Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 19-08-2020 Ejecutado por Personal (administrador) sobre SOS (ECS H61H2-CM) (20-08-2020 13:03:20) Ejecutado desde C:\Users\Personal\Desktop Perfiles cargados: Personal Platform: Windows 7 Professional Service Pack 1 (X64) Idioma: Español (España, internacional) Internet Explorer Versión 11 (Navegador predeterminado: Opera) Modo de Inicio: Normal Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesos (Lista blanca) ================= (Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\perfmon.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\taskmgr.exe ==================== Registro (Lista blanca) =================== (Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.) HKLM-x32\...\Winlogon: [Shell] C:\Windows\explorer.exe, HKU\S-1-5-19\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun HKU\S-1-5-20\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun HKU\S-1-5-21-742525890-1094425155-3898857869-1000\...\Policies\system: [EnableLUA] 1 HKU\S-1-5-21-742525890-1094425155-3898857869-1000\...\Policies\Explorer: [MaxRecentDocs] 15 HKU\S-1-5-21-742525890-1094425155-3898857869-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1 HKU\S-1-5-21-742525890-1094425155-3898857869-1000\...\MountPoints2: E - E:\AutoRun.exe HKU\S-1-5-21-742525890-1094425155-3898857869-1000\...\MountPoints2: {10734e41-1abb-11ea-a27c-eca86b9a1b51} - E:\AutoRun.exe HKU\S-1-5-21-742525890-1094425155-3898857869-1000\...\MountPoints2: {1c37e67f-df73-11e7-868b-003067c7f37a} - E:\setup.exe HKU\S-1-5-21-742525890-1094425155-3898857869-1000\...\MountPoints2: {5a9414b0-1978-11e8-a5c7-003067c7f37a} - E:\AutoRun.exe HKU\S-1-5-21-742525890-1094425155-3898857869-1000\...\MountPoints2: {69d77cf1-6ab5-11ea-842e-eca86b9a1b51} - E:\AutoRun.exe HKU\S-1-5-21-742525890-1094425155-3898857869-1000\...\MountPoints2: {70fcd81e-0492-11ea-926f-eca86b9a1b51} - E:\AutoRun.exe HKU\S-1-5-21-742525890-1094425155-3898857869-1000\...\MountPoints2: {7c8f2aab-9bc5-11e8-bac9-003067c7f37a} - E:\AutoRun.exe HKU\S-1-5-21-742525890-1094425155-3898857869-1000\...\MountPoints2: {7f15b64d-19d2-11e8-85f8-003067c7f37a} - E:\AutoRun.exe HKU\S-1-5-21-742525890-1094425155-3898857869-1000\...\MountPoints2: {9ef9a9f5-19d3-11e8-8cd9-003067c7f37a} - E:\AutoRun.exe HKU\S-1-5-21-742525890-1094425155-3898857869-1000\...\MountPoints2: {a7dafcb3-096e-11ea-a334-eca86b9a1b51} - E:\AutoRun.exe HKU\S-1-5-21-742525890-1094425155-3898857869-1000\...\MountPoints2: {a80688a5-eb68-11e7-be35-003067c7f37a} - E:\AutoRun.exe HKU\S-1-5-21-742525890-1094425155-3898857869-1000\...\MountPoints2: {b36b1e4e-aea5-11e7-9326-003067c7f37a} - E:\setup.exe HKU\S-1-5-21-742525890-1094425155-3898857869-1000\...\MountPoints2: {b45acfd6-6d21-11ea-9aeb-eca86b9a1b51} - F:\setup.exe HKU\S-1-5-21-742525890-1094425155-3898857869-1000\...\MountPoints2: {bbafa53f-a79b-11e8-b665-003067c7f37a} - E:\setup.exe HKU\S-1-5-21-742525890-1094425155-3898857869-1000\...\MountPoints2: {dac4e8f5-1e54-11e8-a395-003067c7f37a} - E:\AutoRun.exe HKU\S-1-5-21-742525890-1094425155-3898857869-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\theforce.scr HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2017-02-03] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Windows x64\Print Processors\hpfpp083: C:\Windows\System32\spool\prtprocs\x64\hpfpp083.dll [254464 2008-10-06] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\...\Windows x64\Print Processors\hpfppw73: C:\Windows\System32\spool\prtprocs\x64\hpfppw73.dll [258048 2009-07-13] (Microsoft Windows -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\hpf3l083.dll: C:\Windows\system32\hpf3l083.dll [134144 2008-10-06] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company) HKLM\...\Print\Monitors\PCL hpf3lw73: C:\Windows\system32\hpf3lw73.dll [48640 2009-07-13] (Microsoft Windows -> Hewlett-Packard Company) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.97\Installer\chrmstp.exe [2019-11-14] (Google LLC -> Google LLC) GroupPolicy: Restricción ? <==== ATENCIÓN ==================== Tareas programadas (Lista blanca) ============ (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) Task: {03827903-096B-49E7-A9C0-48098CF567DD} - System32\Tasks\{B0FD5B69-51F4-46B4-862F-D286B826DAC1} => C:\Windows\system32\pcalua.exe -a "C:\Users\Personal\Documents\Geometry Dash 2.1 - By PolloTv\_CommonRedist\vcredist\2010\vcredist_x86.exe" -d "C:\Users\Personal\Documents\Geometry Dash 2.1 - By PolloTv\_CommonRedist\vcredist\2010" Task: {11A1A96E-115C-4886-B31B-3E6BE3F5B9B9} - System32\Tasks\{AF316321-CDCE-4EF5-9219-8106A57A4442} => C:\Riot Games\League of Legends\LeagueClient.exe [23045728 2020-08-06] (Riot Games, Inc. -> Riot Games, Inc.) Task: {188C2B1D-69CC-48FF-A6D9-1BAA507015DF} - System32\Tasks\{313547D7-3A87-46C5-85E8-ADF97E975062} => C:\Riot Games\League of Legends\LeagueClient.exe [23045728 2020-08-06] (Riot Games, Inc. -> Riot Games, Inc.) Task: {2BD8292F-82ED-4714-BC54-6CC683D6392A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24910520 2020-07-09] (Piriform Software Ltd -> Piriform Software Ltd) Task: {37B445BD-C9E7-464F-A32C-D4A7F8454C3F} - System32\Tasks\Games\UpdateCheck_S-1-5-21-742525890-1094425155-3898857869-1000 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781} C:\Windows\System32\gameux.dll [2746368 