Hola Sandra, te adjunto los reportes
Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 02-11-2020
Ejecutado por Usuario (administrador) sobre USUARIO-HP (Hewlett-Packard HP Pavilion dm1 Notebook PC) (02-11-2020 22:29:29)
Ejecutado desde C:\Users\Usuario\Desktop
Perfiles cargados: Usuario
Platform: Windows 7 Home Premium Service Pack 1 (X64) Idioma: Español (España, internacional)
Navegador predeterminado: Chrome
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Procesos (Lista blanca) =================
(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)
(ABBYY Production LLC -> ABBYY Production LLC) C:\Program Files (x86)\Common Files\ABBYY\FineReader\12.00\Licensing\CE\NetworkLicenseServer.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices Inc.) [Archivo no firmado] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(ATI Technologies Inc.) [Archivo no firmado] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(CyberLink -> CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\108.4.453\QtWebEngineProcess.exe <3>
(EasyBits Software AS -> EasyBits Software AS) [Archivo no firmado] C:\Windows\SysWOW64\ezSharedSvcHost.exe
(Hewlett-Packard Company -> ) C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar2.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(pdfforge GmbH -> pdfforge GmbH) C:\Program Files (x86)\PDF Architect 3\creator-ws.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
==================== Registro (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1128448 2011-07-01] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2802472 2011-06-21] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [SetDefault] => C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe [43320 2011-09-30] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-06-28] (Advanced Micro Devices, Inc.) [Archivo no firmado]
HKLM-x32\...\Run: [Magic Desktop for HP notification] => C:\ProgramData\Easybits Magic Desktop for HP\mdhpSUN.exe [1444880 2015-11-25] (Easybits AS -> Easybits)
HKLM-x32\...\Run: [HPQuickWebProxy] => C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [169528 2011-10-08] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM-x32\...\Run: [HPOSD] => C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [379960 2011-08-19] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [574008 2011-07-11] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HP CoolSense] => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1342008 2011-08-26] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [Easybits Recovery] => C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [61112 2011-09-15] (EasyBits Software AS -> EasyBits Software AS) [Archivo no firmado]
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7932928 2020-10-20] (Dropbox, Inc -> Dropbox, Inc.)
HKU\S-1-5-21-4012311900-787429852-1845282871-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [28990136 2020-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [115592 2015-09-12] (pdfforge GmbH -> pdfforge GmbH)
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll [2011-09-20] (Broadcom Corporation -> Broadcom Corporation.)
HKLM\Software\...\Authentication\Credential Providers: [{D28973E5-8630-41af-8831-50A15FEB396B}] -> C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll [2011-09-20] (Broadcom Corporation -> Broadcom Corporation.)
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
==================== Tareas programadas (Lista blanca) ============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
Task: {24B7C37C-77AD-4BEA-AE0A-CFD6108867B3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Total Care Tune-Up => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPTuneUp.exe [17976 2011-03-22] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {3119BD5D-B52F-49C5-8167-62EBDAA71BAC} - System32\Tasks\{998304B1-DD42-44B2-8725-31D267EC6684} => C:\Program Files (x86)\Panda Security\Panda Security Protection\JobLauncher.exe
Task: {58B30750-B2A7-40A2-BE3E-97DF16357818} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc -> Dropbox, Inc.)
Task: {5BC22D14-06BF-4D0C-92AF-2F80DEFF0D12} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-01-02] (Google Inc -> Google Inc.)
Task: {6179121F-21B3-4C9C-A33F-3423EC92FA0F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater\HPSFUpdater.exe [850488 2011-06-14] (Hewlett-Packard Company -> Hewlett-Packard)
Task: {67315F65-ADD6-4A13-8077-D05A19B8D3FA} - System32\Tasks\{4715AD33-B466-4547-A09B-A338142CD6EC} => C:\Program Files (x86)\Panda Security\Panda Security Protection\JobLauncher.exe
Task: {6CCFDEDD-D9BA-4C92-967C-EFD589287C0A} - System32\Tasks\{677FF056-CECA-47F6-8C29-246BC1610DDA} => C:\Program Files (x86)\Panda Security\Panda Security Protection\JobLauncher.exe
Task: {7EFA0092-E1A1-4967-BD6C-B60FED57E37C} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488 2011-07-06] (CyberLink -> CyberLink)
Task: {8B372E1B-7006-4979-B9C6-83F8008A8CA5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24584376 2020-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8D323510-476E-4746-AA68-2D3A074BD02B} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc -> Dropbox, Inc.)
