Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 26-01-2023 Ejecutado por Sistemas (27-01-2023 23:30:48) Ejecutado desde C:\Users\Sistemas\Desktop Microsoft Windows 7 Ultimate Service Pack 1 (X64) (2017-01-06 22:54:08) Modo de Inicio: Safe Mode (minimal) ========================================================== ==================== Cuentas: ============================= (Si una entrada es incluida en el fixlist, será eliminada.) Administrador (S-1-5-21-3393724273-2934716786-2079191108-500 - Administrator - Disabled) HomeGroupUser$ (S-1-5-21-3393724273-2934716786-2079191108-1002 - Limited - Enabled) Invitado (S-1-5-21-3393724273-2934716786-2079191108-501 - Limited - Disabled) Sistemas (S-1-5-21-3393724273-2934716786-2079191108-1000 - Administrator - Enabled) => C:\Users\Sistemas ==================== Centro de Seguridad ======================== (Si una entrada es incluida en el fixlist, será eliminada.) AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programas instalados ====================== (Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.) Active WebCam (HKLM-x32\...\Active WebCam) (Version: - ) Adobe Acrobat (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 22.003.20310 - Adobe Systems Incorporated) Adobe Acrobat Reader - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 22.003.20282 - Adobe Systems Incorporated) Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: - Adobe) Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601032}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden Aimersoft Helper Compact 2.5.2 (HKLM-x32\...\{405147F7-FCC5-499B-A27E-EA6BD4A80435}_is1) (Version: 2.5.2 - Aimersoft) BlueStacks 5 (HKLM\...\BlueStacks_nxt) (Version: 5.1.110.1005 - BlueStack Systems, Inc.) BlueStacks 5 Beta (HKLM\...\BlueStacks_arabica) (Version: 5.0.0.7230 - BlueStack Systems, Inc.) BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.240.15.1005 - BlueStack Systems, Inc.) CCleaner (HKLM\...\CCleaner) (Version: 6.08 - Piriform) Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.) Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.) Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.) Debut, capturador de vídeo (HKLM-x32\...\Debut) (Version: 7.45 - NCH Software) Eines de correcció del Microsoft Office 2013: català (HKLM-x32\...\{90150000-001F-0403-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Epic Games Launcher (HKLM-x32\...\{385D03C4-767B-4B5F-A627-61319D136EF4}) (Version: 1.1.236.0 - Epic Games, Inc.) Ferramentas de verificación de Microsoft Office 2013 - Galego (HKLM-x32\...\{90150000-001F-0456-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden First PDF - Converts PDF to Word, Text, Excel, HTML, XML and Images. (HKLM-x32\...\First PDF) (Version: 4.1.11.16 - SautinSoft) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 109.0.5414.120 - Google LLC) Intel(R) Chipset Device Software (HKLM\...\{5CA7FC9B-8508-4494-B365-6FBCBAEB8E89}) (Version: 10.0.27 - Intel Corporation) Hidden Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1310 - Intel Corporation) Intel(R) Network Connections 19.5.303.0 (HKLM\...\{D8A3D01E-BCBB-491B-856F-61E3B8563E32}) (Version: 19.5.303.0 - Intel) Hidden Intel(R) Network Connections 19.5.303.0 (HKLM\...\PROSetDX) (Version: 19.5.303.0 - Intel) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.5067 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{27DEA29A-222C-45F8-B70D-0A7B303FC71B}) (Version: 12.9.0.1001 - Intel Corporation) Hidden Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation) Intel® PROSet/Wireless WiFi Software (HKLM\...\{B5E49E64-0C1B-49AD-AE21-119CE68750E9}) (Version: 17.0.0.0332 - Intel Corporation) Hidden Intel® Trusted Connect Service Client (HKLM\...\{FA00A3CC-7440-4938-A271-F186F50DD40D}) (Version: 1.27.757.1 - Intel Corporation) Hidden KeepVid Pro(Build 6.1.0.7) (HKLM-x32\...\KeepVid Pro_is1) (Version: 6.1.0.7 - KeepVid Studio) KeepVid Pro(Build 6.1.1.11) (HKU\S-1-5-21-3393724273-2934716786-2079191108-1000\...\KeepVid Pro_is1) (Version: 6.1.1.11 - KeepVid Studio) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Los Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.82.99.1030 - Electronic Arts Inc.) Malwarebytes version 4.5.20.230 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.20.230 - Malwarebytes) MEmu (HKLM-x32\...