2012-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {39493418-B5B3-4660-B473-41C2B6F00219} - System32\Tasks\{7A06A6B2-E249-40CE-AD31-6F04E5FF5235} => C:\Windows\system32\pcalua.exe -a "C:\Users\Personal\Documents\1Juegos inútiles\AA-PVZ\cached\sounds\DX12-11.AquíyAhora\DX.V12.exe" -d "C:\Users\Personal\Documents\1Juegos inútiles\AA-PVZ\cached\sounds\DX12-11.AquíyAhora" Task: {3A235821-C020-4140-AE03-1FCF0F293687} - \Driver Booster SkipUAC (Personal) -> Ningún archivo <==== ATENCIÓN Task: {444C0B0D-D7EA-4671-927F-41C69DA4FD54} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-05-20] (Google Inc -> Google Inc.) Task: {4674BCC3-D931-464C-BD9C-E4530356EE20} - System32\Tasks\{627F111D-9E78-4207-A673-EBBA788668F2} => C:\Windows\system32\pcalua.exe -a C:\Users\Personal\Downloads\Programs\NVIDIA_Performance_Drivers_x86_18.1.2.exe -d C:\Users\Personal\AppData\Roaming\IDM Task: {60012D3C-4342-44F5-AF79-016CB018FB76} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_371_Plugin.exe [1458232 2020-05-27] (Adobe Inc. -> Adobe) Task: {65F52EB3-1C32-4A2C-A239-A632B31C4D21} - System32\Tasks\{E1DA1798-FEC6-4F68-A04A-FA6DB521BBFE} => C:\Windows\system32\pcalua.exe -a C:\Windows\unvise32.exe -d C:\Windows -c C:\PROGRA~2\Parallel Port Joystick\uninstal.log Task: {6D2B622A-0401-4410-8BEA-7FE98E2EC208} - System32\Tasks\{470D37B7-D9D3-4BF1-B172-149A188E9D9E} => C:\Windows\system32\pcalua.exe -a "C:\Users\Personal\MEmu\Saved Games\Downloads\MODS2\Alci's IMG Editor 1.5\Alci's IMG Editor 1.5.exe" -d "C:\Users\Personal\MEmu\Saved Games\Downloads\MODS2\Alci's IMG Editor 1.5" Task: {6D639130-E10F-4B20-BFC9-DCA594B88618} - System32\Tasks\Opera GX scheduled Autoupdate 1592677306 => C:\Users\Personal\AppData\Local\Programs\Opera GX\launcher.exe [1459224 2020-07-23] (Opera Software AS -> Opera Software) Task: {71727F17-36A3-4CFB-84DE-C3D68A0F4D60} - System32\Tasks\{2A9D403F-8F35-4427-A740-FFCC764F3D22} => C:\Riot Games\League of Legends\LeagueClient.exe [23045728 2020-08-06] (Riot Games, Inc. -> Riot Games, Inc.) Task: {8728AE0A-9CA9-476F-8FAF-971A8AF6F776} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-05-20] (Google Inc -> Google Inc.) Task: {8C312BF7-7C28-42C2-9D73-F0649031F318} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-07-09] (Piriform Software Ltd -> Piriform Software Ltd) Task: {942198AA-12B0-40C2-ACC8-E46E94D697BC} - System32\Tasks\SmartDefrag_Update => C:\Program Files (x86)\IObit\Smart Defrag\AutoUpdate.exe [3031824 2020-07-07] (IObit Information Technology -> IObit) Task: {9FDBB7D3-F6F6-4A69-A655-2948EA769626} - System32\Tasks\{310234D1-B39E-4870-AA2F-271456CB03FE} => C:\Windows\system32\pcalua.exe -a "C:\Users\Personal\Documents\MEGAsync Downloads\emulator +Street Fighter III Strike Fight for the Future POR FideRock.exe" -d "C:\Users\Personal\Documents\MEGAsync Downloads" Task: {A41F3C30-C51A-46FB-987A-0F8525834EAF} - System32\Tasks\Games\UpdateCheck_S-1-5-21-742525890-1094425155-3898857869-501 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781} C:\Windows\System32\gameux.dll [2746368 2012-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {B280B773-DBE8-4482-AA3C-354F3F1000AA} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe Task: {C116D9DD-2696-4480-A9DC-14A45B7AA28C} - \Driver Booster Update -> Ningún archivo <==== ATENCIÓN Task: {E153F22C-107D-4C92-BF15-6B71A8B95CE1} - System32\Tasks\{1904E34E-E210-4529-9FFF-AD826A384C59} => C:\Riot Games\League of Legends\LeagueClient.exe [23045728 2020-08-06] (Riot Games, Inc. -> Riot Games, Inc.) Task: {E434A8ED-90EF-4FCD-9792-068198A30DE6} - System32\Tasks\{502736FF-F88E-4C74-9E04-3454B92E481A} => C:\Windows\system32\pcalua.exe -a "C:\Users\Personal\Downloads\Snes9x 1.51\snes9x.exe" -d "C:\Users\Personal\Downloads\Snes9x 1.51" Task: {ECEA637F-47F6-4317-9CFC-5DEC75516919} - System32\Tasks\{302D9FC8-1075-420A-BAB4-00D6879B9241} => C:\Riot Games\League of Legends\LeagueClient.exe [23045728 2020-08-06] (Riot Games, Inc. -> Riot Games, Inc.) Task: {ED8569AE-5CA0-4351-BC16-A56645A47551} - System32\Tasks\{ECD8B304-76C9-4860-B74A-16860C71F9C7} => C:\Windows\system32\pcalua.exe -a "C:\Users\Personal\Desktop\The Binding of Isaac Afterbirth Plus Update 4\Redist\vcredist_x86.exe" -d "C:\Users\Personal\Desktop\The Binding of Isaac Afterbirth Plus Update 4\Redist" Task: {FB13E65B-89DB-4B9C-A163-0BE7697B21CD} - System32\Tasks\{B5EB3E2A-0E80-49B3-AAC3-052C70C0C0F8} => C:\Windows\system32\pcalua.exe -a "C:\Users\Personal\Desktop\The Binding of Isaac Afterbirth Plus Update 4\Redist\vcredist_x64.exe" -d "C:\Users\Personal\Desktop\The Binding of Isaac Afterbirth Plus Update 4\Redist" Task: {FC815550-B8DA-4825-AF46-91C45CF0CE49} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-742525890-1094425155-3898857869-1000 => C:\Users\Personal\AppData\Local\MEGAsync\MEGAupdater.exe [615160 2020-04-02] (Mega Limited -> Mega Limited) (Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.) ==================== Internet (Lista blanca) ==================== (Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.) Hosts: Hay más de una entrada en Hosts. Consulte la sección Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{40B7CE41-692C-4334-9E55-A7EECB7156FD}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{B82A906C-81E2-4EA5-A408-EC1EA26D36FA}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = HKU\S-1-5-21-742525890-1094425155-3898857869-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKU\S-1-5-21-742525890-1094425155-3898857869-1000 -> DefaultScope {0CE02FFA-A6B0-46F6-BA2F-BD32C3630126} URL = FireFox: ======== FF DefaultProfile: 7jf1w50h.Usuario predeterminado-1592590486027 FF ProfilePath: C:\Users\Personal\AppData\Roaming\Mozilla\Firefox\Profiles\7jf1w50h.Usuario predeterminado-1592590486027 [2020-08-20] FF user.js: detected! => C:\Users\Personal\AppData\Roaming\Mozilla\Firefox\Profiles\7jf1w50h.Usuario predeterminado-1592590486027\user.js [2020-06-26] FF Homepage: Mozilla\Firefox\Profiles\7jf1w50h.Usuario predeterminado-1592590486027 -> about:blank FF Extension: (AdBlocker Ultimate) - C:\Users\Personal\AppData\Roaming\Mozilla\Firefox\Profiles\7jf1w50h.Usuario predeterminado-1592590486027\Extensions\adblockultimate@adblockultimate.net.xpi [2020-07-01] FF Extension: (Firefox Color) - C:\Users\Personal\AppData\Roaming\Mozilla\Firefox\Profiles\7jf1w50h.Usuario predeterminado-1592590486027\Extensions\FirefoxColor@mozilla.com.xpi [2020-06-19] FF Extension: (Al traductor de Google) - C:\Users\Personal\AppData\Roaming\Mozilla\Firefox\Profiles\7jf1w50h.Usuario predeterminado-1592590486027\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2020-06-19] FF Extension: (uBlock Origin) - C:\Users\Personal\AppData\Roaming\Mozilla\Firefox\Profiles\7jf1w50h.Usuario predeterminado-1592590486027\Extensions\uBlock0@raymondhill.net.xpi [2020-06-19] FF Extension: (BlockTube) - C:\Users\Personal\AppData\Roaming\Mozilla\Firefox\Profiles\7jf1w50h.Usuario predeterminado-1592590486027\Extensions\{58204f8b-01c2-4bbc-98f8-9a90458fd9ef}.xpi [2020-06-19] FF Extension: (Popup Blocker Ultimate) - C:\Users\Personal\AppData\Roaming\Mozilla\Firefox\Profiles\7jf1w50h.Usuario predeterminado-1592590486027\Extensions\{60B7679C-BED9-11E5-998D-8526BB8E7F8B}.xpi [2020-06-19] FF Extension: (rainbow blur) - C:\Users\Personal\AppData\Roaming\Mozilla\Firefox\Profiles\7jf1w50h.Usuario predeterminado-1592590486027\Extensions\{7477cece-5973-41fe-a60e-2d2ffae6d21e}.xpi [2020-06-19] FF Extension: (Matte Black (Red)) - C:\Users\Personal\AppData\Roaming\Mozilla\Firefox\Profiles\7jf1w50h.Usuario predeterminado-1592590486027\Extensions\{a7589411-c5f6-41cf-8bdc-f66527d9d930}.xpi [2020-07-01] FF Extension: (Matte Black (White)) - C:\Users\Personal\AppData\Roaming\Mozilla\Firefox\Profiles\7jf1w50h.Usuario predeterminado-1592590486027\Extensions\{bcf9bb24-1417-4c9e-b901-1ffa328ba873}.xpi [2020-07-01] FF Extension: (Popup Blocker (strict)) - C:\Users\Personal\AppData\Roaming\Mozilla\Firefox\Profiles\7jf1w50h.Usuario predeterminado-1592590486027\Extensions\{de22fd49-c9ab-4359-b722-b3febdc3a0b0}.xpi [2020-06-19] FF HKU\S-1-5-21-742525890-1094425155-3898857869-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Personal\AppData\Roaming\IDM\idmmzcc5 FF Extension: (IDM CC) - C:\Users\Personal\AppData\Roaming\IDM\idmmzcc5 [2020-08-18] [Heredado] [no firmado] FF HKU\S-1-5-21-742525890-1094425155-3898857869-1000\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2020-04-15] [Heredado] FF Plugin: @java.com/DTPlugin,version=11.231.2 -> C:\Program Files\Java\jre1.8.0_231\bin\dtplugin\npDeployJava1.dll [2019-11-06] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.231.2 -> C:\Program Files\Java\jre1.8.0_231\bin\plugin2\npjp2.dll [2019-11-06] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @microsoft.com/GENUINE -> disabled [Ningún archivo] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2019-07-05] (Adobe Inc. -> Adobe Systems) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Ningún archivo] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-14] (Google Inc -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-14] (Google Inc -> Google LLC) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2019-07-05] (Adobe Inc. -> Adobe Systems) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Personal\AppData\Local\Google\Chrome\User Data\Default [2020-08-20] CHR Extension: (Presentaciones) - C:\Users\Personal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-08-20] CHR Extension: (Documentos) - C:\Users\Personal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-08-20] CHR Extension: (Google Drive) - C:\Users\Personal\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-08-20] CHR Extension: (YouTube) - C:\Users\Personal\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-08-20] CHR Extension: (Hojas de cálculo) - C:\Users\Personal\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-08-20] CHR Extension: (Ad Blocker) - C:\Users\Personal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbgkoodppmcmfeaegpelbngiahdcccig [2020-08-20] CHR Extension: (Documentos de Google sin conexión) - C:\Users\Personal\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-08-20] CHR Extension: (IDM Integration Module) - C:\Users\Personal\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2020-08-20] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Personal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-08-20] CHR Extension: (Gmail) - C:\Users\Personal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-08-20] CHR Extension: (Chrome Media Router) - C:\Users\Personal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-08-20] CHR Profile: C:\Users\Personal\AppData\Local\Google\Chrome\User Data\System Profile [2020-08-20] CHR HKLM\...\Chrome\Extension: [miockbgloklamfiklogjaohlgekodeok] CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-08-01] CHR HKLM\...