Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 15-07-2019 01
Ran by Daniel Pérez (administrator) on DANIEL_PÉREZ (SAMSUNG ELECTRONICS CO., LTD. R520/R522/R620) (17-07-2019 19:55:41)
Running from C:\Users\Daniel Pérez\Desktop
Loaded Profiles: Daniel Pérez (Available Profiles: Daniel Pérez)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Español (España, internacional)
Internet Explorer Version 11 (Default browser not detected!)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Windows\System32\Rezip.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems, Incorporated -> Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ArcSoft, Inc. -> ArcSoft, Inc.) C:\Program Files\Common Files\ArcSoft\esinter\Bin\eservutil.exe
(ATI Technologies Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Corel Corporation -> Mindjet) C:\Program Files\Mindjet\MindManager 18\MmReminderService.exe
(McAfee, LLC -> McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> LSI Corporation) C:\Program Files\LSI SoftModem\agrsmsvc.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Photodex Corporation -> ) C:\Program Files\Photodex\ProShowProducer\scsiaccess.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Samsung Electronics Co., Ltd.) [File not signed] C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe
(Samsung Electronics Co., Ltd.) [File not signed] C:\Program Files\Samsung\EasySpeedUpManager\EasySpeedUpManager.exe
(SAMSUNG Electronics) [File not signed] C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe
(Sony Corporation -> Sony Corporation) C:\Program Files\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
(Sony Corporation -> Sony Corporation) C:\Program Files\Sony\PlayMemories Home\PMBVolumeWatcher.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-09-01] (Advanced Micro Devices, Inc.) [File not signed]
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [7744032 2009-09-29] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1541416 2009-07-15] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696 2009-02-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [UCam_Menu] => C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [218408 2009-02-25] (CyberLink -> CyberLink Corp.)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1002984 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [AdobeCS4ServiceManager] => C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [611712 2008-08-14] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [PMBVolumeWatcher] => C:\Program Files\Sony\PlayMemories Home\PMBVolumeWatcher.exe [740888 2013-04-24] (Sony Corporation -> Sony Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-01-07] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Acrobat Assistant 8.0] => C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3500056 2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Run: [MMReminderService] => C:\Program Files\Mindjet\MindManager 18\MMReminderService.exe [120008 2017-12-21] (Corel Corporation -> Mindjet)
HKU\S-1-5-18\...\RunOnce: [SPReview] => "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"hxxp://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
HKLM\...\Drivers32: [VIDC.LAGS] => C:\windows\system32\lagarith.dll [216064 2011-12-07] ( ) [File not signed]
HKLM\...\Drivers32: [VIDC.X264] => C:\windows\system32\x264vfw.dll [3613696 2016-05-08] (x264vfw project) [File not signed]
HKLM\...\Drivers32: [VIDC.XVID] => C:\windows\system32\xvidvfw.dll [180224 2009-06-07] () [File not signed]
HKLM\...\Drivers32: [VIDC.FFDS] => C:\windows\system32\ff_vfw.dll [112128 2015-10-24] () [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\windows\system32\ac3acm.acm [122880 2012-07-21] (fccHandler) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] ->
HKLM\Software\Microsoft\Active Setup\Installed Components: [{90EF4A5E-85DB-4825-96F5-1AB93C2A8EEB}] -> C:\Program Files\Mindjet\MindManager 18\sys\MmInternetExplorerActiveSetup.vbs [2016-02-25] () [File not signed]
