Cometí el error de mi vida... importé un custom reg y mi compu no va más

Tuve la brillante idea de descargar un registro de un sitio que prometía hacer que mi pc iba a ir más rápido y al final ese reg me arruinó todo

Lo descagué desde aquí

https://www.askvg.com/collection-of-registry-tweaks-for-windows-7/

Claro que hice una copia de mi regitro original, pero no me deja cargarlo. No puedo volver atrás ni en modo prueba de fallos.

En modo prueba de fallos me dice que no tengo acceso al registro y en modo normal me dice lo siguiente

Cannot import “aquí la ruta del registro” not all data was successfully written to the registry. some keys are open by the system or other processes

Cuando descargué el registro personalizado, también me descargó otro registro que es para volver a la normalidad, pero tampoco me deja importarlo.

No se que hacer… fue algo sumamente tonto desde mi parte.

Ahora tengo dos preguntas.

Podré restaurar mi copia original? Estoy buscando e intentando pero aun no pude hacerlo. Y otra cosa. El registro ese me abra modificado algo con intenciones malintencionadas?

Estoy parado desde hace días con mi pc y no puedo trabajar, ni imaginan el dolor de cabeza permanente que tengo.

Hola @SebaWeb

Menudo lio.

Algunas consultas:

• Con que herramienta lo hiciste?
• Sistema Operativo?
• El Sistema te arranca?
• Que síntomas tienes?

Salu2

Hola, gracias por responder.

Tengo Win 7 Home Premiun. Hice la copia de seguridad con regedit. lo abri y exporté un archivo. El sistema arranca. Al comienzo funcionaba muy lento, ahora funciona de manera normal. No tiene sonido y está configurado para tener el mejor rendimiento. El aero theme no está activado, no lo puedo poner y necesito ese theme para usar un programa de edición de música que uso a diario.

Estoy viendo googleando a ver si puedo encontrar una manera de cargar la copia de seguridad de mi registro… pero aun no doy con nada.

Gracias por tu ayuda.

Hola @SebaWeb

Con SP1?

Has intentado Restaurar Sistema a una fecha anterior.

Ejecuta la siguiente herramienta, hace una exploración, no elimina nada de tu equipo.

1.- Desactiva temporalmente tu antivirus y cualquier programa de seguridad.

2.- Descarga Farbar Recovery Scan Tool. en el escritorio, seleccionando la versión adecuada para la arquitectura (32 o 64bits) de su equipo. [size=1] >> Como saber si mi Windows es de 32 o 64 bits.?[/size]

• Ejecuta FRST.exe.
• En el mensaje de la ventana del Disclaimer, pulsamos Yes
• En la ventana principal pulsamos en el botón Scan y esperamos a que concluya el proceso.
• Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.

Guía: Como Ejecutar FRST

3.- En tu próxima respuesta, pega los reportes generados.

Guía : ¿Como Pegar reportes en el Foro?

Esperamos esos reporte.

Salu2

Si, tiene SP1, intenté restaurar sistema pero había un solo punto de restauración. Era más o menos a la hora que importé el registro personalizado. Hice la prueba por las dudas pero todo está igual.

En veinte minutos haré los pasos que me pides. Espero de alguna forma poder levantar la copia de seguridad que tengo de mi reg.

En un rato te doy más novedades y gracias de nuevo por tu ayuda.

Hola @SebaWeb

Perfecto…por acá esperamos.

