Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 04-07-2020 01 Ejecutado por sebas (07-07-2020 00:01:01) Ejecutado desde C:\Users\sebas\Desktop Windows 10 Pro Versión 1903 18362.900 (X64) (2019-09-27 19:46:08) Modo de Inicio: Normal ========================================================== ==================== Cuentas: ============================= Administrador (S-1-5-21-1391593998-1406418587-2262156805-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-1391593998-1406418587-2262156805-503 - Limited - Disabled) defaultuser0 (S-1-5-21-1391593998-1406418587-2262156805-1000 - Limited - Enabled) => C:\Users\defaultuser0 Invitado (S-1-5-21-1391593998-1406418587-2262156805-501 - Limited - Disabled) sebas (S-1-5-21-1391593998-1406418587-2262156805-1001 - Administrator - Enabled) => C:\Users\sebas WDAGUtilityAccount (S-1-5-21-1391593998-1406418587-2262156805-504 - Limited - Disabled) ==================== Centro de Seguridad ======================== (Si una entrada es incluida en el fixlist, será eliminada.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programas instalados ====================== (Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.) 64 Bit HP CIO Components Installer (HKLM\...\{3138F992-045B-4F55-825C-53B231E647CA}) (Version: 13.2.1 - Hewlett-Packard) Hidden Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.387 - Adobe) Aimersoft Helper Compact 2.5.2 (HKLM-x32\...\{405147F7-FCC5-499B-A27E-EA6BD4A80435}_is1) (Version: 2.5.2 - Aimersoft) Alison-Desktop (HKLM-x32\...\{953D8225-3101-4007-B970-9AC9340C4EFA}) (Version: 1.1.7 - CertiSur) BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.60.20.1002 - BlueStack Systems, Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.68 - Piriform) CCleaner Browser (HKLM-x32\...\CCleaner Browser) (Version: 83.0.4530.100 - Piriform Software) Check Point VPN (HKLM-x32\...\{B3E35728-8603-484C-AE19-F73A47D733BE}) (Version: 98.60.3013 - Check Point Software Technologies Ltd.) Chrome Remote Desktop Host (HKLM-x32\...\{FEA4124F-FABE-440B-BA03-489722A59439}) (Version: 84.0.4147.39 - Google Inc.) Cisco Systems VPN Client 5.0.07.0290 (HKLM\...\{467D5E81-8349-4892-9E81-C3674ED8E451}) (Version: 5.0.7 - Cisco Systems, Inc.) Cisco Webex Meetings (HKU\S-1-5-21-1391593998-1406418587-2262156805-1001\...\ActiveTouchMeetingClient) (Version: 40.2.8 - Cisco Webex LLC) Dolby Audio X2 Windows API SDK (HKLM\...\{F290F786-5F69-48D4-B20B-D21C7DE56EF0}) (Version: 0.8.8.88 - Dolby Laboratories, Inc.) Hidden EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version: - EaseUS) EasyQlik QViewer 3.3.2 (HKU\S-1-5-21-1391593998-1406418587-2262156805-1001\...\{ABD2573A-5004-4876-BFD5-32D41F489ACC}_is1) (Version: 3.3.2 - EasyQlik) FileZilla Client 3.45.1 (HKLM-x32\...\FileZilla Client) (Version: 3.45.1 - Tim Kosse) FortiClient VPN (HKLM\...\{43C27CA2-E6FD-4931-AB77-C66F9B1F5946}) (Version: 6.4.0.1464 - Fortinet Technologies Inc) Generic Conexant USB Audio driver for Docks and Adapters (HKLM-x32\...\usbaudiocd01ww_is1) (Version: 1.000.0 - Lenovo Group Limited) GIMP 2.10.2 (HKLM\...\GIMP-2_is1) (Version: 2.10.2 - The GIMP Team) Global VPN Client (HKLM\...\{88C972E7-D7FC-40F3-9FE5-180957F37B45}) (Version: 4.9.0 - Dell SonicWALL) GlobalProtect (HKLM\...\{828EA942-B4B9-42A0-B1A4-25E391C766E3}) (Version: 5.0.9 - Palo Alto Networks) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.116 - Google LLC) Google Drive File Stream (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 40.0.8.0 - Google, Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden Intel(R) Chipset Device Software (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2014.14.0.1540 - Intel Corporation) Intel(R) Online Connect Software Asset Manager (HKLM-x32\...