Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 12-08-2020 Ejecutado por usuario (18-08-2020 15:52:38) Ejecutado desde C:\Users\usuario\Desktop Windows 10 Home Versión 1903 18362.1016 (X64) (2019-11-03 23:43:46) Modo de Inicio: Normal ========================================================== ==================== Cuentas: ============================= Administrador (S-1-5-21-2379521174-702662167-1151423853-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-2379521174-702662167-1151423853-503 - Limited - Disabled) Invitado (S-1-5-21-2379521174-702662167-1151423853-501 - Limited - Disabled) usuario (S-1-5-21-2379521174-702662167-1151423853-1001 - Administrator - Enabled) => C:\Users\usuario WDAGUtilityAccount (S-1-5-21-2379521174-702662167-1151423853-504 - Limited - Disabled) ==================== Centro de Seguridad ======================== (Si una entrada es incluida en el fixlist, será eliminada.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: AVG Antivirus (Disabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programas instalados ====================== (Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.) 7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov) Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 20.012.20041 - Adobe Systems Incorporated) AVG AntiVirus FREE (HKLM-x32\...\AVG Antivirus) (Version: 20.6.3135 - AVG Technologies) CCleaner (HKLM\...\CCleaner) (Version: 5.70 - Piriform) CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.8.7128 - CDBurnerXP) Epic Games Launcher (HKLM-x32\...\{90D54587-044D-4B17-AA6D-BB7976F3211C}) (Version: 1.1.279.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden foobar2000 v1.5.5 (HKLM-x32\...\foobar2000) (Version: 1.5.5 - Peter Pawlowski) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 84.0.4147.125 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden HP LaserJet Professional P1100-P1560-P1600 Series (HKLM\...\HP LaserJet Professional P1100-P1560-P1600 Series) (Version: - ) hppP1100P1560P1600SeriesLaserJetService (HKLM-x32\...\{0E448256-D515-4C3E-A5BE-0A7B76CED5D4}) (Version: 001.001.0.0 - Hewlett-Packard) Hidden HPSSupply (HKLM-x32\...\{7902E313-FF0F-4493-ACB1-A8147B78DCD0}) (Version: 2.1.1.0000 - Hewlett Packard Development Company L.P.) IrfanView 4.54 (32-bit) (HKLM-x32\...\IrfanView) (Version: 4.54 - Irfan Skiljan) Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Malwarebytes version 4.1.2.73 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.2.73 - Malwarebytes) MarketResearch (HKLM-x32\...\{175F0111-2968-4935-8F70-33108C6A4DE3}) (Version: 130.0.374.000 - Hewlett-Packard) Hidden MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 84.0.522.59 - Microsoft Corporation) Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.133.5 - ) Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2379521174-702662167-1151423853-1001\...\OneDriveSetup.exe) (Version: 20.134.0705.0008 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.25.28508 (HKLM-x32\...\{6913e92a-b64e-41c9-a5e6-cef39207fe89}) (Version: 14.25.28508.3 - Microsoft Corporation) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 25.0.8 - OBS Project) Oracle VM VirtualBox 6.1.12 (HKLM\...\{BD4C2875-9059-4C94-A7B5-493A538AC180}) (Version: 6.1.12 - Oracle Corporation) Revo Uninstaller 2.1.7 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.1.7 - VS Revo Group, Ltd.) SafeNet Authentication Client 8.3 (HKLM\...\{648B71AE-68FC-45D4-B1A3-21BC86229A73}) (Version: 8.3.52.0 - SafeNet, Inc.) SETCCE proXSign® 2.1.4.81 (HKLM-x32\...\{5829CC72-35A3-439B-AB90-CE2776075835}}_is1) (Version: 2.1.4.81 - SETCCE) SETCCE proXSign® PDF for IE (HKLM-x32\...\{8598729F-B16A-4140-94CF-66B1914723BF}) (Version: 1.2.25 - SETCCE) SETCCE proXSign® PDF for Opera, Chrome and Safari (HKLM-x32\...\{B8F22556-1D3F-485F-A0E6-35350D1CA6DF}) (Version: 1.2.25 - SETCCE) SETCCE proXSign® XML for IE (HKLM-x32\...\{2CC73AE9-646C-4236-B152-EBB70F2969C9}) (Version: 1.2.24 - SETCCE) SETCCE proXSign® XML for Opera, Chrome and Safari (HKLM-x32\...\{3B823AD1-CC01-4F5A-94CD-45142BC5D443}) (Version: 1.2.24 - SETCCE) Skype versión 8.63 (HKLM-x32\...\Skype_is1) (Version: 8.63 - Skype Technologies S.A.) Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.8.68.0 - Safer-Networking Ltd.) SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 10.0.1206 - SUPERAntiSpyware.com) TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.8.3 - TeamViewer) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{3BAE4496-6F6C-4330-A8AA-B93D3D346FA5}) (Version: 2.53.0.0 - Microsoft Corporation) UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden uTorrent Web (HKU\S-1-5-21-2379521174-702662167-1151423853-1001\...