Gracias por la bienvenida, aunque no soy un nuevo usuario, sino que estaba registrado con otro nombre y hacía más de 5 años que no entraba, por lo que ahora no me dejaba entrar y he creado otro usuario. Este es mi sitio de referencia para la resolución de problemas, pero hacía tiempo que no necesitava ayuda más específica.
Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 02-06-2020
Ejecutado por Usuario (administrador) sobre ASUS (ASUSTeK COMPUTER INC. X553MA) (03-06-2020 19:03:20)
Ejecutado desde C:\Users\Usuario\Desktop
Perfiles cargados: Usuario
Platform: Windows 8.1 Connected (Update) (X64) Idioma: Español (España, internacional)
Navegador predeterminado: "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" -- "%1"
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Procesos (Lista blanca) =================
(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <5>
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe <2>
(Intel(R) Corporation) [Archivo no firmado] C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(Ivaylo Beltchev -> IvoSoft) [Archivo no firmado] C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.19651_none_fa3af1939b2c2558\TiWorker.exe
(Nitro Software, Inc. -> Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe <2>
(Ralink Technology, Corp.) [Archivo no firmado] C:\Program Files (x86)\Ralink\Common\RaRegistry.exe
(Ralink Technology, Corp.) [Archivo no firmado] C:\Program Files (x86)\Ralink\Common\RaRegistry64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(TunnelBear, Inc. -> ) C:\Program Files (x86)\TunnelBear\TBear.Maintenance.exe
(Wondershare software CO., LIMITED -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.3.1.204\WsAppService.exe
==================== Registro (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163800 2016-07-30] (Ivaylo Beltchev -> IvoSoft) [Archivo no firmado]
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [108728 2020-05-04] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [DelaypluginInstall] => C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe [1971856 2016-10-24] (Wondershare software CO., LIMITED -> )
HKLM-x32\...\Run: [Aimersoft Helper Compact.exe] => C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe [2138272 2016-10-08] (Shenzhen Jia Xing Investment Co., Ltd. -> AimerSoft)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41360 2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840592 2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7357440 2020-05-28] (Dropbox, Inc -> Dropbox, Inc.)
HKU\S-1-5-21-2341622292-1946932901-1905242081-1001\...\Run: [TunnelBear] => C:\Program Files (x86)\TunnelBear\TBear.Client.exe [2596352 2015-10-26] (TunnelBear, Inc. -> TunnelBear)
HKU\S-1-5-21-2341622292-1946932901-1905242081-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [27775672 2020-05-01] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2341622292-1946932901-1905242081-1001\...\MountPoints2: {72cb012b-768f-11e9-8306-1cb72c1fcb1b} - "F:\autorun.exe"
HKU\S-1-5-21-2341622292-1946932901-1905242081-1001\...\MountPoints2: {bb331902-712e-11ea-832f-1cb72c1fcb1b} - "F:\autorun.exe"
HKU\S-1-5-21-2341622292-1946932901-1905242081-1001\...\MountPoints2: {d2372fd9-193c-11e8-82d5-1cb72c1fcb1b} - "F:\autorun.exe"
HKU\S-1-5-21-2341622292-1946932901-1905242081-1001\...\MountPoints2: {db2d1637-56d4-11e5-8265-1cb72c1fcb1b} - "F:\LGAutoRun.exe"
HKU\S-1-5-21-2341622292-1946932901-1905242081-1001\...\MountPoints2: {f4ae20c3-6a4d-11e8-82e6-1cb72c1fcb1b} - "F:\autorun.exe"
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [99840 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [55872 2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\...\Print\Monitors\Nitro PDF Port 11 Monitor: C:\Windows\system32\NxPrinterMonitor.dll [750280 2017-10-21] (Nitro Software, Inc. -> Nitro Software, Inc.)
HKLM\...\Print\Monitors\PCL hpz3llhn: C:\Windows\system32\hpz3llhn.dll [34816 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.61\Installer\chrmstp.exe [2020-05-25] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\81.1.4222.138\Installer\chrmstp.exe [2020-06-02] (Avast Software s.r.o. -> AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Ralink Wireless Utility.lnk [2016-02-11]
ShortcutTarget: Ralink Wireless Utility.lnk -> C:\Program Files (x86)\Ralink\Common\RaUI.exe (Ralink Technology Corporation -> Ralink Technology, Corp.)
Startup: C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Recorte de pantalla e Inicio rápido de OneNote 2007.lnk [2016-02-11]
ShortcutTarget: Recorte de pantalla e Inicio rápido de OneNote 2007.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
GroupPolicy: Restricción ? <==== ATENCIÓN
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN
CHR HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN
==================== Tareas programadas (Lista blanca) ============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
Task: {10F2492C-1E36-4EDB-BB85-9AAE9DC7915C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-09-09] (Google Inc -> Google Inc.)
Task: {1900E693-7512-403C-A6D6-C3BFE640954F} - System32\Tasks\{9258491D-C924-4977-BB14-7DC1A9B0700D} => C:\Windows\system32\pcalua.exe -a "D:\fifas\FIFA 2000\3DSetup\3DSetup.exe" -d "D:\fifas\FIFA 2000\3DSetup"
Task: {1C7FCC81-72C9-405D-ADA2-2B69DEA931D8} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-05-03] (Dropbox, Inc -> Dropbox, Inc.)
