Buenas @Marr0n
https://www.virustotal.com/gui/file/7833a4d5a1a168d37313521baf10b4d502841cf5cd0ba2fa0c94b23828739405/detection
https://www.virustotal.com/gui/file/aaf659e3d38ad04848a9c3ed6250b30dc13acc8ac9f527a11f0c14e6ec8735b2/detection
https://www.virustotal.com/gui/file/03858c143e8796c8a10aaaa88244d00fb8d10e4b3591d08c97ba995404ba67f3/detection
https://www.virustotal.com/gui/file/03858c143e8796c8a10aaaa88244d00fb8d10e4b3591d08c97ba995404ba67f3/detection
Esos son los enlaces, los dos últimos son iguales aunque corresponden a dos ficheros diferentes, no se si es correcto o he hecho algo mal pero lo he subido dos veces cada uno para comprobar y el resultado era el mismo.
Te dejo a continuación los logs de FRST:
Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 09-05-2021
Ejecutado por Paula (administrador) sobre PORTATIL2 (ASUSTeK Computer Inc. K54HR) (24-05-2021 11:34:09)
Ejecutado desde C:\Users\Paula\Desktop
Perfiles cargados: Paula
Platform: Windows 7 Home Premium Service Pack 1 (X64) Idioma: Español (España, internacional)
Navegador predeterminado: Chrome
Modo de Inicio: Normal
==================== Procesos (Lista blanca) =================
(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Systems, Incorporated -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
(Alcor Micro Corp.) [Archivo no firmado] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(ASUS) [Archivo no firmado] C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUS) [Archivo no firmado] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\Common Files\InstantOn\InsOnWMI.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files\P4G\BatteryLife.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Windows\AsScrPro.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe
(ASUSTeK) [Archivo no firmado] C:\Windows\SysWOW64\ACEngSvr.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <3>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Brother Industries, Ltd.) [Archivo no firmado] C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Brother Industries, Ltd.) [Archivo no firmado] C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\Paula\AppData\Local\WebEx\ciscowebexstart.exe
(Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\Paula\AppData\Local\WebEx\WebEx\Meetings\atmgr.exe
(Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\Paula\AppData\Local\WebEx\WebEx\Meetings_01\atmgr.exe
(CyberLink -> CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\MDM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Sonic Focus, Inc. -> Virage Logic Corporation / Sonic Focus) C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
(Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
(Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
==================== Registro (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2587944 2010-12-31] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [361984 2011-03-21] (Alcor Micro Corp.) [Archivo no firmado]
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2277480 2011-08-16] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [IntelliType Pro] => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1464944 2012-11-02] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [IntelliPoint] => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2076272 2012-11-02] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176952 2016-05-11] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [118496 2021-04-25] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [Nuance PDF Reader-reminder] => C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe [328992 2008-11-03] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3331312 2011-10-19] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [Archivo no firmado]
HKLM-x32\...\Run: [ASUSWebStorage] => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe [737104 2011-07-29] (eCareme Technologies, Inc. -> ecareme)
HKLM-x32\...\Run: [SonicMasterTray] => C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe [984400 2010-07-10] (Sonic Focus, Inc. -> Virage Logic Corporation / Sonic Focus)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [5716608 2011-07-22] (ASUSTeK Computer Inc. -> ASUS)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2010-10-08] (ASUSTeK Computer Inc. -> ASUS)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUSTeK Computer Inc. -> ASUS)
HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2317312 2011-09-13] (ASUS) [Archivo no firmado]
HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe [648032 2010-11-27] (Sony Corporation -> Sony Corporation)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139776 2014-06-16] (Brother Industries, Ltd.) [Archivo no firmado]
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4513792 2014-05-22] (Brother Industries, Ltd.) [Archivo no firmado]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [644552 2019-07-04] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [36760 2010-11-15] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [821144 2010-11-15] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN
HKU\S-1-5-21-3305915279-4216548775-2174266474-1005\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33698888 2021-04-22] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3305915279-4216548775-2174266474-1005\...\Run: [CiscoMeetingDaemon] => C:\Users\Paula\AppData\Local\WebEx\ciscowebexstart.exe [3711704 2021-05-14] (Cisco WebEx LLC -> Cisco Webex LLC)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [53656 2010-11-15] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\...\Print\Monitors\HP C211 Status Monitor: C:\Windows\system32\hpinkstsC211LM.dll [333496 2012-12-16] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 2540 series): C:\Windows\system32\HPDiscoPMC211.dll [763912 2014-03-06] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.212\Installer\chrmstp.exe [2021-05-18] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{06FE45A8-6D92-44ba-A0F1-9A9BCDC8F5A7}] -> C:\Program Files (x86)\ASUS\SmartLogon\system\FaceCredentialProvider64.dll [2011-01-10] (ASUSTeK Computer Inc. -> ASUS)
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2011-03-29] (Microsoft Corporation -> Microsoft Corp.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AsusVibeLauncher.lnk [2011-10-19]
ShortcutTarget: AsusVibeLauncher.lnk -> C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) [Archivo no firmado]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FancyStart daemon.lnk [2012-01-20]
ShortcutTarget: FancyStart daemon.lnk -> C:\Windows\Installer\{C944B4C5-1C4D-4D95-8AC0-7CEF13914131}\_77B5857C27147149171BE7.exe () [Archivo no firmado]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN
==================== Tareas programadas (Lista blanca) ============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
Task: {05DF956D-00C6-48D3-96F5-48A37C80B194} - System32\Tasks\{A8EF65AE-4BB2-470A-80B1-099BD54D3A28} => C:\PROGRAM FILES\Encore 4.5.3\Encore 4.5.3.exe
Task: {07078F74-CA74-4A10-86D5-A09B40D0EB99} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {216158C5-3425-44CC-9D58-9017BDA19420} - System32\Tasks\ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [82944 2011-05-30] (ASUS) [Archivo no firmado]
Task: {22D00972-DD49-4F89-B51B-975CD1E8AE8D} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.)
Task: {2C87C2F4-0375-465F-8B6A-D6C0B7B6772A} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4699872 2021-04-25] (Avast Software s.r.o. -> AVAST Software)
Task: {33BEDAD1-B168-4265-8321-B51ED3FBBFFE} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2076272 2012-11-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {458FFCED-B203-4D39-A60F-4A945A958141} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28082760 2021-04-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {4C9E3BC0-D2D8-4A1A-B106-5589F666A542} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.)
Task: {525188E6-DA01-490D-83BA-693981E688C3} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [5716608 2011-07-22] (ASUSTeK Computer Inc. -> ASUS)
Task: {6C062F41-EC3E-4AE7-91FF-4C77A61D1A5C} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2138752 2012-11-02] (Microsoft Corporation -> Microsoft)
Task: {8B31F360-E921-417B-8D33-B29F3BE05B60} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
Task: {8F3231C0-70FB-405B-A95D-EB5C68B42658} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [1547424 2011-09-30] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {97574361-E74A-49F1-9527-B5CCA65A926C} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-04-29] (Avast Software s.r.o. -> Avast Software)
Task: {B94B74C3-5CE1-40B1-BC6A-29ABCC930842} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [136304 2021-03-30] (HP Inc. -> HP Inc.)
Task: {C28D7976-D835-495D-B0F4-0ECF02AF2F80} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3305915279-4216548775-2174266474-1005UA => C:\Users\Paula\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2013-09-06] (Facebook, Inc. -> Facebook Inc.)
