Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 04-06-2020
Ejecutado por josea (05-06-2020 18:37:15)
Ejecutado desde C:\Users\josea\Desktop
Windows 10 Home Single Language Versión 2004 19041.264 (X64) (2020-05-28 15:13:14)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================

Administrador (S-1-5-21-2352676106-1091842753-2242752256-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2352676106-1091842753-2242752256-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-2352676106-1091842753-2242752256-1000 - Administrator - Enabled)
Invitado (S-1-5-21-2352676106-1091842753-2242752256-501 - Limited - Disabled)
josea (S-1-5-21-2352676106-1091842753-2242752256-1002 - Administrator - Enabled) => C:\Users\josea
WDAGUtilityAccount (S-1-5-21-2352676106-1091842753-2242752256-504 - Limited - Disabled)

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Norton 360 (Disabled - Up to date) {1122B19A-E671-38EC-8EAC-87048FD4528D}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton 360 (Disabled) {291930BF-AC1E-39B4-A5F3-2E31710715F6}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 20.009.20067 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 24.0.0.180 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.371 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.371 - Adobe)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.9.159 - Adobe Systems, Inc.)
Apple Application Support (32-bit) (HKLM-x32\...\{E5347310-C82F-4833-AA36-8D11E5A8A86A}) (Version: 6.6 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{D745E014-74DD-43A3-98DF-E7D38164B681}) (Version: 6.6 - Apple Inc.)
Audio Browser (HKLM-x32\...\{2C15B6AE-E9CE-4793-BF70-E13CFA55692E}) (Version: 15.1.0.0 - Internet Testing Systems)
Backup and Sync from Google (HKLM\...\{FE296942-D2D3-4149-8895-60655FE4CFDE}) (Version: 3.49.9800.0000 - Google, Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version:  - Broadcom Corporation)
Broadcom Bluetooth Drivers (HKLM\...\{0A1B4690-E176-4533-8058-939480AEE1D0}) (Version: 12.0.1.900 - Broadcom Corporation)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DisableMSDefender (HKLM\...\{74FE39A0-FB76-47CD-84BA-91E2BBB17EF2}) (Version: 1.0.0 - Hewlett-Packard Company) Hidden
Energy Star (HKLM\...\{5CB22648-35F8-41BC-9C35-1E41FE6E12A5}) (Version: 1.1.1 - HP Inc.)
English ID 1 Digitalbook (HKLM-x32\...\English ID 1 Digitalbook) (Version:  - )
English ID 2 Digitalbook (HKLM-x32\...\English ID 2 Digitalbook) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.61 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
HotPotatoes v 7.0.3.0 (HKLM-x32\...\hotpot7_is1) (Version:  - HalfBaked)
HP Deskjet 3050 J610 series Software básico del dispositivo (HKLM\...\{954F6D3C-A24F-4231-8885-24C1E55AF064}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.8318.5320 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{33A0B67A-CF04-4F31-B3D0-EEEEDEF7078E}) (Version: 8.8.24.33 - HP Inc.)
HP Support Solutions Framework (HKLM-x32\...\{21925AE1-929D-4222-B38B-80BC30BBE09C}) (Version: 12.15.14.3 - HP)
HP System Event Utility (HKLM-x32\...\{9DD60999-A4F0-4333-9D00-E45C718EA6C1}) (Version: 1.4.30 - HP Inc.)
HP System Software Manager (HKLM-x32\...\{0654A5BE-4E69-4F93-88B2-A81B13A7960C}) (Version: 4.0.4.1 - HP)
HP Welcome (HKLM\...\HPWelcome) (Version: 1.0 - HP Inc.)
Intel(R) Chipset Device Software (HKLM-x32\...\{619e726e-d2b4-4e28-9568-c964fd81ee6c}) (Version: 10.1.1.14 - Intel(R) Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10605.221 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4380 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 2.0.0.1094 - Intel Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 83.0.478.44 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.129.31 - )
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.12730.20352 - Microsoft Corporation)
Microsoft Office 365 - es-es (HKLM\...\O365HomePremRetail - es-es) (Version: 16.0.12730.20352 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2352676106-1091842753-2242752256-1002\...\OneDriveSetup.exe) (Version: 20.064.0329.0008 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Norton 360 (HKLM-x32\...\NGC) (Version: 22.20.2.57 - Symantec Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.12730.20352 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.12730.20352 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.12730.20352 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0C0A-1000-0000000FF1CE}) (Version: 16.0.12730.20352 - Microsoft Corporation) Hidden
Paquete de compatibilidad de Microsoft .NET Framework 4.8 (español) (HKLM-x32\...\{41F38056-60AB-4210-99EF-EF3F1FEF95C9}) (Version: 4.8.03761 - Microsoft Corporation)
Paquete de desarrollador de Microsoft .NET Framework 4.8 (español) (HKLM-x32\...\{d74790a6-c414-43cf-91c9-014bd3041031}) (Version: 4.8.3761 - Microsoft Corporation) Hidden
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10240.31219 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.7.107.2016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7756 - Realtek Semiconductor Corp.)
Scratch 2 Offline Editor (HKLM-x32\...\{6E988774-5309-E02E-7EA8-F19CB65C2063}) (Version: 255 - Massachusetts Institute of Technology) Hidden
Scratch 2 Offline Editor (HKLM-x32\...\edu.media.mit.Scratch2Editor) (Version: 461 - Massachusetts Institute of Technology)
Solutions 2nd Edition Pre-Intermediate (HKLM-x32\...\Solutions 2nd Edition Pre-Intermediate 1.0) (Version: 1.0 - Oxford University Press)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TOEFL iBT Vol 2 1.0 (HKLM-x32\...\TOEFL iBT Vol 2) (Version: 1.0 - Educational Testing Service)
TOEFL Official Guide 5.0.0 (only current user) (HKU\S-1-5-21-2352676106-1091842753-2242752256-1002\...\9392cb3e-cf0c-56fc-92bd-73a77d7976ef) (Version: 5.0.0 - Interactive Works)
TOEFL Sampler (HKLM-x32\...\{95744E49-71D1-453A-9466-6930819043C8}) (Version: 1.00.0001 - ETS)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM-x32\...\{7C070E60-8769-4763-BBD8-7537A28A60D4}) (Version: 1.10.0.0 - Microsoft Corporation) Hidden
Windows 10 Update Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22350 - Microsoft Corporation)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-2352676106-1091842753-2242752256-1002\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.)