Task: {1D465408-7C28-400E-9CEE-5C475F3CE4B7} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-05-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {22E81DB7-8A54-4EB1-9164-901118284CB0} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [127176 2020-05-10] (Mozilla Corporation -> Mozilla Foundation)
Task: {2A5FBB2D-AE27-4E13-9724-C0FDC7831CD3} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1660520 2020-02-27] (Avast Software s.r.o. -> Avast Software)
Task: {36DC6274-6B0B-4807-85DD-2011E2371816} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24690360 2020-05-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {38D96AD9-196B-4035-A53B-0480AC33C772} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-11-11] (AVAST Software s.r.o. -> AVAST Software)
Task: {3EA4147C-34E1-490B-9953-D870E1C834E5} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1853360 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
Task: {3F59BAC4-B716-4D0E-806C-9D21C33AB417} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {42F641FE-E311-4DD3-A377-F9DBAD6FD357} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-11-11] (AVAST Software s.r.o. -> AVAST Software)
Task: {479A9FDE-1421-40EE-B7D3-7568E6B9F62F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-05-12] (Adobe Inc. -> Adobe)
Task: {5D0E59B2-9B2A-4C75-A1E7-B29CFC239A84} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3339472 2020-05-04] (Avast Software s.r.o. -> AVAST Software)
Task: {5FE554C7-6724-4EC2-8853-0BAEFD7031C8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {622CBF9A-30BC-4A6E-94A4-ED87B6BAB54F} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_371_Plugin.exe [1458232 2020-05-12] (Adobe Inc. -> Adobe)
Task: {74A95D80-B1BA-4A8D-9C10-4321C65DAA17} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1485312 2017-04-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {75FD1051-5E80-44E5-AE53-40709B6EAD10} - System32\Tasks\{7F707F31-8AA0-4F7A-8BB3-062EC45A41D2} => C:\Windows\system32\pcalua.exe -a D:\fifas\Fifa2001\fifa_uninst.exe -d D:\fifas\Fifa2001
Task: {82CE1F61-A3DB-4C07-88BB-FE392C901E71} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-05-03] (Dropbox, Inc -> Dropbox, Inc.)
Task: {852F011B-A7E2-4CE2-80B0-830AFAB89394} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-09-09] (Google Inc -> Google Inc.)
Task: {AF6D150F-2043-461A-B9ED-90EC939A3529} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1853360 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
Task: {B91144F5-F988-4FD7-9BEF-0782CBE94F9E} - System32\Tasks\{6848CFEF-533E-4E5F-AD46-98E9ADB5EDF3} => C:\Windows\system32\pcalua.exe -a "C:\Users\Usuario\Desktop\Nueva carpeta\FiFa 2001 (C) EA Sports - Full\setupreg.exe" -d "C:\Users\Usuario\Desktop\Nueva carpeta\FiFa 2001 (C) EA Sports - Full"
Task: {D5C1C452-E0E2-4B2D-9767-4B5F5077D342} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1485312 2017-04-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {D61BC0AF-35D7-4F42-93FE-A0B3FC98C3C2} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1485312 2017-04-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {EA11E86E-B47C-4D28-92AE-DC83EEF97932} - System32\Tasks\{37732D32-AFB0-46CC-B7EF-11281777F061} => C:\Windows\system32\pcalua.exe -a "D:\FIFA\FIFA 2001\setupreg.exe" -d "D:\FIFA\FIFA 2001"
Task: {F1AE055A-C6A5-43BD-8A37-07543402F2D7} - System32\Tasks\{876F5DDF-C3F5-45C8-BADA-AD594821B19A} => C:\Windows\system32\pcalua.exe -a C:\Fifa2001\3DSetup\3DSetup.exe -d C:\Fifa2001\3DSetup
Task: {F34813EE-85E2-45F1-87FE-9C3398B698BE} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe
(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Lista blanca) ====================
(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)
ProxyEnable: [.DEFAULT] => Proxy está habilitado.