Task: {C764E106-D311-4654-A51E-66FBA1F37BF1} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1464944 2012-11-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {D675A75D-7F25-4A66-9D6A-4842F1FD039F} - System32\Tasks\{3F47884D-C78F-4903-BD56-E151CDB0F30D} => C:\PROGRAM FILES\Encore 4.5.3\Encore 4.5.3.exe
Task: {D69F5D89-E5A0-4318-923B-7DAD1C6F1B12} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
Task: {D73E6F00-64DF-4E1B-8FEA-AEB5F4C7C613} - System32\Tasks\{BA1756F8-0E6E-48AC-8C7B-6635DA528298} => C:\Windows\system32\pcalua.exe -a "C:\Users\Luis\Desktop\Programas de Audio y Música\Encore 4.5\Encore 4.5.3 setup.exe" -d "C:\Users\Luis\Desktop\Programas de Audio y Música\Encore 4.5"
Task: {DA4E7FC5-EECD-49CB-894A-68950384B151} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [305792 2010-11-15] (ASUSTeK Computer Inc. -> ASUS)
Task: {EB15DE99-55B4-4064-9D11-A26DA1486AC0} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-04-22] (Piriform Software Ltd -> Piriform)
Task: {F05959AE-4C35-4FA3-A6DD-12CA5A5A7F10} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [1174016 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Task: {F1A99C82-F779-4460-9CF9-85F593C469B1} - System32\Tasks\ASUS P4G => C:\Program Files\P4G\BatteryLife.exe [1001088 2011-06-01] (ASUSTeK Computer Inc. -> ASUS)
Task: {F81F554C-FDE7-496F-B854-3777865808CB} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3305915279-4216548775-2174266474-1005Core => C:\Users\Paula\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2013-09-06] (Facebook, Inc. -> Facebook Inc.)
Task: {FF4A02C5-AE1A-4021-B5AB-AB388F9C6CDB} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3305915279-4216548775-2174266474-1005Core.job => C:\Users\Paula\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3305915279-4216548775-2174266474-1005UA.job => C:\Users\Paula\AppData\Local\Facebook\Update\FacebookUpdate.exe
==================== Internet (Lista blanca) ====================
(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)
Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2011-03-29] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2011-03-29] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392 2011-03-29] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392 2011-03-29] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 10 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{6EFA9321-221D-4A20-9C63-038ACB527C22}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{C6646913-322C-46F8-8A50-FF8956CE8783}: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF DefaultProfile: mbbmc3ii.default
FF ProfilePath: C:\Users\Paula\AppData\Roaming\Mozilla\Firefox\Profiles\mbbmc3ii.default [2021-05-23]
FF Extension: (Google Translator for Firefox) - C:\Users\Paula\AppData\Roaming\Mozilla\Firefox\Profiles\mbbmc3ii.default\Extensions\[email protected] [2019-03-11]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2021-04-05] [Heredado] [no firmado]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll [2014-01-12] (Adobe Systems Incorporated -> )
FF Plugin: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-09-10] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-09-10] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll [2014-01-12] (Adobe Systems Incorporated -> )
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] (Apple Inc. -> )
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-02-13] (Google Inc -> Google, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [Ningún archivo]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-04-27] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll [2010-01-23] (Zeon Corporation -> Zeon Corporation)
FF Plugin HKU\S-1-5-21-3305915279-4216548775-2174266474-1005: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Paula\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Software Sarl -> Skype Limited)
FF Plugin ProgramFiles/Appdata: C:\Users\Paula\AppData\Roaming\mozilla\plugins\npatgpc.dll [2018-01-04]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Paula\AppData\Local\Google\Chrome\User Data\Default [2021-05-24]
CHR Notifications: Default -> hxxps://web.whatsapp.com; hxxps://www.netflix.com
CHR HomePage: Default -> chrome://apps/
CHR StartupUrls: Default -> "hxxps://www.academiamir.com/mir/login.jsp?logout=1"
CHR Extension: (Google Drive) - C:\Users\Paula\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22]
CHR Extension: (YouTube) - C:\Users\Paula\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-30]
CHR Extension: (uBlock Origin) - C:\Users\Paula\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2021-05-08]
CHR Extension: (Búsqueda de Google) - C:\Users\Paula\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Google Calendar) - C:\Users\Paula\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2017-01-07]
CHR Extension: (hxxps://www.netflix.com/browse) - C:\Users\Paula\AppData\Local\Google\Chrome\User Data\Default\Extensions\eppojlglocelodeimnohnlnionkobfln [2019-02-15]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Paula\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-19]
CHR Extension: (Avast Online Security) - C:\Users\Paula\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2021-02-18]
CHR Extension: (Google Keep: notas y listas) - C:\Users\Paula\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2021-05-19]
CHR Extension: (Dropbox) - C:\Users\Paula\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2018-04-02]
CHR Extension: (hxxp://moodle.urv.net/moodle/) - C:\Users\Paula\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhkblkgomlhfgpdkejnmepdafabcljac [2014-09-02]
CHR Extension: (Webcam Toy) - C:\Users\Paula\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfbgimoladefibpklnfmkpknadbklade [2018-06-27]
CHR Extension: (Google Maps) - C:\Users\Paula\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2015-09-21]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Paula\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\Paula\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-24]
CHR Extension: (Chrome Media Router) - C:\Users\Paula\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-05-11]
CHR Profile: C:\Users\Paula\AppData\Local\Google\Chrome\User Data\System Profile [2021-05-10]
==================== Servicios (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2128872 2018-05-11] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc. -> Apple Inc.)