Task: {9A79BDF5-8CBB-4906-86B3-9C8C7173E556} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [7255608 2011-09-09] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {A21113CE-BBEC-44F8-B789-D765A3B5EE0A} - System32\Tasks\Microsoft\Windows\Wininet\CacheTask => {0358b920-0ac7-461f-98f4-58e32cd89148} C:\Windows\system32\wininet.dll [4858880 2019-06-18] (Microsoft Corporation)
Task: {A4EA02F1-A757-4B0C-8BA1-B7CA8ABA8FB2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [7255608 2011-09-09] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {B0BD95F1-0864-4C28-99B3-65DB3F6F1C8D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-11-02] (Adobe Inc. -> Adobe)
Task: {C496E1EE-BC1B-4A03-B190-0F19528C32B8} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {C5924A03-9F41-4D9B-9918-3748B97D348D} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_445_pepper.exe [1497656 2020-11-02] (Adobe Inc. -> Adobe)
Task: {D0CA26AE-8087-4F79-AF7B-6C3CD95A4994} - System32\Tasks\{BE247ACC-408C-46AE-8C74-E5993023FB31} => C:\Program Files (x86)\Panda Security\Panda Security Protection\JobLauncher.exe
Task: {D0EA13F7-87CC-4152-BA92-28ADB819D2AE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-01-02] (Google Inc -> Google Inc.)
Task: {DAA9621A-B2AF-4343-9B97-98D1BF200DD0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFMessenger\HPSFMsgr.exe [729656 2011-09-09] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {F8ED7669-274A-48B9-9ACE-2406644DF7FA} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\{4715AD33-B466-4547-A09B-A338142CD6EC}.job => C:\Program Files (x86)\Panda Security\Panda Security Protection\JobLauncher.exe
Task: C:\Windows\Tasks\{677FF056-CECA-47F6-8C29-246BC1610DDA}.job => C:\Program Files (x86)\Panda Security\Panda Security Protection\JobLauncher.exe
Task: C:\Windows\Tasks\{998304B1-DD42-44B2-8725-31D267EC6684}.job => C:\Program Files (x86)\Panda Security\Panda Security Protection\JobLauncher.exe
==================== Internet (Lista blanca) ====================
(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)
Winsock: Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [152864 2010-10-07] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392 2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392 2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 10 C:\Program Files\Bonjour\mdnsNSP.dll [193824 2010-10-07] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 80.58.61.254 80.58.61.250
Tcpip\..\Interfaces\{858A1C3C-38E6-484E-A89E-6A27F4A66E37}: [DhcpNameServer] 80.58.61.254 80.58.61.250
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\PDF Architect 3\resources\pdfarchitect3firefoxextension
FF Extension: (PDF Architect 3 Creator) - C:\Program Files (x86)\PDF Architect 3\resources\pdfarchitect3firefoxextension [2015-09-12] [Heredado] [no firmado]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2010-12-08] (WildTangent Inc -> )
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2011-06-06] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: PDF Architect 3 -> C:\Program Files (x86)\PDF Architect 3\np-previewer.dll [2015-04-24] (pdfforge GmbH -> pdfforge GmbH)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default [2020-10-27]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-10-24]
CHR Extension: (Chrome Media Router) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-24]
CHR Profile: C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\System Profile [2020-04-19]
==================== Servicios (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
R2 ABBYY.Licensing.FineReader.Corporate.12.0; C:\Program Files (x86)\Common Files\ABBYY\FineReader\12.00\Licensing\CE\NetworkLicenseServer.exe [961744 2014-07-17] (ABBYY Production LLC -> ABBYY Production LLC)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [64952 2011-06-06] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-11-02] (Adobe Inc. -> Adobe)
R2 AESTFilters; C:\Program Files\IDT\WDM\AESTSr64.exe [89600 2009-03-03] (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation)
S3 BoxSyncUpdateService; C:\Program Files\Box\Box Sync\SyncUpdaterService.exe [36240 2016-02-26] (Box, Inc. -> Box, Inc.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [44552 2020-10-20] (Dropbox, Inc -> Dropbox, Inc.)