ProxyServer: [.DEFAULT] => http=127.0.0.1:59011;https=127.0.0.1:59011
Hosts: Hay más de una entrada en Hosts. Consulte la sección Hosts de Addition.txt
Tcpip\..\Interfaces\{307B8A0A-6446-43D4-B856-BCED7548A1DC}: [NameServer] 80.58.61.250,80.58.61.254
Tcpip\..\Interfaces\{8DEC66C0-6D2C-45C5-B9E6-1325E2BD9130}: [DhcpNameServer] 80.58.61.250 80.58.61.254
Tcpip\..\Interfaces\{90E6755E-472B-433D-9580-6E91568CB7BD}: [DhcpNameServer] 172.18.11.1
Tcpip\..\Interfaces\{E82A71EE-9BAF-44AE-BDD9-53499859D486}: [DhcpNameServer] 192.168.42.129
HKLM\System\...\Parameters\PersistentRoutes: [0.0.0.0,0.0.0.0,192.168.1.1,-1]
Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.avast.com/AV772/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://search.avast.com/AV772/search/web?q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2341622292-1946932901-1905242081-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://search.avast.com/AV772/search/web?q={searchTerms}
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {8C31F27B-BE8A-4e4b-A478-17760AF1F5D9} URL = hxxps://search.avast.com/AV772/search/web?q={searchTerms}
SearchScopes: HKLM-x32 -> {8C31F27B-BE8A-4e4b-A478-17760AF1F5D9} URL = hxxps://search.avast.com/AV772/search/web?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2341622292-1946932901-1905242081-1001 -> {8C31F27B-BE8A-4e4b-A478-17760AF1F5D9} URL = hxxps://search.avast.com/AV772/search/web?q={searchTerms}
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [Archivo no firmado]
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_251\bin\ssv.dll [2020-04-27] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_251\bin\jp2ssv.dll [2020-04-27] (Oracle America, Inc. -> Oracle Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [Archivo no firmado]
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [Archivo no firmado]
BHO-x32: Wondershare Video Converter Ultimate 7.1.0 -> {451C804F-C205-4F03-B48E-537EC94937BF} -> C:\ProgramData\Wondershare\Video Converter Ultimate\WSBrowserAppMgr.dll [2016-10-24] (Wondershare software CO., LIMITED -> Wondershare)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\ssv.dll [2020-04-27] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\jp2ssv.dll [2020-04-27] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [Archivo no firmado]
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [Archivo no firmado]
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [Archivo no firmado]
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-2341622292-1946932901-1905242081-1001 -> Sin Nombre - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Ningún archivo
Handler: WSAMVCUchrome - Sin valor CLSID
Handler: WSWSVCUchrome - {1CA93FF0-A218-44F1 - Ningún archivo
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF DefaultProfile: cyfi3he4.default
FF ProfilePath: C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\cyfi3he4.default [2020-06-03]
FF Homepage: Mozilla\Firefox\Profiles\cyfi3he4.default -> hxxps://www.google.com/?bcutc=sp-006
FF NewTab: Mozilla\Firefox\Profiles\cyfi3he4.default -> about:newtab
FF Notifications: Mozilla\Firefox\Profiles\cyfi3he4.default -> hxxps://firrectly.top; hxxps://q7cw.ughmother.info
FF Extension: (Català Language Pack) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\cyfi3he4.default\Extensions\[email protected] [2020-05-10]
FF Extension: (Avast SafePrice | Comparaciones, ofertas y cupones) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\cyfi3he4.default\Extensions\[email protected] [2020-04-30]
FF Extension: (Avast Online Security) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\cyfi3he4.default\Extensions\[email protected] [2020-04-06]
FF Extension: (EPUBReader) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\cyfi3he4.default\Extensions\{5384767E-00D9-40E9-B72F-9CC39D655D6F}.xpi [2019-06-28]
FF Extension: (ColorZilla) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\cyfi3he4.default\Extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326}.xpi [2019-01-17]
FF Extension: (Video DownloadHelper) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\cyfi3he4.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2020-03-30]
FF Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\cyfi3he4.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-04-01]
FF SearchPlugin: C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\cyfi3he4.default\searchplugins\google-avast.xml [2017-05-30]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\ProgramData\Wondershare\Video Converter Ultimate\[email protected]_xpi
FF Extension: (Wondershare Video Converter Ultimate) - C:\ProgramData\Wondershare\Video Converter Ultimate\[email protected]_xpi [2016-12-05] [Heredado]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2018-05-20] [Heredado] [no firmado]
FF HKU\S-1-5-21-2341622292-1946932901-1905242081-1001\...\Firefox\Extensions: [[email protected]] - C:\Users\Usuario\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => no encontrado
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_371.dll [2020-05-12] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2020-04-27] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2020-04-27] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Ningún archivo]
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Ningún archivo]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [Ningún archivo]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_371.dll [2020-05-12] (Adobe Inc. -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2020-04-27] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2020-04-27] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 11\npnitromozilla.dll [2017-10-21] (Nitro Software, Inc. -> Nitro Software, Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2341622292-1946932901-1905242081-1001: @acestream.net/acestreamplugin,version=3.1.20.1 -> C:\Users\Usuario\AppData\Roaming\ACEStream\player\npace_plugin.dll [Ningún archivo]
FF Plugin HKU\S-1-5-21-2341622292-1946932901-1905242081-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\Usuario\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-05-08] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
Chrome:
=======
CHR Profile: C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default [2020-06-03]
CHR Extension: (Presentaciones) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-18]
CHR Extension: (Documentos) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-18]
CHR Extension: (Google Drive) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-28]
CHR Extension: (YouTube) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-28]
CHR Extension: (Búsqueda de Google) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-01]
CHR Extension: (Avast SafePrice | Comparaciones, ofertas y cupones) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-04-05]
CHR Extension: (Hojas de cálculo) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-18]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-23]
CHR Extension: (Avast Online Security) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-04-05]
CHR Extension: (Ace Script) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2019-01-10]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-01-06]
CHR Extension: (Gmail) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-18]
CHR Extension: (Chrome Media Router) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-27]
CHR HKU\S-1-5-21-2341622292-1946932901-1905242081-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx <no encontrado>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <no encontrado>
==================== Servicios (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6350752 2020-05-04] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-11-11] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [348968 2020-05-04] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [990648 2020-05-04] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-11-11] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\81.1.4222.138\elevation_service.exe [954600 2020-05-12] (Avast Software s.r.o. -> AVAST Software)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-05-03] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-05-03] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [44552 2020-05-28] (Dropbox, Inc -> Dropbox, Inc.)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [Archivo no firmado]
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [21184 2017-01-06] (Microsoft Corporation -> Microsoft Corporation)
R2 nlsX86cc; C:\Windows\SysWOW64\NLSSRV32.EXE [71880 2017-10-21] (Nitro Software, Inc. -> Nalpeiron Ltd.)
