Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 27-01-2020 Ejecutado por Usuario (administrador) sobre DESKTOP-1EPDOF6 (ASUSTeK COMPUTER INC. X540LJ) (30-01-2020 23:24:22) Ejecutado desde C:\Users\Usuario\Desktop Perfiles cargados: Usuario (Perfiles disponibles: Usuario) Platform: Windows 10 Home Versión 1903 18362.592 (X64) Idioma: Español (España, alfabetización internacional) Navegador predeterminado: Chrome Modo de Inicio: Normal Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesos (Lista blanca) ================= (Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.) (Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe (Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe (Hercules®) [Archivo no firmado] C:\Program Files\Hercules\Audio\DJ Console Series\drivers\amd64\HerculesDJControlMP3.EXE (Huawei Technologies Co., Ltd. -> ) [Archivo no firmado] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe (ICEpower a/s -> ICEpower) C:\Windows\System32\ICEsoundService64.exe (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) [Archivo no firmado] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Intel(R) Software -> Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe (Intel(R) Software -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19081.22010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19101.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (Panda Security S.L -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe (Panda Security S.L -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe (Panda Security S.L -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe (Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (SafeNet Canada, Inc. -> SafeNet, Inc.) C:\Windows\System32\hasplms.exe (SafeNet Canada, Inc. -> SafeNet, Inc.) C:\Windows\System32\hasplmv.exe (SafeNet Canada, Inc. -> SafeNet, Inc.) C:\Windows\System32\hasplmv.exe (TeamViewer -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Visicom Media Inc. -> Visicom Media Inc.) C:\Program Files\Panda Security URL Filtering\Panda_URL_Filteringb.exe ==================== Registro (Lista blanca) =================== (Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2654512 2015-10-03] (NVIDIA Corporation -> NVIDIA Corporation) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [303928 2017-03-22] (Apple Inc. -> Apple Inc.) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\ASUSWSLoader.exe [63272 2015-12-24] (ASUS Cloud Corporation -> ) HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [109824 2016-08-05] (Panda Security S.L -> Panda Security, S.L.) HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Archivo no firmado] HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1075296 2013-04-25] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41360 2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840592 2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.) HKLM-x32\...\Run: [Nikon Message Center 2] => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [570880 2013-12-27] (Nikon Corporation) [Archivo no firmado] HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [657704 2019-03-06] (Autodesk, Inc. -> Autodesk, Inc.) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2407008 2017-09-20] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Java\jre1.6.0\bin\jusched.exe [77824 2018-04-12] (Sun Microsystems, Inc.) [Archivo no firmado] HKLM-x32\...\Run: [Hercules DJ Series] => C:\Program Files\Hercules\Audio\DJ Console Series\HDJSeriesCPL.exe [3409264 2012-04-04] (Guillemot Corporation -> Hercules®) HKU\S-1-5-21-678102316-3166464757-2382027388-1001\...\Run: [Google Update] => C:\Users\Usuario\AppData\Local\Google\Update\1.3.35.422\GoogleUpdateCore.exe [219592 2019-12-15] (Google LLC -> Google LLC) HKU\S-1-5-21-678102316-3166464757-2382027388-1001\...\Run: [Spotify] => C:\Users\Usuario\AppData\Roaming\Spotify\Spotify.exe [22151072 2019-12-19] (Spotify AB -> Spotify Ltd) HKU\S-1-5-21-678102316-3166464757-2382027388-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24916512 2019-10-01] (Piriform Software Ltd -> Piriform Ltd) HKU\S-1-5-21-678102316-3166464757-2382027388-1001\...\RunOnce: [Application Restart #1] => C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe [1049608 2017-07-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc) HKU\S-1-5-21-678102316-3166464757-2382027388-1001\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe [1049608 2017-07-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc) HKU\S-1-5-21-678102316-3166464757-2382027388-1001\...\Policies\Explorer: [] HKU\S-1-5-21-678102316-3166464757-2382027388-1001\...