Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 06-06-2020
Ejecutado por Usuario (administrador) sobre USUARIO-PC (10-06-2020 12:25:10)
Ejecutado desde C:\Users\Usuario\Desktop
Perfiles cargados: Usuario
Platform: Windows 7 Ultimate Service Pack 1 (X64) Idioma: Español (España, internacional)
Internet Explorer Versión 8 (Navegador predeterminado: "C:\Mozilla Firefox32\firefox.exe" -osint -url "%1")
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Procesos (Lista blanca) =================
(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ICM\ICM-Service-NET.exe
(Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
(Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
(Check Point Software Technologies Ltd. -> Check Point Software Technologies, Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Mozilla Firefox32\firefox.exe <7>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
==================== Registro (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12936848 2012-07-13] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [133408 2012-09-11] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 2013-07-18] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284480 2012-05-30] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [238568 2020-05-08] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [ZoneAlarm] => C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [134792 2015-08-11] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
HKLM\...\Policies\Explorer: [NoInstrumentation] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN
HKU\S-1-5-21-3736251313-4123297334-1401593606-1000\...\Run: [] => [X]
HKU\S-1-5-21-3736251313-4123297334-1401593606-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> boinc.scr
HKU\S-1-5-18\...\Run: [ZoneAlarm Windows 10 Upgrader] => "C:\ProgramData\CheckPoint\ZoneAlarm\Data\Updates\unpacked==win10=update_win10.zip\upgrade.exe" /delay
HKLM\...\Windows x64\Print Processors\HP1020PrintProc: C:\Windows\System32\spool\prtprocs\x64\pphp1020.dll [65024 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\CutePDF Writer Monitor: C:\Windows\system32\cpwmon64.dll [87600 2013-10-23] (Acro Software Inc. -> )
HKLM\...\Print\Monitors\HPLJ1020LM: C:\Windows\system32\zlhp1020.dll [192512 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\LIDIL hpzllw71: C:\Windows\system32\hpzllw71.dll [53248 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [110264 2013-04-09] (pdfforge GmbH -> pdfforge GmbH)
BootExecute: autocheck autochk /p \??\M:autocheck autochk * sdnclean64.exe
==================== Tareas programadas (Lista blanca) ============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
Task: {013C0358-8AF7-492F-87D0-3FA1B896F373} - System32\Tasks\{1FB0B17C-F18F-4D8A-AD07-A926806C1D55} => C:\Windows\system32\pcalua.exe -a "C:\Users\Usuario\Desktop\Balabolka\Balabolka\Voces loquendo\esperanza.exe" -d "C:\Users\Usuario\Desktop\Balabolka\Balabolka\Voces loquendo"
Task: {0BBAB0A3-F773-4246-9285-5F8FF61907AA} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe
Task: {12F70F21-9404-40E7-8634-D341A733AF92} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2759632 2020-05-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {217DE458-BD0C-4E2E-9CD3-404BEDC6EBF8} - System32\Tasks\{C3AD988C-0DAD-4540-9C09-C6DF120F98AF} => C:\Windows\system32\pcalua.exe -a F:\Descargas\clamwin-0.99.4-setup-nodb.exe -d F:\Descargas
Task: {3DD391BE-E64D-449B-874E-31DC302907F8} - \{A4F6DD8F-01B6-4956-8BC1-662F14150094} -> Ningún archivo <==== ATENCIÓN
Task: {3E99DE4D-F46D-42C6-AC6C-85682D5E946C} - System32\Tasks\{D43A7368-6411-411D-B2DD-7FD9D7656C91} => C:\Windows\system32\pcalua.exe -a F:\Descargas\eMule0.50a-Installer.exe -d F:\Descargas
Task: {444585BF-67AE-4043-B132-56215753DF1A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {736F0C77-AB2D-4107-B08A-22FB413A828F} - System32\Tasks\{4F6C1320-4520-4A64-B5D1-283AF9E56119} => C:\Windows\system32\pcalua.exe -a "C:\Users\Usuario\Desktop\Balabolka\Balabolka\Voces loquendo\jorge.exe" -d "C:\Users\Usuario\Desktop\Balabolka\Balabolka\Voces loquendo"
Task: {7AABC385-EF32-44FE-BC0C-FB09027639FE} - System32\Tasks\{6E315DFB-9F42-4D8A-B27D-2DF5575899C5} => C:\Windows\system32\pcalua.exe -a C:\Users\Usuario\Downloads\converter.exe -d C:\Users\Usuario\Downloads
Task: {8C502DDD-8587-44B1-A039-8DF365267C09} - System32\Tasks\G2MUploadTask-S-1-5-21-3736251313-4123297334-1401593606-1000 => C:\Users\Usuario\AppData\Local\GoToMeeting\17359\g2mupload.exe [32256 2020-06-04] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {A5C24F1B-9FC7-4698-BCA8-CD386E30DA93} - System32\Tasks\Safer-Networking\Spybot Anti-Beacon\Refresh Anti-Beacon immunization => C:\Program Files (x86)\Safer-Networking Ltd\Spybot Anti-Beacon\Spybot3AntiBeacon.exe
Task: {AACB8A7D-3781-4593-A1F7-D808D3282AF6} - System32\Tasks\MiniToolPartitionWizard => C:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe [219616 2020-02-19] (MiniTool Software Limited -> )
Task: {ADBB3933-2934-45BC-BF6E-25AD1118487D} - System32\Tasks\{79D440D2-1A2A-4BF2-91A0-EF6B5520B4D1} => C:\Windows\system32\pcalua.exe -a "C:\Users\Usuario\Desktop\Balabolka\Balabolka\Voces loquendo\jorge.exe" -d "C:\Users\Usuario\Desktop\Balabolka\Balabolka\Voces loquendo"
Task: {B3E7BB2A-84B6-4113-BC43-A6DF5A1829CA} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [178312 2015-09-26] (Intel(R) Update Manager -> Intel Corporation)
Task: {C5EDCFCE-A482-4EA4-89C2-AA838DA03DDF} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [233792 2012-04-16] (Intel® Services Manager -> Intel Corporation)
Task: {DB4E2C4B-73CA-4DE3-8461-064FF6C8095B} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [233792 2012-04-16] (Intel® Services Manager -> Intel Corporation)
Task: {DF4C6741-AD02-4440-BCAB-16D7C2CA573F} - System32\Tasks\{9E5DA3B6-AEA1-41D6-9ED8-E3FCEE257E4E} => F:\Descargas\DNIe_v14_0_2(32bits)(3).exe
Task: {E81EE10F-BBAB-477F-8034-A92A1CA7C7EE} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [178312 2015-09-26] (Intel(R) Update Manager -> Intel Corporation)
Task: {FAE500C1-5C4B-4598-ABA5-3590E6F3B704} - \{94B9516E-4183-4012-8D5C-2D9CA7BF5E80} -> Ningún archivo <==== ATENCIÓN
Task: {FB1B407C-4C15-42F9-9C99-0FB2EB95F103} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [14679256 2019-01-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {FFADF162-6274-4821-B0CC-7A23D1C13D80} - System32\Tasks\G2MUpdateTask-S-1-5-21-3736251313-4123297334-1401593606-1000 => C:\Users\Usuario\AppData\Local\GoToMeeting\17359\g2mupdate.exe [32256 2020-06-04] (LogMeIn, Inc. -> LogMeIn, Inc.)
