Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 03-08-2021 Ejecutado por Joseba (04-08-2021 21:44:14) Ejecutado desde C:\Users\Joseba\Desktop Windows 7 Home Premium Service Pack 1 (X64) (2020-05-30 09:47:01) Modo de Inicio: Normal ========================================================== ==================== Cuentas: ============================= (Si una entrada es incluida en el fixlist, será eliminada.) Administrador (S-1-5-21-771737515-3687490794-2116205075-500 - Administrator - Disabled) HomeGroupUser$ (S-1-5-21-771737515-3687490794-2116205075-1002 - Limited - Enabled) Invitado (S-1-5-21-771737515-3687490794-2116205075-501 - Limited - Disabled) Joseba (S-1-5-21-771737515-3687490794-2116205075-1000 - Administrator - Enabled) => C:\Users\Joseba ==================== Centro de Seguridad ======================== (Si una entrada es incluida en el fixlist, será eliminada.) AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programas instalados ====================== (Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.) µTorrent (HKU\S-1-5-21-771737515-3687490794-2116205075-1000\...\uTorrent) (Version: 3.5.5.45852 - BitTorrent Inc.) Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 21.001.20135 - Adobe Systems Incorporated) Cheating-Death 4.33.4 (HKLM-x32\...\Cheating-Death) (Version: - ) Counter-Strike 1.6 (HKLM-x32\...\Counter-Strike 1.6_is1) (Version: Counter-Strike 1.6 No Steam - KingSOFT DVD) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.14.0.1679 - Disc Soft Ltd) Discord (HKU\S-1-5-21-771737515-3687490794-2116205075-1000\...\Discord) (Version: 0.0.309 - Discord Inc.) DooM collection (HKLM-x32\...\DooM collection) (Version: - ) Driver Booster 8 (HKLM-x32\...\Driver Booster_is1) (Version: 8.2.0 - IObit) Epic Games Launcher (HKLM-x32\...\{8CAF0391-512D-485C-B141-39D89E7EDCA8}) (Version: 1.2.17.0 - Epic Games, Inc.) Epic Online Services (HKLM-x32\...\{0B736177-814A-4ADE-81D1-66A0FDD55BB4}) (Version: 1.1.11.0 - Epic Games, Inc.) Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.99.0 - Google Inc.) Hidden Intel(R) Computing Improvement Program (HKLM\...\{CB94C849-BE4D-4443-899D-096F2BA8C91E}) (Version: 2.4.06492 - Intel Corporation) Java 8 Update 281 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180281F0}) (Version: 8.0.2810.9 - Oracle Corporation) League of Legends (HKU\S-1-5-21-771737515-3687490794-2116205075-1000\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc) Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2021.4.3830 - Logitech) Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes) MaskVPN (HKLM-x32\...\{4A4ACF2E-4A98-4D18-80E3-5A5E5706F81E}_is1) (Version: 1.1.0.31 - Global Media (Thailand) Co., Ltd) Microsoft .NET Framework 4.7.2 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.7.03062 - Microsoft Corporation) Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD) NVIDIA GeForce NOW 2.0.29.120 (HKU\S-1-5-21-771737515-3687490794-2116205075-1000\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GeforceNOW) (Version: 2.0.29.120 - NVIDIA Corporation) Opera GX Stable 77.0.4054.275 (HKU\S-1-5-21-771737515-3687490794-2116205075-1000\...\Opera GX 77.0.4054.275) (Version: 77.0.4054.275 - Opera Software) Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x64) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - ESN) (Version: 10.0.50903 - Microsoft Corporation) ProtonVPNTap (HKLM-x32\...\{5DA710E2-1B81-4675-BFC5-76BAF63AE1F6}) (Version: 1.1.3 - Proton Technologies AG) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8746.1 - Realtek Semiconductor Corp.) Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.) RivaTuner Statistics Server 7.2.3 (HKLM-x32\...\RTSS) (Version: 7.2.3 - Unwinder) Smart Game Booster 5.1 (HKLM-x32\...\Smart Game Booster_is1) (Version: 5.1.0 - Smart Game Booster) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) The Binding of Isaac Rebirth - ElAmigos version 08.04.2021 (HKLM-x32\...\{16FA778B-E5D3-43A3-80A4-D043BCF67090}_is1) (Version: 08.04.2021 - Nicalis, Inc.) VALORANT (HKU\S-1-5-21-771737515-3687490794-2116205075-1000\...