Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 20-09-2020 Ejecutado por javi (administrador) sobre EQUIPO (Acer Aspire E5-571) (22-09-2020 16:22:56) Ejecutado desde C:\Users\javi\Desktop Perfiles cargados: javi Platform: Windows 8.1 (Update) (X64) Idioma: Español (España, internacional) Navegador predeterminado: Chrome Modo de Inicio: Normal Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesos (Lista blanca) ================= (Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.) (Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe (Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe (Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe (Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe (Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAEvent.exe (Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAMsg.exe (Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QASvc.exe (Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\RMSvc.exe (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe (CyberLink -> ) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReaderUpdateService.exe (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxext.exe (Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxTray.exe (Intel(R) Corporation) [Archivo no firmado] C:\Program Files\Intel\iCLS Client\HeciServer.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe (philandro Software GmbH -> ) C:\Program Files (x86)\AnyDesk-0415b608\AnyDesk-0415b608.exe (Qualcomm Atheros -> ) [Archivo no firmado] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe (Qualcomm Atheros -> Atheros Communications) [Archivo no firmado] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) [Archivo no firmado] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe (WildTangent Inc -> WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe ==================== Registro (Lista blanca) =================== (Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13674712 2014-07-16] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM-x32\...\Run: [BacKGround Agent] => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [62208 2014-09-23] (Acer Incorporated -> Acer Incorporated) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646160 2019-12-11] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [165120 2019-10-16] (Panda Security S.L. -> Panda Security, S.L.) HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [134784 2014-02-25] (Qualcomm Atheros -> Atheros Communications) [Archivo no firmado] HKU\S-1-5-21-2809762911-4254659904-4234670722-1006\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [31651000 2020-09-08] (Piriform Software Ltd -> Piriform Software Ltd) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\85.0.4183.102\Installer\chrmstp.exe [2020-09-11] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\Windows\system32\AthCredentialProvider.dll [2014-02-25] (Qualcomm Atheros -> Qualcomm®Atheros®) [Archivo no firmado] HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\Windows\system32\AthCredentialProvider.dll [2014-02-25] (Qualcomm Atheros -> Qualcomm®Atheros®) [Archivo no firmado] Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk Cabildo de La Palma.lnk [2020-05-18] ShortcutTarget: AnyDesk Cabildo de La Palma.lnk -> C:\Program Files (x86)\AnyDesk-0415b608\AnyDesk-0415b608.exe (philandro Software GmbH -> ) ==================== Tareas programadas (Lista blanca) ============ (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) Task: {0AAD64E4-5C75-421D-A254-B3F0CDDE3A30} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTrayLauncher.exe [384232 2014-07-22] (Acer Incorporated -> Acer Incorporated) Task: {0E04C034-701D-4CCF-AD1A-B0A5A2CF8500} - System32\Tasks\Launch Manager => C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe [439016 2014-11-05] (Acer Incorporated -> Acer Incorporate) Task: {0F88F2F7-15F6-4B5E-B77D-6CDB62E0CC69} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41728 2014-08-30] (Acer Incorporated -> ) Task: {32BCE3D4-1F9F-4E77-A52E-DE08CAFC1DE9} - System32\Tasks\Teamviewer-QS-updater-g4nca3v => C:\Users\javi\AppData\Local\TeamViewer\CustomConfigs\g4nca3v\TeamViewer.exe Task: {416D2C61-7DF2-4B03-B610-69BB89D2B122} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [100608 2014-08-30] (Acer Incorporated -> ) Task: {454FE807-80D2-4E45-AE1E-C98DD7369997} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-08] (Google Inc -> Google LLC) Task: {53D95E6C-B773-44C9-ADE5-79105DB1036C} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-09-08] (Piriform Software Ltd -> Piriform Software Ltd) Task: {5D686CCA-1D50-47EE-AA36-D688A3A3BD9E} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [474344 2014-06-09] (Acer Incorporated -> Acer Incorporated) Task: {6E5497CD-4EAA-47CB-827D-E28BC9C911C1} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [490728 2014-06-17] (Acer Incorporated -> Acer Incorporated) Task: {7783DED1-7891-4990-A526-C5FEEF7B29B1} - System32\Tasks\AcerCloud => C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2580224 2014-08-22] (Acer Incorporated -> Acer) Task: {8C70AD02-1674-408A-B9AF-8AE605C56BFA} - System32\Tasks\Quick Access Quick Launcher => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [324328 2014-10-17] (Acer Incorporated -> Acer Incorporate) Task: {CAA2B1DE-11C8-4D9A-9C4A-6B22CB8F13B3} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [324328 2014-10-17] (Acer Incorporated -> Acer Incorporate) Task: {DF997701-762B-424D-9A13-57F7FDABE31E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26588344 2020-09-08] (Piriform Software Ltd -> Piriform Software Ltd) Task: {F77F6E14-C2C1-4D02-B7FE-0281D050A0AC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-08] (Google Inc -> Google LLC) (Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.) Task: C:\WINDOWS\Tasks\Teamviewer-QS-updater-g4nca3v.job => C:\Users\javi\AppData\Local\TeamViewer\CustomConfigs\g4nca3v\TeamViewer.exe ==================== Internet (Lista blanca) ==================== (Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.) Tcpip\Parameters: [DhcpNameServer] 80.58.61.250 80.58.61.254 Tcpip\..\Interfaces\{25BAD3A5-1324-47F7-8478-6F8AB8C25C63}: [DhcpNameServer] 80.58.61.250 80.58.61.254 Tcpip\..\Interfaces\{B990CAD0-1A5C-4297-A165-A294AD43EAF4}: [DhcpNameServer] 80.58.61.250 80.58.61.254 FireFox: ======== FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi => no encontrado FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] (Foxit Corporation -> ) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] (Foxit Corporation -> ) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-10] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-10] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-08-06] (WildTangent Inc -> ) Chrome: ======= CHR Profile: C:\Users\javi\AppData\Local\Google\Chrome\User Data\Default [2020-09-22] CHR DownloadDir: C:\Users\javi\Desktop CHR Notifications: Default -> hxxps://nippyshare.com; hxxps://www.file-upload.net CHR Extension: (YouTube) - C:\Users\javi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-05-30] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\javi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03] CHR Extension: (Chrome Media Router) - C:\Users\javi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-09-02] CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx ==================== Servicios (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) R2 AnyDesk-0415b608; C:\Program Files (x86)\AnyDesk-0415b608\AnyDesk-0415b608.exe [3033136 2020-03-26] (philandro Software GmbH -> ) R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [319104 2014-02-25] (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) [Archivo no firmado] R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [3097856 2014-09-23] (Acer Incorporated -> Acer Incorporated) R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573032 2014-07-22] (Acer Incorporated -> Acer Incorporated) R2 FoxitReaderUpdateService; C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\FoxitReaderUpdateService.exe [1995184 2020-07-08] (FOXIT SOFTWARE INC. -> Foxit Software Inc.) R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-04-24] (WildTangent Inc -> WildTangent) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Archivo no firmado] R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [472808 2014-11-05] (Acer Incorporated -> Acer Incorporate) R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [109536 2019-10-16] (Panda Security S.L. -> Panda Security, S.L.) S3 Panda VPN Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\Hydra.Sdk.Windows.Service.exe [320848 2017-11-20] (AnchorFree Inc -> ) R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [84176 2019-02-19] (Panda Security S.L. -> Panda Security, S.L.) R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [48784 2019-10-16] (Panda Security S.L. -> Panda Security, S.L.) R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [458984 2014-10-17] (Acer Incorporated -> Acer Incorporate) R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] (CyberLink -> ) R3 RMSvc; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [449768 2014-10-17] (Acer Incorporated -> Acer Incorporate) S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [234240 2014-07-15] (Acer Incorporated -> acer) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation) ===================== Controladores (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) S3 athr; C:\WINDOWS\system32\DRIVERS\athwbx.sys [3888640 2014-02-14] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros Communications, Inc.) R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated -> Acer Incorporated) R1 NNSALPC; C:\WINDOWS\System32\DRIVERS\NNSAlpc.sys [111456 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSDNS; C:\WINDOWS\System32\DRIVERS\NNSDns.sys [104728 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSHTTP; C:\WINDOWS\System32\DRIVERS\NNSHttp.sys [212360 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSHTTPS; C:\WINDOWS\System32\DRIVERS\NNSHttps.sys [125864 2019-03-06] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSIDS; C:\WINDOWS\System32\DRIVERS\NNSIds.sys [133056 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSNAHSL; C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys [95472 2018-07-16] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPICC; C:\WINDOWS\System32\DRIVERS\NNSPicc.sys [150048 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPIHSW; C:\WINDOWS\System32\DRIVERS\NNSPihsw.sys [94976 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPOP3; C:\WINDOWS\System32\DRIVERS\NNSPop3.sys [135640 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPROT; C:\WINDOWS\System32\DRIVERS\NNSProt.sys [347832 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPRV; C:\WINDOWS\System32\DRIVERS\NNSPrv.sys [291664 2019-05-30] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSSMTP; C:\WINDOWS\System32\DRIVERS\NNSSmtp.sys [123304 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSSTRM; C:\WINDOWS\System32\DRIVERS\NNSStrm.sys [296320 2019-05-30] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSTLSC; C:\WINDOWS\System32\DRIVERS\NNSTlsc.sys [132544 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R2 PSINAflt; C:\WINDOWS\System32\DRIVERS\PSINAflt.sys [197720 2019-06-06] (Panda Security S.L. -> Panda Security, S.L.) R2 PSINFile; C:\WINDOWS\System32\DRIVERS\PSINFile.sys [159832 2019-06-04] (Panda Security S.L. -> Panda Security, S.L.) R1 PSINKNC; C:\WINDOWS\System32\DRIVERS\psinknc.sys [214616 2019-03-04] (Panda Security S.L. -> Panda Security, S.L.) R2 PSINProc; C:\WINDOWS\System32\DRIVERS\PSINProc.sys [146520 2019-06-04] (Panda Security S.L. -> Panda Security, S.L.) R2 PSINProt; C:\WINDOWS\System32\DRIVERS\PSINProt.sys [158808 2019-06-06] (Panda Security S.L. -> Panda Security, S.L.) R2 PSINReg; C:\WINDOWS\System32\DRIVERS\PSINReg.sys [128600 2019-06-04] (Panda Security S.L. -> Panda Security, S.L.) R3 PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [72280 2017-05-22] (Panda Security S.L. -> Panda Security, S.L.) R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated -> Acer Incorporated) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) ==================== Un mes (creado) =================== (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2020-09-22 16:22 - 2020-09-22 16:24 - 000019003 _____ C:\Users\javi\Desktop\FRST.txt 2020-09-22 16:22 - 2020-09-22 16:23 - 000000000 ____D C:\FRST 2020-09-22 16:21 - 2020-09-22 16:21 - 002299392 _____ (Farbar) C:\Users\javi\Desktop\FRST64.exe 2020-09-21 17:51 - 2020-09-21 17:51 - 000000000 ____D C:\ProgramData\Malwarebytes 2020-09-15 20:04 - 2017-05-22 11:29 - 000072280 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSKMAD.sys 2020-09-14 14:39 - 2020-09-14 14:39 - 000003870 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2020-09-14 14:39 - 2020-09-14 14:39 - 000002802 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC 2020-09-14 14:39 - 2020-09-14 14:39 - 000000838 _____ C:\Users\Public\Desktop\CCleaner.lnk 2020-09-14 14:39 - 2020-09-14 14:39 - 000000000 ____D C:\Program Files\CCleaner 2020-09-09 07:24 - 2020-09-02 06:52 - 003332608 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2020-09-09 07:24 - 2020-09-02 06:25 - 003641344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll 2020-09-09 07:24 - 2020-08-29 03:41 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll 2020-09-09 07:24 - 2020-08-27 06:04 - 004169216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2020-09-09 07:24 - 2020-08-20 21:54 - 022382424 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2020-09-09 07:24 - 2020-08-20 21:51 - 019805104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2020-09-09 07:24 - 2020-08-15 08:22 - 001370680 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll 2020-09-09 07:24 - 2020-08-15 08:18 - 007363328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2020-09-09 07:24 - 2020-08-15 08:18 - 002012928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2020-09-09 07:24 - 2020-08-15 08:18 - 000373512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys 2020-09-09 07:24 - 2020-08-15 06:11 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll 2020-09-09 07:24 - 2020-08-15 05:43 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll 2020-09-09 07:24 - 2020-08-15 05:39 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll 2020-09-09 07:24 - 2020-08-15 05:33 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOVER.exe 2020-09-09 07:24 - 2020-08-15 05:23 - 001993728 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll 2020-09-09 07:24 - 2020-08-15 05:17 - 000943616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFS.exe 2020-09-09 07:24 - 2020-08-15 05:17 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll 2020-09-09 07:24 - 2020-08-15 05:14 - 001442304 