(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)
Task: C:\Windows\Tasks\AdwCleaner_onReboot.job => F:\Descargas\adwcleaner_8.0.5.exe
Task: C:\Windows\Tasks\AutoKMS.job => C:\Windows\AutoKMS\AutoKMS.exe
Task: C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-3736251313-4123297334-1401593606-1000.job => C:\Users\Usuario\AppData\Local\GoToMeeting\17359\g2mupdate.exe
Task: C:\Windows\Tasks\G2MUploadTask-S-1-5-21-3736251313-4123297334-1401593606-1000.job => C:\Users\Usuario\AppData\Local\GoToMeeting\17359\g2mupload.exe
Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe
Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe
==================== Internet (Lista blanca) ====================
(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)
Hosts: Hay más de una entrada en Hosts. Consulte la sección Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 212.231.6.7 46.6.113.34
Tcpip\..\Interfaces\{B2DCCE5B-646B-439C-9443-FE7E25EEDB5B}: [DhcpNameServer] 212.231.6.7 46.6.113.34
Tcpip\..\Interfaces\{E7E885D1-DF41-4D2B-833C-421460112AB7}: [DhcpNameServer] 80.58.61.250 8.8.8.8
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restricción <==== ATENCIÓN
HKU\S-1-5-21-3736251313-4123297334-1401593606-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://es.msn.com/?ocid=iehp
SearchScopes: HKU\S-1-5-21-3736251313-4123297334-1401593606-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_221\bin\ssv.dll [2019-09-20] (Oracle America, Inc. -> Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-09-20] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Sin Nombre -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> Ningún archivo
BHO-x32: Sin Nombre -> {9F904093-6E18-4536-BF5F-B03689CF00F0} -> Ningún archivo
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Sin Nombre -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> Ningún archivo
Toolbar: HKLM - Sin Nombre - {EF293C5A-9F37-49FD-91C4-2B867063FC54} - Ningún archivo
Toolbar: HKLM-x32 - Sin Nombre - {EF293C5A-9F37-49FD-91C4-2B867063FC54} - Ningún archivo
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://files.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://files.creative.com/Web/softwareupdate/ocx/150323/CTPID.cab
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2015-12-10] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2015-12-10] (Microsoft Windows -> Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2015-12-10] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2015-12-10] (Microsoft Windows -> Microsoft Corporation)
FireFox:
========
FF DefaultProfile: m9f4ou2y.default-1394146220714
FF DefaultProfile: 66vo6dwp.default
FF ProfilePath: C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\nikggb16.default-release-1 [2020-06-10]
FF DownloadDir: F:\Descargas
FF Homepage: Mozilla\Firefox\Profiles\nikggb16.default-release-1 -> hxxps://www.startpage.com/es/
FF NewTab: Mozilla\Firefox\Profiles\nikggb16.default-release-1 -> hxxps://defaultsearch.co/homepage?hp=1&pId=IC150206&iDate=2020-05-14 07:44:13&bName=&bitmask=0300
FF NetworkProxy: Mozilla\Firefox\Profiles\nikggb16.default-release-1 -> type", 0
FF Extension: (Ant Video downloader) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\nikggb16.default-release-1\Extensions\[email protected] [2020-05-30]
FF Extension: (General Catalan dictionary) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\nikggb16.default-release-1\Extensions\[email protected] [2020-06-08]
FF Extension: (Spanish (Spain) Dictionary) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\nikggb16.default-release-1\Extensions\[email protected] [2020-05-24]
FF Extension: (Català Language Pack) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\nikggb16.default-release-1\Extensions\[email protected] [2020-05-16]
FF Extension: (English (GB) Language Pack) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\nikggb16.default-release-1\Extensions\[email protected] [2020-05-29]
FF Extension: (Español (España) Language Pack) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\nikggb16.default-release-1\Extensions\[email protected] [2020-05-16]
FF Extension: (British English Dictionary (Marco Pinto)) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\nikggb16.default-release-1\Extensions\[email protected] [2020-05-29]
FF Extension: (User Agent Switcher) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\nikggb16.default-release-1\Extensions\[email protected] [2020-04-22]
FF Extension: (Google Translator for Firefox) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\nikggb16.default-release-1\Extensions\[email protected] [2019-09-24]
FF Extension: (uBlock Origin) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\nikggb16.default-release-1\Extensions\[email protected] [2020-05-29]
FF Extension: (Traducir páginas web) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\nikggb16.default-release-1\Extensions\{036a55b4-5e72-4d05-a06c-cba2dfcc134a}.xpi [2020-05-12]
FF Extension: (Startpage.com — Búsquedas privadas) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\nikggb16.default-release-1\Extensions\{20fc2e06-e3e4-4b2b-812b-ab431220cada}.xpi [2019-11-14]
FF Extension: (Allow Right-Click) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\nikggb16.default-release-1\Extensions\{278b0ae0-da9d-4cc6-be81-5aa7f3202672}.xpi [2020-05-08]
FF Extension: (X-notifier (for Gmail™,Hotmail,Yahoo,AOL...)) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\nikggb16.default-release-1\Extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi [2020-02-28]
FF Extension: (Sin Nombre) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\nikggb16.default-release-1\Extensions\{88ca97ee-69be-4604-bde1-1669f0dfe769}.xpi [2020-01-08]
FF Extension: (Firefox 3 Classic) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\nikggb16.default-release-1\Extensions\{9955ef03-99d6-40f4-b97b-ded88bb93f63}.xpi [2019-09-20]
FF Extension: (Easy Youtube Video Downloader Express) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\nikggb16.default-release-1\Extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi [2020-06-02]
FF Extension: (Video DownloadHelper) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\nikggb16.default-release-1\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2020-05-13]
FF Extension: (DownThemAll!) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\nikggb16.default-release-1\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2020-04-28]
FF ProfilePath: C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\5goeji2x.default-release [2020-06-08]
FF Homepage: Mozilla\Firefox\Profiles\5goeji2x.default-release -> hxxps://www.google.com/
FF NewTab: Mozilla\Firefox\Profiles\5goeji2x.default-release -> hxxps://defaultsearch.co/homepage?hp=1&pId=IC150206&iDate=2020-05-14 07:44:13&bName=&bitmask=0300
FF Extension: (Startpage.com — Búsquedas privadas) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\5goeji2x.default-release\Extensions\{20fc2e06-e3e4-4b2b-812b-ab431220cada}.xpi [2019-07-02]
FF ProfilePath: C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\m9f4ou2y.default-1394146220714 [2020-06-08]
FF DownloadDir: H:\.MULTIMEDIA\1 VIDEO\Documentales\Documentales FeR\K\Curso2
