Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 20-09-2020 Ejecutado por GyG (administrador) sobre GYG (Gigabyte Technology Co., Ltd. H110M-H) (22-09-2020 07:53:26) Ejecutado desde C:\Users\GyG\Desktop Perfiles cargados: GyG Platform: Windows 7 Ultimate Service Pack 1 (X64) Idioma: Español (España, internacional) Navegador predeterminado: Chrome Modo de Inicio: Normal Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesos (Lista blanca) ================= (Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler.exe (Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler64.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe ==================== Registro (Lista blanca) =================== (Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8844032 2016-01-26] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320568 2016-09-20] (Intel(R) Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation -> Microsoft Corporation) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN HKU\S-1-5-21-2706744355-301380580-567494227-1000\...\Run: [Screenpresso] => C:\Users\GyG\AppData\Local\Learnpulse\Screenpresso\Screenpresso.exe [18397280 2020-08-06] (Learnpulse -> Learnpulse) HKU\S-1-5-21-2706744355-301380580-567494227-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [28990136 2020-06-17] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-2706744355-301380580-567494227-1000\...\Run: [CCleanerBrowserAutoLaunch_A24ABEE8C0446782A214C01F5E417814] => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2117368 2020-09-09] (Piriform Software Ltd -> Piriform Software) HKU\S-1-5-21-2706744355-301380580-567494227-1000\...\MountPoints2: {247f1482-79e1-11e7-8809-1c1b0d5568e8} - L:\LGAutoRun.exe HKU\S-1-5-21-2706744355-301380580-567494227-1000\...\MountPoints2: {d2a67d49-4de7-11e7-b765-806e6f6e6963} - E:\Run.exe HKU\S-1-5-18\...\Run: [] => [X] HKLM\...\Windows x64\Print Processors\hpzpp4pi: C:\Windows\System32\spool\prtprocs\x64\hpzpp4pi.dll [105472 2006-06-03] (Hewlett-Packard Corporation) [Archivo no firmado] HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-13] (Microsoft Windows -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\LIDIL hpzll4pi: C:\Windows\system32\hpzll4pi.dll [66560 2006-06-03] (Hewlett-Packard Company) [Archivo no firmado] HKLM\...\Print\Monitors\LIDIL hpzllw71: C:\Windows\system32\hpzllw71.dll [53248 2009-07-13] (Microsoft Windows -> Hewlett-Packard Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\85.0.5815.105\Installer\chrmstp.exe [2020-09-22] (Piriform Software Ltd -> Piriform Software) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\85.0.4183.102\Installer\chrmstp.exe [2020-09-11] (Google LLC -> Google LLC) BootExecute: autocheck autochk * icarus_rvrt.exe GroupPolicy: Restricción ? <==== ATENCIÓN FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN CHR HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN ==================== Tareas programadas (Lista blanca) ============ (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) Task: {02E6CA63-E19D-493C-97CA-7AC3311A240D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe Task: {03566332-B1F4-40FA-A433-5B2C3D8DCD70} - System32\Tasks\{1E13846E-944E-49B3-9927-F7341B59AE28} => C:\Program Files\Microsoft Security Client\Setup.exe [1129712 2016-11-14] (Microsoft Corporation -> Microsoft Corporation) Task: {1ADBA2DD-0F0A-4A1C-BDEE-412B143BA4AB} - System32\Tasks\{9B04AA9E-85B7-4F43-B570-5C10003E635D} => C:\Windows\system32\pcalua.exe -a "D:\DVDs Soft_18\DVD 04\setup.exe" -d "D:\DVDs Soft_18\DVD 04" Task: {1FE9CF68-3E4C-4544-AF1B-2D6C550C565E} - System32\Tasks\{FC013A47-6962-4404-AA70-A4812A24E778} => C:\Program Files (x86)\Your Uninstaller! 7\urmain.exe [5743892 2011-04-06] (URSoft,Inc) [Archivo no firmado] Task: {318198E2-4DFF-46B7-9CC6-EF88A8083C02} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1336400 2020-07-08] (Adobe Inc. -> Adobe Inc.) Task: {348CBA25-BF1F-4DE0-9EA1-A58D036CE3DA} - System32\Tasks\{59205447-189D-454D-BDB5-A82F0466F885} => C:\Users\GyG\Desktop\Creador de Calendario\TS-060\instalar.exe Task: {464290F4-B204-4F86-A7FE-086F364929D6} - System32\Tasks\{48764631-1ACA-4C52-9FC5-7D94D69AFCA2} => C:\Users\GyG\Desktop\Creador de Calendario\TS-060\instalar.exe Task: {4C21C5B8-A48E-4B36-9D9B-0D8127CAA0B3} - System32\Tasks\{58826F69-A7A5-4B68-BDDB-B41E43B19DB1} => C:\Users\GyG\Desktop\Creador de Calendario\TS-060\instalar.exe Task: {516029CF-F61C-4E79-A2F3-4FD56BD705CB} - System32\Tasks\{DD2A0AB0-5878-4F27-AF95-132A5517A8FE} => C:\Users\GyG\Desktop\Creador de Calendario\TS-060\instalar.exe Task: {5793ABF6-CD96-4110-8D73-73B338C86707} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24584376 