\Riot Game valorant.live) (Version: - Riot Games, Inc) VLC media player (HKLM\...\VLC media player) (Version: 3.0.10 - VideoLAN) Windows Manager (HKLM-x32\...\{C845414C-903C-4218-9DE7-132AB97FDF62}) (Version: 1.0.0 - AW Manager) <==== ATENCIÓN WinRAR 5.90 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH) ==================== Personalizado CLSID (Lista blanca): ============== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6722448 2010-03-25] (Microsoft Corporation -> Microsoft Corporation) ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4222864 2010-03-25] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Ningún archivo ContextMenuHandlers1: [SmartGameBoosterMenu] -> {96C86AD1-055D-457D-9C00-0D4A91ECF1B4} => C:\Program Files (x86)\PCGameBoost\Smart Game Booster\5.1.0\MenuExt64.dll [2020-10-21] (Chengdu Zhagu Technology Co., Ltd. -> Smart Game Booster) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2021-02-06] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2021-02-06] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-05-30] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers3: [SmartGameBoosterMenu] -> {96C86AD1-055D-457D-9C00-0D4A91ECF1B4} => C:\Program Files (x86)\PCGameBoost\Smart Game Booster\5.1.0\MenuExt64.dll [2020-10-21] (Chengdu Zhagu Technology Co., Ltd. -> Smart Game Booster) ContextMenuHandlers4: [SmartGameBoosterMenu] -> {96C86AD1-055D-457D-9C00-0D4A91ECF1B4} => C:\Program Files (x86)\PCGameBoost\Smart Game Booster\5.1.0\MenuExt64.dll [2020-10-21] (Chengdu Zhagu Technology Co., Ltd. -> Smart Game Booster) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2021-02-06] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-05-30] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [SmartGameBoosterMenu] -> {96C86AD1-055D-457D-9C00-0D4A91ECF1B4} => C:\Program Files (x86)\PCGameBoost\Smart Game Booster\5.1.0\MenuExt64.dll [2020-10-21] (Chengdu Zhagu Technology Co., Ltd. -> Smart Game Booster) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Lista blanca) ==================== (Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.) HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [Archivo no firmado] HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Archivo no firmado] ==================== Accesos directos & WMI ======================== (Las entradas pueden ser listadas para ser restauradas o eliminadas.) WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\":: WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99] WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate] ==================== Módulos cargados (Lista blanca) ============= 2010-08-25 19:05 - 2010-08-25 19:05 - 000088576 _____ (Intel Corporation) [Archivo no firmado] C:\Windows\system32\igfxrESN.lrc ==================== Alternate Data Streams (Lista blanca) ======== ==================== Modo Seguro (Lista blanca) ================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Asociación (Lista blanca) ================= ==================== Internet Explorer (Versión 11) (Lista blanca) ========== HKU\S-1-5-21-771737515-3687490794-2116205075-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/es-es/?ocid=iehp BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation -> Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\ssv.dll [2021-02-10] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: IObit Surfing Protection -> {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -> C:\PROGRA~2\IObit\ADVANC~1\SURFIN~1\BROWER~1\ASCPLU~1.DLL => Ningún archivo BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\jp2ssv.dll [2021-02-10] (Oracle America, Inc. -> Oracle Corporation) (Si una entrada es incluida en el fixlist, será eliminada del registro.) IE trusted site: HKU\S-1-5-21-771737515-3687490794-2116205075-1000\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-771737515-3687490794-2116205075-1000\...