FF Homepage: Mozilla\Firefox\Profiles\m9f4ou2y.default-1394146220714 -> file:///C:/ProgramData/Snorlers/ff.HP
FF NetworkProxy: Mozilla\Firefox\Profiles\m9f4ou2y.default-1394146220714 -> type", 0
FF Extension: (Avira Password Manager) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\m9f4ou2y.default-1394146220714\Extensions\[email protected] [2020-05-31]
FF Extension: (Google Translator for Firefox) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\m9f4ou2y.default-1394146220714\Extensions\[email protected] [2019-07-05]
FF Extension: (uBlock) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\m9f4ou2y.default-1394146220714\Extensions\{2b10c1c8-a11f-4bad-fe9c-1c11e82cac42}.xpi [2019-07-04]
FF Extension: (X-notifier (for Gmail™,Hotmail,Yahoo,AOL...)) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\m9f4ou2y.default-1394146220714\Extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi [2019-06-18]
FF Extension: (Firefox 3 Classic) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\m9f4ou2y.default-1394146220714\Extensions\{9955ef03-99d6-40f4-b97b-ded88bb93f63}.xpi [2019-05-28]
FF Extension: (Easy Youtube Video Downloader Express) - C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\m9f4ou2y.default-1394146220714\Extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi [2019-08-22]
FF ProfilePath: C:\Users\Usuario\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\66vo6dwp.default [2020-06-08]
FF DownloadDir: F:\Descargas\_Palemoon
FF Homepage: Moonchild Productions\Pale Moon\Profiles\66vo6dwp.default -> hxxps://www.startpage.com/
FF NewTab: Moonchild Productions\Pale Moon\Profiles\66vo6dwp.default -> about:newtab
FF Extension: (Adblock Latitude) - C:\Users\Usuario\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\66vo6dwp.default\Extensions\[email protected] [2019-09-11] [Heredado] [no firmado]
FF Extension: (Classic Toolbar Buttons) - C:\Users\Usuario\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\66vo6dwp.default\Extensions\[email protected]_Noia4dev.xpi [2019-09-11] [Heredado] [no firmado]
FF Extension: (Spanish) - C:\Users\Usuario\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\66vo6dwp.default\Extensions\[email protected] [2019-09-13] [Heredado] [no firmado]
FF Extension: (Español (España) Language Pack) - C:\Users\Usuario\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\66vo6dwp.default\Extensions\[email protected] [2019-09-11] [Heredado] [no firmado]
FF Extension: (Pale Moon Locale Switcher) - C:\Users\Usuario\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\66vo6dwp.default\Extensions\[email protected] [2019-09-11] [Heredado] [no firmado]
FF Extension: (Complete YouTube Saver) - C:\Users\Usuario\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\66vo6dwp.default\Extensions\{AF445D67-154C-4c69-A17B-7F392BCC36A3} [2019-09-17] [Heredado] [no firmado]
FF SearchPlugin: C:\Users\Usuario\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\66vo6dwp.default\searchplugins\startpagecom---espaol.xml [2019-09-20]
FF SearchPlugin: C:\Users\Usuario\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\66vo6dwp.default\searchplugins\tpbtpbart.xml [2019-09-20]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_371.dll [2020-05-26] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-09-20] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-09-20] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_371.dll [2020-05-26] (Adobe Inc. -> )
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-09-19] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-09-19] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-09-19] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-09-19] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll [2013-05-08] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
StartMenuInternet: Firefox-51BCC20A3763AB92 - C:\Mozilla Firefox32\firefox.exe
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
==================== Servicios (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
"ESProtectionDriver" => servicio no pudo ser desbloqueado. <==== ATENCIÓN
HKLM\SYSTEM\ControlSet001\Services\ESProtectionDriver => C:\Windows\system32\drivers\mbae64.sys [153312 2020-05-31] (Malwarebytes Corporation -> Malwarebytes) <==== ATENCIÓN (Rootkit!/Servicio bloqueado)
"MBAMChameleon" => servicio no pudo ser desbloqueado. <==== ATENCIÓN
HKLM\SYSTEM\ControlSet001\Services\MBAMChameleon => \SystemRoot\System32\Drivers\MbamChameleon.sys <==== ATENCIÓN (Rootkit!/Servicio bloqueado)
"MBAMFarflt" => servicio no pudo ser desbloqueado. <==== ATENCIÓN
HKLM\SYSTEM\ControlSet001\Services\MBAMFarflt => system32\DRIVERS\farflt.sys <==== ATENCIÓN (Rootkit!/Servicio bloqueado)
"MBAMProtection" => servicio no pudo ser desbloqueado. <==== ATENCIÓN
HKLM\SYSTEM\ControlSet001\Services\MBAMProtection => \??\C:\Windows\system32\DRIVERS\mbam.sys <==== ATENCIÓN (Rootkit!/Servicio bloqueado)
"MBAMWebProtection" => servicio no pudo ser desbloqueado. <==== ATENCIÓN
HKLM\SYSTEM\ControlSet001\Services\MBAMWebProtection => system32\DRIVERS\mwac.sys <==== ATENCIÓN (Rootkit!/Servicio bloqueado)
R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [246784 2015-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1208664 2020-05-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [483832 2020-05-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [483832 2020-05-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [573256 2020-06-04] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [636264 2020-05-08] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2989888 2020-01-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S4 AVP20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [357416 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Archivo no firmado]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation - pGFX -> Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [634632 2012-06-19] (Intel® Upgrade Service -> Intel(R) Corporation)
S4 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [133632 2012-02-09] (Intel(R) Smart Connect software -> )
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [178312 2015-09-26] (Intel(R) Update Manager -> Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-08-21] (Intel Corporation -> Intel Corporation)
S2 KMService; C:\Windows\SysWOW64\srvany.exe [8192 2019-06-21] () [Archivo no firmado]
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-05-31] (Malwarebytes Inc -> Malwarebytes)
S4 TeraCopyService; C:\Program Files\TeraCopy\TeraCopyService.exe [110416 2017-05-05] (Code Sector -> Code Sector)
S4 uSHAREitSvc; C:\Program Files (x86)\SHAREit Technologies\SHAREit\SHAREit.Service.exe [33224 2017-09-11] (SHAREit Technologies Co.Ltd -> SHAREit Technologies Co.Ltd)
R2 vsmon; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [3722912 2015-08-11] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 ZA NET ICM Service; C:\Program Files (x86)\CheckPoint\ICM\ICM-Service-NET.exe [40304 2019-02-07] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
R2 ZAPrivacyService; C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZaPrivacyService.exe [96272 2014-08-14] (Check Point Software Technologies Ltd. -> Check Point Software Technologies, Ltd.)
