Hola ya está todo. Pude solucionar los problemas de compatibilidad de las versiones, pero lo hice todo.
A continuación te pongo los resumenes de los análisis.
MALWAREBYTES
Malwarebytes Anti-Malware
www.malwarebytes.org
Fecha del análisis: 29/05/2020
Hora del análisis: 11:40:32
Archivo de registro: registro de analisis malwarebytes 29may2020.txt
Administrador: Sí
Versión: 2.2.0.1024
Base de datos de malwares: v2015.09.22.05
Base de datos de rootkits: v2015.09.18.01
Licencia: Gratis
Protección contra el malware: Desactivado
Protección contra sitios web maliciosos: Desactivado
Autoprotección: Desactivado
SO: Windows Vista Service Pack 2
CPU: x86
Sistema de archivos: NTFS
Usuario: Johnny
Tipo de análisis: Análisis personalizado
Resultado: Completado
Objetos analizados: 530687
Tiempo transcurrido: 3 hr, 45 min, 11 seg
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Activado
Heurística: Activado
PUP: Activado
PUM: Activado
Procesos: 0
(No hay elementos maliciosos detectados)
Módulos: 0
(No hay elementos maliciosos detectados)
Claves del registro: 1
PUP.Optional.Conduit, HKU\S-1-5-21-658572686-3241671614-1464046187-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, En cuarentena, [589509292a6103338be33e5221e3d729],
Valores del registro: 2
PUP.Optional.Conduit, HKU\S-1-5-21-658572686-3241671614-1464046187-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|URL, http://www.bing.com/search?pc=COS2&ptag=D052020-N0400AD26CBEB7DD&form=CONBDF&conlogo=CT3335811&q={searchTerms}, En cuarentena, [589509292a6103338be33e5221e3d729]
PUP.Optional.Conduit, HKU\S-1-5-21-658572686-3241671614-1464046187-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|TopResultURL, http://www.bing.com/search?pc=COS2&ptag=D052020-N0400AD26CBEB7DD&form=CONBDF&conlogo=CT3335811&q={searchTerms}, En cuarentena, [03ea042ef4973afcbfaf7c140ff5d22e]
Datos del registro: 1
PUP.Optional.Conduit, HKU\S-1-5-21-658572686-3241671614-1464046187-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://www.bing.com/?pc=COS2&ptag=D052020-AD26CBEB7DD&form=CONMHP&conlogo=CT3335811, Bueno: (www.google.com), Malo: (http://www.bing.com/?pc=COS2&ptag=D052020-AD26CBEB7DD&form=CONMHP&conlogo=CT3335811),Sustituido,[f1fc959db7d46bcbb3fd2a4b5baa8878]
Carpetas: 0
(No hay elementos maliciosos detectados)
Archivos: 0
(No hay elementos maliciosos detectados)
Sectores físicos: 0
(No hay elementos maliciosos detectados)
(end)
ADWCLEANER
# Database: 2019-10-21.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 05-29-2020
# Duration: 00:00:25
# OS: Windows Vista (TM) Home Premium
# Cleaned: 20
# Failed: 1
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\Lavasoft\Web Companion
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\dospop.com
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\incredibar.com
Deleted HKLM\Software\Lavasoft\Web Companion
Deleted HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Deleted HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\dospop.com
Deleted HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\incredibar.com
Deleted HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\dospop.com
Deleted HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\incredibar.com
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
Not Deleted api.bing.com
***** [ Preinstalled Software ] *****
Deleted Preinstalled.HPHealthCheck Folder C:\Program Files\HEWLETT-PACKARD\HP HEALTH CHECK
Deleted Preinstalled.HPHealthCheck Folder C:\Users\Johnny\AppData\Local\VirtualStore\Program Files\HEWLETT-PACKARD\HP HEALTH CHECK
Deleted Preinstalled.HPHealthCheck Registry HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\HP Health Check Scheduler
Deleted Preinstalled.HPHealthCheck Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{254C37AA-6B72-4300-84F6-98A82419187E}
Deleted Preinstalled.HPHealthCheck Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{669D4A35-146B-4314-89F1-1AC3D7B88367}
Deleted Preinstalled.HPSupportAssistant Folder C:\HP\SUPPORT
Deleted Preinstalled.HPSupportAssistant Folder C:\Program Files\HEWLETT-PACKARD\HP CUSTOMER FEEDBACK
Deleted Preinstalled.HPSupportAssistant Folder C:\Program Files\HEWLETT-PACKARD\HP HELP AND SUPPORT
Deleted Preinstalled.HPSupportAssistant Folder C:\Users\Johnny\AppData\Local\VirtualStore\Program Files\HEWLETT-PACKARD\HP CUSTOMER FEEDBACK
Deleted Preinstalled.HPSupportAssistant Folder C:\Users\Johnny\AppData\Local\VirtualStore\Program Files\HEWLETT-PACKARD\HP HELP AND SUPPORT
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner_Debug.log - [42114 octets] - [29/05/2020 18:13:10]
AdwCleaner[S00].txt - [3707 octets] - [29/05/2020 18:20:43]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
JRT
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows Vista (TM) Home Premium x86
Ran by Johnny (Administrator) on 29/05/2020 at 18:58:18,03
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 12