\{15998D77-1F78-43EE-96D4-1067ECAA2412}) (Version: 3.5.2247 - Intel Corporation) Hidden Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 26.20.100.7812 - Intel Corporation) Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.60.155.0 - Intel Corporation) Hidden Intel(R) Trusted Connect Services Client (HKLM-x32\...\{047f2156-ee7f-4a24-b3c2-c0c5c2c81557}) (Version: 1.60.155.0 - Intel Corporation) Hidden Intel® Online Connect (HKLM-x32\...\{6b556278-d555-4d14-ac99-8ad600578a95}) (Version: 1.3.13.0 - Intel Corporation) Lenovo Active Protection System (HKLM\...\{46A84694-59EC-48F0-964C-7E76E9F8A2ED}) (Version: 1.82.00.20 - Lenovo) Hidden Lenovo Dynamic Power Reduction Utility (HKLM-x32\...\{AE8B5056-56D3-4F92-B31B-BCE3430678EA}) (Version: 1.0.0.26 - Lenovo) Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.12.19 - Lenovo) Hidden Lenovo Service Bridge (HKU\S-1-5-21-1391593998-1406418587-2262156805-1001\...\{2C74547D-EF88-47F4-85F5-BE46A31E26B7}_is1) (Version: 5.0.1.2 - Lenovo) Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.07.0096 - Lenovo) Malwarebytes version 4.1.2.73 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.2.73 - Malwarebytes) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 83.0.478.58 - Microsoft Corporation) Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.129.31 - ) Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 12.181.137.0 - Microsoft Corporation) Microsoft Office Hogar y Estudiantes 2016 - es-es (HKLM\...\HomeStudentRetail - es-es) (Version: 16.0.12827.20470 - Microsoft Corporation) Microsoft Office Profesional Plus 2016 - es-es (HKLM\...\ProPlusRetail - es-es) (Version: 16.0.12827.20470 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1391593998-1406418587-2262156805-1001\...\OneDriveSetup.exe) (Version: 20.084.0426.0007 - Microsoft Corporation) Microsoft Visio - es-es (HKLM\...\VisioProRetail - es-es) (Version: 16.0.12827.20470 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325 (HKLM-x32\...\{6c6356fe-cbfa-4944-9bed-a9e99f45cb7a}) (Version: 14.11.25325.0 - Microsoft Corporation) MiniTool Partition Wizard Free 11 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Software Limited) Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.8.7 - Notepad++ Team) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12827.20160 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12827.20160 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12827.20470 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.6965.2079 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0C0A-0000-0000000FF1CE}) (Version: 16.0.12827.20160 - Microsoft Corporation) Hidden Qlik Sense DemoApps (HKLM\...\{1DB826F4-6B04-4F11-8EA6-AFDDE978E37E}) (Version: 13.72.3 - QlikTech International AB) Hidden Qlik Sense Desktop (HKLM\...\{8FB348F1-5257-46A9-AD6B-EDE7172F93B7}) (Version: 13.72.3 - QlikTech International AB) Hidden Qlik Sense Desktop April 2020 (HKU\S-1-5-21-1391593998-1406418587-2262156805-1001\...\{975a2201-db40-461f-af6d-e3070f97ffd8}) (Version: 13.72.3 - QlikTech International AB) Qlik Sense Desktop Connectors (HKLM\...\{0784CCED-E833-42BA-8C89-2E044DC63094}) (Version: 13.72.3 - QlikTech International AB) Hidden Qlik Sense Desktop Object Bundles (HKLM\...\{CD6EEE71-A7F6-4A57-9A46-3414E318C172}) (Version: 13.72.3 - QlikTech International AB) QlikView x64 (HKLM\...\{BAB4187A-F349-497E-A151-79D1B274B936}) (Version: 11.20.13607.0 - QlikTech International AB) QRCode (HKLM-x32\...\{4D13D187-BA0B-4319-B8FE-7C3613E73278}) (Version: 2.10.0 - TouchUpSoft) QsDocumentAnalyzer version 1.5.0 (HKLM-x32\...\{75330F9E-2072-4618-950B-F5E108517A85}_is1) (Version: 1.5.0 - Panalytics, Inc.) Rapport (HKLM-x32\...\{1DD81E7D-0D28-4CEB-87B2-C041A4FCB215}) (Version: 3.5.1955.62 - Trusteer) Hidden Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.17763.21311 - Realtek Semiconductor Corp.) Revo Uninstaller 2.0.6 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.6 - VS Revo Group, Ltd.) SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.51.0 - SAMSUNG Electronics Co., Ltd.) Servicio Lenovo Vantage (HKLM-x32\...