Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x86) Versión: 30-04-2020
Ejecutado por Administrador ^_^ (administrador) sobre SUSANITA (Acer Aspire 5736Z) (30-04-2020 20:08:46)
Ejecutado desde C:\Windows\System32\config\systemprofile\Desktop
Perfiles cargados: Administrador ^_^ (Perfiles disponibles: Administrador ^_^)
Platform: Microsoft Windows 7 Carbon  Service Pack 1 (X86) Idioma: Español (España, internacional)
Internet Explorer Versión 8 (Navegador predeterminado: Chrome)
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(Adobe Inc. -> Adobe Systems) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files\BraveSoftware\Update\BraveUpdate.exe
(Google Inc -> Google Inc.) C:\Program Files\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mobsync.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\TCPSVCS.EXE
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <10>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [] => [X]
HKLM\Software\Policies\Microsoft\Windows NT\SystemRestore: [DisableSR/DisableConfig]  <==== ATENCIÓN
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN
HKU\S-1-5-21-3138747884-1039529220-317751832-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [18227896 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3138747884-1039529220-317751832-1000\...\MountPoints2: F - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3138747884-1039529220-317751832-1000\...\MountPoints2: {28a25174-0a6e-11ea-ba97-1c7508b258e0} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3138747884-1039529220-317751832-1000\...\MountPoints2: {9838fea9-a52e-11e7-aca6-1c7508b258e0} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3138747884-1039529220-317751832-1000\...\MountPoints2: {9838ff02-a52e-11e7-aca6-1c7508b258e0} - F:\HiSuiteDownLoader.exe
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\81.0.4044.129\Installer\chrmstp.exe [2020-04-28] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2019-05-02] (Adobe Inc. -> Adobe Systems, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\81.1.8.86\Installer\chrmstp.exe [2020-04-30] (Brave Software, Inc.) [Archivo no firmado]
Startup: C:\Users\Administrador ^_^\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk [2018-08-25]
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files\Evernote\Evernote\EvernoteClipper.exe (Evernote Corporation -> Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
GroupPolicy: Restricción - Chrome <==== ATENCIÓN
GroupPolicy\User: Restricción ? <==== ATENCIÓN
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN
CHR HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {164C1319-837B-4409-858D-8B7C86A76159} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files\BraveSoftware\Update\BraveUpdate.exe [157320 2019-10-26] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {1813C371-09BF-48BA-ACE7-3FA7E3B93CE1} - System32\Tasks\WpsExternal_Administrador ^_^_20171216224611 => C:\Users\Administrador ^_^\AppData\Local\Kingsoft\WPS Office\ksolaunch.exe [1261672 2017-12-16] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {367A8C82-1648-4416-9454-DBE307FA8BB1} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {3D7C8066-4A0D-4659-AB7E-7DEBBDAB002C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18227896 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {3ED082FE-D47F-40B7-89D6-8E9E785D8DC3} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-04-18] (Adobe Inc. -> Adobe)
Task: {4C3CA478-6FA3-42F2-9013-1153801DC4EB} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\system32\Macromed\Flash\FlashUtil32_32_0_0_363_Plugin.exe [1458232 2020-04-18] (Adobe Inc. -> Adobe)
Task: {6E27FA30-1F00-4C80-8D80-5FE90B6BCB2D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [154440 2016-04-04] (Google Inc -> Google Inc.)
Task: {79A1AE10-671F-467A-B401-0570FA75B8C6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [154440 2016-04-04] (Google Inc -> Google Inc.)
Task: {7B4C501D-6F0E-4C94-9540-118CF77AE858} - System32\Tasks\AdwCleaner_onReboot => F:\adwcleaner_7.4.1.exe
Task: {839B66CA-3889-4007-847B-0CDEF30727E4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {85335607-68AA-4184-A606-455BB8F0F6C5} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [110792 2020-04-03] (Mozilla Corporation -> Mozilla Foundation)
Task: {9BC0C502-511D-4742-AA6A-D2E96ADCBCAC} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Windows\system32\config\systemprofile\Desktop\ESETOnlineScanner_ESL.exe [14562400 2020-04-28] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {A721788A-06CE-4BC0-A14F-D86D174D105A} - System32\Tasks\User_Feed_Synchronization-{03ED9FB8-6E4A-4FBB-BE2C-EB7EBECCC3C6} => A:\Windows\system32\msfeedssync.exe
Task: {E61A3F2E-5D03-4090-9D72-5BB9898E9D5D} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files\BraveSoftware\Update\BraveUpdate.exe [157320 2019-10-26] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {FB3D6AA5-165A-44C3-83FF-89F1E09B6969} - System32\Tasks\EOSv3 Scheduler onTime => C:\Windows\system32\config\systemprofile\Desktop\ESETOnlineScanner_ESL.exe [14562400 2020-04-28] (ESET, spol. s r.o. -> ESET spol. s r.o.)

