Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 16-09-2020 Ejecutado por 2Tim4del2al4 (administrador) sobre ROSAMCASTRILLON (Acer Aspire S3-391) (17-09-2020 00:43:20) Ejecutado desde C:\Users\Rosa M Castrillon\Desktop Perfiles cargados: 2Tim4del2al4 Platform: Windows 7 Professional Service Pack 1 (X64) Idioma: Español (España, internacional) Navegador predeterminado: FF Modo de Inicio: Normal Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesos (Lista blanca) ================= (Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe (IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFCore.exe (IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe (IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFTips.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe ==================== Registro (Lista blanca) =================== (Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3017456 2013-07-30] (Synaptics Incorporated -> Synaptics Incorporated) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18390904 2020-09-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [331064 2020-07-24] (Apple Inc. -> Apple Inc.) HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506168 2020-09-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3274056 2017-09-23] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [710264 2020-06-18] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 2013-09-17] (Intel Corporation -> Intel Corporation) HKU\S-1-5-21-3096733655-4183173044-1789290592-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1 HKU\S-1-5-21-3096733655-4183173044-1789290592-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [11264 2009-07-13] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-18\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [90951544 2020-09-08] (Skype Software Sarl -> Skype Technologies S.A.) HKLM\...\Windows x64\Print Processors\SUGS1PC: C:\Windows\System32\spool\prtprocs\x64\SUGS1pc.dll [27648 2006-08-21] (Windows (R) Server 2003 DDK provider) [Archivo no firmado] HKLM\...\Windows x64\Print Processors\usp02PC: C:\Windows\System32\spool\prtprocs\x64\usp02pc.dll [43520 2014-02-24] (Windows (R) Codename Longhorn DDK provider) [Archivo no firmado] HKLM\...\Print\Monitors\SUGS1 Langmon: C:\Windows\system32\SUGS1l6.dll [22016 2006-12-04] () [Archivo no firmado] HKLM\...\Print\Monitors\us013 Langmon: C:\Windows\system32\us013lm.dll [22528 2017-10-21] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM\...\Print\Monitors\usp02 Langmon: C:\Windows\system32\usp02l.dll [29184 2014-04-16] () [Archivo no firmado] FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN ==================== Tareas programadas (Lista blanca) ============ (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) Task: {0A2E9B43-33ED-4157-9599-61D5B093BAE6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24770744 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd) Task: {10B4B25E-BB92-44BF-B3B2-51B58D322442} - System32\Tasks\{D216FF6B-F489-4DC6-B143-C1028E529155} => C:\Windows\system32\pcalua.exe -a C:\Users\ROSAMC~1\AppData\Local\Temp\jre-8u181-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1 <==== ATENCIÓN Task: {19271202-771C-493D-B8F1-767C80E3A75E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-09-27] (Google Inc -> Google Inc.) Task: {20C34161-A7B6-44EC-A3D1-BA0F53BFFEDE} - System32\Tasks\{795D257B-5B0A-4DDD-811B-6034DA71D8C0} => C:\Windows\system32\pcalua.exe -a "C:\Users\Rosa M Castrillon\Desktop\Setup.exe" -d "C:\Users\Rosa M Castrillon\Desktop" Task: {2221B157-3FB1-48A9-AFE9-9E9942099605} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [233224 2011-11-25] (Intel® Services Manager -> Intel Corporation) Task: {38270336-B074-45FD-B98F-678BEB6795AA} - System32\Tasks\{D11923B0-2F88-4A05-AF0A-C29B6AD937FE} => C:\Windows\system32\pcalua.exe -a "C:\Users\Rosa M Castrillon\Downloads\jxpiinstall(5).exe" -d "C:\Users\Rosa M Castrillon\Downloads" Task: {38B2FFF7-1FC2-4F3E-91E8-D2FBD4821D05} - System32\Tasks\Driver Booster SkipUAC (2Tim4del2al4) => C:\Program Files (x86)\IObit\Driver Booster\7.6.0\DriverBooster.exe [7945488 2020-07-24] (IObit Information Technology -> IObit) Task: {50E1F1E6-4D1D-4ABB-AC9B-00F45D7A90C0} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\7.6.0\Scheduler.exe [149776 2020-07-24] (IObit Information Technology -> IObit) Task: {5341D264-12C9-4CC5-9120-AC3F2609D244} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\7.6.0\AutoUpdate.exe [2375952 2020-07-24] (IObit Information Technology -> IObit) Task: {693A2131-7F8D-4952-B601-9FBDB5A9E5C8} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [233224 2011-11-25] (Intel® Services Manager -> Intel Corporation) Task: {7DC14EF3-3619-414D-A358-0A15D23B7D2A} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [660688 