Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 03-10-2021 Ejecutado por Ana (03-10-2021 12:25:17) Ejecutado desde C:\Users\Ana\Downloads Windows 10 Pro for Workstations Versión 21H1 19043.1237 (X64) (2021-01-12 12:53:01) Modo de Inicio: Normal ========================================================== ==================== Cuentas: ============================= (Si una entrada es incluida en el fixlist, será eliminada.) Administrador (S-1-5-21-1471572662-1352637887-3121971532-500 - Administrator - Disabled) Ana (S-1-5-21-1471572662-1352637887-3121971532-1001 - Administrator - Enabled) => C:\Users\Ana DefaultAccount (S-1-5-21-1471572662-1352637887-3121971532-503 - Limited - Disabled) Invitado (S-1-5-21-1471572662-1352637887-3121971532-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-1471572662-1352637887-3121971532-504 - Limited - Disabled) ==================== Centro de Seguridad ======================== (Si una entrada es incluida en el fixlist, será eliminada.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Kaspersky Security Cloud (Enabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23} FW: Kaspersky Security Cloud (Disabled) {774D7037-0984-41B0-3A87-5E88E680AD58} ==================== Programas instalados ====================== (Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.) 7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov) Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 21.007.20095 - Adobe Systems Incorporated) Aegisub 3.2.2 (HKLM-x32\...\{24BC8B57-716C-444F-B46B-A3349B9164C5}_is1) (Version: 3.2.2 - Aegisub Team) Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.5.1 - Sereby Corporation) Any Video Converter 6.3.1 (HKLM-x32\...\Any Video Converter) (Version: 6.3.1 - Anvsoft) ASUS GPU TweakII (HKLM-x32\...\InstallShield_{2914BAB6-CA16-4B5A-BF41-2466656C7040}) (Version: 2.1.3.2 - ASUSTek COMPUTER INC.) ASUS Product Register Program (HKLM-x32\...\{54716EA9-F8B4-41E0-801B-9909164F2024}) (Version: 1.1.002 - ASUSTek Computer Inc.) Avidemux 2.7 - 32 bits (32-bit) (HKLM-x32\...\Avidemux 2.7 - 32 bits) (Version: 2.7.4.190815 - ) Carmen Sandiego - Buscala en el Tiempo (HKLM-x32\...\{A92DF21B-A5A8-4E5F-BEE6-6CD335AB7DDC}_is1) (Version: Clásicos Básicos - ) CCleaner (HKLM\...\CCleaner) (Version: 5.85 - Piriform) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.14.0.1663 - Disc Soft Ltd) Eines de correcció del Microsoft Office 2013: català (HKLM\...\{90150000-001F-0403-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Excel (HKU\S-1-5-21-1471572662-1352637887-3121971532-1001\...\1fc5b090eab9aa41f8a2f5987367e6da) (Version: 1.0 - Excel) Ferramentas de verificación de Microsoft Office 2013 - Galego (HKLM\...\{90150000-001F-0456-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden ffdshow v1.3.4534 [2015-08-09] (HKLM-x32\...\ffdshow_is1) (Version: 1.3.4534.0 - ) FormatFactory 5.4.5.1 (HKLM-x32\...\FormatFactory) (Version: 5.4.5.1 - Free Time) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 94.0.4606.61 - Google LLC) Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.) HandBrake 1.3.3 (HKLM-x32\...\HandBrake) (Version: 1.3.3 - ) Java 8 Update 251 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180251F0}) (Version: 8.0.2510.8 - Oracle Corporation) Java 8 Update 251 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180251F0}) (Version: 8.0.2510.8 - Oracle Corporation) JDownloader 2 (HKLM-x32\...\jdownloader2) (Version: 2.0 - AppWork GmbH) Kaspersky Password Manager (HKLM-x32\...\{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab) Hidden Kaspersky Password Manager (HKLM-x32\...\InstallWIX_{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab) Kaspersky Security Cloud (HKLM-x32\...\{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky) Hidden Kaspersky Security Cloud (HKLM-x32\...\InstallWIX_{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 94.0.992.38 - Microsoft Corporation) Microsoft Office Profesional Plus 2019 - es-es (HKLM\...\ProPlus2019Retail - es-es) (Version: 16.0.14430.20234 - Microsoft Corporation) Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1471572662-1352637887-3121971532-1001\...\OneDriveSetup.exe) (Version: 21.170.0822.0002 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61135 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61135 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61135 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61135 - Microsoft Corporation) Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61135 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61135 - Microsoft Corporation) Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61135 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61135 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{5c75eda4-d029-43bf-a70b-a73d380f52ee}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{4ffaf7b8-a84a-4813-840c-8b1f1343ae54}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{dd1e9bde-2ad6-4e92-8c07-7d4723eab8b8}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30133 (HKLM-x32\...