Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 24-01-2023
Ejecutado por Usuario (administrador) sobre DESKTOP-G5T3KIO (Hewlett-Packard HP EliteBook 8570p) (25-01-2023 14:41:51)
Ejecutado desde C:\Users\Usuario\Downloads
Perfiles cargados: Usuario
Plataforma: Microsoft Windows 10 Pro Versión 21H2 19044.2486 (X64) Idioma: Español (España, internacional)
Navegador predeterminado: Edge
Modo de Inicio: Normal

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(explorer.exe ->) (FxSound, LLC -> FxSound LLC) C:\Program Files\FxSound LLC\FxSound\FxSound.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <6>
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <40>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (geek software GmbH -> geek software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe <2>
(services.exe ->) (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(services.exe ->) (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(services.exe ->) (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(services.exe ->) (Intel(R) Corporation) [Archivo no firmado] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.203.1115.0_x86__zpdnekdrzrea0\Spotify.exe <6>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\backgroundTaskHost.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [486464 2020-10-01] (geek software GmbH -> geek software GmbH)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [711328 2022-06-16] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restricción <==== ATENCIÓN
HKU\S-1-5-21-310016112-2284314740-1832750596-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38935376 2023-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-310016112-2284314740-1832750596-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [43984 2018-12-07] (Glarysoft LTD -> Glarysoft Ltd)
HKU\S-1-5-21-310016112-2284314740-1832750596-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [112187784 2022-02-04] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-310016112-2284314740-1832750596-1001\...\Run: [MicrosoftEdgeAutoLaunch_D74866CC9A9FD7473DAB98067A84C526] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4188616 2023-01-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-310016112-2284314740-1832750596-1001\...\Run: [AvastBrowserAutoLaunch_80AAC1291B026110AC0697865D764EBB] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3260424 2023-01-11] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-310016112-2284314740-1832750596-1002\...\Run: [MicrosoftEdgeAutoLaunch_EB652F3C82154110033FB244C0282584] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4188616 2023-01-19] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\109.0.5414.119\Installer\chrmstp.exe [2023-01-24] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\109.0.19817.75\Installer\chrmstp.exe [2023-01-24] (Avast Software s.r.o. -> AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FxSound.lnk [2022-09-29]
ShortcutTarget: FxSound.lnk -> C:\Program Files\FxSound LLC\FxSound\FxSound.exe (FxSound, LLC -> FxSound LLC)
GroupPolicy: Restricción ? <==== ATENCIÓN
Policies: C:\ProgramData\NTUSER.pol: Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {0191B87A-A203-45E9-BE1F-BEF15A092DBF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-11] (Google Inc -> Google Inc.)
Task: {1A6E58A8-3664-420E-AE04-C0F01527BFE1} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3260424 2023-01-11] (Avast Software s.r.o. -> AVAST Software)
Task: {22923A87-4097-4EDD-B60F-B6B3B974D5B6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-11] (Google Inc -> Google Inc.)
Task: {262902FB-C9D6-4591-9ACE-D6DA03CC796D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2023-01-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2874B930-7FBA-4D26-9BDE-A562EAE41216} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {2B4B43D0-2B5B-45FE-8F61-51B746589BFB} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3260424 2023-01-11] (Avast Software s.r.o. -> AVAST Software)
Task: {2EC06699-BF36-465C-8390-22D833341395} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {52B6A6BC-4055-4915-8B7F-2E8E22EEB460} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {6118A771-D149-4E3F-829D-7B9855BC5A19} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2023-01-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6B29A0F1-FF39-4B84-89E1-4BB593BC2825} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4713808 2023-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "ef026f44-5ade-4fb9-b05b-6b4dc854dc31" --version "6.08.10255" --silent
Task: {72BDB658-1011-4BBB-98A3-6116FBCA08EB} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-14] (Avast Software s.r.o. -> AVAST Software)
Task: {8188ADC0-DDDA-416B-8EFD-76E5C048F1DA} - System32\Tasks\FxSound\Update => C:\Program [Argument = Files\FxSound LLC\FxSound\updater.exe /silent]
Task: {90735653-4C77-4329-B53A-CD5BC30A65F9} - System32\Tasks\CCleanerSkipUAC - Usuario => C:\Program Files\CCleaner\CCleaner.exe [32617808 2023-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {93D466A6-C7E6-4EE5-BE42-0DDAA78A9196} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2023-01-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A4B3B145-3B2C-4C1A-8D9D-CB760BAF294D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2023-01-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A98EDA75-8BE9-4D1C-A951-EF6F6C169378} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2023-01-11] (Piriform Software Ltd -> Piriform)
Task: {CF0C5F39-596D-4B83-934C-CD9531C81F93} - System32\Tasks\Opera scheduled Autoupdate 1620855907 => C:\Users\Usuario\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Ningún archivo)
Task: {D2490E90-0291-4D9B-AA83-C5C15FAE5465} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-14] (Avast Software s.r.o. -> AVAST Software)
Task: {F7CF8059-33E5-4895-8116-2DD4C2CA3F03} - System32\Tasks\Opera scheduled assistant Autoupdate 1620855913 => C:\Users\Usuario\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Usuario\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {FC0BE10E-20F7-4069-B1F1-E6FE42B26527} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.)