Successfully deleted: C:\Users\Johnny\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\069ECMUO (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Johnny\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\36PZRG9Z (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Johnny\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\50K4T3I3 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Johnny\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\96ARVCAX (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Johnny\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DVGNMDLT (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Johnny\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KTFTG99P (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\069ECMUO (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\36PZRG9Z (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\50K4T3I3 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\96ARVCAX (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DVGNMDLT (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KTFTG99P (Temporary Internet Files Folder)
Registry: 1
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\Search\\SearchAssistant (Registry Value)
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 29/05/2020 at 19:01:54,65
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
FRST
Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x86) Versión: 28-05-2020
Ejecutado por Johnny (administrador) sobre RIVENDEL (Hewlett-Packard HP Pavilion dv6000 (GH886EA#ABE)) (29-05-2020 19:05:20)
Ejecutado desde C:\Users\Johnny\Desktop
Perfiles cargados: Johnny
Platform: Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) Idioma: Español (España, internacional)
Internet Explorer Versión 9 (Navegador predeterminado: FF)
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Procesos (Lista blanca) =================
(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
(Hewlett-Packard Company) [Archivo no firmado] C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(JRD COMMUNICATION (SHENZHEN) LTD -> ) C:\Program Files\Orange\MW40\BackgroundService\ServiceManager.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\alg.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Microsoft Windows Hardware Compatibility Publisher -> ) C:\Windows\System32\LFKGRPOW.EXE
(Microsoft Windows Hardware Compatibility Publisher -> Conexant Systems, Inc.) C:\Windows\System32\drivers\XAudio.exe
==================== Registro (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Run: [hpWirelessAssistant] => C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [472800 2006-10-18] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [QlbCtrl.exe] => C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [323640 2009-11-24] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242392 2018-11-19] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [Orange MIFI40 ModemListener] => C:\Program Files\Orange\MW40\BackgroundService\ModemListener.exe [172840 2016-07-01] (JRD COMMUNICATION (SHENZHEN) LTD -> )
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN
HKU\S-1-5-21-658572686-3241671614-1464046187-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [17085056 2020-02-28] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\...\Windows NT x86\Print Processors\GSIMPPR: C:\Windows\System32\spool\prtprocs\w32x86\gsimppr.dll [86016 2008-10-15] (Microsoft Windows Hardware Compatibility Publisher -> Monotype Imaging Inc.)
HKLM\...\Windows NT x86\Print Processors\hpzpp5mu: C:\Windows\System32\spool\prtprocs\w32x86\hpzpp5mu.dll [278016 2007-11-05] (Hewlett-Packard Corporation) [Archivo no firmado]
HKLM\...\Windows NT x86\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\w32x86\hpzpplhn.dll [89600 2008-01-19] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Windows NT x86\Print Processors\ModiPrint: C:\Windows\System32\spool\prtprocs\w32x86\mdippr.dll [28552 2007-04-09] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Windows NT x86\Print Processors\winprint: localspl.dll
HKLM\...\Print\Monitors\LFKGRPJL: C:\Windows\system32\LFKGRPJL.DLL [55296 2009-04-10] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\LIDIL hpzlllhn: C:\Windows\system32\hpzlllhn.dll [37376 2008-01-19] (Microsoft Windows -> Hewlett-Packard Company)
HKLM\...\Print\Monitors\Local Port: C:\Windows\system32\localspl.dll [626176 2016-06-25] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\Microsoft Document Imaging Writer Monitor: C:\Windows\system32\mdimon.dll [28040 2007-04-09] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Print\Monitors\PCL hpz3l5mu: C:\Windows\system32\hpz3l5mu.dll [118272 2007-11-05] (Hewlett-Packard Company) [Archivo no firmado]
HKLM\...\Print\Monitors\PDF-XChange4-ABBYY: C:\Windows\system32\pxc40pma.dll [53016 2009-11-09] (Tracker Software Products Ltd -> Tracker Software Products Ltd.)
HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [95416 2014-09-23] (pdfforge GmbH -> pdfforge GmbH)
HKLM\...\Print\Monitors\Standard TCP/IP Port: C:\Windows\system32\tcpmon.dll [135168 2009-04-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\USB Monitor: C:\Windows\system32\usbmon.dll [34304 2008-01-19] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\WSD Port: C:\Windows\system32\WSDMon.dll [177664 2009-04-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{10880D85-AAD9-4558-ABDC-2AB1552D831F}] -> C:\Program Files\Common Files\LightScribe\LSRunOnce.exe [2011-03-04] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] ->
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\49.0.2623.112\Installer\chrmstp.exe [2016-04-12] (Google Inc -> Google Inc.)
Startup: C:\Users\Johnny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Cuentaexplotacion2019.xls - Acceso directo.lnk [2019-04-04]
ShortcutTarget: Cuentaexplotacion2019.xls - Acceso directo.lnk -> C:\Users\Johnny\Desktop\PELUQUERIA\CUENTA DE EXPLOTACIÓN\Cuentaexplotacion2019.xls () [Archivo no firmado]
==================== Tareas programadas (Lista blanca) ============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
Task: {139EF296-07CF-4CA9-8974-D2FE2C92BED7} - System32\Tasks\{DB25721B-755F-4854-972E-DFD4F26E3CAD} => C:\Program Files\Skype\\Phone\Skype.exe [27716568 2017-05-05] (Skype Software Sarl -> Skype Technologies S.A.) [Archivo no firmado]
Task: {2E728153-D7FD-4B59-AE72-A28308EB6B2C} - System32\Tasks\Microsoft\Windows\RestartManager\{3B2C80FB-4A42-4d8d-B0E7-D271F129EB35} => C:\Windows\system32\rmclient.exe [14848 2006-11-02] (Microsoft Windows -> Microsoft Corporation)
Task: {4F32A00D-C5B9-4B0B-8FA2-CA4B1D269265} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-658572686-3241671614-1464046187-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
Task: {6E7ADD39-A266-45D6-8B30-DFA9637EE7AF} - System32\Tasks\Microsoft\Office Genuine Advantage\OGALogon => C:\Windows\system32\OGAExec.exe [230768 2009-08-03] (Microsoft Corporation -> )
Task: {793DAED2-ECE3-4516-A609-3C7C01A527A7} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [17085056 2020-02-28] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8546D6F4-0C38-4900-8458-385D2440B2D5} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-658572686-3241671614-1464046187-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
Task: {A75DDA51-0AAC-4DE5-B484-77CA80AEDABE} - System32\Tasks\{CD4EC50C-355F-4883-B9FE-A70017AF1D89} => C:\Windows\system32\pcalua.exe -a C:\Users\Johnny\Desktop\Nero_BurningROM2018-1.10.0.9_stub_trial.exe -d C:\Users\Johnny\Desktop
Task: {BA55E170-E151-41F8-84F0-24735F61432E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.)
Task: {CADB932D-0B74-4125-8DB5-3F7D1A5633F5} - System32\Tasks\Microsoft\Windows\RestartManager\{742337C1-E621-46f0-BD1E-544F5C40B543} => C:\Windows\system32\rmclient.exe [14848 2006-11-02] (Microsoft Windows -> Microsoft Corporation)
Task: {D3F7334B-8040-4688-8E85-259FD815BF94} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2762968 2018-11-19] (AVAST Software s.r.o. -> AVAST Software)
Task: {DCDD8ED2-906F-47F7-8B82-BFBB384F07D5} - System32\Tasks\GoogleUpdateTaskMachineCore1d1e97b97c71ccf => C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.)
Task: {DDE62269-9A5B-4B32-B490-87625F18A036} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\system32\Macromed\Flash\FlashUtil32_32_0_0_371_Plugin.exe [1458232 2020-05-13] (Adobe Inc. -> Adobe) [Archivo no firmado]
Task: {E3E29784-4892-4CE1-98A4-0B9F0239707F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-05-13] (Adobe Inc. -> Adobe) [Archivo no firmado]
Task: {EA86E494-7A89-4C0D-AA3D-A0E64F025DBF} - System32\Tasks\Microsoft\Windows\RestartManager\{71A6A42F-DE94-4487-B1CC-DF7F60749A07} => C:\Windows\system32\rmclient.exe [14848 2006-11-02] (Microsoft Windows -> Microsoft Corporation)
Task: {EB93F2CB-3F2D-43D2-BC6D-C3FEAE58E886} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.)
