Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 13-05-2020 01
Ejecutado por Cintia (administrador) sobre CINTIA-PC (TOSHIBA Satellite-L845) (23-05-2020 11:12:22)
Ejecutado desde C:\Users\Cintia\Desktop
Perfiles cargados: Cintia
Platform: Windows 7 Ultimate Service Pack 1 (X64) Idioma: Español (España, internacional)
Internet Explorer Versión 8 (Navegador predeterminado: FF)
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) [Archivo no firmado] C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(philandro Software GmbH -> philandro Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe <2>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe <5>
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [588704 2018-03-28] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-1228720450-2044868497-852069254-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91667312 2020-05-12] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-1228720450-2044868497-852069254-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22245560 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2020-03-28]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {023C7848-0342-4695-B8AC-46C6228877D7} - System32\Tasks\{A9129A59-A082-4F4F-B0E7-ACE64E81A6CD} => C:\Users\Cintia\AppData\Local\DiscordPTB\Update.exe [1515832 2020-04-01] (Discord Inc. -> GitHub)
Task: {1CCF9843-635A-43DB-BC87-E1148CEFE37B} - System32\Tasks\{3416C488-308E-4E73-8082-E34B14C82CF3} => C:\Users\Cintia\AppData\Local\Discord\Update.exe [1515832 2020-02-24] (Discord Inc. -> GitHub)
Task: {2A92469A-2E36-4CFE-ADD2-9715DA930687} - System32\Tasks\{E45AAFFC-19C3-4E16-93C0-C7E8A54138D4} => C:\Users\Cintia\AppData\Local\Discord\Update.exe [1515832 2020-02-24] (Discord Inc. -> GitHub)
Task: {3932CE7C-D5A4-4DB9-8494-C91EAFD4873D} - System32\Tasks\{4BD5330A-FC64-4885-8BE2-5637FEA9E9E5} => C:\Windows\system32\pcalua.exe -a D:\video\Setup3.5.34.0.exe -d D:\video
Task: {3CC2712E-1FA0-470F-AF30-6578C0D45BE6} - System32\Tasks\{22E90EED-1267-44D6-BE18-23A0C7DE9ADC} => C:\Users\Cintia\AppData\Local\DiscordPTB\Update.exe [1515832 2020-04-01] (Discord Inc. -> GitHub)
Task: {5939EF44-B1EC-4F18-BB0F-629B0F079D87} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_371_Plugin.exe [1458232 2020-05-12] (Adobe Inc. -> Adobe)
Task: {5EF8DE52-3F79-4288-A0ED-D72956CA8D92} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-05-12] (Adobe Inc. -> Adobe)
Task: {692E9B7C-41A4-4342-9AA5-E0700BABEE47} - System32\Tasks\{1B96FA3C-85B9-4F07-8703-B6DCFB2FCBD1} => C:\Users\Cintia\AppData\Local\Discord\Update.exe [1515832 2020-02-24] (Discord Inc. -> GitHub)
Task: {695DCCED-E23C-40BE-973B-449FDF09BE9D} - System32\Tasks\{E0F058BF-0849-45BD-B2B1-8BF5B18A8D06} => C:\Users\Cintia\AppData\Local\Discord\Update.exe [1515832 2020-02-24] (Discord Inc. -> GitHub)
Task: {93B11BD0-4D8E-4B79-9953-996C953EC28B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {BBC4CD48-3015-4AA9-A592-11ACE50735F5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18227896 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CFE0EAFF-C5B6-4476-9A50-44B8FF08CB92} - System32\Tasks\{62CF1EBC-A23E-4819-84F4-CBD6D0C1C225} => C:\Users\Cintia\AppData\Local\Discord\Update.exe [1515832 2020-02-24] (Discord Inc. -> GitHub)
Task: {DA4EC4E9-D020-45A5-AAD9-DF1D467F4004} - System32\Tasks\{FC42E465-34ED-4282-81C4-7D34A15F6498} => C:\Users\Cintia\AppData\Local\Discord\Update.exe [1515832 2020-02-24] (Discord Inc. -> GitHub)
Task: {FCCF05A5-22D0-4041-B358-6FD5449671E1} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)


