Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 23-09-2020 Ejecutado por Oscar Alejandro (25-09-2020 21:49:08) Ejecutado desde C:\Users\oscar\Desktop Windows 10 Home Versión 2004 19041.508 (X64) (2020-08-15 03:11:30) Modo de Inicio: Normal ========================================================== ==================== Cuentas: ============================= Administrador (S-1-5-21-4209037374-2354484719-1641240497-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-4209037374-2354484719-1641240497-503 - Limited - Disabled) Invitado (S-1-5-21-4209037374-2354484719-1641240497-501 - Limited - Disabled) Oscar Alejandro (S-1-5-21-4209037374-2354484719-1641240497-1001 - Administrator - Enabled) => C:\Users\oscar WDAGUtilityAccount (S-1-5-21-4209037374-2354484719-1641240497-504 - Limited - Disabled) ==================== Centro de Seguridad ======================== (Si una entrada es incluida en el fixlist, será eliminada.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} ==================== Programas instalados ====================== (Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.) CCleaner (HKLM\...\CCleaner) (Version: 5.70 - Piriform) Dropbox (HKLM-x32\...\Dropbox) (Version: 106.4.368 - Dropbox, Inc.) Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.335.1 - Dropbox, Inc.) Hidden ELAN Touchpad 15.8.12.5_X64_WHQL (HKLM\...\Elantech) (Version: 15.8.12.5 - ELAN Microelectronic Corp.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 85.0.4183.121 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden HP Deskjet 2510 series Setup Guide (HKLM-x32\...\{216C7F38-4BBC-4E9A-8392-C9FA21B54386}) (Version: 27.0.0 - Hewlett Packard) HP Deskjet 2510 series Software básico del dispositivo (HKLM\...\{A8F738FC-F8E7-4581-8929-F22136401377}) (Version: 28.0.1313.0 - Hewlett-Packard Co.) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH) Malwarebytes version 4.2.1.89 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.2.1.89 - Malwarebytes) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 85.0.564.63 - Microsoft Corporation) Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.29 - ) Microsoft Office Profesional Plus 2016 - es-es (HKLM\...\ProPlusRetail - es-es) (Version: 16.0.13127.20408 - Microsoft Corporation) Microsoft OneDrive (HKLM-x32\...\OneDriveSetup.exe) (Version: 20.143.0716.0003 - Microsoft Corporation) Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 18.151.0729.0013 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.14.26429 (HKLM-x32\...\{80586c77-db42-44bb-bfc8-7aebbb220c00}) (Version: 14.14.26429.4 - Microsoft Corporation) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.13127.20164 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.13127.20378 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0C0A-1000-0000000FF1CE}) (Version: 16.0.13127.20164 - Microsoft Corporation) Hidden Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8924.1 - Realtek Semiconductor Corp.) Revo Uninstaller 2.0.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.5 - VS Revo Group, Ltd.) SoftEther VPN Client (HKLM\...\softether_sevpnclient) (Version: 4.34.9745 - SoftEther VPN Project) VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN) WinRAR 5.60 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.60.0 - win.rar GmbH) Zoom (HKU\S-1-5-21-4209037374-2354484719-1641240497-1001\...\ZoomUMX) (Version: 5.1 - Zoom Video Communications, Inc.) Packages: ========= Bible -> C:\Program Files\WindowsApps\LifeChurch.tv.Bible_2.0.4.37_neutral__d1phjsdba8cbj [2020-08-15] (LifeChurch.tv) Complemento de motor multimedia para Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-08-19] (Microsoft Corporation) MEGA Privacy -> C:\Program Files\WindowsApps\MegaLimited.7475E04196F8_4.2.3.0_x86__q8jzmxzatscnc [2020-08-19] (Mega Limited) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-08-15] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-08-15] (Microsoft Corporation) [MS Ad] Torrex Lite - Torrent Downloader -> C:\Program Files\WindowsApps\BooStudioLLC.TorrexLite-TorrentDownloader_1.4.31.0_x64__b6e429xa66pga [2020-08-15] (Finebits OÜ) [MS Ad] [Startup Task] WhatsApp Desktop -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2037.6.0_x64__cv1g1gvanyjgm [2020-09-24] (WhatsApp Inc.) ==================== Personalizado CLSID (Lista blanca): ============== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) CustomCLSID: HKU\S-1-5-21-4209037374-2354484719-1641240497-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\oscar\Dropbox [2020-08-15 01:48] ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-09] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-09] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-09] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-09] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-09] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-09] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-09] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.45.0.dll [2020-09-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.45.0.dll [2020-09-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.45.0.dll [2020-09-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.45.0.dll [2020-09-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.45.0.dll [2020-09-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.45.0.dll [2020-09-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.45.0.dll [2020-09-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.45.0.dll [2020-09-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.45.0.dll [2020-09-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.45.0.dll [2020-09-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-09] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-09] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-09] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-09] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-09] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-09] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-09] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.45.0.dll [2020-09-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.45.0.dll [2020-09-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.45.0.dll [2020-09-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.45.0.dll [2020-09-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.45.0.dll [2020-09-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.45.0.dll [2020-09-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.45.0.dll [2020-09-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.45.0.dll [2020-09-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.45.0.dll [2020-09-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.45.0.dll [2020-09-09] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-09] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> Ningún archivo ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> Ningún archivo ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Ningún archivo ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.45.0.dll [2020-09-09] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-09-25] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> Ningún archivo ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-09] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> Ningún archivo ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.45.0.dll [2020-09-09] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Ningún archivo ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-09] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.45.0.dll [2020-09-09] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Ningún archivo ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-09-25] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Ningún archivo ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-09] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers4_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-09] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-09] (Microsoft Corporation -> Microsoft Corporation) ==================== Codecs (Lista blanca) ==================== ==================== Accesos directos & WMI ======================== (Las entradas pueden ser listadas para ser restauradas o eliminadas.) ShortcutWithArgument: C:\Users\oscar\Desktop\ForoSpyware.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=gmlcodhckhpmidifbdkmlnakmhpfgjfl ShortcutWithArgument: C:\Users\oscar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\ForoSpyware.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=gmlcodhckhpmidifbdkmlnakmhpfgjfl ==================== Módulos cargados (Lista blanca) ============= 2020-08-15 02:03 - 2020-08-15 02:03 - 005833216 _____ (University of Tsukuba) [Archivo no firmado] C:\Program Files\SoftEther VPN Client\VpnGatePlugin_x64.dll ==================== Alternate Data Streams (Lista blanca) ======== ==================== Modo Seguro (Lista blanca) ================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Asociación (Lista blanca) ================= ==================== Internet Explorer (Lista blanca) ========== HKU\S-1-5-21-4209037374-2354484719-1641240497-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=620947&OCID=AVRES000&pc=UE00 BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2020-09-17] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-09-17] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2020-09-17] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-09-17] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-09-17] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-09-17] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-09-17] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-09-17] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-09-17] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-09-17] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-09-17] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts contenido: ========================= (Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.) 