A.DLL 2021-09-07 15:32 - 2021-08-06 03:22 - 000786432 _____ (SEIKO EPSON) [Archivo no firmado] C:\Program Files (x86)\Epson Software\FAX Utility\Library\ENCM.dll 2021-09-07 15:32 - 2021-08-06 03:22 - 000278528 _____ (SEIKO EPSON) [Archivo no firmado] C:\Program Files (x86)\Epson Software\FAX Utility\Library\ENNW.dll 2021-09-07 15:32 - 2021-08-06 03:22 - 000299008 _____ (SEIKO EPSON) [Archivo no firmado] C:\Program Files (x86)\Epson Software\FAX Utility\Library\ENUTIL.dll 2021-09-07 18:35 - 2021-09-07 18:35 - 000792064 _____ (The Apache Software Foundation) [Archivo no firmado] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\log4net\12dec00fe90a978f03f49d793eb14c40\log4net.ni.dll 2012-01-19 19:19 - 2012-01-19 19:19 - 001099776 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Archivo no firmado] C:\Users\davau\AppData\Roaming\ACEStream\updater\lib\LIBEAY32.dll 2012-01-19 19:20 - 2012-01-19 19:20 - 000237568 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Archivo no firmado] C:\Users\davau\AppData\Roaming\ACEStream\updater\lib\SSLEAY32.dll 2011-07-15 21:33 - 2011-07-15 21:33 - 000122368 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\davau\AppData\Roaming\ACEStream\updater\lib\wxbase28uh_net_vc.dll 2011-07-15 21:33 - 2011-07-15 21:33 - 001300992 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\davau\AppData\Roaming\ACEStream\updater\lib\wxbase28uh_vc.dll 2011-07-15 21:34 - 2011-07-15 21:34 - 000730112 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\davau\AppData\Roaming\ACEStream\updater\lib\wxmsw28uh_adv_vc.dll 2011-07-15 21:34 - 2011-07-15 21:34 - 003165184 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\davau\AppData\Roaming\ACEStream\updater\lib\wxmsw28uh_core_vc.dll 2011-07-15 21:34 - 2011-07-15 21:34 - 000479744 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\davau\AppData\Roaming\ACEStream\updater\lib\wxmsw28uh_html_vc.dll ==================== Alternate Data Streams (Lista blanca) ======== ==================== Modo Seguro (Lista blanca) ================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service" ==================== Asociación (Lista blanca) ================= ==================== Internet Explorer (Lista blanca) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE HKU\S-1-5-21-1073182029-1482883918-227264295-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE HKU\S-1-5-21-1073182029-1482883918-227264295-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2017-09-27] (HP Inc. -> HP Inc.) BHO: Kaspersky Password Manager -> {F710F7E5-A520-471D-989C-F653AC328FB2} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\x64\ie_engine.dll [2021-08-16] (Kaspersky Lab JSC -> AO Kaspersky Lab) BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2017-09-27] (HP Inc. -> HP Inc.) BHO-x32: Kaspersky Password Manager -> {F710F7E5-A520-471D-989C-F653AC328FB2} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\ie_engine.dll [2021-08-16] (Kaspersky Lab JSC -> AO Kaspersky Lab) ==================== Hosts contenido: ========================= (Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.) 2017-09-29 15:46 - 2017-09-29 15:44 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Otras Áreas =========================== (Actualmente no existe una corrección automática para esta sección.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-1073182029-1482883918-227264295-1001\Control Panel\Desktop\\Wallpaper -> F:\davau\Documents\Image-03.JPG DNS Servers: 213.60.205.175 - 8.8.8.8 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Firewall de Windows está habilitado. ==================== MSCONFIG/TASK MANAGER elementos deshabilitados == (Si una entrada es incluida en el fixlist, será eliminada.) HKLM\...\StartupApproved\Run: => "SecurityHealth" HKU\S-1-5-21-1073182029-1482883918-227264295-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1073182029-1482883918-227264295-1001\...