Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 27-05-2020 01 Ejecutado por rodra (27-05-2020 18:12:47) Ejecutado desde C:\Users\rodra\Desktop Windows 10 Pro Versión 1909 18363.836 (X64) (2019-11-18 03:16:13) Modo de Inicio: Normal ========================================================== ==================== Cuentas: ============================= Administrador (S-1-5-21-868891584-346546696-917405690-500 - Administrator - Disabled) Backup (S-1-5-21-868891584-346546696-917405690-1002 - Administrator - Enabled) => C:\Users\Backup DefaultAccount (S-1-5-21-868891584-346546696-917405690-503 - Limited - Disabled) Invitado (S-1-5-21-868891584-346546696-917405690-501 - Limited - Disabled) rodra (S-1-5-21-868891584-346546696-917405690-1001 - Administrator - Enabled) => C:\Users\rodra WDAGUtilityAccount (S-1-5-21-868891584-346546696-917405690-504 - Limited - Disabled) ==================== Centro de Seguridad ======================== (Si una entrada es incluida en el fixlist, será eliminada.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} ==================== Programas instalados ====================== (Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.) Ableton Live 10 Suite (HKLM\...\{A5FB045A-DF00-440E-9B1D-9B99C54C3021}) (Version: 10.0.0.0 - Ableton) Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 20.009.20065 - Adobe Systems Incorporated) Adobe Connect (HKU\S-1-5-21-868891584-346546696-917405690-1001\...\Adobe Connect App) (Version: 2020.1.5.32 - Adobe Systems Inc.) Alien - Isolation (HKLM-x32\...\Alien - Isolation_is1) (Version: - ) AMD Product Verification Tool versión 1.0.6.0 (HKLM\...\{4242685A-EF3E-45FF-B4AE-758E49020936}}_is1) (Version: 1.0.6.0 - AMD) AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 20.4.2 - Advanced Micro Devices, Inc.) Analog Lab 4 4.1.2 (HKLM-x32\...\Analog Lab 4_is1) (Version: 4.1.2 - Arturia) Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.3.7 - Electronic Arts, Inc.) Arturia Software Center 2.0.0 (HKLM-x32\...\Arturia Software Center_is1) (Version: 2.0.0 - Arturia) ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach) ASUS Aac_NBDT HAL (HKLM\...\{01D3B7AA-D078-4506-B460-60877FCDDBD6}) (Version: 2.3.11.0 - ASUSTek COMPUTER INC.) Hidden ASUS Aac_NBDT HAL (HKLM-x32\...\{96f500e7-aac6-40c8-aa25-d223f373d8dd}) (Version: 2.3.11.0 - ASUSTek COMPUTER INC.) Hidden ASUS AIOFan HAL (HKLM\...\{EAE80DED-1A39-41C5-9F60-87CC947F6454}) (Version: 1.0.19 - ASUSTek COMPUTER INC.) Hidden ASUS AIOFan HAL (HKLM-x32\...\{1b15ca41-2671-4685-ab55-b8c814c4942a}) (Version: 1.0.19 - ASUSTek COMPUTER INC.) Hidden ASUS AURA Display Component (HKLM\...\{AFD1CF98-FE97-434C-A095-9F27C5BEA53C}) (Version: 1.1.25 - ASUSTek COMPUTER INC. ) Hidden ASUS AURA Display Component (HKLM-x32\...\{94267bd0-fa8a-4aa4-925d-ec3e0d130fba}) (Version: 1.1.25 - ASUSTek COMPUTER INC. ) Hidden ASUS AURA Extension Card HAL (HKLM\...\{2C39FF80-1BB2-42C5-A58D-DC90EFF048F6}) (Version: 1.0.16 - ASUSTeK COMPUTER INC.) Hidden ASUS AURA Extension Card HAL (HKLM-x32\...\{e46f527f-1e64-4554-abc1-115f3429c25c}) (Version: 1.0.16 - ASUSTeK COMPUTER INC.) Hidden ASUS AURA Headset Component (HKLM\...\{A3C4120D-8096-4307-91A2-FFE37EBD5A3D}) (Version: 1.02.12 - ASUSTek COMPUTER INC.) Hidden ASUS AURA Headset Component (HKLM-x32\...\{b96dabae-c7ef-45f2-95ab-1a4d917262a3}) (Version: 1.02.12 - ASUSTek COMPUTER INC.) Hidden ASUS AURA Motherboard HAL (HKLM\...\{D800D836-DE15-4B00-8273-521F022CD837}) (Version: 1.0.58 - ASUSTeK COMPUTER INC.) Hidden ASUS AURA Motherboard HAL (HKLM-x32\...\{d00daf18-4c78-4fc6-bb05-376a06c79c48}) (Version: 1.0.58 - ASUSTeK COMPUTER INC.) Hidden ASUS AURA Odd Component (HKLM\...\{B5E322FB-C191-463E-BDDD-4F22290EDFDB}) (Version: 1.0.8 - ASUSTeK COMPUTER INC.) Hidden ASUS AURA Odd Component (HKLM-x32\...\{277875e0-972c-4705-b09c-ca5acf5b2f7c}) (Version: 1.0.8 - ASUSTeK COMPUTER INC.) Hidden ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.03.45 - ASUSTek COMPUTER INC.) Hidden ASUS AURA VGA Component (HKLM\...\{71BB96A6-EAC4-45AE-A17D-D3ED43FF1D14}) (Version: 0.0.2.3 - ASUSTek COMPUTER INC. ) Hidden ASUS AURA VGA Component (HKLM-x32\...\{2977b6c2-6523-42f4-8f52-bf4f7fc7a840}) (Version: 0.0.2.3 - ASUSTek COMPUTER INC. ) Hidden ASUS GLCKIO2 Driver (HKLM-x32\...