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1626d1dc-6f74-43ec-8a47-0d3e8b662f4d}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{37bd96de-0fa0-415b-a120-9e0b09260772}: [DhcpNameServer] 192.168.1.1 8.8.8.8
Tcpip\..\Interfaces\{58bd115a-3362-4bad-8da5-8679c73fb609}: [DhcpNameServer] 192.168.0.254

Edge: 
=======
DownloadDir: C:\Users\Usuario\Downloads
Edge Extension: (Sin Nombre) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [no encontrado]
Edge Extension: (Sin Nombre) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [no encontrado]
Edge Extension: (Sin Nombre) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [no encontrado]
Edge Extension: (Sin Nombre) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [no encontrado]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Usuario\AppData\Local\Microsoft\Edge\User Data\Default [2023-01-25]
Edge DownloadDir: Default -> C:\Users\Usuario\Downloads
Edge Notifications: Default -> hxxps://twitter.com; hxxps://www.facebook.com
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Usuario\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-12-13]
Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

FireFox:
========
FF DefaultProfile: jzu0lh5f.default
FF ProfilePath: C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\jzu0lh5f.default [2021-05-12]
FF Homepage: Mozilla\Firefox\Profiles\jzu0lh5f.default -> hxxps://www.google.com/
FF Extension: (Avast SafePrice | Comparaciones, ofertas y cupones) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\jzu0lh5f.default\Extensions\sp@avast.com.xpi [2019-03-14]
FF ProfilePath: C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\2soeox2c.default-release-1661250080625 [2023-01-25]
FF Notifications: Mozilla\Firefox\Profiles\2soeox2c.default-release-1661250080625 -> hxxps://drive.google.com; hxxps://twitter.com
FF Plugin: @java.com/DTPlugin,version=11.341.2 -> C:\Program Files\Java\jre1.8.0_341\bin\dtplugin\npDeployJava1.dll [2022-07-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.341.2 -> C:\Program Files\Java\jre1.8.0_341\bin\plugin2\npjp2.dll [2022-07-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.66 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-09-28] (Internal - Intel® Identity Protection Technology Software -> Intel Corporation) [Archivo no firmado]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-09-28] (Internal - Intel® Identity Protection Technology Software -> Intel Corporation) [Archivo no firmado]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [Ningún archivo]
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [Ningún archivo]
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-14] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-14] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-12-24] (Adobe Inc. -> Adobe Systems Inc.)

Chrome: 
=======
CHR Profile: C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default [2023-01-23]
CHR Notifications: Default -> hxxps://www.facebook.com
CHR DefaultSearchURL: Default -> hxxps://es.search.yahoo.com/search?fr=mcafee&type=E210ES91213G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR DefaultSuggestURL: Default -> hxxps://es.search.yahoo.com/sugg/gossip/gossip-es-partner?output=fxjson&appid=mca&source=yahoo_mcafee_searchassist&command={searchTerms}
CHR Extension: (Avast SafePrice | Comparaciones, ofertas y cupones) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2022-08-29]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2022-10-14]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-10-14]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-10-16]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-07-21]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

