Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 02-02-2020 02 Ejecutado por pablo (administrador) sobre PABLO-PC (Dell Inc. Precision WorkStation T3400) (04-02-2020 07:52:58) Ejecutado desde C:\Users\pablo\Desktop Perfiles cargados: pablo (Perfiles disponibles: pablo) Platform: Windows 7 Ultimate Service Pack 1 (X64) Idioma: Español (España, internacional) Internet Explorer Versión 11 (Navegador predeterminado: Chrome) Modo de Inicio: Normal Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesos (Lista blanca) ================= (Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.) (ABBYY SOLUTIONS LIMITED -> ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe (Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Autodesk, Inc -> Autodesk, Inc.) C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.6.605.0\AvastBrowserCrashHandler.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.6.605.0\AvastBrowserCrashHandler64.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Cambridge Silicon Radio Ltd. -> ) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrSyncMLServer.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BtSwitcherService.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrAudioguiCtrl.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtAudioService.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtService.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrHCRPServer.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\HarmonyUserStartup.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\TrayApplication.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\vksts.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe (Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.) C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe (Nero AG -> Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE (StarWind Software) [Archivo no firmado] C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe ==================== Registro (Lista blanca) =================== (Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.) HKLM\...\Run: [CsrHCRPServer] => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrHCRPServer.exe [1134288 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) HKLM\...\Run: [CsrAudioguiCtrl] => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrAudioguiCtrl.exe [511696 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) HKLM\...\Run: [CsrSyncMLServer] => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrSyncMLServer.exe [244944 2012-03-22] (Cambridge Silicon Radio Ltd. -> ) HKLM\...\Run: [vksts] => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\vksts.exe [25792 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) HKLM\...\Run: [HarmonyUserStartup] => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\HarmonyUserStartup.exe [39128 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) HKLM\...\Run: [CSRHarmonySkypePlugin] => C:\Program Files (x86)\CSR\CSR Harmony Wireless Software Stack\CSRHarmonySkypePlugin.exe [146656 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) HKLM\...\Run: [TrayApplication] => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\TrayApplication.exe [529616 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation -> Microsoft Corporation) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [268680 2020-02-03] (AVAST Software s.r.o. -> AVAST Software) HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328 2010-08-30] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) HKLM-x32\...\Run: [SoundMAXPnP] => C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe [1314816 2009-04-23] (Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646160 2019-12-11] (Oracle America, Inc. -> Oracle Corporation) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN HKU\S-1-5-21-442317814-2703804614-3339253502-1001\...\Run: [GoogleChromeAutoLaunch_58B674F2D37EBAC4F632B24709507138] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window HKU\S-1-5-21-442317814-2703804614-3339253502-1001\...\Run: [AlcoholAutomount] => C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft -> Alcohol Soft Development Team) HKU\S-1-5-21-442317814-2703804614-3339253502-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-12-26] (Piriform Software Ltd -> Piriform Ltd) HKU\S-1-5-21-442317814-2703804614-3339253502-1001\...