Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 19.04.2024 01 Ejecutado por victo (30-04-2024 21:20:38) Ejecutado desde C:\Users\victo\Desktop Microsoft Windows 10 Home Single Language Versión 22H2 19045.4355 (X64) (2019-12-07 14:08:08) Modo de Inicio: Normal ========================================================== ==================== Cuentas: ============================= (Si una entrada es incluida en el fixlist, será eliminada.) Administrador (S-1-5-21-2860472463-3070343665-445750963-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-2860472463-3070343665-445750963-503 - Limited - Disabled) Invitado (S-1-5-21-2860472463-3070343665-445750963-501 - Limited - Disabled) victo (S-1-5-21-2860472463-3070343665-445750963-1001 - Administrator - Enabled) => C:\Users\victo victo_194zloz (S-1-5-21-2860472463-3070343665-445750963-1004 - Limited - Enabled) => C:\Users\victo_194zloz WDAGUtilityAccount (S-1-5-21-2860472463-3070343665-445750963-504 - Limited - Disabled) ==================== Centro de Seguridad ======================== (Si una entrada es incluida en el fixlist, será eliminada.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programas instalados ====================== (Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.) 3uTools(32bit) (HKLM-x32\...\3uToolsV3_x86) (Version: 3.08.025 - Shenzhen Aidapu Network Technology Co.,Ltd.) Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1034-1033-7760-BC15014EA700}) (Version: 23.006.20360 - Adobe) Adobe AIR (HKLM-x32\...\{A2BCA9F1-566C-4805-97D1-7FDC93386723}) (Version: 1.5.3.9120 - Adobe Systems Inc.) Hidden Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.3.9120 - Adobe Systems Inc.) Adobe Photoshop CS5 (HKLM-x32\...\{15FEDA5F-141C-4127-8D7E-B962D1742728}) (Version: 12.0 - Adobe Systems Incorporated) ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 8.1202.1711.103 - Alps Electric) Blender (HKLM\...\{7D3DB565-6157-47EA-9D7D-E9B5B964E621}) (Version: 2.90.0 - Blender Foundation) Blender (HKLM\...\{B1DF3793-1651-4AE5-9CA0-E845DD8B526B}) (Version: 2.79.0 - Blender Foundation) BlueStacks App Player (HKLM\...\BlueStacks_nxt) (Version: 5.14.10.1008 - now.gg, Inc.) BlueStacks Services (HKU\S-1-5-21-2860472463-3070343665-445750963-1001\...\BlueStacksServices) (Version: 3.0.2 - now.gg, Inc.) BlueStacks X (HKU\S-1-5-21-2860472463-3070343665-445750963-1001\...\BlueStacks X) (Version: 10.5.10.1003 - now.gg, Inc.) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) CameraHelperMsi (HKLM-x32\...\{15634701-BACE-4449-8B25-1567DA8C9FD3}) (Version: 13.51.815.0 - Logitech) Hidden CCleaner (HKLM\...\CCleaner) (Version: 6.23 - Piriform) Comprobación de estado de PC Windows (HKLM\...\{D335124C-C378-488D-933F-1C5181C343F6}) (Version: 3.7.2204.15001 - Microsoft Corporation) dslrBooth 5.27.0213.1 (HKLM\...\{19FB8BF8-8E63-4542-8C79-D2B76CEDAB3F}) (Version: 5.27.0213.1 - Lumasoft) EAPI Driver (HKLM-x32\...\{63CC748D-A45F-47A6-AFBA-D9F69D2C6B6D}) (Version: 1.00.0000 - DFI INC.) Elo Service Reporting (HKLM\...\13192ec4-78a3-40c3-840f-76d2e9bfbc61) (Version: - Elo Touch Solutions, Inc.) Elo Touchscreen Driver 5.8.2 (HKLM\...\EloTouchscreen) (Version: 5.8.2.4 - Elo Touch Solutions) EloMultiTouch 9.0.1.6 (HKLM\...\Elo Touch Solutions) (Version: 9.0.1.6 - Elo Touch Solutions, Inc.) Epic Games Launcher (HKLM-x32\...\{FA06BD44-6ED1-42D5-963C-D5B165C4D892}) (Version: 1.3.93.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Epson Easy Photo Print 2 (HKLM-x32\...\{71038C40-8258-44D2-BBF4-B6312338172C}) (Version: 2.8.3.0 - Seiko Epson Corporation) Epson Event Manager (HKLM-x32\...\{AB8BE3EA-01D3-44B7-8E77-A9601CBDEBDE}) (Version: 3.10.0085 - Seiko Epson Corporation) EPSON L4150 Series Printer Uninstall (HKLM\...\EPSON L4150 Series) (Version: - Seiko Epson Corporation) Epson Printer Connection Checker (HKLM-x32\...\{DE32F90E-1A29-4D74-BCF1-E7DDB25D713A}) (Version: 3.4.0.0 - Seiko Epson Corporation) Epson Scan 2 (HKLM-x32\...\Epson Scan 2) (Version: - Seiko Epson Corporation) Epson Software Updater (HKLM-x32\...\{711E8536-AB71-4455-A6C4-357FDBBEBF91}) (Version: 4.6.7 - Seiko Epson Corporation) EpsonNet Print (HKLM\...\{96ED1D58-440C-4345-8FEE-C4781366C67F}) (Version: 3.1.4.0 - SEIKO EPSON Corporation) erLT (HKLM-x32\...\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}) (Version: 1.20.138.34 - Logitech, Inc.) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 124.0.6367.91 - Google LLC) Google Play Juegos Beta (HKLM\...\GooglePlayGames) (Version: 24.3.642.5 - Google LLC) HP Wireless Button Driver (HKLM-x32\...\{EFA01423-3857-468C-B7B6-F30AA08E50BC}) (Version: 1.1.5.1 - Hewlett-Packard Company) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4358 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.1.1000 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{E5FAF48A-145F-4B33-A062-DCFAAFAE5D41}) (Version: 12.8.1.1000 - Intel Corporation) Hidden LWS Facebook (HKLM-x32\...