Salu2

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-09-2019
Ran by Seba (administrator) on SEBA-PC (Hewlett-Packard HP Pavilion dv7 Notebook PC) (16-09-2019 18:10:11)
Running from C:\Users\Seba\Desktop
Loaded Profiles: Seba (Available Profiles: Seba)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems Incorporated -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Avid Technology, Inc.) [File not signed] C:\Program Files\Avid\Pro Tools\MMERefresh.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.RealTime.Client.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.RealTimeOptimizer.exe
(DeviceVM Inc. -> DeviceVM, Inc.) C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\DigitalPersona\Bin\DpHostW.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Windows\System32\hpservice.exe
(Hewlett-Packard Company) [File not signed] C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.EXE
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe
(PACE Anti-Piracy, Inc. -> PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.5.21.0\CCleanerBrowserCrashHandler.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.5.21.0\CCleanerBrowserCrashHandler64.exe
(Sonic Solutions -> CinemaNow, Inc.) C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemaNowSvc.exe
(Validity Sensors, Inc -> Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [227648 2019-08-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira System Speedup User Starter] => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [330008 2019-08-15] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-525092146-1667884894-650739964-1001\...\Run: [] => [X]
HKU\S-1-5-21-525092146-1667884894-650739964-1001\...\Run: [GoogleChromeAutoLaunch_A3AE2B88709917E29C176A59EC07D358] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1678832 2019-08-23] (Google LLC -> Google LLC)
HKU\S-1-5-21-525092146-1667884894-650739964-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [23153344 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-525092146-1667884894-650739964-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-525092146-1667884894-650739964-1001\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKU\S-1-5-21-525092146-1667884894-650739964-1001\...\Policies\Explorer: [NoResolveSearch] 1
HKU\S-1-5-21-525092146-1667884894-650739964-1001\...\Policies\Explorer: [NoInternetOpenWith] 1
HKU\S-1-5-21-525092146-1667884894-650739964-1001\...\Winlogon: [Shell] C:\Windows\explorer.exe [3229696 2016-08-29] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2018-12-03] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [midi6] => C:\Windows\System32\KORGUM64.DRV [309848 2008-03-08] (Korg Inc. -> KORG Inc.)
HKLM\...\Drivers32: [midi7] => C:\Windows\System32\KORGUM64.DRV [309848 2008-03-08] (Korg Inc. -> KORG Inc.)
HKLM\...\Drivers32: [midi5] => C:\Windows\System32\KORGUM64.DRV [309848 2008-03-08] (Korg Inc. -> KORG Inc.)
HKLM\...\Drivers32: [msacm.dvacm] => c:\Program Files (x86)\Common Files\Ulead Systems\VIO\DVACM.acm [20480 2010-01-14] (Corel TW Corp.) [File not signed]
HKLM\...\Drivers32: [midi] => C:\Windows\SysWOW64\KORGUMDD.DRV [299608 2008-03-08] (Korg Inc. -> KORG Inc.)
HKLM\...\Drivers32-x32: [midi6] => KORGUM64.DRV
HKLM\...\Drivers32-x32: [midi7] => KORGUM64.DRV
HKLM\...\Drivers32: [VIDC.MPG4] => C:\Windows\SysWOW64\mpg4c32.dll [427520 2000-06-02] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [VIDC.MP42] => C:\Windows\SysWOW64\mpg4c32.dll [427520 2000-06-02] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [msacm.msaudio1] => C:\Windows\SysWOW64\msaud32.acm [305152 2000-06-02] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [msacm.sl_anet] => C:\Windows\SysWOW64\sl_anet.acm [102400 2000-06-02] (Sipro Lab Telecom Inc.) [File not signed]
HKLM\...\Drivers32-x32: [midi5] => KORGUM64.DRV
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\Installer\chrmstp.exe [2019-08-27] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\76.0.130.103\Installer\chrmstp.exe [2019-09-16] (Piriform Software Ltd -> Piriform Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{10880D85-AAD9-4558-ABDC-2AB1552D831F}] -> C:\Program Files (x86)\Common Files\LightScribe\LSRunOnce.exe [2010-01-22] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] -> 
HKLM\Software\...\Authentication\Credential Providers: [{2A16DF2F-490B-4F2B-8C68-21EF46FCCC37}] -> C:\Windows\system32\dpcrprov.dll [2009-12-30] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{3ADC7042-51AF-4D0F-BD1D-4D6965A77323}] -> C:\Windows\system32\dpcrprov.dll [2009-12-30] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{4C0F0D42-DA2D-45da-85BC-B7A1AB53BF65}] -> C:\Windows\system32\dpcrprov.dll [2009-12-30] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{57E84B57-5533-4624-AB49-E29C8C5489D6}] -> C:\Windows\system32\dpcrprov.dll [2009-12-30] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{70099717-17C8-4BD0-B3D4-FAF721AB1A62}] -> C:\Windows\system32\dpcrprov.dll [2009-12-30] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Provider Filters: [{FD2AB138-F9A8-4ab6-9095-EEE7AF8B6C28}] -> C:\Windows\system32\dpcrprov.dll [2009-12-30] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
Lsa: [Notification Packages] DPPassFilter scecli