R2 RalinkRegistryWriter; C:\Program Files (x86)\Ralink\Common\RaRegistry.exe [372736 2012-07-04] (Ralink Technology, Corp.) [Archivo no firmado]
R2 RalinkRegistryWriter64; C:\Program Files (x86)\Ralink\Common\RaRegistry64.exe [447488 2012-07-04] (Ralink Technology, Corp.) [Archivo no firmado]
S3 RaMediaServer; C:\Program Files (x86)\Ralink\Common\RaMediaServer.exe [1863680 2012-07-06] (Ralink) [Archivo no firmado]
R2 TunnelBearMaintenance; C:\Program Files (x86)\TunnelBear\TBear.Maintenance.exe [37376 2015-10-26] (TunnelBear, Inc. -> )
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [694016 2020-04-09] (Oracle Corporation -> Oracle Corporation)
S3 wampapache64; c:\wamp64\bin\apache\apache2.4.39\bin\httpd.exe [29696 2019-03-28] (Apache Software Foundation) [Archivo no firmado]
S3 wampmariadb64; c:\wamp64\bin\mariadb\mariadb10.3.14\bin\mysqld.exe [15813032 2019-04-01] (MariaDB Corporation Ab -> )
S3 wampmysqld64; c:\wamp64\bin\mysql\mysql5.7.26\bin\mysqld.exe [39644480 2019-04-13] (Oracle America, Inc. -> )
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.3.1.204\WsAppService.exe [437392 2016-11-16] (Wondershare software CO., LIMITED -> Wondershare)
S2 HuaweiHiSuiteService64.exe; "C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service [X]
===================== Controladores (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
S3 AgereSoftModem; C:\Windows\system32\DRIVERS\agrsm64.sys [1146880 2013-06-18] (Microsoft Windows -> LSI Corp)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [205880 2020-05-04] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [234560 2020-05-04] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [178760 2020-05-04] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [60480 2020-05-04] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42784 2020-05-04] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [175704 2020-05-04] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [501472 2020-05-04] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109272 2020-05-04] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84856 2020-05-04] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851592 2020-05-04] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [460992 2020-05-04] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [235488 2020-05-04] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [319112 2020-05-28] (Avast Software s.r.o. -> AVAST Software)
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3892224 2014-03-07] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros Communications, Inc.)
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [71952 2014-03-31] (ASUSTeK Computer Inc. -> ASUS Corporation)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 GPIO; C:\Windows\System32\drivers\iaiogpioe.sys [31232 2013-11-11] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2017-07-26] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 iaioi2c; C:\Windows\System32\drivers\iaioi2ce.sys [67584 2013-11-11] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [17280 2012-08-06] (ASUSTeK Computer Inc. -> )
R0 MBI; C:\Windows\System32\drivers\MBI.sys [29464 2013-10-28] (Intel(R) Software -> Intel Corporation)
S3 netr28ux; C:\Windows\system32\DRIVERS\netr28ux.sys [2408208 2013-06-18] (Mediatek Inc. -> Ralink Technology Corp.)
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [14368 1999-09-26] () [Archivo no firmado]
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tap-tb-0901; C:\Windows\system32\DRIVERS\tap-tb-0901.sys [38656 2015-08-10] (TunnelBear, Inc. -> The OpenVPN Project)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [88592 2014-01-15] (Intel Corporation - Client Components Group -> Intel Corporation)
R3 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [237384 2020-04-09] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [248264 2020-04-09] (Oracle Corporation -> Oracle Corporation)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [138896 2016-11-23] (Oracle Corporation -> Oracle Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
U0 msahci; system32\drivers\msahci.sys [X]
==================== NetSvcs (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
==================== Un mes (creado) ===================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2020-06-03 19:03 - 2020-06-03 19:09 - 000036409 _____ C:\Users\Usuario\Desktop\FRST.txt
2020-06-03 18:59 - 2020-06-03 19:07 - 000000000 ____D C:\FRST
2020-06-03 16:57 - 2020-06-03 16:57 - 002289152 _____ (Farbar) C:\Users\Usuario\Desktop\FRST64.exe
2020-06-01 17:51 - 2020-06-01 17:52 - 022267336 _____ (Piriform Software Ltd) C:\Users\Usuario\Downloads\ccsetup565.exe
2020-06-01 17:49 - 2020-06-01 17:50 - 001980016 _____ (Malwarebytes) C:\Users\Usuario\Downloads\MBSetup.exe
2020-05-30 13:39 - 2020-05-30 13:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2020-05-28 18:23 - 2020-05-28 18:24 - 025859024 _____ (Piriform Software Ltd) C:\Users\Usuario\Downloads\ccsetup567.exe
2020-05-28 17:20 - 2020-05-28 17:20 - 000988112 _____ (Bleeping Computer, LLC) C:\Users\Usuario\Downloads\iExplore64.exe