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1493DAD3-A907-4D3F-B011-8D88A126E820} - System32\Tasks\EasyBatteryManager => C:\Program Files\Samsung\EasyBatteryManager\EasyBatteryMgr4.exe [342016 2009-08-01] (SAMSUNG Electronics co., LTD.) [File not signed]
Task: {1C632F72-12F8-483B-92C6-FE19350280A0} - System32\Tasks\BatteryLifeExtender => C:\Program Files\Samsung\BatteryLifeExtender\BatteryLifeExtender.exe [562176 2009-09-21] (Samsung Electronics. Co. Ltd.) [File not signed]
Task: {2DA7F283-D48F-482D-9B75-EDDC32FB5273} - System32\Tasks\EasyDisplayMgr => C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe [834560 2009-09-12] (Samsung Electronics Co., Ltd.) [File not signed]
Task: {3033BA49-FA11-4373-BF13-B97226D3ECE1} - System32\Tasks\klcp_update => C:\Program Files\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1179648 2016-08-01] () [File not signed]
Task: {336A6B9A-83FB-4C4A-8799-D3FD66B01B2B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: {3C43F1DA-9B66-4AF6-9061-90041BCD65A0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: {46B8DD58-9D66-4E34-813D-4FA67C2D3A9C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [282800 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {558CB583-4F98-4629-9803-CBA10756AE6B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [282800 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {6D5B184F-40A1-4D0A-AD22-8089179F8801} - System32\Tasks\EasySpeedUpManager => C:\Program Files\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe [716800 2009-08-23] (Samsung Electronics Co., Ltd.) [File not signed]
Task: {6E9F8C2F-CC68-4683-A583-46AE5D5F5E1E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [6851288 2016-07-13] (Piriform Ltd -> Piriform Ltd)
Task: {8D6FBEF3-F527-4D2D-91E0-958C11CDC8F4} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\windows\system32\Macromed\Flash\FlashUtil32_32_0_0_223_Plugin.exe [1457208 2019-07-09] (Adobe Inc. -> Adobe)
Task: {A0E752A4-208A-4920-8E6F-F61393E1434D} - System32\Tasks\NIUpdateServiceStartupTask => C:\Program Files\National Instruments\Shared\Update Service\NIUpdateService.exe
Task: {A3DA7842-BE5C-468A-A444-D8C17ABE0C73} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => C:\Program Files\Microsoft Security Client\\MpCmdRun.exe [345824 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {AA125122-3288-429E-B8D7-080D6B891CEC} - System32\Tasks\MindManagerV18 Notifications Check {S-1-5-21-604524677-2708395862-3557633927-1000} => rundll32.exe "C:\Program Files\Mindjet\MindManager 18\MmProductNotifications.dll",_InvokeNotificationsShellable@16
Task: {AE32CA0C-3A88-4700-8CC1-3EF5C43776C0} - System32\Tasks\advSRS4 => C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe [2242048 2009-08-06] (SEC) [File not signed]
Task: {B393BF18-39D1-4242-9042-2F7D2F9F79CB} - System32\Tasks\AdobeGCInvoker-1.0-Daniel_Pérez-Daniel Pérez => C:\Program Files\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {C120FB33-E0D5-421A-B349-3DF06B106CCE} - System32\Tasks\SamsungSupportCenter => C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe [93184 2009-09-07] (SAMSUNG Electronics) [File not signed]
Task: {E99DF494-528C-47AA-B0A3-E7926DB46D79} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1190424 2018-08-14] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {F72A0E51-1A17-46A5-8C23-C61D72D35B56} - System32\Tasks\SUPBackground => C:\Program Files\Samsung\Samsung Update Plus\SUPBackground.exe [300912 2010-04-20] (Samsung Electronics CO., LTD. -> )
Task: {F7BBDD59-1369-4621-9A3A-3AE129919B16} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\windows\system32\Macromed\Flash\FlashUtil32_32_0_0_207_pepper.exe [1452600 2019-07-01] (Adobe Inc. -> Adobe)