\{FF167195-9EE4-46C0-8CD7-FBA3457E88AB}) (Version: 13.50.854.0 - Logitech) Hidden LWS Gallery (HKLM-x32\...\{6F76EC3C-34B1-436E-97FB-48C58D7BEDCD}) (Version: 13.51.827.0 - Logitech) Hidden LWS Help_main (HKLM-x32\...\{1651216E-E7AD-4250-92A1-FB8ED61391C9}) (Version: 13.51.828.0 - Logitech) Hidden LWS Launcher (HKLM-x32\...\{83C8FA3C-F4EA-46C4-8392-D3CE353738D6}) (Version: 13.51.828.0 - Logitech) Hidden LWS Motion Detection (HKLM-x32\...\{71E66D3F-A009-44AB-8784-75E2819BA4BA}) (Version: 13.51.815.0 - Logitech) Hidden LWS Pictures And Video (HKLM-x32\...\{08610298-29AE-445B-B37D-EFBE05802967}) (Version: 13.51.815.0 - Logitech) Hidden LWS Twitter (HKLM-x32\...\{174A3B31-4C43-43DD-866F-73C9DB887B48}) (Version: 13.30.1346.0 - Logitech) Hidden LWS Webcam Software (HKLM-x32\...\{8937D274-C281-42E4-8CDB-A0B2DF979189}) (Version: 13.51.815.0 - Logitech) Hidden LWS WLM Plugin (HKLM-x32\...\{9DAEA76B-E50F-4272-A595-0124E826553D}) (Version: 1.30.1201.0 - Logitech) Hidden LWS YouTube Plugin (HKLM-x32\...\{21DF0294-6B9D-4741-AB6F-B2ABFBD2387E}) (Version: 13.31.1038.0 - Logitech) Hidden Malwarebytes version 5.1.3.110 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.1.3.110 - Malwarebytes) Manual Epson L4150 (HKLM-x32\...\UsersGuideManual Epson L4150_is1) (Version: 1.0 - Epson America, Inc.) McAfee Security Scan Plus (HKLM-x32\...\McAfee Security Scan) (Version: 4.1.515.1 - McAfee, LLC) Microsoft .NET Framework 4.7.1 Targeting Pack (HKLM-x32\...\{5686C5E9-A3B3-451E-A2EA-4C246CDE5CC9}) (Version: 4.7.02558 - Microsoft Corporation) Hidden Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 124.0.2478.67 - Microsoft Corporation) Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 14.41.137.0 - Microsoft Corporation) Microsoft Office Access MUI (Spanish) 2010 (HKLM-x32\...\{90140000-0015-0C0A-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Excel MUI (Spanish) 2010 (HKLM-x32\...\{90140000-0016-0C0A-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Groove MUI (Spanish) 2010 (HKLM-x32\...\{90140000-00BA-0C0A-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office InfoPath MUI (Spanish) 2010 (HKLM-x32\...\{90140000-0044-0C0A-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Office 64-bit Components 2010 (HKLM\...\{90140000-002A-0000-1000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office OneNote MUI (Spanish) 2010 (HKLM-x32\...\{90140000-00A1-0C0A-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Outlook MUI (Spanish) 2010 (HKLM-x32\...\{90140000-001A-0C0A-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office PowerPoint MUI (Spanish) 2010 (HKLM-x32\...\{90140000-0018-0C0A-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Professional Plus 2010 (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Office Proof (Basque) 2010 (HKLM-x32\...\{90140000-001F-042D-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (Catalan) 2010 (HKLM-x32\...\{90140000-001F-0403-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (English) 2010 (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (French) 2010 (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (Galician) 2010 (HKLM-x32\...\{90140000-001F-0456-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (Portuguese (Brazil)) 2010 (HKLM-x32\...\{90140000-001F-0416-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (Spanish) 2010 (HKLM-x32\...\{90140000-001F-0C0A-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Proofing (Spanish) 2010 (HKLM-x32\...\{90140000-002C-0C0A-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Publisher MUI (Spanish) 2010 (HKLM-x32\...\{90140000-0019-0C0A-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Shared 64-bit MUI (Spanish) 2010 (HKLM\...\{90140000-002A-0C0A-1000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Shared MUI (Spanish) 2010 (HKLM-x32\...\{90140000-006E-0C0A-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Word MUI (Spanish) 2010 (HKLM-x32\...\{90140000-001B-0C0A-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 24.070.0407.0003 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.38.33135 (HKLM-x32\...\{c649ede4-f16a-4486-a117-dcc2f2a35165}) (Version: 14.38.33135.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.38.33135 (HKLM-x32\...\{46c3b171-c15c-4137-8e1d-67eeb2985b44}) (Version: 14.38.33135.0 - Microsoft Corporation) Microsoft Visual C++ 2022 X64 Additional Runtime - 14.38.33135 (HKLM\...\{19AFE054-CA83-45D5-A9DB-4108EF4BD391}) (Version: 14.38.33135 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.38.33135 (HKLM\...\{AA0C8AB5-7297-4D46-A0D9-08096FE59E46}) (Version: 14.38.33135 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Additional Runtime - 14.38.33135 (HKLM-x32\...