\webcompanion.com -> hxxp://webcompanion.com ==================== Hosts contenido: ========================= (Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.) 2009-07-14 04:34 - 2009-06-10 23:00 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts ==================== Otras Áreas =========================== (Actualmente no existe una corrección automática para esta sección.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\ HKU\S-1-5-21-771737515-3687490794-2116205075-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Joseba\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 212.142.173.37 - 8.8.8.8 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Firewall de Windows está habilitado. ==================== MSCONFIG/TASK MANAGER elementos deshabilitados == (Si una entrada es incluida en el fixlist, será eliminada.) MSCONFIG\Services: AeLookupSvc => 3 MSCONFIG\Services: avast! Tools => 2 MSCONFIG\Services: BEService => 3 MSCONFIG\Services: EpicOnlineServices => 3 MSCONFIG\Services: GoogleChromeElevationService => 3 MSCONFIG\Services: gupdate => 2 MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: MaskVPNService => 2 MSCONFIG\Services: MBAMService => 3 MSCONFIG\Services: MpsSvc => 2 MSCONFIG\Services: TrustedLogos => 2 MSCONFIG\Services: uncheater_bgl => 3 MSCONFIG\Services: WinDefend => 2 MSCONFIG\Services: WinDefender => 2 MSCONFIG\Services: WSearch => 2 MSCONFIG\Services: wuauserv => 2 MSCONFIG\Services: wudfsvc => 3 MSCONFIG\startupfolder: C:^Users^Joseba^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^DooM.lnk => C:\Windows\pss\DooM.lnk.Startup MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" MSCONFIG\startupreg: Advanced SystemCare => "C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe" /Auto MSCONFIG\startupreg: BCSSync => "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices MSCONFIG\startupreg: DAEMON Tools Lite Automount => "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun MSCONFIG\startupreg: Discord => C:\Users\Joseba\AppData\Local\Discord\app-0.0.308\Discord.exe MSCONFIG\startupreg: GoogleChromeAutoLaunch_C138E18D323EB8D488F63F7CB8121CE2 => "C:\Program Files\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5 MSCONFIG\startupreg: HotKeysCmds => C:\Windows\system32\hkcmd.exe MSCONFIG\startupreg: IgfxTray => C:\Windows\system32\igfxtray.exe MSCONFIG\startupreg: OfficeSyncProcess => "C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE" MSCONFIG\startupreg: Persistence => C:\Windows\system32\igfxpers.exe MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent MSCONFIG\startupreg: Web Companion => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize ==================== Reglas de firewall (Lista blanca) ================ (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) FirewallRules: [{89FCFAC7-1D85-44BE-9081-9C303A762298}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe => Ningún archivo FirewallRules: [TCP Query User{02A61214-020B-45BF-9334-4AA0A8063631}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [UDP Query User{E91E3E38-4195-40C2-A5F3-E0833A5DB0BF}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [TCP Query User{100331F5-9104-4BC9-9383-07BC4CECD373}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe => Ningún archivo FirewallRules: [UDP Query User{DDAD70C6-58C0-4FEB-8658-45F921650B55}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe => Ningún archivo FirewallRules: [TCP Query User{D59F0E85-E66D-43FD-9AA6-E328BECCE4FC}C:\users\joseba\downloads\flashpoint 9.0 infinity\legacy\httpd.exe] => (Allow) C:\users\joseba\downloads\flashpoint 9.0 infinity\legacy\httpd.exe (Apache Software Foundation) [Archivo no firmado] FirewallRules: [UDP Query User{C308FA9F-5268-45E2-BF01-ACEEB637877E}C:\users\joseba\downloads\flashpoint 9.0 infinity\legacy\httpd.exe] => (Allow) C:\users\joseba\downloads\flashpoint 9.0 infinity\legacy\httpd.exe (Apache Software Foundation) [Archivo no firmado] FirewallRules: [TCP Query User{165AB9F2-2EA1-44A5-A8AC-F409CCA02C47}C:\users\joseba\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\joseba\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [UDP