Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 28-06-2020
Ejecutado por Aorus I5 (administrador) sobre AORUS-PC (Gigabyte Technology Co., Ltd. H370AORUSGAMING3WIFI) (29-06-2020 04:58:15)
Ejecutado desde C:\Users\Oscar\Desktop
Perfiles cargados: Aorus I5
Platform: Windows 10 Pro Versión 1909 18363.900 (X64) Idioma: Español (México)
Navegador predeterminado: Chrome
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Procesos (Lista blanca) =================
(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)
() [Archivo no firmado] [El archivo está en uso] C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <2>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Binary Fortress Software Ltd. -> Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe
(cFos Software GmbH -> cFos Software GmbH) C:\Program Files\cFosSpeed\spd.exe
(Dashlane USA, Inc. -> Dashlane, Inc.) C:\Users\Oscar\AppData\Roaming\Dashlane\Dashlane.exe
(Dashlane USA, Inc. -> Dashlane, Inc.) C:\Users\Oscar\AppData\Roaming\Dashlane\DashlanePlugin.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <11>
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) INTELND1820 -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_99239023b47c777a\RstMwService.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\iaStorAfsService.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Weather.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12624.20368.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12624.20368.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
==================== Registro (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [856288 2019-05-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [2179208 2019-08-27] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [108136 2020-06-27] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [Gigabyte Speed] => C:\Program Files\cFosSpeed\cFosSpeed.exe [1724248 2019-03-21] (cFos Software GmbH -> cFos Software GmbH)
HKLM-x32\...\Run: [Challenger Prime Gaming Keyboard Driver] => C:\Program Files (x86)\Tt eSPORTS\Challenger Prime\Monitor.exe [147456 2015-02-06] () [Archivo no firmado] [El archivo está en uso]
HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [237416 2020-03-03] (IDSA Production signing key -> Intel)
HKLM\...\RunOnce: [RPMKickstart] => C:\Program Files\GIGABYTE\Smart Backup\RPMKickstartEx.exe [2320384 2014-04-01] (TODO: <Company name>) [Archivo no firmado] [El archivo está en uso]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\Run: [DisplayFusion] => C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe [10531216 2019-05-22] (Binary Fortress Software Ltd. -> Binary Fortress Software)
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\Run: [Unified Remote V3] => C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe [3186264 2019-08-04] (Unified Intents AB -> Unified Intents AB)
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [45488 2020-03-28] (Glarysoft LTD -> Glarysoft Ltd)
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\Run: [Dashlane] => C:\Users\Oscar\AppData\Roaming\Dashlane\Dashlane.exe [321536 2020-06-08] (Dashlane USA, Inc. -> Dashlane, Inc.)
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\Run: [DashlanePlugin] => C:\Users\Oscar\AppData\Roaming\Dashlane\DashlanePlugin.exe [342528 2020-06-08] (Dashlane USA, Inc. -> Dashlane, Inc.)
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\Run: [uTorrent] => C:\Users\Oscar\AppData\Roaming\uTorrent\uTorrent.exe [1883888 2020-01-06] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\MountPoints2: {36b1005f-1466-11ea-9de1-b42e99612e35} - "V:\setup.exe"
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\MountPoints2: {36b10115-1466-11ea-9de1-b42e99612e35} - "V:\setup.exe"
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\MountPoints2: {36b101c4-1466-11ea-9de1-b42e99612e35} - "V:\setup.exe"
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\MountPoints2: {662f931e-f925-11e9-9dc9-a86daa8accd4} - "V:\setup.exe"
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\MountPoints2: {662f939e-f925-11e9-9dc9-a86daa8accd4} - "V:\Autorun_By_VictorVal.exe"