\{9C19C103-7DB1-44D1-A039-2C076A633A38}) (Version: 14.38.33135 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.38.33135 (HKLM-x32\...\{286DC39B-5FB7-4AFF-9DD4-22DB47664CD7}) (Version: 14.38.33135 - Microsoft Corporation) Hidden Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 3.9.2180.11832 - Microsoft Corporation) Microsoft Visual Studio Setup Configuration (HKLM-x32\...\{6E7D95E1-DA2A-4DED-A8C6-3FBA1714DB62}) (Version: 3.9.2148.60653 - Microsoft Corporation) Hidden Microsoft Visual Studio Setup WMI Provider (HKLM-x32\...\{0AC39B1B-4AFC-4684-B22C-625848E16C92}) (Version: 3.9.2148.60653 - Microsoft Corporation) Hidden Microsoft_VC80_ATL_x86 (HKLM-x32\...\{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}) (Version: 8.0.50727.4053 - Adobe) Hidden Microsoft_VC80_ATL_x86_x64 (HKLM\...\{925D058B-564A-443A-B4B2-7E90C6432E55}) (Version: 8.0.50727.4053 - Adobe) Hidden Microsoft_VC80_CRT_x86 (HKLM-x32\...\{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}) (Version: 8.0.50727.4053 - Adobe) Hidden Microsoft_VC80_CRT_x86_x64 (HKLM\...\{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}) (Version: 8.0.50727.4053 - Adobe) Hidden Microsoft_VC80_MFC_x86 (HKLM-x32\...\{D1A19B02-817E-4296-A45B-07853FD74D57}) (Version: 8.0.50727.4053 - Adobe) Hidden Microsoft_VC80_MFC_x86_x64 (HKLM\...\{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}) (Version: 8.0.50727.4053 - Adobe) Hidden Microsoft_VC80_MFCLOC_x86 (HKLM-x32\...\{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}) (Version: 8.0.50727.4053 - Adobe) Hidden Microsoft_VC80_MFCLOC_x86_x64 (HKLM\...\{1E9FC118-651D-4934-97BE-E53CAE5C7D45}) (Version: 80.50727.4053 - Adobe) Hidden Microsoft_VC90_ATL_x86 (HKLM-x32\...\{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}) (Version: 1.00.0000 - Adobe) Hidden Microsoft_VC90_ATL_x86_x64 (HKLM\...\{8557397C-A42D-486F-97B3-A2CBC2372593}) (Version: 1.00.0000 - Adobe) Hidden Microsoft_VC90_CRT_x86 (HKLM-x32\...\{08D2E121-7F6A-43EB-97FD-629B44903403}) (Version: 1.00.0000 - Adobe) Hidden Microsoft_VC90_CRT_x86_x64 (HKLM\...\{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}) (Version: 1.00.0000 - Adobe) Hidden Microsoft_VC90_MFC_x86 (HKLM-x32\...\{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}) (Version: 1.00.0000 - Adobe) Hidden Microsoft_VC90_MFC_x86_x64 (HKLM\...\{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}) (Version: 1.00.0000 - Adobe) Hidden NEKOPARA vol.0 (HKU\S-1-5-21-2860472463-3070343665-445750963-1004\...\{25546E8B-B838-44A1-B798-E40C412421B1}) (Version: - NEKO WORKs) OpenGL Extensions Viewer 6.4 (HKLM-x32\...\GLVIEW3) (Version: 649 - ) Oracle VM VirtualBox 7.0.12 (HKLM\...\{63D7619C-79C2-42B6-A463-060F52EAF7C0}) (Version: 7.0.12 - Oracle and/or its affiliates) Paquete de compatibilidad redirigido de documentación de Microsoft .NET Framework 4.7.1 (español) (HKLM-x32\...\{927FF4FD-8E47-4022-8545-22FD78FBC2AB}) (Version: 4.7.02558 - Microsoft Corporation) Hidden PDF Settings CS5 (HKLM-x32\...\{A78FE97A-C0C8-49CE-89D0-EDD524A17392}) (Version: 10.0 - Adobe Systems Incorporated) Hidden Pioneer DDJ_SB Driver (HKLM-x32\...\Pioneer DDJ_SB ASIO) (Version: 1.100.000.001 - Pioneer DJ Corporation.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 4.30 - Realtek Semiconductor Corp.) Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.61.0 - Samsung Electronics Co., Ltd.) Serato DJ Lite (HKLM\...\{3C4546B0-36C1-41DC-BFA4-C9C7DE42BC41}) (Version: 3.1.0.191 - Serato Limited) Hidden Serato DJ Lite (HKLM-x32\...\{bb55fed5-51b5-4b7a-8230-840681443f66}) (Version: 3.1.0.191 - Serato Limited) Software de cámara Web Logitech (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.80 - Logitech Inc.) spacedesk Windows DRIVER (HKLM\...\{D353CF82-EF19-48BD-8B30-B0B5B76F14E1}) (Version: 2.1.16.0 - datronicsoft Inc.) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.31.31 - Synaptics Incorporated) ThemeStudio 18.300.0 (HKU\S-1-5-21-2860472463-3070343665-445750963-1001\...\873e5ff4-f6a8-5924-88e4-f2da9595237c) (Version: 18.300.0 - Huawei Technologies Co., Ltd.) Unity 2022.3.24f1 (HKLM-x32\...\Unity 2022.3.24f1) (Version: 2022.3.24f1 - Unity Technologies ApS) Unity Hub 3.7.0 (HKLM\...\Unity Technologies - Hub) (Version: 3.7.0 - Unity Technologies Inc.) Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{B9A7A138-BFD5-4C73-A269-F78CCA28150E}) (Version: 8.94.0.0 - Microsoft Corporation) Visual Studio Community 2022 (HKLM-x32\...\84681235) (Version: 17.9.6 - Microsoft Corporation) vs_communitymsires (HKLM-x32\...\{8075BFFD-BC9C-4601-998D-2456B3E129C2}) (Version: 17.9.34511 - Microsoft Corporation) Hidden vs_communitysharedmsi (HKLM-x32\...\{5E604E90-FC2E-4F1E-8A11-CADE26DB5D64}) (Version: 17.9.34714 - Microsoft Corporation) Hidden vs_communityx64msi (HKLM\...