Packages:
=========
¡Solitario! -> C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.SimpleSolitaire_6.18.78.0_x64__kx24dqmazqk8j [2020-02-29] (Random Salad Games LLC) [MS Ad]
Complemento de Fotos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2018-09-14] (Microsoft Corporation)
Cortana -> C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2005.5739.0_x64__8wekyb3d8bbwe [2020-05-28] (Microsoft Corporation) [Startup Task]
Earth from Above PREMIUM -> C:\Program Files\WindowsApps\Microsoft.EarthfromAbovePREMIUM_1.0.0.0_neutral__8wekyb3d8bbwe [2020-04-20] (Microsoft Corporation)
HP PC Hardware Diagnostics Windows -> C:\Program Files\WindowsApps\AD2F1837.HPPCHardwareDiagnosticsWindows_1.6.4.0_x64__v10z8vjag6ke6 [2020-05-17] (HP Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_115.1.152.0_x64__v10z8vjag6ke6 [2020-05-27] (HP Inc.)
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.2.0_neutral__8xx8rvfyw5nnt [2020-04-29] (Instagram)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-26] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-26] (Microsoft Corporation) [MS Ad]
Microsoft Noticias -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.39.21501.0_x64__8wekyb3d8bbwe [2020-06-01] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-02] (Microsoft Studios) [MS Ad]
Monsoons -> C:\Program Files\WindowsApps\Microsoft.Monsoons_1.0.0.0_neutral__8wekyb3d8bbwe [2020-04-24] (Microsoft Corporation)
Moodle Desktop -> C:\Program Files\WindowsApps\3312ADB7.MoodleDesktop_3.8.0.0_x64__t8q4t8fsbshw4 [2020-04-29] (Moodle Pty Ltd.)
MSN Deportes -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-27] (Microsoft Corporation) [MS Ad]
MSN Dinero -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-27] (Microsoft Corporation) [MS Ad]
MSN El tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-27] (Microsoft Corporation) [MS Ad]
Natural Hearts PREMIUM -> C:\Program Files\WindowsApps\Microsoft.NaturalHeartsPREMIUM_1.0.0.0_neutral__8wekyb3d8bbwe [2020-04-24] (Microsoft Corporation)
NcsiUwpApp -> C:\Windows\SystemApps\NcsiUwpApp_8wekyb3d8bbwe [2020-05-28] (Microsoft)
Norton Password Manager -> C:\Program Files\WindowsApps\SymantecCorporation.5478111E43ACF_6.7.4.0_neutral__v68kp9n051hdp [2020-05-29] (Symantec Corporation)
Norton Safe Web -> C:\Program Files\WindowsApps\SymantecCorporation.NortonSafeWeb_3.11.5.0_neutral__v68kp9n051hdp [2020-05-29] (Symantec Corporation)
Rain in the City -> C:\Program Files\WindowsApps\Microsoft.RainintheCity_2.0.0.0_neutral__8wekyb3d8bbwe [2020-04-24] (Microsoft Corporation)
Reader Notification Client -> C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2018-11-09] (Adobe Systems Incorporated)
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.54.0_x86__kzf8qxf38zg5c [2020-05-30] (Skype) [Startup Task]
Street Views PREMIUM -> C:\Program Files\WindowsApps\Microsoft.StreetViewsPREMIUM_1.0.0.0_neutral__8wekyb3d8bbwe [2020-04-24] (Microsoft Corporation)
Stunning Waterfalls PREMIUM -> C:\Program Files\WindowsApps\Microsoft.StunningWaterfallsPREMIUM_1.0.0.0_neutral__8wekyb3d8bbwe [2020-04-24] (Microsoft Corporation)
Trains on Bridges PREMIUM -> C:\Program Files\WindowsApps\Microsoft.TrainsonBridgesPREMIUM_1.0.0.0_neutral__8wekyb3d8bbwe [2020-04-24] (Microsoft Corporation)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2020-04-29] (Twitter Inc.)
UDK Package -> C:\Windows\SystemApps\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy [2020-05-28] (Microsoft Corporation)
WhatsApp Desktop -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2021.4.0_x64__cv1g1gvanyjgm [2020-05-30] (WhatsApp Inc.)
Wildflowers PREMIUM -> C:\Program Files\WindowsApps\Microsoft.WildflowersPREMIUM_1.0.0.0_neutral__8wekyb3d8bbwe [2020-04-24] (Microsoft Corporation)
Winding Roads PREMIUM -> C:\Program Files\WindowsApps\Microsoft.WindingRoadsPREMIUM_1.0.0.0_neutral__8wekyb3d8bbwe [2020-04-24] (Microsoft Corporation)
Windows Feature Experience Pack -> C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy [2020-05-28] (Microsoft Windows)
Windows Search -> C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy [2020-05-28] (Microsoft Corporation)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