2020-09-01] (Mozilla Corporation -> Mozilla Foundation) Task: {7EC3C1F8-2E68-4593-ABE8-8444099A273D} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1706496 2020-07-23] () [Archivo no firmado] Task: {8B9330CF-072A-4A27-B4B7-AD82571CCC7A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd) Task: {8FFC4C96-F2D8-48DF-9C73-33BDCBEED6C4} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.) Task: {985175AE-74A3-4B4D-9035-8D0106054B6D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-09-27] (Google Inc -> Google Inc.) Task: {A1A249DA-478F-4BD1-A2A9-1DF2CBFD2E9B} - System32\Tasks\{02B40FEA-654A-4B12-821B-7775E9C4F074} => C:\Windows\system32\pcalua.exe -a "C:\Users\Rosa M Castrillon\Desktop\Samsung ml-1610\Setup.exe" -d "C:\Users\Rosa M Castrillon\Desktop\Samsung ml-1610" Task: {CAB739D8-F10D-4A82-A20B-016D9C348878} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work => C:\Windows\system32\WorkFoldersSystemTray.exe [98304 2015-09-04] (Microsoft Windows -> Microsoft Corporation) Task: {DD02CFBD-AF1B-4F0C-9602-6E24749BEA02} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1336400 2020-07-08] (Adobe Inc. -> Adobe Inc.) Task: {E2E292C4-6567-4EB0-8F33-BC04B1A8331F} - System32\Tasks\IMF_SkipUAC_2Tim4del2al4 => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [6709008 2020-07-30] (IObit Information Technology -> IObit) (Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.) Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe ==================== Internet (Lista blanca) ==================== (Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.) Winsock: Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => Ningún archivo Winsock: Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => Ningún archivo Winsock: Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.) Winsock: Catalog5-x64 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => Ningún archivo Winsock: Catalog5-x64 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => Ningún archivo Winsock: Catalog5-x64 10 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{3F66D715-CAAC-4DEF-81C6-31F9F3F12E32}: [DhcpNameServer] 192.168.1.1 HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restricción <==== ATENCIÓN Edge: ====== Edge Profile: C:\Users\Rosa M Castrillon\AppData\Local\Microsoft\Edge\User Data\Default [2020-09-14] FireFox: ======== FF DefaultProfile: hxswmn6x.default-1490483075583-1598686596163 FF ProfilePath: C:\Users\Rosa M Castrillon\AppData\Roaming\Mozilla\Firefox\Profiles\hxswmn6x.default-1490483075583-1598686596163 [2020-09-16] FF Homepage: Mozilla\Firefox\Profiles\hxswmn6x.default-1490483075583-1598686596163 -> hxxps://www.google.com/?gfe_rd=cr&ei=HlHrV9mzLpDQ8Aew_oq4Cg&gws_rd=ssl,cr&fg=1 FF Extension: (Avira Navegación segura) - C:\Users\Rosa M Castrillon\AppData\Roaming\Mozilla\Firefox\Profiles\hxswmn6x.default-1490483075583-1598686596163\Extensions\abs@avira.com.xpi [2020-08-29] FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_433.dll [2020-09-09] (Adobe Inc. -> ) FF Plugin: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-08-25] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-08-25] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @microsoft.com/GENUINE -> disabled [Ningún archivo] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Ningún archivo] FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Ningún archivo] FF Plugin: @videolan.org/vlc,version=2.2.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Ningún archivo] FF Plugin: @videolan.org/vlc,version=3.0.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Ningún archivo] FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_433.dll [2020-09-09] (Adobe Inc. -> ) FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1235205.dll [2019-03-15] (Adobe Systems, Inc.) [Archivo no firmado] FF Plugin-x32: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-08-25] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-08-25] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Ningún archivo] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\Microsoft Office\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-08-17] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Profile 1 CHR Profile: C:\Users\Rosa M Castrillon\AppData\Local\Google\Chrome\User Data\Default [2018-10-21] CHR HomePage: Default -> hxxps://www.google.com/?gfe_rd=cr&ei=HlHrV9mzLpDQ8Aew_oq4Cg&gws_rd=ssl,cr&fg=1 CHR StartupUrls: Default -> "hxxps://www.google.com/?gws_rd=cr&ei=hhOEUvTDEZeosASagoHQBg","hxxps://www.google.com/?gfe_rd=cr&ei=HlHrV9mzLpDQ8Aew_oq4Cg&gws_rd=ssl,cr&fg=1" CHR Extension: (Chrome Media Router) - C:\Users\Rosa M Castrillon\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-07] CHR Profile: C:\Users\Rosa M Castrillon\AppData\Local\Google\Chrome\User