Les pego los del Farbar.
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 04-08-2019
Ran by gladys (administrator) on GLADYS-NOTE (SAMSUNG ELECTRONICS CO., LTD. R430/R480/R440) (04-08-2019 19:57:08)
Running from C:\Users\gladys\A PSICOLOGIA UBA\Downloads
Loaded Profiles: gladys (Available Profiles: gladys & Zoe)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Español (España, internacional)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Windows\System32\Rezip.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe
(Intel Corporation -> Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Nokia -> Nokia) C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe
(Nokia -> Nokia) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
(Nokia -> Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
(Nokia -> Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Samsung Electronics CO., LTD. -> SEC) [File not signed] C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe
(Samsung Electronics Co., Ltd.) [File not signed] C:\Program Files\Samsung\EasySpeedUpManager\EasySpeedUpManager.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [8120864 2009-12-14] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1713448 2010-02-26] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [UCam_Menu] => C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink -> CyberLink Corp.)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [225672 2019-04-09] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [DivXMediaServer] => C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [1058512 2018-12-17] (DivX, LLC. -> DivX, LLC)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2264253706-1617791975-327108488-1000\...\Run: [] => [X]
HKU\S-1-5-21-2264253706-1617791975-327108488-1000\...\Run: [NokiaSuite.exe] => C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe [1090912 2013-04-19] (Nokia -> Nokia)
HKU\S-1-5-21-2264253706-1617791975-327108488-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [16835256 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2264253706-1617791975-327108488-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\windows\system32\Ribbons.scr [220672 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-18\...\RunOnce: [SPReview] => "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"hxxp://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
HKLM\...\Drivers32: [vidc.DIVX] => C:\windows\system32\DivX.dll [720384 2010-02-19] (DivX, Inc.) [File not signed]
HKLM\...\Drivers32: [vidc.yv12] => C:\windows\system32\DivX.dll [720384 2010-02-19] (DivX, Inc.) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files\AVAST Software\Browser\Application\75.1.1528.100\Installer\chrmstp.exe [2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\75.0.3770.142\Installer\chrmstp.exe [2019-07-15] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll [2009-10-02] (Broadcom Corporation -> Broadcom Corporation.)
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2010-10-01]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation -> Broadcom Corporation.)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKU\S-1-5-21-2264253706-1617791975-327108488-1000\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0A35AB5C-2085-4805-A50E-D25364D49D9B} - System32\Tasks\DivXUpdate => C:\Program Files\Common Files\DivX Shared\DivX Update\DivXUpdate.exe [68568 2017-08-02] (DivX, LLC -> DivX, LLC)
Task: {15F6BA87-812E-4FCA-B19A-FCDDBE7A17FA} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfigAndContent
Task: {15F6BA87-812E-4FCA-B19A-FCDDBE7A17FA} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => Command(2): C:\windows\system32\GWX\GWXDetector.exe [288768 [2015-09-30]] (Microsoft Windows -> Microsoft Corporation)
Task: {196C7CE8-36DF-4CFF-804E-E92DF3162BE4} - System32\Tasks\{1D8C6E9F-395C-4D44-A01D-06DC3E09992D} => C:\windows\system32\pcalua.exe -a "F:\Adobecs4\Adobe CS4\payloads\AdobeAIR1.0\AdobeAIRInstaller.exe" -d "C:\Program Files\Common Files\Adobe\Installers\b2d6abde968e6f277ddbfd501383e02" -c -silent
Task: {1B95E805-2F0E-4031-A193-EC2D96D9530C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-08-27] (Google Inc -> Google Inc.)