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\MountPoints2: {662f9416-f925-11e9-9dc9-a86daa8accd4} - "V:\RunGame.exe"
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\MountPoints2: {84414a25-fddc-11e9-9dcf-a86daa8accd4} - "V:\RunGame.exe"
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\MountPoints2: {8dbcd1f8-1472-11ea-9de2-b42e99612e35} - "V:\setup.exe"
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\MountPoints2: {8dbcd1ff-1472-11ea-9de2-b42e99612e35} - "W:\setup.exe"
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\MountPoints2: {8dbcd208-1472-11ea-9de2-b42e99612e35} - "X:\setup.exe"
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\MountPoints2: {b0aded0a-6109-11ea-9e10-806e6f6e6963} - "H:\setup.exe"
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\MountPoints2: {b95217c7-f91e-11e9-9dc8-a86daa8accd4} - "V:\SetUp.exe"
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\MountPoints2: {b9521805-f91e-11e9-9dc8-a86daa8accd4} - "V:\SetUp.exe"
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\MountPoints2: {b9521837-f91e-11e9-9dc8-a86daa8accd4} - "W:\setup.exe"
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\MountPoints2: {bb4454c8-144f-11ea-9ddd-b42e99612e35} - "V:\setup.exe"
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\MountPoints2: {c6065193-03a5-11ea-9dd5-a86daa8accd4} - "V:\setup.exe"
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\MountPoints2: {c60651f3-03a5-11ea-9dd5-a86daa8accd4} - "W:\setup.exe"
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\MountPoints2: {c606591c-03a5-11ea-9dd5-a86daa8accd4} - "V:\setup.exe"
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\MountPoints2: {cad5c252-f863-11e9-9dc6-a86daa8accd4} - "J:\SetUp.exe"
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\MountPoints2: {cad5c498-f863-11e9-9dc6-a86daa8accd4} - "V:\SetUp.exe"
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\MountPoints2: {cad5c4b7-f863-11e9-9dc6-a86daa8accd4} - "W:\SetUp.exe"
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\MountPoints2: {cad5c6b1-f863-11e9-9dc6-a86daa8accd4} - "V:\SetUp.exe"
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\MountPoints2: {ceafac76-9007-11ea-9e4d-b42e99612e35} - "V:\SetAoEDE.exe"
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\MountPoints2: {ceafad09-9007-11ea-9e4d-b42e99612e35} - "V:\SetAoEDE.exe"
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\MountPoints2: {ceafaea3-9007-11ea-9e4d-b42e99612e35} - "V:\SetAoEDE.exe"
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\MountPoints2: {ceafb0c4-9007-11ea-9e4d-b42e99612e35} - "V:\SetAoEDE.exe"
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\...\MountPoints2: {ceafb8a3-9007-11ea-9e4d-b42e99612e35} - "V:\SetAoEDE.exe"
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKLM\...\Windows x64\Print Processors\HP1100PrintProc: C:\Windows\System32\spool\prtprocs\x64\HP1100PP.DLL [74240 2010-03-04] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\HP1100LM: C:\Windows\system32\HP1100LM.DLL [289280 2010-03-04] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\...\AppCompatFlags\Custom\MSIEXEC.EXE: [{deb7008b-681e-4a4a-8aae-cc833e8216ce}.sdb] -> Microsoft Windows Application Compatibility Database
HKLM\Software\...\AppCompatFlags\Custom\Nexcel.exe: [{deb7008b-681e-4a4a-8aae-cc833e8216ce}.sdb] -> Microsoft Windows Application Compatibility Database
HKLM\Software\...\AppCompatFlags\Custom\picture.exe: [{deb7008b-681e-4a4a-8aae-cc833e8216ce}.sdb] -> Microsoft Windows Application Compatibility Database
HKLM\Software\...\AppCompatFlags\Custom\xdict.exe: [{deb7008b-681e-4a4a-8aae-cc833e8216ce}.sdb] -> Microsoft Windows Application Compatibility Database
HKLM\Software\...\AppCompatFlags\InstalledSDB\{deb7008b-681e-4a4a-8aae-cc833e8216ce}: [DatabasePath] -> C:\Windows\AppPatch\Custom\{deb7008b-681e-4a4a-8aae-cc833e8216ce}.sdb [2003-06-13]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.129\Installer\chrmstp.exe [2020-05-04] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\78.0.70.121\Installer\chrmstp.exe [2019-10-26] (Brave Software, Inc.) [Archivo no firmado] [El archivo está en uso]
