Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 25-03-2022 Ejecutado por Calfu (27-03-2022 22:58:46) Ejecutado desde C:\Users\Calfu\Desktop\ESCRITORIO\REVISION DISCO\farst Microsoft Windows 10 Home Versión 21H2 19044.1620 (X64) (2021-03-20 11:02:41) Modo de Inicio: Normal ========================================================== ==================== Cuentas: ============================= (Si una entrada es incluida en el fixlist, será eliminada.) Administrator (S-1-5-21-1849073382-3229164403-2172824417-500 - Administrator - Disabled) Calfu (S-1-5-21-1849073382-3229164403-2172824417-1001 - Administrator - Enabled) => C:\Users\Calfu DefaultAccount (S-1-5-21-1849073382-3229164403-2172824417-503 - Limited - Disabled) Guest (S-1-5-21-1849073382-3229164403-2172824417-501 - Limited - Enabled) LOL (S-1-5-21-1849073382-3229164403-2172824417-1005 - Limited - Enabled) Owicron (S-1-5-21-1849073382-3229164403-2172824417-1007 - Limited - Enabled) WDAGUtilityAccount (S-1-5-21-1849073382-3229164403-2172824417-504 - Limited - Disabled) ==================== Centro de Seguridad ======================== (Si una entrada es incluida en el fixlist, será eliminada.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programas instalados ====================== (Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.) Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 22.001.20085 - Adobe Systems Incorporated) Adobe After Effects 2021 (HKLM-x32\...\AEFT_18_0_1) (Version: 18.0.1 - Adobe Inc.) Adobe Audition 2021 (HKLM-x32\...\AUDT_14_0) (Version: 14.0 - Adobe Inc.) Adobe Bridge 2021 (HKLM-x32\...\KBRG_11_0_1) (Version: 11.0.1 - Adobe Inc.) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.5.0.617 - Adobe Inc.) Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: 7.6.0.52 - Adobe Inc.) Adobe Illustrator 2021 (HKLM-x32\...\ILST_25_2_1) (Version: 25.2.1 - Adobe Inc.) Adobe InDesign 2021 (HKLM-x32\...\IDSN_16_1) (Version: 16.1 - Adobe Inc.) Adobe Media Encoder 2021 (HKLM-x32\...\AME_15_0) (Version: 15.0 - Adobe Inc.) Adobe Photoshop 2021 (HKLM-x32\...\PHSP_22_3) (Version: 22.3.0.49 - Adobe Inc.) Adobe Premiere Pro 2021 (HKLM-x32\...\PPRO_15_0) (Version: 15.0 - Adobe Inc.) AI Noise Cancellation Audio Software (HKLM-x32\...\{ab5f014e-883d-470d-bc2d-127ef91e5611}) (Version: 1.0.4 - ASUSTek Computer Inc.) AI Noise Cancellation Audio Software SDK (HKLM\...\{D8306503-A67E-428D-B865-F6CE3AB30329}) (Version: 1.0.2 - ASUSTeK COMPUTER INC.) AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 6.0.0.7 - Advanced Micro Devices, Inc.) AnyDesk (HKLM-x32\...\AnyDesk) (Version: ad 6.2.6 - philandro Software GmbH) ARMOURY CRATE Service (HKLM\...\{01378DC3-088F-4F55-AAFA-DC6A9CCA292A}) (Version: 5.0.8 - ASUS) ASUS Aac_GmAcc HAL (HKLM\...\{998249B1-6913-447E-AA37-F445B8CA33D0}) (Version: 1.0.4.0 - ASUSTek COMPUTER INC.) Hidden ASUS Aac_GmAcc HAL (HKLM-x32\...\{eb61f505-255d-438d-8648-ddf2a2fab3b5}) (Version: 1.0.4.0 - ASUSTek COMPUTER INC.) Hidden ASUS Aac_NBDT HAL (HKLM\...\{01D3B7AA-D078-4506-B460-60877FCDDBD6}) (Version: 2.5.8.0 - ASUSTek COMPUTER INC.) Hidden ASUS Aac_NBDT HAL (HKLM-x32\...\{a07ea84e-7b0b-457c-911f-85bf661fea5b}) (Version: 2.5.8.0 - ASUSTek COMPUTER INC.) Hidden ASUS AURA Display Component (HKLM\...\{AFD1CF98-FE97-434C-A095-9F27C5BEA53C}) (Version: 1.1.29.0 - ASUSTek COMPUTER INC. ) Hidden ASUS AURA Display Component (HKLM-x32\...\{c5669622-d369-4e19-ae7b-d6b33d469f2d}) (Version: 1.1.29.0 - ASUSTek COMPUTER INC. ) Hidden ASUS AURA Headset Component (HKLM\...\{A3C4120D-8096-4307-91A2-FFE37EBD5A3D}) (Version: 1.3.11.0 - ASUSTek COMPUTER INC.) Hidden ASUS AURA Headset Component (HKLM-x32\...\{8fdbf6da-e99e-479d-8981-0c8faf88d84b}) (Version: 1.3.11.0 - ASUSTek COMPUTER INC.) Hidden ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.04.11 - ASUSTek COMPUTER INC.) Hidden ASUS Framework Service (HKLM-x32\...\{cf5b2f79-6f67-4543-b5d5-6f1fb9ad6d06}) (Version: 2.1.2.3 - ASUSTek COMPUTER INC.) ASUS Framework Service (HKLM-x32\...\{EA6A87BE-8AD3-40D2-944C-9DF5FBFF4332}) (Version: 2.1.2.3 - ASUSTek COMPUTER INC.) Hidden ASUS Keyboard HAL (HKLM\...\{0FA0CDEE-5DC8-421E-A97D-C74FA6E66FC3}) (Version: 1.1.27.0 - ASUSTek COMPUTER INC.) Hidden ASUS Keyboard HAL (HKLM-x32\...\{f85f47f8-3d16-4c94-84ab-66429113e123}) (Version: 1.1.27.0 - ASUSTek COMPUTER INC.) Hidden ASUS MB Peripheral Products (HKLM\...\{BFED9861-7D96-4528-89F1-B090ABBF11A7}) (Version: 1.0.35 - ASUSTeK Computer Inc.) Hidden ASUS MB Peripheral Products (HKLM-x32\...\{193a2068-8738-4276-ab1b-9133f9403487}) (Version: 1.0.35 - ASUSTeK Computer Inc.) Hidden ASUS Mouse HAL (HKLM\...\{B8F984F2-7887-4DD2-8D96-F9A4BC5A4AC5}) (Version: 1.1.0.27 - ASUSTek COMPUTER INC.) Hidden ASUS Mouse HAL (HKLM-x32\...\{33293f2d-c1c1-4931-af92-d3b33c73a984}) (Version: 1.1.0.27 - ASUSTek COMPUTER INC.) Hidden ASUS Promotion (HKLM\...\{10FE8E2F-7BDD-4430-8D63-3D3BA3F708D9}) (Version: 1.0.0 - ASUSTeK COMPUTER INC.) ASUS Smart Display Control (HKLM-x32\...\{8714A8D1-0F08-4681-9DF6-A8C4607A58B4}) (Version: 1.1.0 - ASUSTek COMPUTER INC.) ASUS Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.67 - ASUSTeK Computer Inc.) Hidden AURA lighting effect add-on (HKLM-x32\...\{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.21 - ASUS) AURA lighting effect add-on x64 (HKLM\...\{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.21 - ASUS) AURA Service (HKLM-x32\...\{0E536061-3B55-4D45-BF58-0BDA261C94B0}) (Version: 3.05.29 - ASUSTeK Computer Inc.) Hidden AURA Service (HKLM-x32\...\{abff099e-96f5-4bf4-9c6e-6f435f9f6c55}) (Version: 3.05.29 - ASUSTeK Computer Inc.) Aura Wallpaper HTML (HKLM-x32\...\{fd36a871-5a75-4285-a469-61bbe3dbd858}) (Version: 1.2.5.7 - ASUSTek Computer Inc.) Aura Wallpaper Service (HKLM\...\{A78E52FB-5921-0A22-5D0B-212641047CF4}) (Version: 1.2.5.8 - ASUSTeK COMPUTER INC.) AutoHotkey 1.1.33.09 (HKLM\...\AutoHotkey) (Version: 1.1.33.09 - Lexikos) Backup and Sync from Google (HKLM\...\{696895F7-52C7-4C9E-998B-C7E0CC907092}) (Version: 3.57.4256.0809 - Google, Inc.) BlueStacks 5 (HKLM\...\BlueStacks_nxt) (Version: 5.3.130.1003 - BlueStack Systems, Inc.) BlueStacks X (HKU\S-1-5-21-1849073382-3229164403-2172824417-1001\...