Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 14-07-2021 Ejecutado por 2Tim4del2al4 (administrador) sobre ROSAMCASTRILLON (Acer Aspire S3-391) (17-07-2021 01:49:28) Ejecutado desde C:\Users\Rosa M Castrillon\Desktop Perfiles cargados: 2Tim4del2al4 Platform: Windows 7 Professional Service Pack 1 (X64) Idioma: Español (España, internacional) Navegador predeterminado: FF Modo de Inicio: Normal ==================== Procesos (Lista blanca) ================= (Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe (Crystal Rich Ltd -> Crystal Rich Ltd) C:\Program Files (x86)\USB Safely Remove\USBSafelyRemove.exe (Crystal Rich Ltd -> Crystal Rich Ltd) C:\Program Files (x86)\USB Safely Remove\USBSRService.exe (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (Glarysoft LTD -> Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\GUBootService.exe (Greatis Software LLC -> Greatis Software, LLC) C:\Program Files (x86)\BootRacer\BootRacerServ.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Software Updater\ISUTip.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Proton Technologies AG -> ) C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.exe (Proton Technologies AG -> ) C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe (Proton Technologies AG -> ) C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe (Proton Technologies AG -> The OpenVPN Project) C:\Program Files (x86)\Proton Technologies\ProtonVPN\Resources\64-bit\openvpn.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe ==================== Registro (Lista blanca) =================== (Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3017456 2013-07-30] (Synaptics Incorporated -> Synaptics Incorporated) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18390904 2020-09-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506168 2020-09-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3274056 2017-09-23] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) HKLM\...\Run: [USB Safely Remove] => C:\Program Files (x86)\USB Safely Remove\USBSafelyRemove.exe [7088640 2021-04-28] (Crystal Rich Ltd -> Crystal Rich Ltd) HKLM\...\Run: [] => [X] HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 2013-09-17] (Intel Corporation -> Intel Corporation) HKLM-x32\...\Run: [] => [X] HKLM\...\Policies\Explorer\Run: [BootRacer] => C:\Program Files (x86)\BootRacer\bootrace.exe [9519456 2021-04-22] (Greatis Software LLC -> Greatis Software) HKU\S-1-5-21-3096733655-4183173044-1789290592-1000\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [44416 2021-07-02] (Glarysoft LTD -> Glarysoft Ltd) HKU\S-1-5-21-3096733655-4183173044-1789290592-1000\...\Run: [ProtonVPN] => C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.exe [7726184 2021-07-02] (Proton Technologies AG -> ) HKU\S-1-5-21-3096733655-4183173044-1789290592-1000\...\Run: [] => [X] HKU\S-1-5-21-3096733655-4183173044-1789290592-1000\...\Policies\system: [shell] explorer.exe <==== ATENCIÓN HKU\S-1-5-21-3096733655-4183173044-1789290592-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1 HKLM\...\Windows x64\Print Processors\SUGS1PC: C:\Windows\System32\spool\prtprocs\x64\SUGS1pc.dll [27648 2006-08-21] (Windows (R) Server 2003 DDK provider) [Archivo no firmado] HKLM\...\Windows x64\Print Processors\usp02PC: C:\Windows\System32\spool\prtprocs\x64\usp02pc.dll [43520 2014-02-24] (Windows (R) Codename Longhorn DDK provider) [Archivo no firmado] HKLM\...\Print\Monitors\novaPDF 11 Port Monitor: C:\Windows\system32\novamn11.dll [18944 2021-05-05] (Softland) [Archivo no firmado] HKLM\...\Print\Monitors\SUGS1 Langmon: C:\Windows\system32\SUGS1l6.dll [22016 2006-12-04] () [Archivo no firmado] HKLM\...\Print\Monitors\us013 Langmon: C:\Windows\system32\us013lm.dll [22528 2017-10-21] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM\...\Print\Monitors\usp02 Langmon: C:\Windows\system32\usp02l.dll [29184 2014-04-16] () [Archivo no firmado] BootExecute: autocheck autochk * GroupPolicy: Restricción ? <==== ATENCIÓN Policies: C:\ProgramData\NTUSER.pol: Restricción <==== ATENCIÓN HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN ==================== Tareas programadas (Lista blanca) ============ (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) Task: {02A8BE40-852C-46A6-9989-04748A8BCDC5} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [917888 2021-07-02] (Glarysoft LTD -> Glarysoft Ltd) Task: {0A2E9B43-33ED-4157-9599-61D5B093BAE6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28880512 2021-06-16] (Piriform Software Ltd -> Piriform Software Ltd) Task: {0C53920D-3341-49B2-B7ED-789617820E73} - System32\Tasks\SU_AutoUpdate => C:\Program Files (x86)\IObit\Software Updater\SoftwareUpdater.exe [4530712 2021-06-03] (IObit CO., LTD -> IObit) Task: {0E3F3390-7B6D-4CBA-BD4F-13768881EBC0} - System32\Tasks\{FD7A4F98-B764-46EE-9948-F84A50A8A6B0} => C:\Program Files (x86)\ AV Vcs 7.0\VcsCore.exe [488448 2019-04-23] (AVSOFT Corp.) [Archivo no firmado] Task: {10B4B25E-BB92-44BF-B3B2-51B58D322442} - System32\Tasks\{D216FF6B-F489-4DC6-B143-C1028E529155} => C:\Windows\system32\pcalua.exe -a C:\Users\ROSAMC~1\AppData\Local\Temp\jre-8u181-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1 <==== ATENCIÓN Task: {183F2E36-3E86-4A31-8A47-8D1B6D844297} - System32\Tasks\{5EB2ABCF-C8C1-43F3-A48D-44830105B6A3} => C:\Program Files (x86)\ AV Vcs 7.0\VcsCore.exe [488448 2019-04-23] (AVSOFT Corp.) [Archivo no firmado] Task: {19271202-771C-493D-B8F1-767C80E3A75E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-09-27] (Google Inc -> Google Inc.) Task: {1AA7E7D7-D8C8-4663-8151-92B61B63CBA9} - System32\Tasks\{EBA3DA24-E9E4-4EB1-9FFD-ACB1BE35EE7E} => C:\Program Files (x86)\ AV Vcs 7.0\VcsCmd.exe [280528 2019-09-18] (Audio and Video Software Corporation -> AVSOFT Corp.) Task: {20C34161-A7B6-44EC-A3D1-BA0F53BFFEDE} - System32\Tasks\{795D257B-5B0A-4DDD-811B-6034DA71D8C0} => C:\Windows\system32\pcalua.exe -a "C:\Users\Rosa M Castrillon\Desktop\Setup.exe" -d "C:\Users\Rosa M Castrillon\Desktop" Task: {21E5A7D4-2E5F-4AC0-B61B-37465F964B90} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {2221B157-3FB1-48A9-AFE9-9E9942099605} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [233224 2011-11-25] (Intel® Services Manager -> Intel Corporation) Task: {300D80D5-F5F0-44DC-B35D-98D636DDFCA5} - System32\Tasks\Wise Care 365 => C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe Task: {34071B7B-7BB7-4191-8319-28DE7E88D83E} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\8.5.0\Scheduler.exe [156696 2021-04-09] (IObit CO., LTD -> IObit) Task: {38270336-B074-45FD-B98F-678BEB6795AA} - System32\Tasks\{D11923B0-2F88-4A05-AF0A-C29B6AD937FE} => C:\Windows\system32\pcalua.exe -a "C:\Users\Rosa M Castrillon\Downloads\jxpiinstall(5).exe" -d "C:\Users\Rosa M Castrillon\Downloads" Task: {4C80EA60-D773-4E2F-A21B-E3F9514999E3} - System32\Tasks\Avira_Security_Systray => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe [1628464 2021-07-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) Task: {5B7E49F6-5C7C-476A-BA55-807C05C0FDAF} - System32\Tasks\Driver Booster SkipUAC (2Tim4del2al4) => C:\Program Files (x86)\IObit\Driver Booster\8.5.0\DriverBooster.exe [8344088 2021-06-09] (IObit CO., LTD -> IObit) Task: {693A2131-7F8D-4952-B601-9FBDB5A9E5C8} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [233224 2011-11-25] (Intel® Services Manager -> Intel Corporation) Task: {6B35E3BD-19F6-43C5-ABE0-7E98953009B5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.) Task: {6E34078F-11C4-424E-BC42-0FD813307BC7} - System32\Tasks\{0ECDD18A-27F2-4815-9A1A-CBA2C15D2A25} => C:\Program Files (x86)\ AV Vcs 7.0\VcsCore.exe [488448 2019-04-23] (AVSOFT Corp.) [Archivo no firmado] Task: {6F756290-843A-4C41-88CB-BE9CF036F695} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-06-16] (Piriform Software Ltd -> Piriform) Task: {72F7DF1E-35E9-4BE7-A37E-12E1E78CF3A5} - System32\Tasks\{E19FFDA8-B50E-4073-92F8-070EC7B9238A} => C:\Program Files (x86)\ AV Vcs 7.0\VcsCore.exe [488448 2019-04-23] (AVSOFT Corp.) [Archivo no firmado] Task: {77C98729-16A0-42D8-8C87-B632341E403E} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2651056 2021-07-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) Task: {79D5B335-6839-46D3-9462-B31B4437056C} - System32\Tasks\{F0EB1398-C6DD-434D-8054-732BAD333B14} => C:\Program Files (x86)\ AV Vcs 7.0\VcsCore.exe [488448 2019-04-23] (AVSOFT Corp.) [Archivo no firmado] Task: {7EC3C1F8-2E68-4593-ABE8-8444099A273D} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1907712 2021-05-11] () [Archivo no firmado] Task: {93355F4B-BEEB-4F2C-95AE-77D582B8E24A} - System32\Tasks\{ED76418D-CA20-48AC-85CC-E84D7A70F523} => C:\Program Files (x86)\ AV Vcs 7.0\VcsCore.exe [488448 2019-04-23] (AVSOFT Corp.) [Archivo no firmado] Task: {985175AE-74A3-4B4D-9035-8D0106054B6D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-09-27] (Google Inc -> Google Inc.) Task: {9A14DD2F-B964-4A71-932B-E7595D06BA36} - System32\Tasks\{5AC3C23A-9C65-419F-843A-6BAC8191AA14} => C:\Program Files (x86)\ AV Vcs 7.0\VcsCmd.exe [280528 2019-09-18] (Audio and Video Software Corporation -> AVSOFT Corp.) Task: {9A165EAA-F1B2-44CD-9E8E-02755B6EE628} - System32\Tasks\Sump Task (One-Time) => C:\Program Files (x86)\IObit\Software Updater\sump.exe [1692752 2021-06-29] (IObit CO., LTD -> IObit) Task: {9D974BE4-25EF-4529-AA85-E239672A4A0B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.) Task: {A1A249DA-478F-4BD1-A2A9-1DF2CBFD2E9B} - System32\Tasks\{02B40FEA-654A-4B12-821B-7775E9C4F074} => C:\Windows\system32\pcalua.exe -a "C:\Users\Rosa M Castrillon\Desktop\Samsung ml-1610\Setup.exe" -d "C:\Users\Rosa M Castrillon\Desktop\Samsung ml-1610" Task: {CAB739D8-F10D-4A82-A20B-016D9C348878} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work => C:\Windows\system32\WorkFoldersSystemTray.exe [98304 2015-09-04] (Microsoft Windows -> Microsoft Corporation) Task: {CD344913-8CC3-425F-8553-263E6FDD1171} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [29868432 2021-07-16] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) Task: {CDD05456-B7EB-45BB-8208-E6E32611A1D1} - System32\Tasks\Avira_Security_Service_SCM_Watchdog => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe [248552 2021-07-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) Task: {CF04C74C-488D-43DC-A9B4-431A1826567D} - System32\Tasks\Software Updater Scheduler => C:\Program Files (x86)\IObit\Software