(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)
==================== Internet (Lista blanca) ====================
(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)
Tcpip\Parameters: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{267F5B42-C60B-47FD-8132-FB2AED51F3F2}: [DhcpNameServer] 80.58.61.250 80.58.61.254
Tcpip\..\Interfaces\{365EA492-1A82-4766-851B-3A15CA7B2FC1}: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{974CED5E-EE74-40FC-A66C-73D40827A9E5}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{A6A96664-FE2A-4515-8A12-6246B533E004}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{E75504DE-3450-48C8-8543-03BE683DA5E8}: [DhcpNameServer] 192.168.42.129
Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
DownloadDir: C:\Users\Johnny\Desktop
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-04-24] (Sun Microsystems, Inc. -> Sun Microsystems, Inc.)
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2017-04-05] (Skype Software Sarl -> Skype Technologies) [Archivo no firmado]
FireFox:
========
FF ProfilePath: C:\Users\Johnny\AppData\Roaming\TomTom\HOME\Profiles\9l0b2uhe.default [2012-09-13]
FF Extension: (Emulator) - C:\Users\Johnny\AppData\Roaming\TomTom\HOME\Profiles\9l0b2uhe.default\Extensions\[email protected] [2012-09-13] [Heredado] [no firmado]
FF ProfilePath: C:\Users\Johnny\AppData\Roaming\Mozilla\Firefox\Profiles\x9tc7pzx.default-1554552393327 [2020-05-29]
FF Homepage: Mozilla\Firefox\Profiles\x9tc7pzx.default-1554552393327 -> www.google.com
FF NewTab: Mozilla\Firefox\Profiles\x9tc7pzx.default-1554552393327 -> hxxps://defaultsearch.co/homepage?hp=1&pId=BT170702&iDate=2020-05-20 09:33:42&bName=&bitmask=0300
FF Extension: (Hotfix for Firefox bug 1548973 (armagaddon 2.0) mitigation) - C:\Users\Johnny\AppData\Roaming\Mozilla\Firefox\Profiles\x9tc7pzx.default-1554552393327\features\{f001dc91-ae53-4c83-bfb4-37833fd1b830}\[email protected] [2019-07-16] [Heredado]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-09-15] [Heredado] [no firmado]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_32_0_0_371.dll [2020-05-13] (Adobe Inc. -> ) [Archivo no firmado]
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll [2009-05-12] (DivX, Inc. -> DivX,Inc.)
FF Plugin: @divx.com/DivX Content Upload Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Content Uploader\npUpload.dll [2007-10-20] (DivX,Inc.) [Archivo no firmado]
FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll [2007-10-20] (DivX, Inc) [Archivo no firmado]
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll [2011-04-24] (Sun Microsystems, Inc.) [Archivo no firmado]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corporation -> Microsoft Corp.)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @real.com/nprphtml5videoshim;version=1.0.0.0 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll [2010-04-04] (RealNetworks, Inc.) [Archivo no firmado]
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Johnny\AppData\Local\Google\Chrome\User Data\Default [2020-05-29]
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Johnny\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-08]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
==================== Servicios (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
S4 ABBYY.Licensing.PDFTransformer.Classic.3.0; C:\Program Files\ABBYY PDF Transformer 3.0\NetworkLicenseServer.exe [759048 2010-02-01] (ABBYY SOLUTIONS LIMITED -> ABBYY)
S3 AddFiltr; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe [126976 2006-06-26] (Hewlett-Packard Development Company, L.P.) [Archivo no firmado]
S2 AdobeFlashPlayerUpdateSvc; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-05-13] (Adobe Inc. -> Adobe) [Archivo no firmado]
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6799632 2018-11-19] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [324000 2018-11-19] (AVAST Software s.r.o. -> AVAST Software)
S4 CLCapSvc; C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe [270431 2006-11-24] () [Archivo no firmado]
S4 CLSched; C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe [118877 2006-11-24] () [Archivo no firmado]
S2 gupdate1ca0e425a5f35e0; C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.)
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [Archivo no firmado]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [135168 2008-03-25] (Hewlett-Packard Co.) [Archivo no firmado]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Archivo no firmado]
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728 2011-03-04] (Hewlett-Packard Company) [Archivo no firmado]
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes Corporation -> Malwarebytes)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2008-07-18] (Hewlett-Packard) [Archivo no firmado]
R2 Orange MIFI40 Modem Device Helper; C:\Program Files\Orange\MW40\BackgroundService\ServiceManager.exe [78120 2016-06-17] (JRD COMMUNICATION (SHENZHEN) LTD -> )
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2008-07-18] (Hewlett-Packard) [Archivo no firmado]
S2 SkypeUpdate; C:\Program Files\Skype\Updater\Updater.exe [317400 2017-04-05] (Skype Software Sarl -> Skype Technologies) [Archivo no firmado]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-19] (Microsoft Windows -> Microsoft Corporation)
R2 XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [386560 2007-07-10] (Microsoft Windows Hardware Compatibility Publisher -> Conexant Systems, Inc.)
