Hola, Miguel. Gracias por contestar. Acá te mando lo que me pedís. A propósito, me dejó 3 archivos ( 1 FRST y 2 Addition ).
Acá, va el FRST…
Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 06-06-2020
Ejecutado por Juan (administrador) sobre JUAN-PC (19-06-2020 19:53:58)
Ejecutado desde C:\Users\Juan\Desktop
Perfiles cargados: Juan
Platform: Windows 7 Ultimate Service Pack 1 (X64) Idioma: Español (España, internacional)
Internet Explorer Versión 11 (Navegador predeterminado: "C:\Users\Juan\AppData\Local\Kinza\Application\kinza.exe" -- "%1")
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Procesos (Lista blanca) =================
(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)
(Brother Industries, Ltd.) [Archivo no firmado] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) [Archivo no firmado] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Comodo Security Solutions -> Comodo) C:\Program Files\COMODO\Dragon\dragon_updater.exe
(Comodo Security Solutions, Inc. -> Comodo Inc.) C:\Program Files (x86)\Comodo\IceDragon\icedragon_updater.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\Comodo\COMODO Cloud Antivirus\ccavsrv.exe <2>
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\isesrv.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe <2>
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Encarta\Encarta 2009 Biblioteca Premium DVD\EDICT.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\Juan\AppData\Local\Vivaldi\Application\update_notifier.exe
(YANDEX LLC -> YANDEX LLC) C:\Program Files (x86)\Yandex\YandexBrowser\20.6.1.151\service_update.exe <2>
==================== Registro (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6548112 2012-06-12] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13065408 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2976256 2018-01-19] (Brother Industries, Ltd.) [Archivo no firmado]
HKLM-x32\...\Run: [CCAV] => C:\Program Files (x86)\COMODO\COMODO Cloud Antivirus\ccavsrv.exe [7462072 2018-11-06] (Comodo Security Solutions, Inc. -> COMODO)
HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files\Opera\assistant\browser_assistant.exe [3004440 2020-06-18] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-492065729-501448629-2822315028-1000\...\Run: [E09EXLRD_11158221] => C:\Program Files (x86)\Microsoft Encarta\Encarta 2009 Biblioteca Premium DVD\EDICT.EXE [351000 2008-06-06] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-492065729-501448629-2822315028-1000\...\Run: [Vivaldi Update Notifier] => C:\Users\Juan\AppData\Local\Vivaldi\Application\update_notifier.exe [1859656 2020-06-12] (Vivaldi Technologies AS -> Vivaldi Technologies AS)
HKU\S-1-5-21-492065729-501448629-2822315028-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [29072568 2020-05-22] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-492065729-501448629-2822315028-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\ssText3d.scr [333824 2010-11-21] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Installer\chrmstp.exe [2020-06-16] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
BootExecute: autocheck autochk *
==================== Tareas programadas (Lista blanca) ============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
Task: {0FE2556C-8FC7-4621-A6E0-53656A327BF4} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_387_pepper.exe [1454648 2020-06-09] (Adobe Inc. -> Adobe)
Task: {117C5A17-40A4-4FC7-8941-68E84CB58D1A} - System32\Tasks\Opera scheduled assistant Autoupdate 1579514146 => C:\Program Files\Opera\launcher.exe [1517592 2020-06-10] (Opera Software AS -> Opera Software)
Task: {1719DF88-B192-4BDF-AF6B-72C8A49AA12A} - System32\Tasks\Opera scheduled Autoupdate 1525785882 => C:\Program Files\Opera\launcher.exe [1517592 2020-06-10] (Opera Software AS -> Opera Software)
Task: {20779AB4-1557-4FF4-9077-BCFA07DEF453} - System32\Tasks\Actualización del sistema del Navegador Yandex => C:\Program Files (x86)\Yandex\YandexBrowser\20.6.1.151\service_update.exe [1764248 2020-06-09] (YANDEX LLC -> YANDEX LLC)
Task: {277204F1-52F0-472A-82C8-4A4E36E3D96D} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_387_Plugin.exe [1459256 2020-06-09] (Adobe Inc. -> Adobe)
Task: {3E4505BC-4CF9-43B2-8759-1F8620527F9F} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {464CEAE7-574B-4D26-95E9-CA4A5221931C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-05-16] (Google Inc -> Google Inc.)