==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{AD2CB46D-4E1F-4BF2-BD65-F6DBC10D8C0E}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKU\S-1-5-21-1228720450-2044868497-852069254-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/es-ar/?ocid=iehp
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_171\bin\ssv.dll [2018-07-15] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-07-15] (Oracle America, Inc. -> Oracle Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Windows -> Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Windows -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: pl0aabey.default
FF ProfilePath: C:\Users\Cintia\AppData\Roaming\Mozilla\Firefox\Profiles\pl0aabey.default [2020-05-23]
FF Notifications: Mozilla\Firefox\Profiles\pl0aabey.default -> hxxps://krothium.com; hxxps://www.facebook.com
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_371.dll [2020-05-12] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.171.2 -> C:\Program Files\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll [2018-07-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.171.2 -> C:\Program Files\Java\jre1.8.0_171\bin\plugin2\npjp2.dll [2018-07-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_371.dll [2020-05-12] (Adobe Inc. -> )
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-08-02] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1228720450-2044868497-852069254-1000: @zoom.us/ZoomVideoPlugin -> C:\Users\Cintia\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-05-14] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

"MBAMInstallerService" => servicio no pudo ser desbloqueado. <==== ATENCIÓN
HKLM\SYSTEM\ControlSet001\Services\MBAMInstallerService => C:\Program Files\Malwarebytes\Anti-Malware\MBAMInstallerService.exe [6065576 2020-05-22] (Malwarebytes Inc -> Malwarebytes) <==== ATENCIÓN (Rootkit!/Servicio bloqueado)
"MBAMService" => servicio no pudo ser desbloqueado. <==== ATENCIÓN
HKLM\SYSTEM\ControlSet001\Services\MBAMService => "C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe" <==== ATENCIÓN (Rootkit!/Servicio bloqueado)
"MBAMSwissArmy" => servicio no pudo ser desbloqueado. <==== ATENCIÓN
HKLM\SYSTEM\ControlSet001\Services\MBAMSwissArmy => \SystemRoot\System32\Drivers\mbamswissarmy.sys <==== ATENCIÓN (Rootkit!/Servicio bloqueado)

R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [3153872 2020-03-28] (philandro Software GmbH -> philandro Software GmbH)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [320472 2018-01-02] (Intel(R) pGFX -> Intel Corporation)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [Archivo no firmado]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13216272 2020-03-20] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Windows -> Microsoft Corporation)