\Chrome\Extension: [obhdbhpjhfncnelcpknkffpdmpdcjpep] CHR HKU\S-1-5-21-742525890-1094425155-3898857869-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [miockbgloklamfiklogjaohlgekodeok] CHR HKU\S-1-5-21-742525890-1094425155-3898857869-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [obhdbhpjhfncnelcpknkffpdmpdcjpep] CHR HKLM-x32\...\Chrome\Extension: [miockbgloklamfiklogjaohlgekodeok] CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-08-01] CHR HKLM-x32\...\Chrome\Extension: [obhdbhpjhfncnelcpknkffpdmpdcjpep] ==================== Servicios (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) S4 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [816184 2019-07-05] (Adobe Inc. -> Adobe Inc.) S4 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [780928 2018-10-08] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) S4 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.) S4 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2018-06-11] (Hi-Rez Studios) [Archivo no firmado] S4 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [253568 2009-11-18] (Hewlett Packard -> Hewlett-Packard Co.) [Archivo no firmado] S4 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [137344 2009-11-18] (Hewlett Packard -> Hewlett-Packard Co.) [Archivo no firmado] S4 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6970968 2020-08-19] (Malwarebytes Inc -> Malwarebytes) S4 MEmuSVC; C:\Program Files (x86)\Microvirt\MEmu\MemuService.exe [85304 2019-09-12] (Shanghai Microvirt Software Technology Co., Ltd. -> ) S4 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [Archivo no firmado] S4 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [Archivo no firmado] S4 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-02-28] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) S4 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [36504 2017-08-30] (VIA Technologies Inc. -> VIA Technologies, Inc.) S4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation) ===================== Controladores (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) R1 adgnetworktdidrv; C:\Windows\System32\drivers\adgnetworktdidrv.sys [66848 2018-09-05] (Adguard Software Limited -> ) S3 AR5416; C:\Windows\System32\DRIVERS\athwx.sys [2103424 2019-11-05] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.) S3 CEDRIVER60; C:\Program Files\Cheat Engine 7.1\dbk64.sys [110720 2019-07-24] (Cheat Engine -> ) S3 cpuz143; no ImagePath R3 DroidCam; C:\Windows\System32\DRIVERS\droidcam.sys [33592 2017-02-27] (DEV47 APPS -> Dev47Apps) R3 DroidCamVideo; C:\Windows\System32\DRIVERS\droidcamvideo.sys [229432 2015-05-24] (DEV47 APPS -> Dev47Apps) S3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2017-09-29] (Disc Soft Ltd -> Disc Soft Ltd) S3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2017-09-29] (Disc Soft Ltd -> Disc Soft Ltd) S3 dtproscsibus; C:\Windows\System32\DRIVERS\dtproscsibus.sys [30352 2017-10-11] (Disc Soft Ltd -> Disc Soft Ltd) R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [153312 2020-08-19] (Malwarebytes Corporation -> Malwarebytes) R3 GeneStor; C:\Windows\System32\DRIVERS\GeneStor.sys [215608 2019-11-05] (GENESYS LOGIC, INC. -> GenesysLogic) S3 hackedl; no ImagePath R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2017-08-30] (Martin Malik - REALiX -> REALiX(tm)) S4 IUFileFilter; no ImagePath R3 keyboard; C:\Windows\System32\Drivers\keyboard.sys [18536 2020-03-15] (Francisco Lopes da Silva -> Oblita) S3 massfilter; C:\Windows\SysWOW64\drivers\massfilter.sys [9216 2011-08-29] (MBB Incorporated) [Archivo no firmado] R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [216056 2020-08-19] (Malwarebytes Inc -> Malwarebytes) R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [197264 2020-08-20] (Malwarebytes Inc -> Malwarebytes) R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [73368 2020-08-20] (Malwarebytes Inc -> Malwarebytes) R0 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-08-19] (Malwarebytes Inc -> Malwarebytes) R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [119920 2020-08-20] (Malwarebytes Inc -> Malwarebytes) R1 MEmuDrv; C:\Windows\System32\DRIVERS\MEmuDrv.sys [309904 2019-09-21] (Shanghai Microvirt Software Technology Co., Ltd. -> Maiwei Corporation) R3 mouse; C:\Windows\System32\Drivers\mouse.sys [18536 2020-03-15] (Francisco Lopes da Silva -> Oblita) R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-02-28] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) S3 olololo; no ImagePath R3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [44080 2020-03-15] (Shaul Eizikovich -> Nefarius Software Solutions) R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [30744 2017-03-09] (IObit Information Technology -> IObit) R3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [27136 2017-11-08] (OpenVPN Technologies, Inc. -> The OpenVPN Project) R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42064 2017-02-09] (AnchorFree Inc -> Anchorfree Inc.) S3 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [200832 2018-01-15] (Oracle Corporation -> Oracle Corporation) R3 vhidmini; C:\Windows\System32\DRIVERS\vjoy.sys [15544 2013-04-18] (Ultimarc Limited -> Headsoft) S3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [700624 2017-08-30] (VIA Technologies Inc. -> VIA Technologies, Inc.) S3 vjoy; C:\Windows\System32\DRIVERS\vjoy.sys [15544 2013-04-18] (Ultimarc Limited -> Headsoft) S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [159936 2016-08-16] (NGO -> MBB) S3 X6va062; no ImagePath S3 ZTEusbmdm6k; C:\Windows\SysWOW64\DRIVERS\ZTEusbmdm6k.sys [107520 2011-08-29] (ZTE Incorporated) [Archivo no firmado] S3 ZTEusbnmea; C:\Windows\SysWOW64\DRIVERS\ZTEusbnmea.sys [107520 2011-08-29] (ZTE Incorporated) [Archivo no firmado] S3 ZTEusbser6k; C:\Windows\SysWOW64\DRIVERS\ZTEusbser6k.sys [107520 2011-08-29] (ZTE Incorporated) [Archivo no firmado] S3 cpuz145; \??