CHR Extension: (Wondershare Video Converter Ultimate) - C:\Users\palote\AppData\Local\Google\Chrome\User Data\Default\Extensions\chgdeabpmphfhkoemjjglmilajldekbp [2018-04-18] CHR Extension: (MyJDownloader Browser Extension) - C:\Users\palote\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip [2018-11-10] CHR Extension: (Hojas de cálculo) - C:\Users\palote\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-01-21] CHR Extension: (Documentos de Google sin conexión) - C:\Users\palote\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-27] CHR Extension: (AdBlock: el mejor bloqueador de anuncios) - C:\Users\palote\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-12-08] CHR Extension: (Download with JDownloader) - C:\Users\palote\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfpmbokkdeapjommajdfmmheiiakdlgo [2018-10-28] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\palote\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04] CHR Extension: (Gmail) - C:\Users\palote\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-30] CHR Extension: (Chrome Media Router) - C:\Users\palote\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-11-11] CHR Profile: C:\Users\palote\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-12-09] CHR Profile: C:\Users\palote\AppData\Local\Google\Chrome\User Data\Profile 1 [2019-12-09] CHR Extension: (Presentaciones) - C:\Users\palote\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-11-21] CHR Extension: (Documentos) - C:\Users\palote\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2018-11-21] CHR Extension: (Google Drive) - C:\Users\palote\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-11-21] CHR Extension: (YouTube) - C:\Users\palote\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-11-21] CHR Extension: (Hojas de cálculo) - C:\Users\palote\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-11-21] CHR Extension: (Documentos de Google sin conexión) - C:\Users\palote\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-12-29] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\palote\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-11-21] CHR Extension: (Gmail) - C:\Users\palote\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-11-21] CHR Extension: (Chrome Media Router) - C:\Users\palote\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-29] CHR Profile: C:\Users\palote\AppData\Local\Google\Chrome\User Data\System Profile [2019-12-09] CHR HKLM-x32\...\Chrome\Extension: [chgdeabpmphfhkoemjjglmilajldekbp] - C:\Program Files (x86)\Wondershare\Video Converter Ultimate\SVRChromePlugin.crx [2018-04-18] ==================== Services (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-04-29] (Apple Inc. -> Apple Inc.) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6875688 2018-07-06] (BattlEye Innovations e.K. -> ) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-01-30] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-01-30] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [51024 2019-12-05] (Dropbox, Inc -> Dropbox, Inc.) R2 DMAgent; C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe [499200 2010-11-07] (Red Bend Ltd.) [File not signed] S2 DSAService; C:\Program Files (x86)\Intel Driver and Support Assistant\DSAService.exe [22304 2018-01-17] (Intel(R) Driver & Support Assistant -> Intel) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [780928 2018-07-06] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) R2 ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe [888080 2018-03-07] (Intel(R) Software Development Products -> ) R3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2018-02-20] (Macrovision Europe Ltd.) [File not signed] S3 Intel(R) SUR QC SAM; C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation) S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6960640 2019-12-10] (Malwarebytes Inc -> Malwarebytes) R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation) S3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation -> Microsoft Corporation) S3 Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [155320 2012-01-18] (Sony Ericsson Mobile Communication -> Avanquest Software) [File not signed] R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) R2 SystemUsageReportSvc_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe [183568 2018-03-07] (Intel(R) Software Development Products -> ) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11644656 2018-09-10] (TeamViewer GmbH -> TeamViewer GmbH) S3 USER_ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe [888080 2018-03-07] (Intel(R) Software Development Products -> ) R2 WiMAXAppSrv; C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe [869376 2010-11-07] (Intel(R) Corporation) [File not signed] S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation) R2 WirelessKB850NotificationService; C:\Windows\system32\WirelessKB850NotificationService.exe [174256 2018-05-14] (Microsoft Corporation -> Microsoft Corporation) R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292480 2012-07-17] (Microsoft Corporation -> Microsoft Corp.) R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.3.1.1\WsAppService.exe [437392 2016-10-10] (Wondershare software CO., LIMITED -> Wondershare) R2 XperiaCompanionService; C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe [2548224 2019-09-05] (Sony) [File not signed] ===================== Drivers (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 BazisPortableCDBus; C:\Windows\System32\drivers\BazisPortableCDBus.sys [268896 2018-06-15] (Avtonomniy Energoservis, ZAO -> SysProgs.org) S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131712 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R3 ElbyCDFL; C:\Windows\System32\Drivers\ElbyCDFL.sys [40648 2007-02-16] (SlySoft Inc. -> SlySoft, Inc.) R3 ElbyCDFL; C:\Windows\SysWOW64\Drivers\ElbyCDFL.sys [40648 2007-02-16] (SlySoft Inc. -> SlySoft, Inc.) S3 ggsomc; C:\Windows\System32\DRIVERS\ggsomc.sys [32384 2018-03-14] (Sony Mobile Communications AB -> Sony Mobile Communications) R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation -> Microsoft Corporation) S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation -> Microsoft Corporation) R3 nusb3hub; C:\Windows\System32\DRIVERS\nusb3hub.sys [80384 2018-01-21] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation) R3 nusb3xhc; C:\Windows\System32\DRIVERS\nusb3xhc.sys [180736 2018-01-21] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation) R3 semav6msr64; C:\Windows\system32\drivers\semav6msr64.sys [43008 2018-03-07] (Intel Corporation -> ) S4 sptd; C:\Windows\System32\Drivers\sptd.sys [871408 2018-04-28] (Duplex Secure Ltd -> Duplex Secure Ltd.) S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [165504 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 U6000ALL; C:\Windows\System32\DRIVERS\U6000ALL.sys [276480 2008-11-24] (Microsoft Windows Hardware Compatibility Publisher -> ) S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2018-05-04] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.) R3 WirelessKeyboardFilter; C:\Windows\System32\DRIVERS\WirelessKeyboardFilter.sys [49896 2016-07-22] (Microsoft Corporation -> Microsoft Corporation) U3 aswbdisk; no ImagePath S3 k57nd60a; system32\DRIVERS\k57nd60a.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One month (created) =================== (If an entry is included in the fixlist, the file/folder will be moved.) 