Task: {1BA571F0-A298-4C36-BBA7-C4CE654091D1} - System32\Tasks\EasySpeedUpManager => C:\Program Files\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe [717312 2009-11-11] (Samsung Electronics Co., Ltd.) [File not signed]
Task: {1DEC4C1E-D206-4D13-A03E-F648B359EAB3} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig
Task: {1DEC4C1E-D206-4D13-A03E-F648B359EAB3} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(2): C:\windows\system32\GWX\GWXDetector.exe [288768 [2015-09-30]] (Microsoft Windows -> Microsoft Corporation)
Task: {24005E89-5FFA-43B1-80C1-1BA960EE3645} - System32\Tasks\BatteryLifeExtender => C:\Program Files\Samsung\BatteryLifeExtender\BatteryLifeExtender.exe [567976 2009-11-18] (Samsung Electronics CO., LTD. -> Samsung Electronics. Co. Ltd.) [File not signed]
Task: {2EA9D221-7386-401B-8855-41082C90AC85} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16835256 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {33C0B20F-84BD-40B1-AFF1-703DFEF2ED16} - System32\Tasks\{478D288D-D7EE-43D2-8CAB-330DB5C79F4B} => C:\windows\system32\pcalua.exe -a "C:\Users\gladys\Desktop\SetupNokiaMusic (1).exe" -d C:\Users\gladys\Desktop
Task: {35CD941B-16CE-4017-B20C-81C93D818F71} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {3B5D80E0-8FE9-402E-B05E-1E21E0C80E95} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\gladys\A PSICOLOGIA UBA\Downloads\ESETOnlineScanner_ESL.exe [7986200 2019-08-04] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {43758E3B-7B6B-4220-950F-58D37F289D24} - System32\Tasks\avastBCLRestart_chrome.exe => C:\Program Files\Google\Chrome\Application\chrome.exe
Task: {451E48EF-CF2F-4E6B-BE5D-CDF7E9AC5269} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1815792 2019-07-18] (AVAST Software s.r.o. -> AVAST Software)
Task: {48D9D809-A1EA-4B71-BCB0-5D982B669718} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1815792 2019-07-18] (AVAST Software s.r.o. -> AVAST Software)
Task: {4D32950C-FE5D-4E84-A786-667D07CB6BBB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-08-27] (Google Inc -> Google Inc.)
Task: {4F66E656-A488-44F1-B703-8C10BEEC8E82} - System32\Tasks\{C067BBDF-4430-4666-96A3-CF6BBC726F8F} => C:\Users\gladys\Desktop\Ares\Ares.exe
Task: {5FDBFEBB-B57B-4CB9-A9F1-B2A5E68A40B1} - System32\Tasks\{CA656F7D-908B-4BC1-A663-6883BA83AD9A} => C:\windows\system32\pcalua.exe -a C:\Users\gladys\Pictures\EBOOK\qxp93_win\QuickTime7.0\QuickTimeInstaller.exe -d C:\Users\gladys\Pictures\EBOOK\qxp93_win\QuickTime7.0
Task: {61AE4FE1-9640-4AB7-A5BB-7878C6B48CDA} - System32\Tasks\advSRS4 => C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe [2201192 2010-01-18] (Samsung Electronics CO., LTD. -> SEC) [File not signed]
Task: {63BA5781-FA0E-4F5D-ABFD-2A675CA2FE60} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {692BF630-43A5-48C4-A181-9135DF858F7D} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-03-21] (AVAST Software s.r.o. -> AVAST Software)
Task: {698F5641-9015-4CE1-8262-D0675DEB50C9} - System32\Tasks\Adobe Flash Player Updater => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-07-09] (Adobe Inc. -> Adobe)
Task: {7F423A2D-F186-4AD2-BB18-2D5B0C431A4D} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\windows\system32\Macromed\Flash\FlashUtil32_32_0_0_223_pepper.exe [1453112 2019-07-09] (Adobe Inc. -> Adobe)
Task: {845788B1-FB44-4F28-ADE3-16521A81884E} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\gladys\A PSICOLOGIA UBA\Downloads\ESETOnlineScanner_ESL.exe [7986200 2019-08-04] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {95F7BDBC-90B8-4688-A6F5-102B9F5F68CA} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\windows\system32\Macromed\Flash\FlashUtil32_32_0_0_223_Plugin.exe [1457208 2019-07-09] (Adobe Inc. -> Adobe)
Task: {9F06A1FB-8434-45C0-B096-3164CA8C956D} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-03-21] (AVAST Software s.r.o. -> AVAST Software)
Task: {A42614E7-990C-4BF3-9193-30DAA6776024} - System32\Tasks\Norton Security Scan for gladys => C:\Program Files\Norton Security Scan\Engine\2.7.3.34\Nss.exe [606072 2011-01-14] (Symantec Corporation -> Symantec Corporation)
Task: {A5EFDAA4-A6EE-4169-8FC0-747FBDB466A6} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2385800 2019-04-09] (AVAST Software s.r.o. -> AVAST Software)
Task: {CAAA295F-EC4E-4A85-9156-A2BFE5363FB7} - System32\Tasks\EasyBatteryManager => C:\Program Files\Samsung\EasyBatteryManager\EasyBatteryMgr4.exe [342016 2009-10-16] (SAMSUNG Electronics co., LTD.) [File not signed]
Task: {D6AA30D1-5F9A-4B72-BDAB-A04E57616214} - System32\Tasks\avastBCLRestartS-1-5-21-2264253706-1617791975-327108488-1000 => C:\Program Files\Google\Chrome\Application\chrome.exe
