Hola, gracias, seguí los pasos y abajo empiezo a adjuntar el informe. Primero Frst.txt
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19-06-2019
Ran by CDD (administrator) on DESKTOP-5ROB5F9 (21-06-2019 00:41:20)
Running from C:\Users\CDD\Desktop
Loaded Profiles: CDD & MSSQL$SQLEXPRESS (Available Profiles: CDD & SQLTELEMETRY$SQLEXPRESS & MSSQL$SQLEXPRESS)
Platform: Windows 10 Enterprise Version 1803 17134.648 (X64) Language: Español (México)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ALCPU -> ALCPU) C:\Program Files\Core Temp\Core Temp.exe
(Disc Soft Ltd -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Disc Soft Ltd -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL14.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\tbaseprovisioning.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1905.4-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1905.4-0\NisSrv.exe
(Motorola Mobility Inc. -> Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
(Motorola Mobility Inc. -> Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
(Motorola) [File not signed] C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
(Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
(Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
(Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
(SOFTPERFECT PTY. LTD. -> SoftPerfect) C:\Program Files\NetWorx\networx.exe
(SUPERAntiSpyware.com -> SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Visicom Media Inc. -> Visicom Media Inc.) C:\Program Files\Panda Security URL Filtering\Panda_URL_Filteringb.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16776192 2016-12-02] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [NetWorx] => C:\Program Files\NetWorx\networx.exe [7640904 2016-12-08] (SOFTPERFECT PTY. LTD. -> SoftPerfect)
HKLM\...\Run: [SoftEther VPN Client UI Helper] => C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [5250712 2018-05-20] (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.)
HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [153808 2018-12-19] (Panda Security S.L. -> Panda Security, S.L.)
HKLM\...\Winlogon: [Userinit] C:\WINDOWS\SysWOW64\userinit.exe, <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-2952037624-2585293238-3401107817-1001\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner64.exe [22691064 2019-06-04] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2952037624-2585293238-3401107817-1001\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [718208 2010-03-16] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2952037624-2585293238-3401107817-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22691064 2019-06-04] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2952037624-2585293238-3401107817-1001\...\Run: [ASRock A-Tuning] => [X]
HKU\S-1-5-21-2952037624-2585293238-3401107817-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [46956792 2019-05-22] (Google LLC -> )
HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\75.0.3770.100\Installer\chrmstp.exe [2019-06-20] (Google LLC -> Google LLC)
Lsa: [Authentication Packages] msv1_0 SshdPinAuthLsa
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SoftEther VPN Client Manager Startup.lnk [2018-05-20]
ShortcutTarget: SoftEther VPN Client Manager Startup.lnk -> C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.)
Startup: C:\Users\CDD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2019-02-08]
ShortcutTarget: MEGAsync.lnk -> C:\ProgramData\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited)
GroupPolicyScripts: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {13BF709F-F5D9-4516-BFB5-BAE392031F44} - no filepath
Task: {15BB6E05-7106-419E-B08A-2C934252BDF2} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [914896 2018-04-15] (Glarysoft LTD -> Glarysoft Ltd)
Task: {1F9442C8-4E86-4919-AA9A-D2CCF43FAD14} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877448 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {23A921BB-B718-401A-9AF5-75F2772120CB} - no filepath
Task: {2866D305-0F2D-4256-B08A-BF0B5FB0E913} - System32\Tasks\Core Temp Autostart CDD => C:\Program Files\Core Temp\Core Temp.exe [1010064 2019-05-18] (ALCPU -> ALCPU)
Task: {2985C7D0-6312-440A-BE64-1153516CEDF8} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2B68EE86-22B5-4ECA-B8FB-095246768FDF} - no filepath
Task: {3A6189D8-72B8-445A-ABAC-BF22E56CB97D} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [572808 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {435DF7D7-283E-4F0D-8DD5-863592AC605A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-06-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {47DBD437-54F3-47C2-A1DC-9483B8054D6E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [841096 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4EE7A662-E170-41DC-A81F-8C4BE82CC731} - no filepath
Task: {6AA0B5CB-07AD-4062-8B03-61122C9468C1} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877448 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {72D14EBA-90E2-4BE2-B5DD-08252827796A} - no filepath
Task: {7478F7DD-6F90-4C07-9E54-EC6E9188EA27} - System32\Tasks\GlaryInitialize 5 => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [135120 2018-04-15] (Glarysoft LTD -> Glarysoft Ltd)
Task: {752A80E0-4BCE-4F49-94A9-4E5C24FC79FB} - no filepath
Task: {8258258A-C353-43F0-8E40-24CAFC9E4483} - no filepath
Task: {8B42721F-2779-456D-B9F0-7E8E46BFE4F4} - System32\Tasks\Motorola Device Manager Initial Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [272176 2014-10-30] (Motorola Mobility Inc. -> )
Task: {92A78932-0FF8-4310-ADBF-C66BD6802B25} - no filepath
Task: {A0294555-E69A-474F-8F2C-CF8441184F6E} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-2952037624-2585293238-3401107817-1001 => C:\ProgramData\MEGAsync\MEGAupdater.exe [615160 2019-06-05] (Mega Limited -> Mega Limited)
Task: {A76397E7-0A85-41E1-BBB9-3A6D4BE804D6} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [841096 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A9D6D296-ED01-4A62-8A71-E07DFE45A145} - no filepath
Task: {ACF0A388-5BB9-43BE-97A8-2F88E23DF59F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [702856 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {ADE24835-A187-4FDE-B04D-A053D2D2405D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-07-28] (Google Inc -> Google Inc.)