Task: {56C0EE67-826B-4DF5-AA10-00105B281714} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-05-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {6C8761F4-F938-4DED-9237-0CDFE2734EBE} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
Task: {7FE616EE-3D03-485F-9705-BFCB59B7DDCE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-05-16] (Google Inc -> Google Inc.)
Task: {80C91E35-574A-43D7-970F-319C498F37F8} - System32\Tasks\ASUS\ASUS Update Checker => C:\Program Files (x86)\ASUS\ASUSUpdate\UpdateChecker\UpdateChecker.exe
Task: {8F5C3204-F97F-41F1-9022-3941406A46A4} - System32\Tasks\Reparación del Servicio de actualización del Navegador Yandex => C:\Program Files (x86)\Yandex\YandexBrowser\20.6.1.151\service_update.exe [1764248 2020-06-09] (YANDEX LLC -> YANDEX LLC)
Task: {A93FEB1B-316C-4D0A-8930-B05066E116CF} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13065408 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
Task: {B1FE9306-21E3-4355-B754-EE8F29992023} - System32\Tasks\CCAVPostInstall => C:\Program Files (x86)\COMODO\COMODO Cloud Antivirus\ccavsrv.exe [7462072 2018-11-06] (Comodo Security Solutions, Inc. -> COMODO)
Task: {B86D9C3E-9332-4DF1-89C8-D848C81CA7D6} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
Task: {D51DC4ED-9206-4E5D-8ECD-B941FD84CD4F} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13065408 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
Task: {D74CEA7C-0AE8-4A9A-A0B4-D5C460C88931} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
Task: {E49F0B92-52FD-4AD8-9058-15657B1848FD} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-06-09] (Adobe Inc. -> Adobe)
Task: {FFA311E0-99FA-4922-A1BD-8119C177BE5D} - System32\Tasks\Actualización del Navegador Yandex => C:\Users\Juan\AppData\Local\Yandex\YandexBrowser\Application\browser.exe [3200920 2020-06-09] (YANDEX LLC -> YANDEX LLC)
(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)
Task: C:\Windows\Tasks\Actualización del Navegador Yandex.job => C:\Users\Juan\AppData\Local\Yandex\YandexBrowser\Application\browser.exe
Task: C:\Windows\Tasks\Actualización del sistema del Navegador Yandex.job => C:\Program Files (x86)\Yandex\YandexBrowser\20.6.1.151\service_update.exe
Task: C:\Windows\Tasks\Reparación del Servicio de actualización del Navegador Yandex.job => C:\Program Files (x86)\Yandex\YandexBrowser\20.6.1.151\service_update.exe
==================== Internet (Lista blanca) ====================
(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)
Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Tcpip\Parameters: [DhcpNameServer] 192.168.13.1
Tcpip\..\Interfaces\{C5B11EF8-5BA9-43EA-9A1C-F73DE925F2E8}: [NameServer] 8.26.56.26,8.20.247.20
Tcpip\..\Interfaces\{C5B11EF8-5BA9-43EA-9A1C-F73DE925F2E8}: [DhcpNameServer] 192.168.13.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-492065729-501448629-2822315028-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-492065729-501448629-2822315028-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://bing.com/
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_241\bin\ssv.dll [2020-01-16] (Oracle America, Inc. -> Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_241\bin\jp2ssv.dll [2020-01-16] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Aplicación auxiliar de inicio de sesión en la cuenta Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
FireFox:
========
FF DefaultProfile: wfnixs5t.default
FF DefaultProfile: l8h7dsue.default
FF DefaultProfile: 7ibtrihw.default
FF ProfilePath: C:\Users\Juan\AppData\Roaming\Waterfox\Profiles\wfnixs5t.default [2020-06-19]
FF Homepage: Waterfox\Profiles\wfnixs5t.default -> ar.search.yahoo.com
FF Extension: (United States English Spellchecker) - C:\Users\Juan\AppData\Roaming\Waterfox\Profiles\wfnixs5t.default\Extensions\[email protected] [2018-05-07] [Heredado]
FF Extension: (Diccionario Español Argentina) - C:\Users\Juan\AppData\Roaming\Waterfox\Profiles\wfnixs5t.default\Extensions\[email protected] [2018-05-07] [Heredado]