Task: {FFA2EB2B-0757-4CF3-9E50-EF2E6F6CD66E} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1051864 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 212.231.6.7 46.6.113.34
Tcpip\..\Interfaces\{085B1A10-FF20-4EDE-B024-CABC28A502D3}: [DhcpNameServer] 212.231.6.7 46.6.113.34
Tcpip\..\Interfaces\{E58BB2ED-5D4F-48B8-BDEF-07796768A5B4}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{EDA5422D-6BA7-4D24-8051-7F8FA8A3FBAA}: [DhcpNameServer] 212.231.6.7 46.6.113.34
Internet Explorer:
==================
HKU\S-1-5-21-604524677-2708395862-3557633927-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.es/
HKU\S-1-5-21-604524677-2708395862-3557633927-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=smsn&bmod=smsn
SearchScopes: HKLM -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
SearchScopes: HKLM -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
SearchScopes: HKU\S-1-5-21-604524677-2708395862-3557633927-1000 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL =
SearchScopes: HKU\S-1-5-21-604524677-2708395862-3557633927-1000 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL =
SearchScopes: HKU\S-1-5-21-604524677-2708395862-3557633927-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
BHO: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
BHO: CmjBrowserHelperObject Object -> {6FE6A929-59D1-4763-91AD-29B61CFFB35B} -> No File
BHO: Windows Live Aplicación auxiliar de inicio de sesión -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation -> Microsoft Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2017-03-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2019-07-13] (McAfee, LLC -> McAfee, Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2017-03-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2017-03-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-604524677-2708395862-3557633927-1000 -> Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2017-03-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_211-windows-i586.cab
DPF: {CAFEEFAC-0018-0000-00211-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_211-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_211-windows-i586.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation -> Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2017-08-15] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF DefaultProfile: 2k7ela1d.default
FF ProfilePath: C:\Users\Daniel Pérez\AppData\Roaming\Mozilla\Firefox\Profiles\2k7ela1d.default [2019-07-17]
FF Homepage: Mozilla\Firefox\Profiles\2k7ela1d.default -> hxxps://www.google.es/
FF Extension: (Copy Link Text) - C:\Users\Daniel Pérez\AppData\Roaming\Mozilla\Firefox\Profiles\2k7ela1d.default\Extensions\[email protected] [2016-08-26] [Legacy]
FF Extension: (Hotspot Shield Free VPN Proxy – Unblock Sites) - C:\Users\Daniel Pérez\AppData\Roaming\Mozilla\Firefox\Profiles\2k7ela1d.default\Extensions\[email protected] [2016-11-10] [Legacy]
FF Extension: (MyJDownloader Browser Extension) - C:\Users\Daniel Pérez\AppData\Roaming\Mozilla\Firefox\Profiles\2k7ela1d.default\Extensions\[email protected] [2018-12-07] [UpdateUrl:hxxps://my.jdownloader.org/extensions/firefox.json]
FF Extension: (FlashGot) - C:\Users\Daniel Pérez\AppData\Roaming\Mozilla\Firefox\Profiles\2k7ela1d.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2016-12-01] [Legacy]
FF Extension: (NoScript) - C:\Users\Daniel Pérez\AppData\Roaming\Mozilla\Firefox\Profiles\2k7ela1d.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2018-03-26] [Legacy]
FF Extension: (Web of Trust) - C:\Users\Daniel Pérez\AppData\Roaming\Mozilla\Firefox\Profiles\2k7ela1d.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}.xpi [2019-07-17]
FF Extension: (Video DownloadHelper) - C:\Users\Daniel Pérez\AppData\Roaming\Mozilla\Firefox\Profiles\2k7ela1d.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2017-05-09] [Legacy]
FF Extension: (Adblock Plus) - C:\Users\Daniel Pérez\AppData\Roaming\Mozilla\Firefox\Profiles\2k7ela1d.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-24] [Legacy]