Opera: 
=======
OPR Profile: C:\Users\Usuario\AppData\Roaming\Opera Software\Opera Stable [2023-01-15]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-14] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-14] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\109.0.19817.75\elevation_service.exe [1803328 2023-01-11] (Avast Software s.r.o. -> AVAST Software)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [Archivo no firmado]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8891160 2023-01-14] (Malwarebytes Inc. -> Malwarebytes)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [850256 2023-01-19] (McAfee, LLC -> McAfee, LLC)
R2 PDF24; C:\Program Files (x86)\PDF24\pdf24.exe [486464 2020-10-01] (geek software GmbH -> geek software GmbH)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [224184 2022-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2211.5-0\NisSrv.exe [3191264 2023-01-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2211.5-0\MsMpEng.exe [133592 2023-01-13] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R3 AKCCID; C:\WINDOWS\System32\drivers\AKCCID.sys [115064 2021-11-22] (Alcorlink Corp. -> Generic)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Archivo no firmado]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Archivo no firmado]
S3 ded03f70; C:\WINDOWS\System32\Drivers\ded03f70.sys [299544 2023-01-21] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 FXVAD; C:\WINDOWS\system32\drivers\fxvad.sys [326656 2022-05-30] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R1 GUBootStartup; C:\WINDOWS\System32\drivers\GUBootStartup.sys [28936 2018-09-28] (Glarysoft LTD -> Glarysoft Ltd)
R3 HpqKbFiltr; C:\WINDOWS\System32\drivers\HpqKbFiltr64.sys [37112 2015-06-17] (Hewlett-Packard Company -> Hewlett-Packard Company)
S3 klupd_ded03f70a_arkmon_EA04D71E; C:\KVRT2020_Data\Temp\EA04D71EFC0E16AB22C9615549FEE4F2\klupd_ded03f70a_arkmon.sys [382304 2023-01-22] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2023-01-14] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-01-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-01-14] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 SPUVCbv; C:\WINDOWS\System32\Drivers\SPUVCbv64.sys [737192 2017-11-17] (Sunplus Innovation Technology Inc. -> Sunplus Innovation Technology Inc.)
S3 SzCCID; C:\WINDOWS\System32\drivers\SzCCID.sys [51352 2015-06-25] (AlcorMicro, Corp. -> Generic)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49568 2023-01-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [473376 2023-01-13] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99616 2023-01-13] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [37280 2021-12-03] (HP Inc. -> HP)
U1 aswbdisk; no ImagePath
S1 netfilter2; system32\drivers\netfilter2.sys [X]

