Hola Frica, como siempre muchas gracias por tu atencion…
Recien termine de scanear con el Fabar Recovery Scan Tool,
aca te paso los reportes:
“FRST”
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 25-11-2019 01
Ran by Usuario (administrator) on INTEL (Gigabyte Technology Co., Ltd. B85M-D3H) (27-11-2019 16:15:23)
Running from C:\Users\Usuario\Desktop
Loaded Profiles: Usuario (Available Profiles: Usuario)
Platform: Windows 8.1 Pro (Update) (X64) Language: Español (España, internacional)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Open Source Developer, Robin Krom -> Greenshot) C:\Program Files\Greenshot\Greenshot.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-04-11] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [316336 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1058400 2011-10-31] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-09-16] (Intel Corporation - Software and Firmware Products -> Intel Corporation)
HKU\S-1-5-21-1293975737-2474928184-2357679737-1005\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.) [File not signed]
HKU\S-1-5-21-1293975737-2474928184-2357679737-1005\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIIFE.EXE [283232 2014-12-04] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1293975737-2474928184-2357679737-1005\...\Run: [Greenshot] => C:\Program Files\Greenshot\Greenshot.exe [527792 2017-08-09] (Open Source Developer, Robin Krom -> Greenshot)
HKU\S-1-5-21-1293975737-2474928184-2357679737-1005\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [44016 2019-11-24] (Glarysoft LTD -> Glarysoft Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.108\Installer\chrmstp.exe [2019-11-21] (Google LLC -> Google LLC)
BootExecute: autocheck autochk *
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0684776D-F875-427C-8732-9FA001567797} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-23] (Google Inc -> Google Inc.)
Task: {0ECA6795-AA38-48F5-AC29-1EFC652780E0} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1905072 2019-09-18] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {2889A9FC-E8A7-4006-AF60-FF2D6F5968AA} - System32\Tasks\{71D4E0E0-C5F7-4EAC-B8CE-3B2AC5DF9EE7} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/7.1.0.105/es/abandoninstall?source=lightinstaller&page=tsPlugin
Task: {33309A85-CBD1-4501-84C3-4096D8258050} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-23] (Google Inc -> Google Inc.)
Task: {468084B5-E203-4D87-B30C-EE7F76F308E0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {4D037257-6C30-4D39-ABE5-F093BB03BB04} - System32\Tasks\{20818864-3B1E-4EB7-9C1F-D9CB89F4F4AB} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/7.6.0.105/es/abandoninstall?page=tsMain
Task: {87AFC13A-EB5F-4E20-AA95-B76E49C55FBA} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [3981232 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {89B45F9B-A2EA-4505-8A69-7440EF287AE4} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [916472 2019-11-24] (Glarysoft LTD -> Glarysoft Ltd)
Task: {9A4FC059-5B81-4548-AFD2-1127E4C00CDE} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-15] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {9B1CEB2D-B6FC-4D8C-BD14-8236DE3EA1B1} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {9BFC40F9-EDAF-413E-BC77-FAE708B87C36} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_192_pepper.exe [1452600 2019-05-14] (Adobe Inc. -> Adobe)
Task: {E94EE2A2-B010-43F6-ABFE-4F2668C54149} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-05-14] (Adobe Inc. -> Adobe)
Task: {FE4AAA91-D3F5-4DF8-B0B4-D1DCB10D88B8} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-15] (Piriform Software Ltd -> Piriform Ltd)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 100.72.3.5 100.72.3.109
Tcpip\..\Interfaces\{72A957A7-DDDF-437A-93C8-DC461A14990C}: [DhcpNameServer] 100.72.3.5 100.72.3.109
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2018-06-12] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2018-05-15] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2018-06-12] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2017-02-23] (Microsoft Corporation -> Microsoft Corporation)
DPF: HKLM-x32 {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} hxxp://quickscan.bitdefender.com/qsax/qsax.cab
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF HKU\S-1-5-21-1293975737-2474928184-2357679737-1005\...\Firefox\Extensions: [[email protected]] - C:\Users\Usuario\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => not found