\StartupApproved\Run: => "Opera Browser Assistant" HKU\S-1-5-21-1073182029-1482883918-227264295-1001\...\StartupApproved\Run: => "AceStream" ==================== Reglas de firewall (Lista blanca) ================ (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) FirewallRules: [{385B5F83-09C2-4201-A7C4-7CE81FE935CD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{E1D3DB7A-8E83-46AA-B26C-B6DF12DF7C8F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{729EDE21-5088-45C3-89EB-36F458310ED3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{4C1A938B-F91C-4129-BBE4-623CF82E8EAB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{81645143-69C2-4CD9-8F7E-5862DFFB55B7}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel(R) Wireless Connectivity Solutions -> ) FirewallRules: [{504F2944-28D9-479B-9EFF-63EE72D7F7B8}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{0218D9F6-33D6-4527-A890-A2E941522964}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{C50D4A03-81E9-46B8-B87E-B4BB40875D6F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{70B3C5EF-0DEE-4C08-A3D5-1BCB764E231A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{ED42F86D-2679-4900-AE42-117E50A86A2F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{4E32F1C0-1FE3-4D63-918E-95EF2CCCB644}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{0CCB82F7-8E1E-4FCE-A72C-6CD16819FFA4}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{984463BA-A7DD-4971-AA8E-91B216F55ECF}] => (Allow) C:\Users\davau\AppData\Local\Temp\EpInsNav\DL\3013\Network\EpsonNetSetup\Data\ENEasyApp.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) FirewallRules: [{F80177FC-9EA5-4C4E-87AF-C4E1D21910BD}] => (Allow) C:\Users\davau\AppData\Local\Temp\EpInsNav\DL\3013\Network\EpsonNetSetup\Data\ENEasyApp.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) FirewallRules: [{8B9D0336-EEF8-4268-B39A-C4BE52273D70}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) FirewallRules: [{F3950D80-A73B-48CF-B6D4-EEAB8D64EC93}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) FirewallRules: [{61200A6E-DF78-4B6E-9CFA-7298ECDF3F22}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.14326.20348.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{199AC4D6-DBFC-41E1-AEEF-56C7AED4CC9E}] => (Allow) C:\Users\davau\AppData\Roaming\ACEStream\engine\ace_engine.exe (INNOVATIVE DIGITAL TECHNOLOGIES LLC -> Innovative Digital Technologies) FirewallRules: [{A3F530B5-462E-447A-9380-33E9387DB2AB}] => (Allow) C:\Users\davau\AppData\Roaming\ACEStream\engine\ace_engine.exe (INNOVATIVE DIGITAL TECHNOLOGIES LLC -> Innovative Digital Technologies) ==================== Puntos de Restauración ========================= 09-09-2021 19:10:15 Punto de control programado 10-09-2021 20:32:58 Instalador de Módulos de Windows 11-09-2021 22:32:28 Instalador de Módulos de Windows 12-09-2021 23:03:16 Instalador de Módulos de Windows ==================== Dispositivos defectuosos en el Administrador de dispositivos ============ ==================== Errores del registro de eventos: ======================== Errores de aplicación: ================== Error: (09/13/2021 02:12:39 PM) (Source: HP Comm Recovery) (EventID: 0) (User: ) Description: Error al controlar PowerEvent. Error: System.Exception: StartProcessAsCurrentUser: GetSessionUserToken failed. en _HPCommRecovery.ProcessExtensions.StartProcessAsCurrentUser(String appPath, String cmdLine, String workDir, Boolean visible) en _HPCommRecovery.HPAHAgent.CallAgent() en _HPCommRecovery.AppSession..ctor(DateTime Current, String LogPath) en _HPCommRecovery.HPAHLogger.NewSession() en _HPCommRecovery.HPCommRecovery.OnPowerEvent(PowerBroadcastStatus powerStatus) en System.ServiceProcess.ServiceBase.DeferredPowerEvent(Int32 eventType, IntPtr eventData). Error: (09/13/2021 02:12:39 PM) (Source: HP Comm Recovery) (EventID: 0) (User: ) Description: Error al controlar PowerEvent. Error: System.IO.IOException: El proceso no puede obtener acceso al archivo 'C:\Windows\Temp\signtool.exe' porque está siendo utilizado en otro proceso. en System.IO.