R2 ezSharedSvc; C:\Windows\SysWOW64\ezSharedSvcHost.exe [514232 2010-04-23] (EasyBits Software AS -> EasyBits Software AS) [Archivo no firmado]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Archivo no firmado]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7185288 2020-10-24] (Malwarebytes Inc -> Malwarebytes)
S3 PDF Architect 3; C:\Program Files (x86)\PDF Architect 3\ws.exe [2244312 2015-04-24] (pdfforge GmbH -> pdfforge GmbH)
S3 PDF Architect 3 CrashHandler; C:\Program Files (x86)\PDF Architect 3\crash-handler-ws.exe [901336 2015-04-24] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF Architect 3 Creator; C:\Program Files (x86)\PDF Architect 3\creator-ws.exe [740568 2015-04-24] (pdfforge GmbH -> pdfforge GmbH)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [302592 2011-07-01] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292096 2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
===================== Controladores (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
S3 aftap0901; C:\Windows\System32\DRIVERS\aftap0901.sys [48624 2017-11-16] (AnchorFree Inc -> The OpenVPN Project)
R3 BTWDPAN; C:\Windows\System32\DRIVERS\btwdpan.sys [89640 2011-09-21] (Broadcom Corporation -> Broadcom Corporation.)
R3 clwvd; C:\Windows\System32\DRIVERS\clwvd.sys [31088 2010-07-28] (CyberLink -> CyberLink Corporation)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [153312 2020-10-24] (Malwarebytes Corporation -> Malwarebytes)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [218112 2020-11-01] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [197280 2020-11-02] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [74936 2020-11-02] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-10-27] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [121968 2020-11-02] (Malwarebytes Inc -> Malwarebytes)
S3 SrvHsfHDA; C:\Windows\System32\DRIVERS\VSTAZL6.SYS [292864 2009-06-10] (Microsoft Windows -> Conexant Systems, Inc.)
S3 SrvHsfV92; C:\Windows\System32\DRIVERS\VSTDPV6.SYS [1485312 2009-06-10] (Microsoft Windows -> Conexant Systems, Inc.)
S3 SrvHsfWinac; C:\Windows\System32\DRIVERS\VSTCNXT6.SYS [740864 2009-06-10] (Microsoft Windows -> Conexant Systems, Inc.)
R3 STHDA; C:\Windows\System32\DRIVERS\stwrt64.sys [528896 2011-07-01] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
==================== NetSvcs (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
==================== Un mes (creado) ===================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2020-11-02 22:29 - 2020-11-02 22:38 - 000021037 _____ C:\Users\Usuario\Desktop\FRST.txt
2020-11-02 22:28 - 2020-11-02 22:28 - 000004466 _____ C:\Windows\system32\Tasks\Adobe Flash Player PPAPI Notifier
2020-11-02 22:28 - 2020-11-02 22:28 - 000000000 ____D C:\Users\Usuario\Desktop\FRST-OlderVersion
2020-11-02 22:27 - 2020-11-02 22:27 - 000000000 ____D C:\Users\Usuario\Desktop\Nueva carpeta
2020-11-02 22:19 - 2020-11-02 22:19 - 000074936 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2020-11-02 22:18 - 2020-11-02 22:18 - 000197280 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2020-11-02 22:18 - 2020-11-02 22:18 - 000121968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2020-11-01 00:44 - 2020-11-01 00:44 - 000000000 ____D C:\Users\Usuario\AppData\LocalLow\IGDump
2020-11-01 00:27 - 2020-11-01 00:27 - 000218112 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2020-10-27 10:06 - 2020-10-27 10:10 - 000008155 _____ C:\Users\Usuario\Desktop\Fixlog.txt
2020-10-27 09:53 - 2020-10-27 09:53 - 000000265 _____ C:\Users\Usuario\Desktop\DelFix.txt
2020-10-27 09:47 - 2020-10-27 09:47 - 000797760 _____ C:\Users\Usuario\Desktop\delfix.exe
2020-10-27 08:51 - 2020-10-27 08:51 - 000001034 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2020-10-27 08:51 - 2020-10-27 08:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2020-10-27 08:51 - 2020-10-27 08:51 - 000000000 ____D C:\Program Files\VS Revo Group