\utweb) (Version: 1.1.0 - BitTorrent, Inc.) VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN) Zoom (HKLM-x32\...\{3866E3D3-B481-47BD-9ACA-3B20E0763B26}) (Version: 5.2.42619 - Zoom) Packages: ========= Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-06] (Autodesk Inc.) Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_6.10.5.0_x86__kgqvnymyfvs32 [2020-06-17] (king.com) Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.39.4.0_x86__kgqvnymyfvs32 [2020-06-24] (king.com) Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1820.3.0_x86__kgqvnymyfvs32 [2020-08-05] (king.com) Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.174.500.0_x86__kgqvnymyfvs32 [2020-08-10] (king.com) Complemento de motor multimedia para Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-01-12] (Microsoft Corporation) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-09-04] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-09-04] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8042.0_x64__8wekyb3d8bbwe [2020-08-10] (Microsoft Studios) [MS Ad] MSN El tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad] Phototastic Collage -> C:\Program Files\WindowsApps\ThumbmunkeysLtd.PhototasticCollage_3.20.1.0_x64__nfy108tqq3p12 [2020-07-27] (Thumbmunkeys Ltd) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.139.612.0_x86__zpdnekdrzrea0 [2020-08-10] (Spotify AB) [Startup Task] ==================== Personalizado CLSID (Lista blanca): ============== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) CustomCLSID: HKU\S-1-5-21-2379521174-702662167-1151423853-1001_Classes\CLSID\{EFE46AAA-6D2D-46C8-AD63-CA5683795CBE} -> [MEGAsync] => C:\Users\usuario\Documents\MEGAsync [2020-07-26 21:24] ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2210608 2006-10-27] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\usuario\AppData\Local\MEGAsync\ShellExtX64.dll [2020-06-09] (Mega Limited -> ) ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\usuario\AppData\Local\MEGAsync\ShellExtX64.dll [2020-06-09] (Mega Limited -> ) ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\usuario\AppData\Local\MEGAsync\ShellExtX64.dll [2020-06-09] (Mega Limited -> ) ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Ningún archivo ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Archivo no firmado] ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2020-08-12] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\usuario\AppData\Local\MEGAsync\ShellExtX64.dll [2020-06-09] (Mega Limited -> ) ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2019-04-15] (Safer-Networking Ltd. -> Safer-Networking Ltd.) ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2019-04-15] (Safer-Networking Ltd. -> Safer-Networking Ltd.) ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\usuario\AppData\Local\MEGAsync\ShellExtX64.dll [2020-06-09] (Mega Limited -> ) ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Ningún archivo ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-08-12] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\usuario\AppData\Local\MEGAsync\ShellExtX64.dll [2020-06-09] (Mega Limited -> ) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Archivo no firmado] ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\usuario\AppData\Local\MEGAsync\ShellExtX64.dll [2020-06-09] (Mega Limited -> ) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Archivo no firmado] ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2020-08-12] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-08-12] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2019-04-15] (Safer-Networking Ltd. -> Safer-Networking Ltd.) ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2019-04-15] (Safer-Networking Ltd. -> Safer-Networking Ltd.) ==================== Codecs (Lista blanca) ==================== ==================== Accesos directos & WMI ======================== ==================== Módulos cargados (Lista blanca) ============= 2019-09-04 15:28 - 2018-10-22 17:03 - 000539648 _____ () [Archivo no firmado] C:\Program Files (x86)\SETCCE\proXSign\bin\sqlite3.dll 2020-08-10 20:06 - 2019-02-21 13:00 - 000078336 _____ (Igor Pavlov) [Archivo no firmado] C:\Program Files\7-Zip\7-zip.dll 2019-11-03 16:14 - 2019-11-03 16:14 - 000095744 _____ (Microsoft Corporation) [Archivo no firmado] C:\WINDOWS\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.42_none_dc990e4797f81af1\ATL80.DLL 2019-09-04 15:28 - 2018-10-22 17:03 - 000356864 _____ (Mozilla Foundation) [Archivo no firmado] C:\Program Files (x86)\SETCCE\proXSign\bin\freebl3.dll 2019-09-04 15:28 - 2018-10-22 17:03 - 000159232 _____ (Mozilla Foundation) [Archivo no firmado] C:\Program Files (x86)\SETCCE\proXSign\bin\nspr4.dll 2019-09-04 15:28 - 2018-10-22 17:03 - 000816128 _____ (Mozilla Foundation) [Archivo no firmado] C:\Program Files (x86)\SETCCE\proXSign\bin\nss3.dll 2019-09-04 15:28 - 2018-10-22 17:03 - 000102400 _____ (Mozilla Foundation) [Archivo no firmado] C:\Program Files (x86)\SETCCE\proXSign\bin\nssdbm3.dll 2019-09-04 15:28 - 2018-10-22 17:03 - 000114176 _____ (Mozilla Foundation) [Archivo no firmado] C:\Program Files (x86)\SETCCE\proXSign\bin\nssutil3.dll 2019-09-04 15:28 - 2018-10-22 17:03 - 000013824 _____ (Mozilla Foundation) [Archivo no firmado] C:\Program Files (x86)\SETCCE\proXSign\bin\plc4.dll 2019-09-04 15:28 - 2018-10-22 17:03 - 000011264 _____ (Mozilla Foundation) [Archivo no firmado] C:\Program Files (x86)\SETCCE\proXSign\bin\plds4.dll 2019-09-04 15:28 - 2018-10-22 17:03 - 000164352 _____ (Mozilla Foundation) [Archivo no firmado] C:\Program Files (x86)\SETCCE\proXSign\bin\softokn3.dll 2019-09-04 15:28 - 2018-10-22 17:03 - 001369088 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Archivo no firmado] C:\Program Files (x86)\SETCCE\proXSign\bin\LIBEAY32.dll 2019-09-04 15:28 - 2018-10-22 17:03 - 000337408 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Archivo no firmado] C:\Program Files (x86)\SETCCE\proXSign\bin\ssleay32.dll 2019-09-04 15:28 - 2016-12-01 12:48 - 000037376 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files (x86)\SETCCE\proXSign\bin\bearer\qgenericbearer.dll 2019-09-04 15:28 - 2016-12-01 12:48 - 000039424 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files (x86)\SETCCE\proXSign\bin\bearer\qnativewifibearer.dll 2019-09-04 15:28 - 2016-12-01 15:37 - 000038400 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files (x86)\SETCCE\proXSign\bin\imageformats\qdds.dll 2019-09-04 15:28 - 2016-12-01 12:48 - 000024576 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files (x86)\SETCCE\proXSign\bin\imageformats\qgif.dll 2019-09-04 15:28 - 2016-12-01 15:37 - 000030720 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files (x86)\SETCCE\proXSign\bin\imageformats\qicns.dll 2019-09-04 15:28 - 2016-12-01 12:48 - 000024576 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files (x86)\SETCCE\proXSign\bin\imageformats\qico.dll 2019-09-04 15:28 - 2016-12-01 12:48 - 000243200 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files (x86)\SETCCE\proXSign\bin\imageformats\qjpeg.dll 2019-09-04 15:28 - 2016-12-01 15:18 - 000018432 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files (x86)\SETCCE\proXSign\bin\imageformats\qsvg.dll 2019-09-04 15:28 - 2016-12-01 15:37 - 000017920 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files (x86)\SETCCE\proXSign\bin\imageformats\qtga.dll 2019-09-04 15:28 - 2016-12-01 15:37 - 000313344 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files (x86)\SETCCE\proXSign\bin\imageformats\qtiff.dll 2019-09-04 15:28 - 2016-12-01 15:37 - 000017920 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files (x86)\SETCCE\proXSign\bin\imageformats\qwbmp.dll 2019-09-04 15:28 - 2016-12-01 15:37 - 000369664 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files (x86)\SETCCE\proXSign\bin\imageformats\qwebp.dll 2019-09-04 15:28 - 2016-12-01 12:49 - 001063936 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files (x86)\SETCCE\proXSign\bin\platforms\qwindows.dll 2019-09-04 15:28 - 2018-10-22 17:03 - 004681728 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files (x86)\SETCCE\proXSign\bin\Qt5Core.dll 2019-09-04 15:28 - 2016-12-01 12:42 - 004878848 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files (x86)\SETCCE\proXSign\bin\Qt5Gui.dll 2019-09-04 15:28 - 2016-12-01 12:40 - 000848896 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files (x86)\SETCCE\proXSign\bin\Qt5Network.dll 2019-09-04 15:28 - 2016-12-01 15:18 - 000251392 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files (x86)\SETCCE\proXSign\bin\Qt5Svg.dll 2019-09-04 15:28 - 2016-12-01 12:46 - 004495360 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files (x86)\SETCCE\proXSign\bin\Qt5Widgets.dll ==================== Alternate Data Streams (Lista blanca) ======== ==================== Modo Seguro (Lista blanca) ================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Asociación (Lista blanca) ================= ==================== Internet Explorer sitios de confianza/restringidos ========== (Si una entrada es incluida en el fixlist, será eliminada del registro.) IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com Hay 7942 más sitios. IE trusted site: HKU\S-1-5-21-2379521174-702662167-1151423853-1001\...