\{295d1583-fdb9-414b-a4c8-da539362a26b}) (Version: 14.29.30133.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation) Microsoft Visual J# 2.0 Redistributable Package - SE (x64) (HKLM\...\Microsoft Visual J# 2.0 Redistributable Package - SE (x64)) (Version: - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) MKVToolNix 52.0.0 (64-bit) (HKLM-x32\...\MKVToolNix) (Version: 52.0.0 - Moritz Bunkus) Movavi Video Editor Plus 21.0.1 (HKLM\...\Movavi Video Editor Plus_is1) (Version: 21.0.1 - lrepacks.ru) NVIDIA Controlador de audio HD 1.3.38.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.60 - NVIDIA Corporation) NVIDIA Controlador de gráficos 471.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 471.11 - NVIDIA Corporation) NVIDIA FrameView SDK 1.1.4923.29968894 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29968894 - NVIDIA Corporation) NVIDIA GeForce Experience 3.23.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.23.0.74 - NVIDIA Corporation) NVIDIA Software del sistema PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20234 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20234 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0C0A-1000-0000000FF1CE}) (Version: 16.0.14430.20234 - Microsoft Corporation) Hidden Opera Stable 79.0.4143.50 (HKU\S-1-5-21-1471572662-1352637887-3121971532-1001\...\Opera 79.0.4143.50) (Version: 79.0.4143.50 - Opera Software) Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Outlook (HKU\S-1-5-21-1471572662-1352637887-3121971532-1001\...\6b0f23e57a39ebfbf2814acb1a24293d) (Version: 1.0 - Outlook) Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x64) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - ESN) (Version: 10.0.50903 - Microsoft Corporation) PowerPoint (HKU\S-1-5-21-1471572662-1352637887-3121971532-1001\...\319814cb56b667dff88f54e08be8f51f) (Version: 1.0 - PowerPoint) Python 3.8.5 (32-bit) (HKU\S-1-5-21-1471572662-1352637887-3121971532-1001\...\{44a59e57-34e2-4d86-93ba-a2588bfac760}) (Version: 3.8.5150.0 - Python Software Foundation) Python 3.8.5 Core Interpreter (32-bit) (HKLM-x32\...\{31F7FCA7-1F15-48FD-BFB9-91FE58FC2F07}) (Version: 3.8.5150.0 - Python Software Foundation) Hidden Python 3.8.5 Development Libraries (32-bit) (HKLM-x32\...\{657AEF25-7BC3-4E93-A08C-ECD14E8A74AE}) (Version: 3.8.5150.0 - Python Software Foundation) Hidden Python 3.8.5 Documentation (32-bit) (HKLM-x32\...\{F7A293EB-21B8-45DE-85A5-8ADEB68B9EFB}) (Version: 3.8.5150.0 - Python Software Foundation) Hidden Python 3.8.5 Executables (32-bit) (HKLM-x32\...\{F6156224-C882-453A-9046-EFCD31982E68}) (Version: 3.8.5150.0 - Python Software Foundation) Hidden Python 3.8.5 pip Bootstrap (32-bit) (HKLM-x32\...\{71C0D67F-EF42-4C5C-A2AE-04FD8B38AB1C}) (Version: 3.8.5150.0 - Python Software Foundation) Hidden Python 3.8.5 Standard Library (32-bit) (HKLM-x32\...\{4D147A72-5C01-47B2-8789-1D1969F6AC32}) (Version: 3.8.5150.0 - Python Software Foundation) Hidden Python 3.8.5 Tcl/Tk Support (32-bit) (HKLM-x32\...\{653FBD26-2D1A-48C1-AAB1-0AB6F2A3749B}) (Version: 3.8.5150.0 - Python Software Foundation) Hidden Python 3.8.5 Test Suite (32-bit) (HKLM-x32\...\{DE45C740-8250-4A49-8B81-FE347C70E6BA}) (Version: 3.8.5150.0 - Python Software Foundation) Hidden Python 3.8.5 Utility Scripts (32-bit) (HKLM-x32\...\{9450D936-1E4F-44EF-A0D4-92C471229B98}) (Version: 3.8.5150.0 - Python Software Foundation) Hidden Python Launcher (HKLM-x32\...\{CEEAEA02-2472-4BF6-8994-52D6783F5575}) (Version: 3.8.7140.0 - Python Software Foundation) Revisores de Texto do Microsoft Office 2013 – Português do Brasil (HKLM\...\{90150000-001F-0416-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Revo Uninstaller 2.2.0 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.2.0 - VS Revo Group, Ltd.) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft) Sonic Adventure 2 versión 1.0 (HKLM-x32\...\{CFBDBDA2-0AD9-48D2-8CA2-80E3A4164054}_is1) (Version: 1.0 - MasterEGA, Inc.) SONIC ADVENTURE DX-Director's Cut (HKLM-x32\...\SONICADVDX) (Version: - ) Sonic Heroes versión Por takin (HKLM-x32\...\{D4680DAE-0EE9-4403-9067-4200D2ACBD4C}_is1) (Version: Por takin - Sega Corporation) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Subtitle Workshop 2.51 (HKLM-x32\...\SubtitleWorkshop) (Version: - ) Switch Sound File Converter (HKLM-x32\...\Switch) (Version: 9.00 - NCH Software) TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.18.5 - TeamViewer) TP-Link Archer T6E Driver (HKLM-x32\...\{F2CF3250-3769-431E-A808-056BFA917849}) (Version: 2.1.0 - TP-Link) Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft) Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft) Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-012B-0C0A-1000-0000000FF1CE}_Office15.PROPLUS_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft) VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN) Windows 10 Codec Pack 2.1.8 (HKLM-x32\...