Updater\SUInit.exe [1794584 2021-04-14] (IObit CO., LTD -> IObit) <==== ATENCIÓN Task: {D5963A4E-CE89-46EF-9AC3-A2E2DCA74796} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [690616 2021-06-26] (Mozilla Corporation -> Mozilla Foundation) Task: {DC0BA6D7-1AA3-4F58-B6D0-732154FE4AD4} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\8.5.0\AutoUpdate.exe [2285592 2021-04-09] (IObit CO., LTD -> IObit) Task: {DDF6613E-0A08-4238-AD33-ADF348054D06} - System32\Tasks\Wise Turbo Checker => C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe Task: {EC01C3B6-14F4-4BF4-9CF2-313150716983} - System32\Tasks\Software Updater SkipUAC(2Tim4del2al4) => C:\Program Files (x86)\IObit\Software Updater\SoftwareUpdater.exe [4530712 2021-06-03] (IObit CO., LTD -> IObit) <==== ATENCIÓN Task: {F6FEA9A8-4C17-4F09-A514-5B496118FBBC} - System32\Tasks\{BF499A69-F653-41A8-AAB1-567B6C6B994E} => C:\Program Files (x86)\ AV Vcs 7.0\VcsCore.exe [488448 2019-04-23] (AVSOFT Corp.) [Archivo no firmado] Task: {FE4D3731-A919-459E-B422-D664363525BD} - System32\Tasks\Avira_Security_Update => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe [267080 2021-07-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) (Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.) Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe Task: C:\Windows\Tasks\Wise Care 365.job => C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe Task: C:\Windows\Tasks\Wise Turbo Checker.job => C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe ==================== Internet (Lista blanca) ==================== (Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.) Hosts: Archivo Hosts no detectado en el directorio predeterminado Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{3F66D715-CAAC-4DEF-81C6-31F9F3F12E32}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{3FEA6B95-C79B-4564-AE9F-0489F8EA12D0}: [NameServer] 10.25.0.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Rosa M Castrillon\AppData\Local\Microsoft\Edge\User Data\Default [2021-07-16] Edge StartupUrls: Default -> "hxxps://www.google.com/?hl=es&gws_rd=ssl" FireFox: ======== FF DefaultProfile: wgmpbu3l.default-1490483075583-1625818640919 FF ProfilePath: C:\Users\Rosa M Castrillon\AppData\Roaming\Mozilla\Firefox\Profiles\wgmpbu3l.default-1490483075583-1625818640919 [2021-07-17] FF Homepage: Mozilla\Firefox\Profiles\wgmpbu3l.default-1490483075583-1625818640919 -> hxxps://www.google.com/?hl=es FF Extension: (Avira Navegación segura) - C:\Users\Rosa M Castrillon\AppData\Roaming\Mozilla\Firefox\Profiles\wgmpbu3l.default-1490483075583-1625818640919\Extensions\abs@avira.com.xpi [2021-07-09] FF Extension: (Complemento inhabilitación Google Analytics) - C:\Users\Rosa M Castrillon\AppData\Roaming\Mozilla\Firefox\Profiles\wgmpbu3l.default-1490483075583-1625818640919\Extensions\{6d96bb5e-1175-4ebf-8ab5-5f56f1c79f65}.xpi [2021-07-15] [UpdateUrl:hxxps://tools.google.com/service/update2/ff?guid=%ITEM_ID%&version=%ITEM_VERSION%&application=%APP_ID%&appversion=%APP_VERSION%] FF Plugin: @java.com/DTPlugin,version=11.291.2 -> C:\Program Files\Java\jre1.8.0_291\bin\dtplugin\npDeployJava1.dll [2021-06-22] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.291.2 -> C:\Program Files\Java\jre1.8.0_291\bin\plugin2\npjp2.dll [2021-06-22] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @microsoft.com/GENUINE -> disabled [Ningún archivo] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Ningún archivo] FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Ningún archivo] FF Plugin: @videolan.org/vlc,version=2.2.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Ningún archivo] FF Plugin: @videolan.org/vlc,version=3.0.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Ningún archivo] FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1235205.dll [2019-03-15] (Adobe Systems, Inc.) [Archivo no firmado] FF Plugin-x32: @java.com/DTPlugin,version=11.291.2 -> C:\Program Files (x86)\Java\jre1.8.0_291\bin\dtplugin\npDeployJava1.dll [2021-06-22] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.291.2 -> C:\Program Files (x86)\Java\jre1.8.0_291\bin\plugin2\npjp2.dll [2021-06-22] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Ningún archivo] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\Microsoft Office\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-06-27] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Profile 1 CHR Profile: C:\Users\Rosa M Castrillon\AppData\Local\Google\Chrome\User Data\Default [2018-10-21] CHR HomePage: Default -> hxxps://www.google.com/?gfe_rd=cr&ei=HlHrV9mzLpDQ8Aew_oq4Cg&gws_rd=ssl,cr&fg=1 CHR StartupUrls: Default -> "hxxps://www.google.com/?gws_rd=cr&ei=hhOEUvTDEZeosASagoHQBg","hxxps://www.google.com/?gfe_rd=cr&ei=HlHrV9mzLpDQ8Aew_oq4Cg&gws_rd=ssl,cr&fg=1" CHR Extension: (Chrome Media Router) - C:\Users\Rosa M Castrillon\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-07] CHR Profile: C:\Users\Rosa M Castrillon\AppData\Local\Google\Chrome\User Data\Profile 1 [2020-08-24] CHR Extension: (Presentaciones de Google) - C:\Users\Rosa M Castrillon\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-03-24] CHR Extension: (Google Docs) - C:\Users\Rosa M