\Run: [AvastBrowserAutoLaunch_C9FE4CF32D60781B39661B97AF51D66D] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2015080 2019-11-05] (AVAST Software s.r.o. -> AVAST Software) HKU\S-1-5-21-442317814-2703804614-3339253502-1001\...\Policies\Explorer: [] HKU\S-1-5-21-442317814-2703804614-3339253502-1001\...\MountPoints2: {35721c20-99a0-11e5-be5a-806e6f6e6963} - F:\setup.exe HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.130\Installer\chrmstp.exe [2020-01-25] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\77.2.2154.121\Installer\chrmstp.exe [2020-02-03] (AVAST Software s.r.o. -> AVAST Software) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome HKLM\Software\...\Authentication\Credential Providers: [{5355DA8C-FE32-49b4-A567-A67535C86592}] -> C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BLEtokenCredentialProvider.dll [2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN CHR HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN CHR HKU\S-1-5-21-442317814-2703804614-3339253502-1001\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN ==================== Tareas programadas (Lista blanca) ============ (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) Task: {07EC1753-6968-449E-97F3-E9B8215E5CB3} - System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 => C:\Program Files\Bitdefender\Bitdefender 2015\bdproductdata.exe Task: {0C7767A9-D694-4FDE-A6E6-349C45D33334} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2015080 2019-11-05] (AVAST Software s.r.o. -> AVAST Software) Task: {110BDC6A-3BAE-4E16-B1D8-6ADA29DD5B60} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [199376 2020-02-03] (AVAST Software s.r.o. -> AVAST Software) Task: {2958FC60-97BA-42E5-BFEF-18CDCEF7B9A0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems) Task: {3AFA0B37-BC0D-40D4-B10C-5319EBD64693} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1873288 2020-02-03] (AVAST Software s.r.o. -> AVAST Software) Task: {3D1B2E11-9B70-4890-8B7F-A387FA5B09C2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-03-04] (Google Inc -> Google Inc.) Task: {67D4C8AB-B950-4A5C-9414-07BB05C85236} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation) Task: {7D51EE1F-8341-46CA-A9F8-178364E98290} - System32\Tasks\{E8997239-91A8-4328-8C63-7E4757AEF47F} => C:\Users\pablo\AppData\Roaming\uTorrent\uTorrent.exe Task: {93CC4B76-05C4-41CD-9300-0E2EA1196EA6} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3933576 2020-02-03] (AVAST Software s.r.o. -> AVAST Software) Task: {96682728-0220-420D-82CF-5FCF2A23365C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation) Task: {97001540-B886-485B-950A-B97E4852584C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-03-04] (Google Inc -> Google Inc.) Task: {A7ACFD03-ACC5-422C-81BF-CA89E1159741} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [199376 2020-02-03] (AVAST Software s.r.o. -> AVAST Software) Task: {AEB43793-E36F-4FCC-BE21-CC61448C7DC9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation) Task: {D352C174-5C50-451C-9806-6CCCCCE42803} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\\MpCmdRun.exe [410784 2016-11-14] (Microsoft Corporation -> Microsoft Corporation) Task: {E332A462-0DAA-4297-B653-AB748DFB78CC} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-12-26] (Piriform Software Ltd -> Piriform Ltd) Task: {F158DB55-B999-4725-B866-D674127B34BD} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2015080 2019-11-05] (AVAST Software s.r.o. -> AVAST Software) Task: {F3EDB3ED-FE26-41CC-8C1C-6FB4F77C99B0} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-12-26] (Piriform Software Ltd -> Piriform Software Ltd) (Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.) ==================== Internet (Lista blanca) ==================== (Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.) Tcpip\Parameters: [DhcpNameServer] 80.58.61.250 80.58.61.254 Tcpip\Parameters: [NameServer] 8.8.8.8 Tcpip\..\Interfaces\{1D1E98FC-BEFA-4E91-B86A-E2D2222A60FB}: [NameServer] 8.8.8.8 Tcpip\..\Interfaces\{50802DEC-71A3-4D48-B825-494E4FB1A2D8}: [NameServer] 8.8.8.8 Tcpip\..\Interfaces\{77A71E28-7473-4AB0-B164-6B8A0C0E9A97}: [NameServer] 8.8.8.8 Tcpip\..\Interfaces\{77A71E28-7473-4AB0-B164-6B8A0C0E9A97}: [DhcpNameServer] 80.58.61.250 80.58.61.254 Tcpip\..\Interfaces\{846ee342-7039-11de-9d20-806e6f6e6963}: [NameServer] 8.8.8.8 Tcpip\..\Interfaces\{AE33EA29-CE4D-4E9E-9163-F3367EE4DB8F}: [NameServer] 8.8.8.8 Tcpip\..