===================== Controladores (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
S3 7615A470; C:\Windows\system32\drivers\7615A470.sys [255928 2020-05-31] (Malwarebytes Corporation -> Malwarebytes)
S3 AFXfilt; C:\Windows\System32\drivers\AFXfilt.sys [25088 2013-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.)
S3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [21622784 2015-08-04] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
S3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [665088 2015-08-04] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R1 AsrAppCharger; C:\Windows\System32\DRIVERS\AsrAppCharger.sys [17192 2011-05-10] (ASROCK Incorporation -> Windows (R) Win 7 DDK provider)
S3 athur; C:\Windows\System32\DRIVERS\athurx.sys [1847296 2010-01-05] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
S3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW76.sys [104976 2016-04-01] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [68152 2019-06-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [222168 2020-05-13] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [178720 2020-04-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [36072 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [78600 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [35376 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 BthAvrcp; C:\Windows\System32\DRIVERS\BthAvrcp.sys [29184 2009-08-13] (Microsoft Windows Hardware Compatibility Publisher -> CSR, plc)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [246912 2019-02-16] (Kaspersky Lab -> AO Kaspersky Lab)
S3 csrusbfilter; C:\Windows\System32\Drivers\csrusbfilter.sys [23752 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csr_a2dp; C:\Windows\System32\drivers\bthav.sys [78848 2009-12-21] (Microsoft Windows Hardware Compatibility Publisher -> CSR, plc)
S3 CtClsFlt; C:\Windows\System32\DRIVERS\CtClsFlt.sys [178176 2011-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.)
S3 cthdb; C:\Windows\System32\DRIVERS\cthdb.sys [25088 2013-12-09] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [27008 2019-12-09] (CHENGDU YIWO Tech Development Co., Ltd. -> )
R0 EPMVolFl; C:\Windows\System32\drivers\EPMVolFl.sys [21376 2019-12-09] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider)
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [14720 2019-12-09] (CHENGDU YIWO Tech Development Co., Ltd. -> )
R3 FNETTBOH_305; C:\Windows\System32\drivers\FNETTBOH_305.SYS [32320 2020-05-11] (FNet Co., Ltd. -> FNet Co., Ltd.)
R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [16648 2020-05-09] (FNet Co., Ltd. -> FNet Co., Ltd.)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20160 2014-11-07] (Glarysoft Ltd -> Glarysoft Ltd)
S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [57728 2020-06-03] (SurfRight B.V. -> )
R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [25536 2012-02-09] (Intel(R) Smart Connect software -> )
R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [25536 2012-02-09] (Intel(R) Smart Connect software -> )
R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD64.sys [44992 2012-02-09] (Intel(R) Smart Connect software -> )
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115600 2010-01-29] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-07-24] (Kaspersky Lab -> Kaspersky Lab ZAO)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [79768 2020-05-19] (Kaspersky Lab -> AO Kaspersky Lab)
S1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [145504 2020-05-19] (Kaspersky Lab -> AO Kaspersky Lab)
S1 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [93312 2019-03-12] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [162464 2015-07-24] (Kaspersky Lab -> Kaspersky Lab ZAO)
S1 klgse; C:\Windows\System32\DRIVERS\klgse.sys [633600 2020-04-28] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [218272 2015-07-24] (Kaspersky Lab -> AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [915104 2015-07-24] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [79760 2020-05-19] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [59512 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [51328 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klwfp; C:\Windows\System32\DRIVERS\klwfp.sys [105600 2019-03-05] (Kaspersky Lab -> AO Kaspersky Lab)
S1 klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [211048 2020-05-19] (Kaspersky Lab -> AO Kaspersky Lab)
S4 LGDDCDevice; C:\Windows\SysWOW64\LGI2CDriver.sys [16384 2012-10-17] (LG Soft India) [Archivo no firmado]
S4 LGII2CDevice; C:\Windows\SysWOW64\LGPII2CDriver.sys [10752 2012-12-27] (LG Soft India) [Archivo no firmado]
S0 MBAMSwissArmy; C:\Windows\System32\drivers\mbamswissarmy.sys [248968 2020-05-31] (Malwarebytes Inc -> Malwarebytes)
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2019-11-08] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2019-11-08] (MiniTool Solution Ltd -> )
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] (Empty Loop -> )
S3 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [203328 2018-02-26] (Oracle Corporation -> Oracle Corporation)
R1 Vsdatant; C:\Windows\System32\drivers\vsdatant.sys [461240 2020-06-08] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [34752 2020-04-18] (Intel(R) Smart Connect software -> )
==================== NetSvcs (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
==================== Un mes (creado) ===================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2020-06-10 12:25 - 2020-06-10 12:25 - 000038940 _____ C:\Users\Usuario\Desktop\FRST.txt