Data\Profile 1 [2020-08-24] CHR Extension: (Presentaciones de Google) - C:\Users\Rosa M Castrillon\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-03-24] CHR Extension: (Google Docs) - C:\Users\Rosa M Castrillon\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2017-03-24] CHR Extension: (Google Drive) - C:\Users\Rosa M Castrillon\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-03-24] CHR Extension: (YouTube) - C:\Users\Rosa M Castrillon\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-03-24] CHR Extension: (Hojas de cálculo de Google) - C:\Users\Rosa M Castrillon\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-03-24] CHR Extension: (Documentos de Google sin conexión) - C:\Users\Rosa M Castrillon\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-03-24] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Rosa M Castrillon\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-04] CHR Extension: (Gmail) - C:\Users\Rosa M Castrillon\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-03-24] CHR Extension: (Chrome Media Router) - C:\Users\Rosa M Castrillon\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-26] CHR Profile: C:\Users\Rosa M Castrillon\AppData\Local\Google\Chrome\User Data\System Profile [2017-11-13] CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] ==================== Servicios (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169544 2020-07-08] (Adobe Inc. -> Adobe Inc.) S3 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-05-20] (Apple Inc. -> Apple Inc.) R2 Backupper Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [483184 2019-03-29] (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.) R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2403088 2020-06-19] (IObit Information Technology -> IObit) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7185288 2020-09-17] (Malwarebytes Inc -> Malwarebytes) S3 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13147152 2020-08-19] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2016-03-25] (Microsoft Windows -> Microsoft Corporation) S2 Live Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [X] S2 ss_conn_service2; "C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe" [X] ===================== Controladores (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) R0 ambakdrv; C:\Windows\System32\ambakdrv.sys [51120 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> ) R2 ammntdrv; C:\Windows\system32\ammntdrv.sys [171952 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> ) R2 amwrtdrv; C:\Windows\system32\amwrtdrv.sys [38320 2017-09-01] (CHENGDU AOMEI Tech Co., Ltd. -> ) S2 DgiVecp; C:\Windows\system32\Drivers\DgiVecp.sys [53816 2009-03-02] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R2 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [176112 2018-05-02] (Bitdefender SRL -> BitDefender LLC) R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2020-09-08] (Martin Malik - REALiX -> REALiX(tm)) R3 Imf8HpRegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\ImfHpRegFilter.sys [25176 2019-12-17] (IObit CO., LTD -> IObit) R1 IMFCameraProtect; C:\Windows\system32\drivers\IMFCameraProtect.sys [24456 2019-07-30] (IObit CO., LTD -> IObit) R3 IMFDownProtect; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\IMFDownProtect.sys [21928 2018-12-06] (IObit Information Technology -> IObit) R3 IMFEFSFileControl; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\IMFEFSFileControl.sys [22920 2019-08-14] (IObit CO., LTD -> IObit) R3 IMFForceDelete; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\IMFForceDelete.sys [16184 2019-06-11] (IObit CO., LTD -> IObit) R3 ImfHpFileFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\ImfHpFileFilter.sys [28760 2019-12-17] (IObit CO., LTD -> IObit) R1 IMFMBRProtect; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\IMFMBRProtect.sys [23976 2018-12-06] (IObit Information Technology -> IObit) R3 ImfObCallback; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\ImfObCallback.sys [17496 2020-03-12] (IObit CO., LTD -> IObit) R3 ImfRealScanner; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\ImfRealScanner.sys [33368 2020-07-01] (IObit CO., LTD -> IObit) R3 ImfRegistryFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\ImfRegistryFilter.sys [25688 2019-12-17] (IObit CO., LTD -> IObit) R2 inpoutx64; C:\Windows\System32\Drivers\inpoutx64.sys [15008 2017-05-17] (Red Fox UK Limited -> Highresolution Enterprises [www.highrez.co.uk]) R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [217592 2020-09-17] (Malwarebytes Inc -> Malwarebytes) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-09-17] (Malwarebytes Inc -> Malwarebytes) R2 npf; C:\Windows\System32\drivers\npf.sys [36600 