Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 17-03-2021 Ejecutado por Luna (18-03-2021 12:11:45) Ejecutado desde C:\Users\Luna\Desktop Windows 10 Pro Versión 20H2 19042.867 (X64) (2020-12-16 00:15:39) Modo de Inicio: Normal ========================================================== ==================== Cuentas: ============================= Administrador (S-1-5-21-244204050-175357254-1230988532-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-244204050-175357254-1230988532-503 - Limited - Disabled) defaultuser0 (S-1-5-21-244204050-175357254-1230988532-1001 - Limited - Disabled) => C:\Users\defaultuser0 Invitado (S-1-5-21-244204050-175357254-1230988532-501 - Limited - Disabled) Luna (S-1-5-21-244204050-175357254-1230988532-1008 - Administrator - Enabled) => C:\Users\Luna WDAGUtilityAccount (S-1-5-21-244204050-175357254-1230988532-504 - Limited - Disabled) ==================== Centro de Seguridad ======================== (Si una entrada es incluida en el fixlist, será eliminada.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: McAfee VirusScan (Disabled - Up to date) {9D4501E6-72F6-2877-C789-89AF6F535B2C} AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Disabled - Out of date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} FW: McAfee Firewall (Disabled) {A57E80C3-3899-292F-ECD6-209A91801C57} ==================== Programas instalados ====================== (Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.) ACDSee 10 Photo Manager (HKLM-x32\...\{F8B98EB6-FC06-45BF-87D4-9784E0408611}) (Version: 10.0.219 - ACD Systems International) Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 21.001.20145 - Adobe Systems Incorporated) Adobe Lightroom Classic (HKLM-x32\...\LTRM_9_4) (Version: 9.4 - Adobe Inc.) Adobe Photoshop CS6 versión 13.0.1 (HKLM-x32\...\{A724DC44-6241-42D3-BA57-778B178ABC17}_is1) (Version: 13.0.1 - Adobe Systems, Inc.) AllDup 4.1.8 (HKLM-x32\...\AllDup_is1) (Version: 4.1.8 - Michael Thummerer Software Design) AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD) AnyToISO (HKLM-x32\...\AnyToISO_is1) (Version: 3.9.6 - CrystalIDEA Software) Asistente para actualización a Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22925 - Microsoft Corporation) calibre (HKLM-x32\...\{133AA70C-DB58-48DB-90AE-3A7033C896A7}) (Version: 3.39.1 - Kovid Goyal) Capture One 21 (HKLM\...\Capture One 21_is1) (Version: 14.0.1.5 - Capture One A/S) Centro de Mouse y Teclado de Microsoft (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 11.1.137.0 - Microsoft Corporation) Eines de correcció del Microsoft Office 2013: català (HKLM\...\{90150000-001F-0403-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden FastStone Image Viewer 7.4 (HKLM-x32\...\FastStone Image Viewer) (Version: 7.4 - FastStone Soft) Ferramentas de verificación de Microsoft Office 2013 - Galego (HKLM\...\{90150000-001F-0456-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden FreeFileSync 11.4 (HKLM-x32\...\FreeFileSync_is1) (Version: 11.4 - FreeFileSync.org) Gihosoft TubeGet version 8.6.18.0 (HKLM-x32\...\{222ECA2E-17A6-4914-922A-BABE02869072}_is1) (Version: 8.6.18.0 - HK GIHO CO., LIMITED) Google Chrome (HKLM\...\{8AC8E2E9-87E7-30CA-8308-E737B3911CE5}) (Version: 78.0.3904.87 - Google, Inc.) HiSuite (HKLM-x32\...\Hi Suite) (Version: 8.0.1.302 - Huawei Technologies Co.,Ltd) HitmanPro 3.8 (HKLM\...\HitmanPro38) (Version: 3.8.20.314 - SurfRight B.V.) IObit Driver Booster 8.3.0.361 (HKLM-x32\...\IObit Driver Booster_is1) (Version: 8.3.0.361 - LRepacks) IObit Uninstaller 10 (HKLM-x32\...\IObitUninstall) (Version: 10.3.0.13 - IObit) LoiLoScope 2 (HKLM-x32\...\{CAB75FFC-2377-4B95-A8FA-C9234B812A92}_is1) (Version: 2.5.5.0 - LoiLo inc) LoiLoScope Descargar (HKLM-x32\...\{C2A254F4-AC74-482F-8F09-DB2843AC2AAE}_is1) (Version: 2.0 - LoiLo inc) MakeMKV v1.15.4 (HKLM-x32\...\MakeMKV) (Version: v1.15.4 - GuinpinSoft inc) Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes) McAfee® Total Protection (HKLM-x32\...\MSC) (Version: 16.0 R30 - McAfee, LLC) MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 89.0.774.54 - Microsoft Corporation) Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-244204050-175357254-1230988532-1008\...\OneDriveSetup.exe) (Version: 21.030.0211.0002 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{99FAF70F-9B61-4AB0-9EC0-B31F98FFDC4A}) (Version: 2.75.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) Music Recorder (HKLM-x32\...