Task: {AE2FC3B5-6E12-4155-A7B0-F7EECA0F1C10} - no filepath
Task: {C45AC2C6-EE48-4794-8D46-E59D160CC458} - System32\Tasks\Motorola Device Manager Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [272176 2014-10-30] (Motorola Mobility Inc. -> )
Task: {CEB237E3-59E7-4532-A378-9CAB55054D56} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877448 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CF4FCD54-415C-4F3F-8E54-12135E1A9AFD} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D11AED34-BFA1-4538-9B19-4E06D6C08C88} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK
Task: {E334CEF9-D54E-4B54-85A3-68A6FB8E9ADA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-07-28] (Google Inc -> Google Inc.)
Task: {F1E2245F-4407-450A-9581-424D0A0BD737} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16664352 2019-06-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {F4D8F516-7DD4-4A2E-BA61-CAF63B9B51DF} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3724680 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F83E3CA6-CA9B-452A-93B8-D811E0C59DB7} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877448 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 186.130.128.250 186.130.129.250
Tcpip\..\Interfaces\{4900c97d-a878-4001-a7f4-537f2245a136}: [DhcpNameServer] 10.14.0.1
Tcpip\..\Interfaces\{ab1430f0-3209-435c-a171-785ec7d4ebd6}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{ab1430f0-3209-435c-a171-785ec7d4ebd6}: [DhcpNameServer] 186.130.128.250 186.130.129.250
Internet Explorer:
==================
HKU\S-1-5-21-2952037624-2585293238-3401107817-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://ar.search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10420__180531__yaie
SearchScopes: HKU\S-1-5-21-2952037624-2585293238-3401107817-1001 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://ar.search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10420__180531__yaie&p={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2018-05-20] (Oracle America, Inc. -> Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation)
BHO: Panda Safe Web -> {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} -> C:\Program Files (x86)\pandasecuritytb\pandasecurityDx64.dll [2017-03-30] (Visicom Media Inc. -> )
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2018-05-20] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Panda Safe Web -> {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} -> C:\Program Files (x86)\pandasecuritytb\pandasecurityDx.dll [2017-03-30] (Visicom Media Inc. -> )
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Panda Safe Web - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files (x86)\pandasecuritytb\pandasecurityDx64.dll [2017-03-30] (Visicom Media Inc. -> )
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Panda Safe Web - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files (x86)\pandasecuritytb\pandasecurityDx.dll [2017-03-30] (Visicom Media Inc. -> )
FireFox:
========
FF DefaultProfile: rn34qu2q.default
FF DefaultProfile: w9splgl5.default
FF ProfilePath: C:\Users\CDD\AppData\Roaming\Mozilla\Firefox\Profiles\rn34qu2q.default [2019-06-21]
FF Homepage: Mozilla\Firefox\Profiles\rn34qu2q.default -> www.google.com.ar/
FF NewTab: Mozilla\Firefox\Profiles\rn34qu2q.default -> hxxps://ar.search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10420__180531__yaff
FF NetworkProxy: Mozilla\Firefox\Profiles\rn34qu2q.default -> backup.ftp", "181.10.158.203 "
FF Extension: (anonymoX) - C:\Users\CDD\AppData\Roaming\Mozilla\Firefox\Profiles\rn34qu2q.default\Extensions\[email protected] [2018-12-15]
FF Extension: (MyJDownloader Browser Extension) - C:\Users\CDD\AppData\Roaming\Mozilla\Firefox\Profiles\rn34qu2q.default\Extensions\[email protected] [2019-05-31] [UpdateUrl:hxxps://my.jdownloader.org/extensions/firefox.json]
FF Extension: (Saved Password Editor) - C:\Users\CDD\AppData\Roaming\Mozilla\Firefox\Profiles\rn34qu2q.default\Extensions\[email protected] [2017-11-02] [Legacy]
FF Extension: (Tile Tabs WE) - C:\Users\CDD\AppData\Roaming\Mozilla\Firefox\Profiles\rn34qu2q.default\Extensions\[email protected] [2019-04-20]