\Windows 10 - Codec Pack) (Version: 2.1.8 - Windows 10 Codec Pack) WinRAR 6.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.00.0 - win.rar GmbH) Word (HKU\S-1-5-21-1471572662-1352637887-3121971532-1001\...\1b837d0bf93d01407352736c91b7bf50) (Version: 1.0 - Word) XSplit Gamecaster (HKLM\...\{8FF5092C-AEE8-4FFB-B623-5E638016B188}) (Version: 4.0.1910.2401 - SplitmediaLabs) Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.7) (Version: 1.3.7 - Xvid Team) Zoom (HKU\S-1-5-21-1471572662-1352637887-3121971532-1001\...\ZoomUMX) (Version: 5.4.6 (59296.1207) - Zoom Video Communications, Inc.) Packages: ========= Complemento de Fotos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-14] (Microsoft Corporation) Complemento de motor del medio de Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-01-21] (Microsoft Corporation) Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_4.0.11030.0_x64__8wekyb3d8bbwe [2021-10-03] (Microsoft Studios) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.7290.0_x64__8wekyb3d8bbwe [2021-08-04] (Microsoft Studios) [MS Ad] Microsoft Sudoku -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSudoku_2.6.7221.0_x64__8wekyb3d8bbwe [2021-10-03] (Microsoft Studios) [MS Ad] NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-06-27] (NVIDIA Corp.) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.169.612.0_x86__zpdnekdrzrea0 [2021-10-01] (Spotify AB) [Startup Task] ==================== Personalizado CLSID (Lista blanca): ============== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Archivo no firmado] ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files\FormatFactory\ShellEx_108.dll [2020-08-04] (Free Time) [Archivo no firmado] ContextMenuHandlers1: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\shellex.dll [2021-05-01] (Kaspersky Lab JSC -> AO Kaspersky Lab) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2021-01-12] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers2: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\shellex.dll [2021-05-01] (Kaspersky Lab JSC -> AO Kaspersky Lab) ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2021-01-12] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Archivo no firmado] ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files\FormatFactory\ShellEx_108.dll [2020-08-04] (Free Time) [Archivo no firmado] ContextMenuHandlers4: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\shellex.dll [2021-05-01] (Kaspersky Lab JSC -> AO Kaspersky Lab) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_4a746d937e6a7240\nvshext.dll [2021-06-21] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Archivo no firmado] ContextMenuHandlers6: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\shellex.dll [2021-05-01] (Kaspersky Lab JSC -> AO Kaspersky Lab) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Lista blanca) ==================== (Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.) HKLM\...\Drivers32: [vidc.XVID] => C:\Windows\system32\xvidvfw.dll [251392 2019-12-28] () [Archivo no firmado] HKLM\...\Drivers32: [msacm.l3acm] => C:\Windows\SysWOW64\l3codecp.acm [189440 2019-12-07] (Microsoft Windows -> Fraunhofer Institut Integrierte Schaltungen IIS) HKLM\...\Drivers32: [vidc.xvid] => C:\Windows\SysWOW64\xvidvfw.dll [235520 2019-12-28] () [Archivo no firmado] HKLM\...\Drivers32: [vidc.x264] => C:\Windows\SysWOW64\x264vfw.dll [3850240 2017-07-30] (x264vfw project) [Archivo no firmado] HKLM\...\Drivers32: [msacm.divxa32] => C:\Windows\SysWOW64\DivXa32.acm [291408 2013-12-16] (Packed With Joy !) [Archivo no firmado] HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\SysWOW64\ff_vfw.dll [127488 2015-09-13] () [Archivo no firmado] ==================== Accesos directos & WMI ======================== (Las entradas pueden ser listadas para ser restauradas o eliminadas.) Shortcut: C:\Users\Ana\Desktop\Acceso juegos\Full Tilt Pinball.lnk -> D:\pin\Run.bat (Ningún archivo) ShortcutWithArgument: C:\Users\Ana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Excel.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=leffmjdabcgaflkikcefahmlgpodjkdm ShortcutWithArgument: C:\Users\Ana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=bjhmmnoficofgoiacjaajpkfndojknpb ShortcutWithArgument: C:\Users\Ana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=opfacbhaojodjaojgocnibmklknchehf ShortcutWithArgument: C:\Users\Ana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Word.