Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 03-05-2020 Ejecutado por Rafael (administrador) sobre LAPTOP-4C8LA0VJ (LENOVO 80TG) (07-05-2020 16:11:12) Ejecutado desde C:\Users\rafae\Downloads Perfiles cargados: Rafael (Perfiles disponibles: Rafael) Platform: Windows 10 Home Versión 1903 18362.778 (X64) Idioma: Español (España, internacional) Navegador predeterminado: Chrome Modo de Inicio: Normal Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesos (Lista blanca) ================= (Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <2> (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe (EnigmaSoft Limited -> EnigmaSoft Limited) C:\Program Files\EnigmaSoft\SpyHunter\ShKernel.exe (EnigmaSoft Limited -> EnigmaSoft Limited) C:\Program Files\EnigmaSoft\SpyHunter\ShMonitor.exe (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4957d1e99ab1a11a\igfxCUIService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4957d1e99ab1a11a\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4957d1e99ab1a11a\IntelCpHDCPSvc.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4957d1e99ab1a11a\IntelCpHeciSvc.exe (IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe (IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2> (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.40.7001.0_x64__8wekyb3d8bbwe\GamingServices.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.40.7001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\AdminService.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2> (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe ==================== Registro (Lista blanca) =================== (Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18242048 2017-03-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [108728 2020-05-05] (Avast Software s.r.o. -> AVAST Software) HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489408 2017-03-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489408 2017-03-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. -> Oracle Corporation) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN HKU\S-1-5-21-2128198197-1177575996-1877542188-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [27775672 2020-05-01] (Piriform Software Ltd -> Piriform Software Ltd) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.129\Installer\chrmstp.exe [2020-04-30] (Google LLC -> Google LLC) FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN CHR HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN ==================== Tareas programadas (Lista blanca) ============ (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) Task: {09DBB764-0B18-46FD-9E72-DAD1C60CE811} - System32\Tasks\Uninstaller_SkipUac_Rafael => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [5991184 2020-03-23] (IObit Information Technology -> IObit) Task: {0A3C7631-EAF9-476C-8A13-CE6C629AD58D} - System32\Tasks\Uninstaller_SkipUac_rafae => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [5991184 2020-03-23] (IObit Information Technology -> IObit) Task: {0D01FFCD-B1F3-45D0-BEDE-7EDFEFAF305D} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe Task: {0E2CF6CC-1DD1-40B6-8A75-E0FFAB6810EE} - System32\Tasks\OneDrive Standalone Update Task v2 => C:\Users\rafae\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe Task: {19E030AA-A909-48A2-AE39-EB9D833726C4} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> Ningún archivo <==== ATENCIÓN Task: {2BB2613A-DB69-49AA-8C6A-C4B9331B68B2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [23571128 2020-05-01] (Piriform Software Ltd -> Piriform Software Ltd) Task: {3DD54D8D-0E87-4EE5-BF01-175412824489} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe Task: {4ABC427C-C326-4641-A910-C9F1A0896971} - System32\Tasks\RealDownloader Update Check => C:\Program Files (x86)\Real\RealDownloader\downloader2.exe Task: {72BB0EDB-ED55-4947-90F7-A15EE9F6EDA5} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1660520 2020-02-28] (Avast Software s.r.o. -> Avast Software) Task: {80543FD8-62FE-4302-B0D6-4E943ED5113E} - \Lenovo\ImController\TimeBasedEvents\48100650-6008-41e5-95b5-ca6b34b87e2b -> Ningún archivo <==== ATENCIÓN Task: {8787C62D-A965-4254-92BB-EA8D30941EDC} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe Task: {9127D290-636B-4079-8690-BE60C55EA895} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK Task: {9D87E762-CA68-412A-B2BA-F615CAFF99C0} - \Lenovo\ImController\TimeBasedEvents\9bf5eb51-fae9-4262-8277-2dc9534f4928 -> Ningún archivo <==== ATENCIÓN Task: {9F3C464E-736D-4F04-8CE3-A6423B733A61} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\TXE Components\iCLS\IntelPTTEKRecertification.exe [855352 2016-05-23] (Intel(R) Trusted Connect Service -> Intel(R) Corporation) Task: {A207E11E-EC90-4C9F-8018-69E297782C86} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3339472 2020-05-05] (Avast Software s.r.o. -> AVAST Software) Task: {A85771A6-0B8A-4D72-842C-392FA81A03D3} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_363_pepper.exe [1454136 2020-04-14] (Adobe Inc. -> Adobe) Task: {A8AC0511-A958-49EE-9DA3-F010B016C2BF} - \Lenovo\ImController\TimeBasedEvents\2ac33d3f-4403-4810-b9f6-f04c731d9028 -> Ningún archivo <==== ATENCIÓN Task: {D5EF4EF5-BFF6-4BC2-AEFD-97F4AB22BF17} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-02] (Google Inc -> Google Inc.) Task: {D74DE8D4-3BBA-4993-B81B-EC3A51052AB9} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> Ningún archivo <==== ATENCIÓN Task: {DC4F3CBD-CD4E-4D90-833F-E1CB50677D28} - System32\Tasks\PDVDServ14 Task => C:\Program Files (x86)\CyberLink\PowerDVD14\PDVD14Serv.exe [88344 2017-02-17] (CyberLink Corp. -> CyberLink Corp.) Task: {E311387D-4228-4AEF-9A22-DBC4F109C3A8} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-04-14] (Adobe Inc. -> Adobe) Task: {E40664B2-4951-4807-BD06-81EFE0C76BB9} - \Lenovo\ImController\TimeBasedEvents\2aa072c9-395f-4603-81e0-f7763bceb5bc -> Ningún archivo <==== ATENCIÓN Task: {EAFFBF8D-E6D9-42B0-B250-47C54F624C8D} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-05-01] (Piriform Software Ltd -> Piriform Software Ltd) Task: {F974FAB0-F46F-4D3D-9F6D-417DE80EDCFE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-02] (Google Inc -> Google Inc.) (Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.) ==================== Internet (Lista blanca) ==================== (Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.) Hosts: Hay más de una entrada en Hosts. Consulte la sección Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 213.60.205.175 213.60.205.173 Tcpip\..\Interfaces\{95f2841c-4b2e-4b1b-9f09-2417d2409027}: [DhcpNameServer] 172.168.137.2 Tcpip\..\Interfaces\{b26f44f2-063d-4335-a6d7-09c66644f0f0}: [DhcpNameServer] 213.60.205.175 213.60.205.173 Internet Explorer: ================== HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com HKU\S-1-5-21-2128198197-1177575996-1877542188-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://es.msn.com/?ocid=U220DHP&pc=U220 HKU\S-1-5-21-2128198197-1177575996-1877542188-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE HKU\S-1-5-21-2128198197-1177575996-1877542188-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com SearchScopes: HKU\S-1-5-21-2128198197-1177575996-1877542188-1001 -> {2A23ab71-4ac6-41f2-a955-ea576e553146} URL = SearchScopes: HKU\S-1-5-21-2128198197-1177575996-1877542188-1001 -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxps://es.search.yahoo.com/yhs/search?hspart=omr&hsimp=yhs-001&type=87infr0srvimo2001320¶m1=y6bdVFVIsvuYsgEClQfz8I7gEdb7af9GSy3VsrdP%2BKIE%2FOcucWgyAKd7gRy7CNUqQQcmnOxcEiq6UzPnz1Q19%2BzZ2W9EF5%2BpUL3KzXZYJcrJh0fGTindM4jfI%2FSdMd%2BbCHFHeLut7XUshC9qS%2FvifUhA4mk%2FlVGhqvh2IZcjKAsKcf%2F%2FcZ9IJ2PAsjgVUR%2B%2FZjsCArrml8aZ1X4sPX2FF9giI%2BbwkcDZagLw3YGaIS10Va229XtDijzE2gCp7l95pPB6VJZphowKEaiMeF6k%2Fh4KP4fFphFCC10Zovpm8wbq9r1wFzNjc8iFufY5z4Adh6F1DzyNkR3lCqyDF01PmVQyiExrPX0HmwxFKSGRZ3cUGUXh5t6d2o5lsvKu0nyYoIStDbY%2Fl%2FJDJeA5XkivPw%3D%3D&p={searchTerms} BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2020-01-31] (IObit Information Technology -> IObit) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\ssv.dll [2020-05-06] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\jp2ssv.dll [2020-05-06] (Oracle America, Inc. -> Oracle Corporation) Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - Ningún archivo Edge: ====== Edge HomeButtonPage: HKU\S-1-5-21-2128198197-1177575996-1877542188-1001 -> hxxp://www.google.com Edge Extension: (AVG Online Security) -> EdgeExtension_51CA791EAVGOnlineSecurity_s1d0xtrs8dx04 => C:\Program Files\WindowsApps\51CA791E.AVGOnlineSecurity_19.4.444.0_neutral__s1d0xtrs8dx04 [2020-03-30] Edge Profile: C:\Users\rafae\AppData\Local\Microsoft\Edge\User Data\Default [2020-04-07] Edge HomePage: Default -> hxxps://es.