\MEmu) (Version: 7.2.7.0 - Microvirt Software Technology Co. Ltd.) Microsoft .NET Framework 4.5.2 (ESN) (HKLM\...\{11397EE3-AB8C-3652-A955-E3DC868005F2}) (Version: 4.5.51209 - Microsoft Corporation) Hidden Microsoft .NET Framework 4.5.2 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.5.51209 - Microsoft Corporation) Microsoft .NET Framework 4.8 (HKLM\...\{16735AF7-1D8D-3681-94A5-C578A61EC832}) (Version: 4.8.03761 - Microsoft Corporation) Hidden Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation) Microsoft Access MUI (Spanish) 2013 (HKLM-x32\...\{90150000-0015-0C0A-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Microsoft DCF MUI (Spanish) 2013 (HKLM-x32\...\{90150000-0090-0C0A-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Microsoft Excel MUI (Spanish) 2013 (HKLM-x32\...\{90150000-0016-0C0A-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Microsoft Groove MUI (Spanish) 2013 (HKLM-x32\...\{90150000-00BA-0C0A-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Microsoft InfoPath MUI (Spanish) 2013 (HKLM-x32\...\{90150000-0044-0C0A-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Microsoft Lync MUI (Spanish) 2013 (HKLM-x32\...\{90150000-012B-0C0A-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Microsoft Office 64-bit Components 2013 (HKLM\...\{90150000-002A-0000-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Microsoft Office OSM MUI (Spanish) 2013 (HKLM-x32\...\{90150000-00E1-0C0A-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Microsoft Office OSM UX MUI (Spanish) 2013 (HKLM-x32\...\{90150000-00E2-0C0A-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Microsoft Office Professional Plus 2013 (HKLM-x32\...\{90150000-0011-0000-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation) Microsoft Office Proofing (Spanish) 2013 (HKLM-x32\...\{90150000-002C-0C0A-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Microsoft Office Proofing Tools 2013 - English (HKLM-x32\...\{90150000-001F-0409-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Microsoft Office Proofing Tools 2013 - Español (HKLM-x32\...\{90150000-001F-0C0A-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Microsoft Office Shared 64-bit MUI (Spanish) 2013 (HKLM\...\{90150000-002A-0C0A-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Microsoft Office Shared MUI (Spanish) 2013 (HKLM-x32\...\{90150000-006E-0C0A-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Microsoft Office zuzenketa-tresnak 2013 - Euskara (HKLM-x32\...\{90150000-001F-042D-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Microsoft OneNote MUI (Spanish) 2013 (HKLM-x32\...\{90150000-00A1-0C0A-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Microsoft Outlook MUI (Spanish) 2013 (HKLM-x32\...\{90150000-001A-0C0A-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Microsoft PowerPoint MUI (Spanish) 2013 (HKLM-x32\...\{90150000-0018-0C0A-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Microsoft Publisher MUI (Spanish) 2013 (HKLM-x32\...\{90150000-0019-0C0A-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.23.27820 (HKLM-x32\...\{852adda4-4c78-4a38-b583-c0b360a329d6}) (Version: 14.23.27820.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation) Microsoft Visual C++ 2019 X64 Additional Runtime - 14.24.28127 (HKLM\...\{8678BA04-D161-45BE-ACA4-CC5D13073F35}) (Version: 14.24.28127 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.24.28127 (HKLM\...\{7DC387B8-E6A2-480C-8EF9-A6E51AE81C19}) (Version: 14.24.28127 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Additional Runtime - 14.24.28127 (HKLM-x32\...\{EAC73207-74BD-4B13-AACF-8C0E751FA4E8}) (Version: 14.24.28127 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.24.28127 (HKLM-x32\...\{2E72FA1F-BADB-4337-B8AE-F7C17EC57D1D}) (Version: 14.24.28127 - Microsoft Corporation) Hidden Microsoft Word MUI (Spanish) 2013 (HKLM-x32\...\{90150000-001B-0C0A-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Minecraft Launcher (HKLM-x32\...\{E15F69FA-660D-45CC-B28F-6CBC4CAD2091}) (Version: 1.0.0.0 - Mojang) Mundo Gaturro (HKLM-x32\...\Mundo Gaturro_is1) (Version: 1.0 - QB9 Entertainment) Mundo Gaturro versión 2.0 (HKU\S-1-5-21-3393724273-2934716786-2079191108-1000\...\{2C0629C2-444C-4AFF-8A5F-785077680DC0}_is1) (Version: 2.0 - Clawi) Nox APP Player (HKLM-x32\...\Nox) (Version: 3.8.0.5 - Duodian Technology Co. Ltd.) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 27.1.3 - OBS Project) Opera GX Stable 93.0.4585.84 (HKU\S-1-5-21-3393724273-2934716786-2079191108-1000\...\Opera GX 93.0.4585.84) (Version: 93.0.4585.84 - Opera Software) Opera Stable 94.0.4606.65 (HKU\S-1-5-21-3393724273-2934716786-2079191108-1000\...\Opera 94.0.4606.65) (Version: 94.0.4606.65 - Opera Software) Origin (HKLM-x32\...\Origin) (Version: 10.5.116.52126 - Electronic Arts, Inc.) Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM-x32\...\{90150000-001F-040C-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.140.248 - Google, Inc.) Pixillion, convertidor de archivos de imagen (HKLM-x32\...\Pixillion) (Version: 8.74 - NCH Software) PuertoEstrada Digital (HKLM-x32\...\{50F6408E-15F1-4C3F-A937-FD9FB1166BF2}) (Version: 2.1.0.56739 - Macmillan Publisher) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.370.70 - Realtek Semiconductor Corp.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8581 - Realtek Semiconductor Corp.) REALTEK Wireless LAN Driver (HKLM-x32\...\{9DAABC60-A5EF-41FF-B2B9-17329590CD5}) (Version: 1.00.0239 - REALTEK Semiconductor Corp.) REALTEK Wireless LAN Driver (HKLM-x32\...\{B63CCD1C-A133-4DF8-8306-DA0387231152}) (Version: 1.00.0243 - ) Revisores de Texto do Microsoft Office 2013 – Português do Brasil (HKLM-x32\...\{90150000-001F-0416-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.) Roblox Player (HKLM-x32\...\roblox-player) (Version: - Roblox Corporation) Roblox Player (HKLM-x32\...\roblox-player-admin) (Version: - Roblox Corporation) Roblox Player for Sistemas (HKU\S-1-5-21-3393724273-2934716786-2079191108-1000\...\roblox-player) (Version: - Roblox Corporation) Roblox Studio (HKLM-x32\...\roblox-studio) (Version: - Roblox Corporation) Roblox Studio (HKLM-x32\...\roblox-studio-admin) (Version: - Roblox Corporation) Roblox Studio for Sistemas (HKU\S-1-5-21-3393724273-2934716786-2079191108-1000\...\roblox-studio) (Version: - Roblox Corporation) Software Intel® PROSet/Wireless (HKLM-x32\...\{b9007812-6a61-4dfc-8a0c-4c726c7dc43f}) (Version: 17.0.1 - Intel Corporation) Software para dispositivos de chipset Intel® (HKLM-x32\...\{98f335cd-0a32-4b3f-b74c-ef9480e834f0}) (Version: 10.0.27 - Intel(R) Corporation) Hidden Spotify (HKU\S-1-5-21-3393724273-2934716786-2079191108-1000\...\Spotify) (Version: 1.1.18.611.g9cc9bdc9 - Spotify AB) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) SuperClubPenguin 1.0.0 (HKU\S-1-5-21-3393724273-2934716786-2079191108-1000\...\ebfbe0f6-361e-5567-aa38-7c590c287a54) (Version: 1.0.0 - Julian45123) TeamViewer (HKLM\...\TeamViewer) (Version: 15.22.3 - TeamViewer) TP-LINK TL-WN821N(C)_TL-WN822N_TL-WN823N Driver (HKLM-x32\...\{852E893E-E4FD-45BB-8B17-72ADDF686974}) (Version: 1.3.1 - TP-LINK) Twitch Studio (HKU\S-1-5-21-3393724273-2934716786-2079191108-1000\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF372B0}) (Version: 8.0.0 - Twitch Interactive, Inc.) UE4 Prerequisites (x64) (HKLM\...\{D7B591D8-1091-4A00-A0B3-5301C45E5D51}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden UE4 Prerequisites (x64) (HKLM-x32\...\{0d995f46-317b-4b5f-bf3e-9f98bae9d339}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden VALORANT (HKU\S-1-5-21-3393724273-2934716786-2079191108-1000\...\Riot Game valorant.live) (Version: - Riot Games, Inc) VideoPad, editor de vídeo (HKLM-x32\...\VideoPad) (Version: 10.22 - NCH Software) WhatsApp (HKU\S-1-5-21-3393724273-2934716786-2079191108-1000\...\WhatsApp) (Version: 2.2234.13 - WhatsApp) WinRAR 5.40 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) WinRAR 6.02 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH) Wondershare Filmora X(Build 10.7.2.9) (HKLM\...\Wondershare Filmora X_is1) (Version: - Wondershare Software) Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare) Youtube Downloader HD v. 2.9.9.41 (HKLM-x32\...\Youtube Downloader HD_is1) (Version: - YoutubeDownloaderHD.com) Zoom (HKU\S-1-5-21-3393724273-2934716786-2079191108-1000\...\ZoomUMX) (Version: 5.12.2 (9281) - Zoom Video Communications, Inc.) ==================== Personalizado CLSID (Lista blanca): ============== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) HKU\S-1-5-21-3393724273-2934716786-2079191108-1000\...