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=hikhggiobiflkdfdgdajcfklmcibbopi ==================== Módulos cargados (Lista blanca) ============= 2021-01-12 11:06 - 2021-10-03 12:20 - 000025600 _____ () [Archivo no firmado] C:\Program Files (x86)\ASUS\AXSP\4.00.42\PEbiosinterface32.dll 2020-08-04 06:46 - 2020-08-04 06:46 - 000341504 _____ (Free Time) [Archivo no firmado] C:\Program Files\FormatFactory\ShellEx_108.dll 2021-09-13 22:50 - 2019-02-21 13:00 - 000078336 _____ (Igor Pavlov) [Archivo no firmado] C:\Program Files\7-Zip\7-zip.dll ==================== Alternate Data Streams (Lista blanca) ======== ==================== Modo Seguro (Lista blanca) ================== ==================== Asociación (Lista blanca) ================= ==================== Internet Explorer (Lista blanca) ========== BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2021-10-01] (Microsoft Corporation -> Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_251\bin\ssv.dll [2021-08-23] (Oracle America, Inc. -> Oracle Corporation) BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2021-01-12] (Google Inc -> Google Inc.) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation -> Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_251\bin\jp2ssv.dll [2021-08-23] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-10-01] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\ssv.dll [2021-08-23] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2021-01-12] (Google Inc -> Google Inc.) BHO-x32: Sin Nombre -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> Ningún archivo BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\jp2ssv.dll [2021-08-23] (Oracle America, Inc. -> Oracle Corporation) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2021-01-12] (Google Inc -> Google Inc.) Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2021-01-12] (Google Inc -> Google Inc.) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-01] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-01] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-01] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-01] (Microsoft Corporation -> Microsoft Corporation) Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-01] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-01] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-01] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-01] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts contenido: ========================= (Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.) 2019-12-07 06:14 - 2019-12-07 06:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts ==================== Otras Áreas =========================== (Actualmente no existe una corrección automática para esta sección.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR HKU\S-1-5-21-1471572662-1352637887-3121971532-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Ana\Downloads\african-sunset.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Firewall de Windows está habilitado. ==================== MSCONFIG/TASK MANAGER elementos deshabilitados == (Si una entrada es incluida en el fixlist, será eliminada.) HKLM\...\StartupApproved\Run: => "SecurityHealth" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKU\S-1-5-21-1471572662-1352637887-3121971532-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" HKU\S-1-5-21-1471572662-1352637887-3121971532-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1471572662-1352637887-3121971532-1001\...\StartupApproved\Run: => "Opera Browser Assistant" HKU\S-1-5-21-1471572662-1352637887-3121971532-1001\...\StartupApproved\Run: => "CCleanerBrowserAutoLaunch_AEC9171C86780CADDF2620BF3602DD5C" HKU\S-1-5-21-1471572662-1352637887-3121971532-1001\...\StartupApproved\Run: => "Steam" ==================== Reglas de firewall (Lista blanca) ================ (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) FirewallRules: [{92661562-0B06-4557-9735-30E5478A6C4C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{10B5AC86-DB8E-4125-9209-F66535D4AC14}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{FA0DE932-B90D-4689-9BD4-078FEB48E034}] => (Allow) C:\Users\Ana\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{0DF1410E-B7A3-46FA-A828-BA8DBF01B92B}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) FirewallRules: [{4748C616-2195-4EFF-84AB-D0E4F4517D37}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) FirewallRules: [{A4A6B42A-E9BE-443B-BC1C-68241086D8AF}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{D7350757-C22F-4D9C-963A-6A64C766C616}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{14868D3C-0784-4455-B9CF-C7C62D1CA8E2}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{DF84EFED-7129-40C4-AA58-4EAEF9BF1159}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{C8C6B099-5219-4ED2-871D-08B4AC1EB856}D:\utorrent.exe] => (Allow) D:\utorrent.exe () [Archivo no firmado] FirewallRules: [UDP Query User{EDF313EA-D668-4CA7-9DCD-FA9D96E495A6}D:\utorrent.exe] => (Allow) D:\utorrent.exe () [Archivo no firmado] FirewallRules: [{7430B2D3-45CB-404C-93B8-732A5EFE5463}] => (Allow) C:\Program Files\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [TCP Query User{9502004C-E1CB-4852-88E6-F8B0AF81B3F2}D:\qbittorrentportable\app\qbittorrent\qbittorrent.exe] => (Allow) D:\qbittorrentportable\app\qbittorrent\qbittorrent.exe () [Archivo no firmado] FirewallRules: [UDP Query User{12FD55E8-6726-4A39-B1E9-B4D4E2EC8CE0}D:\qbittorrentportable\app\qbittorrent\qbittorrent.exe] => (Allow) D:\qbittorrentportable\app\qbittorrent\qbittorrent.exe () [Archivo no firmado] FirewallRules: [{32857A1C-B95C-4D7B-86FE-15F4C450B58D}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{FA57CF9F-9E71-452D-806E-256DB7F5F7CD}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{6034ACE9-E913-4039-A6FF-4F4C841D9B1F}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{D3235897-869B-46D3-8815-44B67A6388BF}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{32A09A0D-8328-4192-B8B0-070E889DF1A2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{1D0BD081-1942-4006-BC6E-CB20D3BC0EEB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{35CD818D-8216-4614-86DF-0DD24A8A1AF0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{BBB399F1-3B4F-41E0-939F-162A12E82B0A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{29E91181-8B87-4C28-B4A1-1034197AF7CE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{271FE9D2-02CF-4CF5-B263-0E4D05F56958}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{5CC0D483-596B-4F6C-89C8-6D2FEF158E3B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{6A0FAAFF-8C67-4448-BC2E-5DD5CB42A99B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{FF10FAC4-B8FA-4922-A22B-07104BCE169F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{BEE1986C-7C7C-4D16-AB09-92B8DDFA514D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{410A86D9-D830-4E9A-9523-3BFB582637BF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{E83419E2-CD30-43BE-A30A-BB14FC8E68ED}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{19BE2C4A-3CE8-463C-BBFA-8D817345D58C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{1CA5D218-64CF-4651-BF39-E725FB201005}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{6ABFA5BA-645A-48A0-A744-FC4E4FCF9D05}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{4A3D536D-7953-4C7C-84DE-BC12BC5116E0}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{62BAFB4E-1D74-49B5-BAE7-D5B7FE162CD6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Super Bomberman R Online\SuperBombermanR_Online.exe () [Archivo no firmado] FirewallRules: [{DAF9797F-E905-406E-B92C-3C13BE0FCF59}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Super Bomberman R Online\SuperBombermanR_Online.exe () [Archivo no firmado] FirewallRules: [{2A67E02C-D6C2-4906-9A03-C9B54167D900}] => (Allow) D:\Steam\steamapps\common\Sonic & All-Stars Racing Transformed\ASN_App_PcDx9_Final.exe (SEGA EUROPE LIMITED -> ) FirewallRules: [{036E27E6-1316-4FB8-846A-1BEB35CA449F}] => (Allow) D:\Steam\steamapps\common\Sonic & All-Stars Racing Transformed\ASN_App_PcDx9_Final.exe (SEGA EUROPE LIMITED -> ) FirewallRules: [{7C797753-CA9A-41FC-8EDE-3B17EEEFBAE3}] => (Allow) D:\Steam\steamapps\common\Sonic & All-Stars Racing Transformed\Launcher.exe (SEGA EUROPE LIMITED -> ) FirewallRules: [{13907FDF-251F-4E24-AB7A-253101A3924B}] => (Allow) D:\Steam\steamapps\common\Sonic & All-Stars Racing Transformed\Launcher.exe (SEGA EUROPE LIMITED -> ) FirewallRules: [{973FE185-D6BD-4E86-89E2-569CF3E9AAEB}] => (Allow) D:\Steam\steamapps\common\Cuphead\Cuphead.exe () [Archivo no firmado] FirewallRules: [{717B8E8F-E214-40B9-8900-ACFC520FC10C}] => (Allow) D:\Steam\steamapps\common\Cuphead\Cuphead.exe () [Archivo no firmado] FirewallRules: [TCP Query User{05F83C79-B835-4438-99E0-4F9E9A772703}C:\users\ana\appdata\local\programs\opera\78.0.4093.231\opera.exe] => (Block) C:\users\ana\appdata\local\programs\opera\78.0.4093.231\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [UDP Query User{B8103A5B-4ADE-4E56-90B1-212C3F00FFE4}C:\users\ana\appdata\local\programs\opera\78.0.4093.231\opera.exe] => (Block) C:\users\ana\appdata\local\programs\opera\78.0.4093.231\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [TCP Query User{5A646C6C-8565-4F3A-B1AE-821DAC4B0E44}C:\users\ana\appdata\local\programs\opera\opera.exe] => (Block) C:\users\ana\appdata\local\programs\opera\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [UDP Query User{4E727D74-C1B2-4BD5-BDCB-F35412239425}C:\users\ana\appdata\local\programs\opera\opera.exe] => (Block) C:\users\ana\appdata\local\programs\opera\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{BFA53666-B05E-4AE3-B593-9714F81782F4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{3AE25A4E-F7E4-499F-B619-E1EE9BC755CF}] => (Allow) D:\Steam\steamapps\common\Sega Classics\SEGAGameRoom.exe () [Archivo no firmado] FirewallRules: [{D969961A-66F2-438B-9CBB-E0BF74C135E8}] => (Allow) D:\Steam\steamapps\common\Sega Classics\SEGAGameRoom.exe () [Archivo no firmado] FirewallRules: [{40E57B1E-4BAA-4ACC-A643-692B59F397F9}] => (Allow) D:\Steam\steamapps\common\Sega Classics\SEGAGenesisClassics.exe (Sega Europe Limited -> ) FirewallRules: [{EFC14F03-3C17-4856-A43C-3E4FEF7193CE}] => (Allow) D:\Steam\steamapps\common\Sega