2019-12-12 00:27 - 2019-12-12 00:29 - 000032475 _____ C:\Users\palote\Desktop\FRST.txt 2019-12-12 00:27 - 2019-12-12 00:29 - 000000000 ____D C:\FRST 2019-12-11 23:51 - 2019-12-11 23:51 - 002263552 _____ (Farbar) C:\Users\palote\Desktop\FRST64.exe 2019-12-11 19:47 - 2019-12-11 19:47 - 000001630 _____ C:\Users\palote\Desktop\eset online.txt 2019-12-11 17:28 - 2019-12-11 17:28 - 000002309 _____ C:\Users\palote\Desktop\AdwCleaner[S09].txt 2019-12-10 15:44 - 2019-12-10 15:44 - 000000867 _____ C:\Users\palote\Desktop\ESET Online Scanner.lnk 2019-12-10 00:11 - 2019-12-10 00:11 - 000001908 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2019-12-10 00:11 - 2019-12-10 00:11 - 000001908 _____ C:\ProgramData\Desktop\Malwarebytes.lnk 2019-12-10 00:11 - 2019-12-10 00:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes 2019-12-10 00:10 - 2019-12-11 23:51 - 000306482 _____ C:\Windows\ntbtlog.txt 2019-12-10 00:10 - 2019-12-10 00:10 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys 2019-12-09 23:57 - 2019-12-09 23:57 - 000000000 ____D C:\Users\palote\AppData\Local\ElevatedDiagnostics 2019-12-09 23:11 - 2019-12-10 19:17 - 000000000 ____D C:\Users\palote\Downloads\adobe_photoshop_cc_2014_v_15 (1) 2019-12-09 23:11 - 2019-12-09 23:11 - 000014081 ____N C:\Users\palote\Downloads\Adobe.Photoshop.CC.2014.v15.2.rar.torrent 2019-12-09 23:11 - 2019-12-09 23:11 - 000000000 ____D C:\Users\palote\AppData\Roaming\2178518db49a54ff2ed70e8e6db8fdb8OLD 2019-12-09 23:11 - 2019-12-09 23:11 - 000000000 ____D C:\bcafb 2019-12-09 23:10 - 2019-12-09 23:10 - 000000829 _____ C:\Users\palote\Downloads\adobe_photoshop_cc_2014_v_15.zip 2019-12-09 23:10 - 2019-12-09 23:10 - 000000829 _____ C:\Users\palote\Downloads\adobe_photoshop_cc_2014_v_15 (1).zip 2019-12-09 19:56 - 2019-12-09 19:59 - 271106338 _____ C:\Users\palote\Downloads\CameraRaw_9_1_1.zip 2019-12-09 19:47 - 2019-12-09 19:47 - 000000040 ____H C:\C7F04CFB1071 2019-12-09 19:47 - 2019-12-09 19:47 - 000000000 ____D C:\Users\palote\AppData\LocalLow\Adobe 2019-12-09 19:46 - 2019-12-09 23:33 - 000000000 ____D C:\Program Files (x86)\Photoshop Cs6 2019-12-09 00:47 - 2019-12-09 00:47 - 000020781 _____ C:\Users\palote\Downloads\Zohan_Licencia_Para_Peinar_HDRip.torrent 2019-12-09 00:46 - 2019-12-09 00:46 - 000020303 _____ C:\Users\palote\Downloads\Este_Cuerpo_No_Es_El_Mio_BluRay720p.torrent 2019-12-09 00:43 - 2019-12-09 00:43 - 000019468 _____ C:\Users\palote\Downloads\Te_Presento_A_Sofia_HDRip.torrent 2019-12-09 00:41 - 2019-12-09 00:41 - 000015650 _____ C:\Users\palote\Downloads\It_Capitulo2_HDRip.torrent 2019-12-09 00:39 - 2019-12-09 00:39 - 000021373 _____ C:\Users\palote\Downloads\Venganza_Bajo_Cero_HDRip.torrent 2019-12-09 00:33 - 2019-12-09 00:33 - 000066716 _____ C:\Users\palote\Downloads\Un-Verano-En-Ibiza-2019.avi.torrent 2019-12-08 21:27 - 2019-12-08 21:28 - 008218800 _____ (Malwarebytes) C:\Users\palote\Downloads\adwcleaner_8.0.0.exe 2019-12-08 15:58 - 2019-12-08 15:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2019-12-05 17:52 - 2019-12-05 17:52 - 000188997 _____ C:\Users\palote\Desktop\Factura cristales Maria_ 1.pdf 2019-12-05 17:42 - 2019-12-05 17:44 - 000000000 ____D C:\Users\palote\Documents\Ortodoncia Maria 2019-12-05 02:23 - 2019-12-05 02:23 - 000051024 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe 2019-12-05 02:23 - 2019-12-05 02:23 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys 2019-12-05 02:23 - 2019-12-05 02:23 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys 2019-12-05 02:23 - 2019-12-05 02:23 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys 2019-12-02 22:15 - 2019-12-08 21:29 - 000000290 _____ C:\Windows\Tasks\AdwCleaner_onReboot.job 2019-11-29 23:49 - 2019-12-03 00:04 - 000000000 ____D C:\Users\palote\Documents\Maria Historial Colegio 2019-11-29 20:51 - 2019-11-29 20:51 - 000186027 _____ C:\Users\palote\Documents\facturas noviembre 2.pdf 2019-11-29 20:49 - 2019-11-29 20:49 - 000247805 _____ C:\Users\palote\Documents\facturas noviembre.pdf 2019-11-27 16:35 - 2019-11-27 16:35 - 000042496 ____H C:\Users\palote\Downloads\~WRL0005.tmp 2019-11-19 22:14 - 2019-11-19 22:14 - 000094526 _____ C:\Users\palote\Downloads\T30007964781-1019.pdf 2019-11-17 00:37 - 2019-11-17 00:37 - 000125573 _____ C:\Users\palote\Downloads\minube.pdf 2019-11-15 20:15 - 2019-11-15 20:15 - 000019766 _____ C:\Users\palote\Downloads\Al-agua-gambas.zip 2019-11-12 22:53 - 2019-11-12 22:53 - 000083557 _____ C:\Users\palote\Downloads\Necesito un móvil- Mi Amena.pdf ==================== One month (modified) ================== (If an entry is included in the fixlist, the file/folder will be moved.) 