2019-12-07 04:14 - 2018-09-07 22:54 - 000000828 ____R C:\Windows\system32\drivers\etc\hosts ==================== Otras Áreas =========================== (Actualmente no existe una corrección automática para esta sección.) HKU\S-1-5-21-4209037374-2354484719-1641240497-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\oscar\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper DNS Servers: 192.168.100.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Firewall de Windows está habilitado. Network Binding: ============= Wi-Fi 2: SoftEther Lightweight Network Protocol -> SeLow (enabled) Ethernet 2: SoftEther Lightweight Network Protocol -> SeLow (enabled) VPN - VPN Client: SoftEther Lightweight Network Protocol -> SeLow (enabled) Conexión de red Bluetooth 2: SoftEther Lightweight Network Protocol -> SeLow (enabled) ==================== MSCONFIG/TASK MANAGER elementos deshabilitados == ==================== Reglas de firewall (Lista blanca) ================ (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) FirewallRules: [{CF4364AF-042A-4137-815C-BB14D6E8B9B6}] => (Allow) C:\Program Files\HP\HP Deskjet 2510 series\Bin\USBSetup.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{84859984-9C3C-4B09-A4EF-F9E8FC3C97C5}] => (Allow) C:\Users\oscar\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{130777E3-3578-494C-80E1-C8A647EEF44F}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{720D8CD8-92B7-4CA0-8CED-6C585DEA7666}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{1EDE8284-2501-46B4-999E-4DE3466CDCFC}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient.exe (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.) FirewallRules: [{3036DDC6-E92D-4142-A501-72D30BC60B30}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.) FirewallRules: [{9DD89D75-3690-4DD3-B4EA-FE1B32337C0E}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr.exe (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.) FirewallRules: [{B34D2643-3CEF-4331-BC3A-560484624C71}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.) FirewallRules: [{15D30136-E0C3-4F73-82B7-869141BE2245}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd.exe (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.) FirewallRules: [{CC5C6CC6-52FE-44AA-AFA3-EF1E77B184DF}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd_x64.exe (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.) FirewallRules: [{9E527DEB-2B7A-4936-9508-0756A1FA6DD9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{73A489DA-573F-423E-A3E9-8F3F177C0FE5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{7308710C-5D7C-45FA-AEC8-B648BD98C35E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{F6AFBE2B-9AFA-46CD-BB25-80F4C24EC52B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{789F62BA-EF2F-4EFF-AED7-E251EC1B09F9}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{A66AA904-2379-4B6E-AB64-6B4737A90CBA}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{67FB7222-ACB8-4214-B1FF-169222B1148F}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{5F3FEF94-F04B-46F9-9F26-7E72861CBA56}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.) FirewallRules: [{80251F4F-5390-4F71-9DA8-55AE47EF25A3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) ==================== Puntos de Restauración ========================= 25-09-2020 21:40:54 JRT Pre-Junkware Removal ==================== Dispositivos defectuosos en el Administrador de dispositivos ============ ==================== Errores del registro de eventos: ======================== Errores de aplicación: ================== Error: (09/25/2020 09:35:46 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina CoCreateInstance. HR = 0x8007045b, Se está cerrando el sistema. . Error: (09/25/2020 09:35:46 PM) (Source: VSS) (EventID: 13) (User: ) Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} y el nombre CEventSystem no puede iniciarse. [0x8007045b, Se está cerrando el sistema. ] Error: (09/24/2020 10:50:19 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: El optimizador de almacenamiento no pudo completar volver a optimizar en DATOS (F:) debido a: El hardware del volumen no admite la operación solicitada. (0x8900002A) Error: (09/24/2020 10:50:15 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: El optimizador de almacenamiento no pudo completar volver a optimizar en (E:) debido a: El hardware del volumen no admite la operación solicitada. (0x8900002A) Error: (09/17/2020 09:08:27 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: El optimizador de almacenamiento no pudo completar volver a optimizar en DATOS (F:) debido a: El hardware del volumen no admite la operación solicitada. (0x8900002A) Error: (09/17/2020 09:08:26 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: El optimizador de almacenamiento no pudo completar volver a optimizar en (E:) debido a: El hardware del volumen no admite la operación solicitada. (0x8900002A) Error: (09/17/2020 09:04:20 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: El optimizador de almacenamiento no pudo completar volver a optimizar en DATOS (F:) debido a: El hardware del volumen no admite la operación solicitada. (0x8900002A) Error: (09/17/2020 09:04:18 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: El optimizador