Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 12-01-2020
Ejecutado por Usuario (administrador) sobre USUARIO-PC (Gigabyte Technology Co., Ltd. AM1M-S2H) (13-01-2020 11:16:08)
Ejecutado desde C:\Users\Usuario\Desktop
Perfiles cargados: Usuario (Perfiles disponibles: Usuario)
Platform: Windows 7 Professional Service Pack 1 (X64) Idioma: Español (España, internacional)
Internet Explorer Versión 9 (Navegador predeterminado: Opera)
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Procesos (Lista blanca) =================
(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atiesrxx.exe
(Advanced Micro Devices, Inc.) [Archivo no firmado] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(AppEx Networks Corporation -> AppEx Networks Corporation) C:\Program Files\AMD Quick Stream\AMDQuickStream.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG TuneUp\TuneupSvc.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG TuneUp\TuneupUI.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\afwServ.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe
(Discord Inc. -> Discord Inc.) C:\Users\Usuario\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Usuario\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Usuario\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Usuario\AppData\Local\Discord\app-0.0.305\Discord.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrB.exe
(Guangzhou Ugee Computer Technology Co.,Ltd -> Guangzhou Ugee Computer Technology Co.,Ltd.) C:\Windows\System32\drivers\WTSrv.exe
(Guangzhou Ugee Computer Technology Co.,Ltd -> Tablet Driver) C:\Windows\SysWOW64\WTClient.exe
(Kilonova LLC -> Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.4\Lightshot.exe
(Microsoft Corporation -> Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.EXE
(Microsoft Corporation -> Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Opera Software AS -> Opera Software) C:\Users\Usuario\AppData\Local\Programs\Opera GX\64.0.3417.150\opera.exe
(Opera Software AS -> Opera Software) C:\Users\Usuario\AppData\Local\Programs\Opera GX\64.0.3417.150\opera.exe
(Opera Software AS -> Opera Software) C:\Users\Usuario\AppData\Local\Programs\Opera GX\64.0.3417.150\opera.exe
(Opera Software AS -> Opera Software) C:\Users\Usuario\AppData\Local\Programs\Opera GX\64.0.3417.150\opera.exe
(Opera Software AS -> Opera Software) C:\Users\Usuario\AppData\Local\Programs\Opera GX\64.0.3417.150\opera.exe
(Opera Software AS -> Opera Software) C:\Users\Usuario\AppData\Local\Programs\Opera GX\64.0.3417.150\opera.exe
(Opera Software AS -> Opera Software) C:\Users\Usuario\AppData\Local\Programs\Opera GX\64.0.3417.150\opera.exe
(Opera Software AS -> Opera Software) C:\Users\Usuario\AppData\Local\Programs\Opera GX\64.0.3417.150\opera.exe
(Opera Software AS -> Opera Software) C:\Users\Usuario\AppData\Local\Programs\Opera GX\64.0.3417.150\opera.exe
(Opera Software AS -> Opera Software) C:\Users\Usuario\AppData\Local\Programs\Opera GX\64.0.3417.150\opera.exe
(Opera Software AS -> Opera Software) C:\Users\Usuario\AppData\Local\Programs\Opera GX\64.0.3417.150\opera.exe
(Opera Software AS -> Opera Software) C:\Users\Usuario\AppData\Local\Programs\Opera GX\64.0.3417.150\opera.exe
(Opera Software AS -> Opera Software) C:\Users\Usuario\AppData\Local\Programs\Opera GX\64.0.3417.150\opera_crashreporter.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_IATIHJB.EXE
==================== Registro (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18391120 2019-08-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [NUSB3MON] => C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe [97280 2012-04-11] (Advanced Micro Devices, Inc.) [Archivo no firmado]
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [316336 2019-09-20] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-09-15] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [WTClient] => C:\Windows\SysWOW64\WTClient.exe [94344 2016-09-06] (Guangzhou Ugee Computer Technology Co.,Ltd -> Tablet Driver)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> )
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN
HKU\S-1-5-21-2464668294-1126862735-1976984134-1000\...\Run: [AppEx Accelerator UI] => C:\Program Files\AMD Quick Stream\AMDQuickStream.exe [482528 2014-03-31] (AppEx Networks Corporation -> AppEx Networks Corporation)
HKU\S-1-5-21-2464668294-1126862735-1976984134-1000\...\Run: [HydraVisionDesktopManager] => C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [389120 2013-11-01] (AMD) [Archivo no firmado]