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)

Task: C:\Windows\Tasks\AdwCleaner_onReboot.job => C:\Windows\system32\config\systemprofile\Desktop\adwcleaner_8.0.4.exe

==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Hosts: Archivo Hosts no detectado en el directorio predeterminado
Tcpip\Parameters: [DhcpNameServer] 192.168.9.1
Tcpip\..\Interfaces\{07C34493-A599-4C0B-9A73-5D96D58BCA94}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{2AD35DCE-4E3B-4927-8243-DCB37EF6CDE0}: [NameServer] 8.8.4.4,8.8.8.8,192.168.0.1
Tcpip\..\Interfaces\{2AD35DCE-4E3B-4927-8243-DCB37EF6CDE0}: [DhcpNameServer] 192.168.9.1
Tcpip\..\Interfaces\{AA5A4416-A0A4-416C-8655-99FCC879BDE6}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.bing.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = www.bing.com
SearchScopes: HKU\S-1-5-21-3138747884-1039529220-317751832-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files\Evernote\Evernote\EvernoteIE.dll [2020-03-09] (Evernote Corporation -> Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: k4t32s80.default
FF ProfilePath: C:\Windows\system32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\k4t32s80.default [2020-04-25]
FF ProfilePath: C:\Windows\system32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\kedwn9yv.default-release [2020-04-30]
FF DownloadDir: C:\Windows\system32\config\systemprofile\Desktop
FF Notifications: Mozilla\Firefox\Profiles\kedwn9yv.default-release -> hxxps://forospyware.com; hxxps://web.whatsapp.com
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_32_0_0_363.dll [2020-04-18] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files\MICROS~4\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\MICROS~4\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @tools.brave.com/BraveSoftware Update;version=3 -> C:\Program Files\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2019-10-26] (Brave Software, Inc. -> BraveSoftware Inc.)
FF Plugin: @tools.brave.com/BraveSoftware Update;version=9 -> C:\Program Files\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2019-10-26] (Brave Software, Inc. -> BraveSoftware Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-03-05] (Adobe Inc. -> Adobe Systems Inc.)

Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R2 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [88648 2020-02-25] (Adobe Inc. -> Adobe Systems)
R2 brave; C:\Program Files\BraveSoftware\Update\BraveUpdate.exe [157320 2019-10-26] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files\BraveSoftware\Update\BraveUpdate.exe [157320 2019-10-26] (Brave Software, Inc. -> BraveSoftware Inc.)
R2 HFGService; C:\Windows\System32\HFGService.dll [413696 2009-12-21] (Microsoft Windows Hardware Compatibility Publisher -> CSR, plc)
S3 HuaweiHiSuiteService.exe; C:\Program Files\HiSuite\HandSetService\HuaweiHiSuiteService.exe [154432 2019-08-18] (Huawei Technologies Co., Ltd. -> ) [Archivo no firmado]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Archivo no firmado]
S3 KMService; C:\Windows\system32\srvany.exe [8192 2017-12-18] () [Archivo no firmado]
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [5547464 2020-04-27] (Malwarebytes Inc -> Malwarebytes)
