Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 04-07-2020 01 Ejecutado por USUARIO (05-07-2020 18:01:37) Ejecutado desde D:\USUARIO\Desktop Windows 10 Pro Versión 2004 19041.329 (X64) (2020-06-25 17:20:57) Modo de Inicio: Normal ========================================================== ==================== Cuentas: ============================= Administrador (S-1-5-21-1475189372-905897940-3643049737-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-1475189372-905897940-3643049737-503 - Limited - Disabled) Invitado (S-1-5-21-1475189372-905897940-3643049737-501 - Limited - Disabled) USUARIO (S-1-5-21-1475189372-905897940-3643049737-1001 - Administrator - Enabled) => C:\Users\USUARIO WDAGUtilityAccount (S-1-5-21-1475189372-905897940-3643049737-504 - Limited - Disabled) ==================== Centro de Seguridad ======================== (Si una entrada es incluida en el fixlist, será eliminada.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programas instalados ====================== (Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.) Actualización de NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach) CCleaner (HKLM\...\CCleaner) (Version: 5.67 - Piriform) CyberLink YouCam 7 (HKLM-x32\...\{0078CD4D-B146-4D77-8CF0-268B36C1A3EC}) (Version: 7.0.0623.0 - CyberLink Corp.) DriversCloud.com (64 bits) (HKLM\...\{417197A3-3CF7-4D52-9C55-0B1D726A076A}) (Version: 10.0.11.0 - Cybelsoft) FreeMind (HKLM-x32\...\B991B020-2968-11D8-AF23-444553540000_is1) (Version: 1.0.1 - ) Glary Utilities PRO 5.145 (HKLM-x32\...\Glary Utilities 5) (Version: 5.145.0.171 - Glarysoft Ltd) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1950.14.0.1443 - Intel Corporation) Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.2020.7 - Intel Corporation) Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.58.48.0 - Intel Corporation) Hidden Intel(R) Trusted Connect Services Client (HKLM-x32\...\{2391a86e-5ab5-40d2-a274-1867cd576686}) (Version: 1.58.48.0 - Intel Corporation) Hidden Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00002090-0210-1034-84C8-B8D95FA3C8C3}) (Version: 21.90.2.1 - Intel Corporation) Java 8 Update 251 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180251F0}) (Version: 8.0.2510.8 - Oracle Corporation) KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version: - ) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 83.0.478.58 - Microsoft Corporation) Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.129.35 - ) Microsoft Office Profesional Plus 2019 - es-es (HKLM\...\ProPlus2019Retail - es-es) (Version: 16.0.12527.20482 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1475189372-905897940-3643049737-1001\...\OneDriveSetup.exe) (Version: 20.084.0426.0007 - Microsoft Corporation) Microsoft Teams (HKU\S-1-5-21-1475189372-905897940-3643049737-1001\...\Teams) (Version: 1.3.00.15561 - Microsoft Corporation) Microsoft Visio Professional 2019 - es-es (HKLM\...\VisioPro2019Retail - es-es) (Version: 16.0.12527.20482 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation) Nitro Pro (HKLM\...\{9EB12901-D9A4-41DF-9950-CABFFBF16F79}) (Version: 13.19.2.356 - Nitro) NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden NVIDIA Controlador de gráficos 451.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 451.48 - NVIDIA Corporation) NVIDIA GeForce Experience 3.20.3.63 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.3.63 - NVIDIA Corporation) NVIDIA Software del sistema PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.12730.20352 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.12730.20352 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0C0A-1000-0000000FF1CE}) (Version: 16.0.12730.20352 - Microsoft Corporation) Hidden Speech Support (HKLM-x32\...\Speech Support) (Version: - LEC) Stardock Start10 (HKLM\...\Start10_is1) (Version: 1.7 - Stardock Software Inc.) VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN) WinRAR 5.80 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.80.0 - win.rar GmbH) WinRAR versión 5.80 (HKLM\...