\MountPoints2: {9726998f-bf62-11e9-adf7-74c63b58c720} - "F:\HiSuiteDownLoader.exe" HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.130\Installer\chrmstp.exe [2020-01-23] (Google LLC -> Google LLC) Startup: C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GenuineService.lnk [2019-04-08] ShortcutTarget: GenuineService.lnk -> C:\Users\Usuario\Autodesk\Genuine Service\GenuineService.exe (Autodesk, Inc. -> Autodesk) GroupPolicyScripts: Restricción <==== ATENCIÓN ==================== Tareas programadas (Lista blanca) ============ (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) Task: {05061019-53DD-4A17-B46F-9BB293387E98} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation) Task: {06273D99-584B-40E7-BDE2-BADB0E4E196E} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [1616160 2016-01-19] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [Archivo no firmado] Task: {07039AC0-7850-44C1-BB1B-3B316FDC540B} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-01-21] (Adobe Inc. -> Adobe) Task: {085FE470-7F5C-4689-90E1-FF97FCE7C5EA} - System32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-1EPDOF6-Usuario => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {0C26B44E-DD4C-479E-8940-37B4602A2ADF} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-10-01] (Piriform Software Ltd -> Piriform Software Ltd) Task: {0DD68B07-70F4-452F-83C9-EA7AA769AC7D} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2050456 2020-01-27] (Microsoft Corporation -> Microsoft Corporation) Task: {11623E20-E27F-4837-8EE5-DC819D06E83E} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\03AFEEAE-4C81-40DF-AFE5-28F2058178FA\Schedule to run OMADMClient by server => C:\WINDOWS\system32\omadmclient.exe [330240 2019-03-19] (Microsoft Windows -> Microsoft Corporation) Task: {26724172-B809-418A-8745-6BDBE4D5E70B} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_321_pepper.exe [1453624 2020-01-21] (Adobe Inc. -> Adobe) Task: {32F877AB-E19E-43AE-AEA4-81C4CB2C6DE5} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc -> Dropbox, Inc.) Task: {35B24904-23BA-4451-801F-A513DB96C4A0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems) Task: {3763CF92-E146-418E-9E88-47ACFB80EAFE} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\03AFEEAE-4C81-40DF-AFE5-28F2058178FA\Schedule to run OMADMClient by client => C:\WINDOWS\system32\omadmclient.exe [330240 2019-03-19] (Microsoft Windows -> Microsoft Corporation) Task: {3E3257D5-74CD-4EEA-BCA1-B4CCA936EC20} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [143160 2019-03-12] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) Task: {3F7C3967-E969-481F-A996-4EF582F48909} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158552 2020-01-27] (Microsoft Corporation -> Microsoft Corporation) Task: {43585DC6-A941-4956-9827-0CEDFF48082A} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18352 2019-08-19] (ASUSTek Computer Inc. -> AsusTek) Task: {43B31A9F-4721-4326-9346-EDAA93CFFB26} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6128536 2020-01-13] (Microsoft Corporation -> Microsoft Corporation) Task: {454626AB-67F3-43AD-8341-4D1B325B1B8C} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24629104 2020-01-08] (Microsoft Corporation -> Microsoft Corporation) Task: {4701DE91-8A55-4C68-8D0F-91A70F39C601} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {4CCE54B2-4242-4C75-9297-83DDF603EF45} - System32\Tasks\ASUS\ASUS GIFTBOX => C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe [1049608 2017-07-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc) Task: {5756CDBF-88F7-4F80-8822-EFDA9BDA5195} - System32\Tasks\WpsUpdateTask_Administrator => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5247\wtoolex\wpsupdate.exe [481128 2016-03-28] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd) Task: {5B0010B3-7E42-49DB-A51A-5F48737C0D5A} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe Task: {5DD916EA-CB70-46BD-8E1B-0CC24D6BCB89} - \Microsoft\Windows\UNP\RunCampaignManager -> Ningún archivo <==== ATENCIÓN Task: {5E26CEA1-59D2-4D16-943F-6DF49DDAF287} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation) Task: {636C39F9-0FDB-4CC0-BFF1-66FEDA2E1557} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2016-08-19] (Google Inc -> Google Inc.) Task: {67405E25-D803-4972-A998-B40CB95500AA} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [585000 2016-09-21] (Dropbox, Inc -> ) Task: {6E35C0EE-F516-404D-ABCD-5E7445E85AB9} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2050456 2020-01-27] (Microsoft Corporation -> Microsoft Corporation) Task: {76E7F793-5124-493E-9943-1A8294DB5EA1} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\03AFEEAE-4C81-40DF-AFE5-28F2058178FA\Passport for Work alert created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-10-11] (Microsoft Windows -> Microsoft Corporation) Task: {76F8EB2F-8186-432B-9D38-06CF887A8E5B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18732320 2019-10-01] (Piriform Software Ltd -> Piriform Ltd) Task: {8F5BBD69-E044-495B-939F-CBA4B8A70CC5} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122008 2015-09-22] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {91677041-1B8D-463A-9E76-1E15D847AE2F} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\03AFEEAE-4C81-40DF-AFE5-28F2058178FA\Schedule #2 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-10-11] (Microsoft Windows -> Microsoft Corporation) Task: {97310DED-CCDE-4163-A4A7-FD5111496051} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-678102316-3166464757-2382027388-1001Core => C:\Users\Usuario\AppData\Local\Google\Update\GoogleUpdate.exe [153752 2016-10-06] (Google Inc -> Google Inc.) Task: {990E4F4D-C7DE-436B-8657-1CD81AAD0E33} - System32\Tasks\WpsNotifyTask_Administrator => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5247\wtoolex\wpsnotify.exe [514408 2016-03-28] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd) Task: {99FFE2FE-D79B-4869-A126-E1F001121DFF} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24629104 