Scribd
Upload
58 views

Addition

Uploaded by

Jesus
Copyright
© © All Rights Reserved
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
58 views

Addition

Uploaded by

Jesus
Copyright
© © All Rights Reserved
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 12

Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 07-

12-2023
Ejecutado por alfonso.gonzalez (07-12-2023 20:52:40)
Ejecutado desde C:\Users\alfonso.gonzalez\Downloads
Microsoft Windows 11 Pro Versión 22H2 22621.2715 (X64) (2023-10-23 19:26:09)
Modo de Inicio: Normal
==========================================================

==================== Cuentas: =============================

(Si una entrada es incluida en el fixlist, será eliminada.)

Administrador (S-1-5-21-1514800254-895384536-1418846700-500 - Administrator -


Disabled)
DefaultAccount (S-1-5-21-1514800254-895384536-1418846700-503 - Limited - Disabled)
Invitado (S-1-5-21-1514800254-895384536-1418846700-501 - Limited - Disabled)
japayti (S-1-5-21-1514800254-895384536-1418846700-1002 - Administrator - Enabled)
Soporte (S-1-5-21-1514800254-895384536-1418846700-1001 - Administrator - Enabled)
=> C:\Users\Soporte
WDAGUtilityAccount (S-1-5-21-1514800254-895384536-1418846700-504 - Limited -
Disabled)

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}


AV: Symantec Endpoint Protection (Enabled - Up to date) {9DBFB57E-1F9E-A905-C1C2-
0248E13FA7C7}
FW: Symantec Endpoint Protection (Enabled) {A584345B-55F1-A85D-EA9D-AB7D1FECE0BC}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al
fixlist para hacerlos visibles. Los programas adware deben ser desinstalados
manualmente.)

Adobe Reader XI (11.0.10) - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-


AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-001824214663})
(Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Comprobación de estado de PC Windows (HKLM\...\{8B474A92-CE3A-4F46-B6F1-
6DFA1390F826}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Eines de correcció del Microsoft Office 2016: català (HKLM\...\{90160000-001F-0403-
1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Ferramentas de verificación de Microsoft Office 2016 - Galego (HKLM\...\{90160000-
001F-0456-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation)
Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 119.0.6045.200 - Google LLC)
Google Earth Pro (HKLM\...\{F27DBA46-80E1-4858-9285-19198FFFBF3D}) (Version:
7.3.6.9345 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA})
(Version: 1.3.35.441 - Google LLC) Hidden
Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-
001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation)
Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 119.0.2151.97 - Microsoft
Corporation)
Microsoft Excel MUI (Spanish) 2016 (HKLM\...\{90160000-0016-0C0A-1000-
0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Groove MUI (Spanish) 2016 (HKLM\...\{90160000-00BA-0C0A-1000-
0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office 32-bit Components 2016 (HKLM\...\{90160000-00C1-0000-1000-
0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (Spanish) 2016 (HKLM\...\{90160000-00E1-0C0A-1000-
0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office OSM UX MUI (Spanish) 2016 (HKLM\...\{90160000-00E2-0C0A-1000-
0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Spanish) 2016 (HKLM\...\{90160000-002C-0C0A-1000-
0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2016 - English (HKLM\...\{90160000-001F-0409-1000-
0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (Spanish) 2016 (HKLM\...\{90160000-00C1-0C0A-
1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Spanish) 2016 (HKLM\...\{90160000-006E-0C0A-1000-
0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Standard 2016 (HKLM\...\{90160000-0012-0000-1000-0000000FF1CE})
(Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Standard 2016 (HKLM\...\Office16.STANDARD) (Version:
16.0.4266.1001 - Microsoft Corporation)
Microsoft Office zuzenketa-tresnak 2016 - Euskara (HKLM\...\{90160000-001F-042D-
1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft OneNote MUI (Spanish) 2016 (HKLM\...\{90160000-00A1-0C0A-1000-
0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Outlook MUI (Spanish) 2016 (HKLM\...\{90160000-001A-0C0A-1000-
0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft PowerPoint MUI (Spanish) 2016 (HKLM\...\{90160000-0018-0C0A-1000-
0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Project MUI (Spanish) 2016 (HKLM\...\{90160000-00B4-0C0A-1000-
0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Project Professional 2016 (HKLM\...\{90160000-003B-0000-1000-
0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Project Professional 2016 (HKLM\...\Office16.PRJPRO) (Version:
16.0.4266.1001 - Microsoft Corporation)
Microsoft Publisher MUI (Spanish) 2016 (HKLM\...\{90160000-0019-0C0A-1000-
0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473})
(Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Word MUI (Spanish) 2016 (HKLM\...\{90160000-001B-0C0A-1000-0000000FF1CE})
(Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Revisores de Texto do Microsoft Office 2016 – Português (Brasil) (HKLM\...\
{90160000-001F-0416-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft
Corporation) Hidden
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1)
(Version: 2.9.85.5 - Safer-Networking Ltd.)
Spybot Anti-Beacon (HKLM-x32\...\{419A7FCF-93E1-474D-BFE9-987CF3F90C88}_is1)
(Version: 3.9 - Safer-Networking Ltd.)
Symantec Endpoint Protection (HKLM\...\{60C9519E-DBB0-48C9-B95C-4AE06D6D1EF5})
(Version: 14.3.10148.8000 - Broadcom)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-
40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
WebView2 Runtime de Microsoft Edge (HKLM-x32\...\Microsoft EdgeWebView) (Version:
119.0.2151.97 - Microsoft Corporation)
WinRAR 5.61 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH)
Wondershare PDFelement ( Version 10.1.7 ) (HKLM\...\{C87D1149-DD19-4D87-A447-
12803ECF02B6}_is1) (Version: 10.1.7 - Wondershare)
Packages:
=========
AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\
AppUp.IntelGraphicsExperience_1.100.5237.0_x64__8j3eq9eme6ctt [2023-11-10] (INTEL
CORP) [Startup Task]
Dell Free Fall Data Protection -> C:\Program Files\WindowsApps\
STMicroelectronicsMEMS.DellFreeFallDataProtection_1.0.27.0_x64__rp6h1c31mfy1y
[2023-10-23] (STMICROELECTRONICS S.R.L.)
Dev Home -> C:\Program Files\WindowsApps\
Microsoft.Windows.DevHome_0.0.0.0_x64__8wekyb3d8bbwe [2023-10-23] (Microsoft
Corporation)
Microsoft Teams -> C:\Program Files\WindowsApps\
MicrosoftTeams_1.0.0.0_x64__8wekyb3d8bbwe [2023-10-23] (Microsoft Corporation)
Microsoft.WindowsAppRuntime.CBS -> C:\Windows\SystemApps\
Microsoft.WindowsAppRuntime.CBS_8wekyb3d8bbwe [2023-11-27] (Microsoft Corporation)
Outlook for Windows -> C:\Program Files\WindowsApps\
Microsoft.OutlookForWindows_1.0.0.0_neutral__8wekyb3d8bbwe [2023-10-23] (Microsoft
Corporation)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\
Microsoft.MicrosoftSolitaireCollection_4.18.11020.0_x64__8wekyb3d8bbwe [2023-11-10]
(Microsoft Studios) [MS Ad]
Waves MaxxAudio Pro for Dell 2019 -> C:\Program Files\WindowsApps\
WavesAudio.MaxxAudioProforDell2019_2.0.54.0_x64__fh4rh281wavaa [2023-10-11] (Waves
Audio)
Windows Feature Experience Pack -> C:\Windows\SystemApps\
MicrosoftWindows.Client.FileExp_cw5n1h2txyewy [2023-11-27] (Microsoft Corporation)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo
no se moverá a menos que sea añadido al listado por separado.)

ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524}


=> -> Ningún archivo
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282}
=> -> Ningún archivo
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30}
=> -> Ningún archivo
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A}
=> -> Ningún archivo
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}
=> -> Ningún archivo
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3}
=> -> Ningún archivo
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C}
=> -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-
C78F2274A524} => -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-
AF20F3606282} => -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-
2A5D9D2F7F30} => -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-
7085BA96DA5A} => -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-
95FFCCAEF20E} => -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-
24A483E2CCC3} => -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-
2DFDD5449D9C} => -> Ningún archivo
ContextMenuHandlers1: [LDVPMenu] -> {8BEEE74D-455E-4616-A97A-F6E86C317F32} => C:\
Program Files\Symantec\Symantec Endpoint Protection\14.3.10148.8000.105\Bin64\
vpshell2.dll [2023-10-19] (Symantec Corporation -> Broadcom)
ContextMenuHandlers1: [PDFelement.ContextMenu] -> {ea6c980d-7823-3752-88ac-
d43b3a873d20} => C:\Program Files\Common Files\Wondershare\PDFelement10\Shell
Extensions\PEShellContextMenu4.exe [2023-11-14] (Wondershare Technology Group
Co.,Ltd -> Wondershare)
ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\
Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2021-12-21] (Safer-
Networking Limited -> Safer-Networking Ltd.)
ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\
Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2021-12-21] (Safer-
Networking Limited -> Safer-Networking Ltd.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\
Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} =>
C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander
Roshal)
ContextMenuHandlers2: [LDVPMenu] -> {8BEEE74D-455E-4616-A97A-F6E86C317F32} => C:\
Program Files\Symantec\Symantec Endpoint Protection\14.3.10148.8000.105\Bin64\
vpshell2.dll [2023-10-19] (Symantec Corporation -> Broadcom)
ContextMenuHandlers2: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\
Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2021-12-21] (Safer-
Networking Limited -> Safer-Networking Ltd.)
ContextMenuHandlers2: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\
Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2021-12-21] (Safer-
Networking Limited -> Safer-Networking Ltd.)
ContextMenuHandlers3: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\
Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2021-12-21] (Safer-
Networking Limited -> Safer-Networking Ltd.)
ContextMenuHandlers3: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\
Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2021-12-21] (Safer-
Networking Limited -> Safer-Networking Ltd.)
ContextMenuHandlers6: [LDVPMenu] -> {8BEEE74D-455E-4616-A97A-F6E86C317F32} => C:\
Program Files\Symantec\Symantec Endpoint Protection\14.3.10148.8000.105\Bin64\
vpshell2.dll [2023-10-19] (Symantec Corporation -> Broadcom)
ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\
Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2021-12-21] (Safer-
Networking Limited -> Safer-Networking Ltd.)
ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\
Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2021-12-21] (Safer-
Networking Limited -> Safer-Networking Ltd.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\
Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} =>
C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander
Roshal)

==================== Codecs (Lista blanca) ====================

==================== Accesos directos & WMI ========================

(Las entradas pueden ser listadas para ser restauradas o eliminadas.)

Shortcut: C:\Users\alfonso.gonzalez\Downloads\testdisk-7.2-WIP.win\testdisk-7.2-
WIP\rec\recup_dir.8\f18254104.lnk -> C:\Users\alfonso.gonzalez\AppData\Local\
kosmo_desktop_2.0.1\bin\Kosmo.bat (Ningún archivo)
==================== Módulos cargados (Lista blanca) =============

2023-12-07 19:48 - 2022-12-28 21:28 - 001111883 _____ (SQLite Development Team)


[Archivo no firmado] C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2023-12-07 19:48 - 2019-12-21 11:55 - 001380864 _____ (The OpenSSL Project,
hxxp://www.openssl.org/) [Archivo no firmado] C:\Program Files (x86)\Spybot -
Search & Destroy 2\libeay32.dll
2023-12-07 19:48 - 2019-12-21 11:55 - 000337920 _____ (The OpenSSL Project,
hxxp://www.openssl.org/) [Archivo no firmado] C:\Program Files (x86)\Spybot -
Search & Destroy 2\ssleay32.dll

==================== Alternate Data Streams (Lista blanca) ========

==================== Modo Seguro (Lista blanca) ==================

==================== Asociación (Lista blanca) =================

==================== Internet Explorer (Lista blanca) ==========

BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-


A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL
[2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\
Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation ->
Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program
Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation
-> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\
Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation ->
Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files
(x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation ->
Microsoft Corporation)

(Si una entrada es incluida en el fixlist, será eliminada del registro.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com


IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-
registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com ->
www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com ->
www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com ->
www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

Hay 7942 más sitios.