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R3 athr; C:\Windows\System32\DRIVERS\athrx.sys [4162560 2015-09-08] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros Communications, Inc.)
S2 MBAMChameleon; \SystemRoot\System32\Drivers\MbamChameleon.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) ===================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-05-23 11:12 - 2020-05-23 11:16 - 000011150 _____ C:\Users\Cintia\Desktop\FRST.txt
2020-05-23 11:03 - 2020-05-23 11:13 - 000000000 ____D C:\FRST
2020-05-23 11:03 - 2020-05-23 11:03 - 002286080 _____ (Farbar) C:\Users\Cintia\Desktop\FRST64.exe
2020-05-22 21:39 - 2020-05-22 21:39 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-05-22 21:39 - 2020-05-22 21:39 - 000002812 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-05-22 21:39 - 2020-05-22 21:39 - 000000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-05-22 21:39 - 2020-05-22 21:39 - 000000822 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-05-22 21:39 - 2020-05-22 21:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-05-22 21:38 - 2020-05-22 21:39 - 000000000 ____D C:\Program Files\CCleaner
2020-05-22 21:24 - 2020-05-22 21:25 - 000000000 ____D C:\AdwCleaner
2020-05-22 21:19 - 2020-05-22 21:34 - 000000000 ____D C:\Users\Cintia\Documents\virus
2020-05-22 20:08 - 2020-05-22 20:08 - 000000000 ____D C:\Users\Cintia\AppData\Local\mbamtray
2020-05-22 20:08 - 2020-05-22 20:08 - 000000000 ____D C:\Users\Cintia\AppData\Local\mbam
2020-05-22 20:05 - 2020-05-22 20:05 - 000000000 ____D C:\Program Files\Malwarebytes
2020-05-20 17:46 - 2020-05-20 17:46 - 000000000 ____D C:\0885302b5c02f473a9
2020-05-19 17:26 - 2020-05-19 17:26 - 000000000 ____D C:\Users\Cintia\AppData\Roaming\Skype
2020-05-18 11:01 - 2020-05-18 12:25 - 000000000 ____D C:\Users\Cintia\AppData\Local\Discord
2020-05-17 12:21 - 2020-05-17 12:21 - 000000000 ____D C:\91659642b43d498b9c10
2020-05-17 10:04 - 2020-05-17 10:04 - 000002972 _____ C:\Windows\system32\Tasks\{A9129A59-A082-4F4F-B0E7-ACE64E81A6CD}
2020-05-17 10:04 - 2020-05-17 10:04 - 000002972 _____ C:\Windows\system32\Tasks\{22E90EED-1267-44D6-BE18-23A0C7DE9ADC}
2020-05-17 10:00 - 2020-05-17 11:15 - 000000000 ____D C:\Users\Cintia\AppData\Roaming\discordptb
2020-05-17 10:00 - 2020-05-17 11:15 - 000000000 ____D C:\Users\Cintia\AppData\Local\DiscordPTB
2020-05-17 09:57 - 2020-05-17 09:57 - 000000000 ____D C:\Users\Cintia\Desktop\discord
2020-05-17 09:53 - 2020-05-17 09:53 - 000002966 _____ C:\Windows\system32\Tasks\{FC42E465-34ED-4282-81C4-7D34A15F6498}
2020-05-17 09:53 - 2020-05-17 09:53 - 000002966 _____ C:\Windows\system32\Tasks\{E45AAFFC-19C3-4E16-93C0-C7E8A54138D4}
2020-05-17 09:53 - 2020-05-17 09:53 - 000002966 _____ C:\Windows\system32\Tasks\{E0F058BF-0849-45BD-B2B1-8BF5B18A8D06}
2020-05-17 09:53 - 2020-05-17 09:53 - 000002966 _____ C:\Windows\system32\Tasks\{62CF1EBC-A23E-4819-84F4-CBD6D0C1C225}
2020-05-17 09:52 - 2020-05-17 09:52 - 000002966 _____ C:\Windows\system32\Tasks\{1B96FA3C-85B9-4F07-8703-B6DCFB2FCBD1}
2020-05-17 09:51 - 2020-05-17 09:51 - 000002966 _____ C:\Windows\system32\Tasks\{3416C488-308E-4E73-8082-E34B14C82CF3}
2020-05-16 21:07 - 2020-05-18 12:25 - 000000000 ____D C:\Users\Cintia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2020-05-16 21:07 - 2020-05-18 12:25 - 000000000 ____D C:\Users\Cintia\AppData\Roaming\discord
2020-05-16 21:06 - 2020-05-18 11:02 - 000000000 ____D C:\Users\Cintia\AppData\Local\SquirrelTemp
2020-05-16 21:02 - 2020-05-16 21:06 - 001650696 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2020-05-14 08:47 - 2020-05-14 08:47 - 000001886 _____ C:\Users\Cintia\Desktop\Zoom.lnk
2020-05-14 08:47 - 2020-05-14 08:47 - 000000000 ____D C:\Users\Cintia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2020-05-13 23:42 - 2020-05-13 23:42 - 000000000 ____D C:\6880cd7c864a072008
2020-05-13 09:39 - 2020-05-14 08:42 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-05-10 23:00 - 2020-05-10 23:00 - 000000000 ____D C:\668613c9fdfcba4fec08c5dc0cc82b
2020-05-07 17:13 - 2020-05-07 17:13 - 000000000 ____D C:\cb78b6db1840e31e8aa7bb7f
2020-05-04 16:55 - 2020-05-04 16:55 - 000000000 ____D C:\200e4ab1d5bb67ac9d
2020-05-01 14:36 - 2020-05-01 14:36 - 000000000 ____D C:\57cb63c9086165b4ab19db8638628bf1
2020-04-28 00:01 - 2020-04-28 00:01 - 000000000 ____D C:\64eca15874c6dfcb9a31371039
2020-04-26 18:23 - 2020-04-26 18:24 - 000000000 ____D C:\Users\Cintia\AppData\Local\Apps\Herramienta de descarga USB DVD de Windows 7
2020-04-26 18:23 - 2020-04-26 18:23 - 000000000 ____D C:\Users\Cintia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Herramienta de descarga USB DVD de Windows 7
2020-04-26 18:18 - 2020-04-26 18:18 - 002951056 _____ (Microsoft Corporation) C:\Users\Cintia\Desktop\Windows7-USB-DVD-Download-Tool-Installer-es-ES.exe
2020-04-26 18:02 - 2020-04-26 18:06 - 000000000 ____D C:\Users\Cintia\Desktop\usb win
2020-04-24 22:55 - 2020-04-24 22:55 - 000000000 ____D C:\6f1a7489d2f87949526367b0d4fb3741
2020-04-23 14:36 - 2020-05-19 17:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2020-04-23 14:36 - 2020-04-23 14:36 - 000001306 _____ C:\Users\Public\Desktop\Skype.lnk
2020-04-23 14:36 - 2020-04-23 14:36 - 000001306 _____ C:\ProgramData\Desktop\Skype.lnk