__Error.WinIOError(Int32 errorCode, String maybeFullPath) en System.IO.FileStream.Init(String path, FileMode mode, FileAccess access, Int32 rights, Boolean useRights, FileShare share, Int32 bufferSize, FileOptions options, SECURITY_ATTRIBUTES secAttrs, String msgPath, Boolean bFromProxy, Boolean useLongPath, Boolean checkHost) en System.IO.FileStream..ctor(String path, FileMode mode, FileAccess access, FileShare share, Int32 bufferSize, FileOptions options, String msgPath, Boolean bFromProxy) en System.IO.FileStream..ctor(String path, FileMode mode) en _HPCommRecovery.Tools.Signtool.ExtractSignTool() en _HPCommRecovery.Tools.Signtool.Verify(String arg) en _HPCommRecovery.HPAHAgent.CallAgent() en _HPCommRecovery.AppSession..ctor(DateTime Current, String LogPath) en _HPCommRecovery.HPAHLogger.NewSession() en _HPC.... Error: (09/13/2021 02:12:38 PM) (Source: DPTF) (EventID: 17) (User: NT AUTHORITY) Description: ESIF(8.6.10401.9906) TYPE: ERROR MODULE: DPTF TIME 567700578 ms DPTF Build Version: 8.6.10401.9906 DPTF Build Date: Jun 14 2019 17:55:37 Source File: c:\jenkins\workspace\dptf\src\dptf\sources\manager\domainworkitem.cpp @ line 79 Executing Function: DomainWorkItem::writeDomainWorkItemErrorMessagePolicy Message: Unhandled exception caught during execution of work item Framework Event: DomainPowerControlCapabilityChanged [25] Participant: TCPU [0] Domain: Invalid [0] Policy: Passive Policy 2 [1] Exception Function: Policy::executeDomainPowerControlCapabilityChanged Exception Text: invalid map key Error: (09/12/2021 11:48:08 PM) (Source: HP Comm Recovery) (EventID: 0) (User: ) Description: Error al controlar PowerEvent. Error: System.Exception: StartProcessAsCurrentUser: GetSessionUserToken failed. en _HPCommRecovery.ProcessExtensions.StartProcessAsCurrentUser(String appPath, String cmdLine, String workDir, Boolean visible) en _HPCommRecovery.HPAHAgent.CallAgent() en _HPCommRecovery.AppSession..ctor(DateTime Current, String LogPath) en _HPCommRecovery.HPAHLogger.NewSession() en _HPCommRecovery.HPCommRecovery.OnPowerEvent(PowerBroadcastStatus powerStatus) en System.ServiceProcess.ServiceBase.DeferredPowerEvent(Int32 eventType, IntPtr eventData). Error: (09/12/2021 10:32:54 AM) (Source: HP Comm Recovery) (EventID: 0) (User: ) Description: Error al controlar PowerEvent. Error: System.Exception: StartProcessAsCurrentUser: GetSessionUserToken failed. en _HPCommRecovery.ProcessExtensions.StartProcessAsCurrentUser(String appPath, String cmdLine, String workDir, Boolean visible) en _HPCommRecovery.HPAHAgent.CallAgent() en _HPCommRecovery.AppSession..ctor(DateTime Current, String LogPath) en _HPCommRecovery.HPAHLogger.NewSession() en _HPCommRecovery.HPCommRecovery.OnPowerEvent(PowerBroadcastStatus powerStatus) en System.ServiceProcess.ServiceBase.DeferredPowerEvent(Int32 eventType, IntPtr eventData). Error: (09/12/2021 10:32:54 AM) (Source: HP Comm Recovery) (EventID: 0) (User: ) Description: Error al controlar PowerEvent. Error: System.IO.IOException: El proceso no puede obtener acceso al archivo 'C:\Windows\Temp\signtool.exe' porque está siendo utilizado en otro proceso. en System.IO.