HKU\S-1-5-21-2464668294-1126862735-1976984134-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3288016 2019-12-16] (Valve -> Valve Corporation)
HKU\S-1-5-21-2464668294-1126862735-1976984134-1000\...\Run: [Discord] => C:\Users\Usuario\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-2464668294-1126862735-1976984134-1000\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHJB.EXE [283232 2012-02-29] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2464668294-1126862735-1976984134-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Ribbons.scr [241664 2010-11-21] (Microsoft Windows -> Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AVG TuneUp.lnk [2019-09-16]
ShortcutTarget: AVG TuneUp.lnk -> C:\Program Files (x86)\AVG\AVG TuneUp\TuneupUI.exe (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN
==================== Tareas programadas (Lista blanca) ============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
Task: {22670D58-C468-48BF-8CA6-5051FC9C8E79} - System32\Tasks\{B2F4272D-7474-43FD-8D9E-53266CA77087} => C:\Windows\system32\pcalua.exe -a "C:\Users\Usuario\Desktop\Half life 2 ep1\H.a.l.f.L.i.f.e.2.E.p.1.CPTutorialesHD\Episode One.exe" -d "C:\Users\Usuario\Desktop\Half life 2 ep1\H.a.l.f.L.i.f.e.2.E.p.1.CPTutorialesHD"
Task: {2818CD32-B2CB-4160-BF57-2DA3835072EB} - System32\Tasks\Opera GX scheduled Autoupdate 1560464102 => C:\Users\Usuario\AppData\Local\Programs\Opera GX\launcher.exe [1474584 2019-12-11] (Opera Software AS -> Opera Software)
Task: {3684EE6A-44A3-48B8-84E1-42A84D2290AD} - System32\Tasks\CMPCUAC => C:\Program Files\CleanMyPC\CleanMyPC.exe
Task: {45243CDD-8B7E-4A52-924B-29AFC680D18B} - System32\Tasks\update-S-1-5-21-2464668294-1126862735-1976984134-1000 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {523943DE-DDC5-410D-B7AE-E8F54D511129} - System32\Tasks\AVG TuneUp Update => C:\Program Files (x86)\AVG\AVG TuneUp\TUNEUpdate.exe [1706528 2019-09-16] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {60671BFD-EC63-4D68-A874-B4725CE2FD93} - System32\Tasks\{B7F56EF1-1053-45EB-9ED4-68CBC8536DC1} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\RocketDock\unins000.exe"
Task: {609D23C3-C75D-4260-8D59-7134E37A10A7} - System32\Tasks\{AB1839DF-CB37-44B7-AEAE-EACD61E2FCF2} => C:\Windows\system32\pcalua.exe -a C:\Users\Usuario\Desktop\chromeinstall-8u191.exe -d C:\Users\Usuario\Desktop
Task: {68A6D421-B4C7-49F6-A89E-02F1041B6A70} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1905072 2019-09-18] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {76B90CC4-B0CB-4E20-A0E8-7374A834D582} - System32\Tasks\AMDInstallUEP => C:\Program Files\AMD\InstallUEP\AMDInstallUEP.exe
Task: {8A419A14-8EB0-4929-B4E4-93973D30FBD6} - System32\Tasks\Driver Booster SkipUAC (Usuario) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
Task: {94CAC4C0-367E-43F8-A6FE-AE97C3E0D38B} - System32\Tasks\{9BC6FA39-7598-4B52-B367-73B663246E1C} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Half-Life 2 Episode One\Episode One.exe" -d "C:\Program Files (x86)\Half-Life 2 Episode One"
Task: {ACE74F85-F9E5-447C-AFE5-21BC249B0F70} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {DB0F2806-7911-4CEC-8F2E-08882CAB06A1} - System32\Tasks\{22997FAA-2C70-4AFF-AE80-349DD7BF0104} => C:\Windows\system32\pcalua.exe -a C:\Users\Usuario\Desktop\TX133_135_x86_6.80APS_C1_GM.exe -d C:\Users\Usuario\Desktop
Task: {E60D9953-5E28-46D7-B2B2-9A797935440C} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\RadeonInstaller.exe [34284216 2019-08-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {EF8B30AC-1313-4DC1-A5F1-E93392FB4C88} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [3981232 2019-09-20] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)
Task: C:\Windows\Tasks\update-S-1-5-21-2464668294-1126862735-1976984134-1000.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
==================== Internet (Lista blanca) ====================
(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)
Tcpip\Parameters: [DhcpNameServer] 200.42.4.198 200.49.130.40
Tcpip\..\Interfaces\{6D72E26D-EBD4-4EBF-9014-747470ABC5A6}: [DhcpNameServer] 200.42.4.198 200.49.130.40
Tcpip\..\Interfaces\{CEA32CCE-A02B-43A8-B4DE-4DA3CA69B2FF}: [DhcpNameServer] 200.42.4.199 200.49.130.40
Internet Explorer:
==================
HKU\S-1-5-21-2464668294-1126862735-1976984134-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10454__190211
HKU\S-1-5-21-2464668294-1126862735-1976984134-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/es-ar/?ocid=iehp