\C:\Windows\temp\cpuz145\cpuz145_x64.sys [X] ==================== NetSvcs (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) ==================== Un mes (creado) =================== (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2020-08-20 12:01 - 2020-08-20 12:01 - 000025615 _____ C:\Users\Personal\Desktop\Resultados MalwareBytes2.txt 2020-08-20 11:58 - 2020-08-20 11:58 - 000197264 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys 2020-08-20 11:58 - 2020-08-20 11:58 - 000119920 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys 2020-08-20 11:58 - 2020-08-20 11:58 - 000073368 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2020-08-20 01:03 - 2020-08-20 01:05 - 000056970 _____ C:\Users\Personal\Desktop\Addition.txt 2020-08-20 01:02 - 2020-08-20 13:04 - 000027852 _____ C:\Users\Personal\Desktop\FRST.txt 2020-08-20 01:02 - 2020-08-20 13:03 - 000000000 ____D C:\FRST 2020-08-20 01:01 - 2020-08-20 01:01 - 002297344 _____ (Farbar) C:\Users\Personal\Desktop\FRST64.exe 2020-08-20 00:45 - 2020-08-20 00:45 - 000010180 _____ C:\Users\Personal\Desktop\ZHPCleaner (R).html 2020-08-20 00:45 - 2020-08-20 00:45 - 000003291 _____ C:\Users\Personal\Desktop\ZHPCleaner (R).txt 2020-08-20 00:41 - 2020-08-20 00:41 - 000014013 _____ C:\Users\Personal\Desktop\ZHPCleaner (S).html 2020-08-20 00:41 - 2020-08-20 00:41 - 000005960 _____ C:\Users\Personal\Desktop\ZHPCleaner (S).txt 2020-08-20 00:32 - 2020-08-20 00:45 - 000000000 ____D C:\Users\Personal\AppData\Roaming\ZHP 2020-08-20 00:32 - 2020-08-20 00:32 - 000000830 _____ C:\Users\Personal\Desktop\ZHPCleaner.lnk 2020-08-20 00:32 - 2020-08-20 00:32 - 000000000 ____D C:\Users\Personal\AppData\Local\ZHP 2020-08-20 00:30 - 2020-08-20 00:30 - 000002033 _____ C:\Users\Personal\Downloads\Resultados MalwareBytes4.txt 2020-08-20 00:29 - 2020-08-20 00:29 - 003324288 _____ (Nicolas Coolman) C:\Users\Personal\Downloads\ZHPCleaner.exe 2020-08-20 00:15 - 2020-08-20 00:12 - 000004122 _____ C:\Users\Personal\Desktop\AdwCleaner[C00].txt 2020-08-20 00:15 - 2020-08-20 00:11 - 000004478 _____ C:\Users\Personal\Desktop\AdwCleaner[S00].txt 2020-08-20 00:10 - 2020-08-20 00:12 - 000000000 ____D C:\AdwCleaner 2020-08-20 00:09 - 2020-08-20 00:09 - 008414384 _____ (Malwarebytes) C:\Users\Personal\Downloads\adwcleaner_8.0.7.exe 2020-08-20 00:08 - 2020-08-20 00:08 - 000000766 _____ C:\Users\Personal\Downloads\Resultados MalwareBytes3.txt 2020-08-20 00:05 - 2020-08-20 00:05 - 000000765 _____ C:\Users\Personal\Downloads\Resultados MalwareBytes2.txt 2020-08-20 00:00 - 2020-08-20 00:00 - 000010430 _____ C:\Users\Personal\Desktop\Resultados MalwareBytes.txt 2020-08-19 23:42 - 2020-08-20 12:13 - 000000000 ____D C:\Users\Personal\AppData\LocalLow\IGDump 2020-08-19 23:42 - 2020-08-19 23:42 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2020-08-19 23:42 - 2020-08-19 23:42 - 000216056 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys 2020-08-19 23:42 - 2020-08-19 23:42 - 000001968 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2020-08-19 23:42 - 2020-08-19 23:42 - 000001956 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2020-08-19 23:42 - 2020-08-19 23:42 - 000001956 _____ C:\ProgramData\Desktop\Malwarebytes.lnk 2020-08-19 23:42 - 2020-08-19 23:42 - 000000000 ____D C:\Users\Personal\AppData\Local\mbam 2020-08-19 23:41 - 2020-08-19 23:41 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys 2020-08-19 23:41 - 2020-08-19 23:41 - 000000000 ____D C:\ProgramData\Malwarebytes 2020-08-19 23:37 - 2020-08-19 23:37 - 001988280 ___SH (Malwarebytes) C:\Users\Personal\Downloads\mbsetup-009996.009996-consumer.exe  2020-08-19 23:37 - 2020-08-19 23:37 - 000000000 ____D C:\Program Files\Malwarebytes 2020-08-19 23:37 - 2020-08-19 23:37 - 000000000 ____D C:\Malwarebytes 2020-08-19 22:28 - 2020-08-19 22:28 - 000562656 _____ C:\Users\Personal\AppData\Local\GDIPFONTCACHEV1.DAT 2020-08-19 18:22 - 2019-09-12 09:59 - 000178960 _____ (IObit) C:\Windows\system32\IObitSmartDefragExtension.dll 2020-08-19 17:34 - 2020-08-19 17:34 - 000003016 _____ C:\Windows\system32\Tasks\SmartDefrag_Update 2020-08-19 17:34 - 2020-08-19 17:34 - 000001162 _____ C:\Users\Public\Desktop\Smart Defrag 6.lnk 2020-08-19 17:34 - 2020-08-19 17:34 - 000001162 _____ C:\ProgramData\Desktop\Smart Defrag 6.lnk 2020-08-19 17:34 - 2020-08-19 17:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 2020-08-19 17:34 - 2017-03-09 13:53 - 000030744 _____ (IObit) C:\Windows\system32\Drivers\SmartDefragDriver.sys 2020-08-19 17:23 - 2020-08-19 23:39 - 000003390 _____ C:\Users\Personal\AppData\Local\icsys.icn 2020-08-19 17:16 - 2020-08-20 00:48 - 000000977 _____ C:\Users\Personal\Desktop\CCleaner.lnk 2020-08-19 17:16 - 2020-08-19 17:16 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update 2020-08-19 17:16 - 2020-08-19 17:16 - 000002804 