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=87infr0srvimo2001320¶m1=y6bdVFVIsvuYsgEClQfz8I7gEdb7af9GSy3VsrdP%2BKIE%2FOcucWgyAKd7gRy7CNUqbrpaaAUqjwMlNXMby6WcPGS8EtR1lF8LFxAD88R%2FkpUETJSCUbf0jdIlKL%2Bs8rIEJUPzKqzZ6Sjk6rKq2auTEW27KoOuY0irgD0stusitvh6d1IDdvVRIPwflucA7wQXWoODwH71jM2%2FvalHNB52paR75FTs%2FW0ko4vd5rFhHJgwTulR3lwNkre6c8lkicVoeYVwOSxCxZp94DJ6xmnwEva1fzhZrVkFbAKeIVG5Z%2BC0QG7bUtqsPlVXH0UwLceZwUcAFt7VDPtzK9BQw%2FzQN%2Bo%2B%2BsqL9xlVDkgCffW5NHHQ6a%2FFHkixODOjmSf2NaIbIPy44v7aULwDSxrnr2EoFQ%3D%3D Edge StartupUrls: Default -> "hxxps://es.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=87infr0srvimo2001320¶m1=y6bdVFVIsvuYsgEClQfz8I7gEdb7af9GSy3VsrdP%2BKIE%2FOcucWgyAKd7gRy7CNUqbrpaaAUqjwMlNXMby6WcPLJobZLGelHpwVh1lmNhqpkMvjQEG1JZWIhzSi%2FMhEAGBObRC7qIyRamPD8XigAU%2Bf2Dm1TNNJaV8LQ3G0gSBAQq2RRXx7OVA17LgmOh8ddPIm3AO3u0t16ZMY8WMrybhh0dMVJAF32fuSpwi6BVxD7QpNU6dSkphC9hbinqxjY9g0OjCdUdNMyGS2tm2tFckw4Ahhko01nWa%2BipmUwseL72w4oLX%2FLQgDBdWTk9IcdinCekXXl3qlSApRqPC4kI6BGQAlE2CYViAsZtdXjSM9dMcPifbFjja0pOgFb98gw8lNfgj%2FKeqYuzJDG6iqbhBQ%3D%3D" Edge DefaultSearchURL: Default -> hxxps://es.search.yahoo.com/yhs/search?hspart=omr&hsimp=yhs-001&type=87infr0srvimo2001320¶m1=y6bdVFVIsvuYsgEClQfz8I7gEdb7af9GSy3VsrdP%2BKIE%2FOcucWgyAKd7gRy7CNUqbrpaaAUqjwMlNXMby6WcPFaaiwcYsHBW%2FvHrsy8D6%2B%2BZUdi26T6xUS9Dh9L7ZQ60cmhCf9BLqM0glwB9yZ1qc6PvaB0WKiwqorUu5nJ%2FsHaeT5od3orVee%2BWQ3BILz%2FDMlLSZ%2Bi7o4AFW2o%2BWG1VXkNUZMFuVxW0J3TucCcoEwsh2zMJj13NjrFJ6YyR%2BXJaloVk3vxVz3eeEbKt6uJ9uDc0cWEa1XTJjPlIxfhOdsBlnAZzR51usSnG0nM2gDGrr5xbhwq3G4Sl2SF36YjSpMcodIJ03E5mHJsdENrMIBh0Ai5jA0QJwVzzMIMjV4H%2BmmUzOs36yfxsk4A9r%2BvP%2Fg%3D%3D&p={searchTerms} Edge DefaultSearchKeyword: Default -> search.yahoo.com Edge DefaultSuggestURL: Default -> hxxps://search.yahoo.com/sugg/chrome?output=fxjson&appid=crmas&command={searchTerms} Edge HKU\S-1-5-21-2128198197-1177575996-1877542188-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] FireFox: ======== FF Plugin-x32: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2020-05-06] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2020-05-06] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN) Chrome: ======= CHR DefaultProfile: Profile 1 CHR Profile: C:\Users\rafae\AppData\Local\Google\Chrome\User Data\Profile 1 [2020-05-07] CHR Notifications: Profile 1 -> hxxps://forospyware.com CHR Extension: (Avira Password Manager) - C:\Users\rafae\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2020-05-05] CHR Extension: (Avira Safe Shopping) - C:\Users\rafae\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2020-05-05] CHR Extension: (Avast SafePrice | Comparaciones, ofertas y cupones) - C:\Users\rafae\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-05-05] CHR Extension: (Avast Online Security) - C:\Users\rafae\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-05-05] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\rafae\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-05-05] CHR Extension: (Chrome Media Router) - C:\Users\rafae\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-05] CHR HKLM\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] CHR HKLM-x32\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] ==================== Servicios (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6350752 2020-05-05] (Avast Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [348968 2020-05-05] (Avast Software s.r.o. -> AVAST Software) R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [58048 2020-05-05] (Avast