2020-06-10 12:22 - 2020-06-10 12:22 - 002289152 _____ (Farbar) C:\Users\Usuario\Desktop\FRST64.exe
2020-06-10 12:20 - 2020-06-10 12:20 - 000000000 _____ C:\Users\Usuario\Desktop\FIXLIST.txt
2020-06-10 12:17 - 2020-06-10 12:23 - 000000000 ____D C:\Users\Usuario\Desktop\Infospy
2020-06-09 21:26 - 2020-06-09 21:27 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.8
2020-06-09 21:26 - 2020-06-09 21:26 - 000000000 ____D C:\Users\Usuario\AppData\Local\Package Cache
2020-06-09 21:21 - 2020-06-09 22:50 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\qBittorrent
2020-06-09 21:21 - 2020-06-09 21:33 - 000000000 ____D C:\Program Files\qBittorrent
2020-06-09 21:21 - 2020-06-09 21:27 - 000000000 ____D C:\Users\Usuario\AppData\Local\qBittorrent
2020-06-09 21:21 - 2020-06-09 21:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2020-06-08 22:50 - 2020-06-08 22:50 - 000000670 _____ C:\Users\Usuario\Desktop\Ut.txt
2020-06-08 20:28 - 2020-06-08 20:31 - 000461240 _____ (Check Point Software Technologies Ltd.) C:\Windows\system32\Drivers\vsdatant.sys
2020-06-08 20:27 - 2020-06-08 20:28 - 000430818 _____ C:\Windows\system32\Drivers\vsconfig.xml
2020-06-08 20:27 - 2020-06-08 20:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Check Point
2020-06-08 20:10 - 2015-07-24 20:56 - 000478392 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kl1.sys
2020-06-08 20:10 - 2015-07-24 20:56 - 000218272 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klhk.sys
2020-06-08 19:59 - 2020-06-08 20:31 - 000000000 ____D C:\ProgramData\CheckPoint
2020-06-08 19:59 - 2020-06-08 20:31 - 000000000 ____D C:\Program Files (x86)\CheckPoint
2020-06-08 19:45 - 2020-06-08 19:45 - 000255928 _____ (Malwarebytes) C:\Windows\system32\Drivers\1155537F.sys
2020-06-08 19:42 - 2020-06-08 19:42 - 004531659 _____ C:\Users\Usuario\bookmarks.html
2020-06-08 14:48 - 2020-06-08 14:50 - 006599835 _____ C:\Users\Usuario\Desktop\Denuncia080620.pdf
2020-06-08 14:46 - 2020-06-08 14:46 - 002247765 _____ C:\Users\Usuario\Desktop\UNED_JUNIO2020.pdf
2020-06-08 09:17 - 2020-06-08 09:17 - 026748710 _____ C:\Users\Usuario\Desktop\IOMR.zip
2020-06-08 01:37 - 2020-06-08 02:14 - 000000000 ____D C:\KVRT_Data
2020-06-08 01:10 - 2020-06-08 01:10 - 000236590 _____ C:\Users\Usuario\Desktop\EO.txt
2020-06-07 23:39 - 2020-06-07 23:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\auslogics
2020-06-07 23:39 - 2020-06-07 23:39 - 000000000 ____D C:\ProgramData\Auslogics
2020-06-07 23:39 - 2020-06-07 23:39 - 000000000 ____D C:\Program Files (x86)\Auslogics
2020-06-07 13:24 - 2020-06-07 13:24 - 000000000 ____D C:\Users\Usuario\AppData\Local\ESET
2020-06-06 18:33 - 2020-06-07 13:22 - 000000000 ____D C:\Users\Usuario\Desktop\Openbank 060620
2020-06-06 12:11 - 2020-06-06 12:11 - 000000000 ____D C:\Users\Public\Speedup Sessions
2020-06-04 21:43 - 2020-06-04 21:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy
2020-06-04 17:50 - 2020-06-04 17:50 - 000000000 ____D C:\Users\Usuario\Documents\ProcAlyzer Dumps
2020-06-04 17:45 - 2020-06-04 17:46 - 000000000 ____D C:\Users\Usuario\Documents\Procura
2020-06-04 17:42 - 2020-06-03 10:08 - 000453922 _____ C:\Windows\system32\Drivers\etc\hosts.20200604-174232.backup
2020-06-04 16:41 - 2020-06-08 19:56 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2020-06-04 16:41 - 2020-06-04 16:41 - 000255928 _____ (Malwarebytes) C:\Windows\system32\Drivers\55631361.sys
2020-06-04 15:48 - 2020-06-06 11:53 - 000000646 _____ C:\Windows\Tasks\G2MUploadTask-S-1-5-21-3736251313-4123297334-1401593606-1000.job
2020-06-04 15:48 - 2020-06-06 11:53 - 000000550 _____ C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-3736251313-4123297334-1401593606-1000.job
2020-06-04 15:48 - 2020-06-04 22:27 - 000003686 _____ C:\Windows\system32\Tasks\G2MUploadTask-S-1-5-21-3736251313-4123297334-1401593606-1000
2020-06-04 15:48 - 2020-06-04 22:27 - 000003590 _____ C:\Windows\system32\Tasks\G2MUpdateTask-S-1-5-21-3736251313-4123297334-1401593606-1000
2020-06-04 15:48 - 2020-06-04 15:48 - 000000000 ____D C:\Users\Usuario\AppData\Local\GoToMeeting
2020-06-03 10:08 - 2020-06-03 10:02 - 000000035 _____ C:\Windows\system32\Drivers\etc\hosts.20200603-100809.backup
2020-06-03 09:42 - 2020-06-03 09:42 - 000057728 _____ C:\Windows\system32\Drivers\hitmanpro37.sys
2020-06-03 09:34 - 2020-06-03 09:38 - 000000000 ____D C:\Program Files (x86)\Vozi
2020-06-03 08:38 - 2020-06-03 10:01 - 000000000 ____D C:\Users\Usuario\Desktop\FRST-OlderVersion
2020-06-03 08:31 - 2020-06-03 08:31 - 000000261 _____ C:\Users\Usuario\Desktop\DelFix.txt
2020-06-03 08:30 - 2020-06-03 08:30 - 000000261 _____ C:\DelFix.txt
2020-06-03 08:30 - 2020-06-03 08:30 - 000000000 ____D C:\Windows\ERUNT
2020-06-03 08:29 - 2020-06-03 08:29 - 000797760 _____ C:\Users\Usuario\Desktop\delfix.exe
2020-06-02 09:28 - 2020-06-02 09:12 - 000774178 _____ C:\Windows\system32\Drivers\etc\hosts.20200602-092849.backup
2020-06-02 09:27 - 2020-06-02 09:12 - 000774178 _____ C:\Windows\system32\Drivers\etc\hosts.20200602-092759.backup
2020-06-02 09:01 - 2020-06-02 09:11 - 000000000 ____D C:\Users\Usuario\Doctor Web
2020-06-02 09:01 - 2020-06-02 09:01 - 000000000 ____D C:\ProgramData\Doctor Web
2020-06-02 03:41 - 2020-06-08 20:45 - 000000000 ____D C:\Users\Usuario\Documents\Cleaner_reg
2020-06-02 00:26 - 2020-06-02 00:26 - 000255928 _____ (Malwarebytes) C:\Windows\system32\Drivers\7771029A.sys
2020-06-02 00:07 - 2020-06-02 00:07 - 000000000 ___HD C:\kleaner.tmp
2020-06-01 21:19 - 2020-06-01 21:19 - 000255928 _____ (Malwarebytes) C:\Windows\system32\Drivers\2F34A303.sys