2020-06-17] (Piriform Software Ltd -> Piriform Software Ltd) Task: {5DC29657-F53C-4656-A961-BE76AC2016DB} - System32\Tasks\{7B698270-2D4C-4034-B36A-46A5726EFA19} => C:\Users\GyG\Desktop\Creador de Calendario\TS-060\instalar.exe Task: {67D6C6E7-1A4D-4F49-86B8-BDBA511E48A3} - System32\Tasks\{A96ECE52-C7DE-49A4-841C-DB57AA6BCF5D} => C:\Users\GyG\Desktop\TS-060\instalar.exe Task: {69BD7A17-DF2F-4F45-B0C7-67494C230FFD} - System32\Tasks\Tweaking.com - Windows Repair Tray Icon => C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe Task: {6B284D60-8988-4CF8-BDF0-E1BDAF817708} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe Task: {829263F9-05FB-4B54-98A9-B16552ECEF09} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2117368 2020-09-09] (Piriform Software Ltd -> Piriform Software) Task: {8441DFF4-029D-47F2-A8A6-3C79948D3682} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2117368 2020-09-09] (Piriform Software Ltd -> Piriform Software) Task: {895CDDDC-7C1A-4F59-AF4A-F630D6227DD6} - System32\Tasks\{BE987C10-F9D6-420B-B476-0C7827150894} => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe Task: {911E6111-B67C-4DE4-97DC-AC4CBF79B24B} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-09-22] (Piriform Software Ltd -> Piriform Software) Task: {9C82B9F2-7DE9-4F24-B39D-F5F8F10A3D32} - System32\Tasks\{F1F8F59A-438B-44E6-AC16-970379D777B2} => C:\Program Files (x86)\Your Uninstaller! 7\urmain.exe [5743892 2011-04-06] (URSoft,Inc) [Archivo no firmado] Task: {A0684F26-8F0A-48CC-8307-D5E10DD47610} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe Task: {B0143835-0A59-4529-8130-C279E1B1C5A9} - System32\Tasks\{0E748FBE-E8A5-41A8-B64C-4870E91E18BD} => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe Task: {B64667CC-D1D0-4E7F-9740-7B2B0619D3BE} - System32\Tasks\{040BBDB4-7B84-44B3-A8CF-E69D3A6CA791} => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe Task: {B847C0F5-3B08-451A-80AB-05D648651A81} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe Task: {BD8626D9-F433-4149-BB67-B09E43AD13DC} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-09-22] (Piriform Software Ltd -> Piriform Software) Task: {C72318E8-EEED-446C-8621-C239EDDCB5B6} - System32\Tasks\IcarusAvastVpnUpgrade => C:\Program Files\AVAST Software\SecureLine\setup\avast_vpn_online_setup.exe Task: {CB971116-CB30-4F08-9898-909661517377} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe Task: {D083755A-658A-4937-928E-4A1F74D8993A} - System32\Tasks\{50A466AC-F5A1-4FD2-8D78-79DD88DB14E6} => C:\Windows\system32\pcalua.exe -a "C:\Users\GyG\Documents\Downloads\Maquina Virtual\VMware-workstation-full-14.1.2-8497320.exe" -d "C:\Users\GyG\Documents\Downloads\Maquina Virtual" Task: {D27FD992-A0E5-480D-A382-39DB7D181B22} - System32\Tasks\{B7BDBF44-FE8C-4BCB-82EE-2BD0E6060AFA} => D:\WINMAIL\Windows Mail\WinMail.exe [397312 2008-01-19] (Microsoft Corporation) [Archivo no firmado] Task: {DAF07B6A-80B1-43DC-8E1B-D44D5745B506} - System32\Tasks\{F45174AC-D4F1-493A-9A24-D6AB32696C80} => C:\Program Files (x86)\AVG\Secure VPN\Vpn.exe Task: {DEA71E15-8420-4916-89CF-391F592690AE} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => C:\Program Files\Microsoft Security Client\\MpCmdRun.exe [410784 2016-11-14] (Microsoft Corporation -> Microsoft Corporation) Task: {E243D8EB-0780-47B8-AF20-2BEDC7314408} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-06-17] (Piriform Software Ltd -> Piriform Software Ltd) Task: {E2E3F6D1-1B7E-4DD8-A0B1-1A966A5808C6} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe Task: {ECC09EBE-9FDA-448A-B1DD-BF524536E807} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe Task: {EF4E8547-6D40-4C57-827C-BDF55F923B61} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe Task: {F355A03D-FE95-40D1-9FC7-7CD90CD74DC3} - System32\Tasks\Microsoft\Microsoft Antimalware\MpIdleTask => C:\Program Files\Microsoft Security Client\\MpCmdRun.exe [410784 2016-11-14] (Microsoft Corporation -> Microsoft Corporation) Task: {F77FB768-2F21-4DC5-B249-EA95D31EB774} - System32\Tasks\{8E192985-370F-4F66-8ECC-3EEACB2AC7C1} => D:\WINMAIL\Windows Mail\WinMail.exe [397312 2008-01-19] (Microsoft Corporation) [Archivo no firmado] Task: {F99E63B3-F799-4104-8D4C-E695F06A61BE} - System32\Tasks\{F6F43F3C-7ACB-4AE6-B02C-D7133E5A9DED} => C:\Users\GyG\Desktop\Tor Browser\Browser\TorBrowser\Tor\PluggableTransports\obfs4proxy.exe Task: {F9B437DA-030D-4C82-80A0-D5743E7E6A9B} - System32\Tasks\{68847354-471E-4C2C-BF78-586625A0350A} => C:\Program Files (x86)\DOSBox-0.74\DOSBox.exe (Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.) ==================== Internet (Lista blanca) ==================== (Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.) Hosts: Hay más de una entrada en Hosts. Consulte la sección Hosts de Addition.txt Tcpip\..