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) (Lista blanca) =========

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2023-01-25 14:41 - 2023-01-25 14:42 - 000024776 _____ C:\Users\Usuario\Downloads\FRST.txt
2023-01-25 14:38 - 2023-01-25 14:41 - 000001578 _____ C:\Users\Usuario\Desktop\FRST64(1).exe - Acceso directo.lnk
2023-01-25 14:35 - 2023-01-25 14:42 - 000000000 ____D C:\FRST
2023-01-25 14:34 - 2023-01-25 14:34 - 002376704 _____ (Farbar) C:\Users\Usuario\Downloads\FRST64(1).exe
2023-01-25 12:06 - 2023-01-25 12:06 - 002376704 _____ (Farbar) C:\Users\Usuario\Downloads\FRST64.exe
2023-01-23 12:43 - 2023-01-23 12:43 - 000006350 _____ C:\Users\Usuario\Downloads\BsOD.txt
2023-01-23 12:26 - 2023-01-23 12:26 - 000006350 _____ C:\Users\Usuario\Desktop\BsOD.txt
2023-01-23 11:58 - 2023-01-23 11:58 - 000001587 _____ C:\Users\Usuario\Desktop\bluescreenview-x64(3) - Acceso directo.lnk
2023-01-23 11:57 - 2023-01-23 12:26 - 000000000 ____D C:\Users\Usuario\Downloads\bluescreenview-x64(3)
2023-01-23 11:52 - 2023-01-23 11:52 - 000085380 _____ C:\Users\Usuario\Downloads\bluescreenview-x64(3).zip
2023-01-23 11:51 - 2023-01-23 11:51 - 000085380 _____ C:\Users\Usuario\Downloads\bluescreenview-x64(1).zip
2023-01-22 23:01 - 2023-01-22 23:01 - 000085380 _____ C:\Users\Usuario\Downloads\bluescreenview-x64(2).zip
2023-01-22 22:32 - 2023-01-22 22:36 - 000085520 _____ C:\Users\Usuario\Downloads\bluescreenview-x64.zip
2023-01-22 20:01 - 2023-01-22 20:02 - 098620248 _____ (AO Kaspersky Lab) C:\Users\Usuario\Downloads\KVRT (1).exe
2023-01-21 11:57 - 2023-01-21 11:57 - 001451380 _____ C:\WINDOWS\Minidump\012123-6984-01.dmp
2023-01-21 11:47 - 2023-01-21 11:49 - 001313700 _____ C:\WINDOWS\Minidump\012123-6859-01.dmp
2023-01-21 11:37 - 2023-01-21 11:37 - 002764120 _____ (Kaspersky) C:\Users\Usuario\Downloads\kts21.3.10.391abes_25655.exe
2023-01-21 11:37 - 2023-01-21 11:37 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2023-01-21 11:35 - 2023-01-21 11:57 - 634465733 _____ C:\WINDOWS\MEMORY.DMP
2023-01-21 11:35 - 2023-01-21 11:57 - 000000000 ____D C:\WINDOWS\Minidump
2023-01-21 11:35 - 2023-01-21 11:36 - 001345604 _____ C:\WINDOWS\Minidump\012123-8203-01.dmp
2023-01-20 19:52 - 2023-01-22 20:02 - 000000000 ____D C:\KVRT2020_Data
2023-01-20 19:52 - 2023-01-20 19:52 - 098815832 _____ (AO Kaspersky Lab) C:\Users\Usuario\Downloads\KVRT(2).exe
2023-01-20 19:50 - 2023-01-20 19:51 - 098815832 _____ (AO Kaspersky Lab) C:\Users\Usuario\Downloads\KVRT(1).exe
2023-01-20 18:37 - 2023-01-20 18:38 - 000001319 _____ C:\Users\Usuario\Desktop\ESET Online Scanner.lnk
2023-01-20 18:37 - 2023-01-20 18:37 - 015274968 _____ (ESET) C:\Users\Usuario\Downloads\esetonlinescanner.exe
2023-01-15 18:09 - 2023-01-15 18:09 - 008791352 _____ (Malwarebytes) C:\Users\Usuario\Downloads\adwcleaner(1).exe
2023-01-15 17:54 - 2023-01-15 17:54 - 008791352 _____ (Malwarebytes) C:\Users\Usuario\Downloads\adwcleaner.exe
2023-01-14 12:31 - 2023-01-14 12:31 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2023-01-14 12:31 - 2023-01-14 12:31 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2023-01-14 12:30 - 2023-01-14 12:30 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-01-14 12:28 - 2023-01-14 12:28 - 002552184 _____ (Malwarebytes) C:\Users\Usuario\Downloads\MBSetup(3).exe
2023-01-14 12:25 - 2023-01-14 12:25 - 000419634 _____ C:\Users\Usuario\Desktop\copia de seguridad ccleaner.reg
2023-01-13 13:15 - 2023-01-13 13:15 - 000000000 ___HD C:\$WinREAgent
2023-01-12 19:06 - 2023-01-12 19:06 - 000268488 _____ (AVAST Software) C:\Users\Usuario\Downloads\avast_free_antivirus_setup_online(2).exe
2023-01-12 18:45 - 2023-01-12 18:45 - 000268488 _____ (AVAST Software) C:\Users\Usuario\Downloads\avast_free_antivirus_setup_online(1).exe
2023-01-12 17:39 - 2023-01-12 17:39 - 000268488 _____ (AVAST Software) C:\Users\Usuario\Downloads\avast_free_antivirus_setup_online.exe
2023-01-11 18:35 - 2023-01-11 18:35 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2023-01-11 18:35 - 2023-01-11 18:35 - 000002241 _____ C:\Users\Public\Desktop\Google Earth Pro.lnk
2023-01-11 18:35 - 2023-01-11 18:35 - 000000000 ____D C:\Program Files\Google
2023-01-07 13:56 - 2023-01-21 11:21 - 000000000 ____D C:\Program Files\Mozilla Firefox