\{3507c756-a80f-4b0e-8475-975d8b432176}) (Version: 1.0.20 - ASUSTeK Computer Inc.) Hidden ASUS GLCKIO2 Driver (HKLM-x32\...\{5960FD0F-BB3B-49AF-B175-F77DC91E995A}) (Version: 1.0.20 - ASUSTeK Computer Inc.) Hidden ASUS Keyboard HAL (HKLM\...\{0FA0CDEE-5DC8-421E-A97D-C74FA6E66FC3}) (Version: 1.0.50 - ASUSTek COMPUTER INC.) Hidden ASUS Keyboard HAL (HKLM-x32\...\{52400cff-4628-4ca3-a922-3767b198c1fd}) (Version: 1.0.50 - ASUSTek COMPUTER INC.) Hidden ASUS MB Peripheral Products (HKLM\...\{BFED9861-7D96-4528-89F1-B090ABBF11A7}) (Version: 1.0.32 - ASUSTeK Computer Inc.) Hidden ASUS MB Peripheral Products (HKLM-x32\...\{243ceb39-3b77-43ab-9135-fddab4ac7caf}) (Version: 1.0.32 - ASUSTeK Computer Inc.) Hidden ASUS Mouse HAL (HKLM\...\{1838F91B-D481-45AA-B92F-071C62D0A19A}) (Version: 1.0.53 - ASUSTek COMPUTER INC.) Hidden ASUS Mouse HAL (HKLM-x32\...\{3dcded5b-10da-4d98-9c1f-c33d25288ebd}) (Version: 1.0.53 - ASUSTek COMPUTER INC.) Hidden ASUS MousePad HAL (HKLM\...\{723B40A4-5BF2-4DC6-834A-2ADF75F3CF7E}) (Version: 1.0.1.2 - ASUSTek COMPUTER INC.) Hidden ASUS MousePad HAL (HKLM-x32\...\{0ebcd5fb-7bf9-45b4-a0b6-0932d728e289}) (Version: 1.0.1.2 - ASUSTek COMPUTER INC.) Hidden AURA (HKLM-x32\...\{5899CD4F-8764-4303-A0D9-C60A62CFC24F}) (Version: 1.07.79 - ASUSTeK Computer Inc.) AURA DRAM Component (HKLM\...\{3881F403-B6B7-4D2F-BDAC-7901EB677F52}) (Version: 1.0.37 - ASUS) Hidden AURA DRAM Component (HKLM-x32\...\{60d8d6b5-0ec5-420a-a407-a42e19346d46}) (Version: 1.0.37 - ASUS) Hidden AURA Service (HKLM-x32\...\{0E536061-3B55-4D45-BF58-0BDA261C94B0}) (Version: 3.03.79 - ASUSTeK Computer Inc.) Hidden AURA Service (HKLM-x32\...\{880f3eb6-28fe-4c63-875f-c6fb491fc334}) (Version: 3.03.79 - ASUSTeK Computer Inc.) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) BitTorrent Web (HKU\S-1-5-21-868891584-346546696-917405690-1001\...\btweb) (Version: 1.0.11 - BitTorrent, Inc.) BitZipper 2015 (HKLM-x32\...\BitZipper_is1) (Version: 2015.14.12.18 - Bitberry Software) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Borderlands 3 MULTi10 - ElAmigos versión 1.0 u3 (HKLM-x32\...\{3E5DCDC2-E9A7-48E5-BD6B-F6B5B4A5DC6C}_is1) (Version: 1.0 u3 - 2K) Branding64 (HKLM\...\{856DA29A-EA4A-468B-BBC2-B5F60DD75BFE}) (Version: 1.00.0002 - Advanced Micro Devices, Inc.) Hidden Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment) CCleaner (HKLM\...\CCleaner) (Version: 5.65 - Piriform) Corsair AURA DRAM Component (HKLM\...\{376E0869-A4F1-4DC7-A1FD-EBF3AFFEB832}) (Version: 1.0.13 - CORSAIR COMPONENTS INC.) Hidden Corsair AURA DRAM Component (HKLM-x32\...\{8fce5ea9-d56f-4f89-a363-830eceb72c72}) (Version: 1.0.13 - CORSAIR COMPONENTS INC.) Hidden Discord (HKU\S-1-5-21-868891584-346546696-917405690-1001\...\Discord) (Version: 0.0.306 - Discord Inc.) Driver Booster 7 (HKLM-x32\...\Driver Booster_is1) (Version: 7.4.0 - IObit) ENE IO Driver (HKLM-x32\...\{D0512FFD-6194-4D2E-967E-25B82A3322FF}) (Version: 3.0.0 - ENE TECHNOLOGY INC.) Hidden ENE RGB HAL (HKLM\...\{BBEB79B8-472B-44E6-B0BA-157909EFE7D6}) (Version: 1.00.12 - Ene Tech.) Hidden ENE RGB HAL (HKLM-x32\...\{e0fa04a3-0593-40a3-8eea-c45cf5d09062}) (Version: 1.00.12 - Ene Tech.) Hidden ENE_DRAM_RGB_AURA42 (HKLM\...\{BC5E0A82-C638-44CB-8129-20C8ED70DE7A}) (Version: 1.00.02 - Ene Tech.) Hidden ENE_DRAM_RGB_AURA42 (HKLM-x32\...\{f3d7fb09-b93f-4c01-a765-0b0adc5bc746}) (Version: 1.00.02 - Ene Tech.) Hidden ENE_EHD_ASM_HAL (HKLM\...\{CB19FBA3-7A4F-4D2A-A231-F580B5DCD203}) (Version: 1.00.05 - ENE TECHNOLOGY INC.) Hidden ENE_EHD_ASM_HAL (HKLM-x32\...\{3532d794-73d7-42bd-af02-9f00623dd567}) (Version: 1.00.05 - ENE TECHNOLOGY INC.) Hidden ENE_EHD_M2_HAL (HKLM\...\{455E34DD-5F26-431E-B542-72F73A8FEED8}) (Version: 1.00.02 - ENE TECHNOLOGY INC.) Hidden ENE_EHD_M2_HAL (HKLM-x32\...\{24a265a5-9f90-4090-904f-5ed9fa4414b8}) (Version: 1.00.02 - ENE TECHNOLOGY INC.) Hidden Epic Games Launcher (HKLM-x32\...\{3A595C95-121D-4EB0-8D57-C7A309BA6C09}) (Version: 1.1.267.0 - Epic Games, Inc.) GALAX GAMER RGB (HKLM\...\{06A16AA8-BBA7-4362-962E-16651962D87C}) (Version: 1.00.02 - Galaxy Microsystems Ltd.) Hidden GALAX GAMER RGB (HKLM-x32\...\{1257fdeb-ffa3-4e17-9d4b-189075ea3656}) (Version: 1.00.02 - Galaxy Microsystems Ltd.