2020-05-28 14:20 - 2020-05-28 14:20 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2020-05-28 14:20 - 2020-05-28 14:20 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2020-05-28 14:20 - 2020-05-28 14:20 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2020-05-28 14:20 - 2020-05-28 14:20 - 000044552 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2020-05-23 13:44 - 2020-05-23 13:44 - 000001750 _____ C:\Users\Public\Desktop\CDBurnerXP.lnk
2020-05-23 13:44 - 2020-05-23 13:44 - 000001750 _____ C:\ProgramData\Desktop\CDBurnerXP.lnk
2020-05-23 13:44 - 2020-05-23 13:44 - 000001706 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk
2020-05-22 22:28 - 2020-05-22 22:28 - 005491832 _____ (Canneverbe Limited ) C:\Users\Usuario\Downloads\cdbxp_setup_4.5.8.7128_x64_minimal.exe
2020-05-22 20:37 - 2020-05-22 20:38 - 000042300 _____ C:\Users\Usuario\Documents\cc_20200522_203708.reg
2020-05-15 19:14 - 2020-04-16 07:15 - 025755136 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2020-05-15 19:14 - 2020-04-16 05:31 - 020291072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2020-05-15 19:13 - 2020-04-30 05:49 - 000308736 _____ (Microsoft Corporation) C:\Windows\system32\usbmon.dll
2020-05-15 19:13 - 2020-04-30 05:22 - 000881664 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2020-05-15 19:13 - 2020-04-30 04:55 - 001756672 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2020-05-15 19:13 - 2020-04-30 04:43 - 001495040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2020-05-15 19:13 - 2020-04-30 04:40 - 000309760 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll
2020-05-15 19:13 - 2020-04-30 04:33 - 001096704 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2020-05-15 19:13 - 2020-04-16 08:04 - 022365896 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2020-05-15 19:13 - 2020-04-16 08:04 - 003118032 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2020-05-15 19:13 - 2020-04-16 08:04 - 001368592 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2020-05-15 19:13 - 2020-04-16 08:04 - 000722496 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2020-05-15 19:13 - 2020-04-16 08:04 - 000642488 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2020-05-15 19:13 - 2020-04-16 08:00 - 000374024 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2020-05-15 19:13 - 2020-04-16 06:30 - 019795840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2020-05-15 19:13 - 2020-04-16 06:29 - 000561400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2020-05-15 19:13 - 2020-04-16 06:29 - 000493736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2020-05-15 19:13 - 2020-04-16 06:25 - 000316368 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2020-05-15 19:13 - 2020-04-16 05:40 - 002911744 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2020-05-15 19:13 - 2020-04-16 05:38 - 000581120 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2020-05-15 19:13 - 2020-04-16 05:31 - 000113152 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2020-05-15 19:13 - 2020-04-16 05:28 - 000186880 _____ (Microsoft Corporation) C:\Windows\system32\easwrt.dll
2020-05-15 19:13 - 2020-04-16 05:27 - 005498880 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2020-05-15 19:13 - 2020-04-16 05:27 - 000785408 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2020-05-15 19:13 - 2020-04-16 05:25 - 000546816 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.PointOfService.dll
2020-05-15 19:13 - 2020-04-16 05:14 - 000497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2020-05-15 19:13 - 2020-04-16 05:11 - 002304000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2020-05-15 19:13 - 2020-04-16 05:07 - 000084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2020-05-15 19:13 - 2020-04-16 05:06 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll
2020-05-15 19:13 - 2020-04-16 05:05 - 000147968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\easwrt.dll
2020-05-15 19:13 - 2020-04-16 05:04 - 000654336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2020-05-15 19:13 - 2020-04-16 05:03 - 000365568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.PointOfService.dll
2020-05-15 19:13 - 2020-04-16 04:59 - 001994240 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2020-05-15 19:13 - 2020-04-16 04:54 - 015478272 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2020-05-15 19:13 - 2020-04-16 04:53 - 003258368 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2020-05-15 19:13 - 2020-04-16 04:51 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2020-05-15 19:13 - 2020-04-16 04:50 - 001384960 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2020-05-15 19:13 - 2020-04-16 04:49 - 002942464 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebSync.dll
2020-05-15 19:13 - 2020-04-16 04:49 - 002132992 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2020-05-15 19:13 - 2020-04-16 04:48 - 000310784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Usb.dll
2020-05-15 19:13 - 2020-04-16 04:41 - 004112384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2020-05-15 19:13 - 2020-04-16 04:41 - 002471424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2020-05-15 19:13 - 2020-04-16 04:40 - 001085440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2020-05-15 19:13 - 2020-04-16 04:39 - 001560064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2020-05-15 19:13 - 2020-04-16 04:37 - 004859392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2020-05-15 19:13 - 2020-04-16 04:35 - 013861376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2020-05-15 19:13 - 2020-04-16 04:35 - 000254976 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.HumanInterfaceDevice.dll