\BlueStacks X) (Version: 0.10.1.7 - BlueStack Systems, Inc.) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Box (HKLM\...\{55CB9B8A-E4FD-4DDD-B261-55C16D1D52E8}) (Version: 2.21.202 - Box, Inc.) Box Tools (HKLM-x32\...\{91BF34A1-F917-493B-A4C9-D5053FA52267}) (Version: 4.15.0.882 - Box) Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 99.1.36.122 - Brave Software Inc) Canon Utilities Digital Photo Professional (HKLM-x32\...\Digital Photo Professional) (Version: 3.13.50.1 - Canon Inc.) Canon Utilities EOS Lens Registration Tool (HKLM-x32\...\EOS Lens Registration Tool) (Version: 1.14.0.1 - Canon Inc.) Canon Utilities EOS Network Setting Tool (HKLM-x32\...\EOS Network Setting Tool) (Version: 1.2.0.2 - Canon Inc.) Canon Utilities EOS Sample Music (HKLM-x32\...\EOS Sample Music) (Version: 1.0.1.1 - Canon Inc.) Canon Utilities EOS Utility 2 (HKLM-x32\...\EOS Utility 2) (Version: 2.14.20.0 - Canon Inc.) Canon Utilities EOS Utility 3 (HKLM-x32\...\EOS Utility 3) (Version: 3.14.30.4 - Canon Inc.) Canon Utilities EOS Web Service Registration Tool (HKLM-x32\...\EOS Web Service Registration Tool) (Version: 1.13.20.0 - Canon Inc.) Canon Utilities ImageBrowser EX (HKLM-x32\...\ImageBrowser EX) (Version: 1.5.2.8 - Canon Inc.) Canon Utilities PhotoStitch (HKLM-x32\...\PhotoStitch) (Version: 3.1.23.47 - Canon Inc.) Canon Utilities Picture Style Editor (HKLM-x32\...\Picture Style Editor) (Version: 1.13.30.0 - Canon Inc.) Canon Utilities Uploader for CANON iMAGE GATEWAY (HKLM-x32\...\Uploader for CANON iMAGE GATEWAY Plugin) (Version: 10.0.1.2 - Canon Inc.) Cisco Webex Meetings (HKU\S-1-5-21-1849073382-3229164403-2172824417-1001\...\ActiveTouchMeetingClient) (Version: 41.9.5 - Cisco Webex LLC) Discord (HKU\S-1-5-21-1849073382-3229164403-2172824417-1001\...\Discord) (Version: 1.0.9002 - Discord Inc.) EOS Webcam Utility (HKLM\...\{8D5BC29A-769E-4EBE-8ECD-7DF1A02A0563}) (Version: 1.1.4 - Canon U.S.A., Inc.) Epic Games Launcher (HKLM-x32\...\{F4793223-C6D6-4B99-ACF2-75C066D278BC}) (Version: 1.3.0.0 - Epic Games, Inc.) Epic Online Services (HKLM-x32\...\{32C68D93-D32F-4B01-8250-61642BFC22F8}) (Version: 2.0.28.0 - Epic Games, Inc.) Eraser 6.2.0.2992 (HKLM\...\{6735C886-F5F0-446A-BB8C-03B92BA6775D}) (Version: 6.2.2992 - The Eraser Project) f.lux (HKU\S-1-5-21-1849073382-3229164403-2172824417-1001\...\Flux) (Version: - f.lux Software LLC) FileZilla Client 3.54.1 (HKU\S-1-5-21-1849073382-3229164403-2172824417-1001\...\FileZilla Client) (Version: 3.54.1 - Tim Kosse) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 99.0.4844.82 - Google LLC) Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 55.0.3.0 - Google LLC) Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation) iVCam 7.0 (HKLM\...\iVCam_is1) (Version: 7.0.2 - e2eSoft) KIT Scenarist (HKLM-x32\...\Scenarist) (Version: - DimkaNovikov labs.) Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Malwarebytes version 4.5.5.175 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.5.175 - Malwarebytes) Maxon Cinema 4D 22 (HKLM\...\Maxon Cinema 4D S22) (Version: S22 - Maxon) Microsoft 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.14931.20132 - Microsoft Corporation) Microsoft 365 - es-es (HKLM\...\O365HomePremRetail - es-es) (Version: 16.0.14931.20132 - Microsoft Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 99.0.1150.55 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 99.0.1150.52 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1849073382-3229164403-2172824417-1001\...\OneDriveSetup.exe) (Version: 22.045.0227.0004 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft Teams (HKU\S-1-5-21-1849073382-3229164403-2172824417-1001\...\Teams) (Version: 1.5.00.8070 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{5016990D-7F61-4A20-9451-A915D6616DD9}) (Version: 3.66.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.27.29112 (HKLM-x32\...\{0f770e99-3916-4b0c-8f9b-83822826bcbf}) (Version: 14.27.29112.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation) Mozilla Firefox (x64 es-AR) (HKLM\...\Mozilla Firefox 98.0.2 (x64 es-AR)) (Version: 98.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 87.0 - Mozilla) NVIDIA FrameView SDK 1.2.4999.30397803 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.4999.30397803 - NVIDIA Corporation) NVIDIA GeForce Experience 3.24.0.126 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.24.0.126 - NVIDIA Corporation) NVIDIA Graphics Driver 496.49 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 496.49 - NVIDIA Corporation) NVIDIA PhysX System Software 9.20.0221 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.20.0221 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14931.20010 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14931.20094 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0C0A-1000-0000000FF1CE}) (Version: 16.0.14931.20072 - Microsoft Corporation) Hidden OpenOffice 4.1.10 (HKLM-x32\...\{770A932F-DED3-4CD2-8CA8-70AF8A23CBDD}) (Version: 4.110.9807 - Apache Software Foundation) Opera Stable 84.0.4316.42 (HKU\S-1-5-21-1849073382-3229164403-2172824417-1001\...\Opera 84.0.4316.42) (Version: 84.0.4316.42 - Opera Software) PowerISO (HKLM-x32\...\PowerISO) (Version: 7.9 - Power Software Ltd) Private Internet Access (HKLM\...\{33023371-7761-4F81-BBB1-0E0D0D175ACF}) (Version: 3.3.0+06906 - Private Internet Access, Inc.) Private Internet Access WinTUN Driver (HKLM\...\{0419A0C0-4CC8-459E-9BAE-F3BF5D2E2CCB}) (Version: 1.0 - Private Internet Access, Inc.) Hidden qBittorrent 4.3.5 (HKLM-x32\...\qBittorrent) (Version: 4.3.5 - The qBittorrent project) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8186 - Realtek Semiconductor Corp.) RefreshRateService (HKLM-x32\...\{7E5E84CB-B190-4658-A4DC-166779C329D1}) (Version: 2.1.0 - ASUSTeK COMPUTER INC.) ROG Live Service (HKLM-x32\...\{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 1.3.10.0 - ASUSTek COMPUTER INC.) Security Task Manager 2.4 (HKLM-x32\...\Security Task Manager) (Version: 2.4 - Neuber Software) Speedtest by Ookla (HKLM\...\{10C088B9-8108-4CB4-BEE5-C7590E6BED94}) (Version: 1.10.163.001 - Ookla) Stremio (HKU\S-1-5-21-1849073382-3229164403-2172824417-1001\...