FF Extension: (Tile Tabs) - C:\Users\CDD\AppData\Roaming\Mozilla\Firefox\Profiles\rn34qu2q.default\Extensions\[email protected] [2017-08-17] [Legacy]
FF Extension: (NoScript) - C:\Users\CDD\AppData\Roaming\Mozilla\Firefox\Profiles\rn34qu2q.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2019-06-16]
FF Extension: (Foxtrick WebExt (beta)) - C:\Users\CDD\AppData\Roaming\Mozilla\Firefox\Profiles\rn34qu2q.default\Extensions\{9d1f059c-cada-4111-9696-41a62d64e3ba}.xpi [2019-06-02] [UpdateUrl:hxxps://www.foxtrick.org/beta/update.json]
FF Extension: (Password Exporter) - C:\Users\CDD\AppData\Roaming\Mozilla\Firefox\Profiles\rn34qu2q.default\Extensions\{B17C1C5A-04B1-11DB-9804-B622A1EF5492}.xpi [2017-07-28] [Legacy]
FF Extension: (Panda Security Toolbar) - C:\Users\CDD\AppData\Roaming\Mozilla\Firefox\Profiles\rn34qu2q.default\Extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}.xpi [2017-02-21] [Legacy]
FF Extension: (Video DownloadHelper) - C:\Users\CDD\AppData\Roaming\Mozilla\Firefox\Profiles\rn34qu2q.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2019-05-31]
FF Extension: (No Name) - C:\Users\CDD\AppData\Roaming\Mozilla\Firefox\Profiles\rn34qu2q.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-04-20]
FF SearchPlugin: C:\Users\CDD\AppData\Roaming\Mozilla\Firefox\Profiles\rn34qu2q.default\searchplugins\yahoo-lavasoft-ff59.xml [2018-05-31]
FF ProfilePath: C:\Users\CDD\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\w9splgl5.default [2019-06-20]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2017-07-28] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_31_0_0_108.dll [2018-09-17] (Adobe Systems Incorporated -> )
FF Plugin: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2018-05-20] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2018-05-20] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2012-09-20] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_31_0_0_108.dll [2018-09-17] (Adobe Systems Incorporated -> )
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2019-02-20] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2019-02-20] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-16] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-16] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2013-05-11] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2012-09-20] (Adobe Systems Incorporated -> Adobe Systems)
Chrome:
=======
CHR DefaultSearchURL: Default -> hxxps://pandasecurity.mystart.com/results.php?pr=vmn&id=pandasafeweb&v=1_0_chromeextension_unknown__&searchfeed=web&hsimp=yhs-panda1&ent=ch_ss&q={searchTerms}
CHR DefaultSearchKeyword: Default -> safeWeb
CHR Profile: C:\Users\CDD\AppData\Local\Google\Chrome\User Data\Default [2019-06-20]
CHR Extension: (Presentaciones) - C:\Users\CDD\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-11-19]
CHR Extension: (Universal Bypass) - C:\Users\CDD\AppData\Local\Google\Chrome\User Data\Default\Extensions\aihomhdbhpnpmcnnbckjjcebjoikpihj [2019-06-12]
CHR Extension: (Documentos) - C:\Users\CDD\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-11-19]
CHR Extension: (Google Drive) - C:\Users\CDD\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-07-31]
CHR Extension: (YouTube) - C:\Users\CDD\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-07-31]
CHR Extension: (Foxtrick) - C:\Users\CDD\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpfbbngccefbbndginomofgpagkjckik [2018-11-14]
CHR Extension: (Adobe Acrobat) - C:\Users\CDD\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-06-12]
CHR Extension: (Panda Safe Web) - C:\Users\CDD\AppData\Local\Google\Chrome\User Data\Default\Extensions\fagakgcelolinfnkfgekcnedpaklfcok [2017-11-19]
CHR Extension: (Lector de Selección (Texto a Voz)) - C:\Users\CDD\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdffijlhedcdiblbingmagmdnokokgbi [2018-09-12]
CHR Extension: (Hojas de cálculo) - C:\Users\CDD\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-11-19]
CHR Extension: (Make it Visible - unBlur Scribd) - C:\Users\CDD\AppData\Local\Google\Chrome\User Data\Default\Extensions\ggeallcahabcjldebjfmlcjikgdnjfao [2018-05-09]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\CDD\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-22]