2019-12-12 00:11 - 2018-04-20 20:57 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update 2019-12-12 00:11 - 2009-07-14 05:45 - 000021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2019-12-12 00:11 - 2009-07-14 05:45 - 000021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2019-12-11 23:53 - 2018-02-01 23:51 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2019-12-11 23:53 - 2018-01-30 20:47 - 000000988 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job 2019-12-11 23:53 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2019-12-11 18:31 - 2019-04-24 19:47 - 000000000 ____D C:\Users\palote\Downloads\programas 2019-12-10 23:36 - 2019-09-01 11:33 - 000000000 ____D C:\Users\palote\AppData\Local\CrashDumps 2019-12-10 23:36 - 2018-01-30 20:47 - 000000992 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job 2019-12-10 00:12 - 2018-05-03 20:54 - 000000000 ____D C:\Users\palote\AppData\Local\cache 2019-12-10 00:10 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf 2019-12-09 23:59 - 2018-12-09 22:32 - 000000000 ____D C:\Users\palote\AppData\Roaming\PhotoScape 2019-12-09 23:59 - 2018-01-21 22:51 - 000000000 ____D C:\Users\palote\AppData\Roaming\uTorrent 2019-12-09 23:26 - 2019-03-26 18:56 - 000000000 ____D C:\Users\palote\AppData\Local\BitTorrentHelper 2019-12-09 23:25 - 2018-01-21 22:55 - 000000000 ____D C:\jdownloader 2019-12-09 23:11 - 2018-01-19 22:59 - 000000000 ____D C:\ProgramData\Intel 2019-12-09 23:11 - 2017-12-25 00:00 - 000000000 ____D C:\Users\palote\AppData\Roaming\2178518db49a54ff2ed70e8e6db8fdb8 2019-12-09 22:37 - 2018-01-21 18:03 - 000000000 ____D C:\Users\palote\AppData\Roaming\vlc 2019-12-09 21:40 - 2011-04-12 10:10 - 000747646 _____ C:\Windows\system32\perfh00A.dat 2019-12-09 21:40 - 2011-04-12 10:10 - 000159086 _____ C:\Windows\system32\perfc00A.dat 2019-12-09 21:40 - 2009-07-14 06:13 - 001676890 _____ C:\Windows\system32\PerfStringBackup.INI 2019-12-09 20:01 - 2018-03-11 21:45 - 000000000 ____D C:\Program Files\Common Files\Adobe 2019-12-09 12:18 - 2018-12-07 17:33 - 000000000 ____D C:\Users\palote\Documents\Camtasia Studio 2019-12-08 15:58 - 2018-01-30 20:47 - 000000000 ____D C:\Program Files (x86)\Dropbox 2019-12-02 23:22 - 2018-01-30 20:55 - 000000000 ___RD C:\Users\palote\Dropbox 2019-12-02 19:42 - 2018-01-21 13:43 - 000000000 ____D C:\Program Files (x86)\Intel Driver and Support Assistant 2019-11-30 20:47 - 2019-04-24 19:42 - 000000000 ____D C:\Users\palote\Downloads\ebooks 2019-11-24 15:55 - 2019-08-30 23:33 - 000002222 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-11-16 21:05 - 2019-09-05 14:11 - 000000194 _____ C:\Users\palote\AppData\Roaming\default.rss 2019-11-12 22:03 - 2010-11-21 04:27 - 000748816 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe ==================== Files in the root of some directories ======== 2019-09-05 14:11 - 2019-11-16 21:05 - 000000194 _____ () C:\Users\palote\AppData\Roaming\default.rss 2018-09-23 11:49 - 2019-09-01 10:49 - 000009216 _____ () C:\Users\palote\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2018-12-16 11:49 - 2018-12-16 11:49 - 000000218 _____ () C:\Users\palote\AppData\Local\recently-used.xbel 2018-11-19 20:27 - 2018-11-19 20:27 - 000000017 _____ () C:\Users\palote\AppData\Local\resmon.resmoncfg ==================== SigCheck ============================ (There is no automatic fix for files that do not pass verification.) LastRegBack: 2019-12-09 15:00 ==================== End of FRST.txt ========================