HKLM\Software\...\Authentication\Credential Providers: [{5EF9A232-5B5B-4768-95F2-3F601FB184E3}] -> C:\Windows\system32\AutoGreenCP.dll [2019-10-20] () [Archivo no firmado] [El archivo está en uso]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2019-10-26]
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) [Archivo no firmado] [El archivo está en uso]
Startup: C:\Users\Oscar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Direct Folders.lnk [2019-10-26]
ShortcutTarget: Direct Folders.lnk -> C:\Program Files (x86)\Direct Folders\df.exe (Code Sector -> Code Sector)
BootExecute: autocheck autochk *
GroupPolicy: Restricción ? <==== ATENCIÓN
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN
CHR HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN
==================== Tareas programadas (Lista blanca) ============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
Task: {0A32239B-8898-40FB-9B65-8ABB3D90D8DB} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4164742601-1392645570-3985417052-1002 => C:\Users\Oscar\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {0AD8D065-FA08-4F5B-9629-4FDA4DA5A99F} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe
Task: {17005C60-82C5-441D-A424-B728F5C9A06D} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2019-10-26] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {176DE5B5-BBCB-4D97-A1F4-F52ECF2E78AC} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {1C1AB70A-3A55-4774-9DFA-E02D6AD63562} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\BIN64\InstallManagerApp.exe [1628160 2020-02-28] (Advanced Micro Devices, Inc.) [Archivo no firmado] [El archivo está en uso]
Task: {1FA1901C-7A14-4BD5-AE75-0B0CA541CD51} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-26] (Google Inc -> Google LLC)
Task: {24C618FC-4866-479B-94F4-6E245BCD554F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-26] (Google Inc -> Google LLC)
Task: {2C3825BB-2476-4F53-8393-56342BE6D1DA} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\Windows\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {2DF69603-72B9-45E6-AFD4-81B9EA9B40E4} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1628160 2020-02-28] (Advanced Micro Devices, Inc.) [Archivo no firmado] [El archivo está en uso]
Task: {35ED2437-E477-46B9-972D-82835FD04B2E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-11] (Adobe Inc. -> Adobe Systems)
Task: {44221E8B-1F7A-404A-B158-34F481DD7737} - System32\Tasks\EasyTune => C:\Program Files (x86)\GIGABYTE\EasyTune\etinit.exe [15792 2019-02-21] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {4F27F113-F2B6-40E1-8B25-D09676A0E9D6} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60008 2020-02-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {50082D02-E8D3-46D1-BC79-FCEA4E07B38D} - System32\Tasks\StartCNBM => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60008 2020-02-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {5CCB7FD8-69D0-4758-9FE3-3AE896C2950D} - System32\Tasks\SIV => C:\Program Files (x86)\GIGABYTE\SIV\thermald.exe [426416 2019-02-21] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {63CA2D84-6F2B-428B-94D8-CEB14E6D6356} - System32\Tasks\HardDiskSentinel\Hard Disk Sentinel_Oscar => C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe [5473552 2019-07-10] (Janos Mathe -> H.D.S. Hungary)
Task: {67657736-D8ED-4050-A5B4-3468F12802ED} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [67688 2020-02-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {8C5A2FB5-704D-4A08-B97B-9CE7DE5D07BE} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {914F7E3E-79AB-4DEB-81E0-350AD9CDF3EC} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3087184 2020-03-10] (Intel(R) Software Development Products -> Intel Corporation)
Task: {96EEF5E5-B78F-405D-8667-92D69A6EEAB5} - System32\Tasks\Intel\Intel(R) Optane(TM) Memory - Volume Optimization => {D19AAF57-65A7-484B-9E7A-26C0E667DC66} c:\Windows\System32\iaStorAfsService.exe [2900480 2019-12-11] (Intel(R) Rapid Storage Technology -> Intel Corporation)
