[CODE] Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 16-06-2021 Ejecutado por raski (18-06-2021 11:04:19) Ejecutado desde C:\Users\raski\Downloads Windows 10 Home Single Language Versión 20H2 19042.1052 (X64) (2021-04-18 08:42:45) Modo de Inicio: Normal ========================================================== ==================== Cuentas: ============================= Administrador (S-1-5-21-1186863867-862580549-3210813173-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-1186863867-862580549-3210813173-503 - Limited - Disabled) e_eze (S-1-5-21-1186863867-862580549-3210813173-1002 - Administrator - Enabled) => C:\Users\e_eze Invitado (S-1-5-21-1186863867-862580549-3210813173-501 - Limited - Disabled) raski (S-1-5-21-1186863867-862580549-3210813173-1001 - Administrator - Enabled) => C:\Users\raski WDAGUtilityAccount (S-1-5-21-1186863867-862580549-3210813173-504 - Limited - Disabled) ==================== Centro de Seguridad ======================== (Si una entrada es incluida en el fixlist, será eliminada.) AV: Bitdefender Antivirus (Enabled - Out of date) {BAD274F4-FA00-8560-1CDE-6C830442BEFA} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Bitdefender Antispyware (Enabled - Up to date) {B5763A99-8435-6D40-83EB-2CA97758A9A5} FW: Bitdefender Cortafuego (Disabled) {82E9F5D1-B06F-8438-3781-C5B6FA91F981} ==================== Programas instalados ====================== (Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.) 64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden Adobe Connect (HKU\S-1-5-21-1186863867-862580549-3210813173-1001\...\Adobe Connect App) (Version: 2020.1.5.32 - Adobe Systems Inc.) Adobe Flash Player 10 ActiveX (HKLM-x32\...\{B7B3E9B3-FB14-4927-894B-E9124509AF5A}) (Version: 10.0.32.18 - Adobe Systems, Inc.) Adobe Photoshop CC 2019 (HKLM-x32\...\PHSP_20_0_3) (Version: 20.0.3 - Adobe Systems Incorporated) Amazon Photos (HKU\S-1-5-21-1186863867-862580549-3210813173-1002\...\Amazon Photos) (Version: 7.9.0 - Amazon.com, Inc.) Backup and Sync from Google (HKLM\...\{3CBE1074-3A4F-4BA6-95E3-7A660B54FE33}) (Version: 3.55.3625.9414 - Google, Inc.) Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 24.0.1.143 - Bitdefender) Bitdefender Total Security (HKLM\...\Bitdefender) (Version: 24.0.6.31 - Bitdefender) Bitdefender VPN (HKLM\...\Bitdefender VPN) (Version: 25.0.1.25 - Bitdefender) CCleaner (HKLM\...\CCleaner) (Version: 5.81 - Piriform) Cisco AnyConnect Diagnostics and Reporting Tool (HKLM-x32\...\{BC32F933-5365-43A8-8174-D469249D5A90}) (Version: 4.9.04053 - Cisco Systems, Inc.) Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 4.9.04053 - Cisco Systems, Inc.) Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\{39CCD15F-6D82-4D13-8495-69B7C501B6B5}) (Version: 4.9.04053 - Cisco Systems, Inc.) Hidden Cisco Webex Meetings (HKU\S-1-5-21-1186863867-862580549-3210813173-1001\...\ActiveTouchMeetingClient) (Version: 40.2.4 - Cisco Webex LLC) Desinstalar impresora EPSON L120 Series (HKLM\...\EPSON L120 Series) (Version: - SEIKO EPSON Corporation) Diseñador etiquetas 2.0 (HKLM-x32\...\ST6UNST #1) (Version: - ) Doodly (HKU\S-1-5-21-1186863867-862580549-3210813173-1002\...\Doodly) (Version: 2.4.13 - Bryxen Software) Dropbox (HKLM-x32\...\Dropbox) (Version: 124.4.4912 - Dropbox, Inc.) Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.459.1 - Dropbox, Inc.) Hidden Epson Software Updater (HKLM-x32\...\{28C66F35-69BF-4376-BC80-4D5F4808FF3C}) (Version: 4.6.1 - Seiko Epson Corporation) Free MP3 Cutter Joiner 11.0 (HKLM-x32\...\{7473B9D6-6A3E-42DC-9E08-FBF419B3CC5E}}_is1) (Version: 11.0 - DVDVideoMedia, Inc.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 91.0.4472.106 - Google LLC) HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP) HP Deskjet All-In-One Software (HKLM\...