2020-01-08] (Microsoft Corporation -> Microsoft Corporation) Task: {AA877E57-5F82-4A02-94A8-BECC040BB589} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\03AFEEAE-4C81-40DF-AFE5-28F2058178FA\Schedule created by enrollment client for renewal of certificate warning => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-10-11] (Microsoft Windows -> Microsoft Corporation) Task: {ADDE7CE6-78AE-4D66-B4DD-C027B3DFD899} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506368 2018-11-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {B16931D1-AAA1-43FA-979B-3CC7B80DF104} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\03AFEEAE-4C81-40DF-AFE5-28F2058178FA\PushUpgrade => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-10-11] (Microsoft Windows -> Microsoft Corporation) Task: {B8A7F3F0-2F9A-4126-B655-7DEC8BB5A540} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc -> Dropbox, Inc.) Task: {B9B702AA-D047-44CE-9B5A-87C89389E0BC} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-davaro11dvr@gmail.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {BBB0971B-BB36-4A16-8E55-C2D6A4CFF295} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19782224 2015-05-25] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {BF0139DC-6A92-40D4-BAE8-EE2FE77472A8} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2024320 2020-01-27] (Microsoft Corporation -> Microsoft Corporation) Task: {C644A138-8E2B-43F4-AFD2-1E7841010C43} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2016-08-19] (Google Inc -> Google Inc.) Task: {C6A54A8C-C77F-4AED-BF7A-68CD2A520C89} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158552 2020-01-27] (Microsoft Corporation -> Microsoft Corporation) Task: {C963CD5F-10BE-4BDD-BB06-38D57DF31002} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506368 2018-11-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {CB9FD43E-1A61-4306-85D7-0C81E5047CD3} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [570240 2017-02-14] (Apple Inc. -> Apple Inc.) Task: {CBA362AF-A31E-4122-873E-9D62BE77C661} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\03AFEEAE-4C81-40DF-AFE5-28F2058178FA\PushRenewal => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-10-11] (Microsoft Windows -> Microsoft Corporation) Task: {CBF0BEC5-1A9E-4C31-BDC3-573ECEE3C0F2} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\03AFEEAE-4C81-40DF-AFE5-28F2058178FA\Provisioning initiated session => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-10-11] (Microsoft Windows -> Microsoft Corporation) Task: {D294962A-BB34-4E31-B80B-D646B999C4C2} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\03AFEEAE-4C81-40DF-AFE5-28F2058178FA\Schedule #1 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-10-11] (Microsoft Windows -> Microsoft Corporation) Task: {D2C02C4D-5A57-48E4-8BB4-3D184FF01A86} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122008 2015-09-22] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {DAD4A3EF-4A37-4A88-9329-89D1C042C861} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\03AFEEAE-4C81-40DF-AFE5-28F2058178FA\OS Edition Upgrade event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-10-11] (Microsoft Windows -> Microsoft Corporation) Task: {E5E24036-C762-4043-8870-6FC6C8FC694B} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-678102316-3166464757-2382027388-1001UA => C:\Users\Usuario\AppData\Local\Google\Update\GoogleUpdate.exe [153752 2016-10-06] (Google Inc -> Google Inc.) Task: {E891D447-E216-462F-A1D6-8393F678D7CC} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_321_Plugin.exe [1458232 2020-01-21] (Adobe Inc. -> Adobe) Task: {E91640B1-1B4E-4FAD-BFC2-16EF279DB096} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\03AFEEAE-4C81-40DF-AFE5-28F2058178FA\PushLaunch => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-10-11] (Microsoft Windows -> Microsoft Corporation) Task: {E93A41CF-F1CC-4126-97A9-919E5265D9D9} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [54784 2015-12-02] (ASUS) [Archivo no firmado] Task: {ED089C9A-5562-4737-9E75-FF09BAFE3641} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\03AFEEAE-4C81-40DF-AFE5-28F2058178FA\Schedule #3 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-10-11] (Microsoft Windows -> Microsoft Corporation) Task: {F829F766-5ECD-4061-B326-5A66424E88AB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6128536 2020-01-13] (Microsoft Corporation -> Microsoft Corporation) Task: {F9E13925-2816-4A65-99F8-86864D7D5ED7} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\03AFEEAE-4C81-40DF-AFE5-28F2058178FA\Win10 S Mode event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-10-11] (Microsoft Windows -> Microsoft Corporation) (Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\WpsNotifyTask_Administrator.job => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5247\wtoolex\wpsnotify.exe Task: C:\WINDOWS\Tasks\WpsUpdateTask_Administrator.job => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5247\wtoolex\wpsupdate.exe ==================== Internet (Lista blanca) ==================== (Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{2a254207-8630-4b44-a61c-47cf2c7a0574}: [DhcpNameServer] 158.196.0.53 158.196.99.166 Tcpip\..