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [No File]
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-04-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-04] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-04] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1293975737-2474928184-2357679737-1005: @acestream.net/acestreamplugin,version=3.1.20.2 -> C:\Users\Usuario\AppData\Roaming\ACEStream\player\npace_plugin.dll [No File]
FF Plugin HKU\S-1-5-21-1293975737-2474928184-2357679737-1005: @zoom.us/ZoomVideoPlugin -> C:\Users\Usuario\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2019-11-27] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
Chrome:
=======
CHR Profile: C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default [2019-11-27]
CHR DownloadDir: C:\Users\Usuario\Desktop
CHR Extension: (Google Drive) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-08-23]
CHR Extension: (YouTube) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-08-23]
CHR Extension: (Video Downloader PLUS) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhplmmllnpjjlncfjpbbpjadoeijkogc [2019-09-20]
CHR Extension: (Cablevisión Flow) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfbnbmbkemlokfckhdoaakhjogffkinc [2018-11-07]
CHR Extension: (AdBlock: el mejor bloqueador de anuncios) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-11-26]
CHR Extension: (Always Clear Downloads 2) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcajchndfkmnaefkhoaoiagemplbfffn [2019-06-02]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-16]
CHR Extension: (Chrome Media Router) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-10-24]
CHR HKLM-x32\...\Chrome\Extension: [bdlhpbalhdjobabgbacbgclpjjelainj]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [996928 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
S3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe [6133752 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
S3 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-12] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [355232 2015-08-09] (Intel Corporation - pGFX -> Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel® Trusted Connect Service -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6960640 2019-11-16] (Malwarebytes Inc -> Malwarebytes)
S2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [1050904 2013-12-11] (ByELDI Certificate -> ) [File not signed]
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-01-08] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 avgArDisk; C:\Windows\System32\drivers\avgArDisk.sys [37880 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [205600 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdriver.sys [275232 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\Windows\System32\drivers\avgbidsh.sys [210328 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\Windows\System32\drivers\avgbuniv.sys [65376 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\Windows\System32\drivers\avgKbd.sys [43512 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [171784 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [111096 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [84560 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [848688 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\Windows\System32\drivers\avgSP.sys [461216 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
S2 avgStm; C:\Windows\System32\drivers\avgStm.sys [236288 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [317304 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-12] (Broadcom Corporation -> Windows (R) Win 7 DDK provider)
R3 debutfilter; C:\Windows\system32\DRIVERS\debutfilterx64.sys [34512 2017-07-07] (NCH Software -> )
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [135520 2019-07-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [28936 2018-10-03] (Glarysoft LTD -> Glarysoft Ltd)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Research In Motion Limited)
S3 RimVSerPort; C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys [44544 2012-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Research in Motion Ltd)
R3 RTL8168; C:\Windows\system32\DRIVERS\Rt630x64.sys [591360 2013-06-18] (Microsoft Windows -> Realtek )
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [166752 2019-07-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2014-08-15] (Apple, Inc.) [File not signed]