ShellServiceObjects: OneDrive network states cache SSO -> {78DE489B-7931-4f14-83B4-C56D38AC9FFA} => C:\Windows\System32\Windows.FileExplorer.Common.dll [2020-05-28] (Microsoft Windows -> Microsoft Corporation)
ShellServiceObjects-x32: OneDrive network states cache SSO -> {78DE489B-7931-4f14-83B4-C56D38AC9FFA} => C:\Windows\SysWOW64\Windows.FileExplorer.Common.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-04-06] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-04-06] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-04-06] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [  OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.20.2.57\buShell.dll [2020-03-20] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.20.2.57\buShell.dll [2020-03-20] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.20.2.57\buShell.dll [2020-03-20] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Ningún archivo
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [  OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.20.2.57\buShell.dll [2020-03-20] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [  OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.20.2.57\buShell.dll [2020-03-20] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [  OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.20.2.57\buShell.dll [2020-03-20] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.20.2.57\buShell.dll [2020-03-20] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-04-06] (Google LLC -> Google)
ContextMenuHandlers1: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.20.2.57\NavShExt.dll [2020-03-20] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.20.2.57\NavShExt.dll [2020-03-20] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-04-06] (Google LLC -> Google)
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} =>  -> Ningún archivo
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Ningún archivo
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-03-08] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.20.2.57\buShell.dll [2020-03-20] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} =>  -> Ningún archivo
ContextMenuHandlers6: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.20.2.57\NavShExt.dll [2020-03-20] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Lista blanca) ====================

==================== Accesos directos & WMI ========================

(Las entradas pueden ser listadas para ser restauradas o eliminadas.)

ShortcutWithArgument: C:\Users\josea\AppData\Local\Microsoft\Edge\User Data\Default\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory=Default
ShortcutWithArgument: C:\Users\josea\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory=Default
ShortcutWithArgument: C:\Users\josea\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Booking.com.lnk -> C:\Program Files (x86)\HP\Shared\WizLink.exe () -> hxxp://www.booking.com/index.html?aid=398438&label=square