Task: {9836AB6D-9545-4BEF-815B-246D91516284} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2019-10-26] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {A02F37F0-05EF-4E87-8B8B-43DE88D3197A} - System32\Tasks\V-Tuner => C:\Program Files (x86)\GIGABYTE\VTuner\VTuner.exe [837040 2017-08-17] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {A3777790-0659-428C-B340-EE1B7EE87F27} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1660520 2020-03-01] (Avast Software s.r.o. -> Avast Software)
Task: {A910237B-706B-4C76-BED7-EA376302FABB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {B2DFF48E-7B04-4871-A562-EBD61AF435FA} - System32\Tasks\SIV-VGA => C:\Program Files (x86)\GIGABYTE\SIV\sensord.exe [253872 2019-02-21] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {C2849CD8-0716-4883-B2A9-3B53630B1CF5} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1628160 2020-02-28] (Advanced Micro Devices, Inc.) [Archivo no firmado] [El archivo está en uso]
Task: {C286BB3D-BD54-400D-B9B4-F4D58CCEAE24} - System32\Tasks\PowerToys\Autorun for Aorus I5 => C:\Program Files\PowerToys\PowerToys.exe [856952 2020-06-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {CA4EF1D9-9D18-41A3-82E2-A5FD82B95990} - System32\Tasks\LiquidSensord => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\LiquidSensord.exe [251640 2019-09-23] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {CF5F6097-5CF3-4A9B-BFC0-862F9034EEB3} - System32\Tasks\EasyTune 1 => C:\Program Files (x86)\GIGABYTE\EasyTune\etocfile.exe [18352 2019-02-21] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {D0AB282F-94ED-4155-896C-5764C97B1112} - System32\Tasks\cFos\Registration Tasks\Open Browser => "c:\program files (x86)\google\chrome\application\chrome.exe" "hxxp://localhost:1487/cfosspeed/console.htm"
Task: {D30BCD70-195E-4464-9348-7617A6D50566} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {D8531DAD-5BF6-455C-BCCA-8155AE0ED7EA} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [232696 2019-09-23] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {E84244A3-A602-40C8-BF24-9C1490569BD6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24584376 2020-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {E94F8ABC-3BD7-4046-AC65-FA38A1F8754A} - System32\Tasks\HardDiskSentinel\Hard Disk Sentinel_Aorus_20I5 => C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe [5473552 2019-07-10] (Janos Mathe -> H.D.S. Hungary)
Task: {E95E4568-DC72-46C1-9189-B5BE15079687} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3087184 2020-03-10] (Intel(R) Software Development Products -> Intel Corporation)
Task: {F0A9361B-D3D0-4D92-AC77-ED0AD0FFAD8B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {F8E0D505-B641-4BD2-AFAB-5FF6B11FCA1D} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3314272 2020-06-27] (Avast Software s.r.o. -> AVAST Software)
(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)
==================== Internet (Lista blanca) ====================
(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)
Tcpip\..\Interfaces\{2e9292ea-b096-4a56-883e-f58c9ca5836e}: [NameServer] 192.168.8.1
Tcpip\..\Interfaces\{e23d7a96-b5ae-4f61-9c55-9058b75aaaf2}: [DhcpNameServer] 192.168.43.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-4164742601-1392645570-3985417052-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: GBHO.BHO -> {45d30484-7ded-43d9-957a-d2fd1f046511} -> C:\Windows\system32\mscoree.dll [2019-03-18] (Microsoft Windows -> Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - Smart Backup - {1d09c093-f71e-43c3-b948-19316cbd695e} - C:\Windows\system32\mscoree.dll [2019-03-18] (Microsoft Windows -> Microsoft Corporation)
Edge:
======
DownloadDir: C:\Users\Oscar\Downloads
FireFox:
========
FF DefaultProfile: 54e12zkv.default
FF ProfilePath: C:\Users\Oscar\AppData\Roaming\Mozilla\Firefox\Profiles\54e12zkv.default [2020-06-27]
FF ProfilePath: C:\Users\Oscar\AppData\Roaming\Mozilla\Firefox\Profiles\d8rw6qrt.default-release [2020-06-28]
FF Plugin: @unity3d.com/UnityPlayer64,version=1.0 -> C:\Program Files\Unity\WebPlayer64\loader-x64\npUnity3D64.dll [2015-06-08] (Unity Technologies ApS -> Unity Technologies ApS)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=3 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2019-10-26] (Brave Software, Inc. -> BraveSoftware Inc.)
FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=9 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2019-10-26] (Brave Software, Inc. -> BraveSoftware Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-02-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-4164742601-1392645570-3985417052-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Oscar\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-03-10] (Unity Technologies SF -> Unity Technologies ApS)
StartMenuInternet: FIREFOX.EXE - C:\Program Files\Mozilla Firefox 45z\firefox.exe
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Oscar\AppData\Local\Google\Chrome\User Data\Default [2020-06-29]
CHR Notifications: Default -> hxxps://forospyware.com
CHR HomePage: Default -> hxxps://www.google.com/
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (Presentaciones) - C:\Users\Oscar\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-10-26]
CHR Extension: (I'm a Gentleman) - C:\Users\Oscar\AppData\Local\Google\Chrome\User Data\Default\Extensions\afjaicccalbbickikgdegaihmajaidpd [2019-10-26]
CHR Extension: (Documentos) - C:\Users\Oscar\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-10-26]
CHR Extension: (Google Drive) - C:\Users\Oscar\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-10-26]
CHR Extension: (YouTube) - C:\Users\Oscar\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-10-26]
CHR Extension: (Improve YouTube! (Open-Source for YouTube)) - C:\Users\Oscar\AppData\Local\Google\Chrome\User Data\Default\Extensions\bnomihfieiccainjcjblhegjgglakjdd [2020-05-27]
CHR Extension: (Dashlane - Administrador de contraseñas) - C:\Users\Oscar\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdjamakpfbbddfjaooikfcpapjohcfmg [2020-06-27]
CHR Extension: (Hojas de cálculo) - C:\Users\Oscar\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-10-26]
CHR Extension: (Stylish - temas a medida para cada sitio web.) - C:\Users\Oscar\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2019-10-26]
CHR Extension: (Pixiv Ugoira WebM) - C:\Users\Oscar\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbloepphddjkabijnjhaplhhamkmkmik [2019-10-26]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Oscar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-27]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Oscar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2020-06-20]
CHR Extension: (Fair AdBlocker) - C:\Users\Oscar\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgblnfidahcdcjddiepkckcfdhpknnjh [2020-06-07]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Oscar\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-26]
CHR Extension: (AdFly Skipper) - C:\Users\Oscar\AppData\Local\Google\Chrome\User Data\Default\Extensions\obnfifcganohemahpomajbhocfkdgmjb [2019-10-26]
CHR Extension: (Gmail) - C:\Users\Oscar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-10-26]
CHR Extension: (Chrome Media Router) - C:\Users\Oscar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-04]
==================== Servicios (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
S4 AMD External Events Utility; C:\Windows\System32\DriverStore\FileRepository\u0352369.inf_amd64_275818c45a90b362\B352355\atiesrxx.exe [522256 2020-03-02] (Advanced Micro Devices, Inc. -> AMD)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] (Giga-Byte Technology -> )
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6392728 2020-06-27] (Avast Software s.r.o. -> AVAST Software)
S4 AUEPLauncher; C:\Program Files\AMD\CIM\..\Performance Profile Client\AUEPLauncher.exe [58984 2020-02-28] (Advanced Micro Devices, Inc. -> AMD)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [348968 2020-06-27] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [58048 2020-06-27] (Avast Software s.r.o. -> AVAST Software)
S4 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2019-10-26] (Brave Software, Inc. -> BraveSoftware Inc.)
S4 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2019-10-26] (Brave Software, Inc. -> BraveSoftware Inc.)