\ChromeHTML: -> <==== ATENCIÓN CustomCLSID: HKU\S-1-5-21-3393724273-2934716786-2079191108-1000_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3393724273-2934716786-2079191108-1000_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3393724273-2934716786-2079191108-1000_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3393724273-2934716786-2079191108-1000_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3393724273-2934716786-2079191108-1000_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3393724273-2934716786-2079191108-1000_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3393724273-2934716786-2079191108-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2022-12-24] (Adobe Inc. -> Adobe Systems Inc.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-01-25] (Malwarebytes Inc. -> Malwarebytes) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Ningún archivo ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2019-10-29] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2022-12-24] (Adobe Inc. -> Adobe Systems Inc.) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-01-25] (Malwarebytes Inc. -> Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Lista blanca) ==================== (Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.) HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com) HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com) ==================== Accesos directos & WMI ======================== (Las entradas pueden ser listadas para ser restauradas o eliminadas.) WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\":: WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99] WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate] ShortcutWithArgument: C:\Users\Sistemas\Desktop\Rocio - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default" ShortcutWithArgument: C:\Users\Sistemas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Five nights at Freddy's 3 - Minijuegos.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 2" --app-id=nfbcondocffgodbcpclokiadenjldcgk ShortcutWithArgument: C:\Users\Sistemas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9501e18d7c2ab92e\¡My (yo) - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 2" ==================== Módulos cargados (Lista blanca) ============= 2019-12-02 19:29 - 2019-12-02 19:29 - 000010240 _____ () [Archivo no firmado] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\es_es\AcroTray.esp 2021-09-09 02:16 - 2021-09-09 02:16 - 000021504 _____ (Adobe Systems Inc.) [Archivo no firmado] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\es_es\Acrobat Elements\ContextMenuShim64.esp ==================== Alternate Data Streams (Lista blanca) ======== (Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.) AlternateDataStreams: C:\desktop.ini:CachedTiles [458] AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [480] ==================== Modo Seguro (Lista blanca) ================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMSwissArmy => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMSwissArmy => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="1" ==================== Asociación (Lista blanca) ================= ==================== Internet Explorer (Versión 11) (Lista blanca) ========== HKU\S-1-5-21-3393724273-2934716786-2079191108-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3393724273-2934716786-2079191108-1000 -> DefaultScope {2C29C48A-BA7D-4C12-BF2E-F7153FCE52A8} URL = hxxps://es.search.yahoo.com/search?fr=mcafee&type=B011ES1045D20170107&p={searchTerms} SearchScopes: HKU\S-1-5-21-3393724273-2934716786-2079191108-1000 -> {2C29C48A-BA7D-4C12-BF2E-F7153FCE52A8} URL = hxxps://es.search.yahoo.com/search?fr=mcafee&type=B011ES1045D20170107&p={searchTerms} BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation -> Microsoft Corporation) BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-07-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation) BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-07-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-07-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-07-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: KeepVid Pro 4.10.0 -> {F9B65201-3D7F-48DA-AAB3-57A6FAD648FD} -> C:\Program Files (x86)\KeepVid\KeepVid Pro\BrowserPlugin\KVBrowserAppMgr.dll [2017-01-16] (Shenzhen Jia Xing Investment Co., Ltd. -> ) Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-07-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-07-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKU\S-1-5-21-3393724273-2934716786-2079191108-1000 -> Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-07-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Handler: WSKVAllmytubechrome - {91AB862D-07B8-4A85 - Ningún archivo ==================== Hosts contenido: ========================= (Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.) 