\Stremio) (Version: 4.4.142 - Smart Code Ltd) Tableta Wacom (HKLM\...\Wacom Tablet Driver) (Version: 6.3.17-3 - Wacom Technology Corp.) UE4 Prerequisites (x64) (HKLM\...\{D7B591D8-1091-4A00-A0B3-5301C45E5D51}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden UE4 Prerequisites (x64) (HKLM-x32\...\{0d995f46-317b-4b5f-bf3e-9f98bae9d339}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden Webex (HKLM\...\{46D1E0D1-F90A-563F-80C9-432D0398D744}) (Version: 41.8.0.19732 - Cisco Systems, Inc) WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.) WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.) WhatsApp (HKU\S-1-5-21-1849073382-3229164403-2172824417-1001\...\WhatsApp) (Version: 2.2208.15 - WhatsApp) Windows Driver Package - Canon U.S.A., Inc. (WUDFRd) Camera (10/08/2020 12.33.19.728) (HKLM\...\45FEB4F1B965D5CBFE7F81E714112E1F1ABDB5FF) (Version: 10/08/2020 12.33.19.728 - Canon U.S.A., Inc.) Windows PC Health Check (HKLM\...\{B1E7D0FD-7CFE-4E0C-A5DA-0F676499DB91}) (Version: 3.2.2110.14001 - Microsoft Corporation) WinRAR 6.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.00.0 - win.rar GmbH) WinRAR 6.02 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH) WireGuard (HKLM\...\{88B8744D-1B73-40E8-8E4B-1FBA164396E0}) (Version: 0.3.9 - WireGuard LLC) Packages: ========= Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc [2021-03-27] (Adobe Systems Incorporated) AMD Radeon Software -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.21.30024.0_x64__0a9344xs7nr4m [2022-03-10] (Advanced Micro Devices Inc.) [Startup Task] ARMOURY CRATE -> C:\Program Files\WindowsApps\B9ECED6F.ArmouryCrate_5.0.11.0_x64__qmba6cd70vzyy [2022-01-09] (ASUSTeK COMPUTER INC.) Complemento de motor multimedia para Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-09-01] (Microsoft Corporation) Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.12.419.0_x64__rz1tebttyb220 [2022-03-07] (Dolby Laboratories) DTS Sound Unbound -> C:\Program Files\WindowsApps\DTSInc.DTSSoundUnbound_2022.1.3.0_x64__t5j2fzbtdg37r [2022-03-16] (DTS, Inc.) Extensión de video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.42152.0_x64__8wekyb3d8bbwe [2021-08-25] (Microsoft Corporation) Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.12.3171.0_x64__8wekyb3d8bbwe [2022-03-26] (Microsoft Studios) [MS Ad] MyASUS -> C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.2.0_x64__qmba6cd70vzyy [2022-03-06] (ASUSTeK COMPUTER INC.) NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.962.0_x64__56jybvy8sckqj [2022-01-17] (NVIDIA Corp.) Pinterest -> C:\Program Files\WindowsApps\1424566A.147190DF3DE79_1.0.20.0_neutral__5byw4zywtsh80 [2021-11-29] (Pinterest Inc.) Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.25.247.0_x64__dt26b99r8h8gj [2022-02-14] (Realtek Semiconductor Corp) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.181.604.0_x86__zpdnekdrzrea0 [2022-03-18] (Spotify AB) [Startup Task] ==================== Personalizado CLSID (Lista blanca): ============== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) CustomCLSID: HKU\S-1-5-21-1849073382-3229164403-2172824417-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1849073382-3229164403-2172824417-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1849073382-3229164403-2172824417-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1849073382-3229164403-2172824417-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1849073382-3229164403-2172824417-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1849073382-3229164403-2172824417-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1849073382-3229164403-2172824417-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-36199ACE6CCA} -> [Creative Cloud Files] => C:\Users\Calfu\Creative Cloud Files [2021-03-27 13:06] CustomCLSID: HKU\S-1-5-21-1849073382-3229164403-2172824417-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Calfu\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.22062.1\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1849073382-3229164403-2172824417-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.) CustomCLSID: HKU\S-1-5-21-1849073382-3229164403-2172824417-1001_Classes\CLSID\{BA58190A-A733-4982-8AE2-E2021F0DD503}\localserver32 -> C:\Users\Calfu\AppData\Local\Box\Box Local Com Server\Box.Tools.ActiveX.exe (Box, Inc. -> Box, Inc.) CustomCLSID: HKU\S-1-5-21-1849073382-3229164403-2172824417-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems) SSODL: CallbackTechMountNotificator-cbfsconnect2017 - {FA7DC3D9-8127-463F-832B-CB445B335E2C} - C:\Windows\system32\cbfsconnectMntNtf2017.dll (Callback Technologies, Inc. -> Callback Technologies, Inc.) SSODL-x32: CallbackTechMountNotificator-cbfsconnect2017 - {FA7DC3D9-8127-463F-832B-CB445B335E2C} - C:\Windows\SysWOW64\cbfsconnectMntNtf2017.dll (Callback Technologies, Inc. -> Callback Technologies, Inc.) ShellServiceObjects: Virtual Storage Mount Notification -> {FA7DC3D9-8127-463F-832B-CB445B335E2C} => C:\Windows\system32\cbfsconnectMntNtf2017.dll [2019-10-07] (Callback Technologies, Inc. -> Callback Technologies, Inc.) ShellServiceObjects-x32: Virtual Storage Mount Notification -> {FA7DC3D9-8127-463F-832B-CB445B335E2C} => C:\Windows\SysWOW64\cbfsconnectMntNtf2017.dll [2019-10-07] (Callback Technologies, Inc. -> Callback Technologies, Inc.) ShellIconOverlayIdentifiers: [ BoxAvailableOffline] -> {8D0A4E1B-C25A-4AF8-8DA7-531929C02958} => C:\Program Files\Box\Box\BoxShellExtShim-2.21.202.dll [2021-04-15] (Box, Inc. -> Box, Inc.) ShellIconOverlayIdentifiers: [ BoxLocked] -> {1B927815-D431-48B1-A746-6FF91FB35431} => C:\Program Files\Box\Box\BoxShellExtShim-2.21.202.dll [2021-04-15] (Box, Inc. -> Box, Inc.) ShellIconOverlayIdentifiers: [ BoxLockedByOther] -> {73C8BC94-4A51-413B-B927-829449EAFA75} => C:\Program Files\Box\Box\BoxShellExtShim-2.21.202.dll [2021-04-15] (Box, Inc. -> Box, Inc.) ShellIconOverlayIdentifiers: [ BoxProblem] -> {8BBBCFB6-60E2-4C0F-BB31-10434068E2BE} => C:\Program Files\Box\Box\BoxShellExtShim-2.21.202.dll [2021-04-15] (Box, Inc. -> Box, Inc.) ShellIconOverlayIdentifiers: [ BoxSynced] -> {04B9BDFA-0C53-4F36-A77F-51F53E3EF3EC} => C:\Program Files\Box\Box\BoxShellExtShim-2.21.202.dll [2021-04-15] (Box, Inc. -> Box, Inc.) ShellIconOverlayIdentifiers: [ BoxSyncing] -> {2FFF193C-5891-4B26-B363-40D3B5257FE9} => C:\Program Files\Box\Box\BoxShellExtShim-2.21.202.dll [2021-04-15] (Box, Inc. -> Box, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\55.0.3.0\drivefsext.dll [2022-01-25] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\55.0.3.0\drivefsext.dll [2022-01-25] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\55.0.3.0\drivefsext.dll [2022-01-25] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\55.0.3.0\drivefsext.dll [2022-01-25] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-08-03] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-08-03] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-08-03] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google) ShellIconOverlayIdentifiers-x32: [ BoxAvailableOffline] -> {8D0A4E1B-C25A-4AF8-8DA7-531929C02958} => C:\Program Files\Box\Box\BoxShellExtShim-2.21.202.dll [2021-04-15] (Box, Inc. -> Box, Inc.) ShellIconOverlayIdentifiers-x32: [ BoxLocked] -> {1B927815-D431-48B1-A746-6FF91FB35431} => C:\Program Files\Box\Box\BoxShellExtShim-2.21.202.dll [2021-04-15] (Box, Inc. -> Box, Inc.) ShellIconOverlayIdentifiers-x32: [ BoxLockedByOther] -> {73C8BC94-4A51-413B-B927-829449EAFA75} => C:\Program Files\Box\Box\BoxShellExtShim-2.21.202.dll [2021-04-15] (Box, Inc. -> Box, Inc.) ShellIconOverlayIdentifiers-x32: [ BoxProblem] -> {8BBBCFB6-60E2-4C0F-BB31-10434068E2BE} => C:\Program Files\Box\Box\BoxShellExtShim-2.21.202.dll [2021-04-15] (Box, Inc. -> Box, Inc.) ShellIconOverlayIdentifiers-x32: [ BoxSynced] -> {04B9BDFA-0C53-4F36-A77F-51F53E3EF3EC} => C:\Program Files\Box\Box\BoxShellExtShim-2.21.202.dll [2021-04-15] (Box, Inc. -> Box, Inc.) ShellIconOverlayIdentifiers-x32: [ BoxSyncing] -> {2FFF193C-5891-4B26-B363-40D3B5257FE9} => C:\Program Files\Box\Box\BoxShellExtShim-2.21.202.dll [2021-04-15] (Box, Inc. -> Box, Inc.) ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-08-03] (Adobe Inc. -> ) ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2021-12-24] (Adobe Inc. -> Adobe Systems Inc.) ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\55.0.3.0\drivefsext.dll [2022-01-25] (Google LLC -> Google, Inc.) ContextMenuHandlers1: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2021-02-12] (Heidi Computers Ltd -> The Eraser Project) ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2022-02-01] (Google LLC -> Google) ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2021-03-17] (Power Software Limited -> Power Software Ltd) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2021-02-12] (Heidi Computers Ltd -> The Eraser Project) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-02-25] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\55.0.3.0\drivefsext.dll [2022-01-25] (Google LLC -> Google, Inc.) ContextMenuHandlers4: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2021-02-12] (Heidi Computers Ltd -> The Eraser Project) ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2022-02-01] (Google LLC -> Google) ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2021-03-17] (Power Software Limited -> Power Software Ltd) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Windows\System32\atiacm64.dll [2021-08-10] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\55.0.3.0\drivefsext.dll [2022-01-25] (Google LLC -> Google, Inc.) ContextMenuHandlers5: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2021-02-12] (Heidi Computers Ltd -> The Eraser Project) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvam.inf_amd64_86a5ca221621c71c\nvshext.dll [2021-11-15] (Nvidia Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-08-03] (Adobe Inc. -> ) ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2021-12-24] (Adobe Inc. -> Adobe Systems Inc.) ContextMenuHandlers6: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2021-02-12] (Heidi Computers Ltd -> The Eraser Project) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-02-25] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2021-03-17] (Power Software Limited -> Power Software Ltd) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Lista blanca) ==================== ==================== Accesos directos & WMI ======================== (Las entradas pueden ser listadas para ser restauradas o eliminadas.) ShortcutWithArgument: C:\Users\Calfu\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d76736477ba15566\EconoDoc (bluemedconsultants.com) - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 10" ==================== Módulos cargados (Lista blanca) ============= 2021-04-28 14:34 - 2015-02-18 14:11 - 000112128 _____ () [Archivo no firmado] [El archivo está en uso] C:\Program Files (x86)\Canon\ImageBrowser EX\MFMFileSystemWatcher.dll 2021-12-23 15:51 - 2021-12-23 15:51 - 000477696 _____ () [Archivo no firmado] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ffi-napi\prebuilds\win32-ia32\node.napi.node 2021-12-23 15:51 - 2021-12-23 15:51 - 000471040 _____ () [Archivo no firmado] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ref-napi\prebuilds\win32-ia32\node.napi.node 2021-12-23 15:51 - 2021-12-23 15:51 - 000454656 _____ () [Archivo no firmado] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\registry-js\prebuilds\win32-ia32\node.napi.node 2022-01-20 20:51 - 2021-12-10 17:55 - 000093184 _____ () [Archivo no firmado] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\zlibwapi.dll 2021-12-23 15:51 - 2021-12-23 15:51 - 000081920 _____ () [Archivo no firmado] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\WindowID\WindowID.dll 2022-01-09 11:39 - 2022-01-09 11:40 - 079408640 _____ () [Archivo no firmado] C:\Program Files\WindowsApps\B9ECED6F.ArmouryCrate_5.0.11.0_x64__qmba6cd70vzyy\ArmouryCrate.dll 2021-09-09 02:16 - 2021-09-09 02:16 - 000021504 _____ (Adobe Systems Inc.) [Archivo no firmado] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\es_es\Acrobat Elements\ContextMenuShim64.esp 2020-05-26 22:08 - 2020-05-26 22:08 - 002831360 _____ (Apache Software Foundation) [Archivo no firmado] C:\Program Files (x86)\LightingService\log4cxx.dll 2022-01-20 20:51 - 2021-12-10 17:55 - 003394560 