\scba.gov.ar -> hxxps://firmadigital.scba.gov.ar IE restricted site: HKU\S-1-5-21-2379521174-702662167-1151423853-1001\...\007guard.com -> install.007guard.com IE restricted site: HKU\S-1-5-21-2379521174-702662167-1151423853-1001\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-2379521174-702662167-1151423853-1001\...\008k.com -> www.008k.com IE restricted site: HKU\S-1-5-21-2379521174-702662167-1151423853-1001\...\00hq.com -> www.00hq.com IE restricted site: HKU\S-1-5-21-2379521174-702662167-1151423853-1001\...\010402.com -> 010402.com IE restricted site: HKU\S-1-5-21-2379521174-702662167-1151423853-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\S-1-5-21-2379521174-702662167-1151423853-1001\...\0scan.com -> www.0scan.com IE restricted site: HKU\S-1-5-21-2379521174-702662167-1151423853-1001\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\S-1-5-21-2379521174-702662167-1151423853-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\S-1-5-21-2379521174-702662167-1151423853-1001\...\1000gratisproben.com -> www.1000gratisproben.com IE restricted site: HKU\S-1-5-21-2379521174-702662167-1151423853-1001\...\1001namen.com -> www.1001namen.com IE restricted site: HKU\S-1-5-21-2379521174-702662167-1151423853-1001\...\100888290cs.com -> mir.100888290cs.com IE restricted site: HKU\S-1-5-21-2379521174-702662167-1151423853-1001\...\100sexlinks.com -> www.100sexlinks.com IE restricted site: HKU\S-1-5-21-2379521174-702662167-1151423853-1001\...\10sek.com -> www.10sek.com IE restricted site: HKU\S-1-5-21-2379521174-702662167-1151423853-1001\...\12-26.net -> user1.12-26.net IE restricted site: HKU\S-1-5-21-2379521174-702662167-1151423853-1001\...\12-27.net -> user1.12-27.net IE restricted site: HKU\S-1-5-21-2379521174-702662167-1151423853-1001\...\123fporn.info -> www.123fporn.info IE restricted site: HKU\S-1-5-21-2379521174-702662167-1151423853-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com IE restricted site: HKU\S-1-5-21-2379521174-702662167-1151423853-1001\...\123moviedownload.com -> www.123moviedownload.com IE restricted site: HKU\S-1-5-21-2379521174-702662167-1151423853-1001\...\123simsen.com -> www.123simsen.com Hay 7942 más sitios. ==================== Hosts contenido: ========================= (Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.) 2017-03-18 18:03 - 2020-08-17 13:23 - 000453771 ____R C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 localhost 127.0.0.1 www.007guard.com 127.0.0.1 007guard.com 127.0.0.1 008i.com 127.0.0.1 www.008k.com 127.0.0.1 008k.com 127.0.0.1 www.00hq.com 127.0.0.1 00hq.com 127.0.0.1 010402.com 127.0.0.1 www.032439.com 127.0.0.1 032439.com 127.0.0.1 www.0scan.com 127.0.0.1 0scan.com 127.0.0.1 1000gratisproben.com 127.0.0.1 www.1000gratisproben.com 127.0.0.1 1001namen.com 127.0.0.1 www.1001namen.com 127.0.0.1 100888290cs.com 127.0.0.1 www.100888290cs.com 127.0.0.1 www.100sexlinks.com 127.0.0.1 100sexlinks.com 127.0.0.1 10sek.com 127.0.0.1 www.10sek.com 127.0.0.1 www.1-2005-search.com 127.0.0.1 1-2005-search.com 127.0.0.1 123fporn.info 127.0.0.1 www.123fporn.info 127.0.0.1 www.123haustiereundmehr.com 127.0.0.1 123haustiereundmehr.com 127.0.0.1 123moviedownload.com Hay 15604 más lineas. ==================== Otras Áreas =========================== (Actualmente no existe una corrección automática para esta sección.) HKU\S-1-5-21-2379521174-702662167-1151423853-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg DNS Servers: El medio no está conectado a internet. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Firewall de Windows está habilitado. Network Binding: ============= Ethernet: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) VirtualBox Host-Only Network: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) Ethernet 2: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) ==================== MSCONFIG/TASK MANAGER elementos deshabilitados == ==================== Reglas de firewall (Lista blanca) ================ (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) FirewallRules: [TCP Query User{8922417B-4A92-4B41-93D0-B27343CDFC23}C:\lex10e\servidor\lexsvrm.exe] => (Block) C:\lex10e\servidor\lexsvrm.exe (Sistemas Jurídicos SRL -> Sistemas Jurídicos SRL (República Argentina)) FirewallRules: [UDP Query User{C8D29BA6-7B82-40C8-B52F-7CFBCE24D584}C:\lex10e\servidor\lexsvrm.exe] => (Block) C:\lex10e\servidor\lexsvrm.exe (Sistemas Jurídicos SRL -> Sistemas Jurídicos SRL (República Argentina)) FirewallRules: [TCP Query User{97CABF92-C3DC-49E1-B6B1-96A2F0E553A8}C:\lex10e\lex10e\servidor\lexsvrm.exe] => (Block) C:\lex10e\lex10e\servidor\lexsvrm.exe (Sistemas Jurídicos SRL -> Sistemas Jurídicos SRL (República Argentina)) FirewallRules: [UDP Query User{B86E9E09-04AC-4315-BA5D-14728C6F4075}C:\lex10e\lex10e\servidor\lexsvrm.exe] => (Block) C:\lex10e\lex10e\servidor\lexsvrm.exe (Sistemas Jurídicos SRL -> Sistemas Jurídicos SRL (República Argentina)) FirewallRules: [TCP Query User{6B228AFD-003A-44B3-A615-F0D0D76CC489}C:\lex10e\servidor\lexsvrm.exe] => (Allow) C:\lex10e\servidor\lexsvrm.exe (Sistemas Jurídicos SRL -> Sistemas Jurídicos SRL (República Argentina)) FirewallRules: [UDP Query User{8A93E62E-CDDB-4E7C-856E-6A808F7A6235}C:\lex10e\servidor\lexsvrm.exe] => (Allow) C:\lex10e\servidor\lexsvrm.exe (Sistemas Jurídicos SRL -> Sistemas Jurídicos SRL (República Argentina)) FirewallRules: [TCP Query User{C8088A21-923E-47C2-B159-453678AD9A69}C:\lex10e\lex10e\lex10e\servidor\lexsvrm.exe] => (Allow) C:\lex10e\lex10e\lex10e\servidor\lexsvrm.exe (Sistemas Jurídicos SRL -> Sistemas Jurídicos SRL (República Argentina)) FirewallRules: [UDP Query User{02342FFF-3E0F-4A5F-9F29-46175FA3E25D}C:\lex10e\lex10e\lex10e\servidor\lexsvrm.exe] => (Allow) C:\lex10e\lex10e\lex10e\servidor\lexsvrm.exe (Sistemas Jurídicos SRL -> Sistemas Jurídicos SRL (República Argentina)) FirewallRules: [{55EBE652-6259-48D8-B05E-C438DD25EAB8}] => (Allow) C:\Users\usuario\AppData\Roaming\uTorrent Web\utweb.exe (Jenkins Win Client Build CA -> BitTorrent Inc.) [Archivo no firmado] FirewallRules: [{CAFB8392-C30D-47ED-9234-50486FE3BF9B}] => (Allow) C:\Users\usuario\AppData\Roaming\uTorrent Web\utweb.exe (Jenkins Win Client Build CA -> BitTorrent Inc.) [Archivo no firmado] FirewallRules: [{61D879AF-C95E-4C16-A040-12C67326302A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{A302A1A2-5547-4667-AEF8-7845C0B9E393}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{C86F9276-3662-446B-AB63-5F9086279FAB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{9A8953A4-CDEB-42CF-B26E-0BE4DCD25A20}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{219F693C-9303-42BD-B89B-B4E2B6EA5788}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{7C527B8C-0C65-47EF-8571-A6AABC5AFE93}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{ED8B9A33-59B9-410F-8BD7-97EBA241A6AD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{87965F80-100F-4799-9CA2-6067547539BF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{1A3FBC44-B673-49EF-B1AA-5C249C7A2A4B}] => (Allow) C:\Program Files (x86)\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{11B016B0-87F5-47AF-BF76-70A00AABA582}] => (Allow) C:\Program Files (x86)\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{2715B399-BD6E-499A-A59C-03F4EB4116C5}] => (Allow) C:\Program Files (x86)\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{6346B64F-F990-4F3D-8FF1-0E97D81B44D2}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{E5676672-2179-43B7-9A3F-5F8699695833}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{2B5795F9-E29F-49FD-BE9B-F393BDED71CB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.139.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{7C107A51-38AE-446D-86A0-8D7558D1C957}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.139.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{8483DF67-FBB8-42B0-9AEC-74614D9CC559}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.139.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{5A63A820-788C-463A-A50A-B5E8096CE4F8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.139.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{2F8E6399-A832-4E10-8EC9-02F64FB8DA77}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.139.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{95A5141F-13DF-40BA-992D-5585FE9C6A9C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.139.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{3E9113DA-D22B-4758-AEE5-9BF5E7689402}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.139.