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 81.0.4044.138 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden ImperiumAO (HKLM-x32\...\ImperiumAO) (Version: 1.6 - Imperium Games) Kingston AURA DRAM Component (HKLM\...\{6D2D2DAF-BFE4-45A6-BF40-8A9F7FF54F42}) (Version: 1.0.20 - KINGSTON COMPONENTS INC.) Hidden Kingston AURA DRAM Component (HKLM-x32\...\{c0c65c06-e79e-44b5-bd66-85099364afeb}) (Version: 1.0.20 - KINGSTON COMPONENTS INC.) Hidden Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: - Logitech) Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes) Microsoft Office 365 ProPlus - es-es (HKLM\...\O365ProPlusRetail - es-es) (Version: 16.0.11929.20776 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-868891584-346546696-917405690-1001\...\OneDriveSetup.exe) (Version: 20.052.0311.0011 - Microsoft Corporation) Microsoft Teams (HKU\S-1-5-21-868891584-346546696-917405690-1001\...\Teams) (Version: 1.3.00.4461 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27033 (HKLM-x32\...\{cc3a7c63-31fb-4129-9024-63ebefd86a95}) (Version: 14.16.27033.0 - Microsoft Corporation) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.11929.20776 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.11929.20776 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0C0A-1000-0000000FF1CE}) (Version: 16.0.11929.20776 - Microsoft Corporation) Hidden Origin (HKLM-x32\...\Origin) (Version: 10.5.70.40362 - Electronic Arts, Inc.) PACE License Support Win64 (HKLM\...\{962626E7-CFC9-4dfe-87AB-6FD7FCAE5C4B}) (Version: 5.1.1.2937 - PACE Anti-Piracy, Inc.) Hidden PACE License Support Win64 (HKLM-x32\...\InstallShield_{962626E7-CFC9-4dfe-87AB-6FD7FCAE5C4B}) (Version: 5.1.1.2937 - PACE Anti-Piracy, Inc.) Patriot Viper M2 SSD RGB (HKLM\...\{0886A906-0625-4A43-930D-AA92F6665AF4}) (Version: 1.00.04 - Patriot Memory) Hidden Patriot Viper M2 SSD RGB (HKLM-x32\...\{ebb7013c-0b03-497c-bed1-1e48e806a593}) (Version: 1.00.04 - Patriot Memory) Patriot Viper RGB (HKLM\...\{E42E13B0-071E-49C1-B1CC-58198E82F302}) (Version: 1.00.08 - Patriot Memory) Hidden Patriot Viper RGB (HKLM-x32\...\{4b7bfeff-ac47-46c1-aea6-4556f5f0e6bb}) (Version: 1.00.08 - Patriot Memory) Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.3.0.4461 - Microsoft Corporation) TP-Link Archer T2U Driver (HKLM-x32\...\{D6A7C1A4-FD9A-40F1-8D6E-3E8CCF204DD6}) (Version: 2.1.0 - TP-Link) UVI Workstation x64 3.0.11 (HKLM\...\UVI Workstation x64_is1) (Version: 3.0.11 - UVI) VALORANT (HKU\S-1-5-21-868891584-346546696-917405690-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc) WinRAR 5.90 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH) Packages: ========= Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_6.8.5.0_x86__kgqvnymyfvs32 [2020-05-25] (king.com) Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.37.4.0_x86__kgqvnymyfvs32 [2020-05-27] (king.com) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-05-25] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-05-25] (Microsoft Corporation) [MS Ad] Microsoft Noticias -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.39.21431.0_x64__8wekyb3d8bbwe [2020-05-27] (Microsoft Corporation) Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-25] (Microsoft Studios) [MS Ad] MSN El tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-05-25] (Microsoft Corporation) [MS Ad] Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0 [2020-05-27] (Spotify AB) [Startup Task] ==================== Personalizado CLSID (Lista blanca): ============== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) CustomCLSID: HKU\S-1-5-21-868891584-346546696-917405690-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\rodra\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20031.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-868891584-346546696-917405690-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\rodra\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20031.