Castrillon\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2017-03-24] CHR Extension: (Google Drive) - C:\Users\Rosa M Castrillon\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-03-24] CHR Extension: (YouTube) - C:\Users\Rosa M Castrillon\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-03-24] CHR Extension: (Hojas de cálculo de Google) - C:\Users\Rosa M Castrillon\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-03-24] CHR Extension: (Documentos de Google sin conexión) - C:\Users\Rosa M Castrillon\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-03-24] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Rosa M Castrillon\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-04] CHR Extension: (Gmail) - C:\Users\Rosa M Castrillon\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-03-24] CHR Extension: (Chrome Media Router) - C:\Users\Rosa M Castrillon\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-26] CHR Profile: C:\Users\Rosa M Castrillon\AppData\Local\Google\Chrome\User Data\System Profile [2017-11-13] CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] ==================== Servicios (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.) S3 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3739728 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated) S3 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3511376 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1206648 2021-07-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [485048 2021-07-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [485048 2021-07-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [574672 2021-07-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) S3 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [99104 2021-03-16] (Apple Inc. -> Apple Inc.) R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2989160 2021-07-02] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [384784 2021-07-08] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 AviraSecurity; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [264880 2021-07-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [159080 2021-04-13] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) S3 Backupper Service; C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.5.1\ABService.exe [1024448 2021-05-14] (AOMEI International Network Limited -> AOMEI International Network Limited) R2 BootRacerServ; C:\Program Files (x86)\BootRacer\BootRacerServ.exe [97352 2020-09-23] (Greatis Software LLC -> Greatis Software, LLC) R2 GUBootService; C:\Program Files (x86)\Glary Utilities 5\GUBootService.exe [867712 2021-07-02] (Glarysoft LTD -> Glarysoft Ltd) S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7477704 2021-07-16] (Malwarebytes Inc -> Malwarebytes) S3 NovaPdf11Server; C:\Program Files\Softland\novaPDF 11\Server\novapdfs.exe [51400 2021-05-05] (Softland SRL -> Microsoft) R3 ProtonVPN Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe [111720 2021-07-02] (Proton Technologies AG -> ) R3 ProtonVPN Update Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe [65128 2021-07-02] (Proton Technologies AG -> ) S3 reaConverter_service; C:\Program Files (x86)\reaConverter 7 Standard ES\rc_service.exe [5760000 2021-03-30] (reaConverter LLC) [Archivo no firmado] R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2019-12-17] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [933304 2019-12-17] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) S3 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13257000 2021-07-01] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) R2 USBSafelyRemoveService; C:\Program Files (x86)\USB Safely Remove\USBSRService.exe [1401856 2021-04-28] (Crystal Rich Ltd -> Crystal Rich Ltd) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2016-03-25] (Microsoft Windows -> Microsoft Corporation) S2 WiseBootAssistant; C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe [X] ===================== Controladores (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) R0 ambakdrv; C:\Windows\System32\ambakdrv.sys [51120 2019-05-14] (CHENGDU AOMEI Tech Co., Ltd. -> ) R2 ammntdrv; C:\Windows\system32\ammntdrv.sys [171952 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> ) R2 amwrtdrv; C:\Windows\system32\amwrtdrv.sys [38320 2019-05-14] (CHENGDU AOMEI Tech Co., Ltd. -> ) R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [68152 2019-06-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [224352 2021-07-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [177112 2021-02-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [36072 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [78600 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R0 avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [35376 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) S2 DgiVecp; C:\Windows\system32\Drivers\DgiVecp.sys [53816 2009-03-02] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [28936 2021-05-22] (Glarysoft LTD -> Glarysoft Ltd) R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2020-09-08] (Martin Malik - REALiX -> REALiX(tm)) R2 inpoutx64; C:\Windows\System32\Drivers\inpoutx64.sys [15008 2017-05-17] (Red