CHR Extension: (AdBlock) - C:\Users\CDD\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-06-04]
CHR Extension: (Unblur Scribd) - C:\Users\CDD\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipdnchmdifflagbbcdcbgobfedeegbcf [2018-05-09]
CHR Extension: (PictureMate - View tagged FB pics) - C:\Users\CDD\AppData\Local\Google\Chrome\User Data\Default\Extensions\khmlalkcjmglpgdkmkmmgjcajahkoigj [2019-05-11]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\CDD\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2019-02-06]
CHR Extension: (Video DownloadHelper) - C:\Users\CDD\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2019-06-04]
CHR Extension: (Tus PDF Online) - C:\Users\CDD\AppData\Local\Google\Chrome\User Data\Default\Extensions\mchieoackcccmehfdooeibhddofbcegh [2018-05-11]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\CDD\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-10]
CHR Extension: (Cortar vídeo) - C:\Users\CDD\AppData\Local\Google\Chrome\User Data\Default\Extensions\nodkcjollmmjidmcnhloaoahmciabnai [2018-05-06]
CHR Extension: (Gmail) - C:\Users\CDD\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-04]
CHR Extension: (Chrome Media Router) - C:\Users\CDD\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-06-04]
CHR HKLM\...\Chrome\Extension: [fagakgcelolinfnkfgekcnedpaklfcok] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2952037624-2585293238-3401107817-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2013-05-11]
CHR HKLM-x32\...\Chrome\Extension: [fagakgcelolinfnkfgekcnedpaklfcok] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [173472 2017-01-30] (SUPERAntiSpyware.com -> SUPERAntiSpyware.com)
S4 ABBYY.Licensing.FineReader.Corporate.12.0; C:\Program Files (x86)\Common Files\ABBYY\FineReader\12.00\Licensing\CE\NetworkLicenseServer.exe [964848 2015-11-30] (ABBYY Production LLC -> ABBYY Production LLC)
S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [File not signed]
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3480768 2018-01-09] (Disc Soft Ltd -> Disc Soft Ltd)
S3 gramblrclient; C:\Program Files\Gramblr\gramblr.exe [12321360 2018-06-08] (Gramblr -> ) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed]
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
R2 Motorola Device Manager; C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [137528 2014-04-08] (Motorola Mobility Inc. -> Motorola Mobility LLC)
R2 MSSQL$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL14.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [485048 2017-08-22] (Microsoft Corporation -> Microsoft Corporation)
R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [109536 2018-12-18] (Panda Security S.L. -> Panda Security, S.L.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OpenVPNService; C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe [32384 2016-10-03] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 Panda VPN Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\Hydra.Sdk.Windows.Service.exe [320848 2017-11-19] (AnchorFree Inc -> )
R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [84176 2019-02-19] (Panda Security S.L. -> Panda Security, S.L.)
R2 panda_url_filtering; C:\Program Files\Panda Security URL Filtering\Panda_URL_Filteringb.exe [246256 2016-11-22] (Visicom Media Inc. -> Visicom Media Inc.)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [75136 2018-02-05] (Even Balance, Inc. -> )
R2 PST Service; C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [File not signed]
R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [48784 2018-12-19] (Panda Security S.L. -> Panda Security, S.L.)
S4 PuranDefrag; C:\WINDOWS\SYSTEM32\PuranDefragS.exe [292736 2013-08-15] (Vishal Gupta -> Puran Software) [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4737560 2019-02-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SEVPNCLIENT; C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [5250712 2018-05-20] (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.)