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{0105A0A2-8A20-4B8B-86D0-F2615F4D6BBF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.139.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{D7D8B7D5-F9C2-4B26-9BBD-1D47E9654C32}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service ==================== Puntos de Restauración ========================= 15-08-2020 19:55:13 Removed Oracle VM VirtualBox 6.1.12 16-08-2020 13:55:51 Installed Oracle VM VirtualBox 6.1.12 ==================== Dispositivos defectuosos en el Administrador de dispositivos ============ Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Errores del registro de eventos: ======================== Errores de aplicación: ================== Error: (08/18/2020 03:52:28 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nombre de la aplicación con errores: SDUpdate.exe, versión: 2.8.68.100, marca de tiempo: 0x5ea5e0d1 Nombre del módulo con errores: SDUpdate.exe, versión: 2.8.68.100, marca de tiempo: 0x5ea5e0d1 Código de excepción: 0xc0000005 Desplazamiento de errores: 0x00005c92 Identificador del proceso con errores: 0x11e8 Hora de inicio de la aplicación con errores: 0x01d67590b7d33331 Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe Ruta de acceso del módulo con errores: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe Identificador del informe: da8a585d-1fc0-4d54-9665-fb99dffda8af Nombre completo del paquete con errores: Identificador de aplicación relativa del paquete con errores: Error: (08/18/2020 03:50:23 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nombre de la aplicación con errores: SDUpdate.exe, versión: 2.8.68.100, marca de tiempo: 0x5ea5e0d1 Nombre del módulo con errores: SDUpdate.exe, versión: 2.8.68.100, marca de tiempo: 0x5ea5e0d1 Código de excepción: 0xc0000005 Desplazamiento de errores: 0x00005c92 Identificador del proceso con errores: 0x1080 Hora de inicio de la aplicación con errores: 0x01d675906dbc49f5 Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe Ruta de acceso del módulo con errores: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe Identificador del informe: a1a02ba2-14eb-4904-83dd-ef5c76fe657f Nombre completo del paquete con errores: Identificador de aplicación relativa del paquete con errores: Error: (08/18/2020 03:48:24 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nombre de la aplicación con errores: SDUpdate.exe, versión: 2.8.68.100, marca de tiempo: 0x5ea5e0d1 Nombre del módulo con errores: SDUpdate.exe, versión: 2.8.68.100, marca de tiempo: 0x5ea5e0d1 Código de excepción: 0xc0000005 Desplazamiento de errores: 0x00005c92 Identificador del proceso con errores: 0x339c Hora de inicio de la aplicación con errores: 0x01d675902670fa06 Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe Ruta de acceso del módulo con errores: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe Identificador del informe: 6ee732f3-69b7-412c-9a74-2e03a099fecc Nombre completo del paquete con errores: Identificador de aplicación relativa del paquete con errores: Error: (08/18/2020 02:08:57 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nombre de la aplicación con errores: SDUpdate.exe, versión: 2.8.68.100, marca de tiempo: 0x5ea5e0d1 Nombre del módulo con errores: hhctrl.ocx_unloaded, versión: 10.0.18362.1, marca de tiempo: 0xa2f44e16 Código de excepción: 0xc0000005 Desplazamiento de errores: 0x00026236 Identificador del proceso con errores: 0x2fcc Hora de inicio de la aplicación con errores: 0x01d6756c1b69acd4 Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe Ruta de acceso del módulo con errores: hhctrl.ocx Identificador del informe: 6d4e04a4-8f38-40da-9213-a14c300c7594 Nombre completo del paquete con errores: Identificador de aplicación relativa del paquete con errores: Error: (08/18/2020 11:30:24 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nombre de la aplicación con errores: SDUpdate.exe, versión: 2.8.68.100, marca de tiempo: 0x5ea5e0d1 Nombre del módulo con errores: SDUpdate.exe, versión: 2.8.68.100, marca de tiempo: 0x5ea5e0d1 Código de excepción: 0xc0000005 Desplazamiento de errores: 0x00005c92 Identificador del proceso con errores: 0x2fcc Hora de inicio de la aplicación con errores: 0x01d6756c1b69acd4 Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe Ruta de acceso del módulo con errores: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe Identificador del informe: ed5ef15e-4d4d-49a2-8679-a99de6338a2a