2020-05-15 19:13 - 2020-04-16 04:32 - 000689152 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2020-05-15 19:13 - 2020-04-16 04:30 - 014533632 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2020-05-15 19:13 - 2020-04-16 04:28 - 000902656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.dll
2020-05-15 19:13 - 2020-04-16 04:27 - 000173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-05-15 19:13 - 2020-04-16 04:26 - 012880384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2020-05-15 19:13 - 2020-04-16 04:26 - 001566720 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2020-05-15 19:13 - 2020-04-16 04:26 - 000466432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2020-05-15 19:13 - 2020-04-16 04:24 - 007799296 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2020-05-15 19:13 - 2020-04-16 04:23 - 000626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SmartCards.dll
2020-05-15 19:13 - 2020-04-16 04:22 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\ConfigureExpandedStorage.dll
2020-05-15 19:13 - 2020-04-16 04:20 - 000052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ConfigureExpandedStorage.dll
2020-05-15 19:13 - 2020-04-16 04:19 - 001265152 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2020-05-15 19:13 - 2020-04-16 04:18 - 005271552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2020-05-15 19:13 - 2020-04-16 04:16 - 001341952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2020-05-15 19:13 - 2020-04-16 04:14 - 001727488 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2020-05-15 19:13 - 2020-04-16 04:11 - 001546752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2020-05-15 19:13 - 2020-04-16 04:11 - 000140288 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll
2020-05-15 19:13 - 2020-04-16 04:11 - 000104448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efswrt.dll
2020-05-15 19:13 - 2020-04-16 04:07 - 000156160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToManager.dll
2020-05-15 19:13 - 2020-04-16 04:05 - 000229888 _____ (Microsoft Corporation) C:\Windows\system32\PlayToManager.dll
2020-05-15 19:13 - 2020-04-14 09:33 - 000205824 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2020-05-15 19:13 - 2020-04-14 09:03 - 000168448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2020-05-15 19:13 - 2020-04-11 20:42 - 007362296 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2020-05-15 19:13 - 2020-04-11 20:41 - 000376568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2020-05-15 19:13 - 2020-04-11 20:39 - 001542696 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2020-05-15 19:13 - 2020-04-11 20:29 - 001737720 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2020-05-15 19:13 - 2020-04-11 19:31 - 001501096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2020-05-15 19:13 - 2020-04-11 19:04 - 004168704 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2020-05-15 19:13 - 2020-04-11 17:48 - 001377792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2020-05-15 19:13 - 2020-04-11 17:47 - 000260608 _____ (Microsoft Corporation) C:\Windows\system32\vaultsvc.dll
2020-05-15 19:13 - 2020-04-11 17:23 - 001317888 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2020-05-15 19:13 - 2020-04-11 17:22 - 001103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2020-05-15 19:13 - 2020-04-11 02:12 - 002446576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2020-05-15 19:13 - 2020-04-11 02:12 - 000428784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2020-05-15 19:13 - 2020-04-09 15:36 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2020-05-15 19:13 - 2020-04-07 21:30 - 000988472 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2020-05-15 19:13 - 2020-04-07 21:28 - 000857320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2020-05-15 19:13 - 2020-04-07 15:55 - 003330048 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2020-05-15 19:13 - 2020-04-07 15:51 - 003636224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2020-05-15 19:13 - 2020-04-04 18:06 - 000879616 _____ (Microsoft Corporation) C:\Windows\system32\rasdlg.dll
2020-05-15 19:13 - 2020-04-04 18:01 - 001572864 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2020-05-15 19:13 - 2020-04-04 17:50 - 000795136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdlg.dll
2020-05-15 19:12 - 2020-04-30 04:37 - 000216576 _____ (Microsoft Corporation) C:\Windows\system32\tcpmon.dll
2020-05-15 19:12 - 2020-04-16 04:59 - 001033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2020-05-15 19:12 - 2020-04-16 04:53 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2020-05-15 19:12 - 2020-04-16 04:43 - 000880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2020-05-15 19:12 - 2020-04-16 04:39 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2020-05-15 19:12 - 2020-04-16 04:38 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2020-05-15 19:12 - 2020-04-16 04:38 - 000333312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2020-05-15 19:12 - 2020-04-16 04:20 - 004387328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2020-05-15 19:12 - 2020-04-16 04:15 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2020-05-15 19:12 - 2020-04-16 04:15 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2020-05-15 19:12 - 2020-04-11 17:55 - 000194560 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2020-05-15 19:12 - 2020-04-11 17:53 - 000112128 _____ (Microsoft Corporation) C:\Windows\system32\vaultcli.dll