\Interfaces\{702f98c1-e992-4d06-9cbc-7591a0c1ee5e}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{f725be3d-f6c9-4f47-9b22-3e4cec392116}: [DhcpNameServer] 192.168.0.1 Internet Explorer: ================== HKU\S-1-5-21-678102316-3166464757-2382027388-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus15.msn.com/?pc=ASTE HKU\S-1-5-21-678102316-3166464757-2382027388-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=130937189575705610&GUID=8DAA739D-F91D-40F5-890F-7EA81546C906 SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2020-01-13] (Microsoft Corporation -> Microsoft Corporation) BHO: Sin Nombre -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> Ningún archivo BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-01-13] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: SSVHelper Class -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.6.0\bin\ssv.dll [2018-04-12] (Sun Microsystems, Inc. -> Sun Microsystems, Inc.) BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Sin Nombre -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> Ningún archivo BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation) FireFox: ======== FF DefaultProfile: pwjbxbse.default-1483443396050-1539079638224 FF ProfilePath: C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\pwjbxbse.default-1483443396050-1539079638224 [2020-01-30] FF Homepage: Mozilla\Firefox\Profiles\pwjbxbse.default-1483443396050-1539079638224 -> hxxps://www.google.com/ FF Extension: (Telemetry coverage) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\pwjbxbse.default-1483443396050-1539079638224\features\{8e8f1a18-8974-4923-8491-b6e3e5b9bfb7}\telemetry-coverage-bug1487578@mozilla.org.xpi [2018-10-13] [Heredado] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2017-01-31] [Heredado] [no firmado] FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_321.dll [2020-01-21] (Adobe Inc. -> ) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-09-20] (Adobe Systems Incorporated -> Adobe Systems) FF Plugin: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll [2013-12-02] (Adobe Systems Incorporated -> Adobe Systems) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_321.dll [2020-01-21] (Adobe Inc. -> ) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Software Incorporated -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Software Incorporated -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Software Incorporated -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Software Incorporated -> Foxit Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-12-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-15] (Google LLC -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-15] (Google LLC -> Google LLC) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-12-02] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-09-20] (Adobe Systems Incorporated -> Adobe Systems) FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [2013-12-02] (Adobe Systems Incorporated -> Adobe Systems) FF Plugin HKU\S-1-5-21-678102316-3166464757-2382027388-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Usuario\AppData\Local\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-15] (Google LLC -> Google LLC) FF Plugin HKU\S-1-5-21-678102316-3166464757-2382027388-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Usuario\AppData\Local\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-15] (Google LLC -> Google LLC) FF Plugin ProgramFiles/Appdata: C:\Users\Usuario\AppData\Roaming\mozilla\plugins\npatgpc.dll [2019-11-06] Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default [2020-01-30] CHR Notifications: Default -> hxxps://web.whatsapp.com; hxxps://www.iberia.com CHR HomePage: Default -> hxxps://www.google.com/ CHR StartupUrls: Default -> "hxxp://google.com/","hxxps://www.google.com/","hxxp://www.google.com/" CHR DefaultSearchURL: Default -> hxxps://pandasecurity.mystart.com/results.php?pr=vmn&id=pandasafeweb&v=1_0_chromeextension_unknown__&searchfeed=web&hsimp=yhs-panda1&ent=ch_ss&q={searchTerms} CHR DefaultSearchKeyword: Default -> safeWeb CHR Extension: (Presentaciones) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-01-13] CHR Extension: (Documentos) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-01-13] CHR Extension: (Google Drive) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-17] CHR Extension: (YouTube) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-08-19] CHR Extension: (Adobe Acrobat) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-01-27] CHR Extension: (Panda Safe Web) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\fagakgcelolinfnkfgekcnedpaklfcok [2018-01-13] CHR Extension: (Hojas de cálculo) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-01-13] CHR Extension: (Documentos de Google sin conexión) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-15] CHR Extension: (AdBlock: el mejor bloqueador de anuncios) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-01-23] CHR Extension: (Cisco Webex Extension) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2019-07-11] CHR Extension: (Extensión de Google Keep para Chrome) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2020-01-27] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-09] CHR Extension: (Gmail) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-30] CHR Extension: (Chrome Media Router) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-19] CHR Profile: C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\System Profile [2020-01-29] CHR HKLM\...