2020-10-27 08:21 - 2020-10-27 08:21 - 007456024 _____ (VS Revo Group ) C:\Users\Usuario\Desktop\revosetup.exe
2020-10-27 08:20 - 2020-10-27 08:21 - 001988304 _____ (Panda Security, S.L.) C:\Users\Usuario\Desktop\uninstaller.exe
2020-10-26 16:48 - 2020-10-27 08:46 - 000000024 _____ C:\Windows\PSENDGU.TMP
2020-10-26 16:44 - 2020-10-27 10:11 - 000343348 _____ C:\Windows\ntbtlog.txt
2020-10-24 14:33 - 2020-11-02 22:36 - 000000000 ____D C:\FRST
2020-10-24 14:29 - 2020-11-02 22:28 - 002298368 _____ (Farbar) C:\Users\Usuario\Desktop\FRST64.exe
2020-10-24 14:03 - 2020-10-24 14:04 - 000002345 _____ C:\Users\Usuario\Desktop\3 mb.txt
2020-10-24 08:19 - 2020-10-24 08:19 - 000001948 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-10-24 08:12 - 2020-10-27 10:17 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2020-10-24 08:09 - 2020-10-24 08:08 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2020-10-24 07:46 - 2020-10-24 07:46 - 000001550 _____ C:\Users\Usuario\Desktop\MB.txt
2020-10-23 20:21 - 2020-10-24 08:19 - 000001960 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-10-23 20:18 - 2020-10-23 20:18 - 000000000 ____D C:\Program Files\Malwarebytes
2020-10-23 20:13 - 2020-10-23 20:13 - 000003809 _____ C:\Users\Usuario\Desktop\2 ZHPCleaner (R).txt
2020-10-23 17:40 - 2020-10-23 18:06 - 000004105 _____ C:\Users\Usuario\Desktop\ZHPCleaner (S).txt
2020-10-23 17:36 - 2020-10-23 17:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2020-10-23 17:14 - 2020-10-23 20:13 - 000011494 _____ C:\Users\Usuario\Desktop\ZHPCleaner (R).html
2020-10-23 17:09 - 2020-10-23 18:06 - 000011919 _____ C:\Users\Usuario\Desktop\ZHPCleaner (S).html
2020-10-23 16:40 - 2020-10-23 20:14 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\ZHP
2020-10-23 16:40 - 2020-10-23 16:40 - 000000000 ____D C:\Users\Usuario\AppData\Local\ZHP
2020-10-23 16:33 - 2020-10-23 16:33 - 000006564 _____ C:\Users\Usuario\Desktop\1 AdwCleaner[S00].txt
2020-10-23 16:30 - 2020-10-23 16:30 - 000001772 _____ C:\Users\Usuario\Desktop\1 AdwCleaner[C00].txt
2020-10-23 16:10 - 2020-10-23 16:22 - 000000000 ____D C:\AdwCleaner
2020-10-23 15:53 - 2020-10-23 15:54 - 029069888 _____ (Piriform Software Ltd) C:\Users\Usuario\Downloads\ccsetup572.exe
2020-10-23 15:51 - 2020-11-02 22:21 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-10-23 15:51 - 2020-10-23 15:51 - 000002816 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-10-23 15:51 - 2020-10-23 15:51 - 000000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-10-23 15:51 - 2020-10-23 15:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-10-23 15:50 - 2020-10-23 15:51 - 000000000 ____D C:\Program Files\CCleaner
2020-10-23 15:28 - 2020-10-23 15:28 - 002062144 _____ (Malwarebytes) C:\Users\Usuario\Desktop\MBSetup.exe
2020-10-23 15:25 - 2020-10-23 15:27 - 003335040 _____ (Nicolas Coolman) C:\Users\Usuario\Desktop\ZHPCleaner.exe
2020-10-23 15:07 - 2020-10-23 15:08 - 008447152 _____ (Malwarebytes) C:\Users\Usuario\Desktop\adwcleaner_8.0.8.exe
2020-10-23 15:04 - 2020-10-23 15:06 - 025838336 _____ (Piriform Software Ltd) C:\Users\Usuario\Desktop\ccsetup568.exe
2020-10-22 00:53 - 2020-10-22 00:54 - 000000000 ____D C:\Users\Usuario\Downloads\Pilates
2020-10-22 00:33 - 2020-10-22 00:35 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\Skype
2020-10-21 12:19 - 2020-10-24 08:08 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-10-20 22:12 - 2020-10-20 22:12 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2020-10-20 22:12 - 2020-10-20 22:12 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2020-10-20 22:12 - 2020-10-20 22:12 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2020-10-20 22:12 - 2020-10-20 22:12 - 000044552 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2020-10-20 12:07 - 2020-10-20 12:07 - 000003252 _____ C:\Windows\system32\Tasks\{BE247ACC-408C-46AE-8C74-E5993023FB31}
2020-10-20 11:05 - 2020-10-20 11:06 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\AnyTech365