2020-05-13 09:02 - 2020-05-04 18:33 - 000337560 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2020-05-12 21:57 - 2020-05-12 21:57 - 025306104 _____ (Piriform Software Ltd) C:\Users\Usuario\Downloads\ccsetup566.exe
2020-05-10 22:55 - 2020-05-10 22:55 - 000000000 ____D C:\Program Files\net.downloadhelper.coapp
2020-05-10 22:53 - 2020-05-10 22:54 - 043467824 _____ (DownloadHelper ) C:\Users\Usuario\Downloads\VdhCoAppSetup-1.5.0.exe
2020-05-10 12:22 - 2020-05-10 12:22 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2020-05-10 11:17 - 2020-05-15 09:23 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-05-09 13:21 - 2020-05-09 13:21 - 000000000 ____D C:\Users\Usuario\Documents\FIFA 2003
2020-05-09 13:10 - 2020-05-09 13:15 - 000000000 ____D C:\EA Sports FIFA 2003
2020-05-08 13:13 - 2020-05-08 13:13 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2020-05-04 18:36 - 2020-05-04 18:36 - 000000066 _____ C:\Users\Usuario\Documents\codirecup.txt
2020-05-04 18:36 - 2020-05-04 18:34 - 000235488 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2020-05-04 18:36 - 2020-05-04 18:34 - 000175704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
==================== Un mes (modificado) ==================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2020-06-03 19:47 - 2020-05-03 17:42 - 000001004 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2020-06-03 19:01 - 2019-08-09 11:05 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-06-03 19:01 - 2018-08-23 14:33 - 000000000 ____D C:\Users\Usuario\AppData\Local\AVAST Software
2020-06-03 19:01 - 2015-09-09 16:19 - 000003598 _____ C:\Windows\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2341622292-1946932901-1905242081-1001
2020-06-03 18:59 - 2017-11-20 22:51 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-06-03 18:56 - 2020-05-03 17:42 - 000001000 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2020-06-03 17:05 - 2015-09-09 11:17 - 000000000 ____D C:\Users\Usuario\AppData\Local\ClassicShell
2020-06-03 17:04 - 2016-11-19 16:47 - 000000000 ____D C:\Users\Usuario\AppData\LocalLow\Mozilla
2020-06-03 16:42 - 2019-07-20 14:35 - 000003494 _____ C:\Users\Usuario\Desktop\Rkill.txt
2020-06-03 16:31 - 2015-09-09 10:46 - 000003970 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{607720DD-B74D-4018-886A-98C09920ED1F}
2020-06-03 09:50 - 2018-11-11 18:35 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2020-06-03 09:50 - 2018-11-11 18:35 - 000002406 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2020-06-03 09:50 - 2018-11-11 18:35 - 000002406 _____ C:\ProgramData\Desktop\Avast Secure Browser.lnk
2020-06-03 09:49 - 2019-04-12 21:22 - 000003732 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2020-06-03 08:53 - 2018-08-28 01:25 - 000000000 ____D C:\Users\Usuario\AppData\Local\CrashDumps
2020-06-03 08:53 - 2013-08-22 15:36 - 000000000 ____D C:\Windows\Inf
2020-05-31 19:41 - 2016-03-22 18:23 - 000003134 _____ C:\Windows\system32\Tasks\{9258491D-C924-4977-BB14-7DC1A9B0700D}
2020-05-31 19:41 - 2015-12-05 14:12 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2020-05-31 19:40 - 2020-05-03 17:42 - 000003976 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineUA
2020-05-31 19:40 - 2020-05-03 17:42 - 000003740 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineCore
2020-05-31 19:40 - 2018-03-14 00:01 - 000004488 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-05-31 19:40 - 2017-01-08 17:59 - 000003180 _____ C:\Windows\system32\Tasks\RtHDVBg_ListenToDevice
2020-05-31 19:40 - 2016-03-24 12:09 - 000003098 _____ C:\Windows\system32\Tasks\{7F707F31-8AA0-4F7A-8BB3-062EC45A41D2}
2020-05-31 19:40 - 2015-11-27 19:41 - 000003098 _____ C:\Windows\system32\Tasks\{876F5DDF-C3F5-45C8-BADA-AD594821B19A}
2020-05-31 19:40 - 2015-11-27 15:15 - 000003100 _____ C:\Windows\system32\Tasks\{37732D32-AFB0-46CC-B7EF-11281777F061}
2020-05-31 19:40 - 2015-11-27 11:46 - 000003308 _____ C:\Windows\system32\Tasks\{6848CFEF-533E-4E5F-AD46-98E9ADB5EDF3}
2020-05-31 19:40 - 2015-11-19 23:57 - 000004296 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-05-31 19:40 - 2015-11-18 13:12 - 000002786 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-05-31 19:40 - 2015-09-09 10:35 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2020-05-31 19:40 - 2015-09-09 10:27 - 000003536 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-05-31 19:40 - 2015-09-09 10:27 - 000003408 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-05-31 19:40 - 2015-01-09 14:57 - 000003596 _____ C:\Windows\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2341622292-1946932901-1905242081-500
2020-05-31 19:40 - 2015-01-09 14:47 - 000003168 _____ C:\Windows\system32\Tasks\RTKCPL
2020-05-31 19:40 - 2015-01-09 14:47 - 000003152 _____ C:\Windows\system32\Tasks\RtHDVBg