S3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7894040 2021-04-25] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [606944 2021-04-25] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [1281760 2021-04-25] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [356064 2021-04-25] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56920 2021-04-25] (Avast Software s.r.o. -> AVAST Software)
S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2013-09-25] (Brother Industries, Ltd.) [Archivo no firmado]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [379736 2020-08-20] (HP Inc. -> HP Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-04-29] (Malwarebytes Inc -> Malwarebytes)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Archivo no firmado]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292096 2011-03-29] (Microsoft Corporation -> Microsoft Corp.)
===================== Controladores (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
S3 982745d5; C:\Windows\System32\Drivers\982745d5.sys [110496 2021-05-03] (AO Kaspersky Lab -> AO Kaspersky Lab)
R3 asmthub3; C:\Windows\System32\DRIVERS\asmthub3.sys [128488 2011-06-02] (MCCI Internal Testing Software -> ASMedia Technology Inc)
R3 asmtxhci; C:\Windows\System32\DRIVERS\asmtxhci.sys [401896 2011-06-02] (MCCI Internal Testing Software -> ASMedia Technology Inc)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [212192 2021-04-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [365024 2021-04-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [250336 2021-04-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [99288 2021-04-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [41296 2021-04-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [180448 2021-04-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [522896 2021-05-19] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2020-05-18] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [107792 2021-04-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [82872 2021-04-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [850632 2021-04-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [467720 2021-04-25] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [215352 2021-04-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [326992 2021-04-25] (Avast Software s.r.o. -> AVAST Software)
R3 athr; C:\Windows\System32\DRIVERS\athrx.sys [2769920 2011-08-31] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2018-10-22] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] (ASUSTeK Computer Inc. -> )
S3 klupd_982745d5a_arkmon_098C6A3A; C:\KVRT2020_Data\Temp\098C6A3A56693228A09FEAB69A99874F\klupd_982745d5a_arkmon.sys [245752 2021-05-03] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [220752 2021-05-23] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-05-23] (Malwarebytes Inc -> Malwarebytes)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2015-11-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
==================== NetSvcs (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
==================== Un mes (creado) (Lista blanca) =========
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2021-05-24 11:17 - 2021-05-24 11:23 - 000000452 _____ C:\Users\Paula\Desktop\virus total.txt
2021-05-23 20:40 - 2021-05-23 20:42 - 000214594 _____ C:\Windows\ntbtlog.txt
2021-05-11 00:04 - 2021-05-23 20:43 - 000023539 _____ C:\Users\Paula\Desktop\Fixlog.txt
2021-05-10 23:36 - 2021-05-23 20:31 - 000000262 _____ C:\DelFix.txt
2021-05-10 23:36 - 2021-05-10 23:36 - 000000000 ____D C:\Windows\ERUNT
2021-05-10 23:34 - 2021-05-10 23:35 - 000797760 _____ C:\Users\Paula\Desktop\delfix.exe