Classics\SEGAGenesisClassics.exe (Sega Europe Limited -> ) FirewallRules: [{4646797B-6072-4C86-B243-552C42A2D6F1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sonic and SEGA All Stars Racing\Sonic & SEGA All-Stars Racing.exe () [Archivo no firmado] FirewallRules: [{D6AE08B6-5F97-4D47-8EB2-54AC8C0DA70C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sonic and SEGA All Stars Racing\Sonic & SEGA All-Stars Racing.exe () [Archivo no firmado] FirewallRules: [{1B2A9525-1E8E-4D73-87E6-94C20FCAAAA2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sonic and SEGA All Stars Racing\Config.exe (Sumo Digital Ltd) [Archivo no firmado] FirewallRules: [{42B96376-3BD4-43B3-B5B1-7717DC498CF6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sonic and SEGA All Stars Racing\Config.exe (Sumo Digital Ltd) [Archivo no firmado] FirewallRules: [{959B9A61-4F88-4BDD-BD50-E1AF8E0FB63A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Among Us\Among Us.exe () [Archivo no firmado] FirewallRules: [{952C0DFA-0911-49A5-9FDB-ACAA0C29EBDA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Among Us\Among Us.exe () [Archivo no firmado] FirewallRules: [{9CC915C3-2B97-4E58-9658-F657ED264060}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.169.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{942DB461-A785-49B7-B825-E897D2E4A2DA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.169.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{053287A5-20B1-4364-AF4D-E624CDD38CDB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.169.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{C86A1FBC-B0EB-45DC-9DC9-7B5D8C4A71A1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.169.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{888B188E-ABAF-4BAC-94DD-E5E19B2D479A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.169.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{65D23F48-ED15-4875-8B15-04E263229182}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.169.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{F947480B-A67A-489C-A13F-6C45A0621FD2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.169.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{5E693715-8419-403A-A6FF-603BB251A195}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.169.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{BFA9674A-EF7A-4A6C-97E5-40B395A5E2DE}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{74C8702F-E8B4-49B6-B4A8-137F28A8A8EA}] => (Allow) D:\Steam\steamapps\common\Team Sonic Racing\GameApp_PcDx11_x64Final.exe () [Archivo no firmado] FirewallRules: [{2C11F18F-EC6A-41AA-991A-63BBCDB0E565}] => (Allow) D:\Steam\steamapps\common\Team Sonic Racing\GameApp_PcDx11_x64Final.exe () [Archivo no firmado] ==================== Puntos de Restauración ========================= 24-09-2021 22:31:02 Punto de control programado 25-09-2021 13:56:16 Instalado Microsoft Visual C++ 2005 Redistributable 25-09-2021 19:01:18 Instalador de Módulos de Windows 28-09-2021 20:23:35 Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 03-10-2021 12:19:21 Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30133 ==================== Dispositivos defectuosos en el Administrador de dispositivos ============ Name: Controladora simple de comunicaciones PCI Description: Controladora simple de comunicaciones PCI Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Errores del registro de eventos: ======================== Errores de aplicación: ================== Error: (10/03/2021 12:22:04 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nombre de la aplicación con errores: GameApp_PcDx11_x64Final.exe, versión: 0.0.0.0, marca de tiempo: 0x5d1f1d92 Nombre del módulo con errores: GameApp_PcDx11_x64Final.exe, versión: 0.0.0.0, marca de tiempo: 0x5d1f1d92 Código de excepción: 0xc0000005 Desplazamiento de errores: 0x000000000f86395a Identificador del proceso con errores: 0x54c Hora de inicio de la aplicación con errores: 0x01d7b86a65d37a95 Ruta de acceso de la aplicación con errores: D:\Steam\steamapps\common\Team Sonic Racing\GameApp_PcDx11_x64Final.exe Ruta de acceso del módulo con errores: D:\Steam\steamapps\common\Team Sonic Racing\GameApp_PcDx11_x64Final.exe Identificador del informe: 8f05bb11-a794-48cc-86ba-cce05b023358 Nombre completo del paquete con errores: Identificador de aplicación relativa del paquete con errores: Error: (10/03/2021 12:20:15 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina CoCreateInstance. HR = 0x8007045b, Se está cerrando el sistema. . Error: (10/03/2021 12:20:15 PM) (Source: VSS) (EventID: 13) (User: ) Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} y el nombre CEventSystem no puede iniciarse. [0x8007045b, Se está cerrando el sistema. ] Error: (10/03/2021 12:20:15 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina CoCreateInstance. HR = 0x8007045b, Se está cerrando el sistema. . Error: (10/03/2021 12:20:15 