FF Extension: (Tampermonkey) - C:\Users\Juan\AppData\Roaming\Waterfox\Profiles\wfnixs5t.default\Extensions\[email protected] [2020-06-17]
FF ProfilePath: C:\Users\Juan\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\l8h7dsue.default [2020-06-16]
FF Homepage: Moonchild Productions\Pale Moon\Profiles\l8h7dsue.default -> bing.com
FF Extension: (British English) - C:\Users\Juan\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\l8h7dsue.default\Extensions\[email protected] [2019-12-23] [Heredado] [no firmado]
FF Extension: (Argentinian Spanish) - C:\Users\Juan\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\l8h7dsue.default\Extensions\[email protected] [2019-09-24] [Heredado] [no firmado]
FF Extension: (Español (AR) Language Pack) - C:\Users\Juan\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\l8h7dsue.default\Extensions\[email protected] [2020-06-11] [Heredado] [no firmado]
FF Extension: (Walnutty) - C:\Users\Juan\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\l8h7dsue.default\Extensions\[email protected] [2020-06-11] [Heredado] [no firmado]
FF ProfilePath: C:\Users\Juan\AppData\Roaming\Comodo\IceDragon\Profiles\7ibtrihw.default [2020-06-19]
FF Homepage: Comodo\IceDragon\Profiles\7ibtrihw.default -> hxxps://www.ecosia.org/
FF Extension: (English United States Dictionary) - C:\Users\Juan\AppData\Roaming\Comodo\IceDragon\Profiles\7ibtrihw.default\Extensions\@unitedstatesenglishdictionary.xpi [2020-02-02]
FF Extension: (Online Security Pro) - C:\Users\Juan\AppData\Roaming\Comodo\IceDragon\Profiles\7ibtrihw.default\Extensions\[email protected] [2019-09-03]
FF Extension: (Diccionario Español Argentina) - C:\Users\Juan\AppData\Roaming\Comodo\IceDragon\Profiles\7ibtrihw.default\Extensions\[email protected] [2020-06-12] [Heredado]
FF Extension: (Tampermonkey) - C:\Users\Juan\AppData\Roaming\Comodo\IceDragon\Profiles\7ibtrihw.default\Extensions\[email protected] [2020-06-10]
FF Extension: (Https Enforcement) - C:\Users\Juan\AppData\Roaming\Comodo\IceDragon\Profiles\7ibtrihw.default\Extensions\[email protected] [2019-03-15]
FF Extension: (Español (AR) Language Pack) - C:\Users\Juan\AppData\Roaming\Comodo\IceDragon\Profiles\7ibtrihw.default\Extensions\[email protected] [2020-06-12]
FF Extension: (Español (España) Language Pack) - C:\Users\Juan\AppData\Roaming\Comodo\IceDragon\Profiles\7ibtrihw.default\Extensions\[email protected] [2019-03-14]
FF Extension: (Startpage.com — Búsquedas privadas) - C:\Users\Juan\AppData\Roaming\Comodo\IceDragon\Profiles\7ibtrihw.default\Extensions\{20fc2e06-e3e4-4b2b-812b-ab431220cada}.xpi [2019-10-03]
FF Extension: (X-notifier (for Gmail™,Hotmail,Yahoo,AOL...)) - C:\Users\Juan\AppData\Roaming\Comodo\IceDragon\Profiles\7ibtrihw.default\Extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi [2020-02-27]
FF Extension: (Media Downloader) - C:\Users\Juan\AppData\Roaming\Comodo\IceDragon\Profiles\7ibtrihw.default\Extensions\{5e9eca63-6e0d-47ce-9862-07d938121575}.xpi [2019-03-15] [Heredado]
FF Extension: (ANIMATED AVIATOR SNOOPY) - C:\Users\Juan\AppData\Roaming\Comodo\IceDragon\Profiles\7ibtrihw.default\Extensions\{ac835a9d-b7cc-49d0-8854-4f4dffe03dd1}.xpi [2019-05-13]
FF Extension: (Ecosia, el buscador que planta árboles) - C:\Users\Juan\AppData\Roaming\Comodo\IceDragon\Profiles\7ibtrihw.default\Extensions\{d04b0b40-3dab-4f0b-97a6-04ec3eddbfb0}.xpi [2020-06-11]
FF Extension: (NeoBux AdAlert) - C:\Users\Juan\AppData\Roaming\Comodo\IceDragon\Profiles\7ibtrihw.default\Extensions\{eb80b076-a444-444c-a590-5aee5d977d80}.xpi [2020-06-05]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_387.dll [2020-06-09] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.241.2 -> C:\Program Files\Java\jre1.8.0_241\bin\dtplugin\npDeployJava1.dll [2020-01-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.241.2 -> C:\Program Files\Java\jre1.8.0_241\bin\plugin2\npjp2.dll [2020-01-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_387.dll [2020-06-09] (Adobe Inc. -> )