S3 Themes; C:\Windows\system32\themeservice.dll [37888 2009-08-01] (Microsoft Corporation) [Archivo no firmado]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Windows -> Microsoft Corporation)

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

S3 BthAudioHF; C:\Windows\System32\DRIVERS\BthAudioHF.sys [43008 2009-12-21] (Microsoft Windows Hardware Compatibility Publisher -> CSR, plc)
S3 BthAvrcp; C:\Windows\System32\DRIVERS\BthAvrcp.sys [22528 2009-08-13] (Microsoft Windows Hardware Compatibility Publisher -> CSR, plc)
S3 csr_a2dp; C:\Windows\System32\drivers\bthav.sys [61952 2009-12-21] (Microsoft Windows Hardware Compatibility Publisher -> CSR, plc)
S3 ew_usbccgpfilter; C:\Windows\System32\DRIVERS\ew_usbccgpfilter.sys [15360 2019-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R2 giveio; C:\Windows\system32\giveio.sys [5248 1996-04-03] () [Archivo no firmado]
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [102272 2019-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 k57nd60x; C:\Windows\System32\DRIVERS\k57nd60x.sys [408272 2014-04-25] (Broadcom Corporation -> Broadcom Corporation)
S3 MEI; C:\Windows\System32\DRIVERS\HECI.sys [55104 2012-07-17] (Intel Corporation -> Intel Corporation)
S3 NETwNs32; C:\Windows\System32\DRIVERS\NETwsn00.sys [10382576 2013-07-25] (Intel Corporation-Mobile Wireless Group -> Intel Corporation)
R2 speedfan; C:\Windows\system32\speedfan.sys [24184 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [15872 2013-02-12] (Microsoft Windows -> Microsoft Corporation)
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) ===================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-04-30 20:03 - 2020-04-30 20:09 - 000000000 ____D C:\FRST
2020-04-29 00:04 - 2020-04-29 05:17 - 000000000 ____D C:\KVRT_Data
2020-04-28 23:38 - 2020-04-28 23:38 - 000003788 _____ C:\Windows\system32\Tasks\EOSv3 Scheduler onLogOn
2020-04-28 23:38 - 2020-04-28 23:38 - 000003348 _____ C:\Windows\system32\Tasks\EOSv3 Scheduler onTime
2020-04-28 01:12 - 2020-04-28 01:12 - 000000000 ____D C:\Users\Administrador ^_^\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome
2020-04-28 01:06 - 2020-04-28 01:06 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-04-27 22:13 - 2020-04-27 22:13 - 000000336 _____ C:\Windows\Tasks\AdwCleaner_onReboot.job
2020-04-27 22:10 - 2020-04-27 22:13 - 000000000 ____D C:\AdwCleaner
2020-04-27 16:27 - 2020-04-27 16:27 - 000001928 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-04-27 16:15 - 2020-04-27 16:15 - 000144848 _____ (Mozilla Foundation) C:\ProgramData\softokn3.dll
2020-04-27 16:15 - 2020-04-27 16:15 - 000083784 _____ (Microsoft Corporation) C:\ProgramData\vcruntime140.dll
2020-04-27 16:14 - 2020-04-27 16:14 - 001246160 _____ (Mozilla Foundation) C:\ProgramData\nss3.dll
2020-04-27 16:14 - 2020-04-27 16:14 - 000440120 _____ (Microsoft Corporation) C:\ProgramData\msvcp140.dll
2020-04-27 16:14 - 2020-04-27 16:14 - 000334288 _____ (Mozilla Foundation) C:\ProgramData\freebl3.dll
2020-04-27 16:14 - 2020-04-27 16:14 - 000137168 _____ (Mozilla Foundation) C:\ProgramData\mozglue.dll
2020-04-27 16:14 - 2020-04-27 16:14 - 000000000 ____D C:\ProgramData\QH2PLZAXXV7S7WSUTWYE1YEST