\Interfaces\{D84AC361-59AD-4DF4-B0EF-83421A1488A4}: [NameServer] 8.8.8.8 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1 SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1 SearchScopes: HKU\S-1-5-21-442317814-2703804614-3339253502-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-442317814-2703804614-3339253502-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Sin Nombre -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> Ningún archivo BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2019-07-18] (Microsoft Corporation -> Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Sin Nombre -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> Ningún archivo BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2019-07-18] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\ssv.dll [2020-01-26] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\jp2ssv.dll [2020-01-26] (Oracle America, Inc. -> Oracle Corporation) Toolbar: HKLM - Sin Nombre - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - Ningún archivo Toolbar: HKLM-x32 - Sin Nombre - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - Ningún archivo Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2017-08-15] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2011-01-19] (Skype Technologies SA -> Skype Technologies) StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF DefaultProfile: 2ktcj3jc.default FF ProfilePath: C:\Users\pablo\AppData\Roaming\Mozilla\Firefox\Profiles\2ktcj3jc.default [2020-02-04] FF Homepage: Mozilla\Firefox\Profiles\2ktcj3jc.default -> hxxps://www.google.com/ FF Extension: (Avast Online Security) - C:\Users\pablo\AppData\Roaming\Mozilla\Firefox\Profiles\2ktcj3jc.default\Extensions\wrc@avast.com.xpi [2020-02-03] FF HKLM\...\Firefox\Extensions: [bdwteffv20@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\antispam32\bdwteff => no encontrado FF HKLM\...\Firefox\Extensions: [light_plugin_F363A72DD7B6435783A76E5F612C9006@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\FFExt\light_plugin_firefox\addon.xpi => no encontrado FF HKLM\...\Firefox\Extensions: [light_plugin_A07576A3CEBC4A72A8CF2C925907DB05@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 18.0.0\FFExt\light_plugin_firefox\addon.xpi => no encontrado FF HKLM-x32\...\Firefox\Extensions: [bdwteffv20@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\antispam32\bdwteff => no encontrado FF HKLM-x32\...\Firefox\Extensions: [light_plugin_F363A72DD7B6435783A76E5F612C9006@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\FFExt\light_plugin_firefox\addon.xpi => no encontrado FF HKLM-x32\...\Firefox\Extensions: [light_plugin_A07576A3CEBC4A72A8CF2C925907DB05@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 18.0.0\FFExt\light_plugin_firefox\addon.xpi => no encontrado FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN -> VideoLAN) FF Plugin-x32: @java.com/DTPlugin,version=11.241.2 -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\dtplugin\npDeployJava1.dll [2020-01-26] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.241.2 -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\plugin2\npjp2.dll [2020-01-26] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-19] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2014-11-27] (Nero AG -> Nero AG) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-15] (Google LLC -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-15] (Google LLC -> Google LLC) FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.6.605.0\npAvastBrowserUpdate3.dll [2020-02-03] (AVAST Software s.r.o. -> AVAST Software) FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.6.605.0\npAvastBrowserUpdate3.dll [2020-02-03] (AVAST Software s.r.o. -> AVAST Software) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-12-02] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Profile 1 CHR Profile: C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default [2019-12-26] CHR HomePage: Default -> hxxps://www.google.com/ CHR DefaultSearchURL: Default -> file://C:\\Users\\pablo\\AppData\\Local\\Temp\\B6A4.html?p={searchTerms} CHR DefaultSearchKeyword: Default -> yahoo.com CHR Extension: (YouTube) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-08-28] CHR Extension: (Adblock Plus) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-08-29] CHR Extension: (Búsqueda de Google) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-08-28] CHR Extension: (Hojas de cálculo de