2009-07-13 23:34 - 2009-06-10 18:00 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts ==================== Otras Áreas =========================== (Actualmente no existe una corrección automática para esta sección.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\ HKU\S-1-5-21-3393724273-2934716786-2079191108-1000\Control Panel\Desktop\\Wallpaper -> C:\ProgramData\y1dAMeVWr.bmp DNS Servers: El medio no está conectado a internet. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) ==================== MSCONFIG/TASK MANAGER elementos deshabilitados == (Si una entrada es incluida en el fixlist, será eliminada.) MSCONFIG\startupreg: Acrobat Assistant 8.0 => "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe" MSCONFIG\startupreg: Adobe Acrobat Synchronizer => "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe" MSCONFIG\startupreg: Aimersoft Helper Compact.exe => C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe MSCONFIG\startupreg: ares => "C:\Program Files (x86)\Ares\Ares.exe" -h MSCONFIG\startupreg: CrypteD_aa => wscript.exe //B "C:\Users\Sistemas\AppData\Local\Temp\CrypteD_aa.vbs" MSCONFIG\startupreg: dwn => C:\Users\Sistemas\AppData\Local\dwm.exe MSCONFIG\startupreg: EpicGamesLauncher => "C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent MSCONFIG\startupreg: IAStorIcon => "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60 MSCONFIG\startupreg: javaupd => C:\Users\Sistemas\AppData\Roaming\javaupd.exe MSCONFIG\startupreg: KeepVidProUpdateHelper.exe => C:\Program Files (x86)\KeepVid\KeepVid Pro\KeepVidProUpdateHelper.exe MSCONFIG\startupreg: mcpltui_exe => "C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe" /platui /runkey MSCONFIG\startupreg: smss => C:\ProgramData\smss.exe MSCONFIG\startupreg: Spotify => C:\Users\Sistemas\AppData\Roaming\Spotify\Spotify.exe --autostart --minimized MSCONFIG\startupreg: win32svc => C:\Users\Sistemas\AppData\Roaming\Microsoft\Windows\win32svc.exe MSCONFIG\startupreg: Wondershare Helper Compact.exe => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe ==================== Reglas de firewall (Lista blanca) ================ (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) FirewallRules: [{FCA61534-A301-4FF2-AEEC-20C8525D85FB}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{57780147-98B5-4273-90B7-F7CCF326A69B}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{FE1E7274-7420-47F4-88AD-1CD3E52F7DCC}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{A1A1D6E6-EB84-49A2-B350-164FD07F8167}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{CFB3B2FC-116D-45D1-97F1-F694B27874E9}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation-Mobile Wireless Group -> ) FirewallRules: [TCP Query User{4AB466FA-9920-4AFF-8329-9E8F96C3F867}C:\users\sistemas\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\sistemas\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [UDP Query User{D08D7D40-C193-41FE-9241-01D6AC59B0C4}C:\users\sistemas\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\sistemas\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [TCP Query User{444F3F46-59CD-4C9B-BFB9-1FD9646A600F}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{585C5478-D2C2-4E69-949E-B101F9EA2FAA}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [TCP Query User{192658C5-5B19-457D-A752-AF3EC0BC1013}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{C528F296-19F6-4CBE-A3D2-9AAAB68C6AA0}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [TCP Query User{E24F7B78-C03F-484D-A6DB-A7AC5C660408}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{6DB7E633-2A55-4269-8CF1-7474EE313CFD}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [TCP Query User{D163AFBF-ADD1-4646-A045-3F46D72A7566}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{2655CC1E-A5E0-4AEB-A19C-786287C590C9}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [{DC770972-FB2D-4E50-A378-FBF035E31716}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe (Electronic Arts Inc.) [Archivo no firmado] FirewallRules: [{78FF851D-1A7C-4F3C-915F-CCC637603429}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe (Electronic Arts Inc.) [Archivo no firmado] FirewallRules: [TCP Query User{820CB7B8-0A0A-4ACC-8AE1-A50D687D228F}C:\users\sistemas\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\sistemas\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [UDP Query User{95936182-B10D-4A34-8494-759C933A172D}C:\users\sistemas\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\sistemas\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [TCP Query User{25E85364-175B-452F-B109-F51518887173}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe FirewallRules: [UDP Query User{FCDEB798-261A-4BC6-A924-CB9B43761142}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe FirewallRules: [{72A74FE8-F92E-4CA2-8494-426B36395F06}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{5E2C47CB-E4D3-4981-8C67-EAB67F563C10}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{1BF57EF1-47D6-47F3-BE65-1D9514037676}] => (Allow) C:\Users\Sistemas\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{D169B43E-6539-441E-9ACD-F0B56F207063}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{E4C12CE2-1BA4-4370-B627-C7F90120293E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{89612E47-6BEC-4BC0-9726-38AB7467DF90}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{0168260F-B224-49BD-B577-D43AFA5EFEF2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{F3E7D782-3FD8-4F9B-A50F-04CCDDE86F22}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe (Bluestack Systems, Inc -> BlueStack Systems) FirewallRules: [{419D1E4E-F23A-40C3-B026-E78FC91CCDB4}] => (Allow) C:\Program Files (x86)\Nox\bin\Nox.exe (Beijing Duodian Online Science and Technology Co.,Ltd -> Duodian Technology Co. Ltd.) FirewallRules: [{8663A954-AE22-45EA-8A02-E35CA0042F94}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe (Beijing Duodian Online Science and Technology Co.,Ltd -> ) FirewallRules: [TCP Query User{5BBCA44C-7EA0-490D-A1D0-0DBE2B34513F}C:\users\sistemas\appdata\roaming\twitch studio\bin\twitchstudioagent.exe] => (Block) C:\users\sistemas\appdata\roaming\twitch studio\bin\twitchstudioagent.exe (Twitch Interactive, Inc. -> ) FirewallRules: [UDP Query User{16DA9FB5-BD0F-4AFD-B03F-D577DAA9CFAE}C:\users\sistemas\appdata\roaming\twitch studio\bin\twitchstudioagent.exe] => (Block) C:\users\sistemas\appdata\roaming\twitch studio\bin\twitchstudioagent.exe (Twitch Interactive, Inc. -> ) FirewallRules: [{3B718D62-6292-4BD3-8BE2-406B6434621D}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{A42152F1-DA6A-4D7D-BCE3-BA3FBE316322}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{799CE8C4-2AB1-4A18-BD29-5EC1660F5701}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{3D8BBA07-CCAA-4F8A-9EFA-55E0B2F947AE}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{D1EB4036-8861-4C1C-ABC8-FDFE649F4B56}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin_LE\TS4.exe (Electronic Arts Inc.) [Archivo no firmado] FirewallRules: [{23D4B8C6-5ECC-4D29-8280-E7B8E75EC494}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin_LE\TS4.exe (Electronic Arts Inc.) [Archivo no firmado] FirewallRules: [{0910306A-2A0F-4500-8705-BD297D285F6E}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe (Electronic Arts Inc.) [Archivo no firmado] FirewallRules: [{1ABE682B-04EE-4CB4-A821-C1EACD50E320}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe (Electronic Arts Inc.) [Archivo no firmado] FirewallRules: [{5D8108B8-DBAE-4C70-9403-8F3C0592E442}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve -> ) FirewallRules: [{C6CAC33A-3A62-4F2C-9312-B4AB8803F15B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve -> ) FirewallRules: [{90177081-8E1A-4919-90C0-E0B83755043F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe (Valve -> ) FirewallRules: [{26E849F7-076C-4CDA-AA03-EB681486F626}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe (Valve -> ) FirewallRules: [TCP Query User{3BD3C66A-3C89-4648-A781-B3BAADAEA3DD}C:\users\sistemas\appdata\local\programs\opera gx\opera.exe] => (Block) C:\users\sistemas\appdata\local\programs\opera gx\opera.exe (Opera Norway AS -> Opera Software) FirewallRules: [UDP Query User{E36B2FB4-DB41-4A6B-BBE6-52966DA7A169}C:\users\sistemas\appdata\local\programs\opera