2018-12-19] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) S3 phantomtap; C:\Windows\System32\DRIVERS\phantomtap.sys [35664 2017-10-25] (Avira Operations GmbH & Co. KG -> The OpenVPN Project) R3 Trufos; C:\Windows\System32\DRIVERS\TRUFOS.sys [439928 2018-04-24] (Bitdefender SRL -> BitDefender S.R.L.) S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2016-03-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.) R3 VCSVADHWSer; C:\Windows\System32\DRIVERS\vcsvad.sys [29320 2015-10-01] (AVSOFT CORP. -> AVSOFT Corp.) S3 WacomPen; C:\Windows\system32\drivers\wacompen.sys [27776 2009-07-13] (Microsoft Windows -> Microsoft Corporation) S3 AscFileFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win7_amd64\AscFileFilter.sys [X] S3 AscRegistryFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win7_amd64\AscRegistryFilter.sys [X] S3 cpuz145; \??\C:\Windows\temp\cpuz145\cpuz145_x64.sys [X] ==================== NetSvcs (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) ==================== Un mes (creado) =================== (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2020-09-17 00:38 - 2020-09-17 00:38 - 000000000 ____D C:\Users\Rosa M Castrillon\Desktop\FRST-OlderVersion 2020-09-17 00:34 - 2020-09-17 00:34 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2020-09-17 00:28 - 2020-09-17 00:34 - 000217592 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys 2020-09-16 00:04 - 2020-09-16 00:04 - 000000000 ____D C:\Users\Public\Documents\NativeFusKies_Log 2020-09-16 00:04 - 2020-09-16 00:04 - 000000000 ____D C:\ProgramData\Documents\NativeFusKies_Log 2020-09-15 20:10 - 2020-09-15 20:12 - 000047733 _____ C:\Users\Rosa M Castrillon\Desktop\Addition.txt 2020-09-15 20:07 - 2020-09-17 00:44 - 000023320 _____ C:\Users\Rosa M Castrillon\Desktop\FRST.txt 2020-09-15 20:06 - 2020-09-17 00:44 - 000000000 ____D C:\FRST 2020-09-15 19:59 - 2020-09-17 00:38 - 002298368 _____ (Farbar) C:\Users\Rosa M Castrillon\Desktop\FRST64.exe 2020-09-15 04:42 - 2020-09-15 04:42 - 000000000 ____D C:\Users\Rosa M Castrillon\Documents\samsung 2020-09-15 03:53 - 2020-09-16 23:41 - 000000000 ____D C:\Program Files\Samsung 2020-09-15 03:32 - 2020-09-15 03:33 - 036893384 _____ (Samsung Electronics Co., Ltd.) C:\Users\Rosa M Castrillon\Downloads\SAMSUNG_USB_Driver_for_Mobile_Phones.exe 2020-09-15 03:29 - 2020-09-15 05:13 - 000000179 _____ C:\Users\Rosa M Castrillon\Documents\Samsung Android Drivers.txt 2020-09-15 03:06 - 2020-09-17 00:03 - 000003136 _____ C:\Windows\system32\Tasks\Driver Booster Scheduler 2020-09-15 03:06 - 2020-09-17 00:03 - 000003128 _____ C:\Windows\system32\Tasks\Driver Booster Update 2020-09-15 03:06 - 2020-09-17 00:03 - 000002884 _____ C:\Windows\system32\Tasks\Driver Booster SkipUAC (2Tim4del2al4) 2020-09-14 20:09 - 2020-09-17 00:42 - 000000000 ____D C:\Users\Rosa M Castrillon\Documents\Analisis 2020 2020-09-14 04:28 - 2020-09-17 00:14 - 000000000 ____D C:\ProgramData\ProductData 2020-09-14 04:20 - 2020-09-14 04:20 - 000004277 _____ C:\Users\Rosa M Castrillon\Desktop\JRT.txt 2020-09-14 03:55 - 2020-09-14 04:01 - 000000000 ____D C:\AdwCleaner 2020-09-14 03:30 - 2020-09-17 00:34 - 000001968 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2020-09-14 03:30 - 2020-09-17 00:34 - 000001956 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2020-09-14 03:30 - 2020-09-17 00:34 - 000001956 _____ C:\ProgramData\Desktop\Malwarebytes.lnk 2020-09-14 03:29 - 2020-09-17 00:33 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys 2020-09-14 03:29 - 2020-09-14 03:29 - 000000000 ____D C:\ProgramData\Malwarebytes 2020-09-14 03:27 - 2018-05-02 11:04 - 000176112 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys 2020-09-14 03:26 - 2020-09-14 03:26 - 000000000 ____D C:\Program Files\Malwarebytes 2020-09-14 02:54 - 2020-09-14 03:01 - 000002196 _____ C:\Users\Rosa M Castrillon\Desktop\Rkill.txt 2020-09-14 02:48 - 2020-09-14 02:48 - 001790024 _____ (Malwarebytes) C:\Users\Rosa M Castrillon\Desktop\JRT.exe 2020-09-14 02:46 - 2020-09-14 02:46 - 008414384 _____ (Malwarebytes) C:\Users\Rosa M Castrillon\Desktop\adwcleaner_8.0.7.exe 2020-09-14 02:36 - 2020-09-14 02:36 - 000001245 _____ C:\Users\Rosa M Castrillon\Desktop\iExplore.exe.lnk 2020-09-14 02:35 - 2020-09-14 02:36 - 001802704 _____ (Bleeping Computer, LLC) C:\Users\Rosa M Castrillon\Downloads\iExplore.exe 2020-09-14 01:43 - 2020-09-14 01:43 - 000000050 _____ C:\Users\Rosa M Castrillon\Documents\Herramientas de desinfeccion.txt 2020-09-13 20:13 - 2020-09-13 20:13 - 000001049 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer.lnk 2020-09-13 20:13 - 2020-09-13 20:13 - 000001037 _____ C:\Users\Public\Desktop\TeamViewer.lnk 2020-09-13 20:13 - 2020-09-13 20:13 - 000001037 _____ C:\ProgramData\Desktop\TeamViewer.lnk 2020-09-13 20:11 - 2020-09-13 20:17 