\{F3949798-3544-433B-B5AB-A61F32F0386F}) (Version: 18.001.2 - Nero AG) Hidden Nero 2018 (HKLM-x32\...\{5637174D-25C6-4815-93CD-AD18561D4E7C}) (Version: 19.0.07300 - Nero AG) Nero Info (HKLM-x32\...\{F030BFE8-8476-4C08-A553-233DE80A2BE1}) (Version: 19.0.1003 - Nero AG) NVIDIA Software del sistema PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x64) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - ESN) (Version: 10.0.50903 - Microsoft Corporation) PHOTOfunSTUDIO 9.7 PE (HKLM-x32\...\{2A71E3D5-1714-4E8F-88CD-7C06894FA6A2}) (Version: 9.07.707.1034 - Panasonic Corporation) Python 3.8.5 (64-bit) (HKU\S-1-5-21-244204050-175357254-1230988532-1008\...\{de694e50-e0d0-48a5-9a7a-56fd037154e2}) (Version: 3.8.5150.0 - Python Software Foundation) Python 3.8.5 Core Interpreter (64-bit) (HKLM\...\{CD482F6D-9FC2-4042-B380-9FB198102148}) (Version: 3.8.5150.0 - Python Software Foundation) Hidden Python 3.8.5 Development Libraries (64-bit) (HKLM\...\{FA7816C5-12FB-4278-9437-E99AA9639E59}) (Version: 3.8.5150.0 - Python Software Foundation) Hidden Python 3.8.5 Documentation (64-bit) (HKLM\...\{7211CFF5-CFE7-4B7C-A699-DB0E65DAF4BC}) (Version: 3.8.5150.0 - Python Software Foundation) Hidden Python 3.8.5 Executables (64-bit) (HKLM\...\{216A8530-DA4B-42FE-BDD4-DCDC1298FB6C}) (Version: 3.8.5150.0 - Python Software Foundation) Hidden Python 3.8.5 pip Bootstrap (64-bit) (HKLM\...\{AA5051A9-8135-494F-AE0D-AE9A503B2C72}) (Version: 3.8.5150.0 - Python Software Foundation) Hidden Python 3.8.5 Standard Library (64-bit) (HKLM\...\{A3E57B8B-8336-4C64-83B7-5C6EC8E25254}) (Version: 3.8.5150.0 - Python Software Foundation) Hidden Python 3.8.5 Tcl/Tk Support (64-bit) (HKLM\...\{B0F29718-AB7A-40AF-8DF9-4E6129FFBCD4}) (Version: 3.8.5150.0 - Python Software Foundation) Hidden Python 3.8.5 Test Suite (64-bit) (HKLM\...\{6FF3D3E8-6953-4723-B5E1-3A19416F6350}) (Version: 3.8.5150.0 - Python Software Foundation) Hidden Python 3.8.5 Utility Scripts (64-bit) (HKLM\...\{C28BE172-9103-463D-9793-264434DBDC27}) (Version: 3.8.5150.0 - Python Software Foundation) Hidden Python Launcher (HKLM-x32\...\{CEEAEA02-2472-4BF6-8994-52D6783F5575}) (Version: 3.8.7140.0 - Python Software Foundation) qBittorrent 4.3.3 (HKLM-x32\...\qBittorrent) (Version: 4.3.3 - The qBittorrent project) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8899.1 - Realtek Semiconductor Corp.) Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform) RescuePRO Deluxe 7.0.1.1 (HKLM-x32\...\{38D9AAB8-116B-40BB-A801-50B71DF82D24}_is1) (Version: 7.0.1.1 - LC Technology International, Inc.) Revisores de Texto do Microsoft Office 2013 – Português do Brasil (HKLM\...\{90150000-001F-0416-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft) SILKYPIX Developer Studio 4.3 SE (HKLM-x32\...\{18F34C8F-280E-4B1F-908B-58CE6430E5E3}) (Version: 4 - Ichikawa Soft Laboratory) Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation) UltraISO Premium V9.36 (HKLM-x32\...\UltraISO_is1) (Version: - ) Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft) Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft) Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-012B-0C0A-1000-0000000FF1CE}_Office15.PROPLUS_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{B2E25355-C24E-4E7D-8AD3-455D59810838}) (Version: 2.57.0.0 - Microsoft Corporation) VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN) WD Backup (HKLM-x32\...\{2d518703-86c4-46c8-99c1-f3789dd3ecd0}) (Version: 1.9.7435.38388 - Western Digital Technologies, Inc.) WD Backup (HKLM-x32\...\{5491B486-8812-4202-AB8C-865AB636ACF0}) (Version: 1.9.7435.38388 - Western Digital Technologies, Inc) Hidden WD Desktop App 2.1.0.313 (HKLM-x32\...\{756e70ec-1fb0-41c8-896b-df0302d17bff}) (Version: 2.1.0.313 - Western Digital Corporation) Hidden WD Desktop App 2.1.0.313 (x64) (HKLM\...\{CA7F7232-526E-41BD-971A-47BE28C18516}) (Version: 2.1.0.313 - Western Digital Corporation) Hidden WD Drive Utilities (HKLM-x32\...\{693748a9-bddc-4f6f-b3ff-f9bd14a3fcc0}) (Version: 2.0.0.71 - Western Digital Technologies, Inc.) WD Drive Utilities (HKLM-x32\...\{ED1E371E-F744-437B-95AD-9552E2BCE629}) (Version: 2.0.0.71 - Western Digital Technologies, Inc.) Hidden WD Security (HKLM-x32\...\{327CA54B-8D15-4BE2-A4D2-868194BF7B97}) (Version: 2.0.0.76 - Western Digital Technologies, Inc.) Hidden WD Security (HKLM-x32\...\{9629d8ce-7cc4-4142-b7f8-2c003f1c6613}) (Version: 2.0.0.76 - Western Digital Technologies, Inc.) WD SES Driver Setup (HKLM-x32\...