2021-05-10 23:03 - 2021-05-10 23:03 - 000001036 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2021-05-10 23:03 - 2021-05-10 23:03 - 000001036 _____ C:\ProgramData\Desktop\Revo Uninstaller.lnk
2021-05-10 23:03 - 2021-05-10 23:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2021-05-10 23:03 - 2021-05-10 23:03 - 000000000 ____D C:\Program Files\VS Revo Group
2021-05-10 22:58 - 2021-05-10 22:58 - 007495512 _____ (VS Revo Group ) C:\Users\Paula\Desktop\revosetup.exe
2021-05-10 00:27 - 2021-05-18 16:15 - 000052840 _____ C:\Users\Paula\Desktop\Addition.txt
2021-05-10 00:24 - 2021-05-24 11:35 - 000032376 _____ C:\Users\Paula\Desktop\FRST.txt
2021-05-10 00:23 - 2021-05-24 11:34 - 000000000 ____D C:\FRST
2021-05-10 00:21 - 2021-05-10 00:22 - 002298880 _____ (Farbar) C:\Users\Paula\Desktop\FRST64.exe
2021-05-07 15:07 - 2021-05-07 15:07 - 000002678 _____ C:\Users\Paula\Desktop\ZPH.txt
2021-05-07 15:07 - 2021-05-07 15:07 - 000000000 ____D C:\Users\Paula\Desktop\ZPH
2021-05-07 14:30 - 2021-05-10 00:13 - 000000000 ____D C:\Users\Paula\AppData\Roaming\ZHP
2021-05-07 14:30 - 2021-05-07 14:30 - 000000000 ____D C:\Users\Paula\AppData\Local\ZHP
2021-05-07 14:28 - 2021-05-07 14:28 - 003327128 _____ (Nicolas Coolman) C:\Users\Paula\Desktop\ZHPCleaner.exe
2021-05-03 00:16 - 2021-05-03 00:16 - 000110496 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\982745d5.sys
2021-05-03 00:15 - 2021-05-03 00:16 - 000000000 ____D C:\KVRT2020_Data
2021-05-03 00:10 - 2021-05-03 00:10 - 000002466 _____ C:\Users\Paula\Desktop\eset.txt
2021-05-02 19:38 - 2021-05-02 19:38 - 000000558 _____ C:\Users\Paula\Desktop\ESET Online Scanner.lnk
2021-05-02 19:37 - 2021-05-02 19:37 - 000000000 ____D C:\Users\Paula\AppData\Local\ESET
2021-05-02 19:36 - 2021-05-02 19:37 - 103321912 _____ (AO Kaspersky Lab) C:\Users\Paula\Desktop\KVRT.exe
2021-05-02 19:33 - 2021-05-02 19:33 - 015019488 _____ (ESET spol. s r.o.) C:\Users\Paula\Desktop\esetonlinescanner.exe
2021-04-30 00:36 - 2021-04-30 00:39 - 000000000 ____D C:\AdwCleaner
2021-04-30 00:27 - 2021-04-30 00:27 - 000021508 _____ C:\Users\Paula\Desktop\MalwarebytesInforme.txt
2021-04-29 20:52 - 2021-05-11 08:36 - 000000000 ____D C:\Users\Paula\AppData\LocalLow\IGDump
2021-04-29 20:45 - 2021-05-23 20:48 - 000248992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2021-04-29 20:45 - 2021-05-23 20:42 - 000220752 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2021-04-29 20:45 - 2021-04-29 20:45 - 000001962 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-04-29 20:45 - 2021-04-29 20:45 - 000001950 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-04-29 20:45 - 2021-04-29 20:45 - 000001950 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2021-04-29 20:45 - 2021-04-29 20:45 - 000000000 ____D C:\Users\Paula\AppData\Local\mbam
2021-04-29 20:44 - 2021-04-29 20:44 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-04-29 20:44 - 2021-04-29 20:43 - 000199128 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2021-04-29 20:42 - 2021-04-29 20:42 - 000000000 ____D C:\Program Files\Malwarebytes
2021-04-29 20:39 - 2021-04-29 20:40 - 210366080 _____ (Malwarebytes) C:\Users\Paula\Desktop\mb4-setup-consumer-4.3.0.218-1.0.1273-1.0.39721.exe
2021-04-29 20:25 - 2021-04-29 20:25 - 002078632 _____ (Malwarebytes) C:\Users\Paula\Desktop\MBSetup.exe
2021-04-29 20:24 - 2021-04-29 20:24 - 008534696 _____ (Malwarebytes) C:\Users\Paula\Desktop\adwcleaner_8.2.exe
2021-04-29 20:22 - 2021-04-29 20:22 - 000149218 _____ C:\Users\Paula\Desktop\Eliminar Malwares - ForoSpyware.pdf
2021-04-28 13:34 - 2021-04-28 13:34 - 000169752 _____ C:\Users\Paula\Desktop\Listado de Citas. Consulta.pdf
2021-04-28 13:31 - 2021-04-28 20:47 - 000186812 _____ C:\Users\Paula\Desktop\CITA PREVIA DNI PASAPORTE.pdf