FF Extension: (DownThemAll!) - C:\Users\Daniel Pérez\AppData\Roaming\Mozilla\Firefox\Profiles\2k7ela1d.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2016-09-30] [Legacy]
FF Extension: (Adblocker for Youtube™) - C:\Program Files\Mozilla Firefox\browser\features\{E55C9A17-39B3-4F0A-9546-2E85FE620BE8}.xpi [2019-07-16] [Legacy] [not signed]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2017-11-01]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2019-07-13]
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_32_0_0_223.dll [2019-07-09] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-05-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-05-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2009-07-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @photodex.com/PhotodexPresenter -> C:\Program Files\Photodex Presenter\npPxPlay.dll [2016-09-04] ( ) [File not signed]
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems Incorporated -> Adobe Systems)
Chrome:
=======
CHR HomePage: Default -> inline.go.mail.ru
CHR StartupUrls: Default -> "hxxps://mail.ru/cnt/10445?gp=811570"
CHR DefaultSearchURL: Default -> hxxps://go.mail.ru/distib/ep/?q={searchTerms}&fr=ntg&product_id=%7B3C6A8B7A-CDE0-46F1-9FBB-292C21A38327%7D&gp=811570
CHR DefaultSearchKeyword: Default -> go.mail.ru
CHR DefaultSuggestURL: Default -> hxxps://suggests.go.mail.ru/chrome?q={searchTerms}
CHR Profile: C:\Users\Daniel Pérez\AppData\Local\Google\Chrome\User Data\Default [2019-07-17]
CHR Extension: (Presentaciones) - C:\Users\Daniel Pérez\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-16]
CHR Extension: (Documentos) - C:\Users\Daniel Pérez\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-16]
CHR Extension: (Google Drive) - C:\Users\Daniel Pérez\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-19]
CHR Extension: (Video Downloader professional) - C:\Users\Daniel Pérez\AppData\Local\Google\Chrome\User Data\Default\Extensions\bacakpdjpomjaelpkpkabmedhkoongbi [2019-06-10]
CHR Extension: (YouTube) - C:\Users\Daniel Pérez\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-09-15]
CHR Extension: (Video Downloader professional) - C:\Users\Daniel Pérez\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2019-04-12]
CHR Extension: (MyJDownloader Browser Extension) - C:\Users\Daniel Pérez\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip [2018-11-08]
CHR Extension: (Hojas de cálculo) - C:\Users\Daniel Pérez\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-16]
CHR Extension: (Audio Downloader Prime) - C:\Users\Daniel Pérez\AppData\Local\Google\Chrome\User Data\Default\Extensions\flainkeonkoanoijnkojmiiihnfdhipd [2019-04-28]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Daniel Pérez\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-17]
CHR Extension: (AdBlock) - C:\Users\Daniel Pérez\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-07-08]
CHR Extension: (Copy Link Address) - C:\Users\Daniel Pérez\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdejdkdjdoabfihpcjmgjebcpfbhepmh [2017-12-07]
CHR Extension: (Screencastify - Screen Video Recorder) - C:\Users\Daniel Pérez\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmeijimgabbpbgpdklnllpncmdofkcpn [2019-07-08]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Daniel Pérez\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Gmail) - C:\Users\Daniel Pérez\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-16]
CHR Extension: (Chrome Media Router) - C:\Users\Daniel Pérez\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-06-20]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2017-11-01]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ADExchange; C:\Program Files\Common Files\ArcSoft\esinter\Bin\eservutil.exe [43624 2012-08-14] (ArcSoft, Inc. -> ArcSoft, Inc.)