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01EBCAB4-3277-4BE3-98E9-3099771CECB3} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [26060672 2019-08-15] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG )
Task: {0A44B446-B861-4B86-B52A-727BB72F57E9} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [1869720 2019-08-20] (Piriform Software Ltd -> Piriform Software)
Task: {0A94226D-EAA6-4857-BC09-6D85DB6B0B40} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [137592 2019-08-07] (HP Inc. -> HP Inc.)
Task: {0F2145BA-2394-4BE7-BBA7-25FDEA94C5FC} - System32\Tasks\AdobeAAMUpdater-1.0-Seba-PC-Seba => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {1DC6CECC-FE88-4737-93C2-46BD323B35A8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506680 2019-06-14] (HP Inc. -> HP Inc.)
Task: {1EECD814-D90A-42AC-8AB3-89C797AACBFD} - System32\Tasks\AdobeGCInvoker-1.0-Seba-PC-Seba => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {218C4128-490A-4707-83E5-DD1B9B1AF35F} - \{A4331972-AB4E-4969-8FA4-7187A135045C} -> No File <==== ATTENTION
Task: {347AC6DD-95F4-49B2-B4D2-DDA743B22D79} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [655736 2019-08-07] (HP Inc. -> HP Inc.)
Task: {3F455033-3D88-4DA4-9218-63AF917EA11F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506680 2019-06-14] (HP Inc. -> HP Inc.)
Task: {493F16DA-B4A2-492E-A421-85D07D60A455} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-12-03] (Google Inc -> Google Inc.)
Task: {53AB4301-884E-45F7-B9BF-6B3930F74949} - System32\Tasks\DVDAgent => c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
Task: {634D7895-25F9-4E49-8562-531FD68034EE} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2019-05-10] (Corel Corporation -> Corel Corporation)
Task: {7C7AD6F2-1002-4593-A323-0B2D1965D729} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [1869720 2019-08-20] (Piriform Software Ltd -> Piriform Software)
Task: {7D2150D0-DEB4-4503-8740-18CD6341BA2B} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [209128 2019-08-15] (Piriform Software Ltd -> Piriform Software)
Task: {86C860F5-363A-45DF-90A1-6508CA191871} - System32\Tasks\CLMLSvc => c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Music\Kernel\CLML\CLMLSvc.exe
Task: {8CA43350-A1D4-4B7B-B307-14FFC2F8EB8F} - System32\Tasks\Registration => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [38456 2010-01-27] (Hewlett-Packard Company -> )
Task: {9A116367-DCC1-4E8A-84FC-4695CAFDF0A9} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [209128 2019-08-15] (Piriform Software Ltd -> Piriform Software)
Task: {9A7333ED-9785-4640-998E-5EDAF89E3760} - System32\Tasks\{6F1493EE-90A0-44E9-A67C-562A965AAF46} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\QuickTime\QTSystem\QuickTime.cpl" -c QuickTime
Task: {A679B8CD-0A0C-4844-9988-D39B5D33A025} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2757472 2019-09-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {A76B681D-42E8-47EA-91E2-B47A557E8B8C} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2019-05-10] (Corel Corporation -> Corel Corporation)
Task: {A9A0FEF8-ACCF-448B-BB0C-D677B521E198} - System32\Tasks\RecoveryCDWin7 => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [38456 2010-01-27] (Hewlett-Packard Company -> )
Task: {B24CEA02-2230-4349-BCB6-AB9E5A93FF03} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [238968 2019-06-14] (HP Inc. -> HP Inc.)
Task: {BE2EE114-9EA2-48A6-A05E-BC2A9856191E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16835256 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {BFC2A2BF-CAFF-41C6-A59F-1A7BB90EB5B6} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984 2011-06-01] (Apple Inc. -> Apple Inc.)
Task: {C346AEEB-3F4D-4B9C-A8B5-971741BFB4EB} - System32\Tasks\Hewlett-Packard\HP Assistant\First Boot => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe [58744 2019-06-14] (HP Inc. -> HP Inc.)
Task: {D85C79E4-0817-4C7C-868B-B760A8415AD3} - System32\Tasks\NetworkWizardVCW => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [38456 2010-01-27] (Hewlett-Packard Company -> )
Task: {DA38192F-AFA8-4302-92F3-AAC5E87F8976} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-12-03] (Google Inc -> Google Inc.)
Task: {FC797749-2016-46A0-B105-D686382ECDDF} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {FE5964EB-6D8C-4DFE-9E2C-ECD1A083F10A} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2019-05-10] (Corel Corporation -> Corel Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 200.49.120.2 200.49.120.3
Tcpip\..\Interfaces\{21822E5D-45A2-4A4A-AD2F-F94599823234}: [DhcpNameServer] 200.49.120.2 200.49.120.3