Nombre completo del paquete con errores: Identificador de aplicación relativa del paquete con errores: Error: (08/18/2020 11:28:24 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nombre de la aplicación con errores: SDUpdate.exe, versión: 2.8.68.100, marca de tiempo: 0x5ea5e0d1 Nombre del módulo con errores: SDUpdate.exe, versión: 2.8.68.100, marca de tiempo: 0x5ea5e0d1 Código de excepción: 0xc0000005 Desplazamiento de errores: 0x00005c92 Identificador del proceso con errores: 0xa98 Hora de inicio de la aplicación con errores: 0x01d6756bd41dc725 Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe Ruta de acceso del módulo con errores: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe Identificador del informe: 26eaec7f-81e9-4175-8083-3070e5f33f79 Nombre completo del paquete con errores: Identificador de aplicación relativa del paquete con errores: Error: (08/18/2020 10:54:57 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nombre de la aplicación con errores: SDUpdate.exe, versión: 2.8.68.100, marca de tiempo: 0x5ea5e0d1 Nombre del módulo con errores: hhctrl.ocx_unloaded, versión: 10.0.18362.1, marca de tiempo: 0xa2f44e16 Código de excepción: 0xc0000005 Desplazamiento de errores: 0x00026236 Identificador del proceso con errores: 0x3268 Hora de inicio de la aplicación con errores: 0x01d6755f88c2a8d8 Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe Ruta de acceso del módulo con errores: hhctrl.ocx Identificador del informe: ca0fecd4-b2a5-48b3-9a24-e4c22a859b1b Nombre completo del paquete con errores: Identificador de aplicación relativa del paquete con errores: Error: (08/18/2020 10:25:48 AM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (10336,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Errores del sistema: ============= Error: (08/18/2020 03:49:30 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Se agotó el tiempo de espera (30000 ms) para la respuesta de transacción del servicio NlaSvc. Error: (08/18/2020 03:49:00 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Se agotó el tiempo de espera (30000 ms) para la respuesta de transacción del servicio CDPSvc. Error: (08/18/2020 03:48:30 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Se agotó el tiempo de espera (30000 ms) para la respuesta de transacción del servicio NlaSvc. Error: (08/18/2020 03:48:00 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Se agotó el tiempo de espera (30000 ms) para la respuesta de transacción del servicio CDPSvc. Error: (08/18/2020 03:47:31 PM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: NT AUTHORITY) Description: Minipuerto Atheros AR9271 Wireless Network Adapter, {25a8d551-f695-4af2-8722-d2a209b8abb3}, tuvo el evento 74 Error: (08/18/2020 11:29:55 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY) Description: El módulo de extensibilidad de WLAN no se pudo iniciar. Ruta de acceso del módulo: C:\WINDOWS\system32\athExt.dll Código de error: 126 Error: (08/18/2020 11:29:55 AM) (Source: VBoxNetLwf) (EventID: 12) (User: ) Description: El controlador detectó un error interno del controlador en \Device\VBoxNetLwf. Error: (08/18/2020 11:27:35 AM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: NT AUTHORITY) Description: Minipuerto Atheros AR9271 Wireless Network Adapter, {25a8d551-f695-4af2-8722-d2a209b8abb3}, tuvo el evento 74 Windows Defender: =================================== Date: 2020-07-27 21:36:50.896 Description: El examen de Antivirus de Windows Defender se detuvo antes de completarse. Id. de examen: {7010DCFD-185C-4390-81BE-7464E3FF71B6} Tipo de examen: Antimalware Parámetros de examen: Examen rápido Usuario: NT AUTHORITY\SYSTEM Date: 2020-07-26 18:08:34.694 Description: El examen de Antivirus de Windows Defender se detuvo antes de completarse. Id. de examen: {15B60B68-BF64-4DA6-92BC-D9FEB451C13D} Tipo de examen: Antimalware Parámetros de examen: Examen rápido Usuario: NT AUTHORITY\SYSTEM Date: 2020-07-26 14:39:08.823 Description: El examen de Antivirus de Windows Defender se detuvo antes de completarse. Id. de examen: {298F3EEA-DFE2-4598-9765-FA1F55B25180} Tipo de examen: Antimalware Parámetros de examen: Examen rápido Usuario: NT AUTHORITY\SYSTEM Date: 2020-08-12 01:53:44.227 Description: La característica Protección en tiempo real de Antivirus de Windows Defender encontró un error: Característica: Durante el acceso Código de error: 0x8007043c Descripción del error: El servicio no puede iniciarse en modo a prueba de errores Motivo: La inteligencia