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\Windows\System32\drivers\wdcsam64.sys [26880 2015-11-12] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
R3 XtuAcpiDriver; C:\Windows\System32\drivers\XtuAcpiDriver.sys [54344 2016-11-22] (Intel Corporation -> Intel Corporation)
S3 IntcAzAudAddService; \SystemRoot\system32\drivers\RTKVHD64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-11-27 16:15 - 2019-11-27 16:16 - 000021882 _____ C:\Users\Usuario\Desktop\FRST.txt
2019-11-27 16:12 - 2019-11-27 16:12 - 002262016 _____ (Farbar) C:\Users\Usuario\Desktop\FRST64.exe
2019-11-27 12:20 - 2019-11-27 12:20 - 000000019 _____ C:\Users\Usuario\Desktop\Facturar al Hotel.txt
2019-11-27 12:14 - 2019-11-27 12:14 - 000000043 _____ C:\Users\Usuario\Desktop\Pagar Movistar.txt
2019-11-27 12:13 - 2019-11-27 12:13 - 000000016 _____ C:\Users\Usuario\Desktop\Pagar Metrogas.txt
2019-11-27 08:53 - 2019-11-27 08:53 - 000001935 _____ C:\Users\Usuario\Desktop\Zoom.lnk
2019-11-27 08:53 - 2019-11-27 08:53 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2019-11-26 19:17 - 2019-11-26 19:17 - 000000014 _____ C:\Users\Usuario\Desktop\Plata a papa.txt
2019-11-26 11:36 - 2019-11-27 13:11 - 000000064 _____ C:\Users\Usuario\Desktop\Antes de viajar a Rio.txt
2019-11-23 10:56 - 2019-11-26 23:14 - 000000000 ____D C:\Users\Usuario\Desktop\Chusta
2019-11-22 13:02 - 2019-11-22 13:02 - 000000100 _____ C:\Users\Usuario\Desktop\TV Pública Argentina - YouTube.url
2019-11-19 15:17 - 2019-11-19 15:17 - 000004579 _____ C:\Users\Usuario\Desktop\uTorrent.lnk
2019-11-19 15:15 - 2017-10-01 23:01 - 000002245 _____ C:\Users\Usuario\Desktop\Popcorn-Time.lnk
2019-11-19 00:03 - 2019-11-19 00:03 - 000000072 _____ C:\Users\Usuario\Desktop\Equipo lento - Ayuda General - ForoSpyware.url
2019-11-16 14:55 - 2019-11-16 14:55 - 000000000 ____D C:\Users\Usuario\AppData\Local\mbamtray
2019-11-16 14:55 - 2019-11-16 14:55 - 000000000 ____D C:\Users\Usuario\AppData\Local\mbam
2019-11-11 15:49 - 2019-11-25 11:47 - 000000000 ____D C:\Users\Usuario\Desktop\Mediano plazo (hay otra en el AUDUSD)
2019-11-08 13:29 - 2019-11-08 13:29 - 000000000 ____D C:\Users\Usuario\Desktop\Pelicula Chichu
2019-11-08 08:05 - 2019-11-08 08:06 - 000000000 ____D C:\Users\Usuario\Desktop\Cosas para ver
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-11-27 16:16 - 2017-09-29 02:38 - 000000000 ____D C:\FRST
2019-11-27 16:09 - 2017-10-23 14:16 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\vlc
2019-11-27 16:02 - 2015-01-30 08:34 - 229686784 ___SH C:\Users\Usuario\Desktop\Thumbs.db
2019-11-27 16:01 - 2018-09-03 11:13 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2019-11-27 16:01 - 2018-08-23 13:09 - 000003472 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2019-11-27 16:01 - 2018-08-23 13:09 - 000003344 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2019-11-27 16:01 - 2018-04-28 06:02 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2019-11-27 16:01 - 2017-05-28 00:29 - 000004174 _____ C:\Windows\system32\Tasks\Antivirus Emergency Update
2019-11-27 16:01 - 2017-05-13 20:33 - 000002970 _____ C:\Windows\system32\Tasks\GU5SkipUAC
2019-11-27 16:01 - 2015-02-02 13:35 - 000002776 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2019-11-27 15:19 - 2017-07-11 14:13 - 000000000 ____D C:\FFOutput
2019-11-27 09:12 - 2015-01-27 05:25 - 000003600 _____ C:\Windows\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1293975737-2474928184-2357679737-1005
2019-11-27 08:53 - 2017-12-07 22:52 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\Zoom
2019-11-27 08:37 - 2015-01-27 05:31 - 000000000 __SHD C:\Users\Usuario\IntelGraphicsProfiles
2019-11-25 10:24 - 2017-05-13 21:46 - 000000000 ____D C:\Users\Usuario\Desktop\Limpieza
2019-11-25 10:18 - 2017-05-13 20:33 - 000001108 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2019-11-25 10:18 - 2017-05-13 20:33 - 000000000 ____D C:\Program Files (x86)\Glary Utilities 5
2019-11-24 11:11 - 2015-03-09 10:41 - 000000000 ____D C:\Users\Usuario\AppData\Local\JDownloader v2.0
2019-11-24 07:26 - 2013-08-22 11:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-11-24 07:26 - 2013-08-22 10:25 - 000262144 ___SH C:\Windows\system32\config\BBI
2019-11-23 11:25 - 2016-10-01 17:36 - 000000000 ____D C:\Users\Usuario\Desktop\Descargas
2019-11-22 03:08 - 2018-08-23 13:10 - 000002242 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-11-21 13:18 - 2015-02-25 08:34 - 000000000 ____D C:\Users\Usuario\Desktop\Peliculas
2019-11-21 02:01 - 2013-08-22 10:36 - 000000000 ____D C:\Windows\Inf