2020-04-25 03:03 - 2020-04-25 03:03 - 000001129 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-04-25 03:03 - 2020-04-25 03:03 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2020-04-25 03:03 - 2020-04-25 03:03 - 000000000 ____D C:\Users\Administrador ^_^\Desktop\Datos antiguos de Firefox
2020-04-25 03:03 - 2020-04-25 03:03 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2020-04-25 03:01 - 2020-04-25 15:59 - 000320054 _____ C:\Users\Administrador ^_^\Desktop\Firefox Installer.exe.lezp
2020-04-25 02:47 - 2020-04-28 00:20 - 000000000 ____D C:\Windows\system32\%LOCALAPPDATA%
2020-04-25 02:36 - 2020-04-25 02:36 - 000000000 __SHD C:\Windows\system32\%APPDATA%
2020-04-25 02:36 - 2020-04-25 02:36 - 000000000 ____D C:\SystemID
2020-04-25 02:19 - 2020-04-25 02:19 - 000000000 ____D C:\Program Files\Malwarebytes
2020-04-25 00:44 - 2020-04-27 22:05 - 000000000 ____D C:\Users\Administrador ^_^\AppData\Roaming\injb3p1spx2
2020-04-25 00:24 - 2020-04-27 22:05 - 000000000 ____D C:\Users\Administrador ^_^\AppData\Roaming\wwsr1kuj4hd
2020-04-24 23:51 - 2020-04-24 23:51 - 000000000 ____D C:\Users\Administrador ^_^\AppData\Roaming\Python
2020-04-24 23:50 - 2020-04-27 22:05 - 000000000 ____D C:\Users\Administrador ^_^\AppData\Roaming\ubgc4sq0wgo
2020-04-24 23:31 - 2020-04-27 22:05 - 000000000 ____D C:\Users\Administrador ^_^\AppData\Roaming\odo5vey2zby
2020-04-24 21:50 - 2020-04-27 22:05 - 000000000 ____D C:\Users\Administrador ^_^\AppData\Roaming\7217ac98eb6e
2020-04-24 21:46 - 2020-04-24 23:31 - 001884310 _____ C:\Users\Administrador ^_^\Desktop\MBSetup-090357.090357.exe.lezp
2020-04-24 21:45 - 2020-04-27 16:26 - 000129056 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae.sys
2020-04-24 21:05 - 2020-04-27 22:05 - 000000000 ____D C:\Windows\system32\yzugcxoq
2020-04-24 21:04 - 2020-04-27 22:05 - 000000000 ____D C:\Users\Administrador ^_^\AppData\Roaming\k1bsd1lxkik
2020-04-24 21:04 - 2020-04-25 01:23 - 000000000 ____D C:\Program Files (x86)
2020-04-24 20:17 - 2020-04-24 21:23 - 000037652 _____ C:\Users\Administrador ^_^\Desktop\medicos 1.jpg.lezp
2020-04-22 13:17 - 2020-04-24 21:23 - 000109696 _____ C:\Users\Administrador ^_^\Desktop\ucr.jpg.lezp
2020-04-17 14:53 - 2020-04-24 21:23 - 000010246 _____ C:\Users\Administrador ^_^\Desktop\impresionComprobante.pdf.lezp
2020-04-17 01:04 - 2020-04-17 01:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evernote
2020-04-13 19:07 - 2020-04-24 21:23 - 005150007 _____ C:\Users\Administrador ^_^\Desktop\Planito.jpg.lezp
2020-04-08 21:04 - 2020-04-24 21:23 - 000402410 _____ C:\Users\Administrador ^_^\Desktop\Chu.jpg.lezp
2020-04-07 19:23 - 2020-04-25 03:03 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-04-06 19:06 - 2020-04-24 21:23 - 000011386 _____ C:\Users\Administrador ^_^\Desktop\Direcciones.xlsx
2020-04-06 02:28 - 2020-04-06 02:28 - 000002188 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2020-04-06 02:28 - 2020-04-06 02:28 - 000000000 ____D C:\Users\Administrador ^_^\AppData\LocalLow\Google
2020-04-04 21:38 - 2020-04-24 21:23 - 000060195 _____ C:\Users\Administrador ^_^\Desktop\jardin escalera.jpg.lezp
2020-04-02 15:47 - 2020-04-24 21:23 - 000088566 _____ C:\Users\Administrador ^_^\Desktop\mierdas hdp.jpg.lezp