__Error.WinIOError(Int32 errorCode, String maybeFullPath) en System.IO.FileStream.Init(String path, FileMode mode, FileAccess access, Int32 rights, Boolean useRights, FileShare share, Int32 bufferSize, FileOptions options, SECURITY_ATTRIBUTES secAttrs, String msgPath, Boolean bFromProxy, Boolean useLongPath, Boolean checkHost) en System.IO.FileStream..ctor(String path, FileMode mode, FileAccess access, FileShare share, Int32 bufferSize, FileOptions options, String msgPath, Boolean bFromProxy) en System.IO.FileStream..ctor(String path, FileMode mode) en _HPCommRecovery.Tools.Signtool.ExtractSignTool() en _HPCommRecovery.Tools.Signtool.Verify(String arg) en _HPCommRecovery.HPAHAgent.CallAgent() en _HPCommRecovery.AppSession..ctor(DateTime Current, String LogPath) en _HPCommRecovery.HPAHLogger.NewSession() en _HPC.... Error: (09/12/2021 10:32:53 AM) (Source: DPTF) (EventID: 17) (User: NT AUTHORITY) Description: ESIF(8.6.10401.9906) TYPE: ERROR MODULE: DPTF TIME 468112648 ms DPTF Build Version: 8.6.10401.9906 DPTF Build Date: Jun 14 2019 17:55:37 Source File: c:\jenkins\workspace\dptf\src\dptf\sources\manager\domainworkitem.cpp @ line 79 Executing Function: DomainWorkItem::writeDomainWorkItemErrorMessagePolicy Message: Unhandled exception caught during execution of work item Framework Event: DomainPowerControlCapabilityChanged [25] Participant: TCPU [0] Domain: Invalid [0] Policy: Passive Policy 2 [1] Exception Function: Policy::executeDomainPowerControlCapabilityChanged Exception Text: invalid map key Error: (09/11/2021 11:52:20 PM) (Source: HP Comm Recovery) (EventID: 0) (User: ) Description: Error al controlar PowerEvent. Error: System.Exception: StartProcessAsCurrentUser: GetSessionUserToken failed. en _HPCommRecovery.ProcessExtensions.StartProcessAsCurrentUser(String appPath, String cmdLine, String workDir, Boolean visible) en _HPCommRecovery.HPAHAgent.CallAgent() en _HPCommRecovery.AppSession..ctor(DateTime Current, String LogPath) en _HPCommRecovery.HPAHLogger.NewSession() en _HPCommRecovery.HPCommRecovery.OnPowerEvent(PowerBroadcastStatus powerStatus) en System.ServiceProcess.ServiceBase.DeferredPowerEvent(Int32 eventType, IntPtr eventData). Errores del sistema: ============= Error: (09/10/2021 10:26:44 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-EC7P8THT) Description: El servidor {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} no se registró con DCOM dentro del tiempo de espera requerido. Error: (09/10/2021 10:26:44 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-EC7P8THT) Description: El servidor {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} no se registró con DCOM dentro del tiempo de espera requerido. Error: (09/10/2021 10:26:44 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-EC7P8THT) Description: El servidor {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} no se registró con DCOM dentro del tiempo de espera requerido. Error: (09/07/2021 12:17:11 AM) (Source: Service Control Manager) (EventID: 7030) (User: ) Description: El servicio Foxit PDF Reader Update Service ha sido marcado como servicio interactivo. Sin embargo, el sistema está configurado para no permitir servicios interactivos. Este servicio puede tener un funcionamiento incorrecto. Error: (09/06/2021 11:20:48 PM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: Error en la llamada ScRegSetValueExW para Start con el error siguiente: Acceso denegado. Error: (09/06/2021 09:40:52 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-EC7P8THT) Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido. Error: (09/06/2021 09:40:52 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-EC7P8THT) Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido. Error: (09/06/2021 05:51:37 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY) Description: Error irrecuperable al crear una credencial TLS cliente. El estado de error interno es 10013. Windows Defender: ================ Date: 2021-09-12 22:29:23 Description: El examen de Antivirus de Microsoft Defender se detuvo antes de completarse. Id. de examen: {ACAF6A9A-ADC9-4EBD-AC27-EA1F71C42D77} Tipo de examen: Antimalware Parámetros de examen: Examen rápido