\{3BC2A666-6430-4DB6-9819-E225496E3B57}_is1) (Version: 5.80 - RARLAB) Packages: ========= Centro de comando de gráficos Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.2731.0_x64__8j3eq9eme6ctt [2020-06-20] (INTEL CORP) [Startup Task] Dolby Audio -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAudio_3.20500.501.0_x64__rz1tebttyb220 [2020-06-20] (Dolby Laboratories) Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2020-06-23] (INTEL CORP) Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_17.9.1008.0_x64__8j3eq9eme6ctt [2020-06-22] (INTEL CORP) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-06-01] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-06-01] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-06-01] (Microsoft Studios) [MS Ad] MSN El Tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-06-01] (Microsoft Corporation) [MS Ad] NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.958.0_x64__56jybvy8sckqj [2020-06-22] (NVIDIA Corp.) Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.10.216.0_x64__dt26b99r8h8gj [2020-07-04] (Realtek Semiconductor Corp) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.134.694.0_x86__zpdnekdrzrea0 [2020-06-01] (Spotify AB) [Startup Task] ==================== Personalizado CLSID (Lista blanca): ============== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) CustomCLSID: HKU\S-1-5-21-1475189372-905897940-3643049737-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\USUARIO\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20091.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1475189372-905897940-3643049737-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\USUARIO\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20091.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_b840211aa1b1b9ff\OptaneShellExt.dll [2020-04-30] (Intel(R) Rapid Storage Technology -> ) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> Ningún archivo ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> Ningún archivo ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Ningún archivo ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2020-06-13] (Glarysoft LTD -> Glarysoft Ltd) ContextMenuHandlers1: [Nitro.Pro.ShellExtension.Shim] -> {211B6F25-950C-49CD-AB86-A448EF85686A} => C:\Program Files\Common Files\Nitro\Nitro.Pro.ShellExtension.Shim.dll [2020-05-22] (Nitro Software, Inc. -> Nitro Software, Inc.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2020-06-13] (Glarysoft LTD -> Glarysoft Ltd) ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_b840211aa1b1b9ff\OptaneShellExt.dll [2020-04-30] (Intel(R) Rapid Storage Technology -> ) ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> Ningún archivo ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> Ningún archivo ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_2bbc27efc7645978\nvshext.dll [2020-06-22] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Ningún archivo ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2020-06-13] (Glarysoft LTD -> Glarysoft Ltd) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Lista blanca) ==================== ==================== Accesos directos & WMI ======================== ==================== Módulos cargados (Lista blanca) ============= 2020-06-01 07:57 - 2020-06-01 07:58 - 001322496 _____ () [Archivo no firmado] C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.2731.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\x64\e_sqlite3.dll 2019-12-08 21:58 - 2019-04-19 07:29 - 000095744 _____ () [Archivo no firmado] C:\WINDOWS\Womtrust.dll 2020-07-04 10:57 - 2020-07-04 10:57 - 000169984 _____ (Fortemedia) [Archivo no firmado] C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.10.216.0_x64__dt26b99r8h8gj\FMAPOCTL.dll 2020-06-20 09:14 - 2020-06-20 09:14 - 039780864 _____ (Intel) [Archivo no firmado] C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.2731.0_x64__8j3eq9eme6ctt\IGCC.dll 2019-12-08 21:58 - 2019-04-19 07:29 - 000182448 _____ (Stardock Corporation -> Stardock Software, Inc) [Archivo no firmado] [El archivo está en uso] C:\Program Files (x86)\Stardock\Start10\Start10Shell64.dll 2019-12-08 21:58 - 2019-04-19 07:29 - 001686552 _____ (STARDOCK SYSTEMS, INC. -> Stardock Software, Inc) [Archivo no firmado] [El archivo está en uso] C:\Program Files (x86)\Stardock\Start10\Start10_64.dll 