Task: {F3868549-8828-466C-961E-D9111FF542FB} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\avast software\overseer\overseer.exe [1693576 2019-07-30] (AVAST Software s.r.o. -> AVAST Software)
Task: {F71AEE59-8304-40A9-802E-A760E533219F} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig
Task: {F71AEE59-8304-40A9-802E-A760E533219F} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(2): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshContent
Task: {F71AEE59-8304-40A9-802E-A760E533219F} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(3): C:\windows\system32\GWX\GWXDetector.exe [288768 [2015-09-30]] (Microsoft Windows -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\windows\Tasks\Norton Security Scan for gladys.job => C:\Program Files\Norton Security Scan\Engine\2.7.3.34\Nss.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 186.130.128.250 186.130.129.250
Tcpip\..\Interfaces\{50DD5EFD-FA60-494D-8B8D-BC759745A428}: [DhcpNameServer] 186.130.128.250 186.130.129.250
Tcpip\..\Interfaces\{774C0D3B-376D-4EA8-B8CA-09469323D9A3}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2264253706-1617791975-327108488-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7SMSN
SearchScopes: HKU\.DEFAULT -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL =
SearchScopes: HKU\.DEFAULT -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
SearchScopes: HKU\S-1-5-21-2264253706-1617791975-327108488-1000 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7SMSN_es___AR398
BHO: No Name -> {0877c1fc-19c6-4fe2-8e3d-699d8edb2964} -> No File
BHO: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2013-08-01] (Oracle America, Inc. -> Oracle Corporation)
BHO: Aplicación auxiliar de inicio de sesión de Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-08-01] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKU\S-1-5-21-2264253706-1617791975-327108488-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKU\S-1-5-21-2264253706-1617791975-327108488-1000 -> No Name - {9C905B42-976E-43C1-BC30-FC5937017909} - No File
Toolbar: HKU\S-1-5-21-2264253706-1617791975-327108488-1000 -> Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation -> Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2007-06-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation -> Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe
FireFox:
========
FF ProfilePath: C:\Users\gladys\AppData\Roaming\Mozilla\Firefox\Profiles\c20ofsb0.default [2019-08-04]
FF Homepage: Mozilla\Firefox\Profiles\c20ofsb0.default -> hxxps://www.google.com/?bcutc=sp-006
FF NewTab: Mozilla\Firefox\Profiles\c20ofsb0.default -> about:newtab
FF Extension: (Firefox Synchronisation Extension) - C:\Users\gladys\AppData\Roaming\Mozilla\Firefox\Profiles\c20ofsb0.default\Extensions\[email protected] [2013-12-12] [Legacy] [not signed]
FF SearchPlugin: C:\Users\gladys\AppData\Roaming\Mozilla\Firefox\Profiles\c20ofsb0.default\searchplugins\avast-search.xml [2016-11-06]
FF SearchPlugin: C:\Users\gladys\AppData\Roaming\Mozilla\Firefox\Profiles\c20ofsb0.default\searchplugins\google-avast.xml [2018-12-18]
FF SearchPlugin: C:\Users\gladys\AppData\Roaming\Mozilla\Firefox\Profiles\c20ofsb0.default\searchplugins\yahoo-avast.xml [2016-03-15]
FF HKLM\...\Firefox\Extensions: [{6904342A-8307-11DF-A508-4AE2DFD72085}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa => not found
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Ginger\Mozilla\[email protected]
FF Extension: (Ginger - Grammar and Spell Checker) - C:\Program Files\Ginger\Mozilla\[email protected] [2014-03-17] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_32_0_0_223.dll [2019-07-09] (Adobe Inc. -> )
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll [2017-11-21] (DivX, LLC -> DivX, LLC)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google Inc -> Google)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Users\gladys\Picasa3\npPicasa3.dll [2014-01-06] (Google Inc -> Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.25.2 -> C:\windows\system32\npDeployJava1.dll [2013-08-01] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-08-01] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corporation -> Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2009-07-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @nokia.com/EnablerPlugin -> C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2013-04-19] (Nokia -> )