SearchScopes: HKU\S-1-5-21-2464668294-1126862735-1976984134-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2464668294-1126862735-1976984134-1000 -> {BDF61FAE-9D19-40F0-8F34-688DEB334CA9} URL = hxxp://securedsearch.lavasoft.com/results.php?pr=vmn&id=webcompa&ent=ch_WCYID10454__190211&q={searchTerms}
BHO: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll [2012-02-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_231\bin\ssv.dll [2019-12-27] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_231\bin\jp2ssv.dll [2019-12-27] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Sin Nombre -> {53707962-6F74-2D53-2644-206D7942484F} -> Ningún archivo
BHO-x32: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll [2012-02-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2007-08-24] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation -> Microsoft Corporation.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation -> Microsoft Corporation.)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.231.2 -> C:\Program Files\Java\jre1.8.0_231\bin\dtplugin\npDeployJava1.dll [2019-12-27] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.231.2 -> C:\Program Files\Java\jre1.8.0_231\bin\plugin2\npjp2.dll [2019-12-27] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-02-27] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
Chrome:
=======
CHR HomePage: Default -> hxxps://www.google.com.ar/?gws_rd=ssl
CHR StartupUrls: Default -> "hxxps://www.google.com.ar/?gws_rd=ssl"
CHR Profile: C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default [2019-11-17]
CHR DownloadDir: C:\Users\Usuario\Desktop
CHR Extension: (Documentos) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-01-07]
CHR Extension: (Google Drive) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-01-07]
CHR Extension: (YouTube) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-01-07]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-01-07]
CHR Extension: (Chromoji - Emojis for Google Chrome) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\negakbijaemdgbhklopmghphgaeadmpo [2019-02-25]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-01-07]
CHR Extension: (vidIQ Vision for YouTube) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\pachckjkecffpdphbpmfolblodfkgbhl [2019-08-11]
CHR Extension: (Gmail) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-06-07]
CHR Extension: (Chrome Media Router) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-08-11]
CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn]
==================== Servicios (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [498056 2019-08-24] (Advanced Micro Devices, Inc. -> AMD)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-09-15] (Advanced Micro Devices, Inc.) [Archivo no firmado]
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [996928 2019-09-20] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 AVG Firewall; C:\Program Files\AVG\Antivirus\afwServ.exe [417592 2019-10-07] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [6307248 2019-12-19] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 CleanupPSvc; C:\Program Files (x86)\AVG\AVG TuneUp\TuneupSvc.exe [10301176 2019-07-24] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-04-14] (Malwarebytes Corporation -> Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation -> Malwarebytes Corporation)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [8064104 2018-08-12] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [66872 2019-07-11] (Even Balance, Inc. -> )
R2 PnkBstrB; C:\Windows\SysWOW64\PnkBstrB.exe [103736 2019-07-11] (Even Balance, Inc. -> )
S4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
R2 WinTabService; C:\Windows\System32\Drivers\WTSRV.EXE [138888 2016-09-06] (Guangzhou Ugee Computer Technology Co.,Ltd -> Guangzhou Ugee Computer Technology Co.,Ltd.)
===================== Controladores (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
R3 amdhub30; C:\Windows\System32\DRIVERS\amdhub30.sys [117744 2019-08-24] (Advanced Micro Devices Inc. -> Advanced Micro Devices, INC.)
R3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [55242120 2019-08-24] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [584584 2019-08-24] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdxhc; C:\Windows\System32\DRIVERS\amdxhc.sys [237552 2019-08-24] (Advanced Micro Devices Inc. -> Advanced Micro Devices, INC.)