2020-04-01 20:22 - 2020-04-01 20:22 - 000002832 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-04-01 17:47 - 2020-04-24 21:23 - 000035152 _____ C:\Users\Administrador ^_^\Desktop\avon.jpg.lezp
2020-03-31 17:17 - 2020-03-31 17:17 - 000000000 ____D C:\Users\Administrador ^_^\AppData\Roaming\mkvtoolnix

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-04-30 13:06 - 2017-03-30 20:04 - 000000000 ____D C:\Users\Administrador ^_^\AppData\LocalLow\Mozilla
2020-04-30 12:59 - 2019-10-26 14:54 - 000002297 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2020-04-30 12:58 - 2009-07-14 01:34 - 000020480 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-04-30 12:58 - 2009-07-14 01:34 - 000020480 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-04-30 12:44 - 2009-07-14 01:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-04-28 04:19 - 2016-03-19 01:48 - 000000000 ____D C:\Program Files\DAEMON Tools Pro
2020-04-28 01:05 - 2016-03-19 01:38 - 000000000 ____D C:\Program Files\Google
2020-04-28 00:20 - 2009-07-13 23:37 - 000000000 ____D C:\Windows\system32\NDF
2020-04-27 23:05 - 2009-07-13 23:37 - 000000000 ____D C:\Windows\inf
2020-04-27 22:49 - 2016-03-19 01:22 - 000000000 ____D C:\Windows\system32\Macromed
2020-04-27 22:05 - 2016-09-02 17:42 - 000000000 ____D C:\Users\Administrador ^_^\AppData\Roaming\BitTorrent
2020-04-27 22:05 - 2016-04-04 07:34 - 000000000 ___RD C:\Users\Administrador ^_^\Desktop\Programas
2020-04-27 22:02 - 2019-10-17 20:44 - 000000000 ____D C:\Users\Administrador ^_^\AppData\Roaming\Auslogics
2020-04-27 16:13 - 2020-01-14 18:57 - 000000000 ____D C:\Users\Administrador ^_^\AppData\LocalLow\BitTorrent
2020-04-24 21:24 - 2019-12-09 21:41 - 000000000 ____D C:\Users\Administrador ^_^\Desktop\Tarjeta
2020-04-24 21:24 - 2019-11-12 02:48 - 000000000 ____D C:\Users\Administrador ^_^\Desktop\Mmm
2020-04-24 21:24 - 2019-10-18 14:37 - 000000000 ____D C:\Users\Administrador ^_^\Desktop\Pagos IMPRIMIR
2020-04-24 21:24 - 2019-10-18 14:37 - 000000000 ____D C:\Users\Administrador ^_^\Desktop\Macri
2020-04-24 21:24 - 2019-10-18 14:36 - 000000000 ____D C:\Users\Administrador ^_^\Desktop\hdp
2020-04-24 21:24 - 2019-07-17 02:42 - 000000000 ___RD C:\Users\Administrador ^_^\Desktop\Para llevar
2020-04-24 21:24 - 2018-05-19 14:04 - 000000000 ____D C:\Users\Administrador ^_^\Desktop\Nueva carpeta
2020-04-24 21:24 - 2017-12-30 23:29 - 000000000 ___RD C:\Users\Administrador ^_^\Desktop\Musica
2020-04-24 21:24 - 2017-12-07 14:30 - 000000000 ____D C:\Users\Administrador ^_^\Documents\Archivos de Outlook
2020-04-24 21:23 - 2020-03-29 20:05 - 001262935 _____ C:\Users\Administrador ^_^\Desktop\Capiangos Digital - Número 1 (29-03-2020).pdf.lezp
2020-04-24 21:23 - 2020-03-26 22:34 - 000085881 _____ C:\Users\Administrador ^_^\Desktop\perfil.jpg.lezp
2020-04-24 21:23 - 2020-03-23 20:23 - 000373681 _____ C:\Users\Administrador ^_^\Desktop\nosotros memoria copia.jpg.lezp
2020-04-24 21:23 - 2020-03-23 20:10 - 000177959 _____ C:\Users\Administrador ^_^\Desktop\Memoria.jpg.lezp
2020-04-24 21:23 - 2020-03-11 12:26 - 000043552 _____ C:\Users\Administrador ^_^\Desktop\creidos.jpg.lezp
2020-04-24 21:23 - 2020-02-28 03:11 - 001667088 _____ C:\Users\Administrador ^_^\Desktop\k.jpg.lezp