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2016-02-24] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2016-02-24] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google Inc -> Google)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default [2020-06-17]
CHR Notifications: Default -> hxxps://forospyware.com; hxxps://outlook.live.com
CHR HomePage: Default -> hxxp://google.com.ar/
CHR StartupUrls: Default -> "hxxp://google.com.ar/"
CHR Extension: (Presentaciones) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-05-16]
CHR Extension: (Email Notifier) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\akhfkpnhebiocdilofmaigoggiopgbbd [2019-07-14]
CHR Extension: (Documentos) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-05-16]
CHR Extension: (Google Drive) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-06-16]
CHR Extension: (YouTube) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-05-16]
CHR Extension: (Tampermonkey) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2020-06-16]
CHR Extension: (Hojas de cálculo) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-05-16]
CHR Extension: (Watcher for Yandex Mail™) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbahpfmknhllfegibbfdialakjagbdkl [2018-05-16]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-06-16]
CHR Extension: (The Simpsons Theme for Chrome) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbaojbbngafehcppeijgefadcbjlfnoc [2018-05-16]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-06-16]
CHR Extension: (Gmail) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-06-16]
CHR Extension: (Chrome Media Router) - C:\Users\Juan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-06-16]
Opera:
=======
OPR Extension: (Tampermonkey) - C:\Users\Juan\AppData\Roaming\Opera Software\Opera Stable\Extensions\mfdhdgbonjidekjkjmjaneanmdmpmidf [2019-12-10]
OPR Extension: (Flash Video Downloader (FVD)) - C:\Users\Juan\AppData\Roaming\Opera Software\Opera Stable\Extensions\neacgcjokggofibnbfapeaejhclmpple [2019-04-06]
==================== Servicios (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [202752 2010-05-22] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [314368 2018-01-18] (Brother Industries, Ltd.) [Archivo no firmado]
R2 ccavsrv; C:\Program Files (x86)\COMODO\COMODO Cloud Antivirus\ccavsrv.exe [7462072 2018-11-06] (Comodo Security Solutions, Inc. -> COMODO)
S3 ccavvirth; C:\Program Files (x86)\COMODO\COMODO Cloud Antivirus\ccavvirth.exe [2858160 2018-11-06] (Comodo Security Solutions, Inc. -> COMODO)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11401312 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2651840 2019-04-11] (Comodo Security Solutions, Inc. -> COMODO)
R2 DragonUpdater; C:\Program Files\Comodo\Dragon\dragon_updater.exe [2973592 2020-04-06] (Comodo Security Solutions -> Comodo)
R2 IceDragonUpdater; C:\Program Files (x86)\Comodo\IceDragon\icedragon_updater.exe [2616792 2019-05-29] (Comodo Security Solutions, Inc. -> Comodo Inc.)
R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [1199544 2018-01-17] (Comodo Security Solutions, Inc. -> COMODO)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-03-09] (Malwarebytes Inc -> Malwarebytes)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2015-08-05] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292480 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
R2 YandexBrowserService; C:\Program Files (x86)\Yandex\YandexBrowser\20.6.1.151\service_update.exe [1764248 2020-06-09] (YANDEX LLC -> YANDEX LLC)
===================== Controladores (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
S3 aftap0901; C:\Windows\System32\DRIVERS\aftap0901.sys [48624 2017-11-16] (AnchorFree Inc -> The OpenVPN Project)
R3 amdkmdag; C:\Windows\System32\DRIVERS\atipmdag.sys [6368256 2010-05-22] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.)