\Interfaces\{067184D0-C67A-4B1B-BC41-1007CD37B544}: [DhcpNameServer] 200.49.130.41 200.42.4.207 FireFox: ======== FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Ningún archivo] FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2020-09-22] (Piriform Software Ltd -> Piriform Software) FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2020-09-22] (Piriform Software Ltd -> Piriform Software) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-08-17] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\GyG\AppData\Local\Google\Chrome\User Data\Default [2020-09-22] CHR Notifications: Default -> hxxps://forospyware.com; hxxps://www.youtube.com CHR HomePage: Default -> hxxps://www.duckduckgo.com/ CHR StartupUrls: Default -> "hxxps://www.duckduckgo.com/" CHR DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms} CHR DefaultSearchKeyword: Default -> duckduckgo.com CHR DefaultNewTabURL: Default -> hxxps://duckduckgo.com/chrome_newtab CHR DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list CHR Extension: (Google Drive) - C:\Users\GyG\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-09-11] CHR Extension: (DuckDuckGo) - C:\Users\GyG\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2020-09-21] CHR Extension: (YouTube) - C:\Users\GyG\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-09-11] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\GyG\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-09-11] CHR Extension: (Gmail) - C:\Users\GyG\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-09-11] CHR Extension: (Chrome Media Router) - C:\Users\GyG\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-09-11] CHR Profile: C:\Users\GyG\AppData\Local\Google\Chrome\User Data\System Profile [2020-09-22] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn] ==================== Servicios (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169544 2020-07-08] (Adobe Inc. -> Adobe Inc.) S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-09-22] (Piriform Software Ltd -> Piriform Software) S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\85.0.5815.105\elevation_service.exe [1343624 2020-09-09] (Piriform Software Ltd -> Piriform Software) S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-09-22] (Piriform Software Ltd -> Piriform Software) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7185288 2020-09-22] (Malwarebytes Inc -> Malwarebytes) R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation) S3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation -> Microsoft Corporation) R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [746504 2020-09-04] (Oracle Corporation -> Oracle Corporation) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation) S2 Ms76AF3F80App; C:\Windows\System32\Ms76AF3F80App.dll [X] ===================== Controladores (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) S3 aswTap; C:\Windows\System32\DRIVERS\aswTap.sys [53904 2018-09-05] (AVAST Software s.r.o. -> The OpenVPN Project) S3 EnigmaFileMonDriver; C:\Windows\System32\drivers\EnigmaFileMonDriver.sys [76744 2020-09-20] (EnigmaSoft Limited -> EnigmaSoft Limited) R1 Gemma; C:\Windows\System32\DRIVERS\Gemma.sys [359584 2018-10-04] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA) R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115448 2013-11-21] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.) R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [217592 2020-09-22] (Malwarebytes Inc -> Malwarebytes) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-09-22] (Malwarebytes Inc -> Malwarebytes) R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation -> Microsoft Corporation) S3 Neo_VPN; C:\Windows\System32\DRIVERS\Neo_0088.sys [38432 2018-05-27] (SoftEther Corporation -> SoftEther Corporation) S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation -> Microsoft Corporation) S3 ptun0901; C:\Windows\System32\DRIVERS\ptun0901.sys [27136 2014-08-08] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 SymTAP; C:\Windows\System32\DRIVERS\SymTAP.sys [52104 2019-05-07] (Symantec Corporation -> The OpenVPN Project) S3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project) U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] (Empty Loop -> ) R3 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [238352 2020-09-04] (Oracle Corporation -> Oracle Corporation) R1 VBoxNetLwf; C:\Windows\System32\DRIVERS\VBoxNetLwf.sys [247744 2020-09-04] (Oracle Corporation -> Oracle Corporation) S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [156568 2018-11-08] (Oracle Corporation -> Oracle Corporation) S1 amsdk; \??