2021-04-25 16:16 - 2021-04-25 16:15 - 000339680 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2021-04-25 16:16 - 2021-04-25 16:15 - 000215352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
==================== Un mes (modificado) ==================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2021-05-24 11:33 - 2020-05-18 11:46 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2021-05-24 11:32 - 2020-05-21 10:28 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-05-24 11:30 - 2012-04-14 12:47 - 000000000 ____D C:\Program Files\CCleaner
2021-05-24 11:28 - 2012-04-12 17:33 - 000000000 ____D C:\ProgramData\AVAST Software
2021-05-24 11:28 - 2012-04-11 18:29 - 000000000 ___HD C:\ASUS.DAT
2021-05-24 11:27 - 2012-04-11 18:29 - 000045056 _____ C:\Windows\SysWOW64\acovcnt.exe
2021-05-24 11:27 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-05-24 11:26 - 2018-01-04 17:00 - 000000000 ____D C:\Users\Paula\AppData\Local\WebEx
2021-05-24 11:23 - 2009-07-14 06:45 - 000018736 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-05-24 11:23 - 2009-07-14 06:45 - 000018736 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-05-24 11:04 - 2013-09-06 12:40 - 000000928 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3305915279-4216548775-2174266474-1005UA.job
2021-05-24 11:04 - 2013-09-06 12:40 - 000000906 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3305915279-4216548775-2174266474-1005Core.job
2021-05-24 00:17 - 2019-01-09 00:35 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2021-05-24 00:17 - 2017-02-08 18:58 - 000002792 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2021-05-24 00:17 - 2013-09-06 12:40 - 000003914 _____ C:\Windows\system32\Tasks\FacebookUpdateTaskUserS-1-5-21-3305915279-4216548775-2174266474-1005UA
2021-05-24 00:17 - 2013-09-06 12:40 - 000003546 _____ C:\Windows\system32\Tasks\FacebookUpdateTaskUserS-1-5-21-3305915279-4216548775-2174266474-1005Core
2021-05-24 00:17 - 2013-04-30 21:30 - 000003982 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{6498E195-9FD1-4FCE-BB66-F149DDE8C9CF}
2021-05-24 00:17 - 2013-01-08 23:09 - 000003118 _____ C:\Windows\system32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe
2021-05-24 00:17 - 2013-01-08 23:09 - 000003090 _____ C:\Windows\system32\Tasks\Microsoft_Hardware_Launch_itype_exe
2021-05-24 00:17 - 2012-09-17 17:57 - 000003534 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-05-24 00:17 - 2012-09-17 17:57 - 000003406 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-05-24 00:17 - 2012-04-15 10:28 - 000003092 _____ C:\Windows\system32\Tasks\Microsoft_Hardware_Launch_ipoint_exe
2021-05-24 00:17 - 2012-01-20 13:44 - 000003160 _____ C:\Windows\system32\Tasks\SidebarExecute
2021-05-23 21:28 - 2018-09-08 10:47 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2021-05-23 20:42 - 2012-06-30 23:40 - 000000000 ____D C:\Users\Paula
2021-05-23 20:11 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2021-05-23 20:05 - 2012-05-07 16:20 - 000000000 ____D C:\Program Files (x86)\My Company Name
2021-05-23 17:52 - 2020-12-27 20:09 - 000000000 ____D C:\Program Files (x86)\UltraStar WorldParty
2021-05-23 16:37 - 2018-01-04 17:00 - 000000000 ____D C:\Users\Paula\AppData\LocalLow\WebEx
2021-05-19 21:16 - 2020-06-01 11:44 - 000000000 ____D C:\Users\Paula\AppData\Local\Spotify
2021-05-19 21:11 - 2020-06-01 11:41 - 000000000 ____D C:\Users\Paula\AppData\Roaming\Spotify
2021-05-19 10:34 - 2020-05-18 11:46 - 000522896 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2021-05-18 16:38 - 2012-09-17 17:57 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-05-18 16:22 - 2019-01-09 00:33 - 000002061 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-05-11 08:40 - 2014-02-02 13:54 - 000000000 ____D C:\Users\Paula\AppData\Local\CrashDumps