R0 amd_sata; C:\Windows\System32\DRIVERS\amd_sata.sys [85704 2019-08-24] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_xata; C:\Windows\System32\DRIVERS\amd_xata.sys [43720 2019-08-24] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R2 APXACC; C:\Windows\System32\DRIVERS\appexDrv.sys [228032 2014-08-08] (AppEx Networks Corporation -> AppEx Networks Corporation)
S3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW76.sys [105376 2019-08-24] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [205600 2019-09-20] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdriver.sys [275232 2019-09-20] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\Windows\System32\drivers\avgbidsh.sys [210328 2019-09-20] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\Windows\System32\drivers\avgbuniv.sys [65376 2019-09-20] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\Windows\System32\drivers\avgKbd.sys [43512 2019-09-20] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [171784 2019-09-20] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R3 avgNetNd6; C:\Windows\System32\DRIVERS\avgNetNd6.sys [29944 2019-10-07] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
R1 avgNetSec; C:\Windows\System32\drivers\avgNetSec.sys [553104 2019-10-07] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [111096 2019-09-20] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [84560 2019-09-20] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [848688 2019-09-30] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\Windows\System32\drivers\avgSP.sys [461216 2019-09-30] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\Windows\System32\drivers\avgStm.sys [236288 2019-09-20] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [317304 2019-09-20] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131984 2019-08-24] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30352 2019-01-27] (Disc Soft Ltd -> Disc Soft Ltd)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2019-08-24] (Martin Malik - REALiX -> REALiX(tm))
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation -> Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-04-14] (Malwarebytes Corporation -> Malwarebytes Corporation)
R3 PTSimBus; C:\Windows\System32\DRIVERS\PTSimBus.sys [32128 2012-12-22] (UC-Logic Technology Corporation -> PenTablet Driver)
S3 PTSimHid; C:\Windows\System32\DRIVERS\PTSimHid.sys [22912 2012-12-22] (UC-Logic Technology Corporation -> UC-Logic Technology Corp.)
R3 RtlWlanu; C:\Windows\System32\DRIVERS\rtwlanu.sys [7947096 2019-05-07] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation )
S3 TClass2k; C:\Windows\System32\DRIVERS\TClass2k.sys [35536 2013-11-11] (UC-Logic Technology Corporation -> Tablet Driver)
S3 UCTblHid; C:\Windows\System32\DRIVERS\UCTblHid.sys [29392 2013-11-11] (UC-Logic Technology Corporation -> Tablet Driver)
S3 Tablet2k; "%SystemRoot%\System32\Drivers\Tablet2k.sys" [X]
==================== NetSvcs (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
==================== Un mes (creado) ===================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2020-01-13 11:14 - 2020-01-13 11:18 - 000024424 _____ C:\Users\Usuario\Desktop\FRST.txt
2020-01-13 11:12 - 2020-01-13 11:12 - 002573312 _____ (Farbar) C:\Users\Usuario\Desktop\FRST64.exe
2020-01-13 11:09 - 2020-01-13 11:09 - 000000000 _____ C:\Windows\system32\last.dump
2020-01-13 02:32 - 2020-01-13 10:59 - 000136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2020-01-13 02:32 - 2020-01-13 02:32 - 000001106 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2020-01-13 02:32 - 2020-01-13 02:32 - 000001106 _____ C:\ProgramData\Desktop\Malwarebytes Anti-Malware.lnk