Fox UK Limited -> Highresolution Enterprises [www.highrez.co.uk]) S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-07-14] (Malwarebytes Inc -> Malwarebytes) R2 npf; C:\Windows\system32\drivers\npf.sys [36600 2018-12-19] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) R3 phantomtap; C:\Windows\System32\DRIVERS\phantomtap.sys [39448 2021-05-06] (Avira Operations GmbH & Co. KG -> The OpenVPN Project) R3 ProtonVPNCallout; C:\Program Files (x86)\Proton Technologies\ProtonVPN\x64\Win7\ProtonVPN.CalloutDriver.sys [25824 2021-05-28] (Proton Technologies AG -> Proton Technologies AG) S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166760 2019-12-17] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 tapprotonvpn; C:\Windows\System32\DRIVERS\tapprotonvpn.sys [39696 2020-12-30] (Proton Technologies AG -> The OpenVPN Project) S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2016-03-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.) R3 VCSVADHWSer; C:\Windows\System32\DRIVERS\vcsvad.sys [21504 2008-12-26] (AVSOFT CORP. -> Avnex) R3 wintun; C:\Windows\System32\DRIVERS\wintun.sys [30088 2021-07-01] (WireGuard LLC -> WireGuard LLC) S3 WiseHDInfo; C:\Windows\WiseHDInfo64.dll [33864 2020-12-26] (Beijing Lang Xingda Network Technology Co., Ltd -> wisecleaner.com) S3 WiseRegNotify; C:\Windows\WiseRegNotify.sys [51272 2020-12-26] (Beijing Lang Xingda Network Technology Co., Ltd -> WiseCleaner.com) ==================== NetSvcs (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) ==================== Un mes (creado) (Lista blanca) ========= (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2021-07-17 01:49 - 2021-07-17 01:51 - 000031575 _____ C:\Users\Rosa M Castrillon\Desktop\FRST.txt 2021-07-17 01:48 - 2021-07-17 01:50 - 000000000 ____D C:\FRST 2021-07-17 01:41 - 2021-07-17 01:41 - 002300416 _____ (Farbar) C:\Users\Rosa M Castrillon\Desktop\FRST64.exe 2021-07-16 03:26 - 2021-07-16 03:26 - 000002220 _____ C:\Users\Rosa M Castrillon\Documents\AdwCleaner[S00](1).txt 2021-07-16 03:25 - 2021-07-16 03:25 - 000002242 _____ C:\Users\Rosa M Castrillon\Documents\AdwCleaner[C00](1).txt 2021-07-16 03:22 - 2021-07-16 03:22 - 000001558 _____ C:\Users\Rosa M Castrillon\Documents\Malwarebytes - 16-07-2021.txt 2021-07-15 02:48 - 2021-07-15 02:48 - 000000230 _____ C:\Users\Rosa M Castrillon\Documents\registry extraño.txt 2021-07-14 05:55 - 2021-07-17 01:28 - 000003136 _____ C:\Windows\system32\Tasks\Driver Booster Scheduler 2021-07-14 04:51 - 2021-07-14 04:54 - 000000000 ____D C:\AdwCleaner 2021-07-14 04:39 - 2021-07-14 04:39 - 000001552 _____ C:\Users\Rosa M Castrillon\Documents\Malwarebytes - 14-07-2021.txt 2021-07-14 04:12 - 2021-07-16 01:12 - 000001968 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2021-07-14 04:12 - 2021-07-16 01:12 - 000001956 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2021-07-14 04:11 - 2021-07-14 04:11 - 000248992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2021-07-14 04:11 - 2021-07-14 04:10 - 000199128 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys 2021-07-14 04:10 - 2021-07-14 04:10 - 000000000 ____D C:\ProgramData\Malwarebytes 2021-07-14 04:07 - 2021-07-14 04:07 - 000000000 ____D C:\Program Files\Malwarebytes 2021-07-14 03:57 - 2021-07-14 03:57 - 000892416 _____ (Farbar) C:\Users\Rosa M Castrillon\Desktop\MiniToolBox.exe 2021-07-14 03:55 - 2021-07-14 03:55 - 000909824 _____ (Farbar) C:\Users\Rosa M Castrillon\Desktop\FSS.exe 2021-07-14 03:42 - 2021-07-14 03:42 - 008553680 _____ (Malwarebytes) C:\Users\Rosa M Castrillon\Desktop\adwcleaner_8.3.0.exe 2021-07-14 03:38 - 2021-07-14 03:38 - 002093656 _____ (Malwarebytes) C:\Users\Rosa M Castrillon\Downloads\MBSetup.exe 2021-07-14 03:11 - 2021-07-17 01:28 - 000003128 _____ C:\Windows\system32\Tasks\Driver Booster Update 2021-07-14 03:11 - 2021-07-17 01:28 - 000002884 _____ C:\Windows\system32\Tasks\Driver Booster SkipUAC (2Tim4del2al4) 2021-07-13 21:01 - 2021-07-13 21:02 - 000572640 _____ C:\Windows\system32\FNTCACHE.DAT 2021-07-13 20:38 - 2021-07-14 00:33 - 000001123 _____ C:\Users\Rosa M Castrillon\Desktop\Zortam Mp3 Media Studio 32 bit.lnk 2021-07-13 20:38 - 2021-07-14 00:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zortam 2021-07-13 20:38 - 2021-07-14 00:33 - 000000000 ____D C:\Program Files (x86)\Zortam Mp3 Media Studio 2021-07-13 20:35 - 2021-07-13 20:35 - 000001920 _____ C:\Users\Rosa M Castrillon\Documents\Zortam Mp3 Media Studio Pro.txt 2021-07-13 20:32 - 2021-07-13 20:32 - 031411385 _____ (Zortam.com ) C:\Users\Rosa M Castrillon\Downloads\zmms28.exe 2021-07-13 20:25 - 2021-07-13 20:27 - 036092857 _____ C:\Users\Rosa M Castrillon\Downloads\Zortammp3mediastudiopro28-rq74jz.zip 2021-07-13 19:29 - 2021-07-13 19:29 - 000005293 _____ C:\Users\Rosa M Castrillon\Documents\archivos_claro_comprobantePago_ComprobantePagoGwClaro_83292430.pdf 2021-07-13 17:29 - 2021-07-13 17:29 - 000001167 _____ C:\Users\Public\Desktop\ProtonVPN.lnk 2021-07-13 17:29 - 2021-07-13 17:29 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\Roaming\Proton Technologies AG 2021-07-13 17:29 - 2021-07-13 17:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ProtonVPN 2021-07-13 17:17 - 2021-07-13 17:17 - 000135520 _____ C:\Users\Rosa M Castrillon\AppData\Local\GDIPFONTCACHEV1.DAT 2021-07-13 07:49 - 2021-07-13 07:49 - 000000366 _____ C:\Users\Rosa M Castrillon\Documents\Eset Online Scanner_4.txt 2021-07-13 03:11 - 2021-07-13 03:11 - 000001234 _____ C:\Users\Rosa M Castrillon\Desktop\ESET Online Scanner.lnk 2021-07-13 03:04 - 2021-07-13 03:04 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\Roaming\Avira 2021-07-13 02:56 - 2021-07-13 02:56 - 011697056 _____ (ESET) C:\Users\Rosa M Castrillon\Downloads\esetonlinescanner.exe 2021-07-11 22:29 - 2021-07-11 22:31 - 000000000 ____D C:\WinSockFix 2021-07-08 04:29 - 2021-07-08 04:29 - 006199718 _____ C:\Users\Rosa M Castrillon\Documents\ObservacionesVisita_CIDH_Colombia_SPA.pdf 2021-07-08 04:13 - 2021-07-08 04:13 - 000091339 _____ C:\Users\Rosa M Castrillon\Documents\Comunicado_de_colombia_sobre_visita_de_cidh_070721_3.pdf 2021-07-07 05:10 - 2021-07-07 05:10 - 000000857 _____ C:\Users\Rosa M Castrillon\Documents\Driver Booster PRO_1.txt 2021-07-07 05:07 - 2021-07-07 05:07 - 027014676 _____ C:\Users\Rosa M Castrillon\Downloads\Driverboosterpro85ev62gz.zip 2021-07-06 03:33 - 2021-07-06 03:33 - 000511131 _____ C:\Users\Rosa M Castrillon\Documents\ProlifePrayersFinal.pdf 2021-07-06 03:07 - 2021-07-06 03:07 - 000000000 ____D C:\Users\Rosa M Castrillon\Documents\Action! 2021-07-06 03:07 - 2021-07-06 03:07 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\Roaming\Mirillis 2021-07-06 03:07 - 2021-07-06 03:07 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\Local\Mirillis 2021-07-06 03:07 - 2021-07-06 03:07 - 000000000 ____D C:\ProgramData\Mirillis 2021-07-06 03:04 - 2021-07-06 03:04 - 000002039 _____ C:\Users\Rosa M Castrillon\Desktop\Action!.lnk 2021-07-06 03:04 - 2021-07-06 03:04 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mirillis 2021-07-06 03:03 - 2021-07-06 03:03 - 000000000 ____D C:\Program Files (x86)\Mirillis 2021-07-06 02:59 - 2021-07-06 03:01 - 099524544 _____ (Mirillis Ltd.) C:\Users\Rosa M Castrillon\Downloads\action_4_20_0_setup.exe 2021-07-06 02:57 - 2021-07-06 02:57 - 000001043 _____ C:\Users\Rosa M Castrillon\Documents\Action.txt 2021-07-05 05:29 - 2021-07-05 05:30 - 025984221 _____ C:\Users\Rosa M Castrillon\Downloads\Peligran las semillas.mp4 2021-07-05 02:50 - 2021-07-16 05:33 - 000003292 _____ C:\Windows\system32\Tasks\Avira_Antivirus_Systray 2021-07-05 02:50 - 2021-07-14 04:46 - 000224352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys 2021-07-05 02:50 - 2021-02-09 18:03 - 000177112 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys 2021-07-05 02:50 - 2019-06-07 15:09 - 000068152 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avdevprot.sys 2021-07-05 02:50 - 2019-03-20 18:50 - 000078600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys 2021-07-05 02:50 - 2019-03-20 18:50 - 000036072 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys 2021-07-05 02:50 - 2019-03-20 18:50 - 000035376 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avusbflt.sys 2021-07-05 02:44 - 2021-07-16 05:29 - 000003674 _____ C:\Windows\system32\Tasks\AviraSystemSpeedupUpdate 2021-07-05 02:44 - 2021-07-16 05:29 - 000003608 _____ C:\Windows\system32\Tasks\Avira_Security_Update 2021-07-05 02:44 - 2021-07-16 05:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2021-07-05 02:44 - 2021-07-16 05:28 - 000001103 _____ C:\Users\Public\Desktop\Avira.lnk 2021-07-05 02:44 - 2021-07-05 02:45 - 000000000 ____D C:\Users\Public\Speedup Sessions 2021-07-05 02:44 - 2021-07-05 02:44 - 000003232 _____ C:\Windows\system32\Tasks\Avira_Security_Service_SCM_Watchdog 2021-07-05 02:44 - 2021-07-05 02:44 - 000002646 _____ C:\Windows\system32\Tasks\Avira_Security_Systray 2021-07-05 02:15 - 2021-07-05 02:15 - 005739976 _____ (Avira Operations GmbH & Co. KG) C:\Users\Rosa M Castrillon\Downloads\avira_es_aapd5_3046653297_b1ybw0zhcjmimym6v3eu_wdp.exe 2021-07-04 02:47 - 2021-07-04 05:38 - 000000000 ____D C:\Users\Rosa M Castrillon\Documents\Despoblación mundial 2021-07-01 04:02 - 2021-07-01 04:20 - 000000000 ____D C:\ProgramData\ProtonVPN 2021-07-01 03:59 - 2021-07-13 17:30 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\Local\ProtonVPN 2021-07-01 03:59 - 2021-07-13 17:29 - 000000000 ____D C:\Program Files (x86)\Proton Technologies 2021-07-01 03:59 - 2021-07-01 03:59 - 000030088 ____T (WireGuard LLC) C:\Windows\system32\Drivers\wintun.sys 2021-07-01 03:48 - 2021-07-01 03:48 - 018691512 _____ (Proton Technologies AG) C:\Users\Rosa M Castrillon\Downloads\ProtonVPN_win_v1.20.4.exe 2021-06-30 22:39 - 2021-06-30 22:40 - 008552643 _____ C:\Users\Rosa M Castrillon\Documents\josefino Julio -2021-Colombia.pdf 2021-06-30 22:22 - 2021-06-30 22:22 - 003905618 _____ C:\Users\Rosa M Castrillon\Documents\ComfortfromScriptureandtheSaints.pdf 2021-06-29 23:47 - 2021-06-29 23:47 - 000000603 _____ C:\Users\Rosa M Castrillon\Documents\WinX HD Video Converter Deluxe_1.txt 2021-06-29 23:43 - 2021-06-29 23:44 - 047253696 _____ (Digiarty Software, Inc. ) C:\Users\Rosa M Castrillon\Downloads\winx-hd-converter-deluxe(1).exe 2021-06-29 22:02 - 2021-07-17 01:29 - 000003292 _____ C:\Windows\system32\Tasks\Sump Task (One-Time) 2021-06-26 23:09 - 2021-06-26 23:09 - 000000366 _____ C:\Users\Rosa M Castrillon\Documents\Eset