Internet Explorer:
==================
HKU\S-1-5-21-525092146-1667884894-650739964-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPNOT/1
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: HP SimplePass Identity Protection Extension -> {395610AE-C624-4f58-B89E-23733EA00F9A} -> C:\Program Files\DigitalPersona\Bin\dpotspluginie8.dll [2009-12-30] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: HP SimplePass Identity Protection Extension -> {395610AE-C624-4f58-B89E-23733EA00F9A} -> C:\Program Files (x86)\DigitalPersona\Bin\dpotspluginie8.dll [2009-12-30] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
BHO-x32: Search Helper -> {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} -> C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-11-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: MSN Toolbar BHO -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\MSN Toolbar\Platform\4.0.0369.0\npwinext.dll [2009-11-30] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2010-02-28] (Sun Microsystems, Inc. -> Sun Microsystems, Inc.)
Handler: http - No CLSID Value
Handler: https - No CLSID Value
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Seba\AppData\Roaming\Mozilla\Firefox\Profiles\Epn1xE3F.default [2019-09-09]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\MSN Toolbar\Platform\4.0.0369.0\Firefox => not found
FF HKLM-x32\...\Firefox\Extensions: [{27182e60-b5f3-411c-b545-b44205977502}] - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension => not found
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\DigitalPersona\Bin\FirefoxExt => not found
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2018-09-13] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\3.0.40818.0\npctrl.dll [2009-08-18] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpWinExt,version=4.0 -> C:\Program Files (x86)\MSN Toolbar\Platform\4.0.0369.0\npwinext.dll [2009-11-30] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2009-07-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-14] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-14] (Google Inc -> Google LLC)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2018-09-13] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin HKU\S-1-5-21-525092146-1667884894-650739964-1001: @hulu.com/Hulu Desktop -> C:\Windows\..\Users\Default\AppData\Local\HuluDesktop\instances\0.9.11.1\npHDPlg.dll [2009-12-18] (Hulu -> Hulu LLC)