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\Local\TeamViewer 2020-09-13 02:59 - 2020-09-13 02:59 - 000000947 _____ C:\Users\Public\Desktop\Vulcan PDF Merge.lnk 2020-09-13 02:59 - 2020-09-13 02:59 - 000000947 _____ C:\ProgramData\Desktop\Vulcan PDF Merge.lnk 2020-09-13 02:59 - 2020-09-13 02:59 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\Local\Heraclesoft 2020-09-13 02:59 - 2020-09-13 02:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vulcan PDF Merge 2020-09-13 02:59 - 2020-09-13 02:59 - 000000000 ____D C:\Program Files\Vulcan PDF Merge 2020-09-13 02:58 - 2020-09-13 02:58 - 000000000 ____D C:\Users\Rosa M Castrillon\Documents\Vulcan PDF Merge 2020-09-13 02:52 - 2020-09-13 02:53 - 012011935 _____ C:\Users\Rosa M Castrillon\Downloads\VulcanPDFMergePRO1120sv64ne.zip 2020-09-10 02:13 - 2020-09-10 02:18 - 000000000 ____D C:\Users\Rosa M Castrillon\Documents\Androides 2020-09-09 23:51 - 2020-09-09 23:51 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\Roaming\Avdshare Video Converter 7 2020-09-09 23:50 - 2020-09-09 23:50 - 000001249 _____ C:\Users\Public\Desktop\Avdshare Video Converter 7.lnk 2020-09-09 23:50 - 2020-09-09 23:50 - 000001249 _____ C:\ProgramData\Desktop\Avdshare Video Converter 7.lnk 2020-09-09 23:50 - 2020-09-09 23:50 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Avdshare 2020-09-09 23:50 - 2020-09-09 23:50 - 000000000 ____D C:\Program Files (x86)\Avdshare 2020-09-09 23:45 - 2020-09-09 23:46 - 019402532 _____ C:\Users\Rosa M Castrillon\Downloads\AvdshareVideoConverter720-sb27nj.zip 2020-09-09 20:19 - 2020-09-09 23:49 - 000000185 _____ C:\Users\Rosa M Castrillon\Documents\Avdshare Video Converter.txt 2020-09-09 04:45 - 2020-09-09 04:45 - 000000000 ____D C:\Users\Public\Documents\NativeFus_Log 2020-09-09 04:45 - 2020-09-09 04:45 - 000000000 ____D C:\ProgramData\Documents\NativeFus_Log 2020-09-09 04:43 - 2020-07-03 11:43 - 000144664 _____ (MAPILab Ltd. & Add-in Express Ltd.) C:\Windows\SysWOW64\secman.dll 2020-09-09 04:21 - 2020-09-09 04:21 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01007.Wdf 2020-09-09 04:01 - 2020-09-09 04:01 - 072520600 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat 2020-09-09 04:01 - 2020-09-09 04:01 - 033399859 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT 2020-09-09 04:01 - 2020-09-09 04:01 - 007178360 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 007101632 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 006886992 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2020-09-09 04:01 - 2020-09-09 04:01 - 006270080 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 005347096 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv211.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 003753024 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 003676960 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl 2020-09-09 04:01 - 2020-09-09 04:01 - 003340296 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 003159664 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 002930040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 001971472 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 001965264 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 001788064 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 001598504 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 001516376 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 001499368 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01007.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 001353208 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 001159072 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOProp.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000964912 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000751408 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000734880 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000716880 _____ (Microsoft Corporation) C:\Windows\system32\WinUSBCoInstaller.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000715752 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000692056 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000541008 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000511776 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000453168 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000452840 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000448712 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000392760 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000378272 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2API.