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2020-09-09 07:24 - 2020-08-15 05:14 - 001383936 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2020-09-09 07:24 - 2020-08-15 05:12 - 000364032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll 2020-09-09 07:24 - 2020-08-15 05:12 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll 2020-09-09 07:24 - 2020-08-15 05:11 - 000269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll 2020-09-09 07:24 - 2020-08-15 05:11 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll 2020-09-09 07:24 - 2020-08-15 05:04 - 001757184 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2020-09-09 07:24 - 2020-08-15 05:02 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll 2020-09-09 07:24 - 2020-08-15 04:59 - 001088512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll 2020-09-09 07:24 - 2020-08-15 04:57 - 001559040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll 2020-09-09 07:24 - 2020-08-15 04:55 - 000292352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll 2020-09-09 07:24 - 2020-08-15 04:55 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll 2020-09-09 07:24 - 2020-08-15 04:55 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll 2020-09-09 07:24 - 2020-08-15 04:55 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll 2020-09-09 07:24 - 2020-08-15 04:50 - 001495552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2020-09-09 07:24 - 2020-08-13 06:25 - 001308256 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll 2020-09-09 07:24 - 2020-08-13 06:24 - 000355576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys 2020-09-09 07:24 - 2020-08-13 05:41 - 025756672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2020-09-09 07:24 - 2020-08-13 05:17 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2020-09-09 07:24 - 2020-08-13 05:06 - 020291072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2020-09-09 07:24 - 2020-08-13 05:06 - 005500416 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2020-09-09 07:24 - 2020-08-13 05:06 - 000785408 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2020-09-09 07:24 - 2020-08-13 04:50 - 000498176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2020-09-09 07:24 - 2020-08-13 04:40 - 000653824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2020-09-09 07:24 - 2020-08-13 04:37 - 001033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll 2020-09-09 07:24 - 2020-08-13 04:30 - 000809472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2020-09-09 07:24 - 2020-08-13 04:29 - 015480320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2020-09-09 07:24 - 2020-08-13 04:26 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtutils.dll 2020-09-09 07:24 - 2020-08-13 04:20 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll 2020-09-09 07:24 - 2020-08-13 04:18 - 004112384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2020-09-09 07:24 - 2020-08-13 04:16 - 004859392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2020-09-09 07:24 - 2020-08-13 04:15 - 000747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll 2020-09-09 07:24 - 2020-08-13 04:15 - 000696320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2020-09-09 07:24 - 2020-08-13 04:12 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtutils.dll 2020-09-09 07:24 - 2020-08-13 04:11 - 013862400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2020-09-09 07:24 - 2020-08-13 04:04 - 001566720 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2020-09-09 07:24 - 2020-08-13 03:57 - 004387840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2020-09-09 07:24 - 2020-08-13 03:54 - 000801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2020-09-09 07:24 - 2020-08-13 03:53 - 001341952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2020-09-09 07:24 - 2020-08-13 03:52 - 000710656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll 2020-09-09 07:24 - 2020-08-11 07:19 - 000136824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2020-09-09 07:24 - 2020-08-11 07:17 - 000537632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll 2020-09-09 07:24 - 2020-08-11 07:16 - 001210112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL 2020-09-09 07:24 - 2020-08-11 07:16 - 000376072 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll 2020-09-09 07:24 - 2020-08-11 07:12 - 002173376 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2020-09-09 07:24 - 2020-08-11 07:12 - 001665104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll 2020-09-09 07:24 - 2020-08-11 05:33 - 001037600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL 2020-09-09 07:24 - 2020-08-11 05:33 - 000450312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll 2020-09-09 07:24 - 2020-08-11 05:33 - 000317176 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll 2020-09-09 07:24 - 2020-08-11 05:31 - 001561296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll 2020-09-09 07:24 - 2020-08-11 05:31 - 001215736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll 2020-09-09 07:24 - 2020-08-11 04:30 - 000477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll 2020-09-09 07:24 - 2020-08-11 04:03 - 000367616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll 2020-09-09 07:24 - 2020-08-11 04:03 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll 2020-09-09 07:24 - 2020-08-11 04:00 - 003720192 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2020-09-09 07:24 - 2020-08-11 03:57 - 000249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpsrv.dll 2020-09-09 07:24 - 2020-08-11 03:56 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll 2020-09-09 07:24 - 2020-08-11 03:55 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll 2020-09-09 07:24 - 2020-08-11 03:45 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll 2020-09-09 07:24 - 2020-08-11 03:44 - 001099264 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll 2020-09-09 07:24 - 2020-08-11 03:44 - 000453632 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll 2020-09-09 07:24 - 2020-08-11 03:41 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll 2020-09-09 07:24 - 2020-08-11 03:32 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll 2020-09-09 07:24 - 2020-08-11 01:44 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstext40.dll 2020-09-09 07:24 - 2020-08-10 10:18 - 000160144 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2020-09-09 07:24 - 2020-08-10 01:04 - 003223552 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe 2020-09-09 07:24 - 2020-08-10 01:04 - 001998848 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2020-09-09 07:24 - 2020-08-10 01:04 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2020-09-09 07:24 - 2020-08-10 01:04 - 000700416 _____ (Microsoft Corporation) C:\WINDOWS\system32\centel.dll 2020-09-09 07:24 - 2020-08-10 01:04 - 000667648 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2020-09-09 07:24 - 2020-08-10 01:04 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2020-09-09 07:24 - 2020-08-10 01:04 - 000577536 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2020-09-09 07:24 - 2020-08-10 01:04 - 000475136 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2020-09-09 07:24 - 2020-08-10 01:04 - 000380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2020-09-09 07:24 - 2020-08-08 14:43 - 001545912 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2020-09-09 07:24 - 2020-08-06 14:37 - 000436224 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll 2020-09-09 07:24 - 2020-08-06 14:35 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll ==================== Un mes (modificado) ================== (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2020-09-22 14:58 - 2019-01-08 16:54 - 000003600 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2809762911-4254659904-4234670722-1006 2020-09-22 14:47 - 2013-08-22 15:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2020-09-21 18:05 - 2019-01-14 20:20 - 000000000 ____D C:\Users\javi\AppData\Local\CrashDumps 2020-09-21 16:27 - 2015-01-12 14:52 - 000000000 ____D C:\ProgramData\CyberLink 2020-09-17 19:08 - 2013-08-22 14:36 - 000000000 ____D C:\WINDOWS\Inf 2020-09-13 17:41 - 2016-03-03 02:01 - 000805262 _____ C:\WINDOWS\system32\perfh00A.dat 2020-09-13 17:41 - 2016-03-03 02:01 - 000164164 _____ C:\WINDOWS\system32\perfc00A.dat 2020-09-13 17:41 - 2014-03-18 11:03 - 001822472 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2020-09-12 16:18 - 2019-01-08 16:40 - 000000000 ____D C:\Users\javi 2020-09-11 07:53 - 2019-06-08 17:07 - 000002246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2020-09-11 07:53 - 2019-06-08 17:07 - 000002205 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2020-09-10 08:45 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\rescache 2020-09-09 11:09 - 2013-08-22 15:44 - 000552712 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2020-09-09 09:51 - 2019-12-15 21:45 - 000000000 ___SD C:\WINDOWS\system32\CompatTel 2020-09-09 09:51 - 2019-12-15 21:45 - 000000000 ____D C:\WINDOWS\system32\Appraiser 2020-09-09 09:51 - 2013-08-22 16:36 - 000000000 ___RD C:\WINDOWS\ToastData 2020-09-09 09:50 - 2013-08-22 16:20 - 000000000 ____D C:\WINDOWS\CbsTemp 2020-09-09 07:27 - 2019-12-15 20:28 - 000000000 ____D C:\WINDOWS\system32\MRT 2020-09-09 07:24 - 2019-12-15 20:28 - 129170736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2020-09-07 10:02 - 2020-04-24 11:37 - 000000402 _____ C:\WINDOWS\Tasks\Teamviewer-QS-updater-g4nca3v.job 2020-08-31 16:26 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\system32\NDF 2020-08-29 13:33 - 2019-01-17 21:11 - 000000000 ____D C:\ProgramData\GlarySoft 2020-08-29 13:33 - 2019-01-17 21:08 - 000000000 ____D C:\Users\javi\AppData\Roaming\GlarySoft ==================== SigCheck ============================ (No existe una corrección automática para los archivos que no pasan la verificación.) LastRegBack: 2020-09-15 16:06 ==================== Final de FRST.txt ========================