Online Scanner_3.txt 2021-06-26 03:51 - 2021-06-26 03:52 - 011697056 _____ (ESET) C:\Users\Rosa M Castrillon\Downloads\esetonlinescanner(1).exe 2021-06-26 03:50 - 2021-06-26 03:50 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2021-06-26 03:49 - 2021-07-09 03:17 - 000000000 ____D C:\Program Files\Mozilla Firefox 2021-06-24 02:01 - 2021-06-24 02:01 - 000000366 _____ C:\Users\Rosa M Castrillon\Documents\Eset Online Scanner_2.txt 2021-06-22 23:58 - 2021-06-22 23:58 - 000164640 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2021-06-22 23:58 - 2021-06-22 23:58 - 000000000 ____D C:\Program Files (x86)\Java 2021-06-22 23:58 - 2021-06-22 23:46 - 000191776 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-64.dll 2021-06-22 23:41 - 2021-06-22 23:42 - 073715464 _____ (Oracle Corporation) C:\Users\Rosa M Castrillon\Downloads\jre-8u291-windows-i586.exe 2021-06-22 23:11 - 2021-06-22 23:12 - 084613384 _____ (Oracle Corporation) C:\Users\Rosa M Castrillon\Downloads\jre-8u291-windows-x64.exe 2021-06-21 05:34 - 2021-06-21 05:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 8 2021-06-21 05:31 - 2021-06-21 05:32 - 027092528 _____ (IObit ) C:\Users\Rosa M Castrillon\Downloads\driver_booster_setup_trial.exe 2021-06-19 23:06 - 2021-06-19 23:09 - 000000256 _____ C:\Users\Rosa M Castrillon\Documents\Problema de actualizacion de Microsoft Security Essentials.txt 2021-06-19 22:40 - 2021-06-20 23:08 - 000001912 _____ C:\Windows\epplauncher.mif 2021-06-19 03:07 - 2021-06-19 03:07 - 000002474 _____ C:\Users\Rosa M Castrillon\Documents\Eset Online Scanner.txt 2021-06-18 03:03 - 2021-06-18 03:03 - 000000000 _____ C:\Users\Rosa M Castrillon\AppData\Local\{175B30B8-AA52-4199-928E-8CA21491E663} 2021-06-17 23:57 - 2021-07-16 05:30 - 000084599 _____ C:\Users\Rosa 2021-06-17 23:57 - 2021-07-05 02:49 - 000000000 ____D C:\Program Files (x86)\Avira 2021-06-17 22:50 - 2021-06-17 23:22 - 000000129 _____ C:\Users\Rosa M Castrillon\Documents\Avira Antivirus.txt 2021-06-17 02:48 - 2021-07-17 01:19 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\Roaming\USBSafelyRemove 2021-06-17 02:47 - 2021-06-17 02:47 - 000001123 _____ C:\Users\Public\Desktop\USB Safely Remove.lnk 2021-06-17 02:47 - 2021-06-17 02:47 - 000000000 ____D C:\ProgramData\USBSRService 2021-06-17 02:47 - 2021-06-17 02:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB Safely Remove 2021-06-17 02:47 - 2021-06-17 02:47 - 000000000 ____D C:\Program Files (x86)\USB Safely Remove 2021-06-17 02:45 - 2021-06-17 02:45 - 000001957 _____ C:\Users\Rosa M Castrillon\Documents\USB Safely Remove.txt 2021-06-17 02:37 - 2021-06-17 02:37 - 008800285 _____ C:\Users\Rosa M Castrillon\Downloads\USBSafelyRemove642-do92yq.zip 2021-06-17 02:29 - 2021-06-17 02:29 - 004028544 _____ (SafelyRemove.com ) C:\Users\Rosa M Castrillon\Downloads\usbsafelyremovesetup_6-4-2.exe ==================== Un mes (modificado) ================== (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2021-07-17 01:48 - 2009-07-13 22:20 - 000000000 ____D C:\Windows\inf 2021-07-17 01:46 - 2016-11-21 12:14 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\LocalLow\Mozilla 2021-07-17 01:37 - 2019-02-05 23:02 - 000000000 ____D C:\ProgramData\Mozilla 2021-07-17 01:37 - 2009-07-13 23:45 - 000036608 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2021-07-17 01:37 - 2009-07-13 23:45 - 000036608 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2021-07-17 01:32 - 2019-11-05 03:29 - 000000000 ____D C:\Program Files\CCleaner 2021-07-17 01:31 - 2016-09-27 06:49 - 000000000 ____D C:\Program Files (x86)\Google 2021-07-17 01:19 - 2021-04-28 02:34 - 000491520 _____ C:\Users\Public\Documents\bootracer.his 2021-07-17 01:19 - 2021-04-27 02:40 - 000000318 _____ C:\Users\Public\Documents\bootracer.ini 2021-07-17 01:19 - 2021-04-27 02:40 - 000000000 ____D C:\Program Files (x86)\BootRacer 2021-07-17 01:19 - 2020-12-26 02:05 - 000000414 _____ C:\Windows\Tasks\Wise Care 365.job 2021-07-17 01:19 - 2009-07-14 00:08 - 000032636 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2021-07-17 01:19 - 2009-07-14 00:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2021-07-16 04:29 - 2016-09-27 16:43 - 000002059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2021-07-16 02:00 - 2020-12-26 02:05 - 000000442 _____ C:\Windows\Tasks\Wise Turbo Checker.job 2021-07-16 01:45 - 2016-09-27 10:40 - 000000828 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job 2021-07-16 00:57 - 2016-09-27 07:08 - 000003470 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2021-07-16 00:57 - 2016-09-27 07:08 - 000003342 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore 2021-07-15 04:54 - 2020-07-30 01:44 - 000000000 ____D C:\Users\Rosa M Castrillon\Documents\DLPdf2Word 2021-07-15 04:53 - 2020-07-30 01:43 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\Roaming\DLPdf2Word_Multi 2021-07-14 05:20 - 2017-01-19 18:22 - 000000000 ____D C:\Windows\system32\MRT 2021-07-14 05:04 - 2017-01-19 18:21 - 133422552 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2021-07-14 04:54 - 2020-08-24 02:57 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\LocalLow\IObit 2021-07-14 04:54 - 2016-09-26 18:57 - 000000000 ____D C:\Users\Rosa