S4 SQLAgent$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL14.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [578744 2017-08-22] (Microsoft Corporation -> Microsoft Corporation)
S2 SQLTELEMETRY$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL14.SQLEXPRESS\MSSQL\Binn\sqlceip.exe [246968 2017-08-22] (Microsoft Corporation -> Microsoft Corporation)
S3 sshd; C:\WINDOWS\System32\OpenSSH\sshd.exe [970240 2018-05-20] (Microsoft Windows -> )
S3 SshdBroker; C:\WINDOWS\System32\SshdBroker.dll [285696 2019-02-16] (Microsoft Windows -> Microsoft Corporation)
R2 tbaseprovisioning; C:\WINDOWS\SysWOW64\tbaseprovisioning.exe [51224 2016-08-24] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\NisSrv.exe [2433136 2019-06-21] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MsMpEng.exe [109896 2019-06-21] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2017-11-16] (AnchorFree Inc -> The OpenVPN Project)
R3 ALSysIO; C:\Users\CDD\AppData\Local\Temp\ALSysIO64.sys [47240 2019-06-20] (ALCPU (Arthur Liberman) -> Arthur Liberman) <==== ATTENTION
R3 amdgpio2; C:\WINDOWS\System32\drivers\amdgpio2.sys [34704 2016-08-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc)
R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [24424 2016-08-13] (AMD PMP-PE CB Code Signer v20160415 -> Advanced Micro Devices, Inc)
S3 amdkmcsp; C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys [100752 2016-08-24] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc. )
R3 AMDPCIDev; C:\WINDOWS\System32\drivers\AMDPCIDev.sys [31592 2018-04-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R0 amdpsp; C:\WINDOWS\System32\DRIVERS\amdpsp.sys [254864 2016-08-24] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc. )
R2 AMDRyzenMasterDriver1.0.0; C:\Program Files\AMD\RyzenMaster\bin\AMDRyzenMasterDriver.sys [70312 2017-03-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R1 AsrAppCharger; C:\WINDOWS\system32\DRIVERS\AsrAppCharger.sys [17192 2011-11-07] (ASROCK Incorporation -> Windows (R) Win 7 DDK provider)
S3 AsrDrv101; C:\Windows\SysWOW64\Drivers\AsrDrv101.sys [22280 2017-08-06] (ASROCK Incorporation -> ASRock Incorporation)
S3 AsrDrv103; C:\WINDOWS\SysWOW64\Drivers\AsrDrv103.sys [34568 2018-12-09] (ASROCK Incorporation -> ASRock Incorporation) [File not signed]
R1 cbfs6; C:\WINDOWS\system32\drivers\cbfs6.sys [460992 2016-09-09] (EldoS Corporation -> /n software, Inc.)
S3 csravrcp; C:\WINDOWS\System32\drivers\csravrcp.sys [26304 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 CsrBtPort; C:\WINDOWS\system32\DRIVERS\CsrBtPort.sys [2784968 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csrpan; C:\WINDOWS\System32\drivers\csrpan.sys [39616 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csrserial; C:\WINDOWS\system32\DRIVERS\csrserial.sys [61128 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csrusb; C:\WINDOWS\System32\Drivers\csrusb.sys [47296 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csrusbfilter; C:\WINDOWS\System32\Drivers\csrusbfilter.sys [23752 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csr_bthav; C:\WINDOWS\system32\drivers\csrbthav.sys [99520 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-08-01] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-08-01] (Disc Soft Ltd -> Disc Soft Ltd)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [28424 2018-04-27] (Glarysoft LTD -> Glarysoft Ltd)
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO64A.SYS [27552 2018-01-14] (Martin Malik - REALiX -> REALiX(tm))
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-02-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 Neo_VPN; C:\WINDOWS\System32\drivers\Neo6_x64_VPN.sys [37824 2018-05-20] (SoftEther Corporation -> SoftEther Corporation)
R1 networx; C:\WINDOWS\System32\drivers\networx.sys [72632 2016-10-04] (SOFTPERFECT PTY. LTD. -> NetFilterSDK.com)
R1 NNSALPC; C:\WINDOWS\system32\DRIVERS\NNSALPC.sys [111384 2018-12-14] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSDNS; C:\WINDOWS\system32\DRIVERS\NNSDNS.sys [104728 2018-12-14] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSHTTP; C:\WINDOWS\system32\DRIVERS\NNSHTTP.sys [211736 2018-12-14] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSHTTPS; C:\WINDOWS\system32\DRIVERS\NNSHTTPS.sys [124904 2018-12-14] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSIDS; C:\WINDOWS\system32\DRIVERS\NNSIDS.sys [130536 2018-12-14] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSNAHSL; C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys [95472 2018-07-16] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSPICC; C:\WINDOWS\system32\DRIVERS\NNSPICC.sys [143848 2018-12-14] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSPIHSW; C:\WINDOWS\system32\DRIVERS\NNSPIHSW.sys [95208 2018-12-14] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSPOP3; C:\WINDOWS\system32\DRIVERS\NNSPOP3.sys [135656 2018-12-14] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSPROT; C:\WINDOWS\system32\DRIVERS\NNSPROT.sys [344040 2018-12-14] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSPRV; C:\WINDOWS\system32\DRIVERS\NNSPRV.sys [286184 2018-12-14] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSSMTP; C:\WINDOWS\system32\DRIVERS\NNSSMTP.sys [123368 2018-12-14] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSSTRM; C:\WINDOWS\system32\DRIVERS\NNSSTRM.sys [285672 2018-12-14] (Panda Security S.L. -> Panda Security, S.L.)