S2 HP Health Check Service; "c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe" [X]
===================== Controladores (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag.sys [23040 2012-07-03] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem.sys [27776 2012-07-03] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 andnetndis; C:\Windows\System32\DRIVERS\lgandnetndis.sys [70400 2012-07-04] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [21504 2008-01-19] (Microsoft Windows -> Microsoft Corporation) <==== ATENCIÓN (no ServiceDLL)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [167480 2018-11-19] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriverx.sys [188976 2018-11-19] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidshx.sys [165384 2018-11-19] (AVAST Software s.r.o. -> AVAST Software)
R0 aswblog; C:\Windows\System32\drivers\aswblogx.sys [284256 2018-11-19] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbunivx.sys [57904 2018-11-19] (AVAST Software s.r.o. -> AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [183176 2018-11-26] (AVAST Software s.r.o. -> AVAST Software)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [42736 2018-11-19] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [40688 2018-11-19] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [135200 2019-01-19] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr.sys [70640 2018-11-19] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [72800 2018-11-19] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [784552 2019-05-23] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [397984 2019-05-23] (AVAST Software s.r.o. -> AVAST Software)
S3 aswStmXP; C:\Windows\System32\drivers\aswStmXP.sys [146584 2018-11-19] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [310200 2018-11-19] (AVAST Software s.r.o. -> AVAST Software)
S3 BCM43XV; C:\Windows\System32\DRIVERS\bcmwl6.sys [534016 2007-01-03] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom Corporation)
R3 BCM43XX; C:\Windows\System32\DRIVERS\bcmwl6.sys [534016 2007-01-03] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom Corporation)
R3 CnxtHdAudService; C:\Windows\System32\drivers\CHDRT32.sys [182272 2008-03-03] (Microsoft Windows Hardware Compatibility Publisher -> Conexant Systems Inc.)
S3 FaxLffv2; C:\Windows\System32\Drivers\FaxLffv2.sys [18944 2008-06-18] (Microsoft Windows Hardware Compatibility Publisher -> OEM)
R0 gfibto; C:\Windows\System32\drivers\gfibto.sys [13560 2013-07-31] (GFI Software Development Ltd. -> GFI Software)
R3 HBtnKey; C:\Windows\System32\DRIVERS\cpqbttn.sys [14904 2010-02-25] (Hewlett-Packard Company -> Hewlett-Packard Company)
S3 HdAudAddService; C:\Windows\System32\drivers\CHDART.sys [148992 2006-12-12] (Microsoft Windows Hardware Compatibility Publisher -> Conexant Systems Inc.)
R3 HpqKbFiltr; C:\Windows\System32\DRIVERS\HpqKbFiltr.sys [15872 2009-04-29] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Development Company, L.P.)
S3 HSFHWAZL; C:\Windows\System32\DRIVERS\VSTAZL3.SYS [200704 2006-11-02] (Microsoft Windows -> Conexant Systems, Inc.)
R3 HSF_DPV; C:\Windows\System32\DRIVERS\HSX_DPV.sys [984064 2007-06-20] (Microsoft Windows Hardware Compatibility Publisher -> Conexant Systems, Inc.)
R3 HSXHWAZL; C:\Windows\System32\DRIVERS\HSXHWAZL.sys [208896 2007-06-20] (Microsoft Windows Hardware Compatibility Publisher -> Conexant Systems, Inc.)
S3 irsir; C:\Windows\System32\DRIVERS\irsir.sys [20992 2008-01-19] (Microsoft Windows -> Microsoft Corporation)
S4 iteatapi; C:\Windows\system32\drivers\iteatapi.sys [35944 2006-11-02] (Microsoft Windows -> Integrated Technology Express, Inc.)