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC 2020-08-19 17:15 - 2020-08-19 17:16 - 000000000 ____D C:\Program Files\CCleaner 2020-08-19 08:32 - 2020-08-19 08:33 - 002393848 _____ C:\Windows\system32\FNTCACHE.DAT 2020-08-18 22:50 - 2020-08-18 22:50 - 000001462 _____ C:\Users\Personal\Documents\yt.txt 2020-08-18 20:00 - 2020-08-18 20:00 - 000000000 ____D C:\Users\Personal\Documents\My Games 2020-08-18 19:57 - 2020-08-18 19:57 - 000001451 _____ C:\Users\Public\Desktop\South Park - The Stick of Truth.lnk 2020-08-18 19:57 - 2020-08-18 19:57 - 000001451 _____ C:\ProgramData\Desktop\South Park - The Stick of Truth.lnk 2020-08-18 19:57 - 2020-08-18 19:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\South Park - The Stick of Truth 2020-08-18 19:50 - 2020-08-18 19:57 - 000000000 ____D C:\Program Files (x86)\South Park - The Stick of Truth 2020-08-18 14:02 - 2020-08-20 00:00 - 000000000 ____D C:\Program Files (x86)\Internet Download Manager 2020-08-18 14:02 - 2020-08-19 02:55 - 000000000 ____D C:\Users\Personal\AppData\Roaming\DMCache 2020-08-18 14:02 - 2020-08-19 02:11 - 000000000 ____D C:\Users\Personal\AppData\Roaming\IDM 2020-08-18 14:02 - 2020-08-18 14:02 - 000000000 ____D C:\Users\Personal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager 2020-08-18 14:02 - 2020-08-18 14:02 - 000000000 ____D C:\ProgramData\IDM 2020-08-17 21:27 - 2020-08-18 02:47 - 000000000 ____D C:\Users\Invitado 2020-08-17 21:27 - 2020-08-17 21:27 - 000000000 ____D C:\Users\Invitado\Documentos 2020-08-17 21:25 - 2020-08-17 21:29 - 000000000 ____D C:\Users\Public\Documents\Steam 2020-08-17 21:25 - 2020-08-17 21:29 - 000000000 ____D C:\ProgramData\Documents\Steam 2020-08-14 09:15 - 2020-08-14 09:15 - 000000000 ____D C:\Users\Personal\AppData\Roaming\com.innersloth.henry.HenryFlash 2020-08-14 09:12 - 2020-08-14 09:15 - 000000000 ____D C:\Program Files (x86)\The Henry Stickmin Collection 2020-08-14 09:12 - 2020-08-14 09:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Henry Stickmin Collection 2020-08-13 22:57 - 2020-08-19 17:37 - 000023978 _____ C:\Users\Personal\AppData\Roaming\Notepad2.ini 2020-08-13 22:57 - 2020-08-13 22:57 - 000000000 ____D C:\Program Files\Notepad2 2020-08-13 15:04 - 2020-08-13 15:06 - 000000000 ____D C:\Users\Personal\AppData\Roaming\Notepad++ 2020-08-13 15:04 - 2020-08-13 15:04 - 000000836 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk 2020-08-13 15:04 - 2020-08-13 15:04 - 000000000 ____D C:\Program Files\Notepad++ 2020-08-13 11:24 - 2020-08-13 11:24 - 000000000 ____D C:\Users\Personal\AppData\LocalLow\Sparks Games 2020-08-10 16:52 - 2020-08-10 16:52 - 000002391 _____ C:\Users\Personal\Desktop\Google Chrome.lnk 2020-08-09 18:13 - 2020-08-09 18:13 - 000000000 ____D C:\Users\Personal\AppData\LocalLow\Pragmatix 2020-08-08 16:21 - 2020-08-08 16:21 - 000000000 ____D C:\Users\Personal\AppData\LocalLow\Flamebait Games 2020-08-08 09:30 - 2020-08-08 09:30 - 000000989 _____ C:\Users\Personal\Desktop\Cuphead.lnk 2020-08-07 16:26 - 2020-08-07 16:26 - 000000000 ____D C:\Users\Personal\AppData\Local\FLiNGTrainer 2020-08-07 07:09 - 2020-08-07 07:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cuphead 2020-08-07 07:00 - 2020-08-07 07:00 - 000000000 ____D C:\Games 2020-08-06 15:29 - 2020-08-06 15:29 - 000000000 ____D C:\Users\Personal\AppData\LocalLow\Veewo 2020-08-06 14:20 - 2020-08-06 15:24 - 000000000 ____D C:\Users\Personal\AppData\Local\Forager 2020-08-04 16:42 - 2020-08-20 04:03 - 000000000 ____D C:\Users\Personal\AppData\Roaming\vlc 2020-08-04 16:41 - 2020-08-04 16:41 - 000000871 _____ C:\Users\Public\Desktop\VLC media player.lnk 2020-08-04 16:41 - 2020-08-04 16:41 - 000000871 _____ C:\ProgramData\Desktop\VLC media player.lnk 2020-08-04 16:41 - 2020-08-04 16:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2020-08-04 16:41 - 2020-08-04 16:41 - 000000000 ____D C:\Program Files\VideoLAN 2020-08-04 09:44 - 2020-08-04 09:44 - 000000000 ____D C:\Users\Personal\AppData\Roaming\Cuphead 2020-08-04 01:12 - 2020-08-04 01:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi 2020-08-04 01:12 - 2020-08-04 01:12 - 000000000 ____D C:\Program Files (x86)\LogMeIn Hamachi 2020-08-04 00:08 - 2020-08-04 00:08 - 000000000 ____D C:\Users\Personal\AppData\Roaming\CreamAPI 2020-07-31 22:07 - 2020-07-31 22:07 - 000001843 _____ C:\Users\Personal\Desktop\Este no es un juego.lnk 2020-07-31 18:08 - 2020-08-17 22:20 - 000000000 ____D C:\Users\Personal\AppData\Local\The_Swords_of_Ditto 2020-07-31 18:06 - 2020-08-02 00:03 - 000000000 ____D C:\Program Files (x86)\The Swords of Ditto Mormos Curse 2020-07-31 00:45 - 2020-07-31 00:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap 2020-07-31 00:45 - 2020-07-31 00:45 - 000000000 ____D C:\Program Files (x86)\WinPcap 2020-07-31 00:39 - 2020-07-31 00:40 - 000000000 ____D C:\Users\Personal\Downloads\Selfishnet 2020-07-28 14:31 - 2020-07-28 14:31 - 000001111 _____ C:\Users\Public\Desktop\Super Smash Flash 2 Beta.lnk 2020-07-28 14:31 - 2020-07-28 14:31 - 000001111 _____ C:\ProgramData\Desktop\Super Smash Flash 2 Beta.lnk 2020-07-26 00:18 - 2020-07-30 03:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Motocross The Force 2020-07-25 17:26 - 2020-07-29 15:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com 2020-07-25 17:26 - 2020-07-25 17:26 - 000000000 ____D C:\ProgramData\GOG.com 2020-07-23 22:39 - 2020-07-23 22:39 - 000001456 _____ C:\Users\Personal\AppData\Local\Adobe