\C:\Windows\system32\drivers\amsdk.sys [X] U4 ekrn; no ImagePath S3 gdrv; \??\C:\Windows\gdrv.sys [X] S3 GOVFWZHKUW; \??\C:\Users\GyG\AppData\Local\Temp\GOVFWZHKUW.sys [X] <==== ATENCIÓN S3 MFE_RR; \??\C:\Users\GyG\AppData\Local\Temp\mfe_rr.sys [X] <==== ATENCIÓN S1 netfilter2; system32\drivers\netfilter2.sys [X] S3 VGPU; System32\drivers\rdvgkmd.sys [X] S1 ZAM; \??\C:\Windows\System32\drivers\zam64.sys [X] S1 ZAM_Guard; \??\C:\Windows\System32\drivers\zamguard64.sys [X] ==================== NetSvcs (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) NETSVC: Ms76AF3F80App -> C:\Windows\System32\Ms76AF3F80App.dll ==> Ningún archivo ==================== Un mes (creado) =================== (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2020-09-22 07:53 - 2020-09-22 07:54 - 000021216 _____ C:\Users\GyG\Desktop\FRST.txt 2020-09-22 07:46 - 2020-09-22 07:46 - 000217592 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys 2020-09-22 07:32 - 2020-09-22 07:53 - 000000000 ____D C:\FRST 2020-09-22 07:32 - 2020-09-22 07:31 - 002299392 _____ (Farbar) C:\Users\GyG\Desktop\FRST64.exe 2020-09-22 07:22 - 2020-09-22 07:22 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2020-09-22 07:07 - 2020-09-22 07:22 - 000001920 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2020-09-22 07:07 - 2020-09-22 07:22 - 000001908 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2020-09-22 07:07 - 2020-09-22 07:22 - 000001908 _____ C:\ProgramData\Desktop\Malwarebytes.lnk 2020-09-22 07:04 - 2020-09-22 07:21 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys 2020-09-22 06:58 - 2020-09-22 07:52 - 000001200 _____ C:\Users\GyG\Desktop\JRT.txt 2020-09-22 06:54 - 2020-09-22 07:44 - 000000000 ____D C:\AdwCleaner 2020-09-22 06:51 - 2020-09-22 06:51 - 000000000 ____D C:\Program Files\Malwarebytes 2020-09-22 06:47 - 2020-09-22 07:47 - 000000000 ____D C:\Users\GyG\Desktop\Limpieza pc 22.09 2020-09-22 06:33 - 2020-09-22 06:33 - 001790024 _____ (Malwarebytes) C:\Users\GyG\Desktop\JRT.exe 2020-09-22 06:32 - 2020-09-22 06:32 - 008414384 _____ (Malwarebytes) C:\Users\GyG\Desktop\adwcleaner_8.0.7.exe 2020-09-22 06:28 - 2020-09-22 06:28 - 002040904 _____ (Malwarebytes) C:\Users\GyG\Desktop\MBSetup.exe 2020-09-22 06:22 - 2020-09-22 06:22 - 000003726 _____ C:\Windows\system32\Tasks\CCleaner Browser Heartbeat Task (Hourly) 2020-09-22 06:22 - 2020-09-22 06:22 - 000003144 _____ C:\Windows\system32\Tasks\CCleaner Browser Heartbeat Task (Logon) 2020-09-22 06:22 - 2020-09-22 06:22 - 000002392 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk 2020-09-22 06:22 - 2020-09-22 06:22 - 000000000 ____D C:\ProgramData\CCleaner Browser 2020-09-22 06:21 - 2020-09-22 07:48 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update 2020-09-22 06:21 - 2020-09-22 07:08 - 000000935 _____ C:\Users\Public\Desktop\CCleaner.lnk 2020-09-22 06:21 - 2020-09-22 07:08 - 000000935 _____ C:\ProgramData\Desktop\CCleaner.lnk 2020-09-22 06:21 - 2020-09-22 06:22 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser 2020-09-22 06:21 - 2020-09-22 06:21 - 000003522 _____ C:\Windows\system32\Tasks\CCleanerUpdateTaskMachineUA 2020-09-22 06:21 - 2020-09-22 06:21 - 000003394 _____ C:\Windows\system32\Tasks\CCleanerUpdateTaskMachineCore 2020-09-22 06:21 - 2020-09-22 06:21 - 000002794 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC 2020-09-22 06:21 - 2020-09-22 06:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2020-09-22 03:48 - 2020-09-22 04:01 - 000000000 ____D C:\Users\GyG\Downloads\Drivers HP 2020-09-22 03:07 - 2020-09-22 03:09 - 564744309 _____ C:\Users\GyG\Downloads\Windows6.1-KB947821-v34-x64.msu 2020-09-22 01:54 - 2020-09-22 01:55 - 060764560 _____ (Microsoft Corporation) C:\Users\GyG\Downloads\EIE11_ES-US_WOL_WIN764.EXE 2020-09-22 01:34 - 2020-09-22 01:34 - 000000000 ____D C:\Program Files (x86)\Microsoft Security Client 2020-09-22 01:07 - 2020-09-22 01:07 - 011313360 _____ (Microsoft Corporation) C:\Users\GyG\Downloads\windowsupdateagent-7.6-x64.exe 2020-09-22 00:53 - 2020-09-22 00:53 - 000000000 ____D C:\Users\GyG\Downloads\Solucion windows update 2020-09-22 00:42 - 2020-09-22 00:43 - 000000000 ____D C:\Users\GyG\Downloads\Solucion windows defender 2020-09-22 00:39 - 2020-09-22 00:39 - 000000598 _____ C:\Users\GyG\Downloads\Parches regedit By D.A.T.S.rar 2020-09-21 10:23 - 2020-09-22 01:39 - 000000004 _____ C:\ProgramData\rc.dat 2020-09-21 10:21 - 2020-09-22 01:40 - 000000004 _____ C:\ProgramData\lock.dat 2020-09-21 10:21 - 2020-09-22 01:02 - 000000036 _____ C:\ProgramData\irw.atsd 2020-09-21 10:21 - 2020-09-21 10:21 - 000000008 _____ C:\ProgramData\ts.dat 2020-09-21 09:53 - 2020-09-21 09:57 - 000000000 ____D C:\Program Files\Registry Finder 2020-09-21 09:52 - 2020-09-22 01:40 - 000000000 ____D C:\Program Files (x86)\upnsVRDISo 2020-09-21 09:52 - 2020-09-21 09:52 - 000000000 _____ C:\Program Files (x86)\temp_files 2020-09-21 09:51 - 2020-09-21 10:22 - 000000000 ____D C:\Program Files\temp_files 2020-09-21 09:51 - 2020-09-21 09:51 - 000000000 ____D C:\Program Files (x86)\voSongs 2020-09-21 09:51 - 2020-09-21 09:51 - 000000000 ____D C:\Program Files (x86)\MPlayer 2020-09-21 08:51 - 2020-09-21 08:51 - 000002956 _____ C:\Windows\system32\Tasks\{1E13846E-944E-49B3-9927-F7341B59AE28} 2020-09-21 08:33 - 2020-09-21 08:33 - 054491614 _____ C:\Users\GyG\Downloads\IOBIT Advanced SystemCare Pro Serial.v13.5.0.272020new.rar 2020-09-21 08:03 - 2020-09-21 08:03 - 000001886 _____ C:\Users\GyG\Downloads\Fix crack.zip 2020-09-21 06:59 - 2006-06-03 21:29 - 000066560 _____ (Hewlett-Packard Company) C:\Windows\system32\hpzll4pi.dll 2020-09-21 06:59 - 2006-05-16 03:26 - 000090624 _____ C:\Windows\system32\HPZIDS40.dll 2020-09-21 05:01 - 2020-09-22 07:44 - 000000000 ____D C:\Users\GyG\AppData\Roaming\Hewlett-Packard 2020-09-21 05:01 - 2020-09-21 06:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support 2020-09-21 04:59 - 2020-09-21 04:59 - 000000000 ____D C:\Users\GyG\AppData\Roaming\hpqLog 2020-09-21 04:53 - 2020-09-21 04:53 - 000000000 ____D C:\Windows\system32\Tasks\Hewlett-Packard 2020-09-21 04:48 - 2020-09-21 04:48 - 000000000 ____D C:\Users\GyG\AppData\Roaming\HPPSDr 2020-09-21 04:46 - 2020-09-21 07:46 - 000000000 ____D C:\Users\GyG\Downloads\Impresora 2020-09-21 02:39 - 2020-09-21 02:39 - 000000000 ____D C:\Intel 2020-09-21 01:29 - 2020-09-22 07:04 - 000000000 ____D C:\ProgramData\Malwarebytes 2020-09-20 17:08 - 2020-09-20 17:08 - 000002958 _____ C:\Windows\system32\Tasks\{F1F8F59A-438B-44E6-AC16-970379D777B2} 2020-09-20 17:07 - 2020-09-20 17:07 - 000002958 _____ C:\Windows\system32\Tasks\{FC013A47-6962-4404-AA70-A4812A24E778} 2020-09-20 16:07 - 2020-09-22 06:21 - 000000000 ____D C:\Program Files\CCleaner 2020-09-20 15:35 - 2020-09-20 15:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EnigmaSoft 2020-09-20 15:35 - 2020-09-20 15:37 - 000076744 _____ (EnigmaSoft Limited) C:\Windows\system32\Drivers\EnigmaFileMonDriver.sys 2020-09-20 15:35 - 2020-09-20 15:35 - 000000000 ____D C:\ProgramData\EnigmaSoft Limited 2020-09-19 01:58 - 2020-09-19 01:27 - 001897721 _____ C:\Users\GyG\Downloads\TutReWinMail.zip 2020-09-19 01:26 - 2020-09-21 03:45 - 000000000 ____D C:\Users\GyG\Downloads\Winmail 2020 2020-09-19 00:25 - 2020-09-19 00:25 - 002889150 _____ C:\Users\GyG\Downloads\WindowsMail.zip 2020-09-19 00:19 - 2020-09-20 15:24 - 000000000 ____D C:\Users\GyG\Downloads\Avast 2020 2020-09-19 00:01 - 2020-09-19 00:01 - 000000000 ____D C:\Users\GyG\Downloads\Victoria528 2020-09-18 23:57 - 2020-09-18 23:57 - 001473751 _____ C:\Users\GyG\Downloads\Victoria528.zip 2020-09-17 04:41 - 2020-09-22 07:31 - 000000000 ____D C:\Users\GyG\Desktop\Descargas Para Corregir Windows 7 2020-09-14 13:33 - 2020-09-14 13:33 - 000000000 ____D C:\ProgramData\dbg 2020-09-14 02:36 - 2020-09-04 03:38 - 001033680 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxDrv.sys 2020-09-14 02:36 - 2020-09-04 03:38 - 000187456 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxUSBMon.sys 2020-09-14 01:49 - 2020-09-14 01:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DSPlayer 2020-09-14 01:49 - 2020-09-14 01:49 - 000000000 ____D C:\Program Files (x86)\DSPlayer 2020-09-14 01:35 - 2020-09-14 01:35 - 000000000 ____D C:\Program Files (x86)\7-Zip 2020-09-14 01:25 - 2020-09-20 16:15 - 000000000 ____D C:\Users\GyG\Downloads\CCleaner 2020-09-13 09:00 - 2020-09-13 09:00 - 001821984 _____ (Microsoft Corporation) C:\Users\GyG\Downloads\MicrosoftEdgeSetup.exe 2020-09-13 08:23 - 2020-09-13 08:23 - 000003320 _____ C:\Windows\system32\Tasks\IcarusAvastVpnUpgrade 2020-09-13 07:46 - 2018-09-05 21:01 - 000053904 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\aswTap.sys 2020-09-13 07:34 - 2020-09-20 14:53 - 000000000 ____D C:\ProgramData\AVAST Software 2020-09-13 04:43 - 2020-09-13 04:43 - 000003640 _____ C:\Windows\system32\Tasks\Tweaking.com - Windows Repair Tray Icon 2020-09-13 04:41 - 2020-09-13 04:42 - 039161480 _____ (Tweaking.com) C:\Users\GyG\Downloads\tweaking.com_windows_repair_aio_setup.exe 2020-09-13 04:08 - 2020-09-13 05:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare 2020-09-13 04:08 - 2020-09-13 04:10 - 000000000 ____D C:\Program Files\Wondershare 2020-09-13 04:06 - 2020-09-13 04:06 - 001387760 _____ C:\Users\GyG\Downloads\recoverit_setup_full4144.exe 