R2 AgereModemAudio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [14336 2009-03-28] (Microsoft Windows Hardware Compatibility Publisher -> LSI Corporation)
R2 AGMService; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGMService.exe [3117648 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe [2888272 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AMD External Events Utility; C:\windows\system32\atiesrxx.exe [172032 2009-09-02] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [81280 2019-07-02] (Mixbyte Inc -> Freemake)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [5394136 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [680024 2019-07-13] (McAfee, LLC -> McAfee, Inc.)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [103696 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
S3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [280864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
R2 PMBDeviceInfoProvider; C:\Program Files\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [483864 2013-04-24] (Sony Corporation -> Sony Corporation)
R2 Rezip; C:\windows\SYSTEM32\Rezip.exe [311296 2009-03-05] () [File not signed]
R2 ScsiAccess; C:\Program Files\Photodex\ProShowProducer\ScsiAccess.exe [186760 2016-09-04] (Photodex Corporation -> )
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
S2 HuaweiHiSuiteService.exe; "C:\Program Files\HiSuite\HandSetService\HuaweiHiSuiteService.exe" -/service [X]
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AgereSoftModem; C:\windows\System32\DRIVERS\AGRSM.sys [1161760 2009-07-22] (Microsoft Windows Hardware Compatibility Publisher -> LSI Corporation)
R3 athr; C:\windows\System32\DRIVERS\athr.sys [2228224 2011-12-13] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
R3 AtiHDAudioService; C:\windows\System32\drivers\AtihdW73.sys [87568 2016-03-01] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 atikmdag; C:\windows\System32\DRIVERS\atikmdag.sys [5173760 2009-09-02] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.)
S3 dg_ssudbus; C:\windows\System32\DRIVERS\ssudbus.sys [109456 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ew_usbccgpfilter; C:\windows\System32\DRIVERS\ew_usbccgpfilter.sys [15360 2017-07-26] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R2 Hardlock; C:\windows\system32\drivers\hardlock.sys [676864 2004-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Aladdin Knowledge Systems)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [102272 2017-07-26] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R2 MBAMChameleon; C:\windows\System32\Drivers\MbamChameleon.sys [173512 2019-07-17] (Malwarebytes Corporation -> Malwarebytes)
R0 MpFilter; C:\windows\System32\DRIVERS\MpFilter.sys [252808 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
S3 RTL8167; C:\windows\System32\DRIVERS\Rt86win7.sys [139776 2009-07-14] (Microsoft Windows -> Realtek Corporation )
R1 SABI; C:\windows\system32\Drivers\SABI.sys [10752 2009-05-28] (Microsoft Windows Hardware Compatibility Publisher -> SAMSUNG ELECTRONICS)
S3 ssudmdm; C:\windows\System32\DRIVERS\ssudmdm.sys [147344 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 VMC326; C:\windows\System32\Drivers\VMC326.sys [237696 2009-08-10] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro Corporation)
R3 yukonw7; C:\windows\System32\DRIVERS\yk62x86.sys [315392 2009-09-28] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 ALSysIO; \??\C:\Users\DANIEL~1\AppData\Local\Temp\ALSysIO.sys [X] <==== ATTENTION
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-07-17 19:55 - 2019-07-17 19:56 - 000028585 _____ C:\Users\Daniel Pérez\Desktop\FRST.txt
2019-07-17 19:54 - 2019-07-17 19:54 - 001446912 _____ (Farbar) C:\Users\Daniel Pérez\Desktop\FRST.exe