R2 cFosSpeedS; C:\Program Files\cFosSpeed\spd.exe [595288 2019-03-21] (cFos Software GmbH -> cFos Software GmbH)
R2 DisplayFusionService; C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe [7037344 2019-05-22] (Binary Fortress Software Ltd. -> Binary Fortress Software)
S4 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [37224 2020-03-03] (IDSA Production signing key -> Intel)
S4 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [143720 2020-03-03] (IDSA Production signing key -> Intel)
R2 EasyTuneEngineService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [142560 2019-09-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe [941368 2020-03-10] (Intel(R) Software Development Products -> )
R2 gadjservice; C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe [17920 2015-06-25] () [Archivo no firmado] [El archivo está en uso]
S4 HPSIService; C:\Windows\system32\HPSIsvc.exe [127800 2010-04-07] (Hewlett-Packard Company -> HP)
S4 HwmRecordService; C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe [128944 2019-02-21] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 Intel(R) SUR QC SAM; C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3087184 2020-03-10] (Intel(R) Software Development Products -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-05-06] (Malwarebytes Inc -> Malwarebytes)
S4 OcButtonService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe [125688 2019-09-23] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5930136 2020-04-22] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 Smart TimeLock; C:\Program Files (x86)\GIGABYTE\Smart TimeLock\TimeMgmtDaemon.exe [102400 2013-02-22] (Gigabyte Technology CO., LTD.) [Archivo no firmado] [El archivo está en uso]
R2 SystemUsageReportSvc_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe [208696 2020-03-10] (Intel(R) Software Development Products -> )
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12054872 2019-10-10] (TeamViewer GmbH -> TeamViewer GmbH)
S4 TeraCopyService; C:\Program Files\TeraCopy\TeraCopyService.exe [110416 2017-05-05] (Code Sector -> Code Sector)
S4 UCManSvc; C:\Program Files (x86)\SoftDenchi\UCManSvc.exe [241808 2010-03-12] (Paltiosoft Inc.) [Archivo no firmado] [El archivo está en uso]
S3 USER_ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe [941368 2020-03-10] (Intel(R) Software Development Products -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\NisSrv.exe [3004048 2019-10-20] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MsMpEng.exe [103384 2019-10-20] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Controladores (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [49448 2016-08-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdag; C:\Windows\System32\DriverStore\FileRepository\u0352369.inf_amd64_275818c45a90b362\B352355\atikmdag.sys [65731088 2020-03-02] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\System32\DriverStore\FileRepository\u0352369.inf_amd64_275818c45a90b362\B352355\atikmpag.sys [589840 2020-03-02] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [102832 2019-09-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [22240 2013-10-28] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37152 2020-06-27] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [205896 2020-06-27] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [235088 2020-06-27] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [178768 2020-06-27] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [60496 2020-06-27] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [16304 2020-03-29] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42784 2020-06-27] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [175208 2020-06-27] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109280 2020-06-27] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84856 2020-06-27] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851608 2020-06-27] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [462592 2020-06-27] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [216824 2020-06-27] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [322256 2020-06-27] (Avast Software s.r.o. -> AVAST Software)
S3 athur; C:\Windows\System32\drivers\athuw8x.sys [2919936 2013-06-02] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros Communications, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [108152 2019-07-23] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S3 bertreader; C:\Windows\System32\drivers\bertreader.sys [40320 2020-03-10] (Intel Corporation -> Intel Corporation)
R1 cFosSpeed; C:\Windows\system32\DRIVERS\cfosspeed6.sys [1595456 2019-03-21] (cFos Software GmbH -> cFos Software GmbH)
S3 cpuz149; C:\Windows\temp\cpuz149\cpuz149_x64.sys [44320 2020-06-28] (CPUID S.A.R.L.U. -> CPUID)
R3 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283200 2019-10-26] (DT Soft Ltd -> DT Soft Ltd)
R3 e1dexpress; C:\Windows\System32\DriverStore\FileRepository\e1d68x64.inf_amd64_b44028fc7fdf4fca\e1d68x64.sys [599920 2019-09-13] (Intel(R) INTELND1820 -> Intel Corporation)
R1 EneIo; C:\Windows\system32\drivers\ene.sys [17624 2019-05-22] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [153312 2020-05-06] (Malwarebytes Corporation -> Malwarebytes)
S3 gdrv; C:\Windows\gdrv.sys [26792 2019-10-20] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R3 gdrv2; C:\Windows\gdrv2.sys [32600 2019-10-20] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [28936 2019-10-26] (Glarysoft LTD -> Glarysoft Ltd)
S3 GVCIDrv; C:\Program Files (x86)\GIGABYTE\RGBFusion\GVCIDrv64.sys [16712 2019-01-15] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
S3 HidGuardian; C:\Windows\System32\drivers\HidGuardian.sys [37280 2017-06-17] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [214496 2020-06-13] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [19912 2020-06-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [195432 2020-06-29] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [73368 2020-06-29] (Malwarebytes Inc -> Malwarebytes)
R0 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-06-07] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [131736 2020-06-29] (Malwarebytes Inc -> Malwarebytes)
S3 mvusbews; C:\Windows\System32\Drivers\mvusbews.sys [20480 2010-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Marvell Semiconductor, Inc.)