2020-09-12 02:45 - 2020-09-12 02:45 - 000000000 ____D C:\Windows\CheckSur 2020-09-12 01:24 - 2020-09-12 01:24 - 000000000 ____D C:\Users\GyG\Downloads\Para Windows 10 2020-09-12 00:54 - 2020-09-12 00:55 - 004679344 _____ (Crystal Dew World ) C:\Users\GyG\Downloads\CrystalDiskInfo8_8_6.exe 2020-09-11 21:07 - 2020-09-11 21:14 - 024092205 _____ C:\Users\GyG\Downloads\Windows Mail_11_9_20.rar 2020-09-11 19:03 - 2020-09-14 02:35 - 000000000 ____D C:\Windows\Minidump 2020-09-11 18:35 - 2020-09-21 03:15 - 000749356 _____ C:\Windows\system32\perfh013.dat 2020-09-11 18:35 - 2020-09-21 03:15 - 000154900 _____ C:\Windows\system32\perfc013.dat 2020-09-11 18:35 - 2020-09-11 18:34 - 000341322 _____ C:\Windows\system32\perfi013.dat 2020-09-11 18:35 - 2020-09-11 18:34 - 000043068 _____ C:\Windows\system32\perfd013.dat 2020-09-11 18:34 - 2020-09-11 18:34 - 000000000 ____D C:\Windows\SysWOW64\nl 2020-09-11 18:34 - 2020-09-11 18:34 - 000000000 ____D C:\Windows\SysWOW64\0413 2020-09-11 18:34 - 2020-09-11 18:34 - 000000000 ____D C:\Windows\system32\nl 2020-09-11 18:34 - 2020-09-11 18:34 - 000000000 ____D C:\Windows\system32\0413 2020-09-11 18:26 - 2020-09-11 18:38 - 000003950 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{408CD843-7C78-44B7-8C16-4CC27D277C45} 2020-09-11 18:25 - 2020-09-21 03:15 - 000696482 _____ C:\Windows\system32\perfh00C.dat 2020-09-11 18:25 - 2020-09-21 03:15 - 000484872 _____ C:\Windows\system32\perfh001.dat 2020-09-11 18:25 - 2020-09-21 03:15 - 000132030 _____ C:\Windows\system32\perfc00C.dat 2020-09-11 18:25 - 2020-09-21 03:15 - 000096570 _____ C:\Windows\system32\perfc001.dat 2020-09-11 18:25 - 2020-09-11 18:24 - 000344522 _____ C:\Windows\system32\perfi00C.dat 2020-09-11 18:25 - 2020-09-11 18:24 - 000289060 _____ C:\Windows\system32\perfi001.dat 2020-09-11 18:25 - 2020-09-11 18:24 - 000042056 _____ C:\Windows\system32\perfd001.dat 2020-09-11 18:25 - 2020-09-11 18:24 - 000038160 _____ C:\Windows\system32\perfd00C.dat 2020-09-11 18:24 - 2020-09-11 18:24 - 000000000 ____D C:\Windows\SysWOW64\fr 2020-09-11 18:24 - 2020-09-11 18:24 - 000000000 ____D C:\Windows\SysWOW64\ar 2020-09-11 18:24 - 2020-09-11 18:24 - 000000000 ____D C:\Windows\SysWOW64\040C 2020-09-11 18:24 - 2020-09-11 18:24 - 000000000 ____D C:\Windows\SysWOW64\0409 2020-09-11 18:24 - 2020-09-11 18:24 - 000000000 ____D C:\Windows\system32\fr 2020-09-11 18:24 - 2020-09-11 18:24 - 000000000 ____D C:\Windows\system32\ar 2020-09-11 18:24 - 2020-09-11 18:24 - 000000000 ____D C:\Windows\system32\040C 2020-09-11 18:24 - 2020-09-11 18:24 - 000000000 ____D C:\Windows\system32\0409 2020-09-11 18:22 - 2020-09-12 02:21 - 000000000 ____D C:\Windows\Panther 2020-09-11 18:12 - 2020-09-21 03:15 - 000703066 _____ C:\Windows\system32\perfh007.dat 2020-09-11 18:12 - 2020-09-21 03:15 - 000150914 _____ C:\Windows\system32\perfc007.dat 2020-09-11 18:12 - 2020-09-11 18:11 - 000295922 _____ C:\Windows\system32\perfi007.dat 2020-09-11 18:12 - 2020-09-11 18:11 - 000038104 _____ C:\Windows\system32\perfd007.dat 2020-09-11 18:11 - 2020-09-11 18:11 - 000000000 ____D C:\Windows\SysWOW64\de 2020-09-11 18:11 - 2020-09-11 18:11 - 000000000 ____D C:\Windows\SysWOW64\0407 2020-09-11 18:11 - 2020-09-11 18:11 - 000000000 ____D C:\Windows\system32\de 2020-09-11 18:11 - 2020-09-11 18:11 - 000000000 ____D C:\Windows\system32\0407 2020-09-11 15:30 - 2020-09-11 17:34 - 000000000 ____D C:\ProgramData\AVG 2020-09-11 14:56 - 2020-09-11 14:56 - 000000000 ____D C:\Users\GyG\AppData\Roaming\Opderf 2020-09-11 06:29 - 2010-03-23 01:31 - 000000000 ____D C:\Users\GyG\Downloads\FixWin 2020-09-11 05:53 - 2020-09-11 05:53 - 000178612 _____ C:\Users\GyG\Downloads\FixWin.zip 2020-09-10 15:10 - 2020-09-10 15:11 - 023856037 _____ C:\Users\GyG\Downloads\Windows Mail_10.09.20.rar 2020-09-07 14:05 - 2020-09-07 14:05 - 000000000 ____D C:\ProgramData\MB3Migration 2020-09-07 13:47 - 2020-04-17 06:58 - 000000001 _____ C:\Windows\y.txt 2020-09-07 13:46 - 2020-09-22 00:59 - 000000434 __RSH C:\ProgramData\ntuser.pol 2020-09-07 13:46 - 2020-09-07 13:46 - 000000000 ____D C:\Windows\Wget 2020-09-07 13:46 - 2020-09-07 13:46 - 000000000 ____D C:\Windows\curl 2020-09-07 13:18 - 2020-09-11 15:37 - 000000000 ____D C:\Users\GyG\AppData\Roaming\Smart Clock 2020-09-07 13:18 - 2020-09-07 13:18 - 000000000 ____D C:\ProgramData\Riate 2020-09-07 13:17 - 2020-09-07 13:17 - 000000000 ____D C:\Users\GyG\AppData\Roaming\Few 2020-09-05 17:30 - 2020-09-05 17:30 - 000140457 _____ C:\Users\GyG\Downloads\Avast 2020.zip 2020-09-04 03:38 - 2020-09-04 03:38 - 000247744 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxNetLwf.sys 2020-09-04 03:38 - 2020-09-04 03:38 - 000238352 