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Archivo no firmado] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\libcrypto-1_1-x64.dll 2022-01-20 20:51 - 2021-12-10 17:55 - 000679424 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Archivo no firmado] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\libssl-1_1-x64.dll ==================== Alternate Data Streams (Lista blanca) ======== ==================== Modo Seguro (Lista blanca) ================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Asociación (Lista blanca) ================= ==================== Internet Explorer (Lista blanca) ========== SearchScopes: HKU\S-1-5-21-1849073382-3229164403-2172824417-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-1849073382-3229164403-2172824417-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2021-03-06] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2021-03-06] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-03-03] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2021-03-06] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2021-03-06] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2021-03-06] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2021-03-06] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-03-03] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-03-03] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-03-03] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-03-03] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-03-03] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-03-03] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-03-03] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-03-03] (Microsoft Corporation -> Microsoft Corporation) (Si una entrada es incluida en el fixlist, será eliminada del registro.) IE trusted site: HKU\.DEFAULT\...\localhost -> localhost IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com IE trusted site: HKU\S-1-5-21-1849073382-3229164403-2172824417-1001\...\hola.org -> hxxp://hola.org IE trusted site: HKU\S-1-5-21-1849073382-3229164403-2172824417-1001\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-1849073382-3229164403-2172824417-1001\...\webcompanion.com -> hxxp://webcompanion.com ==================== Hosts contenido: ========================= (Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.) 2019-12-07 06:14 - 2022-02-25 16:57 - 000000884 _____ C:\Windows\system32\drivers\etc\hosts 2021-04-28 22:44 - 2022-01-05 02:12 - 000000446 _____ C:\Windows\system32\drivers\etc\hosts.ics ==================== Otras Áreas =========================== (Actualmente no existe una corrección automática para esta sección.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> %INTEL_DEV_REDIST%redist\intel64\compiler;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files\WireGuard\ HKU\S-1-5-21-1849073382-3229164403-2172824417-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Calfu\Desktop\ESCRITORIO\fondo de pantala\PROTECTOR DE PANTALLA\marcelomeyerlira_275732093_511849937131626_1587354335541698437_n2.jpg DNS Servers: El medio no está conectado a internet. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn) Firewall de Windows está habilitado. ==================== MSCONFIG/TASK MANAGER elementos deshabilitados == (Si una entrada es incluida en el fixlist, será eliminada.) MSCONFIG\Services: WCAssistantService => 2 HKLM\...\StartupApproved\StartupFolder: => "Precargador WinZip.lnk" HKLM\...\StartupApproved\StartupFolder: => "AnyDesk.lnk" HKLM\...\StartupApproved\Run: => "WinZip UN" HKLM\...\StartupApproved\Run: => "WinZip FAH" HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0" HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run: => "Eraser" HKLM\...\StartupApproved\Run: => "Box" HKLM\...\StartupApproved\Run: => "PWRISOVM.EXE" HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud" HKLM\...\StartupApproved\Run32: => "Adobe CCXProcess" HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0" HKU\S-1-5-21-1849073382-3229164403-2172824417-1001\...\StartupApproved\StartupFolder: => "EOS Utility.lnk" HKU\S-1-5-21-1849073382-3229164403-2172824417-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1849073382-3229164403-2172824417-1001\...\StartupApproved\Run: => "Web Companion" HKU\S-1-5-21-1849073382-3229164403-2172824417-1001\...\StartupApproved\Run: => "AdobeBridge" HKU\S-1-5-21-1849073382-3229164403-2172824417-1001\...\StartupApproved\Run: => "Box Edit" HKU\S-1-5-21-1849073382-3229164403-2172824417-1001\...\StartupApproved\Run: => "Box Local Com Server" ==================== Reglas de firewall (Lista blanca) ================ (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) FirewallRules: [TCP Query User{63B1A544-7536-49E9-A4B8-AD8763004F9E}C:\program files (x86)\iriun webcam\webcam.exe] => (Block) C:\program files (x86)\iriun webcam\webcam.exe => Ningún archivo FirewallRules: [UDP Query User{3DCBFFD5-29A2-4185-A64E-6321FFDFD51F}C:\program files (x86)\iriun webcam\webcam.exe] => (Block) C:\program files (x86)\iriun webcam\webcam.exe => Ningún archivo FirewallRules: [TCP Query User{66558C14-1162-4679-B74B-4181D2C12668}C:\users\calfu\appdata\local\programs\opera\opera.exe] => (Allow) C:\users\calfu\appdata\local\programs\opera\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [UDP Query User{46E409B8-CFFE-4689-B526-42560CB1B21C}C:\users\calfu\appdata\local\programs\opera\opera.exe] => (Allow) C:\users\calfu\appdata\local\programs\opera\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [TCP Query User{3653433A-461F-41E2-B471-91B83533B31E}C:\program files (x86)\asus\armourydevice\dll\armourysocketserver\armourysocketserver.exe] => (Allow) C:\program files (x86)\asus\armourydevice\dll\armourysocketserver\armourysocketserver.exe (ASUSTeK Computer Inc. -> ASUS) FirewallRules: [UDP Query User{951D04A3-2B90-41CE-BC38-B040E0A829BA}C:\program files (x86)\asus\armourydevice\dll\armourysocketserver\armourysocketserver.exe] => (Allow) C:\program files (x86)\asus\armourydevice\dll\armourysocketserver\armourysocketserver.exe (ASUSTeK Computer Inc. -> ASUS) FirewallRules: [TCP Query