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000367712 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000343600 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000333112 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000327160 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000327160 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000316080 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000278376 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000261336 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000261304 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000260320 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000231808 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000230592 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000220280 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000218160 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000192872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000174832 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000157232 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000139648 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000122208 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000116432 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000093792 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000090808 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000090064 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000088208 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000083512 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll 2020-09-09 04:01 - 2020-09-09 04:01 - 000023584 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll 2020-09-08 03:51 - 2020-09-10 02:10 - 000002314 _____ C:\Users\Public\Desktop\Driver Booster 7.lnk 2020-09-08 03:51 - 2020-09-10 02:10 - 000002314 _____ C:\ProgramData\Desktop\Driver Booster 7.lnk 2020-09-08 03:51 - 2020-09-08 03:51 - 000027552 _____ (REALiX(tm)) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS 2020-09-08 03:51 - 2020-09-08 03:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 7 2020-09-08 03:49 - 2020-09-08 03:49 - 000000821 _____ C:\Users\Rosa M Castrillon\Documents\Driver Booster Pro.txt 2020-09-08 03:45 - 2020-09-08 03:46 - 025840176 _____ (IObit ) C:\Users\Rosa M Castrillon\Downloads\driver_booster_setup.exe 2020-09-08 03:32 - 2020-09-08 03:32 - 025759713 _____ C:\Users\Rosa M Castrillon\Downloads\Driverboosterpro76ev62gz.zip 2020-09-03 03:24 - 2020-09-03 03:24 - 000001538 _____ C:\Users\Public\Desktop\Aiseesoft 4K Converter.lnk 2020-09-03 03:24 - 2020-09-03 03:24 - 000001538 _____ C:\ProgramData\Desktop\Aiseesoft 4K Converter.lnk 2020-09-03 03:24 - 2020-09-03 03:24 - 000000000 ____D C:\Users\Rosa M Castrillon\Documents\Aiseesoft Studio 2020-09-03 03:24 - 2020-09-03 03:24 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\Local\Aiseesoft Studio 2020-09-03 03:24 - 2020-09-03 03:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aiseesoft 2020-09-03 03:24 - 2020-09-03 03:24 - 000000000 ____D C:\ProgramData\Aiseesoft Studio 2020-09-03 03:24 - 2020-09-03 03:24 - 000000000 ____D C:\Program Files (x86)\Aiseesoft Studio 2020-09-03 03:22 - 2020-09-03 03:49 - 000007597 _____ C:\Users\Rosa M Castrillon\AppData\Local\Resmon.ResmonCfg 2020-09-03 03:13 - 2020-09-03 03:13 - 000000147 _____ C:\Users\Rosa M Castrillon\Documents\Aiseesoft 4K Converter.txt 2020-09-01 21:20 - 2020-09-01 21:20 - 000001044 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iScreenKit.lnk 2020-09-01 21:20 - 2020-09-01 21:20 - 000001032 _____ C:\Users\Public\Desktop\iScreenKit.lnk 2020-09-01 21:20 - 2020-09-01 21:20 - 000001032 _____ C:\ProgramData\Desktop\iScreenKit.lnk 2020-09-01 21:20 - 2020-09-01 21:20 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\Roaming\INNOTREND COMMERCE HK LIMITED 2020-09-01 21:19 - 2020-09-01 21:20 - 000000000 ____D C:\Program Files (x86)\iScreenKit 2020-09-01 21:02 - 2020-09-01 21:03 - 032229702 _____ C:\Users\Rosa M Castrillon\Downloads\iScreenKit122-oa01xn.zip 2020-09-01 20:40 - 2020-09-01 21:45 - 000000000 ____D C:\Program Files\Mozilla Firefox 2020-08-31 23:37 - 2020-08-31 23:37 - 000009495 _____ C:\Users\Rosa M Castrillon\Documents\Reclamación a Claro(1).pdf 2020-08-31 22:57 - 2020-08-31 22:57 - 000006685 _____ C:\Users\Rosa M Castrillon\Documents\Reclamación a Claro.pdf 2020-08-29 02:36 - 2020-08-29 02:36 - 000000000 ____D C:\Datos antiguos de Firefox 2020-08-25 22:28 - 2020-08-25 22:28 - 000193704 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2020-08-25 22:27 - 2020-08-25 22:27 - 000000000 ____D C:\Program Files\Java 2020-08-25 22:14 - 2020-08-25 22:17 - 072990856 _____ (Oracle Corporation) C:\Users\Rosa M Castrillon\Downloads\jre-8u261-windows-i586.exe 2020-08-25 22:10 - 2020-08-25 22:13 - 083038856 _____ (Oracle Corporation) C:\Users\Rosa M Castrillon\Downloads\jre-8u261-windows-x64.exe 2020-08-25 21:53 - 2020-09-01 21:20 