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxNetAdp6.sys 2020-09-01 14:43 - 2020-09-01 14:43 - 002040904 _____ (Malwarebytes) C:\Users\GyG\Downloads\MBSetup-0009996.0009996-consumer.exe 2020-08-26 18:16 - 2020-08-26 18:16 - 000000000 ____D C:\ProgramData\SystemAcCrux 2020-08-26 18:16 - 2020-07-07 15:11 - 000075912 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\Drivers\EUDCPEPM.sys 2020-08-26 18:16 - 2020-07-07 15:11 - 000024200 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\Drivers\EUEDKEPM.sys 2020-08-26 18:15 - 2020-08-26 18:15 - 047169616 _____ (EaseUS ) C:\Users\GyG\Downloads\epm_free_easeus.exe 2020-08-26 18:14 - 2020-08-26 18:14 - 001710608 _____ C:\Users\GyG\Downloads\epm_free_installer.exe 2020-08-26 18:11 - 2020-08-26 18:11 - 000002651 _____ C:\Users\Public\Desktop\SD Card Formatter.lnk 2020-08-26 18:11 - 2020-08-26 18:11 - 000002651 _____ C:\ProgramData\Desktop\SD Card Formatter.lnk 2020-08-26 18:11 - 2020-08-26 18:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SD Association 2020-08-26 18:11 - 2020-08-26 18:11 - 000000000 ____D C:\Program Files (x86)\SDA 2020-08-26 18:09 - 2018-11-21 08:09 - 000000000 ____D C:\Users\GyG\Downloads\SDCardFormatterv5_WinEN 2020-08-26 18:08 - 2020-08-26 18:08 - 006319151 _____ C:\Users\GyG\Downloads\SDCardFormatterv5_WinEN.zip ==================== Un mes (modificado) ================== (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2020-09-22 07:46 - 2018-04-13 09:57 - 000000000 __SHD C:\Users\GyG\IntelGraphicsProfiles 2020-09-22 07:45 - 2009-07-14 02:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2020-09-22 07:44 - 2018-05-14 20:18 - 000000000 ____D C:\ProgramData\Hewlett-Packard 2020-09-22 07:44 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\inf 2020-09-22 07:17 - 2009-07-14 01:45 - 000032912 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2020-09-22 07:17 - 2009-07-14 01:45 - 000032912 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2020-09-22 07:15 - 2017-06-13 11:12 - 000002198 _____ C:\Windows\epplauncher.mif 2020-09-22 06:06 - 2019-01-07 22:49 - 000000000 ____D C:\ProgramData\TEMP 2020-09-22 06:02 - 2020-02-26 17:43 - 000000000 ____D C:\ProgramData\HP 2020-09-22 01:34 - 2020-06-05 01:40 - 000000000 ____D C:\Program Files\Microsoft Security Client 2020-09-21 10:01 - 2020-04-14 15:16 - 000000000 ____D C:\Users\GyG\Documents\Guillermo 2020-09-21 10:00 - 2020-04-22 16:02 - 000000000 ____D C:\Users\GyG\Documents\Gustavo 2020-09-21 09:24 - 2009-07-14 00:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared 2020-09-21 06:26 - 2017-06-10 12:28 - 000000010 _____ C:\Windows\GSetup.ini 2020-09-21 05:30 - 2020-08-06 12:50 - 000440192 _____ C:\Windows\system32\FNTCACHE.DAT 2020-09-21 05:01 - 2017-06-10 12:43 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2020-09-21 04:01 - 2019-07-17 14:54 - 000000000 ____D C:\Users\GyG\Documents\Outlook Files 2020-09-21 03:15 - 2017-06-10 12:35 - 004903760 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2020-09-21 03:15 - 2011-04-12 06:10 - 000751314 _____ C:\Windows\system32\perfh00A.dat 2020-09-21 03:15 - 2011-04-12 06:10 - 000160272 _____ C:\Windows\system32\perfc00A.dat 2020-09-21 03:04 - 2020-08-20 12:33 - 000002177 _____ C:\Users\GyG\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk 2020-09-21 03:04 - 2019-07-17 14:32 - 000000000 ___RD C:\Users\GyG\OneDrive 2020-09-21 01:18 - 2017-06-10 11:25 - 000000000 ____D C:\Users\GyG 2020-09-20 15:56 - 2020-01-04 00:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox 2020-09-20 14:53 - 2019-02-15 14:58 - 000000000 ____D C:\Program Files\Common Files\AVAST Software 2020-09-19 00:41 - 2009-07-14 02:13 - 004785646 _____ C:\Windows\system32\PerfStringBackup.INI 2020-09-17 04:22 - 2020-08-21 11:59 - 007456368 _____ C:\Users\GyG\Desktop\psiphon3.exe 2020-09-13 04:24 - 2019-07-07 12:36 - 000000000 ____D C:\Users\Public\Documents\Wondershare 2020-09-13 04:24 - 2019-07-07 12:36 - 000000000 ____D C:\ProgramData\Documents\Wondershare 2020-09-13 04:08 - 2019-07-07 12:39 - 000000000 ____D C:\ProgramData\Wondershare 2020-09-13 04:07 - 2019-07-07 12:37 - 000000000 ____D C:\Program Files (x86)\Wondershare 2020-09-12 05:23 - 2009-07-14 02:08 - 000032630 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2020-09-11 20:49 - 2020-04-16 16:36 - 000000000 ____D C:\Windows\pss 2020-09-11 20:33 - 2020-06-12 02:49 - 000002294 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2020-09-11 20:33 - 2020-06-12 02:49 - 000002253 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2020-09-11 20:33 - 2020-06-12 02:49 - 000002253 _____ C:\ProgramData\Desktop\Google Chrome.lnk 2020-09-11 18:49 - 2020-05-19 12:53 - 000000000 ____D C:\Program