de seguridad antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema. Date: 2020-08-12 01:48:01.255 Description: La característica Protección en tiempo real de Antivirus de Windows Defender encontró un error: Característica: Durante el acceso Código de error: 0x8007043c Descripción del error: El servicio no puede iniciarse en modo a prueba de errores Motivo: La inteligencia de seguridad antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema. Date: 2020-08-03 00:38:26.143 Description: Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad. Nueva versión de inteligencia de seguridad: Versión anterior de inteligencia de seguridad: 1.321.452.0 Origen de actualización: Servidor de Microsoft Update Tipo de inteligencia de seguridad: AntiVirus Tipo de actualización: Completa Usuario: NT AUTHORITY\SYSTEM Versión actual del motor: Versión anterior del motor: 1.1.17300.4 Código de error: 0x8007043c Descripción del error: El servicio no puede iniciarse en modo a prueba de errores Date: 2020-08-03 00:28:01.789 Description: La característica Protección en tiempo real de Antivirus de Windows Defender encontró un error: Característica: Durante el acceso Código de error: 0x8007043c Descripción del error: El servicio no puede iniciarse en modo a prueba de errores Motivo: La inteligencia de seguridad antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema. Date: 2020-07-30 15:53:22.010 Description: Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad. Nueva versión de inteligencia de seguridad: Versión anterior de inteligencia de seguridad: 1.321.200.0 Origen de actualización: Servidor de Microsoft Update Tipo de inteligencia de seguridad: AntiVirus Tipo de actualización: Completa Usuario: NT AUTHORITY\SYSTEM Versión actual del motor: Versión anterior del motor: 1.1.17300.4 Código de error: 0x80240438 Descripción del error: Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulte Ayuda y soporte técnico. CodeIntegrity: =================================== Date: 2020-08-18 15:49:49.667 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVG\Antivirus\snxhk.dll that did not meet the Microsoft signing level requirements. Date: 2020-08-18 15:49:34.132 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVG\Antivirus\snxhk.dll that did not meet the Microsoft signing level requirements. Date: 2020-08-18 15:49:31.051 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVG\Antivirus\snxhk.dll that did not meet the Microsoft signing level requirements. Date: 2020-08-18 15:48:12.288 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVG\Antivirus\snxhk.dll that did not meet the Microsoft signing level requirements. Date: 2020-08-18 14:08:59.109 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVG\Antivirus\snxhk.dll that did not meet the Microsoft signing level requirements. Date: 2020-08-18 14:06:46.408 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVG\Antivirus\snxhk.dll that did not meet the Microsoft signing level requirements. Date: 2020-08-18 14:02:32.477 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVG\Antivirus\snxhk.dll that did not meet the Microsoft signing level requirements. Date: 2020-08-18 14:02:30.134 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVG\Antivirus\snxhk.dll that did not meet the Microsoft signing level requirements. ==================== Información de la memoria =========================== BIOS: American Megatrends Inc. P1.10 03/07/2011 Placa base: ASRock H61M-S Procesador: Intel(R) Core(TM) i3-2100 CPU @ 3.10GHz Porcentaje de memoria en uso: 43% RAM física total: 5864.67 MB RAM física disponible: 3306.86 MB Virtual total: 9810.85 MB Virtual disponible: 6750.1 MB ==================== Unidades ================================ Drive c: () (Fixed) (Total:463.98 GB) (Free:398.79 GB) NTFS \\?\Volume{cb68fd39-0000-0000-0000-100000000000}\ (Reservado para el sistema) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS \\?\Volume{cb68fd39-0000-0000-0000-201e74000000}\ () (Fixed) (Total:0.47 GB) (Free:0.04 GB) NTFS \\?\Volume{cb68fd39-0000-0000-0000-403c74000000}\ () (Fixed) (Total:0.82 GB) (Free:0.34 GB) NTFS ==================== MBR & Tabla de particiones ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: CB68FD39) Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=464 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=481 MB) - (Type=27) Partition 4: (Not Active) - (Size=838 MB) - (Type=27) ==================== Final de Addition.txt =======================