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [BitZipper32] -> {D5906221-A717-479B-9B49-CD848F9CE816} => C:\Program Files (x86)\BitZipper\BZShlExt64.dll [2012-10-17] (Bitberry Software ApS -> Bitberry Software) ContextMenuHandlers1: [BitZipper64] -> {9176020F-4A61-4F57-A133-258110EBC765} => C:\Program Files (x86)\BitZipper\BZShlExt64.dll [2012-10-17] (Bitberry Software ApS -> Bitberry Software) ContextMenuHandlers1: [LavasoftShellExt] -> {DCE027F7-16A4-4BEE-9BE7-74F80EE3738F} => -> Ningún archivo ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [LavasoftShellExt] -> {DCE027F7-16A4-4BEE-9BE7-74F80EE3738F} => -> Ningún archivo ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-05-26] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2020-04-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) ContextMenuHandlers6: [BitZipper32] -> {D5906221-A717-479B-9B49-CD848F9CE816} => C:\Program Files (x86)\BitZipper\BZShlExt64.dll [2012-10-17] (Bitberry Software ApS -> Bitberry Software) ContextMenuHandlers6: [BitZipper64] -> {9176020F-4A61-4F57-A133-258110EBC765} => C:\Program Files (x86)\BitZipper\BZShlExt64.dll [2012-10-17] (Bitberry Software ApS -> Bitberry Software) ContextMenuHandlers6: [LavasoftShellExt] -> {DCE027F7-16A4-4BEE-9BE7-74F80EE3738F} => -> Ningún archivo ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-05-26] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Lista blanca) ==================== ==================== Accesos directos & WMI ======================== ==================== Módulos cargados (Lista blanca) ============= 2020-03-02 18:11 - 2020-03-02 18:11 - 000017920 _____ () [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\libEGL.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 003567616 _____ () [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll 2019-11-05 14:33 - 2019-11-05 14:33 - 000209920 _____ () [Archivo no firmado] C:\Program Files\ENE\Aac_ENE RGB HAL\x86\AacHal_x86.dll 2019-10-22 02:16 - 2019-10-22 02:16 - 000264704 _____ () [Archivo no firmado] C:\Program Files\ENE\Aac_ENE RGB HAL\x86\SB_SMBUS_SDK.dll 2019-11-06 14:09 - 2019-11-06 14:09 - 000190976 _____ () [Archivo no firmado] C:\Program Files\ENE\Aac_ENE_DRAM_RGB_AURA42\x86\AacHal_x86.dll 2019-11-25 14:44 - 2019-11-25 14:44 - 000176128 _____ () [Archivo no firmado] C:\Program Files\ENE\Aac_ENE_EHD_ASM_HAL\AacHal_x86.dll 2019-07-25 11:55 - 2019-07-25 11:55 - 000184832 _____ () [Archivo no firmado] C:\Program Files\ENE\Aac_ENE_EHD_M2_HAL\AacHal_x86.dll 2018-09-20 09:39 - 2018-09-20 09:39 - 000156672 _____ () [Archivo no firmado] C:\Program Files\Galaxy\Aac_GALAX GAMER RGB\AacHal_x86.dll 2020-04-21 16:34 - 2020-04-21 16:34 - 001518592 _____ (Advanced Micro Devices, Inc.) [Archivo no firmado] C:\Program Files\AMD\WVR\OpenVR\bin\win64\driver_amdwvr.dll 2019-12-10 16:40 - 2019-12-10 16:40 - 002831360 _____ (Apache Software Foundation) [Archivo no firmado] C:\Program Files (x86)\LightingService\log4cxx.dll 2018-09-20 09:08 - 2018-09-20 09:08 - 000053760 _____ (MS) [Archivo no firmado] C:\Program Files\Galaxy\Aac_GALAX GAMER RGB\MsIo32_Galax.dll 2020-05-19 20:39 - 2020-05-01 17:44 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Archivo no firmado] C:\Program Files (x86)\Origin\LIBEAY32.dll 2020-05-19 20:39 - 2020-05-01 17:44 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Archivo no firmado] C:\Program Files (x86)\Origin\ssleay32.dll 2020-05-19 20:39 - 2020-05-01 17:44 - 001611264 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files (x86)\Origin\platforms\qwindows.dll 2020-05-19 20:39 - 2020-05-01 17:44 - 005487104 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files (x86)\Origin\Qt5Core.dll 2020-05-19 20:39 - 2020-05-01 17:44 - 005841920 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files (x86)\Origin\Qt5Gui.dll 2020-05-19 20:39 - 2020-05-01 17:44 - 001179136 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files (x86)\Origin\Qt5Network.dll 2020-05-19 20:39 - 2020-05-01 17:44 - 000146432 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files (x86)\Origin\Qt5WebSockets.dll 2020-05-19 20:39 - 2020-05-01 17:44 - 005089792 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files (x86)\Origin\Qt5Widgets.dll 2020-05-19 20:39 - 2020-05-01 17:44 - 000184832 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Program Files (x86)\Origin\Qt5Xml.