\{2CB8566A-8EA6-417A-BAB1-1B10A88C79BB}) (Version: 14.0 - HP) HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP) HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) Lenovo App Explorer (HKU\S-1-5-21-1186863867-862580549-3210813173-1001\...\Host App Service) (Version: 0.273.4.172 - SweetLabs for Lenovo) <==== ATENCIÓN Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 3.7.19.0 - Lenovo Group Ltd.) Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes) Microsoft 365 - es-es (HKLM\...\o365homepremretail - es-es) (Version: 16.0.14026.20270 - Microsoft Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 91.0.864.48 - Microsoft Corporation) Microsoft Office Profesional Plus 2016 - es-es (HKLM\...\ProPlusRetail - es-es) (Version: 16.0.14026.20270 - Microsoft Corporation) Microsoft Office Profesional Plus 2019 - es-es (HKLM\...\ProPlus2019Retail - es-es) (Version: 16.0.14026.20270 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1186863867-862580549-3210813173-1001\...\OneDriveSetup.exe) (Version: 21.099.0516.0003 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1186863867-862580549-3210813173-1002\...\OneDriveSetup.exe) (Version: 21.099.0516.0003 - Microsoft Corporation) Microsoft Teams (HKU\S-1-5-21-1186863867-862580549-3210813173-1001\...\Teams) (Version: 1.4.00.11161 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{E5A95BC5-81DF-4F0C-B910-B59DD012F037}) (Version: 2.81.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable - x64 8.0.61000 (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 - Корпорация Майкрософт) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{49e969a1-2990-464d-92b5-25f6f34573c6}) (Version: 12.0.40664.0 - Корпорация Майкрософт) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{d2c8df0e-f15d-4426-9e51-f13f329f9cb4}) (Version: 12.0.40664.0 - Корпорация Майкрософт) Microsoft Visual C++ 2017 Redistributable (x64) - 14.20.27305 (HKLM-x32\...\{623911de-3905-419c-826f-ddc168c6df55}) (Version: 14.20.27305.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x86) - 14.20.27305 (HKLM-x32\...\{d9671869-e224-4016-b780-a08239895ec1}) (Version: 14.20.27305.0 - Microsoft Corporation) MP3 Audio Splitter Joiner 2.00 (HKLM-x32\...\MP3 Audio Splitter Joiner_is1) (Version: - ) MyHarmony (HKLM-x32\...\{2AD8F8A1-ECE5-4890-BCC2-B4396370A0D4}) (Version: 1.0.308 - Logitech) Nitro Pro (HKLM\...\{0C49089A-8FF5-4BCE-8F8E-FB6E5F5BF3CD}) (Version: 13.40.0.811 - Nitro) OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14026.20270 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14026.20246 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14026.20270 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0C0A-0000-0000000FF1CE}) (Version: 16.0.14026.20246 - Microsoft Corporation) Hidden Opera Stable 76.0.4017.177 (HKU\S-1-5-21-1186863867-862580549-3210813173-1001\...\Opera 76.0.4017.177) (Version: 76.0.4017.177 - Opera Software) Opera Stable 76.0.4017.177 (HKU\S-1-5-21-1186863867-862580549-3210813173-1002\...\Opera 76.0.4017.177) (Version: 76.0.4017.177 - Opera Software) PhotoScape (HKLM-x32\...\PhotoScape) (Version: - ) Revo Uninstaller Pro 4.2.3 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 4.2.3 - VS Revo Group, Ltd.) Seed4.Me VPN 1.0.64 (HKLM\...\Seed4.Me VPN) (Version: 1.0.64 - Seed4.me) Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{3BAE4496-6F6C-4330-A8AA-B93D3D346FA5}) (Version: 2.53.0.0 - Microsoft Corporation) UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden uTorrent Web (HKU\S-1-5-21-1186863867-862580549-3210813173-1001\...\utweb) (Version: 1.0.6 - BitTorrent, Inc.) WebView2 Runtime de Microsoft Edge (HKLM-x32\...\Microsoft EdgeWebView) (Version: 91.0.864.48 - Microsoft Corporation) Windscribe (HKLM-x32\...