2020-05-30 13:44 - 2020-05-03 14:44 - 000000000 ____D C:\Program Files (x86)\Dropbox
2020-05-29 21:59 - 2014-11-04 21:19 - 000783020 _____ C:\Windows\system32\prfh0816.dat
2020-05-29 21:59 - 2014-11-04 21:19 - 000161078 _____ C:\Windows\system32\prfc0816.dat
2020-05-29 21:59 - 2014-11-04 21:09 - 000805262 _____ C:\Windows\system32\perfh00A.dat
2020-05-29 21:59 - 2014-11-04 21:09 - 000164164 _____ C:\Windows\system32\perfc00A.dat
2020-05-29 21:59 - 2014-03-18 17:25 - 002766586 _____ C:\Windows\system32\PerfStringBackup.INI
2020-05-28 18:28 - 2015-11-18 13:12 - 000000836 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-05-28 18:28 - 2015-11-18 13:12 - 000000836 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-05-28 16:55 - 2019-08-09 11:03 - 000319112 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2020-05-25 20:03 - 2015-09-09 10:28 - 000002203 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-05-25 20:03 - 2015-09-09 10:28 - 000002203 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-05-25 20:03 - 2015-09-09 10:27 - 000002244 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-05-25 09:14 - 2020-04-24 17:25 - 000001006 _____ C:\Users\Usuario\Documents\beaut.txt
2020-05-24 12:43 - 2020-04-04 21:39 - 000213940 _____ C:\Users\Usuario\Documents\eafifa2.xlsx
2020-05-23 13:44 - 2015-09-09 10:39 - 000000000 ____D C:\Program Files\CDBurnerXP
2020-05-23 12:03 - 2015-11-18 13:29 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-05-23 01:05 - 2015-09-12 20:41 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\vlc
2020-05-23 01:02 - 2015-09-09 16:14 - 000000000 ____D C:\Users\Usuario\AppData\Local\Packages
2020-05-23 01:02 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\AppReadiness
2020-05-20 12:33 - 2019-04-12 21:22 - 000003150 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2020-05-18 15:44 - 2015-10-02 20:46 - 000000000 ____D C:\Users\Usuario\.VirtualBox
2020-05-18 14:53 - 2019-08-15 17:30 - 000000000 ____D C:\ProgramData\VirtualBox
2020-05-16 20:11 - 2015-09-09 10:39 - 000000000 ____D C:\ProgramData\AVAST Software
2020-05-16 11:08 - 2013-08-22 16:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-05-16 11:07 - 2018-05-13 10:39 - 000491136 _____ C:\Windows\system32\FNTCACHE.DAT
2020-05-16 00:25 - 2013-08-22 15:25 - 000262144 ___SH C:\Windows\system32\config\BBI
2020-05-16 00:12 - 2013-08-22 17:36 - 000000000 ___RD C:\Windows\ToastData
2020-05-15 22:30 - 2013-08-22 17:20 - 000000000 ____D C:\Windows\CbsTemp
2020-05-15 19:45 - 2015-09-18 14:21 - 000000000 ____D C:\Windows\system32\MRT
2020-05-15 19:24 - 2015-09-18 14:21 - 120636720 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-05-15 17:37 - 2017-10-17 19:06 - 000001088 _____ C:\Users\Public\Desktop\VLC media player.lnk
2020-05-15 17:37 - 2017-10-17 19:06 - 000001088 _____ C:\ProgramData\Desktop\VLC media player.lnk
2020-05-15 09:24 - 2020-03-01 13:48 - 000002021 _____ C:\Users\Public\Desktop\Avast Premium Security.lnk
2020-05-15 09:24 - 2020-03-01 13:48 - 000002021 _____ C:\ProgramData\Desktop\Avast Premium Security.lnk
2020-05-15 09:23 - 2015-09-09 10:26 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-05-12 22:08 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\LiveKernelReports
2020-05-12 22:03 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\system32\Macromed
2020-05-12 22:02 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-05-10 23:06 - 2016-04-27 23:30 - 000000000 ____D C:\Users\Usuario\dwhelper
2020-05-10 12:22 - 2015-09-09 10:26 - 000001153 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-05-08 13:13 - 2020-03-25 13:02 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\Zoom
2020-05-04 18:34 - 2020-04-06 15:53 - 000501472 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2020-05-04 18:34 - 2019-08-09 11:03 - 000460992 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2020-05-04 18:34 - 2019-08-09 11:03 - 000109272 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2020-05-04 18:34 - 2019-08-09 11:03 - 000084856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2020-05-04 18:34 - 2019-08-09 11:03 - 000042784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2020-05-04 18:33 - 2019-08-09 11:03 - 000851592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2020-05-04 18:33 - 2019-08-09 11:03 - 000205880 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2020-05-04 18:32 - 2019-08-09 11:03 - 000234560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2020-05-04 18:32 - 2019-08-09 11:03 - 000178760 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2020-05-04 18:32 - 2019-08-09 11:03 - 000060480 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
==================== Archivos en la raíz de algunos directorios ========
2015-09-09 16:17 - 2019-12-06 12:12 - 000000093 _____ () C:\Users\Usuario\AppData\Roaming\sp_data.sys
2015-11-19 19:12 - 2015-11-19 19:12 - 000000045 _____ () C:\Users\Usuario\AppData\Roaming\WB.CFG
2019-04-08 14:48 - 2019-04-08 14:48 - 000000000 _____ () C:\Users\Usuario\AppData\Local\{7B33CC7B-3C68-431A-B978-7127F2ECC2C8}
==================== SigCheck ============================
(No existe una corrección automática para los archivos que no pasan la verificación.)
LastRegBack: 2020-05-15 23:08
==================== Final de FRST.txt ========================