Chrome: 
=======
CHR DefaultSearchURL: Default -> hxxps://search.avira.com/#web/result?source=omnibar&q={searchTerms}
CHR DefaultSearchKeyword: Default -> Avira
CHR DefaultSuggestURL: Default -> hxxps://search.avira.com/suggestions?q={searchTerms}&li=ff&hl=en
CHR Profile: C:\Users\Seba\AppData\Local\Google\Chrome\User Data\Default [2019-09-16]
CHR Extension: (Slides) - C:\Users\Seba\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-12-03]
CHR Extension: (Docs) - C:\Users\Seba\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-12-03]
CHR Extension: (Google Drive) - C:\Users\Seba\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-12-03]
CHR Extension: (YouTube) - C:\Users\Seba\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-12-03]
CHR Extension: (uBlock Origin) - C:\Users\Seba\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2019-09-09]
CHR Extension: (Sheets) - C:\Users\Seba\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-12-03]
CHR Extension: (Chrome Remote Desktop) - C:\Users\Seba\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2019-08-06]
CHR Extension: (Google Docs Offline) - C:\Users\Seba\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-12-03]
CHR Extension: (Avira SafeSearch Plus) - C:\Users\Seba\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipmkfpcnmccejididiaagpgchgjfajgp [2019-08-15]
CHR Extension: (Google Hangouts) - C:\Users\Seba\AppData\Local\Google\Chrome\User Data\Default\Extensions\knipolnnllmklapflnccelgolnpehhpl [2019-05-23]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Seba\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-12-03]
CHR Extension: (Gmail) - C:\Users\Seba\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-29]
CHR Extension: (Chrome Media Router) - C:\Users\Seba\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-08-09]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [818136 2018-09-13] (Adobe Systems Incorporated -> Adobe Inc.)
R2 AESTFilters; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe [89600 2009-03-03] (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3117648 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2888272 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [203264 2010-09-08] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1207624 2019-09-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [484144 2019-09-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [484144 2019-09-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [501600 2019-09-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [582016 2019-08-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2982312 2019-08-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [209128 2019-08-15] (Piriform Software Ltd -> Piriform Software)
S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\76.0.130.103\elevation_service.exe [976568 2019-08-20] (Piriform Software Ltd -> Piriform Software)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [209128 2019-08-15] (Piriform Software Ltd -> Piriform Software)
R2 CinemaNow Service; C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemanowSvc.exe [127984 2010-01-15] (Sonic Solutions -> CinemaNow, Inc.)
R2 DigiRefresh; C:\Program Files\Avid\Pro Tools\MMERefresh.exe [117760 2016-03-25] (Avid Technology, Inc.) [File not signed]
S3 digiSPTIService64; C:\Program Files\Avid\Pro Tools\digisptiservice64.exe [197632 2016-03-25] (Avid Technology, Inc.) [File not signed]
R2 DvmMDES; C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe [338168 2010-02-08] (DeviceVM Inc. -> DeviceVM, Inc.)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149480 2018-06-07] (HP Inc. -> HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [358264 2019-08-07] (HP Inc. -> HP Inc.)
R2 HPWMISVC; C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [20480 2010-01-18] () [File not signed]
R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2010-01-22] (Hewlett-Packard Company) [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6347056 2018-09-19] (Malwarebytes Corporation -> Malwarebytes)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
S2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\STacSV64.exe [244736 2010-01-14] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 Accelerometer; C:\Windows\System32\DRIVERS\Accelerometer.sys [41272 2009-07-08] (Hewlett-Packard Company -> Hewlett-Packard)
R3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [7767552 2010-09-08] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.)
R3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [279040 2010-09-08] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [68152 2019-06-17] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [218552 2019-09-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [176816 2019-09-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [36072 2019-02-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [78600 2018-11-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [35376 2019-02-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 DVMIO; C:\Windows\System32\DRIVERS\dvmio.sys [20056 2010-01-30] (DeviceVM Inc. -> DeviceVM, Inc.)
S3 FocusriteUSB; C:\Windows\System32\DRIVERS\FocusriteUSB.sys [112624 2019-06-20] (WDKTestCert builds,131886954661028733 -> Focusrite Audio Engineering Ltd.)
R3 FocusriteUSBSwRoot; C:\Windows\System32\DRIVERS\FocusriteUSBSwRoot.sys [92048 2019-06-20] (WDKTestCert builds,131886954661028733 -> Focusrite Audio Engineering Ltd.)
S3 FocusriteUSB_AUDIO; C:\Windows\System32\drivers\FocusriteUSBAudio.sys [53944 2019-06-20] (WDKTestCert builds,131886954661028733 -> Focusrite Audio Engineering Ltd.)
S3 FocusriteUSB_MIDI; C:\Windows\System32\drivers\FocusriteUSBMidi.sys [40536 2019-06-20] (WDKTestCert builds,131886954661028733 -> Focusrite Audio Engineering Ltd.)
R0 hpdskflt; C:\Windows\System32\DRIVERS\hpdskflt.sys [30008 2009-07-08] (Hewlett-Packard Company -> Hewlett-Packard)
S3 KORGUMDS; C:\Windows\System32\Drivers\KORGUM64.SYS [31320 2008-03-08] (Korg Inc. -> KORG Inc.)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [261032 2019-09-16] (Malwarebytes Corporation -> Malwarebytes)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation -> Corel Corporation)
S3 RTL8167; C:\Windows\System32\DRIVERS\Rt64win7.sys [295424 2009-11-27] (Microsoft Windows Hardware Compatibility Publisher -> Realtek )
S3 SrvHsfHDA; C:\Windows\System32\DRIVERS\VSTAZL6.SYS [292864 2009-06-10] (Microsoft Windows -> Conexant Systems, Inc.)
S3 SrvHsfV92; C:\Windows\System32\DRIVERS\VSTDPV6.SYS [1485312 2009-06-10] (Microsoft Windows -> Conexant Systems, Inc.)
S3 SrvHsfWinac; C:\Windows\System32\DRIVERS\VSTCNXT6.SYS [740864 2009-06-10] (Microsoft Windows -> Conexant Systems, Inc.)
R3 STHDA; C:\Windows\System32\DRIVERS\stwrt64.sys [505856 2010-01-14] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
R2 {55662437-DA8C-40c0-AADA-2C816A897A49}; c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl [146928 2010-01-27] (CyberLink -> CyberLink Corp.)
S3 AtiDCM; \??\C:\Users\Seba\AppData\Local\Temp\atdcm64a.sys [X] <==== ATTENTION