==================== Módulos cargados (Lista blanca) =============

2020-05-30 14:15 - 2020-05-30 14:15 - 000095744 _____ () [Archivo no firmado] \\?\C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2021.4.0_x64__cv1g1gvanyjgm\app\resources\app.asar.unpacked\node_modules\electron-panel-window\build\Release\NativeExtension.node
2020-05-30 14:15 - 2020-05-30 14:15 - 000120832 _____ () [Archivo no firmado] \\?\C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2021.4.0_x64__cv1g1gvanyjgm\app\resources\app.asar.unpacked\node_modules\node-quarantine\build\Release\binding.node
2020-05-30 14:15 - 2020-05-30 14:15 - 000555008 _____ () [Archivo no firmado] \\?\C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2021.4.0_x64__cv1g1gvanyjgm\app\resources\app.asar.unpacked\node_modules\spellchecker\build\Release\spellchecker.node
2020-05-17 09:33 - 2020-05-17 09:33 - 002338304 _____ () [Archivo no firmado] C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2021.4.0_x64__cv1g1gvanyjgm\app\ffmpeg.dll
2020-05-17 09:33 - 2020-05-17 09:33 - 000376320 _____ () [Archivo no firmado] C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2021.4.0_x64__cv1g1gvanyjgm\app\libegl.dll
2020-05-17 09:33 - 2020-05-17 09:33 - 007947776 _____ () [Archivo no firmado] C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2021.4.0_x64__cv1g1gvanyjgm\app\libglesv2.dll

==================== Alternate Data Streams (Lista blanca) ========

(Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.)

AlternateDataStreams: C:\WINDOWS\system32\msln.exe:23edc9161c41a25c4d254743c379ac3b [1482]
AlternateDataStreams: C:\Users\josea\Downloads\ChromeSetup.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\josea\Downloads\NPE.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\josea\Downloads\setup_hotpot_7030.exe:SmartScreen [7]

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcCtnrSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MsQuic => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NgcCtnrSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NgcSvc => ""="Service"

==================== Asociación (Lista blanca) =================

==================== Internet Explorer sitios de confianza/restringidos ==========

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2015-10-30 03:24 - 2020-03-30 12:14 - 000000886 ____N C:\WINDOWS\system32\drivers\etc\hosts

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter;;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\QuickTime\QTSystem\;C:\Program Files (x86)\Windows Live\Shared;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2352676106-1091842753-2242752256-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\josea\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 186.17.17.17 - 186.16.16.16
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Firewall de Windows está habilitado.

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "BCSSync"
HKLM\...\StartupApproved\Run32: => "HPMessageService"
HKLM\...\StartupApproved\Run32: => "PowerDVD14Agent"
HKLM\...\StartupApproved\Run32: => "APSDaemon"

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{57E16DF5-27AB-47FF-A702-52CA4FD0BADD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization VI\LaunchPad\LaunchPad.exe (Xsolla (USA), Inc -> 2K)
FirewallRules: [{0440CD9D-DFC4-4341-86F7-24B382A10B71}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization VI\LaunchPad\LaunchPad.exe (Xsolla (USA), Inc -> 2K)
FirewallRules: [{514A747E-2E29-40C5-93A4-ACC50D7A7D3E}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => Ningún archivo
FirewallRules: [{182FBA07-4DE5-4B6D-88DA-F21B0772B426}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => Ningún archivo
FirewallRules: [{B01D98B1-ADA5-4AD8-A8C7-3467E941E170}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => Ningún archivo
FirewallRules: [{DD5C46AE-C492-4CFD-A2B1-323F3A632260}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => Ningún archivo
FirewallRules: [{A925BA07-5DD4-4E04-864B-2BDFAD475C2C}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => Ningún archivo
FirewallRules: [{1A5CC6BF-2B2E-44EE-B2C3-C9E350AAA27D}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => Ningún archivo
FirewallRules: [{ECCA3B1D-FD92-4376-B1BB-9D99FEB30DC8}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1E5E1C33-F3F5-4E40-9C5C-F4F3ED306ADC}] => (Allow) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.2.5323.2000.105\Bin64\snac64.exe => Ningún archivo
FirewallRules: [{B70BA51F-846E-4177-AE67-89DC8554703C}] => (Allow) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.2.5323.2000.105\Bin64\snac64.exe => Ningún archivo
FirewallRules: [{1313F895-32FE-419D-993D-01F62CFC7EF6}] => (Allow) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.2.5323.2000.105\Bin\ccSvcHst.exe => Ningún archivo
FirewallRules: [{014A605D-35A8-4777-8357-97FF6E09E40A}] => (Allow) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.2.5323.2000.105\Bin\ccSvcHst.exe => Ningún archivo
FirewallRules: [{B511CA71-2C72-4BC8-99A1-6AF51CCF5DD6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{B2956000-FC5E-44BC-9D40-877ED986E7A4}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{08B00AFB-2729-46A8-A58C-B1F7A491F2AD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{881A501D-3F5B-4B85-9783-91E5E1F08E8E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{62513469-BB7A-43BF-8CA4-A3F03ABD863E}] => (Allow) C:\Users\josea\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{3E12AA4E-94C9-4748-88E9-910DA9E9E2B8}] => (Allow) C:\Users\josea\AppData\Roaming\Zoom\bin\airhost.exe => Ningún archivo
FirewallRules: [{7305C694-CA8A-4619-A9F7-D6ED67009879}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe => Ningún archivo
FirewallRules: [{573FF84A-3082-4472-B51D-BE2612615D64}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{3CEFA380-A50C-4EB0-9D81-42D3A5656D97}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.54.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D20179A0-9D16-419B-AF14-2E802C840B02}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.54.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A92CC245-702D-4427-86A8-E98E9B036A9C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.54.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3C9FFED8-5A64-4B8E-AD5E-142C5237675E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.54.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{78D9C5A8-2E25-4FD8-BD8D-CA05B30887B9}] => (Allow) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Puntos de Restauración =========================