2020-10-20 11:05 - 2020-10-20 11:05 - 000000000 ____D C:\Users\Usuario\AppData\Local\AnyTech365
2020-10-04 07:49 - 2020-10-04 09:38 - 1373737101 _____ C:\Users\Usuario\Downloads\wetransfer-c6c24c.zip
2020-10-03 20:55 - 2020-10-04 00:35 - 677011557 _____ C:\Users\Usuario\Downloads\Sin confirmar 232268.crdownload
==================== Un mes (modificado) ==================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2020-11-02 22:35 - 2009-07-14 05:45 - 000032064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-11-02 22:35 - 2009-07-14 05:45 - 000032064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-11-02 22:28 - 2018-03-06 17:52 - 000004332 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-11-02 22:28 - 2018-03-06 17:51 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-11-02 22:28 - 2018-03-06 17:51 - 000000000 ____D C:\Windows\system32\Macromed
2020-11-02 22:28 - 2011-10-23 10:57 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-11-02 22:27 - 2011-10-23 10:57 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-11-02 22:25 - 2011-10-23 19:41 - 000806404 _____ C:\Windows\system32\perfh00A.dat
2020-11-02 22:25 - 2011-10-23 19:41 - 000185484 _____ C:\Windows\system32\perfc00A.dat
2020-11-02 22:25 - 2009-07-14 06:13 - 001827574 _____ C:\Windows\system32\PerfStringBackup.INI
2020-11-02 22:25 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2020-11-02 22:17 - 2015-09-15 22:20 - 000000990 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2020-11-02 22:17 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-11-01 00:46 - 2015-09-15 22:20 - 000000994 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2020-10-27 10:09 - 2016-06-06 15:41 - 000000000 ____D C:\Users\Usuario\AppData\LocalLow\Temp
2020-10-27 10:06 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\GroupPolicy
2020-10-27 09:52 - 2018-05-03 00:05 - 000000265 _____ C:\DelFix.txt
2020-10-27 09:27 - 2017-02-25 10:44 - 000000000 ____D C:\Users\Usuario\AppData\LocalLow\Sun
2020-10-27 09:27 - 2017-02-25 10:43 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\Sun
2020-10-27 09:27 - 2017-02-25 10:38 - 000000000 ____D C:\ProgramData\Oracle
2020-10-27 08:57 - 2016-08-16 10:18 - 000000000 ____D C:\ProgramData\Panda Security
2020-10-27 08:55 - 2016-08-16 10:21 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\Panda Security
2020-10-23 17:36 - 2015-09-15 22:20 - 000000000 ____D C:\Program Files (x86)\Dropbox
2020-10-23 16:05 - 2015-09-12 16:43 - 000000000 ____D C:\Users\Usuario\AppData\Local\PDFCreator
2020-10-23 16:05 - 2015-09-12 16:27 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\MPC-HC
2020-10-23 16:03 - 2016-03-05 23:53 - 000000000 ____D C:\Users\Usuario\AppData\Local\CrashDumps
2020-10-23 14:45 - 2018-01-01 10:36 - 000000000 ____D C:\Users\Usuario\Downloads\Programas
2020-10-22 22:36 - 2019-05-19 23:54 - 000000000 ____D C:\Users\Usuario\Desktop\Antivirus
2020-10-22 22:30 - 2015-09-12 16:23 - 000000000 ____D C:\Archivos programas descargados
2020-10-22 01:13 - 2015-12-09 16:35 - 000000000 ____D C:\Users\Usuario\Downloads\Telegram Desktop
2020-10-20 11:59 - 2016-08-16 10:20 - 000000000 ____D C:\Program Files (x86)\Panda Security
2020-10-20 10:54 - 2015-09-10 09:06 - 000000000 ____D C:\Users\Usuario\AppData\Local\Deployment
2020-10-15 21:40 - 2020-01-20 13:40 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-10-05 23:55 - 2020-01-20 13:40 - 000000000 ____D C:\Users\Usuario\AppData\LocalLow\Mozilla
2020-10-05 22:32 - 2020-09-16 21:20 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
==================== Archivos en la raíz de algunos directorios ========
2020-04-03 17:18 - 2020-04-03 17:21 - 000009728 _____ () C:\Users\Usuario\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
==================== SigCheck ============================
(No existe una corrección automática para los archivos que no pasan la verificación.)
LastRegBack: 2020-10-27 11:46
==================== Final de FRST.txt ========================