\{ABAEA0B8-6DAE-409D-8DA9-E2F894E27115}) (Version: 17.9.34714 - Microsoft Corporation) Hidden vs_CoreEditorFonts (HKLM-x32\...\{1851460E-0E63-4117-B5BA-25A2F045801B}) (Version: 17.7.40001 - Microsoft Corporation) vs_devenvsharedmsi (HKLM-x32\...\{FB64355E-8ECA-402A-96DD-8CB7C0CE1732}) (Version: 17.9.34511 - Microsoft Corporation) Hidden vs_devenx64vmsi (HKLM\...\{8FBB9ED0-C9E2-42B4-AFEB-7F069E6B7D6F}) (Version: 17.9.34511 - Microsoft Corporation) Hidden vs_filehandler_amd64 (HKLM-x32\...\{377C68AC-F3B1-4B7F-B0F8-72446D60E99E}) (Version: 17.9.34714 - Microsoft Corporation) Hidden vs_filehandler_x86 (HKLM-x32\...\{8F6810F6-45F1-4D41-9BE1-FE3828602B93}) (Version: 17.9.34714 - Microsoft Corporation) Hidden vs_FileTracker_Singleton (HKLM-x32\...\{F9D12DAF-9D90-4626-B4EE-721FCBA19932}) (Version: 17.9.34714 - Microsoft Corporation) Hidden vs_githubprotocolhandlermsi (HKLM-x32\...\{6D0CCE70-83A4-438E-8347-FDDCCB50868F}) (Version: 17.9.34511 - Microsoft Corporation) Hidden vs_minshellinteropsharedmsi (HKLM-x32\...\{54974C97-AE3B-474A-BB7F-F7779AD978BD}) (Version: 17.9.34511 - Microsoft Corporation) Hidden vs_minshellinteropx64msi (HKLM\...\{D2FF0004-609B-40A7-8EEB-7ADBF4652ABF}) (Version: 17.9.34511 - Microsoft Corporation) Hidden vs_minshellmsires (HKLM-x32\...\{7D0A9A9C-162C-4D71-9DCC-48629C1013D9}) (Version: 17.9.34511 - Microsoft Corporation) Hidden vs_minshellsharedmsi (HKLM-x32\...\{7E298CFB-5829-4903-98BA-F3F70E7CEB09}) (Version: 17.9.34511 - Microsoft Corporation) Hidden vs_minshellx64msi (HKLM\...\{072326E8-D76B-4137-8DAC-45D5D58777EF}) (Version: 17.9.34714 - Microsoft Corporation) Hidden vs_vswebprotocolselectormsi (HKLM-x32\...\{08AF6F7E-1E1B-4049-B189-B0A109E0CE05}) (Version: 17.9.34511 - Microsoft Corporation) Hidden vs_vswebprotocolselectormsires (HKLM-x32\...\{45A51942-BBF0-4A69-ACEC-6A7B175A4FD0}) (Version: 17.9.34511 - Microsoft Corporation) Hidden WebView2 Runtime de Microsoft Edge (HKLM-x32\...\Microsoft EdgeWebView) (Version: 124.0.2478.67 - Microsoft Corporation) WinRAR 6.24 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.24.0 - win.rar GmbH) Wondershare Dr.Fone (Version 13.5.7) (HKLM-x32\...\{E8F86DA8-B8E4-42C7-AFD4-EBB692AC43FD}_is1) (Version: 13.5.7.309 - Wondershare Technology Co.,Ltd.) YWYT gaming mouse (HKLM-x32\...\{3315FA51-CF6C-45DF-AFBF-A328D6884AEB}) (Version: 1.00.0000 - YWYT gaming mouse) Chrome apps: ============ ForoSpyware (HKU\S-1-5-21-2860472463-3070343665-445750963-1001\...\9bb5b5e76195ec5eec6bfced640fab69) (Version: 1.0 - Google\Chrome) VirusTotal (HKU\S-1-5-21-2860472463-3070343665-445750963-1001\...\b30caebd69641fca5b6cd31e4c254c06) (Version: 1.0 - Google\Chrome) Packages: ========= Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2023-12-10] () Asphalt 9: Legends -> C:\Program Files\WindowsApps\A278AB0D.Asphalt9_4.6.8.2_x64__h6adky7gbf63m [2024-04-09] (Gameloft SE) AV1 Video Extension -> C:\Program Files\WindowsApps\Microsoft.AV1VideoExtension_1.2.931.0_x64__8wekyb3d8bbwe [2024-04-10] (Microsoft Corporation) Búsqueda web de Microsoft Bing -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.0.91.0_x64__8wekyb3d8bbwe [2024-02-09] (Microsoft Corporation) Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.21.269.0_x64__rz1tebttyb220 [2024-03-20] (Dolby Laboratories) HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.34.32.0_x64__v10z8vjag6ke6 [2024-04-15] (HP Inc.) Inicio de desarrollo -> C:\Program Files\WindowsApps\Microsoft.Windows.DevHome_0.1300.477.0_x64__8wekyb3d8bbwe [2024-04-24] (Microsoft Corporation) iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa [2024-02-24] (Apple Inc.) [Startup Task] Microsoft Copilot -> C:\Program Files\WindowsApps\Microsoft.Windows.Ai.Copilot.Provider_1.0.3.0_neutral__8wekyb3d8bbwe [2024-03-30] (Microsoft Corporation) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0 [2024-04-09] (Spotify AB) [Startup Task] WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2414.10.0_x64__cv1g1gvanyjgm [2024-04-29] (WhatsApp Inc.) [Startup Task] ==================== Personalizado CLSID (Lista blanca): ============== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) CustomCLSID: HKU\S-1-5-21-2860472463-3070343665-445750963-1001_Classes\CLSID\{6282d2e9-5906-bbf9-4b71-0c2869c6a835}\localserver32 -> C:\Program Files\Google\Play Games\current\service\Service.exe (Google LLC -> Google LLC) CustomCLSID: HKU\S-1-5-21-2860472463-3070343665-445750963-1001_Classes\CLSID\{6a27a1a9-7be8-1491-04ca-ee68a211c258}\localserver32 -> C:\Program Files\Google\Play Games\current\service\Service.exe (Google LLC -> Google LLC) CustomCLSID: HKU\S-1-5-21-2860472463-3070343665-445750963-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6722448 2010-03-25] (Microsoft Corporation -> Microsoft Corporation) ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4222864 