Google) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-08-28] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-28] CHR Extension: (Gmail) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-28] CHR Profile: C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-02-03] CHR Profile: C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Profile 1 [2020-02-04] CHR Notifications: Profile 1 -> hxxps://forospyware.com CHR HomePage: Profile 1 -> hxxp://www.dekazeta.net/ CHR StartupUrls: Profile 1 -> "hxxp://www.dekazeta.net/","hxxps://www.google.es/" CHR Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-12-26] CHR Extension: (MyJDownloader Browser Extension) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip [2018-11-09] CHR Extension: (Documentos de Google sin conexión) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-17] CHR Extension: (anonymoX) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\icpklikeghomkemdellmmkoifgfbakio [2019-09-22] CHR Extension: (Keepa - Amazon Price Tracker) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\neebplgakaahbhdphmkckjjcegoiijjo [2019-11-21] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-05] CHR Extension: (Chrome Media Router) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-19] CHR Profile: C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Profile 2 [2019-12-26] CHR HomePage: Profile 2 -> hxxps://www.google.com/ CHR DefaultSearchURL: Profile 2 -> file://C:\\Users\\pablo\\AppData\\Local\\Temp\\B6A4.html?p={searchTerms} CHR DefaultSearchKeyword: Profile 2 -> yahoo.com CHR Extension: (Google Drive) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-24] CHR Extension: (YouTube) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-24] CHR Extension: (Búsqueda de Google) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-24] CHR Extension: (Hojas de cálculo de Google) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-01-24] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-01-24] CHR Extension: (Gmail) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-24] CHR Profile: C:\Users\pablo\AppData\Local\Google\Chrome\User Data\System Profile [2020-02-03] CHR DefaultSearchURL: System Profile -> file://C:\\Users\\pablo\\AppData\\Local\\Temp\\B6A4.html?p={searchTerms} CHR DefaultSearchKeyword: System Profile -> yahoo.com CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] ==================== Servicios (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY SOLUTIONS LIMITED -> ABBYY) S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6259592 2020-02-03] (AVAST Software s.r.o. -> AVAST Software) R2 Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [31160 2015-02-05] (Autodesk, Inc -> Autodesk, Inc.) S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [199376 2020-02-03] (AVAST Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [996880 2020-02-03] (AVAST Software s.r.o. -> AVAST Software) S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [199376 2020-02-03] (AVAST Software s.r.o. -> AVAST Software) S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\77.2.2154.121\elevation_service.exe [1117336 2019-11-05] (AVAST Software s.r.o. -> AVAST Software) S2 AxAutoMntSrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft -> Alcohol Soft Development Team) R2 BtSwitcherService; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BtSwitcherService.exe [64216 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) R2 CSRBtAudioService; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtAudioService.exe [465624 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) R2 CsrBtOBEXService; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe [1041616 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) R2 CsrBtService; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtService.exe [825032 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6960640 2019-12-26] (Malwarebytes Inc -> Malwarebytes) R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation) R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation -> Microsoft Corporation) R2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [Archivo no firmado] S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 ===================== Controladores (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) R3 ADIHdAudAddService; C:\Windows\System32\drivers\ADIHdAud.sys [497152 2009-04-23] (Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.) S0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37616 