2019-07-17 18:19 - 2019-07-17 18:19 - 000001917 _____ C:\Users\Daniel Pérez\Desktop\AdwCleaner[C04].txt
2019-07-17 18:19 - 2019-07-17 18:19 - 000001769 _____ C:\Users\Daniel Pérez\Desktop\AdwCleaner[S04].txt
2019-07-17 18:06 - 2019-07-17 18:06 - 000000142 _____ C:\Users\Daniel Pérez\Desktop\problema.url
2019-07-17 17:41 - 2019-07-17 17:41 - 000001154 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2019-07-17 17:41 - 2019-07-17 17:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2019-07-17 17:41 - 2019-07-17 17:41 - 000000000 ____D C:\Program Files\VS Revo Group
2019-07-17 17:31 - 2019-07-17 19:55 - 000000000 ____D C:\FRST
2019-07-17 17:15 - 2019-07-17 17:16 - 000000000 ____D C:\AdwCleaner
2019-07-17 17:06 - 2019-07-17 17:06 - 007025360 _____ (Malwarebytes) C:\Users\Daniel Pérez\Desktop\adwcleaner_7.3.exe
2019-07-17 17:03 - 2019-07-17 17:03 - 000000166 _____ C:\Users\Daniel Pérez\Desktop\Forospyware.url
2019-07-17 17:01 - 2019-07-17 17:01 - 000173512 _____ (Malwarebytes) C:\windows\system32\Drivers\MbamChameleon.sys
2019-07-17 17:01 - 2019-07-17 17:01 - 000001987 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-07-17 17:01 - 2019-07-17 17:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-07-17 17:01 - 2019-01-08 16:32 - 000128552 _____ (Malwarebytes) C:\windows\system32\Drivers\mbae.sys
2019-07-17 16:06 - 2019-07-17 18:16 - 000003506 _____ C:\Users\Daniel Pérez\Desktop\mwb.txt
2019-07-16 18:49 - 2019-07-16 18:55 - 000000000 ____D C:\Users\Daniel Pérez\AppData\Roaming\Snetchball
2019-07-16 18:49 - 2019-07-16 18:49 - 000000000 ____D C:\ProgramData\Mail.Ru
2019-07-07 11:50 - 2019-07-07 11:55 - 000000000 ____D C:\Program Files\Freemake
2019-07-07 11:45 - 2019-07-07 11:45 - 000000000 ____D C:\Users\Daniel Pérez\AppData\Roaming\Anvsoft
2019-07-07 11:44 - 2019-07-07 11:44 - 000000000 ____D C:\Program Files\McAfee
2019-07-06 11:06 - 2019-07-14 13:05 - 000000000 ____D C:\Users\Daniel Pérez\Desktop\Ballenas
2019-06-23 19:14 - 2019-06-16 19:54 - 000348976 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2019-06-23 19:14 - 2019-06-14 18:07 - 020276224 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2019-06-23 19:14 - 2019-06-14 17:55 - 002724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2019-06-23 19:14 - 2019-06-14 17:55 - 000004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2019-06-23 19:14 - 2019-06-14 17:46 - 000499200 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2019-06-23 19:14 - 2019-06-14 17:45 - 000341504 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2019-06-23 19:14 - 2019-06-14 17:45 - 000062464 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2019-06-23 19:14 - 2019-06-14 17:45 - 000047616 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2019-06-23 19:14 - 2019-06-14 17:44 - 000064000 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2019-06-23 19:14 - 2019-06-14 17:43 - 002297344 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2019-06-23 19:14 - 2019-06-14 17:40 - 000047104 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2019-06-23 19:14 - 2019-06-14 17:40 - 000030720 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2019-06-23 19:14 - 2019-06-14 17:38 - 000476160 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2019-06-23 19:14 - 2019-06-14 17:37 - 000663040 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2019-06-23 19:14 - 2019-06-14 17:37 - 000620032 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2019-06-23 19:14 - 2019-06-14 17:37 - 000115712 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2019-06-23 19:14 - 2019-06-14 17:37 - 000104960 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2019-06-23 19:14 - 2019-06-14 17:33 - 000668160 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2019-06-23 19:14 - 2019-06-14 17:31 - 000416256 