de almacenamiento no pudo completar volver a optimizar en (E:) debido a: El hardware del volumen no admite la operación solicitada. (0x8900002A) Errores del sistema: ============= Error: (09/25/2020 09:41:22 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: El servicio SoftEther VPN Client terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 10000 milisegundos: Reiniciar el servicio. Error: (09/25/2020 09:41:20 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: El servicio dynabook Function Key control service se terminó de manera inesperada. Esto ha sucedido 1 veces. Error: (09/25/2020 09:35:25 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: El servicio TSDSettingService se terminó de manera inesperada. Esto ha sucedido 1 veces. Error: (09/25/2020 09:35:25 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: El servicio Elan Service se terminó de manera inesperada. Esto ha sucedido 1 veces. Error: (09/25/2020 09:35:25 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: El servicio Servicio Hacer clic y ejecutar de Microsoft Office terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 0 milisegundos: Reiniciar el servicio. Error: (09/25/2020 09:35:25 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: El servicio TSDWirelessLEDCtlService se terminó de manera inesperada. Esto ha sucedido 1 veces. Error: (09/25/2020 09:35:25 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: El servicio DbxSvc terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 5000 milisegundos: Reiniciar el servicio. Error: (09/25/2020 09:35:25 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: El servicio AtherosSvc se terminó de manera inesperada. Esto ha sucedido 1 veces. Windows Defender: =================================== Date: 2020-09-18 00:55:02.9100000Z Description: El examen de Antivirus de Microsoft Defender se detuvo antes de completarse. Id. de examen: {9C2596A7-EE86-4248-95EE-7F13B87EFFEE} Tipo de examen: Antimalware Parámetros de examen: Examen rápido Usuario: NT AUTHORITY\SYSTEM Date: 2020-09-17 20:22:20.9170000Z Description: El examen de Antivirus de Microsoft Defender se detuvo antes de completarse. Id. de examen: {4886E5D7-2766-44C8-AF21-14AFC054098B} Tipo de examen: Antimalware Parámetros de examen: Examen rápido Usuario: NT AUTHORITY\SYSTEM Date: 2020-09-11 23:54:21.1710000Z Description: Antivirus de Microsoft Defender detectó malware u otro software potencialmente no deseado. Para más información, consulta lo siguiente: https://go.microsoft.com/fwlink/?linkid=37020&name=Misleading:Win32/Lodi&threatid=240849&enterprise=0 Nombre: Misleading:Win32/Lodi Id.: 240849 Gravedad: Baja Categoría: Software potencialmente no deseado Ruta de acceso: file:_C:\$Recycle.Bin\S-1-5-21-4209037374-2354484719-1641240497-1001\$RPN4SJG.exe; file:_C:\Users\oscar\Desktop\DriverPack-17-Online_1940391655.1599851878.exe Origen de detección: Equipo local Tipo de detección: Concreto Origen de detección: Protección en tiempo real Usuario: Nombre de proceso: C:\Windows\explorer.exe Versión de inteligencia de seguridad: AV: 1.323.966.0, AS: 1.323.966.0, NIS: 1.323.966.0 Versión de motor: AM: 1.1.17400.5, NIS: 1.1.17400.5 Date: 2020-09-11 23:50:37.8340000Z Description: Antivirus de Microsoft Defender detectó malware u otro software potencialmente no deseado. Para más información, consulta lo siguiente: https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/DriverToolkit&threatid=242691&enterprise=0 Nombre: PUA:Win32/DriverToolkit Id.: 242691 Gravedad: Baja Categoría: Software potencialmente no deseado Ruta de acceso: file:_C:\Users\oscar\Desktop\DriverToolkitInstaller.exe Origen de detección: Equipo local Tipo de detección: Concreto Origen de detección: Protección en tiempo real Usuario: LAPTOP-DE-OSCAR\Oscar Alejandro Nombre de proceso: C:\Windows\explorer.exe Versión de inteligencia de seguridad: AV: 1.323.966.0, AS: 1.323.966.0, NIS: 1.323.966.0 Versión de motor: AM: 1.1.17400.5, NIS: 1.1.17400.5 Date: 2020-09-11 14:18:34.7150000Z Description: Antivirus de Microsoft Defender detectó malware u otro software potencialmente no deseado. Para más información, consulta lo siguiente: https://go.microsoft.com/fwlink/?linkid=37020&name=Misleading:Win32/Lodi&threatid=240849&enterprise=0 Nombre: Misleading:Win32/Lodi Id.: 240849 Gravedad: Baja Categoría: Software potencialmente no deseado Ruta de acceso: file:_C:\Users\oscar\Desktop\DriverPack-17-Online_1940391655.1599851878.exe Origen de detección: Equipo local Tipo de detección: Concreto Origen de detección: Protección en tiempo real Usuario: LAPTOP-DE-OSCAR\Oscar Alejandro Nombre de proceso: C:\Windows\explorer.exe Versión de inteligencia de seguridad: AV: 1.323.956.0, AS: 1.323.956.0, NIS: 1.323.956.0 Versión de motor: AM: 1.1.17400.5, NIS: 1.1.17400.5 Date: 2020-09-06 19:35:29.4020000Z Description: Antivirus de Microsoft Defender detectó un error al intentar actualizar la inteligencia de seguridad. Nueva versión de inteligencia de seguridad: 1.323.664.0 Versión anterior de inteligencia de seguridad: 1.323.606.0 Origen de actualización: Usuario Tipo de inteligencia de seguridad: AntiSpyware