IE restricted site: HKU\S-1-5-21-1514800254-895384536-1418846700-


1001\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-1514800254-895384536-1418846700-1001\...\008i.com
-> 008i.com
IE restricted site: HKU\S-1-5-21-1514800254-895384536-1418846700-1001\...\008k.com
-> www.008k.com
IE restricted site: HKU\S-1-5-21-1514800254-895384536-1418846700-1001\...\00hq.com
-> www.00hq.com
IE restricted site: HKU\S-1-5-21-1514800254-895384536-1418846700-
1001\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-1514800254-895384536-1418846700-
1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-1514800254-895384536-1418846700-1001\...\0scan.com
-> www.0scan.com
IE restricted site: HKU\S-1-5-21-1514800254-895384536-1418846700-1001\...\1-2005-
search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-1514800254-895384536-1418846700-1001\...\1-
domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-1514800254-895384536-1418846700-
1001\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-1514800254-895384536-1418846700-
1001\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-1514800254-895384536-1418846700-
1001\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-1514800254-895384536-1418846700-
1001\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-1514800254-895384536-1418846700-1001\...\10sek.com
-> www.10sek.com
IE restricted site: HKU\S-1-5-21-1514800254-895384536-1418846700-1001\...\12-26.net
-> user1.12-26.net
IE restricted site: HKU\S-1-5-21-1514800254-895384536-1418846700-1001\...\12-27.net
-> user1.12-27.net
IE restricted site: HKU\S-1-5-21-1514800254-895384536-1418846700-
1001\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-1514800254-895384536-1418846700-
1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-1514800254-895384536-1418846700-
1001\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-1514800254-895384536-1418846700-
1001\...\123simsen.com -> www.123simsen.com

Hay 7942 más sitios.

IE restricted site: HKU\S-1-5-21-57989841-1592454029-725345543-


8249104\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-57989841-1592454029-725345543-8249104\...\008i.com
-> 008i.com
IE restricted site: HKU\S-1-5-21-57989841-1592454029-725345543-8249104\...\008k.com
-> www.008k.com
IE restricted site: HKU\S-1-5-21-57989841-1592454029-725345543-8249104\...\00hq.com
-> www.00hq.com
IE restricted site: HKU\S-1-5-21-57989841-1592454029-725345543-
8249104\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-57989841-1592454029-725345543-
8249104\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-57989841-1592454029-725345543-
8249104\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-57989841-1592454029-725345543-8249104\...\1-2005-
search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-57989841-1592454029-725345543-8249104\...\1-
domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-57989841-1592454029-725345543-
8249104\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-57989841-1592454029-725345543-
8249104\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-57989841-1592454029-725345543-
8249104\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-57989841-1592454029-725345543-
8249104\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-57989841-1592454029-725345543-
8249104\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-57989841-1592454029-725345543-8249104\...\12-
26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-57989841-1592454029-725345543-8249104\...\12-
27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-57989841-1592454029-725345543-
8249104\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-57989841-1592454029-725345543-
8249104\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-57989841-1592454029-725345543-
8249104\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-57989841-1592454029-725345543-
8249104\...\123simsen.com -> www.123simsen.com

Hay 7942 más sitios.

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para


restablecer Hosts.)

2019-12-07 03:14 - 2023-12-07 20:32 - 000454708 ____R C:\WINDOWS\system32\drivers\


etc\hosts
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123haustiereundmehr.com
127.0.0.1 123moviedownload.com
127.0.0.1 www.123moviedownload.com

Hay 15607 más lineas.