S4 iteraid; C:\Windows\system32\drivers\iteraid.sys [35944 2006-11-02] (Microsoft Windows -> Integrated Technology Express, Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-10-05] (Malwarebytes Corporation -> Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-10-05] (Malwarebytes Corporation -> Malwarebytes Corporation)
R2 mdmxsdk; C:\Windows\System32\DRIVERS\mdmxsdk.sys [12672 2006-06-19] (Microsoft Windows Hardware Compatibility Publisher -> Conexant)
S4 Mraid35x; C:\Windows\system32\drivers\mraid35x.sys [33384 2006-11-02] (Microsoft Windows -> LSI Logic Corporation)
S4 ntrigdigi; C:\Windows\system32\drivers\ntrigdigi.sys [20608 2006-11-02] (Microsoft Windows -> N-trig Innovative Technologies)
S3 PolarUSB; C:\Windows\System32\DRIVERS\PolarUSB.sys [17343 2001-07-12] (Polar Electro) [Archivo no firmado]
R2 rimmptsk; C:\Windows\System32\DRIVERS\rimmptsk.sys [32256 2006-11-16] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
R2 rimsptsk; C:\Windows\System32\DRIVERS\rimsptsk.sys [43520 2006-11-16] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb.sys [67072 2013-01-03] (Microsoft Windows Hardware Compatibility Publisher -> Research In Motion Limited)
S3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial.sys [35840 2012-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Research in Motion Ltd)
R2 rismxdp; C:\Windows\System32\DRIVERS\rixdptsk.sys [37376 2006-11-16] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
R1 RtlProt; C:\Windows\System32\DRIVERS\rtlprot.sys [25896 2007-04-23] (Realtek Semiconductor Corp -> Windows (R) Codename Longhorn DDK provider)
S3 sscdbus; C:\Windows\System32\DRIVERS\sscdbus.sys [58352 2005-08-17] (Microsoft Windows Hardware Compatibility Publisher -> MCCI)
S3 sscdmdfl; C:\Windows\System32\DRIVERS\sscdmdfl.sys [8272 2005-08-17] (Microsoft Windows Hardware Compatibility Publisher -> MCCI)
S3 sscdmdm; C:\Windows\System32\DRIVERS\sscdmdm.sys [93872 2005-08-17] (Microsoft Windows Hardware Compatibility Publisher -> MCCI)
S4 uliahci; C:\Windows\system32\drivers\uliahci.sys [235112 2006-11-02] (Microsoft Windows -> ULi Electronics Inc.)
S4 UlSata; C:\Windows\system32\drivers\ulsata.sys [98408 2006-11-02] (Microsoft Windows -> Promise Technology, Inc.)
S4 ulsata2; C:\Windows\system32\drivers\ulsata2.sys [115816 2006-11-02] (Microsoft Windows -> Promise Technology, Inc.)
R3 winachsf; C:\Windows\System32\DRIVERS\HSX_CNXT.sys [660480 2007-06-20] (Microsoft Windows Hardware Compatibility Publisher -> Conexant Systems, Inc.)
R2 XAudio; C:\Windows\System32\DRIVERS\xaudio.sys [8704 2007-07-10] (Microsoft Windows Hardware Compatibility Publisher -> Conexant Systems, Inc.)
S3 XMLDIUSB; C:\Windows\System32\Drivers\XMLDIUSB.sys [33152 2008-01-16] (Microsoft Windows Hardware Compatibility Publisher -> OEM)
S3 RTL8187; system32\DRIVERS\RTL8187.sys [X]
==================== NetSvcs (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
==================== Un mes (creado) ===================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2020-05-29 19:05 - 2020-05-29 19:08 - 000025409 _____ C:\Users\Johnny\Desktop\FRST.txt
2020-05-29 19:01 - 2020-05-29 19:01 - 000002646 _____ C:\Users\Johnny\Desktop\JRT.txt
2020-05-29 18:15 - 2020-05-29 19:06 - 000000000 ____D C:\FRST
2020-05-29 18:13 - 2020-05-29 18:26 - 000000000 ____D C:\AdwCleaner
2020-05-29 18:12 - 2020-05-29 18:12 - 007622344 _____ (Malwarebytes) C:\Users\Johnny\Desktop\adwcleaner_7.4.2.exe
2020-05-29 11:38 - 2020-05-29 15:37 - 000170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2020-05-29 11:37 - 2020-05-29 11:37 - 000000859 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2020-05-29 11:37 - 2020-05-29 11:37 - 000000859 _____ C:\ProgramData\Desktop\Malwarebytes Anti-Malware.lnk