2010-03-25] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.070.0407.0003\FileSyncShell64.dll [2024-04-23] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.070.0407.0003\FileSyncShell64.dll [2024-04-23] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.070.0407.0003\FileSyncShell64.dll [2024-04-23] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.070.0407.0003\FileSyncShell64.dll [2024-04-23] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.070.0407.0003\FileSyncShell64.dll [2024-04-23] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.070.0407.0003\FileSyncShell64.dll [2024-04-23] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.070.0407.0003\FileSyncShell64.dll [2024-04-23] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.070.0407.0003\FileSyncShell64.dll [2024-04-23] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.070.0407.0003\FileSyncShell64.dll [2024-04-23] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.070.0407.0003\FileSyncShell64.dll [2024-04-23] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.070.0407.0003\FileSyncShell64.dll [2024-04-23] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.070.0407.0003\FileSyncShell64.dll [2024-04-23] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.070.0407.0003\FileSyncShell64.dll [2024-04-23] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.070.0407.0003\FileSyncShell64.dll [2024-04-23] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.070.0407.0003\FileSyncShell64.dll [2024-04-23] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-10-03] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-10-03] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-03-12] (Malwarebytes Inc. -> Malwarebytes) ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.070.0407.0003\FileSyncShell64.dll [2024-04-23] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.070.0407.0003\FileSyncShell64.dll [2024-04-23] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-03-12] (Malwarebytes Inc. -> Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-10-03] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-10-03] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Lista blanca) ==================== (Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.) HKLM\...\Drivers32: [vidc.i420] => C:\Windows\system32\lvcod64.dll [175392 2012-10-22] (Logitech, Inc. -> Logitech Inc.) HKLM\...\Drivers32: [vidc.i420] => C:\Windows\SysWOW64\lvcodec2.dll [305000 2012-10-22] (Logitech, Inc. -> Logitech Inc.) ==================== Accesos directos & WMI ======================== (Las entradas pueden ser listadas para ser restauradas o eliminadas.) ShortcutWithArgument: C:\Users\victo\Desktop\Jovan Enrique - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default" ShortcutWithArgument: C:\Users\victo\Desktop\VirusTotal.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=dnopbpmlkabcondfpckfnhgabfcncjmg ShortcutWithArgument: C:\Users\victo\Desktop\internet explorer\ForoSpyware.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=gmlcodhckhpmidifbdkmlnakmhpfgjfl ShortcutWithArgument: C:\Users\victo\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_gmlcodhckhpmidifbdkmlnakmhpfgjfl\ForoSpyware.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=gmlcodhckhpmidifbdkmlnakmhpfgjfl ShortcutWithArgument: C:\Users\victo\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_dnopbpmlkabcondfpckfnhgabfcncjmg\VirusTotal.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=dnopbpmlkabcondfpckfnhgabfcncjmg ShortcutWithArgument: C:\Users\victo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\ForoSpyware.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=gmlcodhckhpmidifbdkmlnakmhpfgjfl ShortcutWithArgument: C:\Users\victo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\VirusTotal.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=dnopbpmlkabcondfpckfnhgabfcncjmg ShortcutWithArgument: C:\Users\victo\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\victorleonart3005@gmail.com - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1" ==================== Módulos cargados (Lista blanca) ============= 2024-04-27 08:46 - 2023-06-22 20:05 - 001035776 _____ (DFI Inc.) [Archivo no firmado] C:\Program Files\Elo Touch Solutions\ServiceReporting\EAPI_Library.dll 2024-04-27 07:37 - 2018-03-01 14:31 - 000065024 _____ (Elo Touch Solutions) [Archivo no firmado] C:\Program Files\Elo Touch Solutions\EloBeamMon.dll 2024-04-27 07:37 - 2018-03-01 14:31 - 000458240 _____ (Elo Touch Solutions) [Archivo no firmado] C:\Program Files\Elo Touch Solutions\EloIntf.dll 2013-08-22 11:08 - 2013-08-22 11:08 - 000286720 _____ (Intel Corporation) [Archivo no firmado] [El archivo está en uso] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll 2013-08-22 11:08 - 2013-08-22 11:08 - 000517120 _____ (Intel Corporation) [Archivo