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2023-01-25 14:32 - 2018-04-11 08:38 - 000000000 ____D C:\Program Files (x86)\Google
2023-01-25 11:59 - 2018-04-11 08:38 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-01-25 11:59 - 2018-04-11 08:38 - 000002258 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-01-25 11:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-01-25 11:58 - 2018-09-05 20:44 - 000000000 ____D C:\Program Files\CCleaner
2023-01-25 11:56 - 2022-02-11 11:51 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-01-25 11:54 - 2018-04-10 18:54 - 000000000 __SHD C:\Users\Usuario\IntelGraphicsProfiles
2023-01-24 19:48 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-01-24 19:35 - 2022-07-15 13:44 - 000002496 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2023-01-24 19:35 - 2022-07-15 13:44 - 000002461 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2023-01-24 12:22 - 2018-09-03 18:11 - 000000000 ____D C:\Users\Usuario\AppData\LocalLow\Mozilla
2023-01-23 22:59 - 2022-08-16 22:34 - 000000000 ____D C:\Users\Usuario
2023-01-23 12:24 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-01-23 12:17 - 2022-08-16 23:14 - 001772862 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-01-23 12:17 - 2019-12-07 15:55 - 000789596 _____ C:\WINDOWS\system32\perfh00A.dat
2023-01-23 12:17 - 2019-12-07 15:55 - 000155948 _____ C:\WINDOWS\system32\perfc00A.dat
2023-01-23 12:17 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2023-01-23 12:12 - 2022-08-16 23:15 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-01-23 12:12 - 2022-08-16 23:04 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-01-23 12:12 - 2020-09-28 15:43 - 000008192 ___SH C:\DumpStack.log.tmp
2023-01-23 12:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-01-22 19:58 - 2020-07-12 20:31 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-01-22 19:58 - 2020-07-12 20:31 - 000002278 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-01-21 12:00 - 2022-08-16 23:15 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-01-21 11:54 - 2019-12-07 10:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2023-01-21 11:21 - 2022-09-21 11:11 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-01-21 11:21 - 2021-04-21 11:51 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-01-20 18:55 - 2018-09-28 20:53 - 000000000 ____D C:\Program Files (x86)\Glary Utilities 5
2023-01-20 18:38 - 2019-06-21 19:22 - 000001425 _____ C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2023-01-19 12:20 - 2022-08-16 23:15 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2023-01-19 12:20 - 2021-04-21 11:51 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-01-18 22:08 - 2022-08-16 23:15 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-310016112-2284314740-1832750596-1001
2023-01-18 22:08 - 2022-08-16 23:15 - 000003382 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-310016112-2284314740-1832750596-1001
2023-01-18 22:08 - 2022-08-16 22:34 - 000002464 _____ C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-01-18 12:42 - 2022-10-08 11:10 - 000003474 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-01-14 12:31 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-01-14 12:30 - 2022-08-26 19:34 - 000000000 ____D C:\Program Files\Malwarebytes
2023-01-14 12:02 - 2018-09-02 17:31 - 000000000 ____D C:\Users\Usuario\AppData\Local\CrashDumps
2023-01-13 14:28 - 2022-10-13 13:14 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk
2023-01-13 13:56 - 2022-08-16 23:04 - 000464944 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-01-13 13:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-01-13 13:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-01-13 13:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-01-13 13:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-01-13 13:56 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2023-01-13 13:28 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-01-13 13:25 - 2022-08-16 23:06 - 003014656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-01-13 13:15 - 2018-04-10 19:02 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-01-13 13:12 - 2018-04-10 19:02 - 150199536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-01-13 11:57 - 2018-04-11 08:34 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-01-13 11:56 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2023-01-12 22:13 - 2018-04-10 19:02 - 000803176 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2023-01-12 19:23 - 2018-08-30 20:31 - 000000000 ____D C:\Users\Usuario\AppData\Local\AVAST Software
2023-01-12 19:23 - 2018-08-30 19:46 - 000000000 ____D C:\ProgramData\AVAST Software
2022-12-28 11:45 - 2022-08-16 23:15 - 000003708 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-12-28 11:45 - 2022-08-16 23:15 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)

==================== Final de FRST.txt ========================