\{fa690e90-ddb0-4f0c-b3f1-136c084e5fc7}_is1) (Version: 1.83 Build 20 - Windscribe Limited) WinRAR 5.90 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH) Zoom (HKU\S-1-5-21-1186863867-862580549-3210813173-1001\...\ZoomUMX) (Version: 5.5.4 (13142.0301) - Zoom Video Communications, Inc.) Zoom (HKU\S-1-5-21-1186863867-862580549-3210813173-1002\...\ZoomUMX) (Version: 5.4.7 (59784.1220) - Zoom Video Communications, Inc.) Packages: ========= AMD Radeon™ Settings Lite -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.59462344778C5_10.19.10006.0_x64__0a9344xs7nr4m [2021-04-18] (Advanced Micro Devices Inc.) Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.2040.2.0_x86__kgqvnymyfvs32 [2021-06-18] (king.com) Complemento de motor multimedia para Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-02-08] (Microsoft Corporation) Cooking Fever -> C:\Program Files\WindowsApps\NORDCURRENT.COOKINGFEVER_12.0.2.0_x86__m9bz608c1b9ra [2021-04-17] (Nordcurrent) Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.8.1108.0_x64__rz1tebttyb220 [2021-06-02] (Dolby Laboratories) Dolby Audio -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAudio_3.20402.409.0_x64__rz1tebttyb220 [2019-07-17] (Dolby Laboratories) Fitbit Coach -> C:\Program Files\WindowsApps\Fitbit.FitbitCoach_4.4.133.0_x64__6mqt6hf9g46tw [2019-03-19] (Fitbit) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_127.1.115.0_x64__v10z8vjag6ke6 [2021-05-23] (HP Inc.) Lenovo Pen Settings -> C:\Program Files\WindowsApps\WacomTechnologyCorp.157535B83C264_7.7.29.0_neutral__ss941bf8mfs8a [2021-04-24] (Wacom Technology Corp.) Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2105.16.0_x64__k1h2ywk1493x8 [2021-06-18] (LENOVO INC.) LenovoUtility -> C:\Program Files\WindowsApps\E0469640.LenovoUtility_3.2.1.0_x64__5grkq8ppsgwt4 [2021-01-27] (LENOVO INC) [Startup Task] LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2019-03-19] (LinkedIn) Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.5310.0_x64__8wekyb3d8bbwe [2021-06-04] (Microsoft Studios) [MS Ad] PDF Reader - Visualizar, Anotar, Compartir -> C:\Program Files\WindowsApps\0D9A1B2D.PDFReaderUWP_1.14.10.0_x64__jhretta7p24aw [2021-05-26] (Kdan Mobile Software Ltd.) Phototastic Collage -> C:\Program Files\WindowsApps\ThumbmunkeysLtd.PhototasticCollage_3.27.1.0_x64__nfy108tqq3p12 [2021-02-25] (Thumbmunkeys Ltd) Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.3.180.0_x64__dt26b99r8h8gj [2019-07-26] (Realtek Semiconductor Corp) ==================== Personalizado CLSID (Lista blanca): ============== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) CustomCLSID: HKU\S-1-5-21-1186863867-862580549-3210813173-1001_Classes\CLSID\{1019ADC7-17CB-4489-AFD5-6642C7400ACE}\localserver32 -> C:\Users\raski\AppData\Local\Webex\Webex\Applications\ptOIEx64.exe (Cisco WebEx LLC -> Cisco WebEx LLC) CustomCLSID: HKU\S-1-5-21-1186863867-862580549-3210813173-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\raski\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.21063.3\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1186863867-862580549-3210813173-1001_Classes\CLSID\{B88EA0D5-2CB6-6B66-0515-5F4CBA8916AC}\InprocServer32 -> no ruta de acceso de archivo CustomCLSID: HKU\S-1-5-21-1186863867-862580549-3210813173-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\raski\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll => Ningún archivo ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-03-12] (Google LLC -> Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-03-12] (Google LLC -> Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-03-12] (Google LLC -> Google) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Ningún archivo ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2021-03-12] (Google LLC -> Google) ContextMenuHandlers1: [Nitro.Pro.ShellExtension.Shim] -> {211B6F25-950C-49CD-AB86-A448EF85686A} => C:\Program Files\Common Files\Nitro\Nitro.Pro.ShellExtension.Shim.dll [2021-04-08] (Nitro Software, Inc. -> Nitro Software, Inc.