no firmado] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll 2024-04-13 13:03 - 2024-04-13 13:03 - 003866112 _____ (Newtonsoft) [Archivo no firmado] C:\Windows\assembly\NativeImages_v4.0.30319_64\Newtonsoft.Json\16f2437becc76b7928eeec4e3712d96d\Newtonsoft.Json.ni.dll 2017-02-13 14:54 - 2017-02-13 14:54 - 000132096 _____ (Seiko Epson Corporation) [Archivo no firmado] C:\Program Files (x86)\EPSON Software\Event Manager\epnsm.dll 2009-10-21 17:39 - 2009-10-21 17:39 - 000291328 _____ (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\Program Files (x86)\EPSON Software\Event Manager\LcMgr.dll 2016-09-14 14:31 - 2016-09-14 14:31 - 000500736 ____S (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\Windows\System32\enppmon.dll 2024-02-05 16:10 - 2023-09-12 10:52 - 008382976 _____ (wondershare) [Archivo no firmado] C:\ProgramData\Wondershare\wsServices\WsidClient.dll ==================== Alternate Data Streams (Lista blanca) ======== ==================== Modo Seguro (Lista blanca) ================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Asociación (Lista blanca) ================= ==================== Internet Explorer (Lista blanca) ========== BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation -> Microsoft Corporation) BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation) BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2024-03-25] (HP Inc. -> HP Inc.) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2024-03-25] (HP Inc. -> HP Inc.) Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) ==================== Hosts contenido: ========================= (Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.) 2019-12-07 03:14 - 2024-04-25 17:04 - 000000027 _____ C:\Windows\system32\drivers\etc\hosts 127.0.0.1 localhost 2024-01-22 19:56 - 2024-01-22 19:56 - 000000443 _____ C:\Windows\system32\drivers\etc\hosts.ics ==================== Otras Áreas =========================== (Actualmente no existe una corrección automática para esta sección.) HKCU\Environment\\Path -> %USERPROFILE%\AppData\Local\Microsoft\WindowsApps HKU\S-1-5-21-2860472463-3070343665-445750963-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg HKU\S-1-5-21-2860472463-3070343665-445750963-1004\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg DNS Servers: 192.168.1.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Firewall de Windows está habilitado. Network Binding: ============= Ethernet: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) Wi-Fi: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) Ethernet 2: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) ==================== MSCONFIG/TASK MANAGER elementos deshabilitados == (Si una entrada es incluida en el fixlist, será eliminada.) MSCONFIG\Services: AdobeARMservice => 2 MSCONFIG\Services: Apple Mobile Device Service => 2 MSCONFIG\Services: Fax => 3 MSCONFIG\Services: XblGameSave => 3 MSCONFIG\Services: XboxGipSvc => 3 HKLM\...\StartupApproved\StartupFolder: => "McAfee Security Scan Plus.lnk" HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run32: => "AdobeCS5ServiceManager" HKU\S-1-5-21-2860472463-3070343665-445750963-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_2C19A6AEC137D1B73B2831EF0BA82386" HKU\S-1-5-21-2860472463-3070343665-445750963-1001\...\StartupApproved\Run: => "electron.app.BlueStacks Services" ==================== Reglas de firewall (Lista blanca) ================ (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) FirewallRules: [{78C10D31-27E6-4836-A9A4-11D0FE1B768B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{055AAE0B-BBF9-462F-A2EF-CE0D9519A0CB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{1C53D0B2-C280-43E2-9191-5C8E7851D4BF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{5DE4609D-6A2B-4534-AFA3-E192ED801F85}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [TCP Query User{E2CD9028-E4D1-4444-8F76-14EF28719783}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) FirewallRules: [UDP Query User{929B97F8-AEC2-4F8B-A581-5E6BE3371445}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) FirewallRules: [TCP Query User{9A0B57F0-DD01-4196-BB2B-9A653E5D67D4}C:\program files\google\chrome\application\chrome.exe] => (Block) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [UDP Query User{43360A05-721B-45AF-986F-F000A805F90D}C:\program files\google\chrome\application\chrome.exe] => (Block) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [TCP Query User{063407C0-F372-4C4C-9C0E-B66E0CA12D5F}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) FirewallRules: [UDP Query User{38AB84E8-84DF-43F7-82B4-6C089290EEE8}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) FirewallRules: [TCP Query User{36DD1A6B-C227-4C13-B227-837D179A4501}C:\program