2020-05-29 11:37 - 2020-05-29 11:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2020-05-29 11:37 - 2015-10-05 09:50 - 000094936 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2020-05-29 11:37 - 2015-10-05 09:50 - 000051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2020-05-29 11:37 - 2015-10-05 09:50 - 000023256 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2020-05-29 11:29 - 2020-05-29 11:29 - 022908888 _____ (Malwarebytes ) C:\Users\Johnny\Desktop\mbam-setup-2.2.0.1024.exe
2020-05-28 17:12 - 2020-05-28 17:12 - 000002810 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-05-28 17:12 - 2020-05-28 17:12 - 000000764 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-05-28 17:12 - 2020-05-28 17:12 - 000000764 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-05-28 17:12 - 2020-05-28 17:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-05-28 17:12 - 2020-05-28 17:12 - 000000000 ____D C:\Program Files\CCleaner
2020-05-28 17:10 - 2020-05-28 17:10 - 017859568 _____ (Piriform Software Ltd) C:\Users\Johnny\Desktop\ccsetup564_xp-vista.exe
2020-05-28 17:02 - 2020-05-28 17:02 - 002013184 _____ (Farbar) C:\Users\Johnny\Desktop\FRST.exe
2020-05-28 17:00 - 2020-05-28 17:00 - 001790024 _____ (Malwarebytes) C:\Users\Johnny\Desktop\JRT.exe
2020-05-28 13:26 - 2020-05-28 13:30 - 000015289 _____ C:\Users\Johnny\Desktop\LA NOTICIA. EL PRIMER HOMBRE.odt
2020-05-18 19:06 - 2020-05-18 19:28 - 1148468208 _____ C:\Users\Johnny\Downloads\1994 - Mujercitas_xvid.avi
2020-05-18 13:14 - 2020-05-18 13:14 - 000038491 _____ C:\Users\Johnny\Desktop\ANTONIA.pdf
2020-05-15 12:37 - 2020-05-15 12:37 - 000069085 _____ C:\Users\Johnny\Desktop\informe medico para autorizacion.jpeg
==================== Un mes (modificado) ==================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2020-05-29 19:05 - 2018-05-16 12:12 - 000000000 ____D C:\Users\Johnny\AppData\LocalLow\Mozilla
2020-05-29 18:39 - 2017-03-09 15:19 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-05-29 18:32 - 2018-07-19 10:06 - 000000000 ____D C:\Users\Johnny\AppData\Local\AVAST Software
2020-05-29 18:32 - 2015-01-14 16:17 - 000000435 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2020-05-29 18:30 - 2006-11-02 15:01 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-05-29 18:30 - 2006-11-02 14:47 - 000003296 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2020-05-29 18:30 - 2006-11-02 14:47 - 000003296 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2020-05-29 18:28 - 2006-11-10 08:55 - 000000012 _____ C:\Windows\bthservsdp.dat
2020-05-29 18:28 - 2006-11-02 15:01 - 000032538 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2020-05-29 18:26 - 2006-12-22 23:46 - 000000000 ____D C:\HP
2020-05-29 18:26 - 2006-12-22 15:13 - 000000000 ____D C:\Program Files\Hewlett-Packard
2020-05-29 11:37 - 2014-08-11 14:48 - 000000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2020-05-28 17:13 - 2006-11-02 13:18 - 000000000 ____D C:\Windows\inf
2020-05-28 14:07 - 2016-10-27 12:47 - 000000000 ____D C:\Users\Johnny\Desktop\PROGRAMAS DE LIMPIEZA
2020-05-28 13:59 - 2017-04-19 15:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vector Magic
2020-05-28 13:59 - 2017-04-19 15:38 - 000000000 ____D C:\Program Files\Vector Magic
2020-05-28 13:58 - 2008-09-10 19:40 - 000000000 ____D C:\Program Files\SpywareBlaster
2020-05-28 13:57 - 2011-06-16 16:25 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-05-28 13:54 - 2016-11-03 19:43 - 000000000 ____D C:\ProgramData\Glarysoft
2020-05-28 13:54 - 2016-11-03 19:40 - 000000000 ____D C:\Users\Johnny\AppData\Roaming\GlarySoft
2020-05-28 13:51 - 2015-11-18 12:47 - 000000000 ____D C:\ProgramData\BlueStacks
2020-05-27 11:47 - 2012-07-30 02:43 - 000000000 ____D C:\Users\Johnny\Documents\dni fotocopias
2020-05-21 13:09 - 2007-09-13 14:30 - 000175616 _____ C:\Users\Johnny\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-05-21 12:42 - 2011-06-15 15:34 - 000000000 ____D C:\Users\Johnny\AppData\Roaming\Foxit Software
2020-05-21 10:28 - 2015-11-25 12:39 - 000000000 ____D C:\Users\Johnny\AppData\Roaming\BitTorrent