User{42D82242-EF1A-42BF-A569-19A28FC4140E}C:\users\calfu\appdata\local\programs\lnv\stremio-4\stremio-runtime.exe] => (Allow) C:\users\calfu\appdata\local\programs\lnv\stremio-4\stremio-runtime.exe (Stremio (Smart Code OOD) -> Stremio Runtime) [Archivo no firmado] FirewallRules: [UDP Query User{9441CEB1-345B-4E72-B241-C07D8A5B5607}C:\users\calfu\appdata\local\programs\lnv\stremio-4\stremio-runtime.exe] => (Allow) C:\users\calfu\appdata\local\programs\lnv\stremio-4\stremio-runtime.exe (Stremio (Smart Code OOD) -> Stremio Runtime) [Archivo no firmado] FirewallRules: [TCP Query User{DB0059DE-B90B-480F-BA6E-F13F11A5C58A}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [UDP Query User{BC55170F-A55C-40E9-B595-1F59C99AD975}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{221BC1FA-F43E-464A-9232-249C078B3EE6}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{CCBF0735-49D9-4251-9D42-B3A7064F6A1B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{43937C8A-A6FA-4CBE-BBE7-8DA72CEA10BE}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe (ASUSTeK Computer Inc. -> ASUS) FirewallRules: [{83C6E08F-983A-4154-8168-E127CD393211}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) FirewallRules: [{D974EB45-DF50-4FC9-89C2-693949E82712}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (ASUSTeK Computer Inc. -> ASUS) FirewallRules: [{22E89342-6ED0-4C33-8C80-A70883D863EB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{516A6E22-0A69-4053-90A4-298C61656F0C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{0F3AADEC-5078-45EE-9785-9A7FB8B21976}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{9264DE84-E49F-43BF-B425-5B5E2D8C505F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{CE972599-D551-49F9-81FC-1FD194485BD6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{C4EA5251-2A10-427D-96A1-83BC90AD6DFC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [TCP Query User{3118CBC3-4CFC-4177-8761-43E5800E01B9}C:\program files\windowsapps\spotifyab.spotifymusic_1.176.447.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.176.447.0_x86__zpdnekdrzrea0\spotify.exe => Ningún archivo FirewallRules: [UDP Query User{76E02A9C-03A3-466A-8200-C6781DE03DB2}C:\program files\windowsapps\spotifyab.spotifymusic_1.176.447.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.176.447.0_x86__zpdnekdrzrea0\spotify.exe => Ningún archivo FirewallRules: [TCP Query User{57018591-CD05-46EB-A5EF-2AB9562CBF9E}C:\program files\qbittorrent\qbittorrent.exe] => (Block) C:\program files\qbittorrent\qbittorrent.exe () [Archivo no firmado] FirewallRules: [UDP Query User{EC4B0145-E4E5-479D-BE4E-B09CFD75ABEE}C:\program files\qbittorrent\qbittorrent.exe] => (Block) C:\program files\qbittorrent\qbittorrent.exe () [Archivo no firmado] FirewallRules: [{2F356FEF-8AE3-4BC6-9614-53A434B36C83}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{FA6F37BA-3830-45A9-9518-44760ECF506D}] => (Allow) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.) FirewallRules: [{6EC34741-E4F8-49AD-A082-515BC7D7AFC7}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.2.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (ASUSTeK COMPUTER INC.) [Archivo no firmado] FirewallRules: [{29913F24-9524-4F73-AD4C-3DFE47B866C4}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.2.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (ASUSTeK COMPUTER INC.) [Archivo no firmado] FirewallRules: [{A0A94F42-EE40-4ABA-808B-B6C73812A2C6}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.2.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (ASUSTeK COMPUTER INC.) [Archivo no firmado] FirewallRules: [{42D630A6-4C18-4E55-AAED-47591AB02DD2}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.2.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (ASUSTeK COMPUTER INC.) [Archivo no firmado] FirewallRules: [TCP Query User{70FADC5E-45EC-475C-B9A0-E9DDECF5779D}C:\users\calfu\appdata\local\discord\app-1.0.9004\discord.exe] => (Allow) C:\users\calfu\appdata\local\discord\app-1.0.9004\discord.exe (Discord Inc. -> Discord Inc.) FirewallRules: [UDP Query User{7D781A91-ADBD-4167-A516-64E15C32C1A2}C:\users\calfu\appdata\local\discord\app-1.0.9004\discord.exe] => (Allow) C:\users\calfu\appdata\local\discord\app-1.0.9004\discord.exe (Discord Inc. -> Discord Inc.) FirewallRules: [{DAB77918-B764-4056-A906-A2E963EF7829}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.181.604.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{F54E6750-CA3E-4352-A34B-68EFDCBAA0AF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.181.604.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{AC2E8A8F-ED68-417B-BCE2-841FD3384962}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.181.604.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{DDB69DF7-2225-4F03-8750-BF02121A3FEA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.181.604.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{49550BAF-4DD8-45B0-BE64-CDE912FE5069}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.181.604.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{78568172-2F3E-405A-88D1-010BC024A766}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.181.604.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{A70AE151-EDDE-4003-9F06-3D2AB1098D9A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.181.604.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{005E7958-33B3-41B8-B0D0-61997C2FB5EF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.181.604.