Software s.r.o. -> AVAST Software) R2 EsgShKernel; C:\Program Files\EnigmaSoft\SpyHunter\ShKernel.exe [11963616 2020-05-05] (EnigmaSoft Limited -> EnigmaSoft Limited) R2 GameInput; C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe [48776 2020-04-07] (Microsoft Corporation -> Microsoft Corporation) R2 GamingServices; C:\Program Files\WindowsApps\Microsoft.GamingServices_2.40.7001.0_x64__8wekyb3d8bbwe\GamingServices.exe [46008 2020-04-18] (Microsoft Corporation -> Microsoft Corporation) R2 GamingServicesNet; C:\Program Files\WindowsApps\Microsoft.GamingServices_2.40.7001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe [46008 2020-04-18] (Microsoft Corporation -> Microsoft Corporation) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\iCLS\SocketHeciServer.exe [974632 2016-05-23] (Intel(R) Trusted Connect Service -> Intel(R) Corporation) S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [156944 2020-01-31] (IObit Information Technology -> IObit) R2 jhi_service; C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe [176416 2016-08-25] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-05-05] (Malwarebytes Inc -> Malwarebytes) R2 ShMonitor; C:\Program Files\EnigmaSoft\SpyHunter\ShMonitor.exe [524512 2020-05-05] (EnigmaSoft Limited -> EnigmaSoft Limited) R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [290912 2017-08-21] (Synaptics Incorporated -> Synaptics Incorporated) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2020-01-08] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2020-01-08] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Controladores (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) S3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2017-11-16] (AnchorFree Inc -> The OpenVPN Project) R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37136 2020-05-05] (Avast Software s.r.o. -> AVAST Software) R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [205880 2020-05-05] (Avast Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [234560 2020-05-05] (Avast Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [178760 2020-05-05] (Avast Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [60480 2020-05-05] (Avast Software s.r.o. -> AVAST Software) R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16304 2020-03-09] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software) R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42784 2020-05-05] (Avast Software s.r.o. -> AVAST Software) R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175704 2020-05-05] (Avast Software s.r.o. -> AVAST Software) R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [501472 2020-05-05] (Avast Software s.r.o. -> AVAST Software) R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [109272 2020-05-05] (Avast Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84856 2020-05-05] (Avast Software s.r.o. -> AVAST Software) R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851592 2020-05-05] (Avast Software s.r.o. -> AVAST Software) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [460992 2020-05-05] (Avast Software s.r.o. -> AVAST Software) R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [235488 2020-05-05] (Avast Software s.r.o. -> AVAST Software) R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319120 2020-05-05] (Avast Software s.r.o. -> AVAST Software) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-11-20] (Microsoft Corporation) [Archivo no firmado] R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [246912 2019-02-16] (Kaspersky Lab -> AO Kaspersky Lab) R3 EnigmaFileMonDriver; C:\WINDOWS\System32\drivers\EnigmaFileMonDriver.sys [68424 2020-05-06] (EnigmaSoft Limited -> EnigmaSoft Limited) R3 gameflt; C:\WINDOWS\System32\DriverStore\FileRepository\gameflt.inf_amd64_158653e0522d616e\gameflt.sys [71000 2020-04-18] (Microsoft Windows -> Microsoft Corporation) S3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.) S4 IObitUnlocker; C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [66824 2017-06-15] (IObit Information Technology -> IObit) R3 IUFileFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys [44104 2019-11-18] (IObit Information Technology -> IObit) R3 IUProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys [37328 2019-07-30] (IObit Information Technology -> IObit) R3 IURegistryFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys [49800 2019-11-18] (IObit Information Technology -> IObit) R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [79768 2020-04-23] (Kaspersky Lab -> AO Kaspersky Lab) R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [145504 2020-02-08] (Kaspersky Lab -> AO Kaspersky Lab) R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [93312 2019-03-12] (Kaspersky Lab -> AO Kaspersky Lab) S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [37816 2020-02-08] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab) R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [251800 2020-04-23] (Kaspersky Lab -> AO Kaspersky Lab) R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [516216 2019-09-17] (Kaspersky Lab -> AO Kaspersky Lab) R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [1123664 2019-10-17] (Kaspersky Lab -> AO Kaspersky Lab) R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [998296 2020-04-23] (Kaspersky Lab -> AO Kaspersky Lab) R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [58192 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab) R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [79760 2020-04-23] (Kaspersky Lab -> AO Kaspersky Lab) R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [59512 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab) R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [51328 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab) S3 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [45904 2019-03-10] (Kaspersky Lab -> AO Kaspersky Lab) S3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [99152 2020-04-23] (Kaspersky Lab -> AO Kaspersky Lab) S3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [309968 2020-04-23] (Kaspersky Lab -> AO Kaspersky Lab) R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [117496 2020-04-23] (Kaspersky Lab -> AO Kaspersky Lab) S3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [206880 2020-04-23] (Kaspersky Lab -> AO Kaspersky Lab) R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [105600 2019-03-05] (Kaspersky Lab -> AO Kaspersky Lab) R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [211048 2020-02-08] (Kaspersky Lab -> AO Kaspersky Lab) R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [232344 2020-04-23] (Kaspersky Lab -> AO Kaspersky Lab) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [214496 2020-05-06] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2020-05-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-05-06] (Malwarebytes Inc -> Malwarebytes) R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [946696 2016-10-12] (Realtek Semiconductor Corp. -> Realtek ) R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [418784 2016-08-05] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation) R3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [3150344 2016-10-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2020-01-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2020-01-08] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2020-01-08] (Microsoft Windows -> Microsoft Corporation) S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] (CyberLink -> "CyberLink) R3 Xvdd; C:\WINDOWS\System32\DriverStore\FileRepository\xvdd.inf_amd64_7c3edb5ea11185bb\xvdd.sys [497000 2020-04-18] (Microsoft Windows -> Microsoft Corporation) S3 AscFileFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\drivers\win10_amd64\AscFileFilter.sys [X] S3 AscRegistryFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\drivers\win10_amd64\AscRegistryFilter.sys [X] S3 cpuz145; \??\C:\WINDOWS\temp\cpuz145\cpuz145_x64.sys [X] S3 klids; \??\C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\klids.sys [X] ==================== NetSvcs (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)