2020-02-03] (AVAST Software s.r.o. -> AVAST Software) S3 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [204824 2020-02-03] (AVAST Software s.r.o. -> AVAST Software) S3 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [274456 2020-02-03] (AVAST Software s.r.o. -> AVAST Software) S3 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [209552 2020-02-03] (AVAST Software s.r.o. -> AVAST Software) S3 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [65120 2020-02-03] (AVAST Software s.r.o. -> AVAST Software) R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [276952 2020-02-03] (AVAST Software s.r.o. -> AVAST Software) S3 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42736 2020-02-03] (AVAST Software s.r.o. -> AVAST Software) R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [171520 2020-02-03] (AVAST Software s.r.o. -> AVAST Software) S3 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [110320 2020-02-03] (AVAST Software s.r.o. -> AVAST Software) S0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [83792 2020-02-03] (AVAST Software s.r.o. -> AVAST Software) S3 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [848432 2020-02-03] (AVAST Software s.r.o. -> AVAST Software) R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [460448 2020-02-03] (AVAST Software s.r.o. -> AVAST Software) S3 aswStm; C:\Windows\System32\drivers\aswStm.sys [236024 2020-02-03] (AVAST Software s.r.o. -> AVAST Software) S3 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [316528 2020-02-03] (AVAST Software s.r.o. -> AVAST Software) R3 csravrcp; C:\Windows\System32\DRIVERS\csravrcp.sys [26304 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) S3 CsrBthAudioHF; C:\Windows\System32\DRIVERS\CsrBthAudioHF.sys [39120 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) R3 CsrBtPort; C:\Windows\System32\DRIVERS\CsrBtPort.sys [2784968 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) S3 csrhfgcc; C:\Windows\System32\DRIVERS\csrhfgcc.sys [38080 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) R3 csrpan; C:\Windows\System32\DRIVERS\csrpan.sys [39616 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) R3 csrserial; C:\Windows\System32\DRIVERS\csrserial.sys [61128 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) R3 csrusb; C:\Windows\System32\Drivers\csrusb.sys [47296 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) R3 csrusbfilter; C:\Windows\System32\Drivers\csrusbfilter.sys [23752 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) R3 csr_bthav; C:\Windows\System32\drivers\csrbthav.sys [99520 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [153312 2020-02-03] (Malwarebytes Corporation -> Malwarebytes) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-02-03] (Malwarebytes Inc -> Malwarebytes) R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation -> Microsoft Corporation) R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation -> Microsoft Corporation) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2015-12-03] (Duplex Secure Ltd -> Duplex Secure Ltd.) S3 TKFsAvM; C:\Windows\system32\TKFsAv64.sys [198808 2018-03-07] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.) <==== ATENCIÓN S3 TKFsFtM; C:\Windows\system32\TKFsFt64.sys [28824 2018-03-07] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.) <==== ATENCIÓN S3 TKPcFt; C:\Windows\system32\TKPcFtCb64.sys [54504 2018-01-30] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.) <==== ATENCIÓN S3 TKRgAc; C:\Windows\system32\TKRgAc2k64.sys [115760 2018-01-29] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.) <==== ATENCIÓN S3 TKRgFt; C:\Windows\system32\TKRgFtXp64.sys [68848 2018-02-04] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.) <==== ATENCIÓN S3 TKSP; C:\Windows\system32\TKSPxp64.sys [80824 2018-01-29] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.) <==== ATENCIÓN S3 usbUDisc; C:\Windows\System32\DRIVERS\USBDrv_AMD64.sys [18392 2013-01-25] (Allwinner Technology Co.,Ltd. -> Scott) U3 ar73ii13; C:\Windows\System32\Drivers\ar73ii13.sys [0 0000-00-00] (Advanced Micro Devices) <==== ATENCIÓN (cero bytes Archivo/Carpeta) U3 aswbdisk; no ImagePath S2 MBAMChameleon; \SystemRoot\system32\drivers\MBAMChameleon.sys [X] S3 MBAMFarflt; \??\C:\Windows\system32\drivers\farflt.sys [X] S3 MBAMProtection; \??\C:\Windows\system32\drivers\mbam.sys [X] S3 VGPU; System32\drivers\rdvgkmd.sys [X] S1 ZAM; \??