\Chrome\Extension: [fagakgcelolinfnkfgekcnedpaklfcok] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [fagakgcelolinfnkfgekcnedpaklfcok] ==================== Servicios (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) S2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1164664 2019-03-06] (Autodesk, Inc. -> Autodesk Inc.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [817760 2017-09-20] (Adobe Systems Incorporated -> Adobe Systems Incorporated) S2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [16939312 2019-01-09] (Autodesk, Inc. -> Autodesk) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated) S2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\AsusWSWinService.exe [75264 2015-12-24] (ASUS Cloud Corporation) [Archivo no firmado] R2 AtherosSvc; C:\WINDOWS\System32\drivers\AdminService.exe [415992 2019-01-30] (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6971400 2017-12-22] (BattlEye Innovations e.K. -> ) S2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11164232 2020-01-07] (Microsoft Corporation -> Microsoft Corporation) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc -> Dropbox, Inc.) S3 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [326032 2018-06-05] (ASUSTeK Computer Inc. -> ) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [780928 2018-07-01] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) R2 esifsvc; C:\WINDOWS\SysWOW64\esif_uf.exe [1385640 2015-08-17] (Intel(R) Software -> Intel Corporation) R2 hasplms; C:\WINDOWS\system32\hasplms.exe [4502024 2018-03-29] (SafeNet Canada, Inc. -> SafeNet, Inc.) R2 HerculesDJControlMP3; C:\Program Files\Hercules\Audio\DJ Console Series\drivers\amd64\HerculesDJControlMP3.EXE [18944 2012-04-10] (Hercules®) [Archivo no firmado] R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2019-07-03] (Huawei Technologies Co., Ltd. -> ) [Archivo no firmado] R2 ICEsoundService; C:\WINDOWS\system32\ICEsoundService64.exe [806344 2018-11-01] (ICEpower a/s -> ICEpower) R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373728 2016-11-30] (Intel(R) pGFX -> Intel Corporation) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel® Trusted Connect Service -> Intel(R) Corporation) R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Archivo no firmado] S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Archivo no firmado] R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-08-07] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) S2 Kingsoft_WPS_UpdateService; C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5247\wtoolex\wpsupdatesvr.exe [133480 2016-03-28] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd) S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6960640 2020-01-28] (Malwarebytes Inc -> Malwarebytes) R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [153096 2016-08-05] (Panda Security S.L -> Panda Security, S.L.) R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [84176 2019-02-19] (Panda Security S.L. -> Panda Security, S.L.) R2 panda_url_filtering; C:\Program Files\Panda Security URL Filtering\Panda_URL_Filteringb.exe [287752 2015-11-06] (Visicom Media Inc. -> Visicom Media Inc.) R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [48584 2016-08-05] (Panda Security S.L -> Panda Security, S.L.) S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Archivo no firmado] R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5495056 2015-06-17] (TeamViewer -> TeamViewer GmbH) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 ===================== Controladores (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) R2 ASMMAP64; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [18048 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUS) R3 AsusSGDrv; C:\WINDOWS\System32\drivers\AsusSGDrv.sys [139008 2019-08-19] (ASUSTek Computer Inc. -> ASUS Corporation) R3 athr; C:\WINDOWS\System32\drivers\athw8x.sys [4233728 2019-03-19] (Microsoft Windows -> Qualcomm Atheros Communications, Inc.) R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.) S3 BEDaisy; C:\Program Files (x86)\Common Files\BattlEye\BEDaisy.sys [3097560 2018-01-10] (BattlEye Innovations e.K. -> ) S3 Bulk; C:\WINDOWS\System32\Drivers\HDJBulk.sys [232272 2012-04-10] (Guillemot Corporation -> © Guillemot R&D, 2012. All rights reserved.) R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [53752 2015-08-17] (Intel(R) Software -> Intel Corporation) R3 dptf_pch; C:\WINDOWS\System32\drivers\dptf_pch.sys [50696 2015-08-17] (Intel(R) Software -> Intel Corporation) R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [261624 2015-08-17] (Intel(R) Software -> Intel Corporation) S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2019-07-03] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) R2 hardlock; C:\WINDOWS\system32\drivers\hardlock.sys [1304816 2018-03-29] (SafeNet, Inc. -> SafeNet, Inc.) S3 HDJAsioK; C:\WINDOWS\System32\Drivers\HDJAsioK.sys [304976 2012-04-10] (Guillemot Corporation -> © Guillemot R&D, 2012. All rights reserved.) R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32680 2019-08-07] (ASUSTek Computer Inc. -> ASUS) R3 iaLPSS_GPIO; C:\WINDOWS\System32\drivers\iaLPSS_GPIO.sys [46856 2015-06-15] (Intel Corporation - Client Components Group -> Intel Corporation) R0 IntelHSWPcc; C:\WINDOWS\System32\drivers\IntelPcc.sys [88256 2015-06-26] (Intel(R) Software -> Intel Corporation) S3 ManyCam; C:\WINDOWS\system32\DRIVERS\mcvidrv.sys [52128 2013-11-27] (Visicom Media Inc. -> Visicom Media Inc.) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2020-01-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) S3 mcaudrv_simple; C:\WINDOWS\system32\drivers\mcaudrv_x64.sys [35232 2013-12-06] (Visicom Media Inc. -> Visicom Media Inc.) R1 NNSALPC; C:\WINDOWS\system32\DRIVERS\NNSALPC.sys [103856 2015-12-10] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSHTTP; C:\WINDOWS\system32\DRIVERS\NNSHTTP.sys [210864 2015-12-10] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSHTTPS; C:\WINDOWS\system32\DRIVERS\NNSHTTPS.sys [120240 2015-12-10] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSIDS; C:\WINDOWS\system32\DRIVERS\NNSIDS.sys [120240 2015-12-10] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSNAHSL; C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys [58616 2015-06-19] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPICC; C:\WINDOWS\system32\DRIVERS\NNSPICC.sys [112560 2015-12-10] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPIHSW; C:\WINDOWS\system32\DRIVERS\NNSPIHSW.sys [82864 2016-03-17] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPOP3; C:\WINDOWS\system32\DRIVERS\NNSPOP3.sys [133552 2015-12-10] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPROT; C:\WINDOWS\system32\DRIVERS\NNSPROT.sys [309680 2015-12-10] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPRV; C:\WINDOWS\system32\DRIVERS\NNSPRV.sys [179632 2016-02-18] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSSMTP; C:\WINDOWS\system32\DRIVERS\NNSSMTP.sys [122800 2015-12-10] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSSTRM; C:\WINDOWS\system32\DRIVERS\NNSSTRM.sys [267184 2016-02-18] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSTLSC; C:\WINDOWS\system32\DRIVERS\NNSTLSC.sys [115632 2015-12-10] (Panda Security S.L. -> Panda Security, S.L.) R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvam.inf_amd64_9b1341e92276ee7c\nvlddmkm.sys [17213616 2018-10-15] (NVIDIA Corporation -> NVIDIA Corporation) R3 panda_url_filteringd; C:\Program Files\Panda Security URL Filtering\panda_url_filteringd.sys [51288 2014-03-19] (Visicom Media Inc. -> Visicom Media Inc.) R2 PSINAflt; C:\WINDOWS\system32\DRIVERS\PSINAflt.sys [174000 2016-08-09] (Panda Security S.L. -> Panda Security, S.L.) R2 PSINFile; C:\WINDOWS\System32\DRIVERS\PSINFile.sys [129456 2016-08-09] (Panda Security S.L. -> Panda Security, S.L.) R1 PSINKNC; C:\WINDOWS\system32\DRIVERS\PSINKNC.sys [207272 2016-08-09] (Panda Security S.L. -> Panda Security, S.L.) R2 PSINProc; C:\WINDOWS\System32\DRIVERS\PSINProc.sys [133544 2016-08-09] (Panda Security S.L. -> Panda Security, S.L.) R2 PSINProt; C:\WINDOWS\system32\DRIVERS\PSINProt.sys [146864 2016-08-09] (Panda Security S.L. -> Panda Security, S.L.) R2 PSINReg; C:\WINDOWS\system32\DRIVERS\PSINReg.sys [117168 2016-08-09] (Panda Security S.L. -> Panda Security, S.L.) U3 PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [72112 2016-08-10] (Panda Security S.L. -> Panda Security, S.L.) R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [887552 2015-07-15] (Realtek Semiconductor Corp -> Realtek ) R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) ==================== Un mes (creado) =================== (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2020-01-30 23:24 - 2020-01-30 23:26 - 000047868 _____ C:\Users\Usuario\Desktop\FRST.txt 2020-01-30 23:22 - 2020-01-30 23:25 - 000000000 ____D C:\FRST 2020-01-30 23:16 - 2020-01-30 23:16 - 000000621 _____ C:\Users\Usuario\Desktop\JRT.txt 2020-01-30 22:50 - 2020-01-30 22:51 - 000002361 _____ C:\Users\Usuario\Desktop\adwcleaner1.txt 2020-01-30 22:32 - 2020-01-30 22:44 - 000000000 ____D C:\AdwCleaner 2020-01-30 21:46 - 2020-01-30 21:46 - 000001558 _____ C:\Users\Usuario\Desktop\mbw2.txt 2020-01-30 17:10 - 2020-01-30 17:10 - 000006129 _____ C:\Users\Usuario\Desktop\mwb 1.txt 2020-01-30 17:01 - 2020-01-30 17:02 - 000006472 _____ C:\Users\Usuario\Desktop\mwb.txt 2020-01-29 12:21 - 2020-01-29 12:22 - 000353934 _____ C:\Users\Usuario\Desktop\cc_20200129_122016.reg 2020-01-29 12:14 - 2020-01-30 23:14 - 000000000 ____D C:\Users\Usuario\AppData\LocalLow\IGDump 2020-01-29 12:04 - 2020-01-29 12:06 - 024578944 _____ (Piriform Software Ltd) C:\Users\Usuario\Downloads\ccsetup563.exe 2020-01-29 11:51 - 2020-01-29 11:52 - 002581504 _____ (Farbar) C:\Users\Usuario\Desktop\FRST64.exe 2020-01-29 11:41 - 2020-01-29 11:41 - 008237744 _____ (Malwarebytes) C:\Users\Usuario\Desktop\adwcleaner_8.0.1 (1).exe 2020-01-29 11:39 - 2020-01-29 11:40 - 001790024 _____ (Malwarebytes) C:\Users\Usuario\Desktop\JRT.exe 2020-01-28 22:57 - 2020-01-28 22:58 - 008237744 _____ (Malwarebytes) C:\Users\Usuario\Downloads\adwcleaner_8.0.1.exe 2020-01-28 22:45 - 2020-01-28 22:45 - 000000000 ____D C:\Users\Usuario\AppData\Local\cache 2020-01-28 22:44 - 2020-01-28 22:44 - 000002023 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2020-01-28 22:44 - 2020-01-28 22:44 - 000000000 ____D C:\Users\Usuario\AppData\Local\mbamtray 2020-01-28 22:44 - 2020-01-28 22:44 - 000000000 ____D C:\Users\Usuario\AppData\Local\mbam 2020-01-28 22:44 - 2020-01-28 22:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes 2020-01-28 22:42 - 2020-01-28 22:42 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2020-01-28 22:42 - 2020-01-28 22:42 - 000000000 ____D C:\ProgramData\Malwarebytes 2020-01-28 22:42 - 2020-01-28 22:41 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2020-01-28 22:40 - 2020-01-28 22:40 - 000000000 ____D C:\Program Files\Malwarebytes 2020-01-28 22:36 - 2020-01-30 22:54 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2020-01-28 22:36 - 2020-01-30 17:05 - 000000000 ____D C:\Program Files\CCleaner 2020-01-28 22:36 - 2020-01-29 11:59 - 000000865 _____ C:\Users\Public\Desktop\CCleaner.lnk 2020-01-28 22:36 - 2020-01-28 22:36 - 000002892 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC 2020-01-28 22:36 - 2020-01-28 22:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2020-01-28 22:32 - 2020-01-28 22:33 - 025441808 _____ (Piriform Software Ltd) C:\Users\Usuario\Desktop\ccsetup562.exe 2020-01-28 22:27 - 2020-01-28 22:28 - 001924728 _____ (Malwarebytes) C:\Users\Usuario\Desktop\MBSetup.exe 2020-01-28 22:01 - 2020-01-28 22:01 - 000000000 ____D C:\Users\Usuario\Downloads\HBO.Girls.S01.Season.1.720p.BluRay.x264-DEMAND 2020-01-28 21:59 - 2020-01-28 21:59 - 000000000 ____D C:\Users\Usuario\AppData\Local\BitTorrentHelper 2020-01-28 21:39 - 2020-01-28 21:41 - 000000000 ____D C:\Users\Usuario\Downloads\HBO.Girls.S01.Season.1.BDRip.XviD-DEMAND 2020-01-28 21:37 - 2020-01-28 21:39 - 000000000 ____D C:\Users\Usuario\Downloads\HBO.Girls.S01.Season.1.COMPLETE.720p.BluRay.x264.MIKY 2020-01-17 19:31 - 2020-01-17 19:31 - 025900032 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 022627840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 018020352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 009928208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2020-01-17 19:31 - 2020-01-17 19:31 - 008012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 007754752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 007016448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 006520480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 005913600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 003729408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2020-01-17 19:31 - 2020-01-17 19:31 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 002870784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 002801152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2020-01-17 19:31 - 2020-01-17 19:31 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2020-01-17 19:31 - 2020-01-17 19:31 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 002494464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 002473976 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 001985928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 001697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 001655880 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 001399096 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2020-01-17 19:31 - 2020-01-17 19:31 - 001330952 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 001106944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 001072952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2020-01-17 19:31 - 2020-01-17 19:31 - 001051664 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 001020032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000851456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe 2020-01-17 19:31 - 2020-01-17 19:31 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000678712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe 2020-01-17 19:31 - 2020-01-17 19:31 - 000646144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000571392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2020-01-17 19:31 - 2020-01-17 19:31 - 000542496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000432256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe 2020-01-17 19:31 - 2020-01-17 19:31 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys 2020-01-17 19:31 - 2020-01-17 19:31 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000363840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe 2020-01-17 19:31 - 2020-01-17 19:31 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys 2020-01-17 19:31 - 2020-01-17 19:31 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV1.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe 2020-01-17 19:31 - 2020-01-17 19:31 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe 2020-01-17 19:31 - 2020-01-17 19:31 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti_ci.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000162696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe 2020-01-17 19:31 - 2020-01-17 19:31 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiadss.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000127520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiadss.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000089536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe 2020-01-17 19:31 - 2020-01-17 19:31 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiatrace.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll 2020-01-17 19:31 - 2020-01-17 19:31 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll 2020-01-17 18:59 - 2019-12-10 06:15 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2020-01-17 18:59 - 2019-12-10 05:59 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe 2020-01-14 18:00 - 2020-01-14 18:00 - 001207336 _____ (Adobe Inc) C:\Users\Usuario\Downloads\flashplayer32ppau_a_install.exe 2020-01-03 18:36 - 2020-01-29 12:11 - 000000000 ____D C:\WINDOWS\Minidump ==================== Un mes (modificado) ================== (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2020-01-30 23:12 - 2019-08-20 21:49 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2020-01-30 23:12 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2020-01-30 22:55 - 2016-09-27 15:36 - 000000000 ____D C:\ProgramData\NVIDIA 2020-01-30 22:50 - 2016-08-19 16:37 - 000000166 _____ C:\Users\Usuario\AppData\Roaming\sp_data.sys 2020-01-30 22:49 - 2019-11-07 12:49 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture 2020-01-30 22:47 - 2016-09-27 15:36 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2020-01-30 22:47 - 2016-08-19 16:35 - 000000000 __SHD C:\Users\Usuario\IntelGraphicsProfiles 2020-01-30 22:45 - 2019-08-20 22:28 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2020-01-30 22:44 - 2019-03-19 05:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2020-01-30 22:14 - 2016-08-19 17:32 - 000000000 ____D C:\ProgramData\panda_url_filtering 2020-01-30 17:08 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF 2020-01-30 17:05 - 2016-08-19 17:32 - 000000000 ____D C:\Program Files (x86)\pandasecuritytb 2020-01-29 12:25 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps 2020-01-29 12:25 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness 2020-01-29 12:14 - 2016-12-16 21:29 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\uTorrent 2020-01-29 12:11 - 2019-08-20 13:11 - 000000000 ___DC C:\WINDOWS\Panther 2020-01-29 11:58 - 2016-08-19 17:08 - 000000000 ____D C:\Users\Usuario\AppData\Local\Adobe 2020-01-29 11:42 - 2018-07-09 16:41 - 000000000 ____D C:\Users\Usuario\Desktop\Novo cartafol 2020-01-28 22:43 - 2019-03-19 05:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2020-01-27 10:43 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2020-01-27 10:41 - 2016-05-07 20:33 - 000000000 ____D C:\Program Files\Microsoft Office 2020-01-27 10:37 - 2019-10-05 19:01 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2020-01-23 11:56 - 2018-07-26 20:04 - 000002262 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2020-01-23 11:56 - 2016-08-19 17:12 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2020-01-21 13:31 - 2019-08-20 22:28 - 000003382 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-678102316-3166464757-2382027388-1001 2020-01-21 13:31 - 2019-08-20 22:02 - 000002419 _____ C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2020-01-21 13:31 - 2016-08-19 16:39 - 000000000 ___RD C:\Users\Usuario\OneDrive 2020-01-21 11:47 - 2019-08-20 22:28 - 000004630 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player PPAPI Notifier 2020-01-21 11:47 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2020-01-21 11:47 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Macromed 2020-01-21 11:46 - 2019-08-20 22:28 - 000004622 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player NPAPI Notifier 2020-01-20 14:53 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2020-01-19 21:20 - 2019-08-20 21:49 - 005355008 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2020-01-18 16:31 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\UNP 2020-01-18 16:31 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources 2020-01-18 16:31 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences 2020-01-18 16:31 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr 2020-01-17 19:53 - 2016-08-20 16:52 - 000000000 ____D C:\WINDOWS\system32\MRT 2020-01-17 19:40 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp 2020-01-17 19:40 - 2016-08-20 16:52 - 120202352 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2020-01-03 19:51 - 2019-08-20 22:02 - 000000000 ____D C:\Users\Usuario ==================== Archivos en la raíz de algunos directorios ======== 2016-09-22 20:05 - 2016-09-22 20:05 - 000000268 ___RH () C:\Users\Usuario\AppData\Roaming\Image Capture 2016-09-22 20:06 - 2016-09-22 20:06 - 000000268 ___RH () C:\Users\Usuario\AppData\Roaming\Image Manipulation 2016-09-22 20:05 - 2016-09-22 20:05 - 000000268 ___RH () C:\Users\Usuario\AppData\Roaming\Image Units 2016-08-19 16:37 - 2020-01-30 22:50 - 000000166 _____ () C:\Users\Usuario\AppData\Roaming\sp_data.sys 2016-08-25 01:35 - 2016-08-25 01:35 - 302675591 _____ () C:\Users\Usuario\AppData\Local\ACCCx3_7_5_291.zip.aamdownload 2016-08-25 01:35 - 2016-08-25 01:35 - 000003392 _____ () C:\Users\Usuario\AppData\Local\ACCCx3_7_5_291.zip.aamdownload.aamd 2018-09-30 18:46 - 2018-09-30 18:46 - 000000000 _____ () C:\Users\Usuario\AppData\Local\oobelibMkey.log 2017-02-24 21:42 - 2016-11-23 14:37 - 000000570 _____ () C:\Users\Usuario\AppData\Local\TroubleshooterConfig.json 2017-03-20 16:06 - 2017-03-20 16:07 - 000000000 _____ () C:\Users\Usuario\AppData\Local\{7213D3A8-3C13-46D5-9F1D-E85A6AD844D4} ==================== SigCheck ============================ (No existe una corrección automática para los archivos que no pasan la verificación.) ==================== Final de FRST.txt ========================