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-02-03] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2021-03-12] (Google LLC -> Google) ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-02-03] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2019-03-29] (VS Revo Group Ltd. -> VS Revo Group) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Lista blanca) ==================== ==================== Accesos directos & WMI ======================== (Las entradas pueden ser listadas para ser restauradas o eliminadas.) ShortcutWithArgument: C:\Users\raski\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Eduardo - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1" ==================== Módulos cargados (Lista blanca) ============= 2012-09-15 00:17 - 2012-09-15 00:17 - 000032256 _____ (Hewlett-Packard Co.) [Archivo no firmado] C:\Program Files (x86)\HP\Digital Imaging\bin\hpotra08.rsc 2011-04-29 11:34 - 2011-04-29 11:34 - 000954880 _____ (Hewlett-Packard Co.) [Archivo no firmado] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqsem08.rsc 2011-04-29 11:34 - 2011-04-29 11:34 - 000012288 _____ (Hewlett-Packard Co.) [Archivo no firmado] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqstp08.rsc 2011-04-29 19:08 - 2011-04-29 19:08 - 000048128 _____ (Hewlett-Packard Co.) [Archivo no firmado] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.rsc 2010-08-06 11:15 - 2010-08-06 11:15 - 000071680 _____ (Hewlett-Packard) [Archivo no firmado] c:\windows\system32\hpzinw12.dll 2010-08-06 11:15 - 2010-08-06 11:15 - 000089600 _____ (Hewlett-Packard) [Archivo no firmado] c:\windows\system32\hpzipm12.dll 2010-08-06 11:15 - 2010-08-06 11:15 - 000054784 _____ (Hewlett-Packard) [Archivo no firmado] C:\WINDOWS\SYSTEM32\hpzipr12.dll 2021-04-19 17:35 - 2020-05-30 14:58 - 001280000 _____ (Robert Simpson, et al.) [Archivo no firmado] C:\ProgramData\Lenovo\iMController\Plugins\GenericMessagingPlugin\x86\x86\SQLite.Interop.dll 2021-05-31 08:41 - 2020-11-03 05:08 - 000954864 _____ (SQLite Development Team) [Archivo no firmado] C:\ProgramData\Lenovo\iMController\Plugins\LenovoWiFiSecurityPlugin\x86\x86\e_sqlite3.dll ==================== Alternate Data Streams (Lista blanca) ======== ==================== Modo Seguro (Lista blanca) ================== ==================== Asociación (Lista blanca) ================= ==================== Internet Explorer (Lista blanca) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-1186863867-862580549-3210813173-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10454__191222 HKU\S-1-5-21-1186863867-862580549-3210813173-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE HKU\S-1-5-21-1186863867-862580549-3210813173-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/ HKU\S-1-5-21-1186863867-862580549-3210813173-1002\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-1186863867-862580549-3210813173-1002\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/ SearchScopes: HKU\S-1-5-21-1186863867-862580549-3210813173-1001 -> DefaultScope {E9A44917-B867-4A95-B211-F5C340BD7783} URL = SearchScopes: HKU\S-1-5-21-1186863867-862580549-3210813173-1001 -> {E9A44917-B867-4A95-B211-F5C340BD7783} URL = SearchScopes: HKU\S-1-5-21-1186863867-862580549-3210813173-1002 -> DefaultScope {E9A44917-B867-4A95-B211-F5C340BD7783} URL = SearchScopes: HKU\S-1-5-21-1186863867-862580549-3210813173-1002 -> {E9A44917-B867-4A95-B211-F5C340BD7783} URL = BHO: Bitdefender Trackers Blocking -> {159ff5d5-55f1-4d2f-b706-767a55f77abb} -> C:\Program