R3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [188416 2015-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2009-08-06] (ASUSTeK Computer Inc. -> )
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [13368 2009-07-08] (ASUSTeK Computer Inc. -> )
S3 atikmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [6368256 2015-07-14] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.)
R0 AtiPcie; C:\Windows\System32\DRIVERS\AtiPcie.sys [16440 2010-05-22] (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.)
R1 cbfs6; C:\Windows\system32\drivers\cbfs6.sys [460992 2016-09-09] (EldoS Corporation -> /n software, Inc.)
R1 CFRMD; C:\Windows\System32\DRIVERS\CFRMD.sys [37976 2015-07-10] (Comodo Security Solutions, Inc. -> Windows (R) Win 7 DDK provider) [Archivo no firmado]
R0 cmdccav; C:\Windows\System32\drivers\CmdCCAV.sys [462272 2018-11-06] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [34280 2019-03-15] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [867864 2019-03-15] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [59096 2019-03-15] (Comodo Security Solutions, Inc. -> COMODO)
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [126680 2019-03-15] (Comodo Security Solutions, Inc. -> COMODO)
R1 isedrv; C:\Windows\system32\drivers\isedrv.sys [50576 2018-01-17] (Comodo Security Solutions, Inc. -> COMODO)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-19] (ASUSTeK Computer Inc. -> )
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-02-28] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
S3 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [237312 2020-02-19] (Oracle Corporation -> Oracle Corporation)
R3 vpnpbus; C:\Windows\System32\DRIVERS\vpnpbus.sys [18624 2016-09-09] (EldoS Corporation -> /n software, Inc.)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
==================== NetSvcs (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
==================== Un mes (creado) ===================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2020-06-19 19:51 - 2020-06-19 19:53 - 000050155 _____ C:\Users\Juan\Desktop\Addition.txt
2020-06-19 19:48 - 2020-06-19 19:54 - 000028173 _____ C:\Users\Juan\Desktop\FRST.txt
2020-06-19 19:47 - 2020-06-19 19:54 - 000000000 ____D C:\FRST
2020-06-19 19:46 - 2020-06-19 19:46 - 002289152 _____ (Farbar) C:\Users\Juan\Desktop\FRST64.exe
2020-06-19 09:52 - 2020-06-19 09:53 - 008402608 _____ (Malwarebytes) C:\Users\Juan\Desktop\adwcleaner_8.0.5.exe
2020-06-12 11:43 - 2020-06-12 11:43 - 000005144 _____ C:\Users\Juan\AppData\Local\recently-used.xbel
2020-06-12 10:02 - 2020-06-12 10:02 - 000000901 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.10.20.lnk
2020-06-09 08:15 - 2020-06-09 08:15 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-06-08 22:59 - 2020-06-16 06:56 - 000000000 ____D C:\Users\Juan\AppData\Roaming\MPC-HC
2020-06-08 22:58 - 2020-06-13 18:17 - 000001748 _____ C:\Users\Juan\Desktop\MPC-HC x64.lnk
2020-06-08 22:57 - 2020-06-08 22:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC x64
2020-06-08 22:57 - 2020-06-08 22:58 - 000000000 ____D C:\Program Files\MPC-HC
2020-06-08 16:39 - 2020-06-08 16:40 - 647887104 _____ C:\Users\Juan\Desktop\Murder Mystery.mp4
2020-06-08 15:42 - 2020-06-08 15:44 - 1447888392 _____ C:\Users\Juan\Desktop\Thats My Boy.mp4
2020-05-26 12:06 - 2020-05-26 12:06 - 000001572 _____ C:\Users\Public\Desktop\LibreOffice 6.4.lnk
2020-05-26 12:06 - 2020-05-26 12:06 - 000001572 _____ C:\ProgramData\Desktop\LibreOffice 6.4.lnk