Query User{AC3503C9-7024-4B0F-B3AA-C894419220C6}C:\users\joseba\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\joseba\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [TCP Query User{12B9831E-C4AD-4DD2-B9D8-5AD365565DE5}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe (Valve -> Valve Corporation) FirewallRules: [UDP Query User{558742C5-2AE1-4B7D-A1E7-A58EF514F98F}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe (Valve -> Valve Corporation) FirewallRules: [{2EFC952A-19A0-44BC-B24D-96173F3ADA09}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{7725DF9B-591A-46F3-89FF-76F5C6DC8A0C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [TCP Query User{4FF91B74-BA04-41CB-900E-40968AFB0A17}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) C:\program files (x86)\counter-strike 1.6\hl.exe (Valve) [Archivo no firmado] FirewallRules: [UDP Query User{175FB92A-AC90-4981-9864-3785CAFDCFC5}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) C:\program files (x86)\counter-strike 1.6\hl.exe (Valve) [Archivo no firmado] FirewallRules: [{6AC05067-E4C6-486C-A9CF-1991E379EB7A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> ) FirewallRules: [{016271DC-D9DD-4AE2-AB87-DEF0468373FA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> ) FirewallRules: [{1659CD88-F11E-4E88-B305-0F67248E9E91}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Robots\WarRobots.exe () [Archivo no firmado] FirewallRules: [{F3B85907-DD12-4225-A4FD-6EAEE2B1E67B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Robots\WarRobots.exe () [Archivo no firmado] FirewallRules: [TCP Query User{721DFD3B-2D95-42C8-9993-894A75EC1745}C:\program files (x86)\steam\steamapps\common\combat arms the classic\voicechat.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\combat arms the classic\voicechat.exe (VALOFE Co.,Ltd. -> ) FirewallRules: [UDP Query User{6F3EF8D8-0661-4C48-BA76-BF0FA73FF2B9}C:\program files (x86)\steam\steamapps\common\combat arms the classic\voicechat.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\combat arms the classic\voicechat.exe (VALOFE Co.,Ltd. -> ) FirewallRules: [{D94A6717-F520-41E6-B215-8218D9767B35}] => (Allow) C:\Program Files (x86)\MaskVPN\mask_svc.exe (Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd) FirewallRules: [{AFA6FC33-8CE3-4751-B9B6-E6A7ED430A85}] => (Allow) C:\Program Files (x86)\MaskVPN\MaskVPN.exe (Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd) FirewallRules: [{EE08F761-89BC-4DAE-B13D-E81042B1A4DB}] => (Allow) C:\Program Files (x86)\MaskVPN\MaskVPNUpdate.exe (Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd) FirewallRules: [{7D34E6D9-62AB-4737-9096-B7FE63908BD3}] => (Allow) C:\Program Files (x86)\MaskVPN\tunnle.exe (Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd) FirewallRules: [{B87A9164-C488-4808-8E03-1ED7B0C2DD48}] => (Allow) C:\Users\Joseba\AppData\Local\Programs\Opera GX\77.0.4054.275\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{50EB481A-0011-4AD9-8E27-4D1A1DF6B15B}] => (Allow) C:\Windows\rss\csrss.exe => Ningún archivo FirewallRules: [{86116611-5196-4623-A641-D851E5B572FD}] => (Allow) C:\Windows\rss\csrss.exe => Ningún archivo ==================== Puntos de Restauración ========================= 08-06-2021 17:02:24 Instalación del paquete de controladores de dispositivo: TAP-ProtonVPN Windows Provider V9 Adaptadores de red 08-06-2021 17:06:29 Instalación del paquete de controladores de dispositivo: TAP-Windows Provider V9 Adaptadores de red 08-06-2021 17:06:30 Instalación del paquete de controladores de dispositivo: WireGuard LLC Adaptadores de red 16-06-2021 01:46:01 Punto de control programado 18-06-2021 00:39:58 Se ha instalado DirectX 18-06-2021 00:58:07 Se ha instalado DirectX 18-06-2021 01:23:33 Se ha instalado DirectX 21-07-2021 18:56:20 Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 21-07-2021 18:57:46 Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 31-07-2021 22:19:02 Copias de seguridad de Windows ==================== Dispositivos defectuosos en el Administrador de dispositivos ============ Name: vgk Description: vgk Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: vgk Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Errores del registro de eventos: ======================== Errores de aplicación: ================== Error: (08/04/2021 09:19:06 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema. Error: (08/04/2021 05:07:27 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema. Error: (08/04/2021 04:50:01 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema. Error: (08/04/2021 04:46:11 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema. Error: (08/04/2021 04:41:35 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema. Error: (08/03/2021 11:49:50 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema. Error: (08/03/2021 11:28:29 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema. Error: (08/03/2021 11:18:30 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema. Errores del sistema: ============= Error: (08/04/2021 09:16:36 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: El servicio AvastWscReporter no pudo iniciarse debido al siguiente error: El sistema no puede encontrar el archivo especificado. Error: (08/04/2021 05:04:23 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: El servicio AvastWscReporter no pudo iniciarse debido al siguiente error: El sistema no puede encontrar el archivo especificado. Error: (08/04/2021 04:48:57 PM) (Source: DCOM) (EventID: 10005) (User: ) Description: Error de DCOM "1084" al intentar iniciar el servicio EventSystem con argumentos "" para ejecutar el servidor: {1BE1F766-5536-11D1-B726-00C04FB926AF} Error: (08/04/2021 04:48:48 PM) (Source: DCOM) (EventID: 10005) (User: ) Description: Error de DCOM "1084" al intentar iniciar el servicio ShellHWDetection con argumentos "" para ejecutar el servidor: {DD522ACC-F821-461A-A407-50B198B896DC} Error: (08/04/2021 04:48:42 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: El siguiente controlador de inicio del sistema o de inicio del arranque no se cargó correctamente: discache ESProtectionDriver spldr Wanarpv6 Error: (08/04/2021 04:43:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: El servicio AvastWscReporter no pudo iniciarse debido al siguiente error: El sistema no puede encontrar el archivo especificado. Error: (08/04/2021 04:39:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: El servicio AvastWscReporter no pudo iniciarse debido al siguiente error: El sistema no puede encontrar el archivo especificado. Error: (08/03/2021 11:53:45 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: El servicio Malwarebytes Service terminó inesperadamente. Esto se ha repetido 2 veces. Se realizará la siguiente acción correctora en 5000 milisegundos: Reiniciar el servicio. ==================== Información de la memoria =========================== BIOS: American Megatrends Inc. 6.05 08/12/2010 Placa base: FOXCONN 2A8C Procesador: Pentium(R) Dual-Core CPU E5500 @ 2.80GHz Porcentaje de memoria en uso: 83% RAM física total: 4061.24 MB RAM física disponible: 670.19 MB Virtual total: 6059.38 MB Virtual disponible: 2128.3 MB ==================== Unidades ================================ Drive c: (OS) (Fixed) (Total:452.03 GB) (Free:212.22 GB) NTFS Drive d: (HP_RECOVERY) (Fixed) (Total:13.2 GB) (Free:11.99 GB) NTFS Drive e: (CDBackup) (CDROM) (Total:0.19 GB) (Free:0 GB) CDFS \\?\Volume{8f73eebd-a256-11ea-b29e-806e6f6e6963}\ (SYSTEM) (Fixed) (Total:0.1 GB) (Free:0.03 GB) NTFS \\?\Volume{8f73eebf-a256-11ea-b29e-806e6f6e6963}\ () (Fixed) (Total:0.44 GB) (Free:0.03 GB) NTFS ==================== MBR & Tabla de particiones ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: B7C7E8FA) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=452 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=450 MB) - (Type=27) Partition 4: (Not Active) - (Size=13.2 GB) - (Type=07 NTFS) ==================== Final de Addition.txt =======================