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKU\S-1-5-21-1514800254-895384536-1418846700-1001\Control Panel\Desktop\\Wallpaper
-> C:\Windows\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-21-57989841-1592454029-725345543-8249104\Control Panel\Desktop\\Wallpaper
-> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System =>
(ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost =>
(EnableWebContentEvaluation: 1)
Firewall de Windows está habilitado.

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo
no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{B2E63C59-F508-4813-B8CA-A09E46684C6E}] => (Allow) C:\Program


Files\Symantec\Symantec Endpoint Protection\14.3.10148.8000.105\Bin64\snac64.exe
(Symantec Corporation -> Broadcom)
FirewallRules: [{DC19259F-F491-43C0-87E2-711FAA824AE7}] => (Allow) C:\Program
Files\Symantec\Symantec Endpoint Protection\14.3.10148.8000.105\Bin64\snac64.exe
(Symantec Corporation -> Broadcom)
FirewallRules: [{FD0BA911-4335-4A7E-9136-5D772497C630}] => (Allow) C:\Program
Files\Symantec\Symantec Endpoint Protection\14.3.10148.8000.105\Bin64\ccSvcHst.exe
(Symantec Corporation -> Broadcom)
FirewallRules: [{55F4C123-8B9A-40E6-967B-5B19BF04AD07}] => (Allow) C:\Program
Files\Symantec\Symantec Endpoint Protection\14.3.10148.8000.105\Bin64\ccSvcHst.exe
(Symantec Corporation -> Broadcom)
FirewallRules: [{828DEB28-8A2E-48C5-8153-94A44A868318}] => (Allow) C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{B847CBF1-43A2-4861-87A6-BC050D75167E}] => (Allow) C:\Program
Files\WindowsApps\Microsoft.SkypeApp_15.109.3209.0_x64__kzf8qxf38zg5c\Skype\
Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0B816DC3-365F-45AE-B674-EAEAB98F8951}] => (Allow) C:\Program
Files\WindowsApps\Microsoft.SkypeApp_15.109.3209.0_x64__kzf8qxf38zg5c\Skype\
Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C52CE799-6F6D-4DFD-B2BF-D55A6C9DE514}] => (Allow) C:\Program
Files\WindowsApps\Microsoft.SkypeApp_15.109.3209.0_x64__kzf8qxf38zg5c\Skype\
Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8B0EC873-CE6E-45D4-B8AD-B74BB42FEBB8}] => (Allow) C:\Program
Files\WindowsApps\Microsoft.SkypeApp_15.109.3209.0_x64__kzf8qxf38zg5c\Skype\
Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BF93F121-EAEA-42E5-B58D-FA7F80564683}] => (Allow) C:\Program Files
(x86)\Microsoft\EdgeWebView\Application\119.0.2151.97\msedgewebview2.exe (Microsoft
Corporation -> Microsoft Corporation)
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search &
Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search &
Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search &
Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search &
Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service

==================== Puntos de Restauración =========================

ATENCIÓN: Restaurar Sistema está deshabilitado (Total:237.52 GB) (Free:119.7 GB)


(50%)

==================== Dispositivos defectuosos en el Administrador de dispositivos


============

==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (12/07/2023 08:52:49 PM) (Source: Symantec AntiVirus) (EventID: 51) (User:
GOBIERNO1)
Description: Riesgo para la seguridad detectado!ACM.Untrst-RLsass!g1 en archivo:
c:\users\alfonso.gonzalez\downloads\frst64.exe por: análisis SONAR. Acción: .
Descripción de la acción: Acceso denegado

Error: (12/07/2023 08:21:32 PM) (Source: Application Error) (EventID: 1000) (User:
NT AUTHORITY)
Description: Nombre de la aplicación con errores: SDFSSvc.exe, versión: 2.9.85.231,
marca de tiempo: 0x63ebb1a4
Nombre del módulo con errores: KERNELBASE.dll, versión: 10.0.22621.2715, marca de
tiempo: 0xcc3ea002
Código de excepción: 0x0eedfade
Desplazamiento de errores: 0x00149132
Identificador del proceso con errores: 0x0x29d0
Hora de inicio de la aplicación con errores: 0x0x1da297b999a008e
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDFSSvc.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\System32\KERNELBASE.dll
Identificador del informe: 16547dc8-7429-420f-a4ff-7b26994738b5
Nombre completo del paquete con errores:
Identificador de aplicación relativa del paquete con errores:

Error: (12/07/2023 05:16:06 PM) (Source: Application Error) (EventID: 1000) (User:
NT AUTHORITY)
Description: Nombre de la aplicación con errores: svchost.exe_wuauserv, versión:
10.0.22621.1, marca de tiempo: 0x6dc5c2a5
Nombre del módulo con errores: wuauengcore.dll, versión: 1023.922.9182.0, marca de
tiempo: 0xc2df8dde
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x0000000000079f78
Identificador del proceso con errores: 0x0x1df0
Hora de inicio de la aplicación con errores: 0x0x1da26c104bda533
Ruta de acceso de la aplicación con errores: C:\WINDOWS\system32\svchost.exe
Ruta de acceso del módulo con errores: \\?\C:\Windows\UUS\AMD64\wuauengcore.dll
Identificador del informe: f3bac718-9e41-4ae1-b395-37506da05085
Nombre completo del paquete con errores:
Identificador de aplicación relativa del paquete con errores:

Error: (12/07/2023 11:40:28 AM) (Source: Office 2016 Licensing Service) (EventID:
0) (User: )
Description: Event-ID 0

Error: (12/06/2023 01:01:47 PM) (Source: Office 2016 Licensing Service) (EventID:
0) (User: )
Description: Event-ID 0

Error: (12/04/2023 08:55:22 AM) (Source: Office 2016 Licensing Service) (EventID:
0) (User: )
Description: Event-ID 0

Error: (12/02/2023 03:00:02 AM) (Source: Office 2016 Licensing Service) (EventID:
0) (User: )
Description: Event-ID 0

Error: (12/01/2023 06:21:24 PM) (Source: Office 2016 Licensing Service) (EventID:
0) (User: )
Description: Event-ID 0

Errores del sistema:


=============
Error: (12/07/2023 08:44:26 PM) (Source: Microsoft-Windows-GroupPolicy) (EventID:
1129) (User: NT AUTHORITY)
Description: No se puede procesar la directiva de grupo debido a que no se puede
conectar a un controlador de dominio a través de la red. Esta condición puede ser
temporal. Se podría generar un mensaje de operación correcta una vez que el equipo
se conecte al controlador de dominio y la directiva de grupo se procese
correctamente. Ponte en contacto con el administrador si no se muestra un mensaje
de operación correcta durante varias horas.

Error: (12/07/2023 08:30:08 PM) (Source: Microsoft-Windows-NDIS) (EventID: 10317)


(User: NT AUTHORITY)
Description: Minipuerto Microsoft Wi-Fi Direct Virtual Adapter #2, {cb79f1ad-05e7-
40cd-84e0-1a19f78cf9b0}, tuvo el evento 74

Error: (12/07/2023 08:26:50 PM) (Source: Microsoft-Windows-GroupPolicy) (EventID:


1129) (User: NT AUTHORITY)
Description: No se puede procesar la directiva de grupo debido a que no se puede
conectar a un controlador de dominio a través de la red. Esta condición puede ser
temporal. Se podría generar un mensaje de operación correcta una vez que el equipo
se conecte al controlador de dominio y la directiva de grupo se procese
correctamente. Ponte en contacto con el administrador si no se muestra un mensaje
de operación correcta durante varias horas.

Error: (12/07/2023 08:26:45 PM) (Source: Microsoft-Windows-GroupPolicy) (EventID:


1129) (User: NT AUTHORITY)
Description: No se puede procesar la directiva de grupo debido a que no se puede
conectar a un controlador de dominio a través de la red. Esta condición puede ser
temporal. Se podría generar un mensaje de operación correcta una vez que el equipo
se conecte al controlador de dominio y la directiva de grupo se procese
correctamente. Ponte en contacto con el administrador si no se muestra un mensaje
de operación correcta durante varias horas.