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin: @videolan.org/vlc,version=1.1.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2013-01-25] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin HKU\.DEFAULT: gingersoftware.com/gingerPlugin -> C:\Program Files\Ginger\GingerServices\GingerServicesProxy.dll [No File]
FF Plugin HKU\S-1-5-21-2264253706-1617791975-327108488-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\gladys\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2012-10-12] (Skype Technologies SA -> Skype Limited)
FF Plugin HKU\S-1-5-21-2264253706-1617791975-327108488-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\gladys\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2013-01-10] (Unity Technologies ApS -> Unity Technologies ApS)
StartMenuInternet: FIREFOX.EXE - C:\Program Files\Mozilla Firefox\firefox.exe
FF ExtraCheck: C:\Program Files\mozilla firefox\firefox.cfg [2013-06-18] <==== ATTENTION
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://www.google.com/?trackid=sp-006
CHR StartupUrls: Default -> "hxxps://www.google.com/?trackid=sp-006"
CHR DefaultSearchURL: Default -> hxxps://www.google.com/search?q={searchTerms}&trackid=sp-006
CHR DefaultSearchKeyword: Default -> google.com.ar
CHR DefaultSuggestURL: Default -> hxxps://www.google.com/complete/search?client=chrome&q={searchTerms}
CHR Profile: C:\Users\gladys\AppData\Local\Google\Chrome\User Data\Default [2019-08-04]
CHR Extension: (Avast Online Security) - C:\Users\gladys\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-07-10]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\gladys\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-04]
CHR Extension: (Chrome Media Router) - C:\Users\gladys\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-06-21]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 ABBYY.Licensing.FineReader.Professional.11.0; C:\Program Files\ABBYY FineReader 11\NetworkLicenseServer.exe [819976 2011-08-18] (ABBYY SOLUTIONS LIMITED -> ABBYY)
S3 Adobe Version Cue CS4; C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [284016 2008-08-15] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5398416 2019-04-09] (AVAST Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-03-21] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [317280 2019-04-09] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-03-21] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\75.1.1528.100\elevation_service.exe [978720 2019-07-18] (AVAST Software s.r.o. -> AVAST Software)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [5394136 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
R2 Rezip; C:\windows\SYSTEM32\Rezip.exe [311296 2009-03-05] () [File not signed]
S3 RichVideo; C:\Program Files\CyberLink\Shared files\RichVideo.exe [247152 2009-07-07] (CyberLink -> )
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\windows\System32\drivers\aswArDisk.sys [34720 2019-04-09] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\windows\System32\drivers\aswArPot.sys [172424 2019-04-09] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\windows\System32\drivers\aswbidsdriver.sys [220128 2019-04-09] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\windows\System32\drivers\aswbidsh.sys [158240 2019-04-09] (AVAST Software s.r.o. -> AVAST Software)
R0 aswblog; C:\windows\System32\drivers\aswblog.sys [255360 2019-04-09] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\windows\System32\drivers\aswbuniv.sys [51264 2019-04-09] (AVAST Software s.r.o. -> AVAST Software)
R1 aswHdsKe; C:\windows\System32\drivers\aswHdsKe.sys [194680 2019-04-09] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\windows\System32\drivers\aswKbd.sys [40904 2019-04-09] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\windows\System32\drivers\aswMonFlt.sys [138480 2019-04-09] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\windows\System32\drivers\aswRdr2.sys [101200 2019-04-09] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\windows\System32\drivers\aswRvrt.sys [73008 2019-04-09] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\windows\System32\drivers\aswSnx.sys [783232 2019-04-09] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\windows\System32\drivers\aswSP.sys [403408 2019-04-12] (AVAST Software s.r.o. -> AVAST Software)
S2 aswStm; C:\windows\System32\drivers\aswStm.sys [165464 2019-04-09] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\windows\System32\drivers\aswVmm.sys [312464 2019-04-17] (AVAST Software s.r.o. -> AVAST Software)
R3 athr; C:\windows\System32\DRIVERS\athr.sys [1245696 2009-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
R3 btusbflt; C:\windows\System32\drivers\btusbflt.sys [43944 2009-07-01] (Broadcom Corporation -> Broadcom Corporation.)