\VantageSRV_is1) (Version: 3.3.61.0 - Lenovo Group Ltd.) Software Intel® PROSet/Wireless (HKLM-x32\...\{55fdbad7-83d5-40e8-83cb-a53fbd378e01}) (Version: 21.30.2 - Intel Corporation) Software Thunderbolt™ (HKLM-x32\...\{1AA93FF8-C685-4E00-8682-7F2E5D8E8689}) (Version: 17.4.80.550 - Intel Corporation) ThinkPad Thunderbolt 3 Dock USB Audio (HKLM\...\VID_17EF&PID_306A&MI_00) (Version: 1.31.38.31 - Conexant Systems) Thinkpad USB Ethernet Adapter Driver (HKLM-x32\...\{04201224-2B34-4EE7-862B-B7BBF89DB3AB}) (Version: 10.25.704.2018 - Lenovo) Trusteer Seguridad Terminal (HKLM-x32\...\Rapport_msi) (Version: 3.5.1955.62 - Trusteer) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden WinDirStat 1.1.2 (HKU\S-1-5-21-1391593998-1406418587-2262156805-1001\...\WinDirStat) (Version: - ) WinRAR 5.60 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.60.0 - win.rar GmbH) Zoom (HKU\S-1-5-21-1391593998-1406418587-2262156805-1001\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.) Packages: ========= Complemento de Fotos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2018-12-05] (Microsoft Corporation) Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220 [2020-04-19] (Dolby Laboratories) Dolby Vision -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyVisionHDR_1.7.3749.0_x64__rz1tebttyb220 [2020-04-28] (Dolby Laboratories) EasyNotes for Keep -> C:\Program Files\WindowsApps\61545TimGrabinat.wAPPerforGKeep_1.1.36.0_x64__rcb0qdgx4z9ca [2019-06-10] (Tim Grabinat) [MS Ad] HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_115.1.152.0_x64__v10z8vjag6ke6 [2020-05-28] (HP Inc.) Lenovo Settings -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoSettings_3.177.0.0_x86__4642shxvsv8s2 [2018-08-26] (LENOVO INCORPORATED.) Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2006.30.0_x64__k1h2ywk1493x8 [2020-06-25] (LENOVO INC.) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-31] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-31] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-03] (Microsoft Studios) [MS Ad] MSN El tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-27] (Microsoft Corporation) [MS Ad] Player for DVD's Lite -> C:\Program Files\WindowsApps\YellowElephantProductions.PlayerforDVDsLite_1.90.88.0_x64__p3e1zgp7z7szg [2020-04-15] (Yellow Elephant Productions) Power BI Desktop -> C:\Program Files\WindowsApps\Microsoft.MicrosoftPowerBIDesktop_2.82.5866.0_x64__8wekyb3d8bbwe [2020-07-06] (Microsoft Corporation) Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x64__3c1yjt4zspk6g [2019-06-13] (Samsung Electronics Co. Ltd.) WhatsApp Desktop -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2025.7.0_x64__cv1g1gvanyjgm [2020-06-27] (WhatsApp Inc.) ==================== Personalizado CLSID (Lista blanca): ============== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\40.0.8.0\drivefsext.dll [2020-06-04] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\40.0.8.0\drivefsext.dll [2020-06-04] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\40.0.8.0\drivefsext.dll [2020-06-04] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\40.0.8.0\drivefsext.dll [2020-06-04] (Google LLC -> Google, Inc.) ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2020-06-04] (Notepad++ -> ) ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\40.0.8.0\drivefsext.dll [2020-06-04] (Google LLC -> Google, Inc.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-07-02] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\40.0.8.0\drivefsext.dll [2020-06-04] (Google LLC -> Google, Inc.) ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\40.0.8.0\drivefsext.dll [2020-06-04] (Google LLC -> Google, Inc.) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Ningún archivo ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\ki134918.inf_amd64_fad1c1fca585cea2\igfxDTCM.dll [2020-02-05] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-07-02] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Lista blanca) ==================== ==================== Accesos directos & WMI ======================== ==================== Módulos cargados (Lista blanca) ============= 2020-05-15 20:39 - 2020-05-15 20:39 - 000366592 _____ () [Archivo no firmado] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Interop.CxHef9fb4ae#\2292f76d668607fa51da6bdaa18b5cf8\Interop.CxHDAudioAPILib.ni.dll 2020-05-15 20:39 - 2020-05-15 20:39 - 000018944 _____ () [Archivo no firmado] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Interop.CxUtilSvcLib\f0463c66e7a234249e5d22a6dfbe1b0d\Interop.CxUtilSvcLib.ni.dll 2012-07-31 14:35 - 2012-07-31 14:35 - 000050688 _____ (Hewlett-Packard) [Archivo no firmado] c:\windows\system32\hpzinw12.dll 2012-07-31 14:35 - 2012-07-31 14:35 - 000066048 _____ (Hewlett-Packard) [Archivo no firmado] c:\windows\system32\hpzipm12.dll 2020-03-26 10:42 - 2020-03-26 10:42 - 002531472 _____ (Palo Alto Networks -> The OpenSSL Project, hxxp://www.openssl.org/) [Archivo no firmado] C:\Program Files\Palo Alto Networks\GlobalProtect\LIBEAY32.dll 2020-03-26 10:42 - 2020-03-26 10:42 - 000444048 _____ (Palo Alto Networks -> The OpenSSL Project, hxxp://www.openssl.org/) [Archivo no firmado] C:\Program Files\Palo Alto Networks\GlobalProtect\SSLEAY32.dll 2020-06-23 23:51 - 2020-04-05 18:14 - 001662976 _____ (Robert Simpson, et al.) [Archivo no firmado] C:\Program Files (x86)\Lenovo\VantageService\3.3.61.0\x64\SQLite.Interop.dll 2020-06-19 08:45 - 2020-04-09 09:17 - 000944840 _____ (SQLite Development Team) [Archivo no firmado] C:\ProgramData\Lenovo\iMController\Plugins\LenovoWiFiSecurityPlugin\x86\x86\e_sqlite3.dll ==================== Alternate Data Streams (Lista blanca) ======== (Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.) AlternateDataStreams: C:\Users\sebas\Downloads\ccsetup568.exe:SmartScreen [7] AlternateDataStreams: C:\Users\sebas\Downloads\FortiClientOnlineInstaller_6.0.exe:SmartScreen [7] AlternateDataStreams: C:\Users\sebas\Downloads\FortiClientVPNOnlineInstaller_6.4 (1).exe:SmartScreen [7] AlternateDataStreams: C:\Users\sebas\Downloads\npp.7.8.7.Installer.exe:SmartScreen [7] ==================== Modo Seguro (Lista blanca) ================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Asociación (Lista blanca) ================= ==================== Internet Explorer sitios de confianza/restringidos ========== ==================== Hosts contenido: ========================= (Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.) 2016-07-16 08:47 - 2020-06-28 17:57 - 000000100 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Otras Áreas =========================== (Actualmente no existe una corrección automática para esta sección.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL HKU\S-1-5-21-1391593998-1406418587-2262156805-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\sebas\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn) Firewall de Windows está deshabilitado. Network Binding: ============= Wi-Fi: DNE LightWeight Filter -> dni_dne (enabled) Wi-Fi: Intel(R) Technology Access Filter Driver -> nt_ndisrd (enabled) Wi-Fi: FortiClient NDIS 6.3 Packet Filter Driver -> ft_fortifilter (enabled) Ethernet 5: Intel(R) Technology Access Filter Driver -> nt_ndisrd (enabled) Ethernet 5: DNE LightWeight Filter -> dni_dne (enabled) Ethernet 5: FortiClient NDIS 6.3 Packet Filter Driver -> ft_fortifilter (enabled) Ethernet 2: DNE LightWeight Filter -> dni_dne (enabled) Ethernet 2: Intel(R) Technology Access Filter Driver -> nt_ndisrd (enabled) Ethernet 2: FortiClient NDIS 6.3 Packet Filter Driver -> ft_fortifilter (enabled) Ethernet 4: FortiClient NDIS 6.3 