files\google\chrome\application\chrome.exe] => (Block) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [UDP Query User{1BA33839-FB9F-4D4F-B291-C71BD4C28FD8}C:\program files\google\chrome\application\chrome.exe] => (Block) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [TCP Query User{AD7C95A8-D08E-4525-9EDC-9E5C75ABEAF2}C:\program files (x86)\dslrbooth\dslrbooth.exe] => (Allow) C:\program files (x86)\dslrbooth\dslrbooth.exe (Hope Pictures LLC -> Lumasoft) FirewallRules: [UDP Query User{0BD610ED-F57D-4854-BE30-E559008A7BF2}C:\program files (x86)\dslrbooth\dslrbooth.exe] => (Allow) C:\program files (x86)\dslrbooth\dslrbooth.exe (Hope Pictures LLC -> Lumasoft) FirewallRules: [TCP Query User{AFA850C0-76C1-48B9-BBFC-9960E2FE3B22}C:\program files (x86)\dslrbooth\dslrbooth.exe] => (Allow) C:\program files (x86)\dslrbooth\dslrbooth.exe (Hope Pictures LLC -> Lumasoft) FirewallRules: [UDP Query User{9C3B03CD-D8BB-44DF-8326-0CF18651C554}C:\program files (x86)\dslrbooth\dslrbooth.exe] => (Allow) C:\program files (x86)\dslrbooth\dslrbooth.exe (Hope Pictures LLC -> Lumasoft) FirewallRules: [{31806B70-6D34-4E25-A747-D04D7AC94461}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\124.0.2478.67\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) ==================== Puntos de Restauración ========================= 11-04-2024 20:00:31 Instalador de Módulos de Windows 18-04-2024 20:53:29 Punto de control programado 19-04-2024 09:22:20 Instalador de Módulos de Windows 23-04-2024 17:33:35 Installed spacedesk Windows DRIVER 23-04-2024 18:09:02 Instalador de Módulos de Windows 23-04-2024 18:13:35 Instalador de Módulos de Windows 27-04-2024 08:21:30 Windows Update ==================== Dispositivos defectuosos en el Administrador de dispositivos ============ Name: Dispositivo PCI Description: Dispositivo PCI Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Controladora simple de comunicaciones PCI Description: Controladora simple de comunicaciones PCI Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Errores del registro de eventos: ======================== Errores de aplicación: ================== Error: (04/30/2024 09:15:44 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Local Hostname hp-14-Notebook.local already in use; will try hp-14-Notebook-2.local instead Error: (04/30/2024 09:15:44 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 16 hp-14-Notebook.local. AAAA 2806:105E:001C:5A2F:6F04:7798:D060:9E6C Error: (04/30/2024 09:15:44 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from FE80:0000:0000:0000:4421:C1AA:A961:3BFC:5353 16 hp-14-Notebook.local. AAAA 2806:105E:001C:5A2F:38BA:19C0:413C:EBA3 Error: (04/30/2024 09:15:44 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Resetting to Probing: 16 hp-14-Notebook.local. AAAA FE80:0000:0000:0000:4421:C1AA:A961:3BFC Error: (04/30/2024 09:15:44 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from FE80:0000:0000:0000:4421:C1AA:A961:3BFC:5353 16 hp-14-Notebook.local. AAAA 2806:105E:001C:5A2F:38BA:19C0:413C:EBA3 Error: (04/30/2024 09:15:44 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Resetting to Probing: 16 hp-14-Notebook.local. AAAA 2806:105E:001C:5A2F:F8F1:4793:3B1A:8D72 Error: (04/30/2024 09:15:44 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from FE80:0000:0000:0000:4421:C1AA:A961:3BFC:5353 16 hp-14-Notebook.local. AAAA 2806:105E:001C:5A2F:38BA:19C0:413C:EBA3 Error: (04/30/2024 09:15:44 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Resetting to Probing: 16 hp-14-Notebook.local. AAAA 2806:105E:001C:5A2F:68D3:54F3:F43C:99BE Errores del sistema: ============= Error: (04/30/2024 09:15:35 PM) (Source: VBoxNetLwf) (EventID: 12) (User: ) Description: El controlador detectó un error interno del controlador en \Device\VBoxNetLwf. Error: (04/29/2024 07:56:23 AM) (Source: VBoxNetLwf) (EventID: 12) (User: ) Description: El controlador detectó un error interno del controlador en \Device\VBoxNetLwf. Error: (04/28/2024 08:48:42 AM) (Source: VBoxNetLwf) (EventID: 12) (User: ) Description: El controlador detectó un error interno del controlador en \Device\VBoxNetLwf. Error: (04/28/2024 07:02:37 AM) (Source: VBoxNetLwf) (EventID: 12) (User: ) Description: El controlador detectó un error interno del controlador en \Device\VBoxNetLwf. Error: (04/27/2024 09:21:37 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: El servicio Google Update Servicio (gupdate) no pudo iniciarse debido al siguiente error: El servicio no respondió a tiempo a la solicitud de inicio o de control. Error: (04/27/2024 09:21:37 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Google Update Servicio (gupdate). Error: (04/27/2024 09:21:34 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY) Description: El servidor {8018F647-BF07-55BB-82BE-A2D7049F7CE4} no se registró con DCOM dentro del tiempo de espera