2020-05-22 13:06 - 2020-05-26 12:06 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 6.4
==================== Un mes (modificado) ==================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2020-06-19 19:51 - 2018-08-06 16:37 - 000394205 _____ C:\Windows\system32\Drivers\ccavsfi.dat
2020-06-19 19:46 - 2013-10-14 10:28 - 000000000 ___RD C:\Users\Juan\Descargas
2020-06-19 19:43 - 2017-11-02 23:28 - 000107952 _____ C:\Users\Juan\AppData\Local\GDIPFONTCACHEV1.DAT
2020-06-19 19:21 - 2016-11-24 16:32 - 000000000 ____D C:\Users\Juan\AppData\LocalLow\Mozilla
2020-06-19 19:09 - 2020-04-05 00:10 - 000003428 _____ C:\Windows\system32\Tasks\Actualización del Navegador Yandex
2020-06-19 19:09 - 2020-04-05 00:10 - 000000440 _____ C:\Windows\Tasks\Actualización del Navegador Yandex.job
2020-06-19 19:07 - 2018-04-04 11:49 - 000000000 ____D C:\Users\Juan\AppData\LocalLow\Comodo
2020-06-19 18:10 - 2020-04-05 00:10 - 000000484 _____ C:\Windows\Tasks\Actualización del sistema del Navegador Yandex.job
2020-06-19 18:10 - 2020-04-05 00:10 - 000000448 _____ C:\Windows\Tasks\Reparación del Servicio de actualización del Navegador Yandex.job
2020-06-19 15:24 - 2017-02-03 11:16 - 000003970 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{B4D6B0E4-EDBA-4020-882C-26E1A856B43D}
2020-06-19 11:30 - 2018-05-07 08:14 - 000000000 ____D C:\Program Files\Waterfox
2020-06-19 10:22 - 2009-07-14 01:45 - 000030880 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-06-19 10:22 - 2009-07-14 01:45 - 000030880 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-06-19 10:14 - 2020-04-05 00:10 - 000003576 _____ C:\Windows\system32\Tasks\Actualización del sistema del Navegador Yandex
2020-06-19 10:14 - 2020-04-05 00:10 - 000003444 _____ C:\Windows\system32\Tasks\Reparación del Servicio de actualización del Navegador Yandex
2020-06-19 10:11 - 2009-07-14 02:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-06-19 08:34 - 2017-11-03 07:02 - 000472064 _____ C:\Windows\system32\FNTCACHE.DAT
2020-06-18 11:46 - 2020-02-28 06:32 - 000004024 _____ C:\Windows\system32\Tasks\Opera scheduled assistant Autoupdate 1579514146
2020-06-17 12:33 - 2020-04-05 00:10 - 000002426 _____ C:\Users\Juan\Desktop\Yandex.lnk
2020-06-17 08:36 - 2018-05-08 10:17 - 000000000 ____D C:\Program Files\Opera
2020-06-16 10:17 - 2018-12-10 08:15 - 000002260 _____ C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kinza.lnk
2020-06-16 10:17 - 2018-12-10 08:15 - 000002223 _____ C:\Users\Juan\Desktop\Kinza.lnk
2020-06-16 10:17 - 2018-12-10 08:15 - 000000000 ____D C:\Users\Juan\AppData\Local\Kinza
2020-06-16 09:48 - 2018-05-16 22:54 - 000002222 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-06-16 08:21 - 2018-05-08 10:24 - 000003840 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1525785882
2020-06-16 06:57 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\inf
2020-06-16 06:52 - 2018-08-17 14:42 - 000000000 ____D C:\Users\Juan\AppData\Local\CrashDumps
2020-06-14 16:42 - 2019-01-16 20:16 - 000000000 ____D C:\Users\Juan\AppData\Roaming\vlc
2020-06-14 09:43 - 2020-04-26 16:49 - 000000000 ____D C:\Program Files\Slimjet
2020-06-13 21:19 - 2013-10-09 17:28 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-06-13 18:17 - 2019-01-16 20:14 - 000000915 _____ C:\Users\Public\Desktop\VLC media player.lnk
2020-06-13 18:17 - 2019-01-16 20:14 - 000000915 _____ C:\ProgramData\Desktop\VLC media player.lnk
2020-06-13 11:06 - 2020-04-23 09:50 - 000000374 _____ C:\Users\Juan\.vivaldi_reporting_data
2020-06-13 08:03 - 2020-01-07 12:09 - 001121280 ___SH C:\Users\Juan\Thumbs.db