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2020-08-25 21:20 - 2020-08-25 21:20 - 000000063 _____ C:\Users\Rosa M Castrillon\Documents\Java SE Runtime Environment 8u261.txt 2020-08-24 03:54 - 2020-08-24 03:58 - 148274769 _____ C:\Users\Rosa M Castrillon\Downloads\Windowstweaksguide(IOBIT).zip 2020-08-24 03:14 - 2018-04-24 12:05 - 000439928 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys 2020-08-24 03:01 - 2020-08-24 03:01 - 000000000 ____D C:\Windows\Tasks\ImCleanDisabled 2020-08-24 03:01 - 2020-08-24 03:01 - 000000000 ____D C:\ProgramData\{F86B0233-9A85-4589-8AAF-524CC4F8211B} 2020-08-24 03:00 - 2019-07-30 18:12 - 000024456 _____ (IObit) C:\Windows\system32\Drivers\IMFCameraProtect.sys 2020-08-24 02:58 - 2020-08-24 02:58 - 000002866 _____ C:\Windows\system32\Tasks\IMF_SkipUAC_2Tim4del2al4 2020-08-24 02:57 - 2020-09-16 23:53 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\LocalLow\IObit 2020-08-24 02:57 - 2020-09-14 04:01 - 000000000 ____D C:\Program Files (x86)\IObit 2020-08-24 02:57 - 2020-09-09 04:06 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\Roaming\IObit 2020-08-24 02:57 - 2020-08-24 02:57 - 000001177 _____ C:\Users\Public\Desktop\IObit Malware Fighter.lnk 2020-08-24 02:57 - 2020-08-24 02:57 - 000001177 _____ C:\ProgramData\Desktop\IObit Malware Fighter.lnk 2020-08-24 02:57 - 2020-08-24 02:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter 2020-08-24 02:56 - 2020-09-14 04:01 - 000000000 ____D C:\ProgramData\IObit 2020-08-24 02:54 - 2020-08-24 02:54 - 000000838 _____ C:\Users\Rosa M Castrillon\Documents\IOBIT.txt 2020-08-24 02:52 - 2020-08-24 02:53 - 064147726 _____ C:\Users\Rosa M Castrillon\Downloads\Malwarefightrpro8-pq83yr.zip 2020-08-24 02:47 - 2020-08-24 02:49 - 064222432 _____ (IObit ) C:\Users\Rosa M Castrillon\Downloads\IObit-Malware-Fighter-Setup.exe 2020-08-22 22:57 - 2020-08-29 02:18 - 000000168 _____ C:\Users\Rosa M Castrillon\Documents\Niquest.txt ==================== Un mes (modificado) ================== (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2020-09-17 00:44 - 2016-09-27 10:40 - 000000828 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job 2020-09-16 23:54 - 2009-07-13 23:45 - 000036608 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2020-09-16 23:54 - 2009-07-13 23:45 - 000036608 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2020-09-16 23:45 - 2019-05-07 02:50 - 000000150 _____ C:\Windows\SysWOW64\winsevr.dat 2020-09-16 23:45 - 2019-05-07 02:47 - 000000000 ____D C:\Program Files (x86)\AOMEI Backupper 2020-09-16 23:44 - 2009-07-14 00:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2020-09-16 23:40 - 2009-07-13 22:20 - 000000000 ____D C:\Windows\inf 2020-09-16 23:35 - 2018-04-07 02:15 - 000000000 ____D C:\Program Files (x86)\SAMSUNG 2020-09-16 23:35 - 2017-09-03 15:59 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\Roaming\Samsung 2020-09-16 23:35 - 2016-10-10 14:49 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2020-09-16 00:49 - 2016-11-21 12:14 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\LocalLow\Mozilla 2020-09-15 03:48 - 2016-09-29 18:48 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\Local\ElevatedDiagnostics 2020-09-15 03:27 - 2016-09-30 14:43 - 000000000 ____D C:\ProgramData\Samsung 2020-09-14 04:02 - 2017-09-23 17:29 - 000000000 ____D C:\ProgramData\Acer 2020-09-14 04:01 - 2017-09-23 17:29 - 000000000 ____D C:\Program Files\Acer 2020-09-14 04:01 - 2016-09-26 18:57 - 000000000 ____D C:\Users\Rosa M Castrillon 2020-09-14 03:21 - 2017-11-12 15:11 - 000000000 ____D C:\Program Files (x86)\Avira 2020-09-14 03:17 - 2020-06-17 00:03 - 000000000 ____D C:\ProgramData\Avira 2020-09-14 03:12 - 2017-03-01 01:27 - 000000000 ____D C:\ProgramData\Package Cache 2020-09-14 02:53 - 2019-11-05 03:29 - 000000000 ____D C:\Program Files\CCleaner 2020-09-14 01:40 - 2017-09-23 18:25 - 000000000 ____D C:\Temp 2020-09-14 01:06 - 2017-03-01 01:22 - 000000000 ____D C:\AKickDocumentConverter19-db94se 2020-09-13 20:50 - 2020-06-17 00:17 - 000000000 ____D C:\Users\Public\Security Sessions 2020-09-13 20:49 - 2018-04-03 17:46 - 000572584 _____ C:\Windows\system32\FNTCACHE.DAT 2020-09-13 20:45 - 2018-03-24 02:18 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\Roaming\GlarySoft 2020-09-13 20:37 - 2018-08-10 22:16 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\Roaming\FILEminimizerPictures 2020-09-13 20:36 - 2018-04-03 17:50 - 000134736 _____ C:\Users\Rosa M Castrillon\AppData\Local\GDIPFONTCACHEV1.DAT 2020-09-13 20:36 - 2018-02-16 02:07 - 000000000 ____D C:\ProgramData\FILEminimizer 2020-09-13 20:17 - 2016-09-27 07:20 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2020-09-13 20:13 - 2016-09-27 07:20 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\Roaming\TeamViewer 2020-09-13 19:49 - 2019-05-07 