2020-04-24 21:23 - 2020-02-19 20:19 - 000037802 _____ C:\Users\Administrador ^_^\Desktop\esto fueron.docx.lezp
2020-04-24 21:23 - 2020-02-04 02:19 - 007547164 _____ C:\Users\Administrador ^_^\Documents\Onkyo_TA-2250_&_Onkyo_M-5030.zip.lezp
2020-04-24 21:23 - 2020-01-28 18:00 - 000000819 _____ C:\Users\Administrador ^_^\Desktop\tRUCHOS MACRI.txt.lezp
2020-04-24 21:23 - 2020-01-22 12:35 - 000000622 _____ C:\Users\Administrador ^_^\Desktop\baño.txt.lezp
2020-04-24 21:23 - 2019-12-30 13:54 - 000014157 _____ C:\Users\Administrador ^_^\Desktop\Medidas.docx.lezp
2020-04-24 21:23 - 2019-12-28 15:08 - 000000654 _____ C:\Users\Administrador ^_^\Desktop\vendedores vaper.txt.lezp
2020-04-24 21:23 - 2019-12-26 20:22 - 000129966 _____ C:\Users\Administrador ^_^\Desktop\zzzzzz.jpg.lezp
2020-04-24 21:23 - 2019-12-10 18:42 - 000068483 _____ C:\Users\Administrador ^_^\Desktop\BCRA.jpg.lezp
2020-04-24 21:23 - 2019-12-05 15:53 - 000000395 _____ C:\Users\Administrador ^_^\Desktop\Para Hecer.txt.lezp
2020-04-24 21:23 - 2019-11-24 14:02 - 000014785 _____ C:\Users\Administrador ^_^\Documents\Niña.docx.lezp
2020-04-24 21:23 - 2019-10-28 02:35 - 000048759 _____ C:\Users\Administrador ^_^\Desktop\pelotudo.jpg.lezp
2020-04-24 21:23 - 2019-10-18 14:40 - 000025460 _____ C:\Users\Administrador ^_^\Desktop\CAPITAL.docx.lezp
2020-04-24 21:23 - 2019-10-18 14:40 - 000024654 _____ C:\Users\Administrador ^_^\Desktop\banco escalera.jpg.lezp
2020-04-24 21:23 - 2019-10-18 14:40 - 000021433 _____ C:\Users\Administrador ^_^\Desktop\capital ahora.docx.lezp
2020-04-24 21:23 - 2019-10-18 14:40 - 000020695 _____ C:\Users\Administrador ^_^\Desktop\ConsultaTributaria.pdf.lezp
2020-04-24 21:23 - 2019-10-18 14:40 - 000001725 _____ C:\Users\Administrador ^_^\Desktop\huevo.txt.lezp
2020-04-24 21:23 - 2019-10-18 14:40 - 000000414 _____ C:\Users\Administrador ^_^\Desktop\coso.txt.lezp
2020-04-24 21:23 - 2019-10-18 14:39 - 000506541 _____ C:\Users\Administrador ^_^\Desktop\Multa2.jpg.lezp
2020-04-24 21:23 - 2019-10-18 14:39 - 000306420 _____ C:\Users\Administrador ^_^\Desktop\leer.docx.lezp
2020-04-24 21:23 - 2019-10-18 14:39 - 000036064 _____ C:\Users\Administrador ^_^\Desktop\imprimir.pdf
2020-04-24 21:23 - 2019-10-18 14:39 - 000000504 _____ C:\Users\Administrador ^_^\Desktop\parrilla.txt.lezp
2020-04-24 21:23 - 2019-10-18 14:38 - 000211103 _____ C:\Users\Administrador ^_^\Desktop\Sika 1.pdf.lezp
2020-04-24 21:23 - 2019-10-18 14:38 - 000192193 _____ C:\Users\Administrador ^_^\Desktop\SikaLatex.pdf.lezp
2020-04-24 21:23 - 2019-10-18 14:37 - 000000000 ____D C:\Users\Administrador ^_^\Desktop\Danny
2020-04-24 21:23 - 2019-07-08 23:23 - 000014444 _____ C:\Users\Administrador ^_^\Documents\cerdo anana.docx.lezp
2020-04-24 21:23 - 2019-05-27 19:31 - 000013870 _____ C:\Users\Administrador ^_^\Documents\El paseo del bajo.docx.lezp
2020-04-24 21:23 - 2018-10-22 14:20 - 000000496 ____H C:\Users\Administrador ^_^\Desktop\~$rabois.docx.lezp
2020-04-24 21:23 - 2018-08-29 21:37 - 000000000 ____D C:\Users\Administrador ^_^\creepy
2020-04-24 21:23 - 2018-08-29 21:37 - 000000000 ____D C:\Users\Administrador ^_^\.creepy
2020-04-24 21:23 - 2018-07-21 23:12 - 000008625 _____ C:\Users\Administrador ^_^\Documents\starburn.txt.lezp