2020-01-13 02:32 - 2020-01-13 02:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2020-01-13 02:32 - 2020-01-13 02:32 - 000000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2020-01-13 02:32 - 2015-04-14 09:37 - 000107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2020-01-13 02:32 - 2015-04-14 09:37 - 000063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2020-01-13 02:32 - 2015-04-14 09:37 - 000025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2020-01-13 02:06 - 2020-01-13 02:06 - 000000000 ____D C:\AdwCleaner
2020-01-13 01:39 - 2020-01-13 11:17 - 000000000 ____D C:\FRST
2020-01-13 01:09 - 2020-01-13 01:09 - 000000000 ____D C:\Users\Usuario\AppData\Local\mbam
2020-01-13 01:08 - 2020-01-13 01:08 - 000000000 ____D C:\Users\Usuario\AppData\Local\mbamtray
2020-01-13 01:06 - 2020-01-13 01:06 - 000000000 ____D C:\ProgramData\MB2Migration
2020-01-13 00:41 - 2020-01-13 01:59 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-01-12 22:10 - 2020-01-12 22:10 - 000000000 ____D C:\Users\Usuario\Desktop\Skyrim
2020-01-11 11:58 - 2020-01-11 11:59 - 199439564 _____ C:\Users\Usuario\Desktop\3220_13_d3Du.mp4
2020-01-11 10:43 - 2020-01-11 10:43 - 000466184 _____ C:\Windows\system32\FNTCACHE.DAT
2020-01-08 18:00 - 2020-01-08 18:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot
2020-01-04 19:16 - 2020-01-04 19:16 - 000000000 ____D C:\ProgramData\Intel
2019-12-27 16:23 - 2019-12-27 16:23 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\Sun
2019-12-27 16:22 - 2019-12-27 16:21 - 000129080 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2019-12-27 16:20 - 2019-12-27 16:20 - 000000000 ____D C:\Program Files\Java
2019-12-25 21:49 - 2019-12-25 21:49 - 000001193 _____ C:\Users\Usuario\Desktop\Terraria.lnk
2019-12-25 21:44 - 2019-12-25 21:51 - 000000000 ____D C:\Terraria v1.3.5.3-PiviGames.blog
2019-12-20 19:14 - 2019-12-20 19:14 - 000001189 _____ C:\Users\Public\Desktop\Outlast.lnk
2019-12-20 19:14 - 2019-12-20 19:14 - 000001189 _____ C:\ProgramData\Desktop\Outlast.lnk
2019-12-20 19:14 - 2019-12-20 19:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Red Barrels
2019-12-20 18:42 - 2019-12-20 18:42 - 000000000 ____D C:\Program Files (x86)\Red Barrels
2019-12-15 22:23 - 2019-12-15 22:23 - 000002462 _____ C:\Users\Usuario\Desktop\Photoshop.lnk
==================== Un mes (modificado) ==================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2020-01-13 11:10 - 2009-07-14 01:45 - 000021280 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-01-13 11:10 - 2009-07-14 01:45 - 000021280 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-01-13 11:04 - 2011-04-12 06:10 - 000746992 _____ C:\Windows\system32\perfh00A.dat
2020-01-13 11:04 - 2011-04-12 06:10 - 000158464 _____ C:\Windows\system32\perfc00A.dat
2020-01-13 11:04 - 2009-07-14 02:13 - 001675926 _____ C:\Windows\system32\PerfStringBackup.INI
2020-01-13 11:04 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\inf
2020-01-13 10:58 - 2009-07-14 02:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-01-13 02:58 - 2019-01-08 12:54 - 000065536 _____ C:\Windows\system32\spu_storage.bin
2020-01-13 02:58 - 2019-01-07 18:19 - 000000000 ____D C:\ProgramData\AVG
2020-01-13 02:57 - 2019-01-08 19:52 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\discord
2020-01-13 02:24 - 2019-01-08 20:13 - 000000392 _____ C:\Windows\Tasks\update-S-1-5-21-2464668294-1126862735-1976984134-1000.job
2020-01-13 00:14 - 2019-09-16 22:31 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2020-01-13 00:14 - 2019-09-16 20:06 - 000004162 _____ C:\Windows\system32\Tasks\Antivirus Emergency Update
2020-01-13 00:14 - 2019-08-25 11:03 - 000003550 _____ C:\Windows\system32\Tasks\AMDInstallUEP
2020-01-13 00:14 - 2019-08-24 14:04 - 000004226 _____ C:\Windows\system32\Tasks\AMD Updater