Packet Filter Driver -> ft_fortifilter (enabled) Ethernet 4: Intel(R) Technology Access Filter Driver -> nt_ndisrd (enabled) Ethernet 4: DNE LightWeight Filter -> dni_dne (enabled) Ethernet: DNE LightWeight Filter -> dni_dne (enabled) Ethernet: Intel(R) Technology Access Filter Driver -> nt_ndisrd (enabled) Ethernet: FortiClient NDIS 6.3 Packet Filter Driver -> ft_fortifilter (enabled) Ethernet 7: DNE LightWeight Filter -> dni_dne (enabled) Ethernet 7: Intel(R) Technology Access Filter Driver -> nt_ndisrd (enabled) Ethernet 7: FortiClient NDIS 6.3 Packet Filter Driver -> ft_fortifilter (enabled) Ethernet 6: DNE LightWeight Filter -> dni_dne (enabled) Ethernet 6: FortiClient NDIS 6.3 Packet Filter Driver -> ft_fortifilter (enabled) Ethernet 6: Intel(R) Technology Access Filter Driver -> nt_ndisrd (enabled) Ethernet 3: Intel(R) Technology Access Filter Driver -> nt_ndisrd (enabled) Ethernet 3: DNE LightWeight Filter -> dni_dne (enabled) Ethernet 3: FortiClient NDIS 6.3 Packet Filter Driver -> ft_fortifilter (enabled) ==================== MSCONFIG/TASK MANAGER elementos deshabilitados == (Si una entrada es incluida en el fixlist, será eliminada.) HKLM\...\StartupApproved\Run32: => "Check Point VPN" ==================== Reglas de firewall (Lista blanca) ================ (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) FirewallRules: [{DCCE3F6C-E637-4CDC-B384-C2C69E877F23}] => (Allow) C:\Program Files\Fortinet\FortiClient\FortiClient VPN\FortiClient.exe => Ningún archivo FirewallRules: [{EE9564A5-1589-437B-8CB6-81DFE2B23484}] => (Allow) C:\Program Files\Fortinet\FortiClient\FortiClient VPN\FortiClient.exe => Ningún archivo FirewallRules: [{879E03D6-6783-4FF6-9765-CBF557FFCDDB}] => (Allow) C:\Program Files\Fortinet\FortiClient\FortiClient VPN\FortiClient.exe => Ningún archivo FirewallRules: [{BBE8CEDF-F001-4788-A6B9-EAEDA3818242}] => (Allow) C:\Program Files\Fortinet\FortiClient\FortiClient VPN\FortiClientConsole.exe => Ningún archivo FirewallRules: [{0820799A-BCB4-4DE1-BCF4-E3BE7BDDA3B0}] => (Allow) C:\Program Files\Fortinet\FortiClient\FortiClient VPN\FortiClientConsole.exe => Ningún archivo FirewallRules: [{80E3343E-48D2-4185-8E20-1DB1F63729C0}] => (Allow) C:\Program Files\Fortinet\FortiClient\FortiClient VPN\FortiClientConsole.exe => Ningún archivo FirewallRules: [{CE17E96B-FA5A-4B63-AB75-AEF80C68AF97}] => (Allow) C:\Program Files\Fortinet\FortiClient\FortiClient VPN\FortiClientConsole.exe => Ningún archivo FirewallRules: [{FC1C97B0-BE9B-40A9-8031-12C2C701894C}] => (Allow) C:\Program Files\Fortinet\FortiClient\FortiClient VPN\FortiClientSecurity.exe => Ningún archivo FirewallRules: [{42309407-3BD0-4389-81FB-9FA4A882CAED}] => (Allow) C:\Program Files\Fortinet\FortiClient\FortiClient VPN\FortiClientSecurity.exe => Ningún archivo FirewallRules: [{55A2066B-7E72-42B1-A97B-96731022B50F}] => (Allow) C:\Program Files\Fortinet\FortiClient\FortiClient VPN\FortiClientSecurity.exe => Ningún archivo FirewallRules: [{AAE6D669-CE9C-4534-873A-34395B2FE8E0}] => (Allow) C:\Program Files\Fortinet\FortiClient\FortiClient VPN\FortiClientSecurity.exe => Ningún archivo FirewallRules: [{660A90B6-C852-4C4A-A954-D0C186D7ACE3}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> ) FirewallRules: [{3747528D-A18D-4A08-81AE-D82EED682328}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> ) FirewallRules: [{0C907995-B1BB-4544-AAC9-D9153EA29505}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> ) FirewallRules: [{068C3D41-02C2-4325-8271-9F54BE043242}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> ) FirewallRules: [{C2C6C257-43F6-4FE8-8C7E-B9944E250809}] => (Allow) C:\Program Files\Fortinet\FortiClient\FortiClient VPN\FortiClient.exe => Ningún archivo FirewallRules: [{CBC89D96-6FAF-45D6-855E-70AA2D1A74BE}] => (Allow) C:\Program Files\Fortinet\FortiClient\FortiClient VPN\FortiClient.exe => Ningún archivo