2020-04-24 21:23 - 2018-03-04 17:09 - 000013550 _____ C:\Users\Administrador ^_^\Documents\PLANTAS.xlsx.lezp
2020-04-24 21:23 - 2017-06-01 00:26 - 000000000 ____D C:\Users\Administrador ^_^\.android
2020-04-24 21:23 - 2017-05-28 20:20 - 000000471 ____H C:\Users\Administrador ^_^\Documents\.~lock.Hdp.doc#.lezp
2020-04-24 02:23 - 2016-04-05 00:54 - 000000000 ____D C:\Users\Administrador ^_^\AppData\Roaming\vlc
2020-04-18 19:23 - 2016-03-19 00:09 - 001685740 _____ C:\Windows\system32\PerfStringBackup.INI
2020-04-18 19:23 - 2009-07-14 05:48 - 000751222 _____ C:\Windows\system32\perfh00A.dat
2020-04-18 19:23 - 2009-07-14 05:48 - 000160196 _____ C:\Windows\system32\perfc00A.dat
2020-04-18 11:27 - 2019-12-20 12:55 - 000004474 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-04-18 11:27 - 2019-12-20 12:55 - 000004290 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-04-18 11:27 - 2016-03-19 01:22 - 000842296 _____ (Adobe) C:\Windows\system32\FlashPlayerApp.exe
2020-04-18 11:27 - 2016-03-19 01:22 - 000175160 _____ (Adobe) C:\Windows\system32\FlashPlayerCPLApp.cpl
2020-04-09 01:13 - 2017-07-23 02:38 - 000000000 ____D C:\Users\Administrador ^_^\AppData\Roaming\AIMP
2020-04-05 13:51 - 2019-10-17 19:26 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-04-01 20:49 - 2016-03-18 23:27 - 000609128 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

==================== Archivos en la raíz de algunos directorios ========

2020-04-27 16:14 - 2020-04-27 16:14 - 000334288 _____ (Mozilla Foundation) C:\ProgramData\freebl3.dll
2020-04-27 16:14 - 2020-04-27 16:14 - 000137168 _____ (Mozilla Foundation) C:\ProgramData\mozglue.dll
2020-04-27 16:14 - 2020-04-27 16:14 - 000440120 _____ (Microsoft Corporation) C:\ProgramData\msvcp140.dll
2020-04-27 16:14 - 2020-04-27 16:14 - 001246160 _____ (Mozilla Foundation) C:\ProgramData\nss3.dll
2020-04-27 16:15 - 2020-04-27 16:15 - 000144848 _____ (Mozilla Foundation) C:\ProgramData\softokn3.dll
2020-04-27 16:15 - 2020-04-27 16:15 - 000083784 _____ (Microsoft Corporation) C:\ProgramData\vcruntime140.dll
2020-04-25 02:36 - 2020-04-25 02:36 - 000000561 _____ () C:\Windows\system32\config\systemprofile\AppData\Local\bowsakkdestx.txt

==================== SigCheckExt =========================

2013-12-30 10:52 - 2013-12-30 10:52 - 000974848 _____ C:\Windows\system32\cis-2.4.dll
2019-03-05 02:12 - 2001-04-14 07:32 - 000557328 _____ (Microsoft Corporation) C:\Windows\system32\dao360.dll
2016-03-19 01:23 - 2016-03-19 01:23 - 000233888 _____ (Microsoft Corporation) C:\Windows\system32\DreamScene.dll
2019-03-05 02:13 - 2001-10-26 18:16 - 000016384 _____ C:\Windows\system32\FileOps.exe
2017-06-20 21:45 - 2010-05-11 13:17 - 001700352 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2009-06-22 18:58 - 2009-06-22 18:58 - 000037376 _____ (Hewlett-Packard Company) C:\Windows\system32\HPZLLLHN.DLL
2013-12-30 10:52 - 2013-12-30 10:52 - 000081920 _____ C:\Windows\system32\issacapi_bs-2.3.dll
2013-12-30 10:52 - 2013-12-30 10:52 - 000065536 _____ C:\Windows\system32\issacapi_pe-2.3.dll
2013-12-30 10:52 - 2013-12-30 10:52 - 000057344 _____ C:\Windows\system32\issacapi_se-2.3.dll
2013-12-30 10:52 - 2013-12-30 10:52 - 000045056 _____ ((주) 마크애니) C:\Windows\system32\MACXMLProto.dll