Error: (12/07/2023 08:24:27 PM) (Source: Microsoft-Windows-GroupPolicy) (EventID:


1129) (User: NT AUTHORITY)
Description: No se puede procesar la directiva de grupo debido a que no se puede
conectar a un controlador de dominio a través de la red. Esta condición puede ser
temporal. Se podría generar un mensaje de operación correcta una vez que el equipo
se conecte al controlador de dominio y la directiva de grupo se procese
correctamente. Ponte en contacto con el administrador si no se muestra un mensaje
de operación correcta durante varias horas.

Error: (12/07/2023 08:24:23 PM) (Source: Microsoft-Windows-GroupPolicy) (EventID:


1129) (User: NT AUTHORITY)
Description: No se puede procesar la directiva de grupo debido a que no se puede
conectar a un controlador de dominio a través de la red. Esta condición puede ser
temporal. Se podría generar un mensaje de operación correcta una vez que el equipo
se conecte al controlador de dominio y la directiva de grupo se procese
correctamente. Ponte en contacto con el administrador si no se muestra un mensaje
de operación correcta durante varias horas.

Error: (12/07/2023 08:24:17 PM) (Source: Microsoft-Windows-GroupPolicy) (EventID:


1129) (User: NT AUTHORITY)
Description: No se puede procesar la directiva de grupo debido a que no se puede
conectar a un controlador de dominio a través de la red. Esta condición puede ser
temporal. Se podría generar un mensaje de operación correcta una vez que el equipo
se conecte al controlador de dominio y la directiva de grupo se procese
correctamente. Ponte en contacto con el administrador si no se muestra un mensaje
de operación correcta durante varias horas.

Error: (12/07/2023 08:24:13 PM) (Source: Microsoft-Windows-GroupPolicy) (EventID:


1129) (User: NT AUTHORITY)
Description: No se puede procesar la directiva de grupo debido a que no se puede
conectar a un controlador de dominio a través de la red. Esta condición puede ser
temporal. Se podría generar un mensaje de operación correcta una vez que el equipo
se conecte al controlador de dominio y la directiva de grupo se procese
correctamente. Ponte en contacto con el administrador si no se muestra un mensaje
de operación correcta durante varias horas.

CodeIntegrity:
===============
Date: 2023-12-07 20:46:57
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\
SecurityHealthService.exe) attempted to load \Device\HarddiskVolume3\Program Files\
Symantec\Symantec Endpoint Protection\14.3.10148.8000.105\Bin64\symamsi.dll that
did not meet the Windows signing level requirements.#

Date: 2023-12-07 20:25:12


Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\
Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe) attempted to
load \Device\HarddiskVolume3\Program Files\Symantec\Symantec Endpoint Protection\
14.3.10148.8000.105\Bin64\symamsi.dll that did not meet the Microsoft signing level
requirements.#
Date: 2023-12-07 20:24:28
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\
svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Symantec\
Symantec Endpoint Protection\14.3.10148.8000.105\Bin64\symamsi.dll that did not
meet the Windows signing level requirements.#

==================== Información de la memoria ===========================

BIOS: Dell Inc. 1.25.0 07/05/2023


Placa base: Dell Inc. 0PD9KD
Procesador: Intel(R) Core(TM) i5-8265U CPU @ 1.60GHz
Porcentaje de memoria en uso: 65%
RAM física total: 8038.83 MB
RAM física disponible: 2755.8 MB
Virtual total: 8550.83 MB
Virtual disponible: 2619.86 MB

==================== Unidades ================================

Drive c: () (Fixed) (Total:237.52 GB) (Free:119.69 GB) (Model: NVMe BC501 NVMe SK
hy) NTFS

\\?\Volume{cba8f437-d186-4c2c-a19b-b2271d996f24}\ () (Fixed) (Total:0.84 GB)


(Free:0.07 GB) NTFS
\\?\Volume{7e365374-7d26-401e-976f-43928184259c}\ () (Fixed) (Total:0.09 GB)
(Free:0.05 GB) FAT32

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: 133DACF4)

Partition: GPT.

==================== Final de Addition.txt =======================

You might also like