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{0E7A47AC-0CC2-42DB-846E-2B2F2930A770}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{0D6568C3-FD9E-48CC-8E58-D5F41D5F42C4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{76BCD10F-9449-4879-AA78-AA52E1E49B09}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{946BA3DF-929C-40DB-8843-CE4B2F01272F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [TCP Query User{D52E0AA8-84EC-480F-87C1-49CA525FF925}C:\program files\e2esoft\ivcam\ivcam.exe] => (Allow) C:\program files\e2esoft\ivcam\ivcam.exe (Shanghai Yitu Information Technology Co., Ltd. -> ) FirewallRules: [UDP Query User{BFEC1A4F-C5A5-4EE4-8E3B-C7227400C2AA}C:\program files\e2esoft\ivcam\ivcam.exe] => (Allow) C:\program files\e2esoft\ivcam\ivcam.exe (Shanghai Yitu Information Technology Co., Ltd. -> ) FirewallRules: [{275BD264-DA41-48AF-B8B6-362E9043AFB4}] => (Block) C:\program files\e2esoft\ivcam\ivcam.exe (Shanghai Yitu Information Technology Co., Ltd. -> ) FirewallRules: [{4C26D0C5-1344-4BD2-BE34-D6DD8BA6815B}] => (Block) C:\program files\e2esoft\ivcam\ivcam.exe (Shanghai Yitu Information Technology Co., Ltd. -> ) FirewallRules: [{9C12A470-DCD3-4642-84F3-DF3BB6A19827}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{C5D7A2DF-A1C3-45A2-A4B7-5333D052B5C7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.82.404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{2CFDAE58-7BD4-4A3B-BC59-23E9B9156082}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.82.404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{7A09FAE7-9F9C-4C9E-9735-BD69B20F3CA5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.82.404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{28229723-9FE5-45EE-A480-F5B1BF358C70}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.82.404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [TCP Query User{22820938-F379-4563-9E18-9A5F290D40A7}C:\users\calfu\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\calfu\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{18A092C6-9954-4F89-BB39-B40468D298D2}C:\users\calfu\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\calfu\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{D45C04A3-601C-404C-ABC2-6891B090FEB6}] => (Allow) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.) FirewallRules: [{A78CCD35-8D6E-4B0D-A541-146185628636}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\99.0.1150.52\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{98F75947-8D78-4ABF-A431-C5A9FC998837}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_3f7f0a457ebc42ea\ASUSLinkNear\AsusLinkNear.exe (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) FirewallRules: [{B937725E-A2F2-44D4-9217-04512DA99AD4}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH) FirewallRules: [{AACC5D5F-087D-4F8A-B61A-75D89695DAB2}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH) FirewallRules: [{C5AD7F5C-609B-4C9C-8F8B-BB6EBD4CEF82}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_3f7f0a457ebc42ea\ASUSSwitch\AsusSwitchNet.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) FirewallRules: [{6571879D-4998-469E-A66A-26C7F469514E}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH) FirewallRules: [{E4FC128A-CD08-40E1-9CE1-AF6D9DC95D5C}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH) FirewallRules: [{2EFB4B98-76D8-47C8-9D91-57100261E44C}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_3f7f0a457ebc42ea\ASUSSwitch\AsusSwitchNetMDNS.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) FirewallRules: [{69CA6B65-B154-4459-B156-C8F1C5F74E2C}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH) FirewallRules: [{1BC9275A-DC70-4A15-8328-32274DACD1AB}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH) FirewallRules: [{48610AAA-DF22-418E-B077-84D377A33DA2}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_3f7f0a457ebc42ea\ASUSLinkRemote\AsusLinkRemoteAgent.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) FirewallRules: [{98C4449A-09E1-476F-8763-1A87FE4032CF}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_3f7f0a457ebc42ea\ASUSLinkRemote\AsusLinkRemoteAgent.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) FirewallRules: [{DB707A93-8C76-4AF0-9057-CE61A9490B7A}] => (Allow) C:\Program Files\ASUS\ARMOURY CRATE Service\MobilePlugin\AutoConnectHelper.exe (ASUSTEK COMPUTER INCORPORATION -> ) FirewallRules: [{D44A2CF6-6E41-4FE3-A1A3-A9C14D7E524C}] => (Allow) C:\Program Files\ASUS\ARMOURY CRATE Service\MobilePlugin\AutoConnectHelper.exe (ASUSTEK COMPUTER INCORPORATION -> ) ==================== Puntos de Restauración ========================= 15-03-2022 13:48:09 Windows Update 21-03-2022 20:08:41 Installed Camera Hub 21-03-2022 20:58:34 Removed Camera Hub 23-03-2022 14:12:40 Removed Camera Hub 27-03-2022 21:01:22 Windows Modules Installer 27-03-2022 21:03:00 Windows Modules Installer ==================== Dispositivos defectuosos en el Administrador de dispositivos ============ ==================== Errores del registro de eventos: ======================== Errores de aplicación: ================== Error: (03/27/2022 10:43:20 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nombre de la aplicación con errores: Wacom_TouchUser.exe, versión: 6.3.17.3, marca de tiempo: 0x5787f867 Nombre del módulo con errores: Wacom_TouchUser.exe, versión: 6.3.17.3, marca de tiempo: 0x5787f867 Código de excepción: 0xc0000005 Desplazamiento de errores: 0x000000000019d767 Identificador del proceso con errores: 0x1e90 Hora de inicio de la aplicación con errores: 0x01d8424522bb8e34 Ruta de acceso de la aplicación con errores: C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe Ruta de acceso del módulo con errores: C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe Identificador del informe: b6e660c4-56b9-42fe-9448-66fb886bdf6d Nombre completo del paquete con errores: Identificador de aplicación relativa del paquete con errores: Error: (03/27/2022 05:33:38 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: El programa SystemSettings.exe (versión 10.0.19041.1566) dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible sobre el problema, comprueba el historial de problemas en el panel de control de seguridad y mantenimiento. Id. de proceso: 6e0 Hora de Inicio: 01d8421746ba65d7 Hora de finalización: 4294967295 Ruta de la aplicación: C:\Windows\ImmersiveControlPanel\SystemSettings.exe Id. de informe: 911b8cf7-5b23-4d03-ac2c-0fd58d52529c Nombre completo del paquete con errores: windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy Id. de la aplicación relativa al paquete con errores: microsoft.windows.immersivecontrolpanel Tipo de bloqueo: Quiesce Error: (03/24/2022 09:14:58 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 16609 Error: (03/24/2022 09:14:58 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 16609 Error: (03/24/2022 09:14:58 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (03/23/2022 