2020-06-20 18:21 - 2020-06-20 18:22 - 000023040 _____ (Synaptics Incorporated.) [Archivo no firmado] C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.10.216.0_x64__dt26b99r8h8gj\SynAudSrvDll.dll ==================== Alternate Data Streams (Lista blanca) ======== (Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.) AlternateDataStreams: C:\WINDOWS\system32\Drivers\cainvsvm.sys:changelist [462] ==================== Modo Seguro (Lista blanca) ================== ==================== Asociación (Lista blanca) ================= ==================== Internet Explorer sitios de confianza/restringidos ========== ==================== Hosts contenido: ========================= (Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.) 2019-12-07 04:14 - 2020-07-02 11:03 - 000000060 _____ C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 localhost 127.0.0.1 keystone.mwbsys.com ==================== Otras Áreas =========================== (Actualmente no existe una corrección automática para esta sección.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-1475189372-905897940-3643049737-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg DNS Servers: 1.1.1.2 - 1.0.0.2 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Firewall de Windows está habilitado. ==================== MSCONFIG/TASK MANAGER elementos deshabilitados == (Si una entrada es incluida en el fixlist, será eliminada.) MSCONFIG\Services: brave => 2 MSCONFIG\Services: bravem => 3 MSCONFIG\Services: GoogleChromeElevationService => 3 MSCONFIG\Services: gupdate => 2 MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: MozillaMaintenance => 3 HKU\S-1-5-21-1475189372-905897940-3643049737-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1475189372-905897940-3643049737-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams" HKU\S-1-5-21-1475189372-905897940-3643049737-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning" HKU\S-1-5-21-1475189372-905897940-3643049737-1001\...\StartupApproved\Run: => "GUDelayStartup" ==================== Reglas de firewall (Lista blanca) ================ (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) FirewallRules: [TCP Query User{CA16A9CE-8E78-43F9-B5BB-A6DFA5269C3C}C:\program files (x86)\microsoft\edge\application\msedge.exe] => (Block) C:\program files (x86)\microsoft\edge\application\msedge.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{F4C27F7E-D9DB-40C1-9238-B53C83815523}C:\program files (x86)\microsoft\edge\application\msedge.exe] => (Block) C:\program files (x86)\microsoft\edge\application\msedge.exe (Microsoft Corporation -> Microsoft Corporation) ==================== Puntos de Restauración ========================= ATENCIÓN: Restaurar Sistema está deshabilitado (Total:121.18 GB) (Free:58.39 GB) (48%) ==================== Dispositivos defectuosos en el Administrador de dispositivos ============ ==================== Errores del registro de eventos: ======================== Errores de aplicación: ================== Error: (07/05/2020 04:33:32 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Error de la activación de licencia (slui.exe) con el siguiente código: hr=0xC004F074 Argumentos de línea de comandos: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable Error: (07/05/2020 04:33:30 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Error de la activación de licencia (slui.exe) con el siguiente código: hr=0xC004F074 Argumentos de línea de comandos: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=2 Error: (07/05/2020 04:31:40 PM) (Source: DPTF) (EventID: 17) (User: NT AUTHORITY) Description: Event-ID 17 Error: (07/04/2020 04:15:28 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Error de la activación de licencia (slui.exe) con el siguiente código: hr=0xC004F074 Argumentos de línea de comandos: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable Error: (07/04/2020 04:15:15 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Error de la activación de licencia (slui.exe) con el siguiente código: hr=0xC004F074 Argumentos de línea de comandos: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable Error: (07/04/2020 04:15:14 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Error