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-05-23 11:15 - 2020-03-23 09:58 - 000000000 ____D C:\Users\Cintia\Desktop\CARITO
2020-05-23 11:15 - 2009-07-14 01:45 - 000026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-05-23 11:15 - 2009-07-14 01:45 - 000026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-05-23 11:14 - 2018-06-04 20:37 - 000000000 ____D C:\Users\Cintia\AppData\LocalLow\Mozilla
2020-05-23 11:13 - 2016-08-20 22:49 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-05-23 11:12 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\inf
2020-05-23 11:08 - 2020-04-02 13:07 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-05-23 11:08 - 2018-06-14 13:33 - 000073232 _____ (Absolute Software Corp.) C:\Windows\SysWOW64\rpcnet.dll
2020-05-23 11:08 - 2016-08-20 15:04 - 000017920 _____ C:\Windows\system32\rpcnetp.exe
2020-05-23 11:08 - 2009-07-14 02:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-05-23 11:00 - 2020-03-22 17:24 - 000000000 ____D C:\Users\Cintia\AppData\Roaming\.tlauncher
2020-05-23 11:00 - 2018-07-15 20:29 - 000000000 ____D C:\Users\Cintia\AppData\Roaming\.minecraft
2020-05-23 10:59 - 2009-07-14 02:08 - 000032628 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2020-05-22 21:51 - 2020-04-02 13:07 - 000000000 ____D C:\Users\Cintia\AppData\Roaming\TeamViewer
2020-05-22 21:50 - 2016-08-20 16:03 - 000000000 ____D C:\Windows\Panther
2020-05-22 21:17 - 2016-08-20 22:58 - 000000000 ____D C:\Users\Cintia\Desktop\Windows Loader
2020-05-20 11:20 - 2020-03-25 13:48 - 000001315 _____ C:\Users\Cintia\Desktop\Roblox Player.lnk
2020-05-20 11:20 - 2020-03-25 13:41 - 000001134 _____ C:\Users\Cintia\Desktop\Roblox Studio.lnk
2020-05-20 11:20 - 2020-03-25 13:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roblox
2020-05-18 15:15 - 2018-06-14 13:30 - 000017920 _____ C:\Windows\SysWOW64\rpcnetp.exe
2020-05-18 15:15 - 2018-06-14 13:30 - 000017920 _____ C:\Windows\SysWOW64\rpcnetp.dll
2020-05-17 09:52 - 2020-04-07 08:32 - 000000000 ____D C:\Users\Cintia\AppData\Local\ElevatedDiagnostics
2020-05-16 21:06 - 2011-04-12 06:10 - 000747230 _____ C:\Windows\system32\perfh00A.dat
2020-05-16 21:06 - 2011-04-12 06:10 - 000158670 _____ C:\Windows\system32\perfc00A.dat
2020-05-16 21:05 - 2009-07-14 02:13 - 001650696 _____ C:\Windows\system32\PerfStringBackup.INI
2020-05-14 08:47 - 2020-03-31 21:46 - 000000000 ____D C:\Users\Cintia\AppData\Roaming\Zoom
2020-05-14 08:42 - 2016-08-20 22:46 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-05-12 20:19 - 2018-04-29 20:46 - 000004496 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-05-12 20:19 - 2016-08-20 22:50 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-05-12 20:19 - 2016-08-20 22:50 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-05-12 20:19 - 2016-08-20 22:50 - 000004320 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-05-12 20:19 - 2016-08-20 22:50 - 000000000 ____D C:\Windows\system32\Macromed
2020-04-24 11:30 - 2020-04-01 17:01 - 000000000 ____D C:\Users\Cintia\Documents\Zoom

==================== Archivos en la raíz de algunos directorios ========

2018-07-15 20:29 - 2018-07-15 20:29 - 000000255 _____ () C:\Users\Cintia\mdatac.dat
2017-03-31 20:36 - 2017-03-31 20:36 - 000008631 _____ () C:\Users\Cintia\AppData\Local\WiDiSetupLog.20170331.203617.txt
2017-03-31 20:37 - 2017-03-31 20:37 - 000008890 _____ () C:\Users\Cintia\AppData\Local\WiDiSetupLog.20170331.203716.txt
2018-07-15 21:23 - 2018-07-15 21:24 - 000008888 _____ () C:\Users\Cintia\AppData\Local\WiDiSetupLog.20180715.212326.txt

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)


LastRegBack: 2016-08-20 21:35
==================== Final de FRST.txt ========================