R1 NNSTLSC; C:\WINDOWS\system32\DRIVERS\NNSTLSC.sys [129512 2018-12-14] (Panda Security S.L. -> Panda Security, S.L.)
R2 npf; C:\WINDOWS\system32\drivers\npf.sys [36600 2017-10-08] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_edcffbdd101bbe5b\nvlddmkm.sys [20726016 2019-02-21] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-01-16] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [70024 2018-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [66792 2018-10-03] (NVIDIA Corporation -> NVIDIA Corporation)
R3 panda_url_filteringd; C:\Program Files\Panda Security URL Filtering\panda_url_filteringd.sys [51288 2014-03-19] (Visicom Media Inc. -> Visicom Media Inc.)
R2 PSINAflt; C:\WINDOWS\system32\DRIVERS\PSINAflt.sys [198424 2019-01-13] (Panda Security S.L. -> Panda Security, S.L.)
R2 PSINFile; C:\WINDOWS\System32\DRIVERS\PSINFile.sys [160536 2019-01-13] (Panda Security S.L. -> Panda Security, S.L.)
R1 PSINKNC; C:\WINDOWS\system32\DRIVERS\PSINKNC.sys [214104 2018-12-13] (Panda Security S.L. -> Panda Security, S.L.)
R2 PSINProc; C:\WINDOWS\System32\DRIVERS\PSINProc.sys [147224 2019-01-13] (Panda Security S.L. -> Panda Security, S.L.)
R2 PSINProt; C:\WINDOWS\system32\DRIVERS\PSINProt.sys [159512 2019-01-13] (Panda Security S.L. -> Panda Security, S.L.)
R2 PSINReg; C:\WINDOWS\system32\DRIVERS\PSINReg.sys [128600 2018-12-18] (Panda Security S.L. -> Panda Security, S.L.)
R3 PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [72648 2017-05-22] (Panda Security S.L. -> Panda Security, S.L.)
S4 RsFx0500; C:\WINDOWS\System32\DRIVERS\RsFx0500.sys [261848 2017-08-22] (Microsoft Corporation -> Microsoft Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [946696 2016-11-21] (Realtek Semiconductor Corp. -> Realtek )
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2017-08-27] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SeLow; C:\WINDOWS\system32\DRIVERS\SeLow_x64.sys [50624 2018-05-20] (SoftEther Corporation -> SoftEther Corporation)
R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 taphss6; C:\WINDOWS\System32\drivers\taphss6.sys [42064 2017-08-16] (AnchorFree Inc -> Anchorfree Inc.)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [22016 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
R3 vpnpbus; C:\WINDOWS\System32\drivers\vpnpbus.sys [18624 2016-09-09] (EldoS Corporation -> /n software, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [47496 2019-06-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [337632 2019-06-21] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2019-06-21] (Microsoft Windows -> Microsoft Corporation)
R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [310536 2018-10-07] (Beijing Duodian Online Science and Technology Co.,Ltd -> BigNox Corporation)
S3 cpuz143; \??\C:\WINDOWS\temp\cpuz143\cpuz143_x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-06-21 00:41 - 2019-06-21 00:43 - 000043899 _____ C:\Users\CDD\Desktop\FRST.txt
2019-06-21 00:40 - 2019-06-21 00:41 - 000000000 ____D C:\FRST
2019-06-21 00:37 - 2019-06-21 00:37 - 002418688 _____ (Farbar) C:\Users\CDD\Desktop\FRST64.exe
2019-06-20 07:08 - 2019-06-21 00:38 - 000000000 ____D C:\Users\CDD\Desktop\problema actualización Windows 10
2019-06-20 06:39 - 2019-06-20 06:39 - 001233768 _____ (Apowersoft Ltd. ) C:\Users\CDD\Desktop\apowersoft-online-launcher.exe
2019-06-20 04:52 - 2019-06-20 10:37 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-06-20 03:49 - 2019-06-20 03:49 - 000000000 ____D C:\Program Files\UNP
2019-06-17 01:39 - 2019-06-17 01:39 - 000000000 ____D C:\Program Files (x86)\ScanSoft
2019-06-17 01:37 - 2019-06-17 01:37 - 000000986 _____ C:\Users\CDD\Desktop\Balabolka.lnk
2019-06-17 01:37 - 2019-06-17 01:37 - 000000000 ____D C:\Users\CDD\Documents\Balabolka
2019-06-17 01:37 - 2019-06-17 01:37 - 000000000 ____D C:\Users\CDD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Balabolka