02:52 - 000000104 _____ C:\Windows\SysWOW64\AbBakConfig.dat 2020-09-13 19:49 - 2019-05-07 02:50 - 000001024 ____H C:\SYSTAG.BIN 2020-09-13 04:46 - 2018-12-27 03:07 - 000001234 _____ C:\Users\Public\Desktop\Skype.lnk 2020-09-13 04:46 - 2018-12-27 03:07 - 000001234 _____ C:\ProgramData\Desktop\Skype.lnk 2020-09-13 04:46 - 2018-12-27 03:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2020-09-13 04:18 - 2020-07-18 23:28 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\Roaming\Anvsoft 2020-09-13 02:26 - 2019-11-05 03:29 - 000004130 _____ C:\Windows\system32\Tasks\CCleaner Update 2020-09-13 02:26 - 2019-04-29 02:34 - 000000000 ____D C:\Users\Rosa M Castrillon\Downloads\ronyasoft-poster-designer 2020-09-13 02:26 - 2019-04-28 00:47 - 000000000 ____D C:\Users\Rosa M Castrillon\Downloads\MSTech_Search_in_Contents_1.5.4.173 2020-09-13 02:14 - 2020-06-22 18:17 - 000002225 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2020-09-13 02:14 - 2020-06-22 18:17 - 000002184 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2020-09-13 02:14 - 2020-06-22 18:17 - 000002184 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk 2020-09-12 03:57 - 2009-07-13 22:20 - 000000000 ____D C:\Windows\system32\NDF 2020-09-09 21:04 - 2018-04-12 03:00 - 000000000 ____D C:\Users\Rosa M Castrillon\Documents\iDealshare VideoGo 2020-09-09 20:44 - 2017-01-19 18:22 - 000000000 ____D C:\Windows\system32\MRT 2020-09-09 20:34 - 2017-01-19 18:21 - 129170736 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2020-09-09 05:04 - 2017-03-22 19:21 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe 2020-09-09 05:04 - 2017-03-22 19:21 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2020-09-09 05:04 - 2016-09-27 07:28 - 000000000 ____D C:\Windows\SysWOW64\Macromed 2020-09-09 05:04 - 2016-09-27 07:28 - 000000000 ____D C:\Windows\system32\Macromed 2020-09-09 04:04 - 2016-09-26 19:10 - 000000000 ____D C:\Windows\system32\DAX2 2020-09-09 04:03 - 2016-09-26 19:09 - 000000000 ____D C:\Windows\SysWOW64\RTCOM 2020-09-01 21:45 - 2018-03-27 01:10 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2020-08-31 23:06 - 2020-07-30 01:44 - 000000000 ____D C:\Users\Rosa M Castrillon\Documents\DLPdf2Word 2020-08-31 22:58 - 2020-07-30 01:43 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\Roaming\DLPdf2Word_Multi 2020-08-30 22:45 - 2009-07-13 22:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy 2020-08-28 21:58 - 2020-06-22 18:16 - 000003480 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2020-08-28 21:58 - 2020-06-22 18:16 - 000003352 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2020-08-25 22:45 - 2016-09-26 12:51 - 000000000 ____D C:\Windows\Panther 2020-08-25 22:35 - 2020-06-22 19:48 - 000003148 _____ C:\Windows\system32\Tasks\klcp_update 2020-08-25 22:35 - 2020-06-22 19:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack 2020-08-25 22:35 - 2020-06-22 19:47 - 000000000 ____D C:\Program Files (x86)\K-Lite Codec Pack 2020-08-25 22:28 - 2018-03-12 01:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2020-08-25 22:23 - 2018-03-12 01:12 - 000000000 ____D C:\Program Files (x86)\Java 2020-08-25 22:20 - 2018-03-12 01:12 - 000166056 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2020-08-25 21:53 - 2018-03-27 01:10 - 000000936 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2020-08-25 21:53 - 2018-03-27 01:10 - 000000924 _____ C:\Users\Public\Desktop\Firefox.lnk 2020-08-25 21:53 - 2018-03-27 01:10 - 000000924 _____ C:\ProgramData\Desktop\Firefox.lnk 2020-08-22 04:20 - 2020-07-18 03:47 - 000000000 ____D C:\Users\Rosa M Castrillon\Desktop\Adoreshare 2020-08-22 03:22 - 2020-08-17 02:54 - 000000000 ____D C:\Users\Rosa M Castrillon\Dimo 2020-08-21 03:06 - 2016-09-27 16:43 - 000002059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2020-08-19 21:08 - 2020-08-06 03:11 - 000000000 ____D C:\Users\Rosa M Castrillon\Documents\PODCAST Solo el amor crea 2020-08-19 04:28 - 2020-07-15 21:59 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\Roaming\MPC-HC 2020-08-19 04:24 - 2020-07-16 03:16 - 000000000 ____D C:\Users\Rosa M Castrillon\Focus Projects 4 2020-08-19 04:22 - 2020-07-16 02:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Franzis 2020-08-19 04:22 - 2020-07-16 02:58 - 000000000 ____D C:\Program Files\Franzis ==================== Archivos en la raíz de algunos directorios ======== 2020-07-05 19:41 - 2020-09-13 20:05 - 000000164 _____ () C:\Users\Rosa M Castrillon\AppData\Roaming\PPTConverter.log 2020-09-03 03:22 - 2020-09-03 03:49 - 000007597 _____ () C:\Users\Rosa M Castrillon\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (No existe una corrección automática para los archivos que no pasan la verificación.) LastRegBack: 2019-05-06 01:05 ==================== Final de FRST.txt ========================