PM) (Source: VSS) (EventID: 13) (User: ) Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} y el nombre CEventSystem no puede iniciarse. [0x8007045b, Se está cerrando el sistema. ] Error: (10/03/2021 12:20:15 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina CoCreateInstance. HR = 0x8007045b, Se está cerrando el sistema. . Error: (10/03/2021 12:20:15 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina CoCreateInstance. HR = 0x8007045b, Se está cerrando el sistema. . Error: (10/03/2021 12:20:15 PM) (Source: VSS) (EventID: 13) (User: ) Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} y el nombre CEventSystem no puede iniciarse. [0x8007045b, Se está cerrando el sistema. ] Errores del sistema: ============= Error: (10/03/2021 12:20:49 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: El servicio luminati_net_updater_win_aresgalaxy_io no pudo iniciarse debido al siguiente error: El sistema no puede encontrar el archivo especificado. Error: (10/03/2021 12:20:14 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-GLHUH76) Description: El servidor {9BA05972-F6A8-11CF-A442-00A0C90A8F39} no se registró con DCOM dentro del tiempo de espera requerido. Error: (10/03/2021 02:22:46 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-GLHUH76) Description: El servidor Microsoft.WindowsStore_12107.1001.15.0_x64__8wekyb3d8bbwe!App no se registró con DCOM dentro del tiempo de espera requerido. Error: (09/30/2021 06:54:08 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY) Description: Error irrecuperable al crear una credencial TLS cliente. El estado de error interno es 10013. Error: (09/27/2021 11:53:45 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-GLHUH76) Description: El servidor Microsoft.ZuneMusic_10.21061.10121.0_x64__8wekyb3d8bbwe!Microsoft.ZuneMusic no se registró con DCOM dentro del tiempo de espera requerido. Error: (09/27/2021 11:51:35 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-GLHUH76) Description: El servidor Microsoft.ZuneMusic_10.21061.10121.0_x64__8wekyb3d8bbwe!Microsoft.ZuneMusic no se registró con DCOM dentro del tiempo de espera requerido. Error: (09/27/2021 11:37:35 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-GLHUH76) Description: El servidor Microsoft.ZuneMusic_10.21061.10121.0_x64__8wekyb3d8bbwe!Microsoft.ZuneMusic no se registró con DCOM dentro del tiempo de espera requerido. Error: (09/27/2021 11:20:04 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-GLHUH76) Description: El servidor Microsoft.ZuneMusic_10.21061.10121.0_x64__8wekyb3d8bbwe!Microsoft.ZuneMusic no se registró con DCOM dentro del tiempo de espera requerido. Windows Defender: ================ Date: 2021-03-09 11:14:21 Description: El examen de Antivirus de Microsoft Defender se detuvo antes de completarse. Id. de examen: {5AACD045-F9A2-43FD-989B-FC5B695C3367} Tipo de examen: Antimalware Parámetros de examen: Examen rápido Usuario: NT AUTHORITY\SYSTEM Date: 2021-01-28 21:10:33 Description: Antivirus de Microsoft Defender detectó malware u otro software potencialmente no deseado. Para más información, consulta lo siguiente: https://go.microsoft.com/fwlink/?linkid=37020&name=TrojanDownloader:O97M/EncDoc.FE!MTB&threatid=2147757223&enterprise=0 Nombre: TrojanDownloader:O97M/EncDoc.FE!MTB Id.: 2147757223 Gravedad: Grave Categoría: Descargador troyano Ruta de acceso: file:_C:\Users\Ana\AppData\Local\Temp\Luoir.exe Origen de detección: Equipo local Tipo de detección: FastPath Origen de detección: Protección en tiempo real Usuario: DESKTOP-GLHUH76\Ana Nombre de proceso: C:\Program Files\CCleaner\CCleaner64.exe Versión de inteligencia de seguridad: AV: 1.329.3038.0, AS: 1.329.3038.0, NIS: 1.329.3038.0 Versión de motor: AM: 1.1.17700.4, NIS: 1.1.17700.4 Date: 2021-01-28 18:53:19 Description: El examen de Antivirus de Microsoft Defender se detuvo antes de completarse. Id. de examen: {445E3279-D89B-47A4-B1EE-59C556412070} Tipo de examen: Antimalware Parámetros de examen: Examen rápido Usuario: NT AUTHORITY\SYSTEM Date: 2021-01-27 21:40:41 Description: El examen de Antivirus de Microsoft Defender se detuvo antes de completarse. Id. de examen: {A269C695-0642-4D47-9CBD-7FCC4B60613B} Tipo de examen: Antimalware Parámetros de examen: Examen rápido Usuario: NT AUTHORITY\SYSTEM Date: 2021-01-27 19:53:04 Description: El examen de Antivirus de Microsoft Defender se detuvo antes de completarse. Id. de examen: {2234B4DA-5B4C-43BB-98FD-5F8D7E3AAFD4} Tipo de examen: Antimalware Parámetros de examen: Examen rápido Usuario: NT AUTHORITY\SYSTEM Date: 2021-03-01 17:06:11 Description: Antivirus de Microsoft Defender detectó un error al intentar actualizar la inteligencia de seguridad. Nueva versión de inteligencia de seguridad: Versión anterior de inteligencia de seguridad: 1.331.2123.0 Origen de actualización: Centro de protección contra malware de Microsoft Tipo de inteligencia de seguridad: AntiVirus Tipo de actualización: Completa Usuario: NT AUTHORITY\Servicio de red Versión actual del motor: Versión anterior del motor: 1.1.17800.5 Código de error: 0x8050a003 Descripción del error: Este paquete no contiene archivos de definición actualizados para este programa. Para obtener más información, consulte Ayuda y soporte técnico. Date: 2021-03-01 17:06:11 Description: Antivirus de Microsoft Defender detectó un error al intentar actualizar la inteligencia de seguridad. Nueva versión de inteligencia de seguridad: Versión anterior de inteligencia de seguridad: 1.331.2123.0 Origen de actualización: Centro de protección contra malware de Microsoft Tipo de inteligencia de seguridad: AntiSpyware Tipo de actualización: Completa Usuario: NT AUTHORITY\Servicio de red Versión actual del motor: Versión anterior del motor: 1.1.17800.5 Código de error: 0x8050a003 Descripción del error: Este paquete no contiene archivos de definición actualizados para este programa. Para obtener más información, consulte Ayuda y soporte técnico. Date: 2021-03-01 17:06:11 Description: Antivirus de Microsoft Defender detectó un error al intentar actualizar la inteligencia de seguridad. Nueva versión de inteligencia de seguridad: Versión anterior de inteligencia de seguridad: 1.331.2123.0 Origen de actualización: Centro de protección contra malware de Microsoft Tipo de inteligencia de seguridad: AntiVirus Tipo de actualización: Completa Usuario: NT AUTHORITY\Servicio de red Versión actual del motor: Versión anterior del motor: 1.1.17800.5 Código de error: 0x8050a003 Descripción del error: Este paquete no contiene archivos de definición actualizados para este programa. Para obtener más información, consulte Ayuda y soporte técnico. Date: 2021-02-26 10:31:50 Description: Antivirus de Microsoft Defender detectó un error al intentar actualizar la inteligencia de seguridad. Nueva versión de inteligencia de seguridad: Versión anterior de inteligencia de seguridad: 1.329.3038.0 Origen de actualización: Centro de protección contra malware de Microsoft Tipo de inteligencia de seguridad: AntiVirus Tipo de actualización: Completa Usuario: NT AUTHORITY\Servicio de red Versión actual del motor: Versión anterior del motor: 1.1.17700.4 Código de error: 0x80072ee7 Descripción del error: No se pudo resolver el nombre de servidor o su dirección Date: 2021-02-26 10:31:50 Description: Antivirus de Microsoft Defender detectó un error al intentar actualizar la inteligencia de seguridad. Nueva versión de inteligencia de seguridad: Versión anterior de inteligencia de seguridad: 1.329.3038.0 Origen de actualización: Centro de protección contra malware de Microsoft Tipo de inteligencia de seguridad: AntiSpyware Tipo de actualización: Completa Usuario: NT AUTHORITY\Servicio de red Versión actual del motor: Versión anterior del motor: 1.1.17700.4 Código de error: 0x80072ee7 Descripción del error: No se pudo resolver el nombre de servidor o su dirección CodeIntegrity: =============== Date: 2021-10-03 12:22:56 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\antimalware_provider.dll that did not meet the Windows signing level requirements. Date: 2021-10-03 11:00:16 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avp.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2021-10-03 10:58:59 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\antimalware_provider.dll that did not meet the Windows signing level requirements. ==================== Información de la memoria =========================== BIOS: American Megatrends Inc. 0212 02/17/2013 Placa base: ASUSTeK COMPUTER INC. B75M-A Procesador: Intel(R) Core(TM) i7-3770 CPU @ 3.40GHz Porcentaje de memoria en uso: 42% RAM física total: 8100.95 MB RAM física disponible: 4667.79 MB Virtual total: 10433.8 MB Virtual disponible: 5867.88 MB ==================== Unidades ================================ Drive c: () (Fixed) (Total:222.95 GB) (Free:121.82 GB) NTFS Drive d: (RESPALDO) (Fixed) (Total:931.51 GB) (Free:553.77 GB) NTFS Drive e: (TOSHIBA EXT) (Fixed) (Total:931.51 GB) (Free:111.96 GB) NTFS Drive i: (Seagate Backup Plus Drive) (Fixed) (Total:931.51 GB) (Free:408.35 GB) NTFS \\?\Volume{1a87962c-6875-4be8-bb10-903c1355445f}\ () (Fixed) (Total:0.51 GB) (Free:0.08 GB) NTFS \\?\Volume{6876c352-47e1-453e-95c5-79877a0fc52b}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Tabla de particiones ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 223.6 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 6803EF1B) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ========================================================== Disk: 2 (MBR Code: Windows 7 or Vista) (Size: 931.5 GB) (Disk ID: 8D75955F) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ========================================================== Disk: 3 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: A289EE9E) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ==================== Final de Addition.txt =======================