R3 btwaudio; C:\windows\System32\drivers\btwaudio.sys [86056 2009-10-02] (Broadcom Corporation -> Broadcom Corporation.)
R3 btwavdt; C:\windows\System32\drivers\btwavdt.sys [108072 2009-08-29] (Broadcom Corporation -> Broadcom Corporation.)
R3 btwl2cap; C:\windows\System32\DRIVERS\btwl2cap.sys [29472 2009-04-07] (Broadcom Corporation -> Broadcom Corporation.)
R3 btwrchid; C:\windows\System32\DRIVERS\btwrchid.sys [18472 2009-08-29] (Broadcom Corporation -> Broadcom Corporation.)
R1 ESProtectionDriver; C:\windows\system32\drivers\mbae.sys [128552 2019-01-08] (Malwarebytes Corporation -> Malwarebytes)
R2 MBAMChameleon; C:\windows\System32\Drivers\MbamChameleon.sys [173512 2019-08-01] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMFarflt; C:\windows\System32\DRIVERS\farflt.sys [190624 2019-08-04] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMProtection; C:\windows\system32\DRIVERS\mbam.sys [64296 2019-08-04] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\windows\System32\Drivers\mbamswissarmy.sys [241760 2019-08-04] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMWebProtection; C:\windows\System32\DRIVERS\mwac.sys [86768 2019-08-04] (Malwarebytes Corporation -> Malwarebytes)
S3 nmwcd; C:\windows\System32\drivers\ccdcmb.sys [18560 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 nmwcdc; C:\windows\System32\drivers\ccdcmbo.sys [23168 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 pccsmcfd; C:\windows\System32\DRIVERS\pccsmcfd.sys [19072 2012-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 RTL8167; C:\windows\System32\DRIVERS\Rt86win7.sys [139776 2009-07-13] (Microsoft Windows -> Realtek Corporation )
R1 SABI; C:\windows\system32\Drivers\SABI.sys [10752 2009-05-28] (Microsoft Windows Hardware Compatibility Publisher -> SAMSUNG ELECTRONICS)
S3 upperdev; C:\windows\System32\DRIVERS\usbser_lowerflt.sys [8192 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 UsbserFilt; C:\windows\System32\DRIVERS\usbser_lowerfltj.sys [8192 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R3 yukonw7; C:\windows\System32\DRIVERS\yk62x86.sys [315392 2009-09-28] (Microsoft Windows Hardware Compatibility Publisher -> )
S1 SASDIFSV; \??\C:\Users\gladys\Desktop\SASDIFSV.SYS [X]
S1 SASKUTIL; \??\C:\Users\gladys\Desktop\SASKUTIL.SYS [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-08-04 19:59 - 2019-08-04 19:59 - 000000679 _____ C:\Users\gladys\Gladys - Acceso directo (2).lnk
2019-08-04 19:56 - 2019-08-04 19:57 - 000000000 ____D C:\FRST
2019-08-04 19:28 - 2019-08-04 19:29 - 000000000 ____D C:\KVRT_Data
2019-08-04 16:27 - 2019-08-04 16:27 - 000001083 _____ C:\Users\gladys\Desktop\ESET Online Scanner.lnk
2019-08-04 16:26 - 2019-08-04 16:26 - 000000000 ____D C:\Users\gladys\AppData\Local\ESET
2019-08-04 16:19 - 2019-08-04 16:19 - 000064296 _____ (Malwarebytes) C:\windows\system32\Drivers\mbam.sys
2019-08-04 16:18 - 2019-08-04 16:18 - 000190624 _____ (Malwarebytes) C:\windows\system32\Drivers\farflt.sys