gx\opera.exe] => (Block) C:\users\sistemas\appdata\local\programs\opera gx\opera.exe (Opera Norway AS -> Opera Software) FirewallRules: [TCP Query User{3C36CD11-8A57-4521-968E-153D9A691116}C:\users\sistemas\appdata\local\programs\opera gx\opera.exe] => (Block) C:\users\sistemas\appdata\local\programs\opera gx\opera.exe (Opera Norway AS -> Opera Software) FirewallRules: [UDP Query User{0E9B8846-B938-41CB-931E-FF502B262439}C:\users\sistemas\appdata\local\programs\opera gx\opera.exe] => (Block) C:\users\sistemas\appdata\local\programs\opera gx\opera.exe (Opera Norway AS -> Opera Software) FirewallRules: [{9D082088-980E-422E-BEC5-06708C4566A8}] => (Allow) C:\Users\Sistemas\AppData\Local\Programs\Opera GX\93.0.4585.78\opera.exe (Opera Norway AS -> Opera Software) FirewallRules: [{A30B27B7-A007-44A6-BE20-782C44DC942B}] => (Allow) C:\Users\Sistemas\AppData\Local\Programs\Opera\94.0.4606.38\opera.exe (Opera Norway AS -> Opera Software) FirewallRules: [{58A29CA5-D917-4883-ADA4-C69190A30723}] => (Allow) C:\Users\Sistemas\AppData\Local\Programs\Opera GX\93.0.4585.84\opera.exe (Opera Norway AS -> Opera Software) FirewallRules: [{F4ECBA03-4311-42F5-8636-09E4612DFD49}] => (Allow) C:\Users\Sistemas\AppData\Local\Programs\Opera\94.0.4606.65\opera.exe (Opera Norway AS -> Opera Software) FirewallRules: [{949163EC-050D-4E94-8D2E-08C72968ABDE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [TCP Query User{7139E6D5-70C1-4085-B849-99D4C8CFB3D2}C:\users\sistemas\desktop\activador\data\qemu.exe] => (Block) C:\users\sistemas\desktop\activador\data\qemu.exe => Ningún archivo FirewallRules: [UDP Query User{E5345F38-49DF-458E-895C-73F9338CBAEB}C:\users\sistemas\desktop\activador\data\qemu.exe] => (Block) C:\users\sistemas\desktop\activador\data\qemu.exe => Ningún archivo FirewallRules: [TCP Query User{1D147363-304E-48AC-A778-C84756EB65F2}C:\program files (x86)\ares\ares.exe] => (Block) C:\program files (x86)\ares\ares.exe => Ningún archivo FirewallRules: [UDP Query User{CBEC66D0-9777-4C67-9B10-3E386357B4C3}C:\program files (x86)\ares\ares.exe] => (Block) C:\program files (x86)\ares\ares.exe => Ningún archivo FirewallRules: [TCP Query User{4C313064-70AA-4710-B992-DF248378DD51}C:\program files (x86)\ares\ares.exe] => (Block) C:\program files (x86)\ares\ares.exe => Ningún archivo FirewallRules: [UDP Query User{347E1EBD-79A3-4D11-BEA8-27137FF12B46}C:\program files (x86)\ares\ares.exe] => (Block) C:\program files (x86)\ares\ares.exe => Ningún archivo FirewallRules: [{79301699-7E98-4DD9-B012-DCDB01079B91}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe => Ningún archivo FirewallRules: [{84D522FC-F619-48FF-BDCA-061F79B5831E}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe => Ningún archivo FirewallRules: [{21167684-6DD5-430B-8460-60E98BA02800}] => (Allow) C:\Users\Sistemas\AppData\Roaming\Zoom\bin\airhost.exe => Ningún archivo FirewallRules: [{CD3D2D35-B92D-421A-9852-412674B3610F}] => (Allow) C:\Users\Sistemas\AppData\Roaming\Zoom\bin\airhost.exe => Ningún archivo FirewallRules: [TCP Query User{D0DC109C-C09C-4A9E-8231-19A89668F782}C:\users\sistemas\appdata\local\temp\rar$exa0.794\among us v56 2020.9.22i-pivigames.blog\among us.exe] => (Allow) C:\users\sistemas\appdata\local\temp\rar$exa0.794\among us v56 2020.9.22i-pivigames.blog\among us.exe => Ningún archivo FirewallRules: [UDP Query User{B61446DA-0D3A-4815-868B-52F1453051D4}C:\users\sistemas\appdata\local\temp\rar$exa0.794\among us v56 2020.9.22i-pivigames.blog\among us.exe] => (Allow) C:\users\sistemas\appdata\local\temp\rar$exa0.794\among us v56 2020.9.22i-pivigames.blog\among us.exe => Ningún archivo FirewallRules: [TCP Query User{5C80506D-D018-48F7-809F-6AFE134743B8}C:\users\sistemas\appdata\local\temp\rar$exa0.128\among us v56 2020.9.22i-pivigames.blog\among us.exe] => (Allow) C:\users\sistemas\appdata\local\temp\rar$exa0.128\among us v56 2020.9.22i-pivigames.blog\among us.exe => Ningún archivo FirewallRules: [UDP Query User{2D066071-2FD0-469E-8FFE-FDD7FA82C67D}C:\users\sistemas\appdata\local\temp\rar$exa0.128\among us v56 2020.9.22i-pivigames.blog\among us.exe] => (Allow) C:\users\sistemas\appdata\local\temp\rar$exa0.128\among us v56 2020.9.22i-pivigames.blog\among us.exe => Ningún archivo FirewallRules: [TCP Query User{E874E15F-000A-482E-AB9E-D8DF47E9FB83}C:\users\sistemas\desktop\among desbloqueador\among us.exe] => (Allow) C:\users\sistemas\desktop\among