2020-01-13 00:14 - 2019-08-24 13:22 - 000002838 _____ C:\Windows\system32\Tasks\Driver Booster SkipUAC (Usuario)
2020-01-13 00:14 - 2019-08-11 19:15 - 000002930 _____ C:\Windows\system32\Tasks\CMPCUAC
2020-01-13 00:14 - 2019-06-13 19:15 - 000004100 _____ C:\Windows\system32\Tasks\Opera GX scheduled Autoupdate 1560464102
2020-01-13 00:14 - 2019-04-01 19:17 - 000003098 _____ C:\Windows\system32\Tasks\{B7F56EF1-1053-45EB-9ED4-68CBC8536DC1}
2020-01-13 00:14 - 2019-03-07 20:06 - 000003366 _____ C:\Windows\system32\Tasks\{B2F4272D-7474-43FD-8D9E-53266CA77087}
2020-01-13 00:14 - 2019-03-07 19:47 - 000003234 _____ C:\Windows\system32\Tasks\{9BC6FA39-7598-4B52-B367-73B663246E1C}
2020-01-13 00:14 - 2019-02-15 00:58 - 000003170 _____ C:\Windows\system32\Tasks\{22997FAA-2C70-4AFF-AE80-349DD7BF0104}
2020-01-13 00:14 - 2019-01-08 20:38 - 000003154 _____ C:\Windows\system32\Tasks\{AB1839DF-CB37-44B7-AEAE-EACD61E2FCF2}
2020-01-13 00:14 - 2019-01-08 20:13 - 000003382 _____ C:\Windows\system32\Tasks\update-S-1-5-21-2464668294-1126862735-1976984134-1000
2020-01-13 00:07 - 2019-12-01 00:08 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\.minecraft
2020-01-12 23:25 - 2019-12-01 00:09 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\.tlauncher
2020-01-12 22:11 - 2019-07-15 17:52 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\Psiphon3
2020-01-12 21:48 - 2019-01-09 00:22 - 000000000 ____D C:\Users\Usuario\Desktop\Varios
2020-01-12 16:33 - 2019-01-08 21:26 - 000000000 ____D C:\Users\Usuario\BrawlhallaReplays
2020-01-12 16:33 - 2019-01-08 20:45 - 000000000 ____D C:\Program Files (x86)\Steam
2020-01-10 22:40 - 2019-10-13 13:12 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\uTorrent
2020-01-08 18:00 - 2019-01-08 20:13 - 000000424 _____ C:\Users\Usuario\AppData\Local\UserProducts.xml
2020-01-08 18:00 - 2019-01-08 20:13 - 000000000 ____D C:\Program Files (x86)\Skillbrains
2020-01-06 20:51 - 2019-10-27 12:58 - 000000000 ____D C:\Users\Usuario\AppData\LocalLow\uTorrent
2020-01-06 11:56 - 2019-07-13 22:17 - 000000000 ____D C:\Users\Usuario\AppData\Local\BitTorrentHelper
2019-12-31 17:03 - 2019-06-09 10:20 - 000000132 _____ C:\Users\Usuario\AppData\Roaming\Prefs. de formato PNG de Adobe CS6
2019-12-27 20:20 - 2019-01-07 19:01 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\vlc
2019-12-27 16:22 - 2019-01-09 22:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-12-25 21:51 - 2019-03-10 22:39 - 000000000 ____D C:\Users\Usuario\Documents\My Games
2019-12-25 19:38 - 2019-01-08 20:04 - 000000000 ___RD C:\Users\Usuario\Desktop\WallPapers
2019-12-24 22:43 - 2019-01-27 11:39 - 000003328 _____ C:\Windows\system32\Tasks\SidebarExecute
2019-12-20 22:36 - 2019-01-08 21:02 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2019-12-19 13:40 - 2009-07-14 02:08 - 000032630 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2019-12-17 19:06 - 2019-07-30 13:34 - 000000000 ____D C:\Users\Usuario\AppData\Local\GameAnalytics
2019-12-15 18:56 - 2019-01-07 18:19 - 000125544 _____ C:\Users\Usuario\AppData\Local\GDIPFONTCACHEV1.DAT
==================== Archivos en la raíz de algunos directorios ========
2019-06-09 10:20 - 2019-12-31 17:03 - 000000132 _____ () C:\Users\Usuario\AppData\Roaming\Prefs. de formato PNG de Adobe CS6
2019-08-03 18:43 - 2019-08-03 18:43 - 000000000 ___SH () C:\Users\Usuario\AppData\Local\LumaEmu
2019-01-08 20:13 - 2019-01-08 20:13 - 000000003 _____ () C:\Users\Usuario\AppData\Local\updater.log
2019-01-08 20:13 - 2020-01-08 18:00 - 000000424 _____ () C:\Users\Usuario\AppData\Local\UserProducts.xml
==================== SigCheck ============================
(No existe una corrección automática para los archivos que no pasan la verificación.)
LastRegBack: 2019-01-28 16:34
==================== Final de FRST.txt ========================