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 000031744 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 000039424 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 000031744 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 000413696 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 000025088 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 000025088 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 000023552 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 000519168 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 001431040 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 001180672 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 000135680 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll 2020-04-21 16:43 - 2020-04-21 16:43 - 006010880 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 006345216 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 001078272 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 000313856 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 004000256 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 003802624 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 000171008 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 001083904 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 000205312 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 000329728 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 000113152 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 000376320 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 092323328 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 005560832 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 000463360 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 000188416 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 002888704 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 000053760 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 000059392 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 000017408 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 000287232 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 000329216 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 000136192 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 000089088 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 000312320 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll 2020-03-02 18:11 - 2020-03-02 18:11 - 000017920 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll 2020-04-21 16:43 - 2020-04-21 16:43 - 000085504 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll 2019-12-03 16:12 - 2019-12-03 16:12 - 000467456 _____ (TODO: ) [Archivo no firmado] C:\Program Files\ASUS\Aac_Keyboard\AacKbHal_x86.dll ==================== Alternate Data Streams (Lista blanca) ======== (Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.) AlternateDataStreams: C:\ProgramData\PACE:993125E8F34F28FB [217] ==================== Modo Seguro (Lista blanca) ================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Asociación (Lista blanca) ================= ==================== Internet Explorer sitios de confianza/restringidos ========== (Si una entrada es incluida en el fixlist, será eliminada del registro.) IE trusted site: HKU\S-1-5-21-868891584-346546696-917405690-1001\...\sharepoint.com -> hxxps://ucesvirtual-files.sharepoint.com ==================== Otras Áreas =========================== (Actualmente no existe una corrección automática para esta sección.) HKU\S-1-5-21-868891584-346546696-917405690-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\rodra\Desktop\Varios\mountains-4k-silhouette-red-sun-sunset.jpg DNS Servers: 200.115.192.28 - 181.47.248.145 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Firewall de Windows está habilitado. ==================== MSCONFIG/TASK MANAGER elementos deshabilitados == ==================== Reglas de firewall (Lista blanca) ================ (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) FirewallRules: [TCP Query User{91B6CC11-4F2E-42DB-B533-69DAACC7736F}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [UDP Query User{0C38BB3E-35F0-456C-919F-98F718FE4F89}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [TCP Query User{A272D6C4-7D66-43B6-BC93-7B7997DE0B21}D:\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision) FirewallRules: [UDP Query