2019-11-20 21:32 - 2015-01-27 05:19 - 000000000 ____D C:\Users\Usuario\AppData\Local\Packages
2019-11-19 15:58 - 2017-07-23 00:13 - 000000000 ____D C:\Trading
2019-11-19 15:18 - 2019-08-27 15:43 - 000000000 ____D C:\Users\Usuario\AppData\LocalLow\uTorrent
2019-11-19 15:18 - 2016-03-01 15:35 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\uTorrent
2019-11-19 15:17 - 2019-06-25 16:29 - 000000000 ____D C:\Users\Usuario\AppData\Local\BitTorrentHelper
2019-11-19 15:15 - 2018-07-17 15:48 - 000000000 ____D C:\Users\Usuario\AppData\Local\CrashDumps
2019-11-19 15:15 - 2017-04-25 16:05 - 000000000 ____D C:\Program Files\KMSpico
2019-11-19 00:07 - 2015-01-28 12:30 - 000000000 ____D C:\Windows\Minidump
2019-11-16 14:54 - 2017-09-07 15:16 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2019-11-15 12:43 - 2019-10-21 23:42 - 000000000 ____D C:\Users\Usuario\Desktop\Itau problemas
2019-11-15 09:37 - 2015-02-06 09:51 - 000000000 ____D C:\Lucas
2019-11-15 09:37 - 2014-03-18 07:11 - 001835968 _____ C:\Windows\system32\PerfStringBackup.INI
2019-11-15 09:37 - 2014-03-18 06:31 - 000811848 _____ C:\Windows\system32\perfh00A.dat
2019-11-15 09:37 - 2014-03-18 06:31 - 000167582 _____ C:\Windows\system32\perfc00A.dat
2019-11-15 09:09 - 2015-01-27 05:19 - 000000000 ____D C:\Users\Usuario
2019-11-15 09:08 - 2017-11-12 14:59 - 000000000 ____D C:\Users\Usuario\AppData\Local\Greenshot
2019-11-14 15:25 - 2019-04-26 14:53 - 000000132 _____ C:\Users\Usuario\AppData\Roaming\Adobe PNG Format CS5 Prefs
2019-11-12 14:31 - 2019-09-25 13:18 - 000000031 _____ C:\Users\Usuario\Desktop\Transferencia Tumba.txt
2019-11-05 16:31 - 2015-03-03 20:03 - 000003976 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{8176D503-DD90-4275-A8F8-A4585DC17485}
2019-11-04 23:28 - 2015-01-27 05:23 - 000000000 ____D C:\Program Files (x86)\Google
==================== Files in the root of some directories ========
2017-07-30 15:13 - 2019-02-17 14:40 - 000000132 _____ () C:\Users\Usuario\AppData\Roaming\Adobe AIFF Format CS5 Prefs
2019-04-26 14:53 - 2019-11-14 15:25 - 000000132 _____ () C:\Users\Usuario\AppData\Roaming\Adobe PNG Format CS5 Prefs
2017-07-06 22:01 - 2017-07-06 22:03 - 000000096 _____ () C:\Users\Usuario\AppData\Roaming\Camdata.ini
2017-07-06 22:01 - 2017-07-06 22:03 - 000000408 _____ () C:\Users\Usuario\AppData\Roaming\CamLayout.ini
2017-07-06 22:01 - 2017-07-06 22:03 - 000000408 _____ () C:\Users\Usuario\AppData\Roaming\CamShapes.ini
2017-07-06 22:01 - 2017-07-06 22:03 - 000004509 _____ () C:\Users\Usuario\AppData\Roaming\CamStudio.cfg
2015-02-14 18:17 - 2015-02-14 18:17 - 000000053 _____ () C:\Users\Usuario\AppData\Roaming\LogFile.txt
2015-02-10 18:23 - 2015-02-15 14:02 - 000001155 _____ () C:\Users\Usuario\AppData\Roaming\Rim.Desktop.Exception.log
2015-02-10 18:22 - 2015-02-15 14:06 - 000005811 _____ () C:\Users\Usuario\AppData\Roaming\Rim.Desktop.HttpServerSetup.log
2015-02-10 18:23 - 2015-02-15 14:02 - 000001386 _____ () C:\Users\Usuario\AppData\Roaming\Rim.DesktopHelper.Exception.log
2015-08-02 16:03 - 2017-07-06 17:32 - 000000905 _____ () C:\Users\Usuario\AppData\Roaming\trace_FilterInstaller.1.txt
2015-08-02 16:03 - 2017-07-06 17:27 - 000001167 _____ () C:\Users\Usuario\AppData\Roaming\trace_FilterInstaller.2.txt
2015-08-02 16:03 - 2017-07-06 17:14 - 000001167 _____ () C:\Users\Usuario\AppData\Roaming\trace_FilterInstaller.3.txt
2015-08-02 16:03 - 2017-07-06 13:59 - 000000905 _____ () C:\Users\Usuario\AppData\Roaming\trace_FilterInstaller.4.txt
2015-08-02 16:03 - 2017-07-06 13:45 - 000001167 _____ () C:\Users\Usuario\AppData\Roaming\trace_FilterInstaller.5.txt
2015-08-02 16:03 - 2017-07-06 00:59 - 000000905 _____ () C:\Users\Usuario\AppData\Roaming\trace_FilterInstaller.6.txt
2015-08-02 16:03 - 2015-08-02 16:03 - 000001167 _____ () C:\Users\Usuario\AppData\Roaming\trace_FilterInstaller.7.txt
2015-08-02 16:03 - 2017-07-07 02:36 - 000001167 _____ () C:\Users\Usuario\AppData\Roaming\trace_FilterInstaller.txt
2015-08-02 16:03 - 2017-07-07 02:36 - 000000000 _____ () C:\Users\Usuario\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt
2016-06-17 17:32 - 2016-06-19 00:32 - 000000072 _____ () C:\Users\Usuario\AppData\Roaming\WB.CFG
2019-09-17 09:59 - 2019-09-17 09:59 - 000001456 _____ () C:\Users\Usuario\AppData\Local\Adobe Guardar para Web 11.0 Prefs
2015-02-14 17:03 - 2016-03-20 17:49 - 000007667 _____ () C:\Users\Usuario\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2019-11-25 11:54
==================== End of FRST.txt ========================