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2019-06-23 19:14 - 2019-06-14 17:27 - 000073216 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2019-06-23 19:14 - 2019-06-14 17:27 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2019-06-23 19:14 - 2019-06-14 17:26 - 000091136 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2019-06-23 19:14 - 2019-06-14 17:25 - 000168960 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2019-06-23 19:14 - 2019-06-14 17:24 - 000076288 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2019-06-23 19:14 - 2019-06-14 17:23 - 000279040 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2019-06-23 19:14 - 2019-06-14 17:22 - 004492800 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2019-06-23 19:14 - 2019-06-14 17:22 - 000130048 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2019-06-23 19:14 - 2019-06-14 17:19 - 013706240 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2019-06-23 19:14 - 2019-06-14 17:17 - 000230400 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2019-06-23 19:14 - 2019-06-14 17:16 - 000696320 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2019-06-23 19:14 - 2019-06-14 17:16 - 000692224 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2019-06-23 19:14 - 2019-06-14 17:15 - 002060288 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2019-06-23 19:14 - 2019-06-14 17:15 - 001155072 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2019-06-23 19:14 - 2019-06-14 17:02 - 004386304 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2019-06-23 19:14 - 2019-06-14 16:59 - 001323008 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2019-06-23 19:14 - 2019-06-14 16:57 - 000710144 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2019-06-23 19:14 - 2019-06-11 06:52 - 000135400 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2019-06-23 19:14 - 2019-06-11 06:50 - 000593920 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2019-06-23 19:14 - 2019-06-11 04:59 - 002703360 _____ (Microsoft Corporation) C:\windows\system32\aitstatic.exe
2019-06-23 19:14 - 2019-06-11 04:59 - 001460224 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2019-06-23 19:14 - 2019-06-11 04:59 - 000617984 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2019-06-23 19:14 - 2019-06-11 04:59 - 000535040 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2019-06-23 19:14 - 2019-06-11 04:59 - 000378368 _____ (Microsoft Corporation) C:\windows\system32\centel.dll
2019-06-23 19:14 - 2019-06-11 04:59 - 000366080 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2019-06-23 19:14 - 2019-06-11 04:59 - 000257024 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2019-06-23 19:14 - 2019-06-11 04:59 - 000206848 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2019-06-19 16:40 - 2019-06-19 16:40 - 000000045 _____ C:\windows\ddconfig.ini
2019-06-19 13:43 - 2019-06-28 18:10 - 000000000 _RSHD C:\ProgramData\Key-Base
2019-06-19 13:43 - 2019-06-19 13:43 - 000000000 ____D C:\ProgramData\{95D98EBF-3B15-8CA4-B706-46E2245F305F}
2019-06-19 13:42 - 2019-06-19 16:33 - 000000000 ____D C:\Users\Daniel Pérez\AppData\Local\DiskDrill
2019-06-19 13:42 - 2019-06-19 13:42 - 000000000 ____D C:\Users\Daniel Pérez\AppData\Local\CrashRpt
2019-06-19 13:42 - 2019-06-19 13:42 - 000000000 ____D C:\Program Files\CleverFiles
2019-06-19 13:40 - 2019-06-19 13:40 - 000000000 ____D C:\ProgramData\SystemAcCrux
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-07-17 18:26 - 2009-07-14 06:34 - 000014512 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-07-17 18:26 - 2009-07-14 06:34 - 000014512 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-07-17 18:23 - 2009-09-28 20:23 - 000747646 _____ C:\windows\system32\perfh00A.dat
2019-07-17 18:23 - 2009-09-28 20:23 - 000159086 _____ C:\windows\system32\perfc00A.dat