Guardar para Web 13.0 Prefs 2020-07-22 14:42 - 2020-08-20 11:58 - 000000000 ____D C:\Users\Personal\Downloads\skin 2020-07-22 14:42 - 2020-08-20 11:58 - 000000000 ____D C:\Fraps 2020-07-22 13:40 - 2020-08-17 13:07 - 000000000 ____D C:\Users\Personal\Documents\Juegos EMU 2020-07-21 09:02 - 2020-07-30 03:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\psx emulation cheater 2020-07-21 09:02 - 2020-07-21 09:02 - 000000000 ____D C:\Users\Personal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\psx emulation cheater ==================== Un mes (modificado) ================== (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2020-08-20 12:05 - 2009-07-14 00:45 - 000028384 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2020-08-20 12:05 - 2009-07-14 00:45 - 000028384 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2020-08-20 11:58 - 2019-11-05 23:23 - 000000000 ____D C:\Users\Personal\Documents\CE (cheats) 2020-08-20 11:58 - 2019-05-26 22:56 - 000000000 ____D C:\8b5dd9f650321ec4b03a0188 2020-08-20 11:58 - 2018-06-20 21:28 - 000000000 ____D C:\Users\Personal\Documents\Ejecutables 2020-08-20 11:58 - 2017-12-30 10:46 - 000065536 _____ C:\Windows\system32\Ikeext.etl 2020-08-20 11:58 - 2017-12-09 16:12 - 000000000 ____D C:\Users\Personal\Documents\Geometry Dash 2020-08-20 11:58 - 2009-07-14 01:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2020-08-20 02:20 - 2017-08-24 21:37 - 000000000 ____D C:\5b2b3a0da543125f9f1a1f9f 2020-08-20 00:50 - 2009-07-13 23:20 - 000000000 ____D C:\Windows\inf 2020-08-20 00:45 - 2017-08-30 16:34 - 000000000 ____D C:\ProgramData\IObit 2020-08-20 00:02 - 2009-07-13 23:20 - 000000000 ____D C:\Windows\system 2020-08-20 00:00 - 2020-07-02 14:15 - 000000000 ____D C:\Program Files\PPSSPP 2020-08-20 00:00 - 2020-07-02 07:14 - 000000000 ____D C:\Windows\system32\Tasks\{2E7F16C8-DD05-B693-3DE3-19811D066569} 2020-08-20 00:00 - 2020-07-02 07:14 - 000000000 ____D C:\Users\Personal\AppData\Local\Parerobafo 2020-08-20 00:00 - 2020-06-26 17:30 - 000000000 ____D C:\Program Files\Cheat Engine 7.1 2020-08-20 00:00 - 2019-11-05 23:23 - 000000000 ____D C:\Program Files\Cheat Engine 7.0 2020-08-20 00:00 - 2018-06-15 20:13 - 000000000 ____D C:\Program Files (x86)\Cheat Engine 6.8 2020-08-19 23:37 - 2017-08-29 19:01 - 000007676 _____ C:\Users\Personal\AppData\Local\Resmon.ResmonCfg 2020-08-19 23:23 - 2020-05-01 14:13 - 000000000 ____D C:\Users\Personal\AppData\Roaming\discord 2020-08-19 22:28 - 2020-07-02 07:30 - 000000000 ____D C:\Users\Personal\Documents\PPSSPP 2020-08-19 22:24 - 2019-11-11 17:34 - 000000000 ____D C:\Users\Personal\Documents\Archivos Word 2020-08-19 18:28 - 2018-07-06 18:15 - 083034112 _____ C:\Windows\system32\config\software.iobit 2020-08-19 18:28 - 2018-07-06 18:15 - 001294336 _____ C:\Windows\system32\config\default.iobit 2020-08-19 18:28 - 2018-07-06 18:15 - 000102400 _____ C:\Windows\system32\config\sam.iobit 2020-08-19 18:28 - 2018-07-06 18:15 - 000032768 _____ C:\Windows\system32\config\security.iobit 2020-08-19 18:14 - 2017-01-23 16:55 - 000000000 ____D C:\Users\Personal\Documents\MEGAsync Downloads 2020-08-19 17:58 - 2020-07-16 17:46 - 000002550 _____ C:\Users\Personal\Desktop\Action!.lnk 2020-08-19 17:35 - 2020-05-13 17:50 - 000000000 ____D C:\Program Files (x86)\IObit 2020-08-19 17:35 - 2017-08-30 16:33 - 000000000 ____D C:\Users\Personal\AppData\Roaming\IObit 2020-08-19 17:29 - 2020-07-01 16:09 - 000000000 ____D C:\Users\Personal\Documents\PCSX2 2020-08-19 17:27 - 2020-06-25 12:42 - 000004068 _____ C:\Windows\system32\Tasks\Opera GX scheduled Autoupdate 1592677306 2020-08-19 17:24 - 2017-01-23 10:41 - 000000000 ____D C:\Users\Personal\AppData\Local\VirtualStore 2020-08-19 16:57 - 2017-09-03 15:45 - 000000000 ____D C:\Windows\Minidump 2020-08-19 02:39 - 2017-08-30 16:35 - 000000000 ____D C:\ProgramData\ProductData 2020-08-19 02:38 - 2018-07-10 01:53 - 049225728 _____ C:\Windows\system32\config\components.iobit 2020-08-19 02:35 - 2017-11-17 23:17 - 000000000 ____D C:\Program Files (x86)\Steam 2020-08-19 02:34 - 2018-06-23 21:00 - 000000000 ____D C:\Users\Personal\AppData\Roaming\Rizonesoft 2020-08-19 02:33 - 2017-10-22 00:05 - 000000000 ____D C:\Users\Personal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2020-08-19 02:28 - 2009-07-14 01:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2020-08-19 02:11 - 2017-02-21 17:10 - 000000000 ____D C:\Users\Personal\AppData\Local\CrashDumps 2020-08-18 13:57 - 2018-05-21 10:51 - 000000000 ____D C:\Users\Personal\Documents\Archivos WinRAR 2020-08-18 02:47 - 2009-07-13 23:20 - 000000000 ____D C:\Windows\system32\NDF 2020-08-17 21:22 - 2017-01-26 17:35 - 000000000 ____D C:\Users\Personal\AppData\Local\GeometryDash 2020-08-17 13:08 - 2018-09-30 15:36 - 000000000 ____D C:\Users\Personal\Documents\1Juegos 2020-08-17 00:14 - 2020-07-03 00:14 - 000000065 _____ C:\Users\Personal\AppData\Roaming\WB.CFG 2020-08-16 00:40 - 2017-01-23 10:41 - 000000000 ____D C:\Users\Personal 2020-08-13 12:47 - 2020-05-22 23:07 - 000000000 ____D C:\Users\Personal\Downloads\MEmu Download 2020-08-13 12:46 - 2019-11-07 10:13 - 000000000 ____D C:\Users\Personal\.MemuHyperv 2020-08-12 12:51 - 2017-01-26 20:22 - 000000430 __RSH C:\ProgramData\ntuser.pol 2020-08-12 10:25 - 2019-12-28 21:05 - 000000000 ____D C:\Program Files (x86)\HP 2020-08-12 10:24 - 2020-03-30 12:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP 2020-08-12 09:33 - 2017-10-15 19:35 - 000000000 ____D C:\Users\Personal\AppData\LocalLow\Mozilla 2020-08-11 17:10 - 2020-02-22 13:12 - 000000000 ____D C:\Users\Personal\Documents\Desastre Luis 2020-08-11 16:59 - 2020-07-01 07:55 - 000000000 ____D C:\Users\Personal\Documents\PSX 2020-08-09 20:16 - 2019-11-15 21:14 - 000000000 ____D C:\Users\Personal\AppData\Local\LogMeIn Hamachi 2020-08-09 18:09 - 2019-01-23 20:08 - 000000000 ____D C:\Users\Personal\AppData\Local\FalloutShelter 2020-08-09 00:35 - 2020-06-08 15:28 - 000000000 ____D C:\Users\Personal\Documents\Camtasia Studio 2020-08-09 00:33 - 2020-01-21 22:40 - 000000000 ____D C:\Users\Personal\AppData\Roaming\audacity 2020-08-09 00:03 - 2020-02-13 20:47 - 000000000 ____D C:\Users\Personal\AppData\Local\Mirillis 2020-08-06 22:07 - 2020-04-29 23:27 - 000000000 ____D C:\Users\Personal\AppData\Local\Zerebos 2020-08-06 21:58 - 2019-01-03 20:25 - 000000000 ____D C:\Users\Personal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2020-08-06 21:57 - 2020-05-01 14:12 - 000000000 ____D C:\Users\Personal\AppData\Local\Discord 2020-08-04 15:42 - 2020-03-22 23:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roblox 2020-08-03 19:35 - 2017-01-23 16:55 - 000000000 ___RD C:\Users\Personal\Documents\Respaldos MAMÁ 2020-08-03 09:31 - 2009-07-14 01:08 - 000032522 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2020-07-31 12:04 - 2019-11-06 00:32 - 000000000 ____D C:\Program Files\QuickCPU 2020-07-30 03:27 - 2020-06-26 15:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\POD-Bot 2.5 2020-07-30 03:27 - 2017-06-15 15:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Super Hexagon By Emitutosmax77 2020-07-28 20:26 - 2009-07-14 05:31 - 000715718 _____ C:\Windows\system32\perfh00A.dat 2020-07-28 20:26 - 2009-07-14 05:31 - 000146142 _____ C:\Windows\system32\perfc00A.dat 2020-07-28 20:26 - 2009-07-14 01:13 - 001593672 _____ C:\Windows\system32\PerfStringBackup.INI 2020-07-28 15:00 - 2018-06-01 16:02 - 000000000 ____D C:\Users\Personal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dustin Blackman 2020-07-28 14:40 - 2020-06-20 03:19 - 000000000 ____D C:\Program Files (x86)\NCSOFT 2020-07-28 14:36 - 2020-06-29 22:39 - 000000000 ____D C:\Users\Personal\AppData\LocalLow\Team Cherry 2020-07-28 14:36 - 2020-02-20 12:38 - 000000000 ____D C:\Users\Personal\AppData\Roaming\Wondershare 2020-07-28 14:33 - 2020-02-20 12:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare 2020-07-28 14:31 - 2020-05-15 22:10 - 000000000 ____D C:\Program Files (x86)\Super Smash Flash 2 Beta 2020-07-28 14:31 - 2017-06-16 09:02 - 000000000 ___HD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Super Smash Flash 2 Beta 2020-07-23 22:33 - 2017-10-17 17:00 - 000000000 ____D C:\Users\Personal\AppData\Roaming\Adobe ==================== Archivos en la raíz de algunos directorios ======== 2018-11-05 20:59 - 2018-11-05 20:59 - 000000260 _____ () C:\ProgramData\fontcacheev1.dat 2018-10-17 22:10 - 2018-08-18 22:10 - 000000032 ____R () C:\ProgramData\hash.dat 2019-12-19 14:43 - 2020-05-04 22:11 - 000000117 _____ () C:\Users\Personal\AppData\Roaming\D2Info0 2019-12-19 14:43 - 2020-05-04 22:12 - 000000008 _____ () C:\Users\Personal\AppData\Roaming\DofusAppId0_1 2019-12-19 14:56 - 2020-01-08 23:20 - 000000008 _____ () C:\Users\Personal\AppData\Roaming\DofusAppId0_2 2019-12-19 19:44 - 2020-01-10 21:38 - 000000008 _____ () C:\Users\Personal\AppData\Roaming\DofusAppId0_3 2019-12-19 20:01 - 2019-12-19 20:01 - 000000008 _____ () C:\Users\Personal\AppData\Roaming\DofusAppId0_4 2019-12-19 20:01 - 2019-12-19 20:03 - 000000008 _____ () C:\Users\Personal\AppData\Roaming\DofusAppId0_5 2020-08-13 22:57 - 2020-08-19 17:37 - 000023978 _____ () C:\Users\Personal\AppData\Roaming\Notepad2.ini 2019-01-10 20:05 - 2020-06-16 15:38 - 000000132 _____ () C:\Users\Personal\AppData\Roaming\Prefs. de formato PNG de Adobe CS6 2020-07-03 00:14 - 2020-08-17 00:14 - 000000065 _____ () C:\Users\Personal\AppData\Roaming\WB.CFG 2018-11-23 20:12 - 2018-11-23 20:12 - 000000037 ___SH () C:\Users\Personal\AppData\Local\20986331705021ca58edc424.96250074 2020-07-23 22:39 - 2020-07-23 22:39 - 000001456 _____ () C:\Users\Personal\AppData\Local\Adobe Guardar para Web 13.0 Prefs 2017-02-15 16:22 - 2017-04-29 12:24 - 000006656 _____ () C:\Users\Personal\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2020-08-19 17:23 - 2020-08-19 23:39 - 000003390 _____ () C:\Users\Personal\AppData\Local\icsys.icn 2019-11-17 15:23 - 2019-11-17 15:23 - 000000000 _____ () C:\Users\Personal\AppData\Local\oobelibMkey.log 2017-08-29 19:01 - 2020-08-19 23:37 - 000007676 _____ () C:\Users\Personal\AppData\Local\Resmon.ResmonCfg 2017-03-05 20:16 - 2017-03-11 15:14 - 000000552 _____ () C:\Users\Personal\AppData\Local\TroubleshooterConfig.json 2017-02-20 13:45 - 2017-02-20 13:45 - 000000000 _____ () C:\Users\Personal\AppData\Local\{01CBA828-D22C-4471-AAEC-96EFB7A150AC} ==================== FCheck ================================ (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) FCheck: C:\Windows\SysWOW64\lastpass_1337.exe [2018-08-12] <==== ATENCIÓN (cero bytes Archivo/Carpeta) ==================== SigCheck ============================ (No existe una corrección automática para los archivos que no pasan la verificación.) LastRegBack: 2020-08-15 09:12 ==================== Final de FRST.txt ========================