\C:\Windows\System32\drivers\zam64.sys [X] S1 ZAM_Guard; \??\C:\Windows\System32\drivers\zamguard64.sys [X] ==================== NetSvcs (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) ==================== Un mes (creado) =================== (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2020-02-04 07:52 - 2020-02-04 07:53 - 000037085 _____ C:\Users\pablo\Desktop\FRST.txt 2020-02-04 07:52 - 2020-02-04 07:53 - 000000000 ____D C:\FRST 2020-02-04 07:51 - 2020-02-04 07:51 - 002279424 _____ (Farbar) C:\Users\pablo\Desktop\FRST64.exe 2020-02-03 21:52 - 2020-02-03 21:52 - 000003732 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) 2020-02-03 21:52 - 2020-02-03 21:52 - 000003150 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon) 2020-02-03 21:52 - 2020-02-03 21:52 - 000002499 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk 2020-02-03 21:52 - 2020-02-03 21:52 - 000002456 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk 2020-02-03 21:52 - 2020-02-03 21:52 - 000002456 _____ C:\ProgramData\Desktop\Avast Secure Browser.lnk 2020-02-03 21:52 - 2020-02-03 21:52 - 000000000 ____D C:\Users\pablo\AppData\Local\AVAST Software 2020-02-03 21:38 - 2020-02-03 21:38 - 000003572 _____ C:\Windows\system32\Tasks\AvastUpdateTaskMachineUA 2020-02-03 21:38 - 2020-02-03 21:38 - 000003444 _____ C:\Windows\system32\Tasks\AvastUpdateTaskMachineCore 2020-02-03 21:38 - 2020-02-03 21:38 - 000000000 ____D C:\Program Files (x86)\AVAST Software 2020-02-03 21:21 - 2020-02-04 05:10 - 000000000 ____D C:\Users\pablo\Downloads\J0k3r m1080p JessieJ 2020-02-03 21:19 - 2020-02-03 21:19 - 000002035 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk 2020-02-03 21:19 - 2020-02-03 21:19 - 000002035 _____ C:\ProgramData\Desktop\Avast Free Antivirus.lnk 2020-02-03 21:19 - 2020-02-03 21:19 - 000000000 ____D C:\Users\pablo\AppData\Roaming\AVAST Software 2020-02-03 21:19 - 2020-02-03 21:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software 2020-02-03 21:15 - 2020-02-03 21:15 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software 2020-02-03 21:13 - 2020-02-03 21:14 - 000848432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2020-02-03 21:13 - 2020-02-03 21:14 - 000460448 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2020-02-03 21:13 - 2020-02-03 21:13 - 000355720 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2020-02-03 21:13 - 2020-02-03 21:13 - 000316528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys 2020-02-03 21:13 - 2020-02-03 21:13 - 000276952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys 2020-02-03 21:13 - 2020-02-03 21:13 - 000236024 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2020-02-03 21:13 - 2020-02-03 21:13 - 000171520 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2020-02-03 21:13 - 2020-02-03 21:13 - 000110320 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2020-02-03 21:13 - 2020-02-03 21:13 - 000083792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys 2020-02-03 21:13 - 2020-02-03 21:13 - 000042736 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys 2020-02-03 21:13 - 2020-02-03 21:13 - 000003910 _____ C:\Windows\system32\Tasks\Avast Emergency Update 2020-02-03 21:13 - 2020-02-03 21:13 - 000000000 ____D C:\Program Files\Common Files\AVAST Software 2020-02-03 21:13 - 2020-02-03 21:12 - 000274456 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys 2020-02-03 21:13 - 2020-02-03 21:12 - 000209552 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys 2020-02-03 21:13 - 2020-02-03 21:12 - 000204824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys 2020-02-03 21:13 - 2020-02-03 21:12 - 000065120 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys 2020-02-03 21:13 - 2020-02-03 21:12 - 000037616 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys 2020-02-03 21:05 - 2020-02-03 21:05 - 000000000 ____D C:\Program Files\AVAST Software 2020-02-03 20:32 - 2020-02-03 20:32 - 000002555 _____ C:\Users\pablo\Desktop\adwcleaner registro.txt 2020-02-03 20:30 - 2020-02-03 20:30 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2020-02-03 20:26 - 2020-02-03 20:29 - 000000000 ____D C:\AdwCleaner 2020-02-03 20:22 - 2020-02-03 20:22 - 000007941 _____ C:\Users\pablo\Desktop\Malwarebytes datos 03-02-2020.txt 2020-02-03 20:20 - 2020-02-03 20:20 - 000000000 _____ C:\Users\pablo\Desktop\Nuevo documento de texto.txt 2020-02-03 20:11 - 2020-02-03 20:13 - 000000282 __RSH C:\ProgramData\ntuser.pol 