2019-07-17 18:23 - 2009-07-26 22:06 - 001676890 _____ C:\windows\system32\PerfStringBackup.INI
2019-07-17 18:23 - 2009-07-14 04:37 - 000000000 ____D C:\windows\inf
2019-07-17 18:18 - 2009-07-14 06:53 - 000000006 ____H C:\windows\Tasks\SA.DAT
2019-07-17 17:01 - 2016-09-13 10:45 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-07-17 15:19 - 2017-09-15 15:21 - 000000000 ____D C:\Program Files\Google
2019-07-16 19:09 - 2017-09-10 15:12 - 000000000 ____D C:\windows\Minidump
2019-07-16 19:09 - 2009-07-14 04:37 - 000000000 ____D C:\windows\ModemLogs
2019-07-16 19:06 - 2009-11-02 10:11 - 000000000 ____D C:\Users\Daniel Pérez
2019-07-16 18:55 - 2016-08-25 20:35 - 000000000 ____D C:\Users\Daniel Pérez\AppData\Local\JDownloader v2.0
2019-07-16 18:55 - 2009-09-28 20:08 - 000000000 ___RD C:\Users\Public\Recorded TV
2019-07-16 18:55 - 2009-09-28 03:44 - 000000000 ____D C:\windows\system32\Macromed
2019-07-16 18:55 - 2009-09-28 03:43 - 000000000 ____D C:\windows\VMC326
2019-07-16 18:55 - 2009-07-14 04:37 - 000000000 ___HD C:\windows\system32\GroupPolicy
2019-07-16 18:55 - 2009-07-14 04:37 - 000000000 ____D C:\windows\system32\Dism
2019-07-16 18:55 - 2009-07-14 04:37 - 000000000 ____D C:\windows\registration
2019-07-16 18:55 - 2009-07-14 04:37 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-07-16 18:39 - 2009-11-02 10:12 - 000000000 ____D C:\Users\Daniel Pérez\AppData\Local\Adobe
2019-07-11 17:59 - 2018-01-15 20:33 - 000000000 ____D C:\Users\Daniel Pérez\.gimp-2.8
2019-07-10 18:57 - 2009-07-14 04:04 - 000000510 _____ C:\windows\win.ini
2019-07-10 18:56 - 2016-08-25 20:22 - 000000000 ____D C:\windows\system32\MRT
2019-07-10 18:48 - 2016-08-25 20:22 - 133475400 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2019-07-09 22:04 - 2016-08-25 19:51 - 000606264 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe
2019-07-09 15:48 - 2016-09-21 19:17 - 000842296 _____ (Adobe) C:\windows\system32\FlashPlayerApp.exe
2019-07-09 15:48 - 2016-09-21 19:17 - 000175160 _____ (Adobe) C:\windows\system32\FlashPlayerCPLApp.cpl
2019-07-07 11:53 - 2017-05-09 15:41 - 000000000 ____D C:\Users\Daniel Pérez\AppData\Local\FreemakeVideoConverter
2019-07-07 11:53 - 2017-05-09 15:40 - 000000000 ____D C:\ProgramData\Freemake
2019-07-07 11:44 - 2009-09-28 03:55 - 000000000 ____D C:\ProgramData\McAfee
2019-07-06 11:17 - 2016-10-10 12:10 - 000000000 ____D C:\Users\Daniel Pérez\AppData\Roaming\Audacity
2019-07-01 10:21 - 2019-06-01 12:24 - 000000000 ____D C:\Users\Daniel Pérez\Desktop\Avenjúcar
2019-06-30 18:40 - 2017-06-06 14:17 - 000000000 ____D C:\Users\Daniel Pérez\.afirma
2019-06-29 12:14 - 2009-09-28 03:35 - 000000000 ___HD C:\Program Files\InstallShield Installation Information
2019-06-28 19:36 - 2009-07-14 04:37 - 000000000 ____D C:\windows\rescache
2019-06-28 10:20 - 2017-02-02 19:01 - 000000000 ____D C:\Program Files\Recuva
2019-06-26 14:33 - 2016-09-19 23:18 - 000000000 ____D C:\windows\system32\appraiser
2019-06-20 17:57 - 2016-08-25 21:07 - 000000000 ____D C:\Users\Daniel Pérez\Desktop\Varios
==================== Files in the root of some directories ================
2019-02-06 11:47 - 2019-02-06 11:47 - 000000000 _____ () C:\Users\Daniel Pérez\Informativas_windows_12_01.exe
2017-07-27 13:53 - 2017-07-27 13:53 - 000000151 _____ () C:\Users\Daniel Pérez\AppData\Roaming\dllreg.bat
2018-11-30 19:37 - 2019-05-06 18:01 - 000424448 _____ (Dirección General de la Policía) C:\Users\Daniel Pérez\AppData\Local\DNIeService.exe
2018-01-15 21:47 - 2018-01-15 21:47 - 000000851 _____ () C:\Users\Daniel Pérez\AppData\Local\recently-used.xbel
==================== SigCheck ===============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2019-07-02 10:41
==================== End of FRST.txt ============================