FirewallRules: [{90978F4A-0B77-485D-A4A1-9E69B472A1FE}] => (Allow) C:\Program Files\Fortinet\FortiClient\FortiClient VPN\FortiClientSecurity.exe => Ningún archivo FirewallRules: [{819739FC-6BD5-471A-BEE2-EBDAC6ED8B26}] => (Allow) C:\Program Files\Fortinet\FortiClient\FortiClient VPN\FortiClientSecurity.exe => Ningún archivo FirewallRules: [{1D68FCC5-69C3-4A41-BD6D-69289B5CE449}] => (Allow) C:\Program Files\Fortinet\FortiClient\FortiClient VPN\FortiClientConsole.exe => Ningún archivo FirewallRules: [{8BF32750-1E02-48D2-8D6A-1CBBF0B2E6DE}] => (Allow) C:\Program Files\Fortinet\FortiClient\FortiClient VPN\FortiClientConsole.exe => Ningún archivo FirewallRules: [TCP Query User{CA539F1D-CCC5-4579-A380-E2F2A3A13D66}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [UDP Query User{2FF9A286-89C9-49E7-98F1-86FB4A99B18D}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{39E7D738-F1D9-4366-8DE9-2140E4A0BC45}] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{95950B04-6D7C-49CF-BE06-849A236B5CF9}] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{AE3CCD61-5DA2-4538-B3B8-B98AD4578434}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{BC317D5C-D478-428B-BC92-5850D51ECA2D}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{A535A798-4EF2-4E17-96D4-07AA0A7C0536}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{4EFCC08A-3DEC-41A7-9621-410B57F486ED}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{F9F1544E-8048-447E-8676-D0CDD1B75BBB}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{525829AC-273D-4F1E-98D1-647979C51430}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\84.0.4147.39\remoting_host.exe (Google LLC -> Google Inc.) FirewallRules: [{25EE0D8A-3DEE-4444-ABAA-C5071959E8A2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [TCP Query User{4F95DB02-929A-46AC-8174-156DA744821B}C:\users\sebas\appdata\local\programs\qlik\sense\node\node.exe] => (Allow) C:\users\sebas\appdata\local\programs\qlik\sense\node\node.exe (Node.js Foundation -> Node.js) FirewallRules: [UDP Query User{630DC401-EA17-40C4-8EA6-94DE309EB552}C:\users\sebas\appdata\local\programs\qlik\sense\node\node.exe] => (Allow) C:\users\sebas\appdata\local\programs\qlik\sense\node\node.exe (Node.js Foundation -> Node.js) FirewallRules: [TCP Query User{5FFAB6F5-FC7A-40BE-A068-BB34BAD299F2}C:\users\sebas\appdata\local\programs\qlik\sense\nlparser\nlparser_r.exe] => (Allow) C:\users\sebas\appdata\local\programs\qlik\sense\nlparser\nlparser_r.exe (QlikTech International AB -> ) FirewallRules: [UDP Query User{0F8EC4EB-0A92-408A-BA2F-D36AF15DCCBC}C:\users\sebas\appdata\local\programs\qlik\sense\nlparser\nlparser_r.exe] => (Allow) C:\users\sebas\appdata\local\programs\qlik\sense\nlparser\nlparser_r.exe (QlikTech International AB -> ) FirewallRules: [{1E07E8C4-DEEB-4260-B26A-68E6E0954F3D}] => (Allow) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe (Piriform Software Ltd -> Piriform Software) ==================== Puntos de Restauración ========================= 22-06-2020 13:15:00 McAfee Safe Connect 25-06-2020 16:15:52 Intel(R) Trusted Connect Services Client 27-06-2020 11:44:10 McAfee Safe Connect 01-07-2020 15:58:32 Revo Uninstaller's restore point - FortiClient 01-07-2020 16:02:59 Removed FortiClient 02-07-2020 09:25:21 Installed FortiClient VPN 06-07-2020 13:17:27 ZHPcleaner ==================== Dispositivos defectuosos en el Administrador de dispositivos ============ Name: Fortinet SSL VPN Virtual Ethernet Adapter Description: Fortinet SSL VPN Virtual Ethernet Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Fortinet Inc. Service: ftsvnic Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Cisco Systems VPN Adapter for 64-bit Windows Description: Cisco Systems VPN Adapter for 64-bit Windows Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Cisco Systems Service: CVirtA Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: SonicWALL Virtual NIC Description: SonicWALL Virtual NIC Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: SonicWALL Service: SWVNIC Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Errores del registro de eventos: ======================== Errores de aplicación: ================== Error: (07/06/2020 11:19:19 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (16036,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (07/06/2020 10:19:31 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (3076,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (07/06/2020 09:19:48 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (4972,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (07/06/2020 09:04:44 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (8772,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (07/06/2020 08:19:35 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (6648,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (07/06/2020 07:19:26 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (2608,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (07/06/2020 06:19:25 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (15236,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (07/06/2020 05:19:27 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (3428,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Errores del sistema: ============= Error: (07/06/2020 11:55:39 PM) (Source: googledrivefs3104) (EventID: 2) (User: ) Description: Warning: mount point creation is being forced. Error: (07/06/2020 11:55:39 PM) (Source: googledrivefs3093) (EventID: 2) (User: ) Description: The driver version of the disk does not match. Error: (07/06/2020 11:54:00 PM) (Source: googledrivefs3093) (EventID: 2) (User: ) Description: The driver version of the disk does not match. Error: (07/06/2020 01:01:26 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY) Description: El servidor {C41B1461-3F8C-4666-B512-6DF24DE566D1} no se registró con DCOM dentro del tiempo de espera requerido. Error: (07/06/2020 01:00:16 PM) (Source: googledrivefs3093) (EventID: 2) (User: ) Description: The driver version of the disk does not match. Error: (07/06/2020 12:59:26 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: El servicio Intel(R) Content Protection HECI Service se cerró con el siguiente error: La clase se configura como un identificador de seguridad distinto del que efectúa la llamada Error: (07/06/2020 12:59:26 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: El servicio Servicio del sistema de notificaciones de inserción de Windows se cerró con el siguiente error: La clase se configura como un identificador de seguridad distinto del que efectúa la llamada Error: (07/06/2020 12:58:56 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY) Description: El módulo de extensibilidad de WLAN se detuvo inesperadamente. Ruta de acceso del módulo: C:\WINDOWS\system32\IntelIHVRouter06.dll Windows Defender: =================================== Date: 2020-06-29 09:14:42.484 Description: El examen de Antivirus de Windows Defender se detuvo antes de completarse. Id. de examen: {AFFAACD3-515D-42FB-8DD4-A53C8E57B3CD} Tipo de examen: Antimalware Parámetros de examen: Examen rápido Usuario: NT AUTHORITY\SYSTEM Date: 2020-06-25 19:54:04.071 Description: El examen de Antivirus de Windows Defender se detuvo antes de completarse. Id. de examen: {1570856F-1F9C-4024-B5DE-6B07A7E944E7} Tipo de examen: Antimalware Parámetros de examen: Examen rápido Usuario: NT AUTHORITY\SYSTEM Date: 2020-06-24 17:13:43.368 Description: El examen de Antivirus de Windows Defender se detuvo antes de completarse. Id. de examen: {802FD2D9-CCC8-485F-8E38-4F2CCBA3E4A6} Tipo de examen: Antimalware Parámetros de examen: Examen rápido Usuario: NT AUTHORITY\SYSTEM Date: 2020-06-22 13:00:22.454 Description: El