User{4BC3E3DB-9E80-4556-B7E3-2826C8164450}D:\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision) FirewallRules: [TCP Query User{6BD365FC-4887-4B81-BE95-EC1E85829AA1}C:\users\rodra\appdata\roaming\bittorrent web\btweb.exe] => (Allow) C:\users\rodra\appdata\roaming\bittorrent web\btweb.exe (Jenkins Win Client Build CA -> BitTorrent Inc.) [Archivo no firmado] FirewallRules: [UDP Query User{590EF055-5B1A-4383-9EC6-72A55D3DCAA8}C:\users\rodra\appdata\roaming\bittorrent web\btweb.exe] => (Allow) C:\users\rodra\appdata\roaming\bittorrent web\btweb.exe (Jenkins Win Client Build CA -> BitTorrent Inc.) [Archivo no firmado] FirewallRules: [TCP Query User{D34289A1-9BBA-40C9-B1C4-6783261BC018}C:\program files\windowsapps\spotifyab.spotifymusic_1.132.618.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.132.618.0_x86__zpdnekdrzrea0\spotify.exe => Ningún archivo FirewallRules: [UDP Query User{1E077F81-86C0-4EAF-9A83-32B1F33103C5}C:\program files\windowsapps\spotifyab.spotifymusic_1.132.618.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.132.618.0_x86__zpdnekdrzrea0\spotify.exe => Ningún archivo FirewallRules: [TCP Query User{B70765E5-33C8-4DAA-B131-77BB1FE07093}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [UDP Query User{A2CF9E43-0FA8-45BA-90B6-765FDEA025B2}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [TCP Query User{9EB812C7-404C-418A-A1CA-D01503E32B5F}C:\program files\windowsapps\spotifyab.spotifymusic_1.132.618.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.132.618.0_x86__zpdnekdrzrea0\spotify.exe => Ningún archivo FirewallRules: [UDP Query User{C0418956-EA5E-4752-848D-0A2FDAD59488}C:\program files\windowsapps\spotifyab.spotifymusic_1.132.618.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.132.618.0_x86__zpdnekdrzrea0\spotify.exe => Ningún archivo FirewallRules: [{57C29EC5-9697-4309-B4FB-1CE612A3E852}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{65D1C197-78E6-4F39-AA02-EAE6FE6BC910}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{1DA3D425-36A9-4250-859F-95F48FDDD7B2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{B0620490-6DA3-4497-9603-6C4E63A214F3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{23EB447F-E070-494B-8CC2-75DAFBE1FA13}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{1C8FB4CB-CD65-456E-8979-D3558D318BC4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{E607A7E8-C2F5-4822-9592-EB701301BD5B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{549BDA6A-CBDF-4FD5-AF72-D48854E970A0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.133.569.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) ==================== Puntos de Restauración ========================= 23-05-2020 18:38:49 Se ha instalado DirectX 25-05-2020 20:50:38 Operación de restauración ==================== Dispositivos defectuosos en el Administrador de dispositivos ============ ==================== Errores del registro de eventos: ======================== Errores de aplicación: ================== Error: (05/26/2020 09:00:05 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Local Hostname DESKTOP-3LBHAFG.local already in use; will try DESKTOP-3LBHAFG-2.local instead Error: (05/26/2020 09:00:05 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 4 DESKTOP-3LBHAFG.local. Addr 192.168.0.11 Error: (05/26/2020 09:00:05 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.0.11:5353 16 DESKTOP-3LBHAFG.local. AAAA 2800:0810:055C:8F22:0000:0000:0000:000D Error: (05/26/2020 09:00:05 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Resetting to Probing: 16 DESKTOP-3LBHAFG.local. AAAA FE80:0000:0000:0000:4C5A:627F:1B62:CF00 Error: (05/26/2020 09:00:05 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.0.11:5353 16 DESKTOP-3LBHAFG.local. AAAA 2800:0810:055C:8F22:0000:0000:0000:000D Error: (05/26/2020 09:00:05 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Resetting to Probing: 16 DESKTOP-3LBHAFG.local. AAAA 2800:0810:055C:8F22:04E4:A152:AC47:8AD0 Error: (05/26/2020 09:00:05 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.0.11:5353 16 DESKTOP-3LBHAFG.local. AAAA 2800:0810:055C:8F22:0000:0000:0000:000D Error: (05/26/2020 09:00:05 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Resetting to Probing: 16 DESKTOP-3LBHAFG.local. AAAA 2800:0810:055C:8F22:4C5A:627F:1B62:CF00 