\{924A274D-38B6-4930-8859-F3F51CFA8DDD}) (Version: 1.1.0.25 - Western Digital) Hidden WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH) Xilisoft Video Convertidor Ultimate (HKLM-x32\...\Xilisoft Video Convertidor Ultimate) (Version: 7.8.21.20170920 - Xilisoft) Packages: ========= Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1252.0_x64__8wekyb3d8bbwe [2021-03-07] (Microsoft Studios) [MS Ad] Raw Image Extension -> C:\Program Files\WindowsApps\Microsoft.RawImageExtension_1.0.40392.0_x64__8wekyb3d8bbwe [2021-03-17] (Microsoft Corporation) ==================== Personalizado CLSID (Lista blanca): ============== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) SSODL: WDFSMountNotificator-wdfsconnect2017 - {028EF6F2-2E5C-4582-BDAE-23A5E45D2E89} - C:\WINDOWS\system32\wdfsconnectMntNtf2017.dll (Western Digital Technologies, Inc.) [Archivo no firmado] SSODL-x32: WDFSMountNotificator-wdfsconnect2017 - {028EF6F2-2E5C-4582-BDAE-23A5E45D2E89} - C:\WINDOWS\SysWOW64\wdfsconnectMntNtf2017.dll (Western Digital Technologies, Inc.) [Archivo no firmado] ShellServiceObjects: Virtual Storage Mount Notification -> {028EF6F2-2E5C-4582-BDAE-23A5E45D2E89} => C:\WINDOWS\system32\wdfsconnectMntNtf2017.dll [2017-11-10] (Western Digital Technologies, Inc.) [Archivo no firmado] ShellServiceObjects-x32: Virtual Storage Mount Notification -> {028EF6F2-2E5C-4582-BDAE-23A5E45D2E89} => C:\WINDOWS\SysWOW64\wdfsconnectMntNtf2017.dll [2017-11-10] (Western Digital Technologies, Inc.) [Archivo no firmado] ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\caurr\AppData\Local\MEGAsync\ShellExtX64.dll [2021-01-14] (Mega Limited -> ) ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\caurr\AppData\Local\MEGAsync\ShellExtX64.dll [2021-01-14] (Mega Limited -> ) ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\caurr\AppData\Local\MEGAsync\ShellExtX64.dll [2021-01-14] (Mega Limited -> ) ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay01] -> {4F8A325E-9DAF-44B8-A825-1A14DFA0FA78} => C:\Program Files\WD Desktop App\kda.DLL [2020-07-20] (Western Digital Technologies, Inc. -> Western Digital Corporation) ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay02] -> {0176BDDE-B59A-4A1E-808B-CAD461415CCA} => C:\Program Files\WD Desktop App\kda.DLL [2020-07-20] (Western Digital Technologies, Inc. -> Western Digital Corporation) ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay03] -> {B65909D1-57AF-41F5-AB94-BEB733F62B35} => C:\Program Files\WD Desktop App\kda.DLL [2020-07-20] (Western Digital Technologies, Inc. -> Western Digital Corporation) ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay04] -> {C6C2397D-8238-4332-8935-86C39C7C165F} => C:\Program Files\WD Desktop App\kda.DLL [2020-07-20] (Western Digital Technologies, Inc. -> Western Digital Corporation) ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay05] -> {E7B3BCF9-0386-4B5F-AE6A-91B9F1423973} => C:\Program Files\WD Desktop App\kda.DLL [2020-07-20] (Western Digital Technologies, Inc. -> Western Digital Corporation) ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay06] -> {564EA121-D9DA-485D-82C2-C2ED7BFCCEAD} => C:\Program Files\WD Desktop App\kda.DLL [2020-07-20] (Western Digital Technologies, Inc. -> Western Digital Corporation) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Ningún archivo ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Ningún archivo ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\caurr\AppData\Local\MEGAsync\ShellExtX64.dll [2021-01-14] (Mega Limited -> ) ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\caurr\AppData\Local\MEGAsync\ShellExtX64.dll [2021-01-14] (Mega Limited -> ) ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\caurr\AppData\Local\MEGAsync\ShellExtX64.dll [2021-01-14] (Mega Limited -> ) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> Ningún archivo ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => -> Ningún archivo ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> Ningún archivo ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Ningún archivo ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> Ningún archivo ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2020-07-31] (IObit Information Technology -> IObit) ContextMenuHandlers1: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => C:\Program Files\McAfee\MSC\McCtxMenuFrmWrk.dll [2021-01-20] (McAfee, LLC -> McAfee, LLC) ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\caurr\AppData\Local\MEGAsync\ShellExtX64.dll [2021-01-14] (Mega Limited -> ) ContextMenuHandlers1: [WDDesktopContextMenu] -> {fa00ba41-b6f6-3cfa-a300-f25ce175fe7e} => C:\Program Files\WD Desktop App\kda.DLL [2020-07-20] (Western Digital Technologies, Inc. -> Western Digital Corporation) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> Ningún archivo ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\caurr\AppData\Local\MEGAsync\ShellExtX64.dll [2021-01-14] (Mega Limited -> ) ContextMenuHandlers2: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2009-10-22] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-02-28] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\caurr\AppData\Local\MEGAsync\ShellExtX64.dll [2021-01-14] (Mega Limited -> ) ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> Ningún archivo ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> Ningún archivo ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => -> Ningún archivo ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2020-07-31] (IObit Information Technology -> IObit) ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\caurr\AppData\Local\MEGAsync\ShellExtX64.dll [2021-01-14] (Mega Limited -> ) ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers4: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2009-10-22] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.) ContextMenuHandlers4: [WDDesktopContextMenu] -> {fa00ba41-b6f6-3cfa-a300-f25ce175fe7e} => C:\Program Files\WD Desktop App\kda.DLL [2020-07-20] (Western Digital Technologies, Inc. -> Western Digital Corporation) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-08-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Ningún archivo ContextMenuHandlers6: [ContMenu] -> {FCF608CF-5716-47C3-A1A8-991D873AF72B} => -> Ningún archivo ContextMenuHandlers6: [Fast Explorer] -> {693BE9C0-BEC3-11D2-B4C1-C33BBD3AD64B} => C:\ProgramData\AllDup\FEShlExt.dll [2008-08-21] (Alex Yakovlev) [Archivo no firmado] ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> Ningún archivo ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2020-07-31] (IObit Information Technology -> IObit) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-02-28] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => C:\Program Files\McAfee\MSC\McCtxMenuFrmWrk.dll [2021-01-20] (McAfee, LLC -> McAfee, LLC) ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers6: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2009-10-22] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Lista blanca) ==================== (Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.) HKLM\...\Drivers32: [VIDC.ACDV] => ACDV.dll HKLM\...\Drivers32-x32: [VIDC.ACDV] => ACDV.dll ==================== Accesos directos & WMI ======================== (Las entradas pueden ser listadas para ser restauradas o eliminadas.) ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FullHD Editor De Vídeo LoiLoScope Descargar .lnk -> C:\Program Files (x86)\LoiLo\LoiLoScope Download\WebShortcut.exe () -> hxxp://loilo.tv/product/20?partner_id=14 ==================== Módulos cargados (Lista blanca) ============= 2020-12-18 18:58 - 2020-12-09 15:16 - 009758720 _____ () [Archivo no firmado] [El archivo está en uso] C:\Program Files\Capture One\Capture One 21\WIC\WIC64\P1.AppCore.dll 2014-02-11 07:08 - 2014-02-11 07:08 - 000817152 _____ () [Archivo no firmado] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll 2015-08-21 22:09 - 2015-08-21 22:09 - 000214528 _____ () [Archivo no firmado] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll 2015-08-21 22:09 - 2015-08-21 22:09 - 000127488 _____ () [Archivo no firmado] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll 2014-02-11 07:08 - 2014-02-11 07:08 - 003650560 _____ () [Archivo no firmado] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll 2020-12-18 18:58 - 2020-12-09 15:11 - 000603136 _____ () [Archivo no firmado] C:\Program Files\Capture One\Capture One 21\WIC\WIC64\OpenCoreDll.dll 2020-12-18 18:58 - 2020-12-09 15:18 - 000294912 _____ () [Archivo no firmado] C:\Program Files\Capture One\Capture One 21\WIC\WIC64\P1.WIC.NativeComWrapper.dll 2020-12-18 18:58 - 2020-12-09 15:11 - 040621568 _____ () [Archivo no firmado] C:\Program Files\Capture One\Capture One 21\WIC\WIC64\WIC.ImgCoreDll.dll ==================== Alternate Data Streams (Lista blanca) ======== ==================== Modo Seguro (Lista blanca) ================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ModuleCoreService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcapexe => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ModuleCoreService => ""="Service" ==================== Asociación (Lista blanca) ================= ==================== Internet Explorer (Lista blanca) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2020-01-31] (IObit Information Technology -> IObit) BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll => Ningún archivo BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll => Ningún archivo BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation -> Microsoft Corporation) Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation) Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\McAfee\MSC\McSnIePl64.dll [2021-01-20] (McAfee, LLC -> McAfee, LLC) Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\MSC\McSnIePl.dll [2021-01-20] (McAfee, LLC -> McAfee, LLC) ==================== Hosts contenido: ========================= (Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.) 2017-04-07 03:34 - 2019-11-12 19:10 - 000000891 _____ C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 telemetry.malwarebytes.com 127.0.0.1 skipittok.com ==================== Otras Áreas =========================== (Actualmente no existe una corrección automática para esta sección.) HKU\S-1-5-21-244204050-175357254-1230988532-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg HKU\S-1-5-21-244204050-175357254-1230988532-1008\Control Panel\Desktop\\Wallpaper -> E:\CAMARAS DE FOTOS\2.Panasonic Lumix Pro FZ300 (Originales-desde marzo 2018-enero 2020-limpiando)\_2018\7. JULIO 18\P1070476.JPG DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn) Firewall de Windows está habilitado. ==================== MSCONFIG/TASK MANAGER elementos deshabilitados == (Si una entrada es incluida en el fixlist, será eliminada.) HKLM\...\StartupApproved\Run: => "SecurityHealth" HKLM\...\StartupApproved\Run: => "RTHDVCPL" HKLM\...\StartupApproved\Run32: => "StartCCC" HKLM\...\StartupApproved\Run32: => "WDAppManager" HKLM\...\StartupApproved\Run32: => "DriveUtilitiesHelper" HKLM\...\StartupApproved\Run32: => "Nero BackItUp" HKU\S-1-5-21-244204050-175357254-1230988532-1008\...\StartupApproved\Run: => "CCleaner Smart Cleaning" HKU\S-1-5-21-244204050-175357254-1230988532-1008\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_33F0D82C69AFC1283B3F07B65A9F8F20" ==================== Reglas de firewall (Lista blanca) ================ (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) FirewallRules: [{225D8576-EBB9-4CF4-9C5A-B9DE279FB8E2}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{ECEA7B4C-15B3-43EA-BDD0-E60B5F47279C}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{AC5B85B0-CF0E-4FD5-A045-BDB3A822C412}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{08967D32-4FC1-4C13-B41D-BA51A578AB43}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{6975FA69-803A-4357-8FA1-32CF4FEBF1E8}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{D8347C30-7BA6-4A35-8FDC-1A3A4F691957}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{C32CDE3A-EC2D-4E5F-A7A4-26E585DA3A9D}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{174B6AB7-D977-44AE-A92B-AFD8A1A68982}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{D9403646-06DC-43E0-BCAB-A9015D76E9F9}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{0B9E80ED-3199-4C89-B293-E98FDC6EE4AC}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{AB622726-6EF5-41B5-B909-4950E79225A7}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{B8B2DB4C-2D79-4181-A860-8649CA1AB44C}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{B0E4FCF1-B567-4247-83A2-4F5F3D8B7D3B}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{CEB54B54-BA50-45C7-8F6B-6A80F66437B8}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{EB94FC5B-FCDF-4648-955B-9089BD01D6DA}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{EDE2C1BE-073E-4D32-9C24-4CED090BEF45}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{1853B8DC-249C-4E71-9CA2-FCD3F0902E04}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{3DD85C50-BCC3-485C-BDE8-D839401D72B8}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{4319646B-0061-4101-A2E9-A9D0761CAC1B}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{33AD0B97-AB0F-4429-8F40-4FAC9792753A}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{9AF005ED-3DB5-4216-BDF4-6128ED1E5D61}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{ACB6C211-675D