2020-06-01 21:11 - 2020-06-04 22:27 - 000000000 ____D C:\Users\Usuario\Desktop\Virus 310620
2020-06-01 19:15 - 2020-06-01 19:15 - 000032768 _____ C:\Windows\SysWOW64\antimalware.unwanted_products.product_registry.kvdb-shm
2020-06-01 19:15 - 2020-06-01 19:15 - 000032768 _____ C:\Windows\SysWOW64\antimalware.unwanted_products.browser_extension_registry.kvdb-shm
2020-06-01 19:15 - 2020-06-01 19:15 - 000032768 _____ C:\Windows\SysWOW64\antimalware.patch_management.product_registry.kvdb-shm
2020-06-01 19:15 - 2020-06-01 19:15 - 000012288 _____ C:\Windows\SysWOW64\antimalware.unwanted_products.product_registry.kvdb
2020-06-01 19:15 - 2020-06-01 19:15 - 000012288 _____ C:\Windows\SysWOW64\antimalware.unwanted_products.browser_extension_registry.kvdb
2020-06-01 19:15 - 2020-06-01 19:15 - 000012288 _____ C:\Windows\SysWOW64\antimalware.patch_management.product_registry.kvdb
2020-06-01 19:15 - 2020-06-01 19:15 - 000000000 _____ C:\Windows\SysWOW64\antimalware.unwanted_products.product_registry.kvdb-wal
2020-06-01 19:15 - 2020-06-01 19:15 - 000000000 _____ C:\Windows\SysWOW64\antimalware.unwanted_products.browser_extension_registry.kvdb-wal
2020-06-01 19:15 - 2020-06-01 19:15 - 000000000 _____ C:\Windows\SysWOW64\antimalware.patch_management.product_registry.kvdb-wal
2020-06-01 18:40 - 2020-06-02 00:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Security Cloud
2020-06-01 18:40 - 2020-06-02 00:12 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2020-06-01 18:40 - 2020-06-02 00:12 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab
2020-06-01 18:40 - 2020-06-01 18:40 - 000000000 ____D C:\Program Files\Common Files\AV
2020-06-01 18:40 - 2013-05-06 08:13 - 000110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll
2020-06-01 18:23 - 2020-06-01 18:23 - 000255928 _____ (Malwarebytes) C:\Windows\system32\Drivers\212B5420.sys
2020-06-01 16:46 - 2020-06-01 16:46 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Your Uninstaller 2010
2020-06-01 16:14 - 2020-06-09 19:42 - 000000000 ____D C:\Program Files (x86)\SpywareBlaster
2020-06-01 16:14 - 2020-06-01 16:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster
2020-06-01 16:14 - 2009-03-24 13:52 - 000129872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSSTDFMT.DLL
2020-06-01 13:11 - 2020-06-01 18:09 - 000000000 ____D C:\Windows\CryptoGuard
2020-06-01 13:11 - 2020-06-01 15:43 - 001215072 _____ (SurfRight B.V.) C:\Windows\system32\hmpalert.dll
2020-06-01 13:11 - 2020-06-01 15:43 - 001017184 _____ (SurfRight B.V.) C:\Windows\SysWOW64\hmpalert.dll
2020-06-01 13:08 - 2020-06-01 18:03 - 000000000 ____D C:\Program Files\Sophos
2020-06-01 12:33 - 2020-06-01 18:00 - 000000000 ____D C:\ProgramData\Sophos
2020-05-31 20:00 - 2020-05-31 20:11 - 000255928 _____ (Malwarebytes) C:\Windows\system32\Drivers\7615A470.sys
2020-05-31 19:36 - 2020-05-31 19:36 - 026839448 _____ C:\Users\Usuario\Micer_Rabasa_Ctto_INES_OLMOS.pdf
2020-05-31 19:36 - 2020-05-31 19:36 - 026839448 _____ C:\Users\Usuario\Desktop\IOMR.pdf
2020-05-31 06:05 - 2020-05-31 06:05 - 000000000 ____D C:\Windows\system32\Tasks\Avira
2020-05-31 05:48 - 2020-05-31 05:48 - 000000000 ____D C:\Windows\SysWOW64\GPUCache
2020-05-31 05:40 - 2020-05-31 05:40 - 000000000 ____D C:\Users\Usuario\AppData\Local\AviraSpeedup
2020-05-31 05:39 - 2020-05-31 05:39 - 000000000 ____D C:\Users\Usuario\AppData\Local\Avira
2020-05-31 05:18 - 2020-06-06 12:10 - 000000000 ____D C:\Users\Public\PrivacyPal Sessions
2020-05-31 05:18 - 2020-05-31 05:18 - 000003292 _____ C:\Windows\system32\Tasks\Avira_Antivirus_Systray
2020-05-31 05:18 - 2020-05-31 05:18 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2020-05-31 05:18 - 2020-05-13 14:31 - 000222168 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2020-05-31 05:18 - 2020-04-30 12:37 - 000178720 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2020-05-31 05:18 - 2019-06-07 15:09 - 000068152 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avdevprot.sys
2020-05-31 05:18 - 2019-03-20 19:50 - 000078600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2020-05-31 05:18 - 2019-03-20 19:50 - 000036072 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2020-05-31 05:18 - 2019-03-20 19:50 - 000035376 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avusbflt.sys
2020-05-31 05:16 - 2020-05-31 06:10 - 000000000 ____D C:\Program Files (x86)\Avira
2020-05-31 05:16 - 2020-05-31 06:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2020-05-31 05:03 - 2020-06-01 18:35 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2020-05-31 02:02 - 2020-05-31 02:30 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2020-05-31 00:02 - 2020-05-31 00:03 - 000218924 _____ C:\TDSSKiller.3.1.0.28_31.05.2020_00.02.25_log.txt
2020-05-31 00:00 - 2020-05-31 00:00 - 000255928 _____ (Malwarebytes) C:\Windows\system32\Drivers\1424F626.sys
2020-05-30 23:30 - 2020-05-30 23:30 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2020-05-30 23:30 - 2020-05-30 23:30 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\GHISLER
2020-05-30 23:30 - 2020-05-30 23:30 - 000000000 ____D C:\Users\Usuario\AppData\Local\GHISLER
2020-05-30 23:30 - 2020-05-30 23:30 - 000000000 ____D C:\totalcmd
2020-05-30 23:02 - 2020-05-30 23:02 - 005553104 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlmp.exe
2020-05-30 23:00 - 2020-05-30 23:00 - 000628480 _____ (Microsoft Corporation) C:\Windows\system32\osloader.exe
2020-05-30 22:49 - 2020-05-30 22:57 - 000000740 _____ C:\Windows\system32\.crusader