M Castrillon 2021-07-14 03:34 - 2020-09-19 01:11 - 000000000 ____D C:\ProgramData\ProductData 2021-07-14 03:12 - 2020-11-01 23:50 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\Local\CrashDumps 2021-07-14 00:37 - 2019-04-15 00:56 - 000000000 ____D C:\ProgramData\TEMP 2021-07-13 18:18 - 2016-09-27 10:40 - 000000830 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job 2021-07-13 17:13 - 2009-07-13 22:20 - 000000000 ____D C:\Windows\system32\NDF 2021-07-13 17:06 - 2019-11-05 03:29 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update 2021-07-13 03:11 - 2016-12-17 03:01 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\Local\ESET 2021-07-13 03:04 - 2020-06-22 18:17 - 000002225 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-07-13 03:04 - 2020-06-22 18:17 - 000002184 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2021-07-11 22:19 - 2010-11-21 02:09 - 000742754 _____ C:\Windows\system32\perfh00A.dat 2021-07-11 22:19 - 2010-11-21 02:09 - 000155294 _____ C:\Windows\system32\perfc00A.dat 2021-07-11 22:19 - 2009-07-14 00:13 - 001702352 _____ C:\Windows\system32\PerfStringBackup.INI 2021-07-09 05:29 - 2020-11-22 03:42 - 000003416 _____ C:\Windows\system32\Tasks\SU_AutoUpdate 2021-07-09 05:11 - 2020-08-29 02:36 - 000000000 ____D C:\Datos antiguos de Firefox 2021-07-09 02:31 - 2017-12-27 00:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google 2021-07-08 02:07 - 2017-09-23 18:25 - 000000000 ____D C:\Temp 2021-07-08 02:07 - 2016-09-29 18:48 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\Local\ElevatedDiagnostics 2021-07-07 02:30 - 2016-09-27 07:20 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2021-07-06 23:57 - 2020-11-22 03:42 - 000002126 _____ C:\Users\Public\Desktop\IObit Software Updater.lnk 2021-07-06 23:55 - 2021-05-22 03:07 - 000003000 _____ C:\Windows\system32\Tasks\GU5SkipUAC 2021-07-06 23:55 - 2021-05-22 03:07 - 000001106 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk 2021-07-06 23:54 - 2021-05-22 03:06 - 000000000 ____D C:\Program Files (x86)\Glary Utilities 5 2021-07-06 23:54 - 2020-07-18 23:28 - 000001203 _____ C:\Users\Rosa M Castrillon\Desktop\Any Video Converter.lnk 2021-07-05 02:49 - 2020-06-17 00:03 - 000000000 ____D C:\ProgramData\Avira 2021-07-05 02:36 - 2021-02-19 03:39 - 000000000 ____D C:\ProgramData\Avast Software 2021-07-04 02:10 - 2020-11-17 01:37 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2021-07-03 03:47 - 2020-11-26 02:53 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\Roaming\Allavsoft 2021-07-01 16:02 - 2020-10-31 02:08 - 000003480 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA1d6ae9f9bc3a8d3 2021-07-01 16:02 - 2020-06-22 18:16 - 000003352 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-06-29 23:50 - 2020-12-08 21:53 - 000001450 _____ C:\Users\Rosa M Castrillon\Desktop\WinX HD Video Converter Deluxe.lnk 2021-06-26 17:39 - 2018-03-27 01:10 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2021-06-26 04:23 - 2020-09-03 03:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aiseesoft 2021-06-23 01:13 - 2021-06-08 03:04 - 000000000 ____D C:\Program Files (x86)\Glarysoft 2021-06-22 23:58 - 2018-03-12 01:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2021-06-22 23:55 - 2020-08-25 22:27 - 000000000 ____D C:\Program Files\Java 2021-06-22 23:46 - 2020-08-25 22:28 - 000191776 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2021-06-21 23:12 - 2016-09-27 07:19 - 000000000 ____D C:\Program Files\WinRAR 2021-06-21 05:25 - 2020-11-22 03:42 - 000003124 _____ C:\Windows\system32\Tasks\Software Updater Scheduler 2021-06-21 05:25 - 2020-11-22 03:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Software Updater 2021-06-21 04:24 - 2016-09-27 07:19 - 000000000 ____D C:\Users\Rosa M Castrillon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2021-06-21 04:24 - 2016-09-27 07:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2021-06-21 04:23 - 2019-11-05 03:29 - 000000824 _____ C:\Users\Public\Desktop\CCleaner.lnk 2021-06-17 22:53 - 2018-03-25 18:52 - 000001034 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk 2021-06-17 22:53 - 2018-03-25 18:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller ==================== Archivos en la raíz de algunos directorios ======== 2020-07-05 19:41 - 2021-04-22 01:34 - 000000328 _____ () C:\Users\Rosa M Castrillon\AppData\Roaming\PPTConverter.log 2020-11-18 01:45 - 2020-11-18 01:45 - 000000000 _____ () C:\Users\Rosa M Castrillon\AppData\Local\oobelibMkey.log 2021-02-05 03:31 - 2021-02-05 03:31 - 000002870 _____ () C:\Users\Rosa M Castrillon\AppData\Local\recently-used.xbel 2020-09-03 03:22 - 2020-09-03 03:49 - 000007597 _____ () C:\Users\Rosa M Castrillon\AppData\Local\Resmon.ResmonCfg 2021-04-30 03:47 - 2021-04-30 03:47 - 000000112 _____ () C:\Users\Rosa M Castrillon\AppData\Local\Support.ini 2021-06-18 03:03 - 2021-06-18 03:03 - 000000000 _____ () C:\Users\Rosa M Castrillon\AppData\Local\{175B30B8-AA52-4199-928E-8CA21491E663} ==================== SigCheck ============================ (No existe una corrección automática para los archivos que no pasan la verificación.) LastRegBack: 2019-05-06 01:05 ==================== Final de FRST.txt ========================