Files\Bitdefender\Bitdefender Security\bdtbie.dll [2021-05-18] (Bitdefender SRL -> Bitdefender) BHO: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2021-05-18] (Bitdefender SRL -> Bitdefender) BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-05-27] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Bitdefender Trackers Blocking -> {159ff5d5-55f1-4d2f-b706-767a55f77abb} -> C:\Program Files\Bitdefender\Bitdefender Security\antispam32\bdtbie.dll [2021-05-18] (Bitdefender SRL -> Bitdefender) BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2021-05-18] (Bitdefender SRL -> Bitdefender) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2021-05-27] (Microsoft Corporation -> Microsoft Corporation) Toolbar: HKLM - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2021-05-18] (Bitdefender SRL -> Bitdefender) Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2021-05-18] (Bitdefender SRL -> Bitdefender) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-27] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-27] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-27] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-27] (Microsoft Corporation -> Microsoft Corporation) (Si una entrada es incluida en el fixlist, será eliminada del registro.) IE trusted site: HKU\S-1-5-21-1186863867-862580549-3210813173-1001\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-1186863867-862580549-3210813173-1001\...\sharepoint.com -> hxxps://telcelmx-files.sharepoint.com IE trusted site: HKU\S-1-5-21-1186863867-862580549-3210813173-1001\...\webcompanion.com -> hxxp://webcompanion.com IE trusted site: HKU\S-1-5-21-1186863867-862580549-3210813173-1002\...\localhost -> localhost ==================== Hosts contenido: ========================= (Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.) 2021-06-12 16:02 - 2021-06-12 16:02 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Otras Áreas =========================== (Actualmente no existe una corrección automática para esta sección.) HKU\S-1-5-21-1186863867-862580549-3210813173-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Lenovo\LenovoWallPaper.jpg HKU\S-1-5-21-1186863867-862580549-3210813173-1002\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg DNS Servers: 192.168.1.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Firewall de Windows está habilitado. ==================== MSCONFIG/TASK MANAGER elementos deshabilitados == (Si una entrada es incluida en el fixlist, será eliminada.) HKU\S-1-5-21-1186863867-862580549-3210813173-1001\...\StartupApproved\Run: => "Steam" ==================== Reglas de firewall (Lista blanca) ================ (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) FirewallRules: [{F4709695-E9F1-41D0-8389-12A92F73601E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{384B7016-1104-4A20-9E68-FA219CFF76C6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{57A46D3D-00AC-48D7-A85F-CB25F2262FBB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{7FCC8CEC-E503-4A89-90D9-05AD1E0F3ED0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [UDP Query User{8A9FF9B3-209B-4833-969C-70E45F780D97}C:\users\e_eze\appdata\local\programs\opera\73.0.3856.284\opera.exe] => (Block) C:\users\e_eze\appdata\local\programs\opera\73.0.3856.284\opera.exe => Ningún archivo FirewallRules: [TCP Query User{7A9D8F35-02E8-4A15-B70B-4637EAD0AEAF}C:\users\e_eze\appdata\local\programs\opera\73.0.3856.284\opera.exe] => (Block) C:\users\e_eze\appdata\local\programs\opera\73.0.3856.284\opera.exe => Ningún archivo FirewallRules: [{9E93997C-E128-44FC-9403-88142C62529C}] => (Allow) C:\Users\e_eze\AppData\Roaming\Zoom\bin\airhost.exe => Ningún archivo FirewallRules: [{E23DB7E2-3940-40A3-8B75-750F0BCFF213}] => (Allow) C:\Users\e_eze\AppData\Roaming\Zoom\bin\airhost.exe => Ningún archivo FirewallRules: [{EC9D1AB3-E513-4648-89C6-351C75C8E308}] => (Allow) C:\Users\e_eze\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{984E7F6E-836C-4410-81E7-E697B8300CA8}] => (Allow) C:\Program Files\Seed4.Me VPN\bin\Seed4.Me_VPN.exe (S4M Tech, Inc. -> Seed4.Me) FirewallRules: [{D9436EEB-2BB7-43E2-B3B1-E59AEB7FF208}] => (Allow) C:\Users\raski\AppData\Roaming\uTorrent Web\utweb.exe => Ningún archivo FirewallRules: [{26F9AF94-EFF3-488C-93DE-847D0E49FB18}] => (Allow) C:\Users\raski\AppData\Roaming\uTorrent Web\utweb.exe => Ningún archivo FirewallRules: [{2B02ADF5-F6C7-4618-ADC3-BCDFDB799D5B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Football Manager 2019 Demo\fm.exe (Sports Interactive) [Archivo no firmado] FirewallRules: [{044E12F0-FD4D-404C-8854-7706F8B53D57}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Football Manager 2019 Demo\fm.exe (Sports Interactive) [Archivo no firmado] FirewallRules: [{3D4E849F-3E13-46C5-BA2F-21B85503E9A1}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Ningún archivo FirewallRules: [{BD4E48FE-87F0-4F3E-9E16-673441B43E40}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Ningún archivo FirewallRules: [UDP Query User{22A35A1D-008E-4035-A92A-5402C51BACFE}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited) FirewallRules: [TCP Query User{56DFE826-E673-429D-91AF-05983497DEBB}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited) FirewallRules: [{57DA658E-A52A-400B-8E53-A22F6EA56106}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{90BCF14D-359E-4D93-A1C8-F6DAD856332A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{D3870020-D5F0-4392-A03E-98D92D44F997}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe => Ningún archivo FirewallRules: [{1C0C6077-688C-4D86-A107-8E970218DF0F}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe => Ningún archivo FirewallRules: [{78CDBD96-883D-4755-B572-4A7831D20D08}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.11901.20218.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{5FF86E68-DBD7-4E3B-ADAB-DF0348D16E64}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{E4EF8F3B-4EFF-4CDD-A276-3D2C49BEBF00}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{93D0DABD-5E0D-472C-9904-4C83A1617674}C:\users\e_eze\appdata\local\programs\opera\75.0.3969.218\opera.exe] => (Block) C:\users\e_eze\appdata\local\programs\opera\75.0.3969.218\opera.exe => Ningún archivo FirewallRules: [UDP Query User{37C31EF6-A0CF-462A-903E-4372CD82131E}C:\users\e_eze\appdata\local\programs\opera\75.0.3969.218\opera.exe] => (Block) C:\users\e_eze\appdata\local\programs\opera\75.0.3969.218\opera.exe => Ningún archivo FirewallRules: [TCP Query User{B0423948-E99A-4758-829E-649B8776C3B8}C:\users\e_eze\appdata\local\programs\opera\75.0.3969.243\opera.exe] => (Block) C:\users\e_eze\appdata\local\programs\opera\75.0.3969.243\opera.exe => Ningún archivo FirewallRules: [UDP Query User{9FF03575-C4A6-4A40-95F1-814BB24B0C5B}C:\users\e_eze\appdata\local\programs\opera\75.0.3969.243\opera.exe] => (Block) C:\users\e_eze\appdata\local\programs\opera\75.0.3969.243\opera.exe => Ningún archivo FirewallRules: [{1FCE7E38-501B-4E9A-9AB6-5367E715392E}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{493E9E88-C13E-4BCE-ABB9-1EC2489A177C}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{9637EEE8-548F-42F2-812E-AACD67E0C04E}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{97BD34C3-60F8-4A7F-A63D-2013DDEE4C68}] => (Allow) C:\Users\raski\AppData\Local\Programs\Opera\76.0.4017.154\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{41283FB6-4A28-4608-A20F-ED3F12F2E21A}] => (Allow) C:\Users\raski\AppData\Local\Programs\Opera\76.0.4017.177\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{A603B640-C30B-464D-8605-089F4E26CDA7}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.) FirewallRules: [{5CEE8B9B-BC0D-413C-98F7-EDE2A5A1F158}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.161.