2020-05-20 12:28 - 2008-09-10 19:58 - 000000000 ____D C:\ProgramData\Lavasoft
2020-05-18 19:28 - 2020-01-25 13:48 - 1918556160 _____ C:\Users\Johnny\Downloads\Barry Seal El traficante HDRip.avi
2020-05-18 17:57 - 2020-01-22 17:16 - 000000000 ____D C:\Users\Johnny\AppData\LocalLow\BitTorrent
2020-05-13 11:29 - 2019-11-25 19:28 - 000004502 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-05-13 11:29 - 2019-02-13 11:09 - 000004320 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-05-13 11:29 - 2012-09-03 08:39 - 000842296 _____ (Adobe) C:\Windows\system32\FlashPlayerApp.exe
2020-05-13 11:29 - 2011-06-17 10:01 - 000175160 _____ (Adobe) C:\Windows\system32\FlashPlayerCPLApp.cpl
2020-05-13 11:29 - 2006-12-22 15:38 - 000000000 ____D C:\Windows\system32\Macromed
2020-05-11 19:51 - 2007-09-05 18:47 - 000000000 ____D C:\Users\Johnny\AppData\Local\Google
2020-05-11 19:27 - 2019-10-17 16:58 - 000000000 ____D C:\Users\Johnny\Desktop\TCAE johnny
2020-05-09 10:03 - 2006-11-02 17:46 - 000717984 _____ C:\Windows\system32\perfh00A.dat
2020-05-09 10:03 - 2006-11-02 17:46 - 000153546 _____ C:\Windows\system32\perfc00A.dat
2020-05-09 10:03 - 2006-11-02 12:33 - 001618430 _____ C:\Windows\system32\PerfStringBackup.INI
2020-05-08 12:52 - 2013-09-03 18:14 - 000000000 ____D C:\Users\Johnny\Desktop\PELUQUERIA
2020-05-07 18:51 - 2015-11-11 11:40 - 000000000 ____D C:\Users\Johnny\Documents\DEPORTE MUSICA GYM ENTRENAMIENTOS
2020-04-29 11:06 - 2016-12-17 10:47 - 000003396 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore1d1e97b97c71ccf
2020-04-29 11:06 - 2009-07-27 01:02 - 000003524 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
==================== Archivos en la raíz de algunos directorios ========
2013-05-02 21:53 - 2013-07-20 01:38 - 000001078 _____ () C:\Users\Johnny\AppData\Roaming\Rim.Desktop.Exception.log
2013-05-02 21:35 - 2013-09-05 11:29 - 000002009 _____ () C:\Users\Johnny\AppData\Roaming\Rim.Desktop.HttpServerSetup.log
2013-05-02 21:53 - 2013-07-20 01:38 - 000001001 _____ () C:\Users\Johnny\AppData\Roaming\Rim.DesktopHelper.Exception.log
2013-06-30 01:28 - 2013-07-20 01:38 - 000000616 _____ () C:\Users\Johnny\AppData\Roaming\Rim.Transcoder.Exception.log
2007-10-09 01:02 - 2010-08-27 11:33 - 000027872 _____ () C:\Users\Johnny\AppData\Roaming\UserTile.png
2008-11-26 22:11 - 2008-11-26 22:11 - 000000000 _____ () C:\Users\Johnny\AppData\Roaming\wklnhst.dat
2012-10-10 00:33 - 2012-10-10 01:15 - 000000000 _____ () C:\Users\Johnny\AppData\Local\ars.cache
2007-09-05 14:23 - 2007-09-05 14:23 - 000000000 _____ () C:\Users\Johnny\AppData\Local\AtStart.txt
2012-10-10 00:33 - 2012-10-10 01:18 - 000256365 _____ () C:\Users\Johnny\AppData\Local\census.cache
2008-01-14 20:42 - 2016-11-03 13:38 - 000005892 _____ () C:\Users\Johnny\AppData\Local\d3d9caps.dat
2007-09-13 14:30 - 2020-05-21 13:09 - 000175616 _____ () C:\Users\Johnny\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2007-09-05 14:23 - 2007-09-05 14:23 - 000000000 _____ () C:\Users\Johnny\AppData\Local\DSwitch.txt
2007-12-13 17:44 - 2008-01-10 23:05 - 000000000 _____ () C:\Users\Johnny\AppData\Local\FnF4.txt
2012-10-10 00:26 - 2012-10-10 00:26 - 000000036 _____ () C:\Users\Johnny\AppData\Local\housecall.guid.cache
2012-09-24 18:06 - 2014-08-05 18:00 - 000004096 ____H () C:\Users\Johnny\AppData\Local\keyfile3.drm
2007-09-05 14:23 - 2007-09-05 14:23 - 000000000 _____ () C:\Users\Johnny\AppData\Local\QSwitch.txt
2019-10-19 11:20 - 2019-10-19 11:20 - 000003805 _____ () C:\Users\Johnny\AppData\Local\recently-used.xbel
2019-02-18 11:46 - 2019-02-18 11:47 - 000000000 _____ () C:\Users\Johnny\AppData\Local\{0093A0EA-9E7D-4A29-BD8D-60CB8C63EFF7}
==================== SigCheck ============================
(No existe una corrección automática para los archivos que no pasan la verificación.)
LastRegBack: 2020-05-29 18:38
==================== Final de FRST.txt ========================