08:50:29 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina CoCreateInstance. HR = 0x8007045b, A system shutdown is in progress. . Error: (03/23/2022 08:50:29 PM) (Source: VSS) (EventID: 13) (User: ) Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} y el nombre CEventSystem no puede iniciarse. [0x8007045b, A system shutdown is in progress. ] Error: (03/23/2022 08:50:29 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNS_Execute: SendResponses didn't send all its responses; will try again in one second Errores del sistema: ============= Error: (03/27/2022 10:42:14 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: El cierre anterior del sistema a las 10:16:11 PM del ‎3/‎27/‎2022 resultó inesperado. Error: (03/27/2022 09:14:08 PM) (Source: DCOM) (EventID: 10010) (User: CALFU3416934862) Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido. Error: (03/27/2022 09:13:59 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY) Description: El servidor {995C996E-D918-4A8C-A302-45719A6F4EA7} no se registró con DCOM dentro del tiempo de espera requerido. Error: (03/27/2022 09:12:38 PM) (Source: DCOM) (EventID: 10010) (User: CALFU3416934862) Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido. Error: (03/27/2022 09:11:54 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY) Description: El servidor {995C996E-D918-4A8C-A302-45719A6F4EA7} no se registró con DCOM dentro del tiempo de espera requerido. Error: (03/27/2022 09:11:08 PM) (Source: DCOM) (EventID: 10010) (User: CALFU3416934862) Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido. Error: (03/27/2022 09:09:49 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY) Description: El servidor {995C996E-D918-4A8C-A302-45719A6F4EA7} no se registró con DCOM dentro del tiempo de espera requerido. Error: (03/27/2022 09:09:38 PM) (Source: DCOM) (EventID: 10010) (User: CALFU3416934862) Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido. Windows Defender: ================ Date: 2022-03-27 18:29:44 Description: El examen de Microsoft Defender Antivirus se detuvo antes de completarse. Id. de examen: {725D65D9-8394-4B15-B9CE-E4808DAC066A} Tipo de examen: Antimalware Parámetros de examen: Quick Scan Usuario: NT AUTHORITY\SYSTEM Date: 2022-03-26 20:53:43 Description: El examen de Microsoft Defender Antivirus se detuvo antes de completarse. Id. de examen: {D3429D67-5438-4A01-A304-8A08A029E7A6} Tipo de examen: Antimalware Parámetros de examen: Quick Scan Usuario: NT AUTHORITY\SYSTEM Date: 2022-03-25 13:35:15 Description: El examen de Microsoft Defender Antivirus se detuvo antes de completarse. Id. de examen: {EFCBF30F-6484-4517-8D6B-F74BB4EDC574} Tipo de examen: Antimalware Parámetros de examen: Quick Scan Usuario: NT AUTHORITY\SYSTEM Date: 2022-03-23 11:02:38 Description: El examen de Microsoft Defender Antivirus se detuvo antes de completarse. Id. de examen: {88D4E4C9-6006-459F-A02D-2141346616DB} Tipo de examen: Antimalware Parámetros de examen: Quick Scan Usuario: NT AUTHORITY\SYSTEM Date: 2022-03-22 14:36:01 Description: El acceso controlado a carpetas bloqueó D:\Program Files\Microvirt\MEmu\MEmu.exe para que no pueda modificar %userprofile%\Music. Hora de detección: 2022-03-22T17:36:01.000Z Usuario: CALFU3416934862\Calfu Ruta de acceso: %userprofile%\Music Nombre del proceso: D:\Program Files\Microvirt\MEmu\MEmu.exe Versión de inteligencia de seguridad: 1.361.426.0 Versión del motor: 1.1.19000.8 Versión del producto: 4.18.2202.4 Event[0]: Date: 2022-03-13 16:43:39 Description: La característica Protección en tiempo real de Microsoft Defender Antivirus encontró un error: Característica: On Access Código de error: 0x8007043c Descripción del error: This service cannot be started in Safe Mode Motivo: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem. Date: 2022-03-13 15:48:10 Description: La característica Protección en tiempo real de Microsoft Defender Antivirus encontró un error: Característica: On Access Código de error: 0x8007043c Descripción del error: This service cannot be started in Safe Mode Motivo: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem. Date: 2022-03-13 15:44:33 Description: La característica Protección en tiempo real de Microsoft Defender Antivirus encontró un error: Característica: On Access Código de error: 0x8007043c Descripción del error: This service cannot be started in Safe Mode Motivo: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem. CodeIntegrity: =============== Date: 2022-03-27 22:55:05 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. ==================== Información de la memoria =========================== BIOS: American Megatrends International, LLC. GA503QR.413 11/03/2021 Placa base: ASUSTeK COMPUTER INC. GA503QR Procesador: AMD Ryzen 9 5900HS with Radeon Graphics Porcentaje de memoria en uso: 40% RAM física total: 15776.38 MB RAM física disponible: 9445.29 MB Virtual total: 23456.38 MB Virtual disponible: 14912.26 MB ==================== Unidades ================================ Drive c: (OS) (Fixed) (Total:445.23 GB) (Free:207.21 GB) NTFS Drive d: (ALMACENAMIENTO) (Fixed) (Total:488.28 GB) (Free:467.58 GB) NTFS Drive f: (ADATA HV300) (Fixed) (Total:4657.4 GB) (Free:3903.22 GB) NTFS Drive g: (1 TB) (Fixed) (Total:931.51 GB) (Free:107.37 GB) NTFS \\?\Volume{931a01ed-3c1b-4961-b830-4ac39801f4f1}\ (RECOVERY) (Fixed) (Total:0.59 GB) (Free:0.1 GB) NTFS \\?\Volume{907d3fc7-d6d6-4e30-b66d-209ba9c59b54}\ (RESTORE) (Fixed) (Total:19.5 GB) (Free:6.04 GB) NTFS \\?\Volume{4ba34e9c-6a62-44e6-9d12-e6038d777da4}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.21 GB) FAT32 ==================== MBR & Tabla de particiones ==================== ========================================================== Disk: 0 (Size: 953.9 GB) (Disk ID: 769DA7B0) Partition: GPT. ========================================================== Disk: 1 (Size: 4657.5 GB) (Disk ID: ABF68DCC) Partition: GPT. ========================================================== Disk: 2 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 21803147) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ==================== Final de Addition.txt =======================