de la activación de licencia (slui.exe) con el siguiente código: hr=0xC004F074 Argumentos de línea de comandos: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=1 Error: (07/04/2020 03:20:06 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Error de la activación de licencia (slui.exe) con el siguiente código: hr=0xC004F074 Argumentos de línea de comandos: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable Error: (07/04/2020 03:20:01 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Error de la activación de licencia (slui.exe) con el siguiente código: hr=0xC004F074 Argumentos de línea de comandos: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=3 Errores del sistema: ============= Error: (07/04/2020 04:11:55 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Se agotó el tiempo de espera (30000 ms) para la respuesta de transacción del servicio IntelAudioService. Error: (07/04/2020 04:11:55 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Se agotó el tiempo de espera (30000 ms) para la respuesta de transacción del servicio ClickToRunSvc. Error: (07/03/2020 06:46:42 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-PIO23F2) Description: Error de DCOM "1084" al intentar iniciar el servicio ShellHWDetection con argumentos "No disponible" para ejecutar el servidor: {DD522ACC-F821-461A-A407-50B198B896DC} Error: (07/03/2020 06:46:20 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-PIO23F2) Description: Error de DCOM "1084" al intentar iniciar el servicio WSearch con argumentos "No disponible" para ejecutar el servidor: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} Error: (07/03/2020 06:46:20 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-PIO23F2) Description: Error de DCOM "1084" al intentar iniciar el servicio ShellHWDetection con argumentos "No disponible" para ejecutar el servidor: {DD522ACC-F821-461A-A407-50B198B896DC} Error: (07/03/2020 06:46:12 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-PIO23F2) Description: Error de DCOM "1084" al intentar iniciar el servicio dps con argumentos "No disponible" para ejecutar el servidor: {DDCFD26B-FEED-44CD-B71D-79487D2E5E5A} Error: (07/03/2020 06:46:12 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-PIO23F2) Description: Error de DCOM "1084" al intentar iniciar el servicio ShellHWDetection con argumentos "No disponible" para ejecutar el servidor: {DD522ACC-F821-461A-A407-50B198B896DC} Error: (07/03/2020 06:46:09 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY) Description: Error de DCOM "1084" al intentar iniciar el servicio RmSvc con argumentos "No disponible" para ejecutar el servidor: {581333F6-28DB-41BE-BC7A-FF201F12F3F6} Windows Defender: =================================== Date: 2020-07-04 17:00:19.0470000Z Description: Antivirus de Microsoft Defender detectó malware u otro software potencialmente no deseado. Para más información, consulta lo siguiente: https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/Keygen&threatid=225063&enterprise=0 Nombre: PUA:Win32/Keygen Id.: 225063 Gravedad: Baja Categoría: Software potencialmente no deseado Ruta de acceso: file:_D:\USUARIO\Downloads\Fl Studio Crack by greencracks.com.7z; webfile:_D:\USUARIO\Downloads\Fl Studio Crack by greencracks.com.7z|https://public.boxcloud.com/d/1/b1!3sBrHCHlHGaiECFhfUsTdy9qwL3dkzKCKoH_nQyf5sq303l2xmK9dZTVWOM62yzn27UgQVCM4-EBzla8jOiRJM4JIRHsfjstseVJEaaL0u5nGKoynR_-ooQz3iLeM_T5C4_GV1mzxS84RJpM70Wdy7noVwdRt4vbj4FuxxHixAgnTE9lDt-we4p513qHNFzMESTybVHrT0HwBsXbhXkSmyrkwKexcXxws6rQVYxXNweVqq0N9FBOW3A3EvCPpmog31-yHXFro2DfogoNX_SPwlOJio7mfZuWYKCEs0WBdf8t3L05nGrPS3sU6kkx_8x2Wn19ssb-tPaN7ezq-Xk9ehES9ok4pfgvltqmqgmx1b-lCn-xGWGNxVPUbWpbwjZA5UgWRgy5d6W1F-dP27EAKBMvr5WeDY0E9313QZx_1RyxgWyUbZK_JRPwwye68yHV5eEMLZoBJQQaCIeN3p2u0EYwUym3uXsXLqdxUsIV6VCwdknmoc0d05lrUsrfzERil7iElIHP6lm70WXL5J63CRQLG0teIC7DeO4Vgz1EtvA_1kUroO4bTpS0rAkMOJV5CueSbvu4_H4cAZUbw-6_5R4iHaLSV9bnH9P51STIRAs5BRe2hbCMXTq7nFRXQ5xq3bh36w0B0acfKvhvWsfsNjSGbzu6N_uAOjtSXJpM5-8onbs9QZ9jF6lBGUCO3vxfUQpatdCJSns2xnurhV1dXjfAGQ0EeDZXEX8039o229UcPlzmJOI3nbEVYncl6cc9jhZ0-uW6i7WGdZrusyzSo6l38z98S6cTDz4H4u4JrmcGKJGBDlUDVbeW6oKZ89z32Hlug9-YaPN3s6ijveHy3O Origen de detección: Internet Tipo de detección: FastPath Origen de detección: Descargas y datos adjuntos Usuario: DESKTOP-PIO23F2\USUARIO Nombre de proceso: Unknown Versión de inteligencia de seguridad: AV: 1.319.783.0, AS: 1.319.783.0, NIS: 1.319.783.0 Versión de motor: AM: 1.1.17200.2, NIS: 1.1.17200.2 Date: 2020-07-04 16:57:39.5930000Z Description: El examen de Antivirus de Microsoft Defender se detuvo antes de completarse. Id. de examen: {58E5F820-0F79-4503-AD09-893EF79CF271} Tipo de examen: Antimalware Parámetros de examen: Examen rápido Usuario: NT AUTHORITY\SYSTEM Date: 2020-07-03 18:11:42.7500000Z Description: El examen de Antivirus de Microsoft Defender se detuvo antes de completarse. Id. de examen: {3814BDD5-175C-4B4C-9773-682062BC533E} Tipo de examen: Antimalware Parámetros de examen: Examen rápido Usuario: DESKTOP-PIO23F2\USUARIO Date: 2020-07-03 18:11:42.7490000Z Description: El examen de Antivirus de Microsoft Defender se detuvo antes de completarse. Id. de examen: {B82B1DCB-2DCA-442D-8C5C-6CE3AA36083D} Tipo de examen: Antimalware Parámetros de examen: Examen completo Usuario: DESKTOP-PIO23F2\USUARIO Date: 2020-07-03 18:07:16.5910000Z Description: El examen de Antivirus de Microsoft Defender se detuvo antes de completarse. Id. de examen: {0B084FF6-1620-4EC6-A7FC-C46BDF7DB736} Tipo de examen: Antimalware Parámetros de examen: Examen completo Usuario: DESKTOP-PIO23F2\USUARIO Date: 2020-07-03 18:29:55.7310000Z Description: Antivirus de Microsoft Defender detectó un error al intentar actualizar la inteligencia de seguridad. Nueva versión de inteligencia de seguridad: Versión anterior de inteligencia de seguridad: 1.319.721.0 Origen de actualización: Servidor de Microsoft Update Tipo de inteligencia de seguridad: AntiVirus Tipo de actualización: Completa Usuario: NT AUTHORITY\SYSTEM Versión actual del motor: Versión anterior del motor: 1.1.17200.2 Código de error: 0x8007043c Descripción del error: El servicio no puede iniciarse en modo a prueba de errores Date: 2020-07-03 18:19:36.2890000Z Description: La característica Protección en tiempo real de Antivirus de Microsoft Defender encontró un error: Característica: Durante el acceso Código de error: 0x8007043c Descripción del error: El servicio no puede iniciarse en modo a prueba de errores Motivo: La inteligencia de seguridad antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema. CodeIntegrity: =================================== Date: 2020-07-04 16:12:53.4860000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\GUBootStartup.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2020-07-03 18:47:47.5240000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\GUBootStartup.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2020-07-02 11:17:17.6030000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\GUBootStartup.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2020-07-02 10:50:27.3500000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2020-07-02 10:50:27.3000000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2020-07-02 10:46:43.1060000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\GUBootStartup.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2020-07-02 10:37:51.1030000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. Date: 2020-07-02 10:37:51.1030000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. ==================== Información de la memoria =========================== BIOS: LENOVO ASCN38WW 08/15/2019 Placa base: LENOVO LNVNB161216 Procesador: Intel(R) Core(TM) i5-8265U CPU @ 1.60GHz Porcentaje de memoria en uso: 72% RAM física total: 3975.24 MB RAM física disponible: 1085.28 MB Virtual total: 5895.24 MB Virtual disponible: 2286.93 MB ==================== Unidades ================================ Drive c: () (Fixed) (Total:121.18 GB) (Free:58.39 GB) NTFS Drive d: () (Fixed) (Total:809.44 GB) (Free:799.34 GB) NTFS \\?\Volume{a4b7e769-d565-440a-9612-4b7e1b490f63}\ () (Fixed) (Total:0.77 GB) (Free:0.08 GB) NTFS \\?\Volume{d3283a6c-63f3-40a4-b14d-3705c18f7b97}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Tabla de particiones ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000) Partition: GPT. ==================== Final de Addition.txt =======================