requerido. Error: (04/27/2024 09:19:27 PM) (Source: VBoxNetLwf) (EventID: 12) (User: ) Description: El controlador detectó un error interno del controlador en \Device\VBoxNetLwf. Windows Defender: ================ Date: 2024-04-29 08:09:01 Description: El examen de Antivirus de Microsoft Defender se detuvo antes de completarse. Id. de examen: {3E435EDE-C9F7-43A9-BE63-F7B67CE7A370} Tipo de examen: Antimalware Parámetros de examen: Examen rápido Usuario: NT AUTHORITY\SYSTEM Date: 2024-04-29 08:00:57 Description: El acceso controlado a carpetas bloqueó C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe para que no pueda modificar %system%\catroot2. Hora de detección: 2024-04-29T14:00:57.866Z Usuario: NT AUTHORITY\SYSTEM Ruta de acceso: %system%\catroot2 Nombre del proceso: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe Versión de inteligencia de seguridad: 1.409.590.0 Versión del motor: 1.1.24030.4 Versión del producto: 4.18.24030.9 Date: 2024-04-29 08:00:57 Description: El acceso controlado a carpetas bloqueó C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe para que no pueda modificar %system%\config\systemprofile\AppData\Roaming. Hora de detección: 2024-04-29T14:00:57.785Z Usuario: (unknown user) Ruta de acceso: %system%\config\systemprofile\AppData\Roaming Nombre del proceso: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe Versión de inteligencia de seguridad: 1.409.590.0 Versión del motor: 1.1.24030.4 Versión del producto: 4.18.24030.9 Date: 2024-04-29 07:56:28 Description: El acceso controlado a carpetas impidió que C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe realizara cambios en la memoria. Tiempo de detección: 2024-04-29T13:56:28.698Z Usuario: NT AUTHORITY\SYSTEM Ruta de acceso: \Device\Harddisk0\DR0 Nombre del proceso: C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe Versión de inteligencia de seguridad: 1.409.552.0 Versión del motor: 1.1.24030.4 Versión del producto: 4.18.24030.9 Date: 2024-04-28 08:48:48 Description: El acceso controlado a carpetas impidió que C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe realizara cambios en la memoria. Tiempo de detección: 2024-04-28T14:48:48.081Z Usuario: NT AUTHORITY\SYSTEM Ruta de acceso: \Device\Harddisk0\DR0 Nombre del proceso: C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe Versión de inteligencia de seguridad: 1.409.552.0 Versión del motor: 1.1.24030.4 Versión del producto: 4.18.24030.9 Event[0]: Date: 2023-11-27 19:33:47 Description: Antivirus de Microsoft Defender detectó un error al intentar actualizar la inteligencia de seguridad. Nueva versión de inteligencia de seguridad: Versión anterior de inteligencia de seguridad: 1.401.1303.0 Origen de actualización: Servidor de Microsoft Update Tipo de inteligencia de seguridad: AntiVirus Tipo de actualización: Completa Usuario: NT AUTHORITY\SYSTEM Versión actual del motor: Versión anterior del motor: 1.1.23100.2009 Código de error: 0x80070102 Descripción del error: Tiempo de espera de la operación de espera agotado. Date: 2023-11-12 19:04:29 Description: Antivirus de Microsoft Defender detectó un error al intentar actualizar la inteligencia de seguridad. Nueva versión de inteligencia de seguridad: Versión anterior de inteligencia de seguridad: 1.303.25.0 Origen de actualización: Servidor de Microsoft Update Tipo de inteligencia de seguridad: AntiVirus Tipo de actualización: Completa Usuario: NT AUTHORITY\SYSTEM Versión actual del motor: Versión anterior del motor: 1.1.16400.2 Código de error: 0x80240016 Descripción del error: Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulta Ayuda y soporte técnico. CodeIntegrity: =============== Date: 2024-04-30 21:20:37 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Información de la memoria =========================== BIOS: Insyde F.1B 07/27/2016 Placa base: Hewlett-Packard 218B Procesador: Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz Porcentaje de memoria en uso: 68% RAM física total: 6042.35 MB RAM física disponible: 1896.9 MB Virtual total: 8730.35 MB Virtual disponible: 4465.95 MB ==================== Unidades ================================ Drive c: () (Fixed) (Total:237.9 GB) (Free:54.56 GB) (Model: XrayDisk 256GB SSD) NTFS \\?\Volume{f61720cd-0000-0000-0000-100000000000}\ (Reservado para el sistema) (Fixed) (Total:0.05 GB) (Free:0.02 GB) NTFS \\?\Volume{f61720cd-0000-0000-0000-d07c3b000000}\ () (Fixed) (Total:0.52 GB) (Free:0.08 GB) NTFS ==================== MBR & Tabla de particiones ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 238.5 GB) (Disk ID: F61720CD) Partition 1: (Active) - (Size=50 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=237.9 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=535 MB) - (Type=27) ==================== Final de Addition.txt =======================