28-05-2020 13:16:03 Instalador de Módulos de Windows
05-06-2020 08:44:31 Instalador de Módulos de Windows

==================== Dispositivos defectuosos en el Administrador de dispositivos ============

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (06/05/2020 06:15:53 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina QueryFullProcessImageNameW. HR = 0x80070006, Controlador no válido.
.


Operación:
   Ejecutando operación asincrónica

Contexto:
   Estado actual: DoSnapshotSet


Errores del sistema:
=============
Error: (06/05/2020 06:21:06 PM) (Source: Microsoft-Windows-Directory-Services-SAM) (EventID: 16953) (User: NT AUTHORITY)
Description: La DLL de notificación de contraseña C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter no se pudo cargar y dio el error 126. Compruebe que la ruta de acceso de la DLL de notificación definida en el registro, HKLM\System\CurrentControlSet\Control\Lsa\Notification Packages, haga referencia a una ruta de acceso correcta y absoluta (<unidad>:\<ruta de acceso>\<nombre de archivo>.<ext>) y no a una ruta de acceso relativa o no válida. Si la ruta de acceso de la DLL es correcta, valide que los archivos auxiliares se encuentren en el mismo directorio, y que la cuenta del sistema tenga acceso de lectura tanto en la ruta de acceso de la DLL, como en los archivos auxiliares. Póngase en contacto con el proveedor de la DLL de notificación para obtener soporte adicional. Si desea obtener más detalles visite http://go.microsoft.com/fwlink/?LinkId=245898.


CodeIntegrity:
===================================

Date: 2020-06-05 18:37:10.2020000Z
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.2.57\symamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-06-05 18:36:45.0300000Z
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.2.57\symamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-06-05 18:28:31.9080000Z
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.2.57\symamsi.dll that did not meet the Microsoft signing level requirements.

Date: 2020-06-05 18:28:31.8820000Z
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.2.57\symamsi.dll that did not meet the Microsoft signing level requirements.

Date: 2020-06-05 18:28:31.8560000Z
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.2.57\symamsi.dll that did not meet the Microsoft signing level requirements.

Date: 2020-06-05 18:28:31.8270000Z
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.2.57\symamsi.dll that did not meet the Microsoft signing level requirements.

Date: 2020-06-05 18:28:31.7960000Z
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.2.57\symamsi.dll that did not meet the Microsoft signing level requirements.

Date: 2020-06-05 18:28:31.7690000Z
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.2.57\symamsi.dll that did not meet the Microsoft signing level requirements.

==================== Información de la memoria =========================== 

BIOS: Insyde F.36 01/06/2020
Placa base: HP 81E1
Procesador: Intel(R) Pentium(R) CPU N3710 @ 1.60GHz
Porcentaje de memoria en uso: 56%
RAM física total: 8031.27 MB
RAM física disponible: 3473.07 MB
Virtual total: 9311.27 MB
Virtual disponible: 4355.48 MB

==================== Unidades ================================

Drive c: (Windows) (Fixed) (Total:912.38 GB) (Free:720.96 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:17.9 GB) (Free:2.08 GB) NTFS ==>[sistema con componentes de arranque (obtenido de unidad)]

\\?\Volume{3b40bd53-638b-4698-a8ee-d580ccfe4ac9}\ (Windows RE tools) (Fixed) (Total:0.96 GB) (Free:0.45 GB) NTFS
\\?\Volume{21c68f15-a729-4159-aece-a037a1dabb4e}\ () (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== Final de Addition.txt =======================