-493C-A3D5-5E407A6BD2D0}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{FD8DAA92-AF38-419A-B00B-A5D9875077C3}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{09943B7E-F5F5-46AD-95DC-81E8D44FCE71}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{08C366CF-66A6-48D0-9CEE-0D6FC45DCB81}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{67D32CA2-8129-45D9-BAE3-D5AF32433C1F}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{E5768030-BBED-46BB-AF73-AE1A67F3C115}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{E2890F8C-AEBB-4DD7-9437-62C20FE94C22}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{8BA5C784-6301-483E-B7EB-E8570B343391}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{98526B39-3103-486F-A5B1-60EC1170BFC8}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{8F5A1B12-F067-4434-A5D0-56D3EC1121C8}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{8F686204-8CFE-4FC3-92BE-1A170FDF35DC}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{EB7AC2CE-DB07-4D8A-A102-4A747DBE3C2A}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{F7C01E04-53B1-4CC8-9299-FB208F5C10BF}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{A335D446-D49C-4270-9E3A-DE29EA0E979D}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{7520C70B-B0CF-4F35-A914-2A401B953C86}] => (Allow) C:\ProgramData\Google\ChromeDir2\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{8932004C-1B09-42F2-9D0F-E23E902DF79D}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve -> Valve Corporation) FirewallRules: [{9DB500DC-B86F-469E-861A-642B441CB32A}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve -> Valve Corporation) FirewallRules: [{C8359805-30CE-47DB-8D5F-A9201C297074}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{24E978CB-E3DD-4BBE-9C4B-A9A40897D3AC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{C6CBC047-7E60-4E59-901A-D5993B1C60F5}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Life is Strange 2\LIS2\Binaries\Win64\LIS2-Win64-Shipping.exe (Square Enix) [Archivo no firmado] FirewallRules: [{70AC2304-8F4B-4346-B1E6-AA74944D0FFD}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Life is Strange 2\LIS2\Binaries\Win64\LIS2-Win64-Shipping.exe (Square Enix) [Archivo no firmado] FirewallRules: [{054CA31D-0736-413A-A644-A164D2682323}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{F95FD0F4-4380-45C7-8E91-0E06C64B0901}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{868E9A69-F286-4C3D-97A3-7D86719B94FE}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{AA5C2980-C230-4E46-83F1-CEB844081D05}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{CA0B3624-FB62-470F-BC0B-49300AD469E2}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [Archivo no firmado] FirewallRules: [{86AB10F0-2BAC-4CD3-B193-C3C3C0D17CF7}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [Archivo no firmado] FirewallRules: [{5407898A-5CFE-4954-8DED-30720FC4B47D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{53E90DB3-E497-4498-AF0B-DEE205040169}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{454B182B-71A9-445F-B495-64C1279522D8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{33C064E1-A48B-4ECF-99CD-6A6186E45F58}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{829ECDDF-E5FB-407D-81E2-389D169970B8}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe (McAfee, LLC -> McAfee, LLC) FirewallRules: [{C959D380-5BF3-46CD-BAEC-9B00359B82B5}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe (McAfee, LLC -> McAfee, LLC) FirewallRules: [{AE2939D9-F036-4977-97B4-3F6C8782E885}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe (McAfee, LLC -> McAfee, LLC) FirewallRules: [{8ACC30BF-9F10-4D55-B66E-62BB3D1CBA7E}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero Burning ROM\StartNBR.exe (Nero AG -> Nero AG) FirewallRules: [{B0ED3030-FC2F-4F31-9F5D-45B8D04DC2B6}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero BackItup\BackItUp.exe (Nero AG -> Nero AG) FirewallRules: [{A33698D3-B447-4547-845F-2C7AC231C56D}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero BackItup\NBService.exe (Nero AG -> Nero AG) FirewallRules: [{37D294B1-14E4-4BD3-86D9-BC507DEA7D51}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero MediaHome\NMDllHost.exe (Nero AG -> Nero AG) FirewallRules: [{02CB6E14-0DB6-431E-AA60-2A1FF55CBC43}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero MediaHome\MediaHome.exe (Nero AG -> Nero AG) FirewallRules: [{F82D26FA-9F93-43EE-92C1-90267C726FD0}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero Burning ROM\nero.exe (Nero AG -> Nero AG) FirewallRules: [{598B9F2C-1089-43C9-A752-9D4B1359ECDF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe (DONTNOD Entertainment) [Archivo no firmado] FirewallRules: [{CF711584-86EA-4938-B037-9B51A627CB2D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe (DONTNOD Entertainment) [Archivo no firmado] ==================== Puntos de Restauración ========================= 08-03-2021 10:14:00 lun 08-03-2021 13:54:36 Cámara restore point 11-03-2021 17:00:50 Instalador de Módulos de Windows 11-03-2021 17:13:00 Instalador de Módulos de Windows ==================== Dispositivos defectuosos en el Administrador de dispositivos ============ ==================== Errores del registro de eventos: ======================== Errores de aplicación: ================== Error: (03/18/2021 11:40:10 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nombre de la aplicación con errores: mbamtray.exe, versión: 4.0.0.897, marca de tiempo: 0x6019d411 Nombre del módulo con errores: Qt5Core.dll, versión: 5.14.1.0, marca de tiempo: 0x5f84e8d4 Código de excepción: 0xc0000005 Desplazamiento de errores: 0x0000000000219dc5 Identificador del proceso con errores: 0x164 Hora de inicio de la aplicación con errores: 0x01d71be2767fcc7c Ruta de acceso de la aplicación con errores: C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe Ruta de acceso del módulo con errores: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll Identificador del informe: 1f2a9066-f40f-4c90-b602-09a98545ec5c Nombre completo del paquete con errores: Identificador de aplicación relativa del paquete con errores: Error: (03/18/2021 11:37:58 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Errores del sistema: ============= Error: (03/17/2021 08:09:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: El servicio Servicio de Google Update (gupdate) no pudo iniciarse debido al siguiente error: El servicio no respondió a tiempo a la solicitud de inicio o de control. Error: (03/17/2021 08:09:07 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Servicio de Google Update (gupdate). Error: (03/17/2021 07:53:53 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: El servicio AMD FUEL Service se terminó de manera inesperada. Esto ha sucedido 1 veces. Error: (03/17/2021 07:53:53 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: El servicio Nero BackItUp Background Service 2018 se terminó de manera inesperada. Esto ha sucedido 1 veces. Error: (03/17/2021 07:53:53 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: El servicio WD Drive Manager se terminó de manera inesperada. Esto ha sucedido 1 veces. Error: (03/17/2021 07:53:53 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: El servicio Nero Update se terminó de manera inesperada. Esto ha sucedido 1 veces. Error: (03/17/2021 07:53:53 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: El servicio HuaweiHiSuiteService64.exe se terminó de manera inesperada. Esto ha sucedido 1 veces. Error: (03/17/2021 07:53:53 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: El servicio CdRom Device Arbiter service se terminó de manera inesperada. Esto ha sucedido 1 veces. Windows Defender: ================ Date: 2021-02-11 18:46:50 Description: El examen de Antivirus de Microsoft Defender se detuvo antes de completarse. Id. de examen: {06BDB52D-CE2D-4BC5-875A-D48AC5714827} Tipo de examen: Antimalware Parámetros de examen: Examen rápido Usuario: NT AUTHORITY\SYSTEM Date: 2021-02-10 19:50:31 Description: El examen de Antivirus de Microsoft Defender se detuvo antes de completarse. Id. de examen: {E970CB33-F377-42A1-A83B-083BCE5146F8} Tipo de examen: Antimalware Parámetros de examen: Examen rápido Usuario: NT AUTHORITY\SYSTEM Date: 2021-02-09 21:56:04 Description: El examen de Antivirus de Microsoft Defender se detuvo antes de completarse. Id. de examen: {0F092C91-0F4E-4D7B-9F95-E2847093EB94} Tipo de examen: Antimalware Parámetros de examen: Examen rápido Usuario: NT AUTHORITY\SYSTEM Date: 2021-02-08 15:31:49 Description: El examen de Antivirus de Microsoft Defender se detuvo antes de completarse. Id. de examen: {D3FA2BD3-B6AB-4E4B-9A33-51EC9BACEE38} Tipo de examen: Antimalware Parámetros de examen: Examen rápido Usuario: NT AUTHORITY\SYSTEM Date: 2021-02-06 20:53:02 Description: El examen de Antivirus de Microsoft Defender se detuvo antes de completarse. Id. de examen: {F3A8FC97-CBC8-4AA2-A73B-DDC016375AB6} Tipo de examen: Antimalware Parámetros de examen: Examen rápido Usuario: NT AUTHORITY\SYSTEM Date: 2021-02-07 10:42:13 Description: La característica Protección en tiempo real de Antivirus de Microsoft Defender encontró un error: Característica: Durante el acceso Código de error: 0x8007043c Descripción del error: El servicio no puede iniciarse en modo a prueba de errores Motivo: La inteligencia de seguridad antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema. Date: 2021-02-07 10:37:03 Description: Antivirus de Microsoft Defender detectó un error al intentar actualizar la inteligencia de seguridad. Nueva versión de inteligencia de seguridad: Versión anterior de inteligencia de seguridad: 1.331.397.0 Origen de actualización: Servidor de Microsoft Update Tipo de inteligencia de seguridad: AntiVirus Tipo de actualización: Completa Usuario: NT AUTHORITY\SYSTEM Versión actual del motor: Versión anterior del motor: 1.1.17800.5 Código de error: 0x8007043c Descripción del error: El servicio no puede iniciarse en modo a prueba de errores Date: 2021-02-07 10:26:49 Description: La característica Protección en tiempo real de Antivirus de Microsoft Defender encontró un error: Característica: Durante el acceso Código de error: 0x8007043c Descripción del error: El servicio no puede iniciarse en modo a prueba de errores Motivo: La inteligencia de seguridad antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema. Date: 2021-02-07 10:05:09 Description: Antivirus de Microsoft Defender detectó un error al intentar actualizar la inteligencia de seguridad. Nueva versión de inteligencia de seguridad: Versión anterior de inteligencia de seguridad: 1.331.397.0 Origen de actualización: Servidor de Microsoft Update Tipo de inteligencia de seguridad: AntiVirus Tipo de actualización: Completa Usuario: NT AUTHORITY\SYSTEM Versión actual del motor: Versión anterior del motor: 1.1.17800.5 Código de error: 0x8007043c Descripción del error: El servicio no puede iniciarse en modo a prueba de errores Date: 2021-02-07 09:54:57 Description: La característica Protección en tiempo real de Antivirus de Microsoft Defender encontró un error: Característica: Durante el acceso Código de error: 0x8007043c Descripción del error: El servicio no puede iniciarse en modo a prueba de errores Motivo: La inteligencia de seguridad antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema. CodeIntegrity: =============== Date: 2021-03-18 12:04:44 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume2\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements. Date: 2021-03-18 12:04:35 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2021-03-18 12:01:06 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements. Date: 2021-03-18 12:01:01 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Microsoft signing level requirements. ==================== Información de la memoria =========================== BIOS: American Megatrends Inc. P1.90 05/26/2012 Placa base: ASRock A75M Procesador: AMD A6-3500 APU with Radeon(tm) HD Graphics Porcentaje de memoria en uso: 71% RAM física total: 3817.64 MB RAM física disponible: 1104.57 MB Virtual total: 6249.64 MB Virtual disponible: 3281.84 MB ==================== Unidades ================================ Drive c: () (Fixed) (Total:465.09 GB) (Free:336.98 GB) NTFS Drive d: (ScreenPlayPro_HD) (Fixed) (Total:464.43 GB) (Free:397.74 GB) NTFS Drive e: (LAURA PEN) (Removable) (Total:1.87 GB) (Free:0.06 GB) FAT32 \\?\Volume{70e3dcb5-0000-0000-0000-100000000000}\ (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS \\?\Volume{70e3dcb5-0000-0000-0000-304c74000000}\ () (Fixed) (Total:0.57 GB) (Free:0.12 GB) NTFS ==================== MBR & Tabla de particiones ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 70E3DCB5) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=465.1 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=583 MB) - (Type=27) ========================================================== Disk: 1 (Size: 465.8 GB) (Disk ID: ADF5DF51) Partition 1: (Not Active) - (Size=510 MB) - (Type=83) Partition 2: (Not Active) - (Size=251 MB) - (Type=83) Partition 3: (Not Active) - (Size=510 MB) - (Type=82) Partition 4: (Not Active) - (Size=464.4 GB) - (Type=07 NTFS) ========================================================== Disk: 2 (Protective MBR) (Size: 1.9 GB) (Disk ID: 00000000) Partition: GPT. ==================== Final de Addition.txt =======================