Errores del sistema: ============= Error: (05/27/2020 06:01:26 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY) Description: Error al intentar leer el archivo local de hosts. Error: (05/27/2020 06:01:17 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: El servicio 7ADDD474 se cerró con el siguiente error: No se puede encontrar el módulo especificado. Error: (05/27/2020 06:01:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: El servicio SecurityServiceMonitor no pudo iniciarse debido al siguiente error: El sistema no puede encontrar el archivo especificado. Error: (05/27/2020 06:01:15 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY) Description: Error al intentar leer el archivo local de hosts. Error: (05/27/2020 06:01:04 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: El cierre anterior del sistema a las 15:07:09 del ‎27/‎5/‎2020 resultó inesperado. Error: (05/26/2020 09:00:00 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY) Description: Error al intentar leer el archivo local de hosts. Error: (05/26/2020 08:59:54 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: El servicio 7ADDD474 se cerró con el siguiente error: No se puede encontrar el módulo especificado. Error: (05/26/2020 08:59:54 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: El servicio SecurityServiceMonitor no pudo iniciarse debido al siguiente error: El sistema no puede encontrar el archivo especificado. Windows Defender: =================================== Date: 2020-05-26 18:28:52.385 Description: Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado. Para más información, consulta lo siguiente: https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0 Nombre: HackTool:Win32/AutoKMS Id.: 2147685180 Gravedad: Alta Categoría: Herramienta Ruta de acceso: file:_C:\Program Files\KMSpico\scripts\Install_Service.cmd; file:_C:\Program Files\KMSpico\scripts\Install_Task.cmd; file:_C:\Program Files\KMSpico\scripts\UnInstall_Service.cmd Origen de detección: Equipo local Tipo de detección: Concreto Origen de detección: Protección en tiempo real Usuario: NT AUTHORITY\SYSTEM Nombre de proceso: C:\Program Files (x86)\TotalAV\SecurityService.exe Versión de inteligencia de seguridad: AV: 1.315.1438.0, AS: 1.315.1438.0, NIS: 1.315.1438.0 Versión de motor: AM: 1.1.17000.7, NIS: 1.1.17000.7 Date: 2020-05-26 18:28:52.366 Description: Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado. Para más información, consulta lo siguiente: https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0 Nombre: HackTool:Win32/AutoKMS Id.: 2147685180 Gravedad: Alta Categoría: Herramienta Ruta de acceso: file:_C:\Program Files\KMSpico\scripts\Install_Service.cmd; file:_C:\Program Files\KMSpico\scripts\Install_Task.cmd Origen de detección: Equipo local Tipo de detección: Concreto Origen de detección: Protección en tiempo real Usuario: NT AUTHORITY\SYSTEM Nombre de proceso: C:\Program Files (x86)\TotalAV\SecurityService.exe Versión de inteligencia de seguridad: AV: 1.315.1438.0, AS: 1.315.1438.0, NIS: 1.315.1438.0 Versión de motor: AM: 1.1.17000.7, NIS: 1.1.17000.7 Date: 2020-05-26 18:28:52.347 Description: Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado. Para más información, consulta lo siguiente: https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0 Nombre: HackTool:Win32/AutoKMS Id.: 2147685180 Gravedad: Alta Categoría: Herramienta Ruta de acceso: file:_C:\Program Files\KMSpico\scripts\Install_Service.cmd Origen de detección: Equipo local Tipo de detección: Concreto Origen de detección: Protección en tiempo real Usuario: NT AUTHORITY\SYSTEM Nombre de proceso: C:\Program Files (x86)\TotalAV\SecurityService.exe Versión de inteligencia de seguridad: AV: 1.315.1438.0, AS: 1.315.1438.0, NIS: 1.315.1438.0 Versión de motor: AM: 1.1.17000.7, NIS: 1.1.17000.7 Date: 2020-05-24 02:15:49.203 Description: El examen de Antivirus de Windows Defender se detuvo antes de completarse. Id. de examen: {64671569-803B-40A7-8184-A2F0F9C6822B} Tipo de examen: Antimalware Parámetros de examen: Examen rápido Usuario: NT AUTHORITY\SYSTEM Date: 2020-05-22 18:34:59.315 Description: El examen de Antivirus de Windows Defender se detuvo antes de completarse. Id. de examen: {31A25273-6CBD-425B-94C9-BC92E818B411} Tipo de examen: Antimalware Parámetros de examen: Examen rápido Usuario: NT AUTHORITY\SYSTEM Date: 2020-05-26 18:44:58.243 Description: Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad. Nueva versión de inteligencia de seguridad: Versión anterior de inteligencia de seguridad: 1.315.1438.0 Origen de actualización: Servidor de Microsoft Update Tipo de inteligencia de seguridad: AntiVirus Tipo de actualización: Completa Usuario: NT AUTHORITY\SYSTEM Versión actual del motor: Versión anterior del motor: 1.1.17000.7 Código de error: 0x80096004 Descripción del error: No se puede comprobar la firma del certificado. Date: 2020-05-25 21:14:04.193 Description: Antivirus de Windows Defender encontró un error al intentar cargar la inteligencia de seguridad e intentará revertir a una versión que sepa que es correcta. Inteligencia de seguridad intentada: Actual Código de error: 0x80070003 Descripción del error: El sistema no puede encontrar la ruta especificada. Versión de inteligencia de seguridad: 0.0.0.0;0.0.0.0 Versión del motor: 0.0.0.0 Date: 2020-05-25 15:48:32.639 Description: Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad. Nueva versión de inteligencia de seguridad: Versión anterior de inteligencia de seguridad: 1.315.1290.0 Origen de actualización: Servidor de Microsoft Update Tipo de inteligencia de seguridad: AntiVirus Tipo de actualización: Completa Usuario: NT AUTHORITY\SYSTEM Versión actual del motor: Versión anterior del motor: 1.1.17000.7 Código de error: 0x80096004 Descripción del error: No se puede comprobar la firma del certificado. Date: 2020-05-24 14:44:33.820 Description: Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad. Nueva versión de inteligencia de seguridad: Versión anterior de inteligencia de seguridad: 1.315.1290.0 Origen de actualización: Servidor de Microsoft Update Tipo de inteligencia de seguridad: AntiVirus Tipo de actualización: Completa Usuario: NT AUTHORITY\SYSTEM Versión actual del motor: Versión anterior del motor: 1.1.17000.7 Código de error: 0x80240438 Descripción del error: Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulte Ayuda y soporte técnico. Date: 2020-05-22 20:13:12.207 Description: Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad. Nueva versión de inteligencia de seguridad: Versión anterior de inteligencia de seguridad: 1.315.1135.0 Origen de actualización: Servidor de Microsoft Update Tipo de inteligencia de seguridad: AntiVirus Tipo de actualización: Completa Usuario: NT AUTHORITY\SYSTEM Versión actual del motor: Versión anterior del motor: 1.1.17000.7 Código de error: 0x80096004 Descripción del error: No se puede comprobar la firma del certificado. CodeIntegrity: =================================== Date: 2020-05-27 18:11:46.821 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2020-05-27 18:11:46.820 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2020-05-27 18:09:19.359 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2020-05-27 18:09:19.358 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2020-05-27 18:09:18.835 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2020-05-27 18:09:18.835 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2020-05-27 18:09:18.702 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2020-05-27 18:09:18.701 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Información de la memoria =========================== BIOS: American Megatrends Inc. P3.70 11/14/2019 Placa base: ASRock B450M-HDV R4.0 Procesador: AMD Ryzen 5 1600 Six-Core Processor Porcentaje de memoria en uso: 25% RAM física total: 16315.75 MB RAM física disponible: 12150.88 MB Virtual total: 22971.75 MB Virtual disponible: 16660.45 MB ==================== Unidades ================================ Drive c: () (Fixed) (Total:111.17 GB) (Free:43.34 GB) NTFS Drive d: (Nuevo vol) (Fixed) (Total:931.5 GB) (Free:226.95 GB) NTFS \\?\Volume{0ea181a6-771b-4c75-b63b-4757da257a55}\ (Recuperación) (Fixed) (Total:0.52 GB) (Free:0.07 GB) NTFS \\?\Volume{ab04d41f-7aab-43a7-b0b1-5e37765dd6f3}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Tabla de particiones ==================== ==================== Final de Addition.txt =======================