desbloqueador\among us.exe => Ningún archivo FirewallRules: [UDP Query User{2DF9862E-5DA1-49A5-A383-B6DB9DD5623D}C:\users\sistemas\desktop\among desbloqueador\among us.exe] => (Allow) C:\users\sistemas\desktop\among desbloqueador\among us.exe => Ningún archivo FirewallRules: [TCP Query User{D6A9CE7F-C365-4264-876F-AB21514638F7}C:\users\sistemas\desktop\among us\among us.exe] => (Allow) C:\users\sistemas\desktop\among us\among us.exe => Ningún archivo FirewallRules: [UDP Query User{CCA6F0AE-54C4-4182-916D-2078CD6AA77D}C:\users\sistemas\desktop\among us\among us.exe] => (Allow) C:\users\sistemas\desktop\among us\among us.exe => Ningún archivo FirewallRules: [TCP Query User{1B6005E4-FEE6-4436-B08A-9DD099B33373}C:\users\sistemas\desktop\lucio\among desbloqueador\among us.exe] => (Allow) C:\users\sistemas\desktop\lucio\among desbloqueador\among us.exe => Ningún archivo FirewallRules: [UDP Query User{1D2FCFE7-3D8C-4846-948E-2A164337FC73}C:\users\sistemas\desktop\lucio\among desbloqueador\among us.exe] => (Allow) C:\users\sistemas\desktop\lucio\among desbloqueador\among us.exe => Ningún archivo FirewallRules: [TCP Query User{A9A2C7DC-D4EB-46A0-9631-0C46759B1F7D}C:\users\sistemas\desktop\lucio\among desbloqueador\among us\among us.exe] => (Allow) C:\users\sistemas\desktop\lucio\among desbloqueador\among us\among us.exe => Ningún archivo FirewallRules: [UDP Query User{C649128B-8B40-4D8A-90CD-F3D00F968706}C:\users\sistemas\desktop\lucio\among desbloqueador\among us\among us.exe] => (Allow) C:\users\sistemas\desktop\lucio\among desbloqueador\among us\among us.exe => Ningún archivo FirewallRules: [TCP Query User{7A3D1A3C-980A-4A37-87A4-CB4C41C09789}C:\users\sistemas\desktop\lucio\among desbloqueador\among us_data\among us\among us.exe] => (Allow) C:\users\sistemas\desktop\lucio\among desbloqueador\among us_data\among us\among us.exe => Ningún archivo FirewallRules: [UDP Query User{96F3974D-3C1A-43E8-B290-C1FAAF027AB2}C:\users\sistemas\desktop\lucio\among desbloqueador\among us_data\among us\among us.exe] => (Allow) C:\users\sistemas\desktop\lucio\among desbloqueador\among us_data\among us\among us.exe => Ningún archivo FirewallRules: [{09C28566-1741-4027-81FE-0304CF42D7D7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Ningún archivo FirewallRules: [{E378B044-C836-4BBA-95DD-D292E5627E36}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Ningún archivo ==================== Puntos de Restauración ========================= ==================== Dispositivos defectuosos en el Administrador de dispositivos ============ Name: Security Processor Loader Driver Description: Security Processor Loader Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: spldr Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: McAfee Inc. mfehidk Description: McAfee Inc. mfehidk Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: mfehidk Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: EgisTec_ES603 Description: EgisTec_ES603 Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Errores del registro de eventos: ======================== No se pudo iniciar el servicio de registro de eventos, no se pudieron leer los eventos. El nombre de servicio no es v lido. Puede obtener m s ayuda con el comando NET HELPMSG 2185. ==================== Información de la memoria =========================== BIOS: American Megatrends Inc. 4.6.5 10/08/2014 Placa base: BANGHO BES G1529 Procesador: Intel(R) Core(TM) i5-4210M CPU @ 2.60GHz Porcentaje de memoria en uso: 48% RAM física total: 3996.54 MB RAM física disponible: 2045.91 MB Virtual total: 7991.23 MB Virtual disponible: 6091.2 MB ==================== Unidades ================================ Drive c: () (Fixed) (Total:465.66 GB) (Free:244.2 GB) (Model: TOSHIBA MQ01ACF050 SCSI Disk Device) NTFS Drive e: () (Removable) (Total:14.31 GB) (Free:14.25 GB) FAT32 \\?\Volume{f5042b44-d442-11e6-ab06-806e6f6e6963}\ (Reservado para el sistema) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==================== MBR & Tabla de particiones ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 2527A2C7) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS) ========================================================== Disk: 1 (Protective MBR) (Size: 14.3 GB) (Disk ID: 00000000) Partition: GPT. ==================== Final de Addition.txt =======================