2020-05-30 22:45 - 2020-05-30 22:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
2020-05-30 22:44 - 2020-05-30 23:19 - 000000000 ____D C:\ProgramData\HitmanPro
2020-05-30 22:44 - 2020-05-30 22:45 - 000000000 ____D C:\Program Files\HitmanPro
2020-05-30 21:55 - 2020-05-31 02:30 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2020-05-30 21:55 - 2020-05-30 21:55 - 000000000 ____D C:\Users\Usuario\AppData\Local\mbamtray
2020-05-30 21:55 - 2020-05-30 21:55 - 000000000 ____D C:\Users\Usuario\AppData\Local\mbam
2020-05-30 21:55 - 2020-05-30 21:55 - 000000000 ____D C:\Users\Usuario\AppData\Local\cache
2020-05-30 21:49 - 2020-05-31 02:18 - 000000000 ____D C:\ProgramData\Malwarebytes Anti-Exploit
2020-05-30 21:46 - 2020-06-10 12:25 - 000000000 ____D C:\FRST
2020-05-30 21:44 - 2020-05-31 00:00 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-05-30 21:41 - 2020-05-30 21:41 - 000000000 ____D C:\ProgramData\mb3migration
2020-05-30 21:08 - 2020-05-31 02:31 - 000001960 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-05-30 21:05 - 2020-05-30 21:05 - 000000264 _____ C:\Windows\Tasks\AdwCleaner_onReboot.job
2020-05-30 20:43 - 2020-05-14 23:50 - 000458998 _____ C:\Windows\system32\Drivers\etc\hosts.20200530-204332.backup
2020-05-30 19:59 - 2020-05-30 19:59 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\Python
2020-05-30 19:54 - 2020-05-30 19:54 - 000000000 ____D C:\Users\Usuario\AppData\Local\app
2020-05-30 19:53 - 2020-05-30 20:10 - 000000000 ____D C:\Users\Usuario\AppData\Local\inetinfoservice
2020-05-30 13:25 - 2020-05-30 13:25 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\Ant.com
2020-05-30 11:15 - 2020-05-30 11:15 - 000000000 ____D C:\ProgramData\Riate
2020-05-30 11:14 - 2020-05-30 11:14 - 000000000 ____D C:\ProgramData\Odc
2020-05-30 11:13 - 2020-05-30 21:17 - 000000000 ____D C:\ProgramData\Aue
2020-05-30 11:13 - 2020-05-30 11:13 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\NVIDIA
2020-05-30 11:13 - 2020-05-30 11:13 - 000000000 ____D C:\ProgramData\Nec
2020-05-30 09:20 - 2020-05-30 21:17 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\SysHost
2020-05-19 07:29 - 2020-05-19 07:29 - 000211048 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klwtp.sys
2020-05-19 07:29 - 2020-05-19 07:29 - 000145504 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klbackupflt.sys
2020-05-19 07:29 - 2020-05-19 07:29 - 000079768 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klbackupdisk.sys
2020-05-19 07:29 - 2020-05-19 07:29 - 000079760 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klkbdflt.sys
2020-05-15 02:40 - 2020-05-15 02:40 - 000000000 ____D C:\Program Files (x86)\33download.com
2020-05-15 02:30 - 2020-05-15 02:36 - 000000000 ____D C:\Users\Usuario\Documents\EGDownloads
2020-05-15 02:26 - 2020-05-15 02:35 - 000000000 ____D C:\Users\Usuario\AppData\Local\luminati
2020-05-14 21:44 - 2020-05-14 22:00 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\QtProject
2020-05-14 21:44 - 2019-11-08 10:15 - 003600896 _____ C:\Windows\system32\pwNative.exe
2020-05-14 21:44 - 2019-11-08 10:15 - 000019152 _____ C:\Windows\system32\pwdrvio.sys
2020-05-14 21:44 - 2019-11-08 10:15 - 000012504 _____ C:\Windows\system32\pwdspio.sys
2020-05-14 21:43 - 2020-05-29 19:39 - 000000000 ____D C:\Program Files\MiniTool ShadowMaker
2020-05-14 21:43 - 2020-05-15 00:04 - 000003190 _____ C:\Windows\system32\Tasks\MiniToolPartitionWizard
2020-05-14 21:43 - 2020-05-14 21:44 - 000000000 ____D C:\Program Files\MiniTool Partition Wizard 12
2020-05-14 21:43 - 2020-05-14 21:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool Partition Wizard 12
2020-05-14 21:36 - 2020-05-14 21:36 - 000000000 ____D C:\Program Files\LSoft Technologies
2020-05-12 01:11 - 2020-05-12 01:11 - 000000000 ____D C:\Users\Usuario\Documents\Victoria476b
==================== Un mes (modificado) ==================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2020-06-10 12:25 - 2009-07-14 06:45 - 000026576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-06-10 12:25 - 2009-07-14 06:45 - 000026576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-06-10 12:23 - 2011-04-12 11:10 - 000765916 _____ C:\Windows\system32\perfh00A.dat
2020-06-10 12:23 - 2011-04-12 11:10 - 000165156 _____ C:\Windows\system32\perfc00A.dat
2020-06-10 12:23 - 2009-07-14 07:13 - 001715506 _____ C:\Windows\system32\PerfStringBackup.INI
2020-06-10 12:23 - 2009-07-14 05:20 - 000000000 ___HD C:\Windows\inf
2020-06-10 12:22 - 2013-11-08 11:18 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\TeraCopy
2020-06-10 12:18 - 2020-05-09 09:36 - 000000000 __SHD C:\Users\Usuario\IntelGraphicsProfiles
2020-06-10 12:18 - 2018-12-12 13:11 - 000000000 ____D C:\Users\Usuario\AppData\LocalLow\Mozilla
2020-06-10 12:17 - 2013-07-26 14:18 - 000000266 _____ C:\Windows\Tasks\AutoKMS.job
2020-06-10 12:17 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-06-09 21:38 - 2014-07-28 18:16 - 000000000 ____D C:\Program Files (x86)\uTorrent
2020-06-09 21:38 - 2013-11-09 21:46 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\uTorrent
2020-06-09 21:38 - 2013-07-26 12:38 - 000000000 ____D C:\ProgramData\TEMP
2020-06-09 21:26 - 2014-08-22 15:51 - 000000000 ____D C:\ProgramData\Package Cache
2020-06-09 15:06 - 2013-08-01 17:24 - 000000000 ____D C:\Users\Usuario\AppData\Local\ElevatedDiagnostics
2020-06-09 14:01 - 2020-04-17 12:09 - 000000000 ____D C:\Mozilla Firefox32
2020-06-08 22:00 - 2019-09-13 10:03 - 000072192 ___SH C:\Users\Usuario\Thumbs.db
2020-06-08 21:45 - 2013-07-27 14:22 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\vlc