Usuario: NT AUTHORITY\SYSTEM Date: 2021-09-11 22:34:59 Description: Antivirus de Microsoft Defender detectó malware u otro software potencialmente no deseado. Para más información, consulta lo siguiente: https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Unix/Multiverze&threatid=2147786491&enterprise=0 Nombre: Trojan:Unix/Multiverze Id.: 2147786491 Gravedad: Grave Categoría: Caballo de Troya Ruta de acceso: file:_C:\Users\davau\Desktop\TTActivator-1.15.tar.gz Origen de detección: Equipo local Tipo de detección: FastPath Origen de detección: Sistema Usuario: NT AUTHORITY\SYSTEM Nombre de proceso: Unknown Versión de inteligencia de seguridad: AV: 1.349.536.0, AS: 1.349.536.0, NIS: 1.349.536.0 Versión de motor: AM: 1.1.18500.10, NIS: 1.1.18500.10 Date: 2021-09-10 20:34:03 Description: El examen de Antivirus de Microsoft Defender se detuvo antes de completarse. Id. de examen: {FFA4265F-C38E-478D-A65A-AAAC58DEE4BD} Tipo de examen: Antimalware Parámetros de examen: Examen rápido Usuario: NT AUTHORITY\SYSTEM Date: 2021-09-06 23:15:50 Description: Antivirus de Microsoft Defender detectó malware u otro software potencialmente no deseado. Para más información, consulta lo siguiente: https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Keygen!MSR&threatid=2147743020&enterprise=0 Nombre: HackTool:Win32/Keygen!MSR Id.: 2147743020 Gravedad: Alta Categoría: Herramienta Ruta de acceso: file:_F:\davau\Downloads\Activador Mapas (jenito)\KEY-8.exe Origen de detección: Equipo local Tipo de detección: Concreto Origen de detección: Protección en tiempo real Usuario: LAPTOP-EC7P8THT\davau Nombre de proceso: C:\Windows\explorer.exe Versión de inteligencia de seguridad: AV: 1.349.249.0, AS: 1.349.249.0, NIS: 1.349.249.0 Versión de motor: AM: 1.1.18500.10, NIS: 1.1.18500.10 Date: 2021-09-06 23:15:25 Description: Antivirus de Microsoft Defender detectó malware u otro software potencialmente no deseado. Para más información, consulta lo siguiente: https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Keygen!MSR&threatid=2147743020&enterprise=0 Nombre: HackTool:Win32/Keygen!MSR Id.: 2147743020 Gravedad: Alta Categoría: Herramienta Ruta de acceso: file:_F:\davau\Downloads\Activador Mapas (jenito)\KEY-8.exe Origen de detección: Equipo local Tipo de detección: Concreto Origen de detección: Protección en tiempo real Usuario: LAPTOP-EC7P8THT\davau Nombre de proceso: C:\Windows\explorer.exe Versión de inteligencia de seguridad: AV: 1.349.249.0, AS: 1.349.249.0, NIS: 1.349.249.0 Versión de motor: AM: 1.1.18500.10, NIS: 1.1.18500.10  CodeIntegrity: =============== Date: 2021-09-13 14:37:55 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\x64\antimalware_provider.dll that did not meet the Windows signing level requirements. ==================== Información de la memoria =========================== BIOS: Insyde F.67 12/23/2020 Placa base: HP 832A Procesador: Intel(R) Core(TM) i7-8550U CPU @ 1.80GHz Porcentaje de memoria en uso: 77% RAM física total: 8108.91 MB RAM física disponible: 1786.57 MB Virtual total: 10028.91 MB Virtual disponible: 3038.62 MB ==================== Unidades ================================ Drive c: (Windows) (Fixed) (Total:220.52 GB) (Free:83.97 GB) NTFS Drive d: (RECOVERY) (Fixed) (Total:16.72 GB) (Free:1.98 GB) NTFS ==>[sistema con componentes de arranque (obtenido de unidad)] \\?\Volume{6c227c05-0cf8-4900-9711-bf1768ee3149}\ (Windows RE tools) (Fixed) (Total:0.96 GB) (Free:0.34 GB) NTFS \\?\Volume{f2b82de5-a620-46b5-b427-1a0f0086bc4a}\ () (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32 ==================== MBR & Tabla de particiones ==================== ========================================================== Disk: 0 (Size: 238.5 GB) (Disk ID: 2566F754) Partition: GPT. ==================== Final de Addition.txt =======================