S3 rspLLL; C:\Windows\System32\DRIVERS\rspLLL64.sys [26368 2015-07-13] (Daniel Terhell -> Resplendence Software Projects Sp.)
R3 semav6msr64; C:\Windows\system32\drivers\semav6msr64.sys [41816 2020-03-10] (Intel Corporation -> )
S1 UsbCharger; C:\Windows\System32\DRIVERS\UsbCharger.sys [22240 2013-10-24] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
R3 uvhid; C:\Windows\System32\drivers\uvhid.sys [28128 2019-08-04] (Unified Intents AB -> Windows (R) Win 7 DDK provider)
R3 VBAudioVACMME; C:\Windows\System32\drivers\vbaudio_cable64_win7.sys [41192 2014-09-02] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R3 ViGEmBus; C:\Windows\System32\drivers\ViGEmBus.sys [53128 2018-01-25] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [46688 2019-10-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [350136 2019-10-20] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [54200 2019-10-20] (Microsoft Windows -> Microsoft Corporation)
S3 WinRing0_1_2_0; C:\Program Files (x86)\GIGABYTE\RGBFusion\MODAPI.sys [14544 2020-03-30] (Noriyuki MIYAZAKI -> OpenLibSys.org)
S3 XTUComponent; C:\Windows\System32\drivers\iocbios2.sys [31880 2018-08-04] (Intel(R) Extreme Tuning Utility -> Intel Corporation)
U1 aswbdisk; no ImagePath
==================== NetSvcs (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
==================== Un mes (creado) ===================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2020-06-29 04:58 - 2020-06-29 04:58 - 000038977 _____ C:\Users\Oscar\Desktop\FRST.txt
2020-06-29 04:57 - 2020-06-29 04:58 - 000000000 ____D C:\FRST
2020-06-29 04:57 - 2020-06-29 04:57 - 000000000 ____D C:\Users\Oscar\Desktop\FRST-OlderVersion
2020-06-29 04:55 - 2020-06-29 04:57 - 002291712 _____ (Farbar) C:\Users\Oscar\Desktop\FRST64.exe
2020-06-29 04:53 - 2020-06-29 04:53 - 000000767 _____ C:\Users\Oscar\Desktop\JRT.txt
2020-06-29 04:45 - 2020-06-29 04:52 - 000000000 ____D C:\Users\Oscar\AppData\LocalLow\IGDump
2020-06-29 04:45 - 2020-06-29 04:43 - 001790024 _____ (Malwarebytes) C:\Users\Oscar\Desktop\JRT.exe
2020-06-29 04:44 - 2020-06-29 04:44 - 000001893 _____ C:\Users\Oscar\Desktop\AdwCleaner[S06].txt
2020-06-29 04:43 - 2020-06-29 04:43 - 001790024 _____ (Malwarebytes) C:\Users\Oscar\Downloads\JRT.exe
2020-06-29 04:41 - 2020-06-29 04:41 - 000000523 _____ C:\Users\Oscar\Desktop\foro inf.txt
2020-06-29 03:33 - 2020-06-29 03:33 - 000195432 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2020-06-29 03:33 - 2020-06-29 03:33 - 000131736 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2020-06-29 03:33 - 2020-06-29 03:33 - 000073368 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2020-06-28 08:10 - 2020-06-28 08:11 - 000000000 ____D C:\informes
2020-06-28 08:10 - 2020-06-28 08:10 - 000000000 _____ C:\Windows\system32\md
2020-06-28 08:10 - 2020-06-28 08:10 - 000000000 _____ C:\Users\Oscar\powershell
2020-06-28 08:10 - 2020-06-28 08:10 - 000000000 _____ C:\Users\Oscar\md
2020-06-28 08:10 - 2020-06-28 08:10 - 000000000 _____ C:\Users\Oscar\get-winevent
2020-06-28 07:54 - 2020-06-28 07:56 - 000003026 _____ C:\Users\Oscar\Desktop\analisis malwarebytes.txt
2020-06-28 07:47 - 2020-06-28 07:47 - 000000080 ___SH C:\bootTel.dat
2020-06-27 22:56 - 2020-06-27 22:57 - 000002608 _____ C:\Users\Oscar\Desktop\Rkill.txt
2020-06-27 22:56 - 2020-06-27 22:56 - 001802704 _____ (Bleeping Computer, LLC) C:\Users\Oscar\Downloads\rkill.exe
2020-06-27 22:56 - 2020-06-27 22:56 - 001802704 _____ (Bleeping Computer, LLC) C:\Users\Oscar\Desktop\rkill.exe
2020-06-27 19:23 - 2020-06-27 19:23 - 000000000 ___HD C:\$WINDOWS.~BT
2020-06-27 19:17 - 2020-06-27 19:17 - 000000000 ____D C:\Users\Oscar\Desktop\memtest86-usb
2020-06-27 19:15 - 2020-06-27 19:16 - 009704772 _____ C:\Users\Oscar\Downloads\memtest86-usb.zip
2020-06-27 06:20 - 2020-06-27 06:20 - 000046641 _____ C:\Users\Oscar\Desktop\sfcdetails.txt
2020-06-27 06:01 - 2020-06-27 06:01 - 000008597 _____ C:\Users\Oscar\Desktop\juegos switch.xlsx
2020-06-27 04:54 - 2020-06-27 05:12 - 000000000 ____D C:\Users\Oscar\Desktop\bluescreenview-x64
2020-06-27 04:54 - 2020-06-21 02:43 - 000085380 _____ C:\Users\Oscar\Desktop\bluescreenview-x64.zip
2020-06-27 04:43 - 2020-06-27 04:45 - 004886836 _____ C:\Windows\Minidump\062720-32406-01.dmp
2020-06-27 04:41 - 2020-06-27 04:41 - 000335976 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2020-06-27 04:41 - 2020-06-27 04:41 - 000216824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2020-06-27 04:41 - 2020-06-27 04:41 - 000175208 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2020-06-27 04:14 - 2020-06-27 04:19 - 344966708 _____ (AMD Inc.) C:\Users\Oscar\Downloads\Sin confirmar 240767.crdownload