Tipo de actualización: Diferencia Usuario: NT AUTHORITY\SYSTEM Versión actual del motor: 1.1.17400.5 Versión anterior del motor: 1.1.17400.5 Código de error: 0x80509004 Descripción del error: Problema inesperado. Instala todas las actualizaciones disponibles e intenta iniciar el programa de nuevo. Para obtener más información sobre cómo instalar actualizaciones, consulta Ayuda y soporte técnico. Date: 2020-09-06 19:35:29.4020000Z Description: Antivirus de Microsoft Defender detectó un error al intentar actualizar la inteligencia de seguridad. Nueva versión de inteligencia de seguridad: 1.323.664.0 Versión anterior de inteligencia de seguridad: 1.323.606.0 Origen de actualización: Usuario Tipo de inteligencia de seguridad: AntiVirus Tipo de actualización: Diferencia Usuario: NT AUTHORITY\SYSTEM Versión actual del motor: 1.1.17400.5 Versión anterior del motor: 1.1.17400.5 Código de error: 0x80509004 Descripción del error: Problema inesperado. Instala todas las actualizaciones disponibles e intenta iniciar el programa de nuevo. Para obtener más información sobre cómo instalar actualizaciones, consulta Ayuda y soporte técnico. Date: 2020-08-19 16:58:22.7510000Z Description: Antivirus de Microsoft Defender detectó un error al intentar actualizar la inteligencia de seguridad. Nueva versión de inteligencia de seguridad: Versión anterior de inteligencia de seguridad: 1.321.1767.0 Origen de actualización: Servidor de Microsoft Update Tipo de inteligencia de seguridad: AntiVirus Tipo de actualización: Completa Usuario: NT AUTHORITY\SYSTEM Versión actual del motor: Versión anterior del motor: 1.1.17300.4 Código de error: 0x80240438 Descripción del error: Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulta Ayuda y soporte técnico. Date: 2020-08-15 20:03:23.6910000Z Description: La característica Protección en tiempo real de Antivirus de Microsoft Defender encontró un error: Característica: Sistema de inspección de red Código de error: 0x8007045b Descripción del error: Se está cerrando el sistema. Motivo: El sistema no tiene las actualizaciones necesarias para ejecutar el Sistema de inspección de red. Instala las actualizaciones requeridas y reinicia el dispositivo. CodeIntegrity: =================================== Date: 2020-08-28 01:11:25.0070000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.1\x64\antimalware_provider.dll that did not meet the Windows signing level requirements. Date: 2020-08-28 01:11:22.9550000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.1\x64\antimalware_provider.dll that did not meet the Windows signing level requirements. Date: 2020-08-28 01:11:20.8960000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.1\x64\antimalware_provider.dll that did not meet the Windows signing level requirements. Date: 2020-08-28 01:11:18.8510000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.1\x64\antimalware_provider.dll that did not meet the Windows signing level requirements. Date: 2020-08-28 00:20:37.7860000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.1\x64\antimalware_provider.dll that did not meet the Windows signing level requirements. Date: 2020-08-28 00:20:37.7460000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.1\x64\antimalware_provider.dll that did not meet the Windows signing level requirements. Date: 2020-08-28 00:20:37.6860000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.1\x64\antimalware_provider.dll that did not meet the Windows signing level requirements. Date: 2020-08-28 00:20:01.1570000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.1\x64\antimalware_provider.dll that did not meet the Windows signing level requirements. ==================== Información de la memoria =========================== BIOS: TOSHIBA 5.10 07/27/2015 Placa base: TOSHIBA ZBWAE Procesador: AMD A6-6310 APU with AMD Radeon R4 Graphics Porcentaje de memoria en uso: 42% RAM física total: 7102.62 MB RAM física disponible: 4086.32 MB Virtual total: 8254.62 MB Virtual disponible: 4887.09 MB ==================== Unidades ================================ Drive c: () (Fixed) (Total:96.14 GB) (Free:53.38 GB) NTFS Drive d: (SSD2) (Fixed) (Total:349.47 GB) (Free:85.91 GB) NTFS Drive e: () (Fixed) (Total:0.49 GB) (Free:0.47 GB) NTFS Drive f: (DATOS) (Fixed) (Total:231.61 GB) (Free:23.58 GB) NTFS \\?\Volume{737bdb70-8182-4666-a9e7-ea70114d7015}\ (Recuperación) (Fixed) (Total:0.49 GB) (Free:0.06 GB) NTFS \\?\Volume{097ea9d5-c09c-4928-9a6c-07243cef69b1}\ () (Fixed) (Total:0.93 GB) (Free:0.42 GB) NTFS \\?\Volume{0008cd6e-0000-0000-0000-40063a000000}\ () (Fixed) (Total:0.79 GB) (Free:0.34 GB) NTFS \\?\Volume{88e3b13d-4da2-437c-bde6-74c12a9f108b}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Tabla de particiones ==================== ========================================================== Disk: 0 (Size: 447.1 GB) (Disk ID: B5051BEF) Partition: GPT. ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 0008CD6E) Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=231.6 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=805 MB) - (Type=27) ==================== Final de Addition.txt =======================