2019-06-17 01:37 - 2019-06-17 01:37 - 000000000 ____D C:\Users\CDD\AppData\Roaming\Balabolka
2019-06-17 01:37 - 2019-06-17 01:37 - 000000000 ____D C:\Program Files (x86)\Balabolka
2019-06-17 01:28 - 2019-06-17 01:38 - 000000000 ____D C:\Users\CDD\Desktop\Texto a voz
2019-06-16 06:09 - 2019-06-16 06:09 - 000000165 ____H C:\Users\CDD\Desktop\~$FilmAffinitty promedio.xlsx
2019-06-12 00:46 - 2019-06-12 00:46 - 020638704 _____ (Piriform Software Ltd) C:\Users\CDD\Desktop\ccsetup558.exe
2019-06-12 00:32 - 2019-02-13 02:47 - 001909560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2019-06-04 03:13 - 2019-06-04 03:13 - 000000000 ____D C:\Users\CDD\AppData\Roaming\Hard Disk Sentinel
2019-06-02 06:43 - 2019-06-02 06:43 - 000001076 _____ C:\Users\CDD\Desktop\DiskCheckup.lnk
2019-06-02 06:43 - 2019-06-02 06:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DiskCheckup
2019-06-02 06:43 - 2019-06-02 06:43 - 000000000 ____D C:\Program Files (x86)\DiskCheckup
2019-06-01 07:20 - 2019-06-01 07:43 - 322138970 _____ C:\Users\CDD\Downloads\Eva Lina DP DAP - Pornhub.com.mp4
2019-05-31 00:11 - 2019-06-21 00:01 - 000000000 ____D C:\Users\CDD\AppData\Local\BitTorrentHelper
2019-05-29 07:41 - 2019-05-29 07:41 - 002985980 _____ C:\Users\CDD\Desktop\0137.pdf
2019-05-23 09:45 - 2019-05-23 09:45 - 000003584 _____ C:\Users\CDD\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-06-21 00:40 - 2019-04-11 01:17 - 000000000 ____D C:\Users\CDD\AppData\LocalLow\uTorrent
2019-06-21 00:40 - 2017-07-31 07:43 - 000000000 ____D C:\Users\CDD\AppData\Roaming\uTorrent
2019-06-21 00:38 - 2018-05-17 08:20 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-06-21 00:34 - 2017-07-28 06:21 - 000000000 ____D C:\Users\CDD\AppData\LocalLow\Mozilla
2019-06-21 00:31 - 2018-04-11 20:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-06-21 00:00 - 2017-07-28 06:20 - 000002259 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-06-20 23:58 - 2017-07-28 05:45 - 000000000 ____D C:\ProgramData\NVIDIA
2019-06-20 23:57 - 2018-05-17 08:20 - 000004216 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{078627B3-FE56-4826-8B73-31EFF52542DA}
2019-06-20 23:52 - 2017-07-28 06:02 - 000000000 ____D C:\temp
2019-06-20 10:39 - 2018-05-20 07:06 - 000000000 ____D C:\Program Files\SoftEther VPN Client
2019-06-20 10:37 - 2018-05-17 08:20 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-06-20 10:37 - 2017-07-28 06:21 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-06-20 10:36 - 2018-04-11 18:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-06-20 10:22 - 2018-05-17 07:55 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-06-20 09:18 - 2017-07-28 06:49 - 000000000 ____D C:\Users\CDD\AppData\Roaming\vlc
2019-06-20 08:33 - 2018-02-03 02:59 - 000000000 ____D C:\Program Files\Puran Defrag
2019-06-20 08:00 - 2018-05-17 02:03 - 000000000 ___DC C:\WINDOWS\Panther
2019-06-20 06:58 - 2018-04-11 20:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-06-20 05:21 - 2017-07-28 06:21 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-06-20 03:53 - 2018-04-11 20:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-06-20 03:45 - 2017-07-28 06:30 - 000000000 ____D C:\Program Files\Panda Security URL Filtering
2019-06-18 00:01 - 2017-07-28 05:52 - 000000000 ____D C:\Users\CDD\AppData\Local\CrashDumps
2019-06-17 12:24 - 2018-05-17 08:02 - 000000000 ____D C:\Users\CDD
2019-06-17 01:38 - 2017-07-28 05:22 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-06-16 01:47 - 2018-06-04 04:31 - 000001103 _____ C:\Users\Public\Desktop\VLC media player.lnk
2019-06-15 08:50 - 2019-04-15 08:57 - 000011541 _____ C:\Users\CDD\Desktop\FilmAffinitty promedio.xlsx
2019-06-15 05:09 - 2018-04-11 20:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-06-14 06:26 - 2019-01-29 00:31 - 000002073 _____ C:\Users\Public\Desktop\Google Slides.lnk