2013-12-30 10:52 - 2013-12-30 10:52 - 000118784 _____ ((주)마크애니) C:\Windows\system32\MaDRM.dll
2013-12-30 10:52 - 2013-12-30 10:52 - 000049152 _____ ((주) 마크애니) C:\Windows\system32\MaJGUILib.dll
2013-12-30 10:52 - 2013-12-30 10:52 - 000045320 _____ (MARKANY) C:\Windows\system32\MAMACExtract.dll
2013-12-30 10:52 - 2013-12-30 10:52 - 000024576 _____ ((주)마크애니) C:\Windows\system32\MASetupCleaner.exe
2013-12-30 10:52 - 2013-12-30 10:52 - 000045056 _____ ((주) 마크애니) C:\Windows\system32\MaXMLProto.dll
2013-12-30 10:52 - 2013-12-30 10:52 - 000057344 _____ (Marktek) C:\Windows\system32\MK_Lyric.dll
2013-12-30 10:52 - 2013-12-30 10:52 - 000245760 _____ (Teruten Inc.) C:\Windows\system32\MSCLib.dll
2019-03-05 02:12 - 1998-08-04 23:00 - 000150528 _____ (Microsoft Corporation) C:\Windows\system32\MSCmCIT.dll
2013-12-30 10:52 - 2013-12-30 10:52 - 000155648 _____ (Teruten Inc.) C:\Windows\system32\MSFLib.dll
2013-12-30 10:52 - 2013-12-30 10:52 - 000352256 _____ (Sample Corporation) C:\Windows\system32\MSLUR71.dll
2019-03-05 02:12 - 2000-08-11 02:00 - 000074000 _____ (Microsoft Corporation) C:\Windows\system32\msrclr40.dll
2019-03-05 02:12 - 2000-08-11 02:00 - 000028944 _____ (Microsoft Corporation) C:\Windows\system32\msrecr40.dll
2017-06-20 21:45 - 2010-05-11 13:17 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\msxml3a.dll
2019-03-05 02:12 - 2003-04-18 15:29 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\msxml4a.dll
2019-03-05 02:12 - 2003-04-18 15:29 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\msxml4r.dll
2013-12-30 10:52 - 2013-12-30 10:52 - 000040960 _____ (Telechips Inc.,) C:\Windows\system32\MTTELECHIP.dll
2013-12-30 10:52 - 2013-12-30 10:52 - 000057344 _____ (Marktek Inc.) C:\Windows\system32\MTXSYNCICON.dll
2014-04-30 19:47 - 2014-04-30 19:47 - 000135168 _____ (Musiccity Co.Ltd.) C:\Windows\system32\muzaf1.dll
2014-04-30 19:47 - 2014-04-30 19:47 - 000491520 _____ (Musiccity Co.Ltd.) C:\Windows\system32\muzapp.dll
2014-04-30 19:47 - 2014-04-30 19:47 - 000172032 _____ (Musiccity Co.Ltd.) C:\Windows\system32\muzapp.exe
2014-04-30 19:47 - 2014-04-30 19:47 - 000200704 _____ ( (c) MusicCity) C:\Windows\system32\muzwmts.dll
2016-05-28 21:32 - 2013-12-30 10:53 - 004659712 _____ (Dmitry Streblechenko) C:\Windows\system32\Redemption.dll
2016-03-18 22:56 - 2010-11-24 18:29 - 000540160 _____ (Rockers Team) C:\Windows\system32\RT7LitePIlaunch.exe
2016-03-18 22:56 - 2016-03-18 22:56 - 000001424 _____ C:\Windows\system32\RTSLCS.dll
2017-12-18 19:44 - 2017-12-18 19:44 - 000008192 _____ C:\Windows\system32\srvany.exe
2009-07-13 20:39 - 2009-08-01 19:18 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\themeservice.dll
2009-07-13 20:40 - 2009-08-01 19:19 - 000249856 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2019-03-05 02:12 - 1998-08-05 01:00 - 000122128 _____ (Microsoft Corporation) C:\Windows\system32\VB6IT.DLL
2019-03-05 02:12 - 2002-08-07 19:46 - 000102912 _____ (Microsoft Corporation) C:\Windows\system32\VB6STKIT.DLL
2016-04-24 20:54 - 1998-10-06 19:34 - 000327168 _____ (InstallShield Software Corporation, Inc.) C:\Windows\IsUn040a.exe

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)


LastRegBack: 2020-04-29 04:35
==================== Final de FRST.txt ========================