examen de Antivirus de Windows Defender se detuvo antes de completarse. Id. de examen: {60C1DC03-81F7-4D6F-85E8-22434D23B5A4} Tipo de examen: Antimalware Parámetros de examen: Examen rápido Usuario: NT AUTHORITY\SYSTEM Date: 2020-06-19 15:08:17.376 Description: El examen de Antivirus de Windows Defender se detuvo antes de completarse. Id. de examen: {C452E915-3B30-46CB-9615-C7B10C2CCF2F} Tipo de examen: Antimalware Parámetros de examen: Examen rápido Usuario: NT AUTHORITY\SYSTEM Date: 2020-06-17 11:42:33.507 Description: Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad. Nueva versión de inteligencia de seguridad: Versión anterior de inteligencia de seguridad: 1.317.1480.0 Origen de actualización: Servidor de Microsoft Update Tipo de inteligencia de seguridad: AntiVirus Tipo de actualización: Completa Usuario: NT AUTHORITY\SYSTEM Versión actual del motor: Versión anterior del motor: 1.1.17100.2 Código de error: 0x80072efe Descripción del error: La conexión con el servidor finalizó anormalmente Date: 2020-06-17 09:54:58.477 Description: Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad. Nueva versión de inteligencia de seguridad: Versión anterior de inteligencia de seguridad: 1.317.1480.0 Origen de actualización: Servidor de Microsoft Update Tipo de inteligencia de seguridad: AntiVirus Tipo de actualización: Completa Usuario: NT AUTHORITY\SYSTEM Versión actual del motor: Versión anterior del motor: 1.1.17100.2 Código de error: 0x80072efe Descripción del error: La conexión con el servidor finalizó anormalmente Date: 2020-05-14 14:26:14.871 Description: Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad. Nueva versión de inteligencia de seguridad: Versión anterior de inteligencia de seguridad: 1.315.613.0 Origen de actualización: Servidor de Microsoft Update Tipo de inteligencia de seguridad: AntiVirus Tipo de actualización: Completa Usuario: NT AUTHORITY\SYSTEM Versión actual del motor: Versión anterior del motor: 1.1.17000.7 Código de error: 0x80240016 Descripción del error: Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulta Ayuda y soporte técnico. CodeIntegrity: =================================== Date: 2020-07-05 11:17:16.700 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2020-07-05 11:17:16.645 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2020-07-03 22:10:42.430 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. Date: 2020-07-03 22:10:41.873 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. Date: 2020-07-03 22:06:02.134 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. Date: 2020-07-03 22:04:28.543 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. Date: 2020-07-03 22:04:05.189 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. Date: 2020-07-03 22:04:04.810 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. ==================== Información de la memoria =========================== BIOS: LENOVO N1MET61W (1.46 ) 04/08/2020 Placa base: LENOVO 20HQS0EM00 Procesador: Intel(R) Core(TM) i7-7600U CPU @ 2.80GHz Porcentaje de memoria en uso: 55% RAM física total: 8026.55 MB RAM física disponible: 3594.4 MB Virtual total: 21850.55 MB Virtual disponible: 16987.16 MB ==================== Unidades ================================ Drive c: (Windows) (Fixed) (Total:237.23 GB) (Free:63.27 GB) NTFS Drive g: (Google Drive File Stream) (Fixed) (Total:15 GB) (Free:5.69 GB) FAT32 \\?\Volume{0f07c70c-910c-430c-91a8-07e27f63403c}\ (WinRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.45 GB) NTFS \\?\Volume{7ac682b8-a7cd-4152-8698-bf29682f9cf8}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32 ==================== MBR & Tabla de particiones ==================== ========================================================== Disk: 0 (Size: 238.5 GB) (Disk ID: E664590B) Partition: GPT. ==================== Final de Addition.txt =======================