2019-08-04 16:18 - 2019-08-04 16:18 - 000086768 _____ (Malwarebytes) C:\windows\system32\Drivers\mwac.sys
2019-08-04 16:14 - 2019-08-04 16:14 - 000241760 _____ (Malwarebytes) C:\windows\system32\Drivers\mbamswissarmy.sys
2019-08-01 10:11 - 2019-08-01 10:13 - 000080836 _____ C:\windows\ntbtlog.txt
2019-07-29 18:35 - 2019-07-29 18:54 - 000000000 ____D C:\Users\gladys\AppData\Roaming\ZHP
2019-07-29 18:35 - 2019-07-29 18:35 - 000000834 _____ C:\Users\gladys\Desktop\ZHPCleaner.lnk
2019-07-29 18:35 - 2019-07-29 18:35 - 000000000 ____D C:\Users\gladys\AppData\Local\ZHP
2019-07-29 18:14 - 2019-07-29 18:18 - 000000000 ____D C:\AdwCleaner
2019-07-29 16:48 - 2019-08-01 10:13 - 000173512 _____ (Malwarebytes) C:\windows\system32\Drivers\MbamChameleon.sys
2019-07-29 16:48 - 2019-07-29 16:48 - 000000000 ____D C:\Users\gladys\AppData\Local\mbamtray
2019-07-29 16:48 - 2019-07-29 16:48 - 000000000 ____D C:\Users\gladys\AppData\Local\mbam
2019-07-29 16:47 - 2019-07-29 16:47 - 000001980 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-07-29 16:47 - 2019-07-29 16:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-07-29 16:47 - 2019-07-29 16:47 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-07-29 16:47 - 2019-07-29 16:47 - 000000000 ____D C:\Program Files\Malwarebytes
2019-07-29 16:47 - 2019-01-08 16:32 - 000128552 _____ (Malwarebytes) C:\windows\system32\Drivers\mbae.sys
2019-07-29 16:41 - 2019-07-29 16:41 - 003072896 _____ (Nicolas Coolman) C:\Users\gladys\Desktop\ZHPCleaner.exe
2019-07-29 16:39 - 2019-07-29 16:40 - 007623880 _____ (Malwarebytes) C:\Users\gladys\Desktop\adwcleaner_7.4.exe
2019-07-29 16:38 - 2019-07-29 16:38 - 000020769 _____ C:\Users\gladys\Desktop\descarga.htm
2019-07-29 16:35 - 2019-07-29 16:35 - 064756040 _____ (Malwarebytes ) C:\Users\gladys\Desktop\mb3-setup-consumer-3.8.3.2965-1.0.613-1.0.11752.exe
2019-07-16 17:05 - 2019-07-23 10:33 - 000000000 ____D C:\Users\gladys\DOCENCIA
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-08-04 19:59 - 2010-10-01 08:59 - 000000000 ____D C:\Users\gladys
2019-08-04 18:13 - 2012-12-09 18:54 - 000000000 ____D C:\Users\gladys\QUARK
2019-08-04 18:04 - 2012-12-27 20:32 - 000000000 ____D C:\Users\gladys\Desktop\TODO
2019-08-04 16:29 - 2009-07-14 01:34 - 000023552 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-08-04 16:29 - 2009-07-14 01:34 - 000023552 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-08-04 16:23 - 2011-01-14 20:26 - 000000476 ____H C:\windows\Tasks\Norton Security Scan for gladys.job
2019-08-04 16:19 - 2018-03-21 08:30 - 000000000 ____D C:\Users\gladys\AppData\Local\AVAST Software
2019-08-04 16:14 - 2009-07-14 01:53 - 000000006 ____H C:\windows\Tasks\SA.DAT
2019-08-03 11:33 - 2013-03-26 10:29 - 001577984 ___SH C:\Users\gladys\Thumbs.db
2019-08-02 10:07 - 2018-11-06 13:19 - 000000000 ____D C:\Users\gladys\ZOE PSICO UBA
2019-08-01 10:12 - 2011-06-05 20:30 - 001464832 ___SH C:\Users\gladys\Desktop\Thumbs.db
2019-07-29 22:57 - 2016-05-12 18:46 - 000000000 ____D C:\Users\gladys\Desktop\TRABAJOS ZOE