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{D41D1FA1-C711-453B-BF33-519EB42D0FC3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.161.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{A1FFE762-F87D-40E5-9E65-881AC7A18DA3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.161.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{C5DCB928-998C-4EBC-A187-33CE4440826D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.161.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{A98D4542-F4E6-4BF9-8DA3-CB76BADD9F8F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.161.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{3D67CF80-22DA-4BC6-BCCA-AA5765B8AE1F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.161.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{02D518E8-5F29-4808-B97D-97641AF67A7B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.161.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{C30973CD-DA22-48A3-B57F-C3B4CE26A128}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.161.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{8200C4BA-EA2B-4EB7-A59B-DB621A2133DB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{CE12C7AC-F225-4BCE-934F-FC9140EAEAD0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{D53DF394-B91E-496F-B1BD-D4209F76B8D8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{E44195DC-B8FF-4215-9AA7-0A6A2DDFAD69}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{48D77ADB-8328-452D-9BA1-9BD97083F88D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{1746DFFA-85E2-4062-A146-3BC4D4D457A8}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\91.0.864.48\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) ==================== Puntos de Restauración ========================= ATENCIÓN: Restaurar Sistema está deshabilitado (Total:118 GB) (Free:6.06 GB) (5%) ==================== Dispositivos defectuosos en el Administrador de dispositivos ============ Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64 Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64 Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Cisco Systems Service: vpnva Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Errores del registro de eventos: ======================== Errores de aplicación: ================== Error: (06/15/2021 10:06:29 AM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: DESKTOP-74OH7S8) Description: Windows no puede cargar el archivo DLL del contador extensible "C:\WINDOWS\system32\sysmain.dll" (código de error de Win32 126). Error: (06/15/2021 10:06:29 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-74OH7S8) Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado. Error: (06/14/2021 02:14:40 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nombre de la aplicación con errores: CCleaner64.exe, versión: 5.81.0.8895, marca de tiempo: 0x60be2797 Nombre del módulo con errores: CCleaner64.exe, versión: 5.81.0.8895, marca de tiempo: 0x60be2797 Código de excepción: 0xc0000409 Desplazamiento de errores: 0x0000000000c4cc35 Identificador del proceso con errores: 0x9dc Hora de inicio de la aplicación con errores: 0x01d76151837758d8 Ruta de acceso de la aplicación con errores: C:\Program Files\CCleaner\CCleaner64.exe Ruta de acceso del módulo con errores: C:\Program Files\CCleaner\CCleaner64.exe Identificador del informe: a4ee8ed4-ec38-435f-8f34-bfb69d9bb21a Nombre completo del paquete con errores: Identificador de aplicación relativa del paquete con errores: Error: (06/14/2021 02:14:36 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: DESKTOP-74OH7S8) Description: Windows no puede cargar el archivo DLL del contador extensible "C:\WINDOWS\system32\sysmain.dll" (código de error de Win32 126). Error: (06/14/2021 02:14:36 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-74OH7S8) Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado. Error: (06/14/2021 02:12:00 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina CoCreateInstance. HR = 0x8007045b, Se está cerrando el sistema. . Error: (06/14/2021 02:12:00 PM) (Source: VSS) (EventID: 13) (User: ) Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} y el nombre CEventSystem no puede iniciarse. [0x8007045b, Se está cerrando el sistema. ] Error: (06/14/2021 02:04:51 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: DESKTOP-74OH7S8) Description: Windows no puede cargar el archivo DLL del contador extensible "C:\WINDOWS\system32\sysmain.dll" (código de error de Win32 126). Errores del sistema: ============= Error: (06/18/2021 10:59:31 AM) (Source: BugCheck) (EventID: 1001) (User: ) Description: El equipo se reinició después de una comprobación de errores. La comprobación de errores fue: 0x00000116 (0xffffbd0bcca5c010, 0xfffff80345320714, 0x0000000000000000, 0x000000000000000d). Se guardó un volcado en: C:\WINDOWS\MEMORY.DMP. Id. de informe: 00000000-0000-0000-0000-000000000000. Error: (06/18/2021 10:59:31 AM) (Source: BugCheck) (EventID: 1005) (User: ) Description: No se puede crear un archivo de mini volcado a partir del archivo de volcado completo. Error: (06/18/2021 10:59:13 AM) (Source: volmgr) (EventID: 161) (User: ) Description: No se pudo crear el archivo de volcado debido a un error durante la creación del volcado. Error: (06/18/2021 10:59:13 AM) (Source: volmgr) (EventID: 161) (User: ) Description: No se pudo crear el archivo de volcado debido a un error durante la creación del volcado. Error: (06/18/2021 10:59:21 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: El cierre anterior del sistema a las 10:58:27 del ‎18/‎06/‎2021 resultó inesperado. Error: (06/16/2021 01:22:42 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: El servicio LenovoVantageService se terminó de manera inesperada. Esto ha sucedido 1 veces. Error: (06/15/2021 09:45:43 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-74OH7S8) Description: El servidor microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca no se registró con DCOM dentro del tiempo de espera requerido. Error: (06/14/2021 02:08:51 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: El servicio AppXSvc depende del servicio StateRepository, el cual no pudo iniciarse debido al siguiente error: La operación se completó correctamente. CodeIntegrity: =============== Date: 2021-04-22 10:32:13 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system. ==================== Información de la memoria =========================== BIOS: LENOVO 8MCN52WW 04/16/2019 Placa base: LENOVO LNVNB161216 Procesador: AMD Ryzen 5 2500U with Radeon Vega Mobile Gfx Porcentaje de memoria en uso: 57% RAM física total: 7734.58 MB RAM física disponible: 3300.52 MB Virtual total: 13012.07 MB Virtual disponible: 8302.93 MB ==================== Unidades ================================ Drive c: (Windows-SSD) (Fixed) (Total:118 GB) (Free:6.06 GB) NTFS \\?\Volume{c3c63401-ab23-4135-93d3-de34d14bd887}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.53 GB) NTFS \\?\Volume{a44b7e09-731a-4deb-9daf-f079c7b165a8}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.21 GB) FAT32 ==================== MBR & Tabla de particiones ==================== ========================================================== Disk: 0 (Size: 119.2 GB) (Disk ID: 68F1C6A9) Partition: GPT. ==================== Final de Addition.txt ======================= [/CODE]