2020-06-27 03:44 - 2020-06-27 03:44 - 025838336 _____ (Piriform Software Ltd) C:\Users\Oscar\Downloads\ccsetup568.exe
2020-06-27 03:00 - 2020-06-27 03:00 - 008402608 _____ (Malwarebytes) C:\Users\Oscar\Downloads\adwcleaner_8.0.5.exe
2020-06-27 03:00 - 2020-06-27 03:00 - 008402608 _____ (Malwarebytes) C:\Users\Oscar\Desktop\adwcleaner_8.0.5.exe
2020-06-27 01:25 - 2020-06-27 01:25 - 025902080 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 025444352 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 019851776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 019812864 _____ (Microsoft Corporation) C:\Windows\system32\HologramWorld.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 018029056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 011608064 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 009931576 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2020-06-27 01:25 - 2020-06-27 01:25 - 009712640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 008015360 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 007760384 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 007604592 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 007268864 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 007012864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 006526448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 006435840 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 006292480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 006091048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 005909504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 005765144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 005195432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 005111808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 005004344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 004858880 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 004610560 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 004129416 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 003822592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 003525608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 003515392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 003398656 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 003368104 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 002831872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 002798592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2020-06-27 01:25 - 2020-06-27 01:25 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2020-06-27 01:25 - 2020-06-27 01:25 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2020-06-27 01:25 - 2020-06-27 01:25 - 002583496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 002494744 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 002281472 _____ (Microsoft Corporation) C:\Windows\system32\mmcndmgr.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 002230240 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 002204160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 002190648 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystems64.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 002184504 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 001803776 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
2020-06-27 01:25 - 2020-06-27 01:25 - 001704448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcndmgr.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 001697792 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 001657856 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 001654960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 001649152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 001637888 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 001610240 _____ (Microsoft Corporation) C:\Windows\system32\HologramCompositor.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 001539072 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2020-06-27 01:25 - 2020-06-27 01:25 - 001497400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppVEntSubsystems32.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 001467392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 001458688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 001416224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2020-06-27 01:25 - 2020-06-27 01:25 - 001410048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmc.exe