2019-06-14 06:26 - 2019-01-29 00:31 - 000002071 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2019-06-14 06:26 - 2019-01-29 00:31 - 000002061 _____ C:\Users\Public\Desktop\Google Docs.lnk
2019-06-14 06:26 - 2019-01-29 00:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2019-06-14 00:57 - 2018-04-11 20:36 - 000000000 ____D C:\WINDOWS\INF
2019-06-12 01:46 - 2017-07-28 07:59 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-06-12 01:39 - 2017-07-28 07:59 - 135349160 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-06-12 00:46 - 2019-01-25 00:06 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-06-12 00:46 - 2018-05-17 08:20 - 000003936 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-06-12 00:34 - 2019-03-13 05:10 - 000000000 ____D C:\Users\CDD\Documents\Activision
2019-06-05 06:02 - 2019-02-08 00:43 - 000000000 ____D C:\ProgramData\MEGAsync
2019-06-04 05:43 - 2017-11-27 00:35 - 000000000 ____D C:\Users\CDD\Desktop\Nueva carpeta (3)
2019-06-04 05:34 - 2017-07-29 01:27 - 000000000 ___RD C:\Users\CDD\Desktop\MIS ARCHIVOS (SINCRO MEGA)
2019-06-04 05:30 - 2017-07-28 05:46 - 000000000 ____D C:\Users\CDD\AppData\Local\NVIDIA
2019-06-04 04:40 - 2019-03-31 10:52 - 000000000 ____D C:\Users\CDD\Desktop\PANDA
2019-06-03 09:47 - 2019-01-23 01:50 - 000000000 ____D C:\Users\SQLTELEMETRY$SQLEXPRESS
2019-06-03 09:47 - 2019-01-23 01:49 - 000000000 ____D C:\Users\MSSQL$SQLEXPRESS
2019-06-02 04:44 - 2019-04-01 02:43 - 000153328 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-06-02 04:43 - 2019-05-12 05:32 - 000002922 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2952037624-2585293238-3401107817-1001
2019-06-02 04:43 - 2018-05-17 08:20 - 000003544 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-06-02 04:43 - 2018-05-17 08:20 - 000003320 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-06-01 02:24 - 2018-05-29 02:25 - 000000000 ____D C:\Users\CDD\AppData\Local\Deployment
2019-05-31 01:35 - 2017-08-06 03:32 - 000000989 _____ C:\Users\CDD\Desktop\Core Temp.lnk
2019-05-31 01:35 - 2017-07-28 06:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Core Temp
2019-05-31 01:35 - 2017-07-28 06:35 - 000000000 ____D C:\Program Files\Core Temp
2019-05-30 22:57 - 2018-07-13 01:36 - 000835688 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-05-30 22:57 - 2018-07-13 01:36 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-05-28 02:47 - 2017-07-29 08:50 - 000007668 _____ C:\Users\CDD\AppData\Local\Resmon.ResmonCfg
2019-05-27 08:03 - 2019-01-28 00:06 - 000001599 _____ C:\Users\CDD\Desktop\Gmail libros.txt
2019-05-25 01:22 - 2018-09-15 14:41 - 000000000 ___HD C:\$WINDOWS.~BT
2019-05-23 04:50 - 2018-08-13 23:15 - 000002361 _____ C:\Users\CDD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-05-23 04:50 - 2017-07-28 05:24 - 000000000 ___RD C:\Users\CDD\OneDrive
==================== Files in the root of some directories ================
2018-12-20 23:44 - 2018-12-20 23:45 - 007895040 _____ () C:\Program Files (x86)\GUTBAA2.tmp
2019-05-23 09:45 - 2019-05-23 09:45 - 000003584 _____ () C:\Users\CDD\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-08-02 03:00 - 2017-08-02 03:00 - 000000001 _____ () C:\Users\CDD\AppData\Local\llftool.4.30.agreement
2017-08-02 02:58 - 2017-08-02 02:58 - 000000001 _____ () C:\Users\CDD\AppData\Local\llftool.4.40.agreement
2017-08-02 03:00 - 2017-08-02 03:00 - 000000019 _____ () C:\Users\CDD\AppData\Local\llftool.license
2017-12-20 02:40 - 2017-12-20 02:40 - 000000886 _____ () C:\Users\CDD\AppData\Local\recently-used.xbel
2017-07-29 08:50 - 2019-05-28 02:47 - 000007668 _____ () C:\Users\CDD\AppData\Local\Resmon.ResmonCfg
==================== FLock ================
2017-07-28 05:21 C:\WINDOWS\CSC
==================== SigCheck ===============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ============================