2021-05-10 23:48 - 2018-05-31 20:57 - 000000000 ____D C:\Users\Paula\AppData\LocalLow\Temp
2021-05-10 23:46 - 2013-09-18 23:19 - 000000000 ____D C:\Windows\system32\Tasks\Norton Family
2021-05-10 23:46 - 2012-07-18 12:13 - 000000000 ____D C:\Users\Alex
2021-05-10 23:46 - 2009-07-14 05:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2021-05-07 14:45 - 2016-05-28 16:58 - 000000000 ____D C:\Program Files (x86)\QuickTime
2021-04-30 00:33 - 2012-01-20 13:45 - 000001988 _____ C:\Windows\system32\ServiceFilter.ini
2021-04-30 00:27 - 2013-02-26 17:14 - 000000000 ____D C:\Users\Paula\AppData\Roaming\uTorrent
2021-04-29 20:26 - 2011-02-19 06:19 - 000759382 _____ C:\Windows\system32\perfh00A.dat
2021-04-29 20:26 - 2011-02-19 06:19 - 000163162 _____ C:\Windows\system32\perfc00A.dat
2021-04-29 20:26 - 2009-07-14 07:13 - 001708978 _____ C:\Windows\system32\PerfStringBackup.INI
2021-04-28 20:48 - 2021-04-20 12:59 - 000000000 ____D C:\Users\Paula\Desktop\disco
2021-04-28 13:30 - 2019-09-10 09:41 - 000000000 ____D C:\Users\Paula\.afirma
2021-04-25 16:15 - 2020-10-14 09:43 - 000180448 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2021-04-25 16:15 - 2020-05-18 11:46 - 000467720 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2021-04-25 16:15 - 2020-05-18 11:46 - 000326992 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2021-04-25 16:15 - 2020-05-18 11:46 - 000250336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2021-04-25 16:15 - 2020-05-18 11:46 - 000107792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2021-04-25 16:15 - 2020-05-18 11:46 - 000099288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2021-04-25 16:15 - 2020-05-18 11:46 - 000082872 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2021-04-25 16:15 - 2020-05-18 11:46 - 000041296 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2021-04-25 16:14 - 2020-05-18 11:46 - 000850632 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2021-04-25 16:14 - 2020-05-18 11:46 - 000365024 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2021-04-25 16:14 - 2020-05-18 11:46 - 000212192 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
==================== Archivos en la raíz de algunos directorios ========
2019-05-31 20:49 - 2019-05-31 20:49 - 000003725 _____ () C:\Program Files\48588549Z_PAULA_LILLO__1559328497699.p12
2020-05-05 18:31 - 2020-05-05 18:31 - 000008704 _____ () C:\Users\Paula\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
==================== SigCheck ============================
(No existe una corrección automática para los archivos que no pasan la verificación.)
LastRegBack: 2021-05-23 23:20
==================== Final de FRST.txt ========================
OK, perfecto.
Ahora debes de hacer una COPIA DE SEGURIDAD DEL REGISTRO, para ello:
El anterior Script de reparación es personalizado para la máquina en concreto para la cual se fabricó y está hecho específicamente por un miembro del Staff. Si se tiene un problema parecido, por favor abra su propio tema para recibir ayuda personalizada y específica. Utilizar Scripts de otros Sistemas puede causar daños graves en su ordenador.
Es un disco duro mecánico HDD, este sí que debe de ser desfragmentado. Para ello haz lo que se indica en esta guía: 
.
Comprobar/Estabilizar el sistema después de Eliminar Malwares >> 
Desfragmentar la unidad C: que es donde reside el sistema operativo, pues está un poco fragmentada y a lo largo del tiempo puede disminuir el rendimiento de esta. >> 
Fortificar un poco el sistema para prevenir futuras infecciones + una serie de buenas praxis en cuanto a un buen nivel de seguridad de vida digital >> 