2020-06-13 08:02 - 2018-03-15 21:02 - 000000000 ____D C:\Users\Juan\Películas
2020-06-13 08:02 - 2013-10-07 12:21 - 000000000 ____D C:\Users\Juan
2020-06-12 11:44 - 2018-05-03 23:14 - 000000000 ____D C:\Users\Juan\AppData\Local\babl-0.1
2020-06-12 11:43 - 2015-03-06 11:31 - 000000000 ____D C:\Users\Juan\AppData\Local\gtk-2.0
2020-06-12 07:57 - 2020-04-23 09:48 - 000000000 ____D C:\Users\Juan\AppData\Local\Vivaldi
2020-06-12 07:56 - 2020-04-23 09:49 - 000002300 _____ C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vivaldi.lnk
2020-06-12 07:56 - 2020-04-23 09:49 - 000002263 _____ C:\Users\Juan\Desktop\Vivaldi.lnk
2020-06-11 05:59 - 2019-09-24 09:41 - 000000000 ____D C:\Program Files\Pale Moon
2020-06-10 10:09 - 2014-12-01 20:21 - 000794024 _____ C:\Users\Juan\Desktop\Diarios.pdf
2020-06-09 20:57 - 2017-01-13 13:00 - 000004472 _____ C:\Windows\system32\Tasks\Adobe Flash Player PPAPI Notifier
2020-06-09 20:57 - 2016-12-23 20:46 - 000004320 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-06-09 20:57 - 2013-10-09 17:28 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-06-09 20:57 - 2013-10-09 17:28 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-06-09 20:57 - 2013-10-09 17:28 - 000000000 ____D C:\Windows\system32\Macromed
2020-06-09 19:57 - 2018-03-13 20:01 - 000004488 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-06-09 08:18 - 2020-05-06 08:02 - 000000975 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-06-09 08:18 - 2020-05-06 08:02 - 000000975 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-05-29 00:01 - 2018-12-08 05:41 - 011904474 _____ C:\Windows\system32\Drivers\fvBoxStore.dat
2020-05-26 12:04 - 2019-12-05 23:34 - 000000000 ____D C:\Program Files\LibreOffice
2020-05-24 19:31 - 2013-10-14 19:54 - 000000913 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2020-05-24 19:31 - 2013-10-14 19:54 - 000000913 _____ C:\ProgramData\Desktop\CPUID CPU-Z.lnk
2020-05-20 23:17 - 2011-04-12 06:10 - 000702282 _____ C:\Windows\system32\perfh00A.dat
2020-05-20 23:17 - 2011-04-12 06:10 - 000142150 _____ C:\Windows\system32\perfc00A.dat
2020-05-20 23:17 - 2009-07-14 02:13 - 001594636 _____ C:\Windows\system32\PerfStringBackup.INI
==================== Archivos en la raíz de algunos directorios ========
2019-05-11 07:55 - 2019-02-11 08:56 - 005494976 _____ (COMODO) C:\ProgramData\cisC1A9.exe
2014-11-06 22:49 - 2015-05-16 18:14 - 000000096 _____ () C:\Users\Juan\AppData\Roaming\Camdata.ini
2014-11-06 22:49 - 2015-05-16 18:14 - 000000408 _____ () C:\Users\Juan\AppData\Roaming\CamLayout.ini
2014-11-06 22:49 - 2015-05-16 18:14 - 000000408 _____ () C:\Users\Juan\AppData\Roaming\CamShapes.ini
2014-11-06 22:49 - 2015-05-16 18:14 - 000004535 _____ () C:\Users\Juan\AppData\Roaming\CamStudio.cfg
2014-11-20 00:27 - 2014-11-20 00:27 - 000000000 _____ () C:\Users\Juan\AppData\Roaming\CamStudio.Producer.Data.ini
2014-11-20 00:27 - 2014-11-20 00:27 - 000001206 _____ () C:\Users\Juan\AppData\Roaming\CamStudio.Producer.ini
2014-11-06 22:49 - 2015-05-16 18:14 - 000000096 _____ () C:\Users\Juan\AppData\Roaming\version2.xml
2015-04-21 09:56 - 2015-04-21 09:58 - 000000513 _____ () C:\Users\Juan\AppData\Roaming\Weather Monitor_Settings.ini
2020-06-12 11:43 - 2020-06-12 11:43 - 000005144 _____ () C:\Users\Juan\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(No existe una corrección automática para los archivos que no pasan la verificación.)
LastRegBack: 2020-06-16 14:40
==================== Final de FRST.txt ========================