2019-07-29 19:24 - 2009-07-13 23:37 - 000000000 ____D C:\windows\inf
2019-07-29 18:19 - 2018-03-25 16:35 - 000000000 ____D C:\Program Files\Lavasoft
2019-07-29 18:19 - 2018-03-25 16:34 - 000000000 ____D C:\ProgramData\Lavasoft
2019-07-29 18:19 - 2010-04-07 05:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
2019-07-29 18:19 - 2010-04-07 05:59 - 000000000 ____D C:\Program Files\Samsung
2019-07-29 18:08 - 2010-10-01 09:19 - 000001397 _____ C:\Users\gladys\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2019-07-29 18:07 - 2013-08-24 11:31 - 000002134 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-07-29 17:54 - 2013-06-06 13:31 - 000000000 ____D C:\windows\pss
2019-07-29 16:45 - 2016-01-16 12:45 - 000000000 ____D C:\Users\gladys\AppData\Roaming\uTorrent
2019-07-29 16:33 - 2013-10-11 14:33 - 000000925 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-07-29 16:25 - 2019-03-29 10:53 - 000000000 ____D C:\Users\gladys\AppData\Local\BitTorrentHelper
2019-07-29 11:35 - 2018-10-02 12:09 - 000000000 ____D C:\Users\gladys\A A INDESIGN CS4
2019-07-28 15:36 - 2010-04-07 22:39 - 000747986 _____ C:\windows\system32\perfh00A.dat
2019-07-28 15:36 - 2010-04-07 22:39 - 000159426 _____ C:\windows\system32\perfc00A.dat
2019-07-28 15:36 - 2009-07-26 17:06 - 001678290 _____ C:\windows\system32\PerfStringBackup.INI
2019-07-28 15:31 - 2016-12-18 18:33 - 000000000 ____D C:\Users\gladys\A ARTES ESCRITURA
2019-07-28 14:18 - 2019-02-18 19:18 - 000000000 ____D C:\Users\gladys\CUENTOS GLA 2019
2019-07-27 09:58 - 2016-07-07 21:11 - 000000000 ____D C:\Users\gladys\GLADYS CV
2019-07-24 15:46 - 2018-03-21 08:38 - 000002333 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2019-07-24 15:46 - 2018-03-21 08:38 - 000002290 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2019-07-20 10:05 - 2019-05-09 15:08 - 000000000 ____D C:\Users\gladys\SIBILA
2019-07-16 10:54 - 2010-10-01 09:46 - 000000000 ____D C:\Users\gladys\AppData\Roaming\Google
2019-07-11 13:28 - 2017-12-05 16:10 - 000000000 ____D C:\Users\gladys\AppData\LocalLow\Mozilla
2019-07-09 20:46 - 2013-06-06 13:15 - 000842296 _____ (Adobe) C:\windows\system32\FlashPlayerApp.exe
2019-07-09 20:46 - 2013-06-06 13:15 - 000175160 _____ (Adobe) C:\windows\system32\FlashPlayerCPLApp.cpl
2019-07-09 20:46 - 2010-04-07 05:59 - 000000000 ____D C:\windows\system32\Macromed
==================== Files in the root of some directories ================
2014-08-02 12:29 - 2014-08-02 12:29 - 000021288 _____ () C:\Users\gladys\cc_20140802_122925.reg
2013-10-12 16:02 - 2013-10-12 16:02 - 050053120 _____ () C:\Program Files\GUTE37C.tmp
2011-08-18 23:39 - 2015-11-15 16:35 - 000018432 _____ () C:\Users\gladys\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-06-17 19:53 - 2011-06-17 19:53 - 000000000 _____ () C:\Users\gladys\AppData\Local\{EF33A113-69D3-42B7-B9DE-C022A33665B9}
==================== SigCheck ===============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2019-08-03 11:04
==================== End of FRST.txt ============================