2020-02-03 19:49 - 2020-02-03 19:52 - 008356016 _____ (Malwarebytes) C:\Users\pablo\Desktop\adwcleaner_8.0.2.exe 2020-02-03 13:16 - 2020-02-04 00:39 - 000000000 ____D C:\Users\pablo\Downloads\Flamman-Exx19 2020-02-03 10:11 - 2020-02-03 10:17 - 000000000 ____D C:\Users\pablo\AppData\LocalLow\Mozilla 2020-02-01 21:39 - 2020-02-01 21:40 - 000000000 ____D C:\Users\pablo\Downloads\D14m4nteBrt0 m720p yamil 2020-02-01 21:39 - 2020-02-01 21:39 - 000000000 ____D C:\Users\pablo\Downloads\G3m1n1s m720p yamil 2020-02-01 21:38 - 2020-02-04 00:29 - 000000000 ____D C:\Users\pablo\Downloads\Flamman-125132001064 2020-02-01 21:22 - 2020-02-01 21:27 - 000000000 ____D C:\Users\pablo\Downloads\Flamman-Wira5901 2020-02-01 10:30 - 2020-02-01 10:30 - 000000000 _____ C:\TKSPProtectLog.txt 2020-02-01 10:29 - 2020-02-01 10:29 - 000000000 ____D C:\ProgramData\INCAInternet 2020-02-01 10:26 - 2020-02-01 10:26 - 000000000 ____D C:\ProgramData\TACHYON 2020-02-01 10:25 - 2020-02-01 20:54 - 000000000 ____D C:\Program Files (x86)\TACHYON 2020-02-01 10:18 - 2020-02-01 10:18 - 000000000 ____D C:\ProgramData\{C675A2CF-BDD8-1FF4-A0A0-7793A0472EC2} 2020-02-01 10:18 - 2020-02-01 10:18 - 000000000 ____D C:\ProgramData\{61E1BC93-A384-B860-FCBE-E334FC59BA65} 2020-02-01 10:18 - 2020-02-01 10:18 - 000000000 ____D C:\ProgramData\{1B350A7D-156A-C2B4-1208-374E12EF6E1F} 2020-01-20 11:44 - 2020-01-20 11:44 - 000141422 _____ C:\Users\pablo\Documents\Informe de Vida Laboral 20-1-2020.pdf 2020-01-17 17:19 - 2020-01-17 17:19 - 000101609 _____ C:\Users\pablo\Desktop\1 al 10 noviembre 2019.pdf ==================== Un mes (modificado) ================== (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2020-02-04 07:45 - 2015-08-28 12:28 - 000000000 ____D C:\Program Files\JDownloader v2.0 2020-02-04 03:30 - 2009-07-14 05:45 - 000021280 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2020-02-04 03:30 - 2009-07-14 05:45 - 000021280 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2020-02-03 21:15 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf 2020-02-03 21:13 - 2016-11-19 12:08 - 000000000 ____D C:\ProgramData\AVAST Software 2020-02-03 20:35 - 2011-04-12 10:10 - 000747396 _____ C:\Windows\system32\perfh00A.dat 2020-02-03 20:35 - 2011-04-12 10:10 - 000158868 _____ C:\Windows\system32\perfc00A.dat 2020-02-03 20:35 - 2009-07-14 06:13 - 001676890 _____ C:\Windows\system32\PerfStringBackup.INI 2020-02-03 20:30 - 2015-08-28 18:20 - 000000000 ____D C:\ProgramData\NVIDIA 2020-02-03 20:30 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2020-02-03 20:10 - 2019-12-25 22:58 - 000000000 ____D C:\Windows\trustedlogos 2020-02-03 20:10 - 2015-08-28 12:18 - 000000000 ____D C:\Users\pablo 2020-02-03 20:03 - 2019-12-26 03:32 - 000000000 ____D C:\Users\pablo\AppData\Local\cache 2020-02-03 20:02 - 2019-12-26 03:32 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys 2020-02-03 10:11 - 2015-08-29 11:09 - 000000000 ____D C:\Users\pablo\AppData\Roaming\Mozilla 2020-02-01 20:54 - 2009-07-14 05:45 - 000519920 _____ C:\Windows\system32\FNTCACHE.DAT 2020-02-01 10:27 - 2019-12-25 22:59 - 000000000 ____D C:\ProgramData\{5FBFECBA-F3AD-863E-D5EE-BD0AD509E45B} 2020-02-01 10:27 - 2019-12-25 22:59 - 000000000 ____D C:\ProgramData\{22E540B2-5FA5-FB64-DD42-E777DDA5BE26} 2020-02-01 10:26 - 2015-08-28 12:49 - 000144264 _____ C:\Users\pablo\AppData\Local\GDIPFONTCACHEV1.DAT 2020-01-26 19:27 - 2015-08-28 12:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2020-01-26 19:27 - 2015-08-28 12:36 - 000000000 ____D C:\Program Files (x86)\Java 2020-01-26 19:26 - 2015-08-28 12:36 - 000114232 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2020-01-25 20:29 - 2015-08-28 12:52 - 000002222 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2020-01-20 21:22 - 2015-09-28 17:26 - 000000000 ____D C:\Users\pablo\Documents\Archivos de Outlook 2020-01-17 17:01 - 2019-02-12 21:26 - 000000000 ____D C:\Users\pablo\Documents\adecco ==================== Archivos en la raíz de algunos directorios ======== 2016-07-16 10:43 - 2016-07-16 12:15 - 000005623 _____ () C:\Users\pablo\AppData\Roaming\tribler.exe.log 2016-01-28 19:36 - 2016-01-28 19:36 - 000000017 _____ () C:\Users\pablo\AppData\Local\resmon.resmoncfg ==================== SigCheck ============================ (No existe una corrección automática para los archivos que no pasan la verificación.) LastRegBack: 2020-02-02 16:47 ==================== Final de FRST.txt ========================