2020-06-08 21:41 - 2009-10-01 22:31 - 000000000 ____D C:\Users\Usuario\Desktop\Nudos de corbata
2020-06-08 20:45 - 2013-07-26 12:41 - 000000000 ____D C:\Users\Usuario\AppData\Local\CrashDumps
2020-06-08 20:45 - 2013-07-26 10:33 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2020-06-08 19:49 - 2019-07-05 20:22 - 000000000 ____D C:\Users\Usuario\Documents\Negocios
2020-06-08 19:42 - 2013-07-25 20:31 - 000000000 ____D C:\Users\Usuario
2020-06-08 14:51 - 2019-09-05 23:47 - 000000000 ____D C:\VueScan
2020-06-04 21:45 - 2013-07-26 10:33 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy
2020-06-04 21:34 - 2013-08-01 00:12 - 000002993 ____H C:\Windows\wininit.ini
2020-06-04 18:01 - 2009-07-14 05:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2020-06-04 17:46 - 2019-09-02 03:27 - 000000000 ____D C:\Users\Usuario\Desktop\Máster de acceso a la Procura
2020-06-04 17:42 - 2009-07-14 04:34 - 000453980 ____R C:\Windows\system32\Drivers\etc\hosts.20200604-214701.backup
2020-06-04 16:55 - 2019-02-25 01:04 - 000000000 ____D C:\Windows\system32\Tasks\Safer-Networking
2020-06-03 10:08 - 2009-07-14 04:34 - 000453922 ____R C:\Windows\system32\Drivers\etc\hosts.20200604-170002.backup
2020-06-03 09:36 - 2018-12-13 13:59 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\EurekaLog
2020-06-03 08:40 - 2013-07-29 22:55 - 000000008 __RSH C:\ProgramData\ntuser.pol
2020-06-03 08:38 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy
2020-06-02 09:38 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\NDF
2020-06-02 09:28 - 2009-07-14 04:34 - 001227890 ____R C:\Windows\system32\Drivers\etc\hosts.20200602-094044.backup
2020-06-01 21:16 - 2019-09-28 13:19 - 000000000 ____D C:\Users\Usuario\Documents\Inés
2020-06-01 21:14 - 2018-12-24 22:37 - 000000000 ____D C:\Users\Usuario\Desktop\Auxilio
2020-06-01 21:13 - 2020-04-29 08:54 - 000000000 ____D C:\Users\Usuario\Desktop\Sotya
2020-06-01 18:23 - 2019-01-26 04:31 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\foobar2000
2020-06-01 16:47 - 2013-07-26 12:38 - 000001228 _____ C:\Users\Usuario\Desktop\Your Uninstaller!.lnk
2020-06-01 16:45 - 2013-07-26 12:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Uninstaller 2010
2020-06-01 15:20 - 2019-01-19 13:33 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-06-01 13:51 - 2019-01-31 23:35 - 000000000 ____D C:\Users\boinc_master
2020-06-01 12:48 - 2009-07-14 04:34 - 000458998 ____R C:\Windows\system32\Drivers\etc\hosts.20200602-002056.backup
2020-05-31 06:08 - 2013-07-26 10:45 - 000000000 ____D C:\ProgramData\Avira
2020-05-31 06:04 - 2016-02-26 11:54 - 000000000 ____D C:\Program Files (x86)\ClamWin
2020-05-31 05:35 - 2009-07-14 06:45 - 000423984 _____ C:\Windows\system32\FNTCACHE.DAT
2020-05-31 05:22 - 2013-07-25 20:43 - 000114512 _____ C:\Users\Usuario\AppData\Local\GDIPFONTCACHEV1.DAT
2020-05-31 02:21 - 2009-07-14 04:34 - 000458998 ____R C:\Windows\system32\Drivers\etc\hosts.20200601-124834.backup
2020-05-30 21:48 - 2018-12-10 00:50 - 000000000 ____D C:\Program Files\Malwarebytes
2020-05-30 21:18 - 2013-07-25 20:32 - 000001431 _____ C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2020-05-30 20:43 - 2009-07-14 04:34 - 000458998 ____R C:\Windows\system32\Drivers\etc\hosts.20200531-022139.backup
2020-05-30 20:41 - 2019-01-23 22:07 - 000000000 ____D C:\Users\Usuario\AppData\Local\Downloaded Installations
2020-05-30 19:45 - 2019-12-29 21:19 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\MPC-HC
2020-05-30 19:44 - 2012-08-22 09:35 - 000000000 ____D C:\Windows\pss
2020-05-30 11:50 - 2013-07-27 14:09 - 000000000 ____D C:\Users\Usuario\dwhelper
2020-05-29 11:08 - 2009-07-14 07:08 - 000032644 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2020-05-26 18:47 - 2013-07-26 13:00 - 000000000 ____D C:\Users\Usuario\AppData\Local\Adobe
2020-05-26 18:47 - 2013-07-26 11:09 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-05-26 18:47 - 2013-07-26 11:09 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-05-26 18:47 - 2013-07-26 11:09 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-05-26 18:47 - 2013-07-26 11:09 - 000000000 ____D C:\Windows\system32\Macromed
2020-05-18 13:24 - 2013-07-26 10:25 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-05-11 18:07 - 2020-05-09 12:12 - 000032320 _____ (FNet Co., Ltd.) C:\Windows\system32\Drivers\FNETTBOH_305.SYS
==================== Archivos en la raíz de algunos directorios ========
2020-05-09 09:32 - 2020-05-09 09:32 - 489039748 _____ () C:\Users\Usuario\Todo.reg
2019-01-11 00:22 - 2019-01-11 01:22 - 000007859 _____ () C:\Users\Usuario\AppData\Roaming\pcouffin.cat
2019-01-11 00:22 - 2019-01-11 01:22 - 000001167 _____ () C:\Users\Usuario\AppData\Roaming\pcouffin.inf
2019-01-11 00:22 - 2019-01-11 01:22 - 000000055 _____ () C:\Users\Usuario\AppData\Roaming\pcouffin.log
2019-10-12 21:52 - 2019-10-12 21:55 - 000004603 _____ () C:\Users\Usuario\AppData\Roaming\VoiceMeeterDefault.xml
2019-01-23 23:39 - 2019-01-23 23:39 - 000000001 _____ () C:\Users\Usuario\AppData\Local\llftool.4.40.agreement
2019-01-23 23:39 - 2019-01-23 23:39 - 000000019 _____ () C:\Users\Usuario\AppData\Local\llftool.license
2020-04-24 10:40 - 2020-04-24 10:40 - 000000762 _____ () C:\Users\Usuario\AppData\Local\recently-used.xbel
2014-08-12 11:15 - 2019-05-09 11:47 - 000007644 _____ () C:\Users\Usuario\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(No existe una corrección automática para los archivos que no pasan la verificación.)
LastRegBack: 2020-06-06 14:02
==================== Final de FRST.txt ========================