Files\Microsoft Silverlight 2020-09-11 18:34 - 2011-04-12 06:10 - 000000000 ____D C:\Windows\SysWOW64\XPSViewer 2020-09-11 18:34 - 2011-04-12 06:10 - 000000000 ____D C:\Windows\SysWOW64\winrm 2020-09-11 18:34 - 2011-04-12 06:10 - 000000000 ____D C:\Windows\SysWOW64\WCN 2020-09-11 18:34 - 2011-04-12 06:10 - 000000000 ____D C:\Windows\SysWOW64\sysprep 2020-09-11 18:34 - 2011-04-12 06:10 - 000000000 ____D C:\Windows\SysWOW64\slmgr 2020-09-11 18:34 - 2011-04-12 06:10 - 000000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts 2020-09-11 18:34 - 2011-04-12 06:10 - 000000000 ____D C:\Windows\system32\winrm 2020-09-11 18:34 - 2011-04-12 06:10 - 000000000 ____D C:\Windows\system32\WCN 2020-09-11 18:34 - 2011-04-12 06:10 - 000000000 ____D C:\Windows\system32\slmgr 2020-09-11 18:34 - 2011-04-12 06:10 - 000000000 ____D C:\Windows\system32\Printing_Admin_Scripts 2020-09-11 18:34 - 2009-07-14 02:37 - 000000000 ____D C:\Windows\DigitalLocker 2020-09-11 18:34 - 2009-07-14 02:32 - 000000000 ____D C:\Windows\system32\WinBioPlugIns 2020-09-11 18:34 - 2009-07-14 02:32 - 000000000 ____D C:\Program Files\Windows Sidebar 2020-09-11 18:34 - 2009-07-14 02:32 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2020-09-11 18:34 - 2009-07-14 02:32 - 000000000 ____D C:\Program Files\Windows Defender 2020-09-11 18:34 - 2009-07-14 02:32 - 000000000 ____D C:\Program Files\DVD Maker 2020-09-11 18:34 - 2009-07-14 02:32 - 000000000 ____D C:\Program Files (x86)\Windows Sidebar 2020-09-11 18:34 - 2009-07-14 02:32 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2020-09-11 18:34 - 2009-07-14 02:32 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2020-09-11 18:34 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\SysWOW64\Setup 2020-09-11 18:34 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\SysWOW64\oobe 2020-09-11 18:34 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\SysWOW64\MUI 2020-09-11 18:34 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\SysWOW64\migwiz 2020-09-11 18:34 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\SysWOW64\Dism 2020-09-11 18:34 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\SysWOW64\com 2020-09-11 18:34 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\system32\sysprep 2020-09-11 18:34 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\system32\Setup 2020-09-11 18:34 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\system32\oobe 2020-09-11 18:34 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\system32\MUI 2020-09-11 18:34 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\system32\migwiz 2020-09-11 18:34 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\system32\Dism 2020-09-11 18:34 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\system32\com 2020-09-11 18:34 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\servicing 2020-09-11 18:34 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\PolicyDefinitions 2020-09-11 18:34 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\IME 2020-09-11 18:34 - 2009-07-14 00:20 - 000000000 ____D C:\Program Files\Common Files\System 2020-09-11 17:39 - 2019-07-17 14:17 - 000000000 ____D C:\Program Files\Microsoft Office 2020-09-11 14:04 - 2020-06-03 22:12 - 000000000 ____D C:\Windows\system32\MRT 2020-09-11 13:59 - 2020-06-05 01:55 - 129170736 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2020-09-11 06:24 - 2019-04-05 15:00 - 000000000 ____D C:\Windows\system32\Tasks\OfficeSoftwareProtectionPlatform 2020-09-11 06:24 - 2009-07-14 00:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy 2020-09-11 06:23 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\registration 2020-09-10 15:16 - 2019-06-24 21:34 - 000000000 ____D C:\Program Files\Unlocker 2020-09-05 17:27 - 2020-06-21 03:49 - 000000000 ____D C:\Users\GyG\AppData\Roaming\uTorrent 2020-09-04 11:03 - 2020-07-19 16:14 - 000075368 _____ (Avast Software) C:\Windows\system32\icarus_rvrt.exe ==================== Archivos en la raíz de algunos directorios ======== 2020-09-21 10:21 - 2020-09-22 01:40 - 000000004 _____ () C:\ProgramData\lock.dat 2020-09-21 10:23 - 2020-09-22 01:39 - 000000004 _____ () C:\ProgramData\rc.dat 2020-09-21 10:21 - 2020-09-21 10:21 - 000000008 _____ () C:\ProgramData\ts.dat 2020-09-21 09:52 - 2020-09-21 09:52 - 000000000 _____ () C:\Program Files (x86)\temp_files 2020-09-21 04:28 - 2020-09-21 04:28 - 000000017 _____ () C:\Users\GyG\AppData\Local\resmon.resmoncfg ==================== SigCheck ============================ (No existe una corrección automática para los archivos que no pasan la verificación.) LastRegBack: 2019-05-30 11:49 ==================== Final de FRST.txt ========================