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2040-12-03 13:41 - 2019-09-15 15:16 - 000000000 ____D C:\Users\Seba\Documents\Cubase LE AI Elements Projects
2040-12-03 13:40 - 2019-08-24 21:46 - 000000000 ____D C:\Users\Seba\Documents\VST3 Presets
2040-12-03 13:40 - 2019-01-05 12:34 - 000000000 ____D C:\Users\Seba\Documents\Steinberg
2040-12-03 13:37 - 2040-12-03 13:37 - 000000000 ____D C:\Program Files\Common Files\Steinberg
2040-12-03 13:37 - 2019-01-27 23:54 - 000000000 ____D C:\ProgramData\Steinberg
2040-12-03 13:35 - 2040-09-15 13:09 - 000002892 _____ () C:\Windows\SysWOW64\audcon.sys
2040-12-03 13:35 - 2040-09-15 13:09 - 000000000 ____D C:\ProgramData\Syncrosoft
2040-12-03 13:35 - 2040-09-15 13:09 - 000000000 ____D C:\Program Files\Steinberg
2040-12-03 13:35 - 2019-02-13 17:10 - 000000000 ____D C:\Users\Seba\AppData\Roaming\Steinberg
2040-12-03 13:33 - 2040-09-15 13:09 - 000000000 ____D C:\ProgramData\eLicenser
2040-12-03 13:33 - 2040-09-15 13:08 - 000000000 ____D C:\Program Files (x86)\eLicenser
2040-09-15 13:55 - 2019-09-15 14:16 - 000000032 _____ C:\Users\Seba\AppData\Roaming\msregsvv.dll
2040-09-15 13:09 - 2040-09-15 13:09 - 000002273 _____ C:\Users\Seba\Desktop\Cubase LE AI Elements 7 64bit.lnk
2040-09-15 13:09 - 2040-09-15 13:09 - 000000000 ____D C:\Users\Seba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steinberg Cubase LE AI Elements 7 64bit
2040-09-15 13:08 - 2040-09-15 13:08 - 000000049 _____ C:\Windows\SysWOW64\SYNSOPOS.exe.cfg
2040-09-15 13:08 - 2040-09-15 13:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eLicenser
2040-09-15 13:08 - 2040-09-15 13:08 - 000000000 ____D C:\Program Files\eLicenser
2040-09-15 13:08 - 2040-09-15 13:08 - 000000000 ____D C:\Program Files (x86)\Syncrosoft
2040-09-15 13:08 - 2012-12-07 12:48 - 001714176 _____ (Steinberg Media Technologies GmbH) C:\Windows\system32\SYNSOACC.dll
2040-09-15 13:08 - 2012-12-07 12:48 - 001277952 _____ (Steinberg Media Technologies GmbH) C:\Windows\SysWOW64\SYNSOACC.dll
2040-09-15 13:08 - 2011-12-14 16:21 - 000086016 _____ C:\Windows\SysWOW64\SYNSOPOS.exe
2019-09-16 18:07 - 2019-09-16 18:07 - 000000000 ____D C:\Users\Seba\Desktop\FRST-OlderVersion
2019-09-16 16:25 - 2019-09-16 16:25 - 000000000 _____ C:\Users\Seba\psexec
2019-09-16 15:41 - 2019-09-16 15:41 - 003187562 _____ C:\Users\Seba\Desktop\PSTools.zip
2019-09-16 15:41 - 2019-09-16 15:41 - 000000000 ____D C:\Users\Seba\Desktop\PSTools
2019-09-15 15:47 - 2019-09-16 17:43 - 000261032 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-09-15 15:29 - 2019-09-15 15:33 - 000226218 _____ C:\Windows\ntbtlog.txt
2019-09-15 15:14 - 2019-09-15 15:14 - 000000000 ____D C:\Users\Seba\Desktop\Registry-Tweaks-Collection-to-Make-Windows-Faster
2019-09-15 15:13 - 2019-09-15 15:13 - 000002206 _____ C:\Users\Seba\Downloads\Registry-Tweaks-Collection-to-Make-Windows-Faster (2).zip
2019-09-15 15:13 - 2019-09-15 15:13 - 000002206 _____ C:\Users\Seba\Downloads\Registry-Tweaks-Collection-to-Make-Windows-Faster (1).zip
2019-09-15 15:13 - 2019-09-15 15:13 - 000002206 _____ C:\Users\Seba\Desktop\Registry-Tweaks-Collection-to-Make-Windows-Faster.zip
2019-09-15 14:55 - 2019-09-15 14:56 - 000000000 ____D C:\Program Files\Common Files\VST QUE NO USO
2019-09-15 14:29 - 2019-09-15 14:30 - 000000000 ____D C:\Program Files (x86)\VST QUE NO USO
2019-09-15 14:25 - 2019-09-15 14:28 - 000000000 ____D C:\Program Files\VST QUE NO USO
2019-09-15 13:01 - 2019-09-15 13:03 - 000000000 ____D C:\Users\Seba\Downloads\Pr3.3stu.0n 4
2019-09-15 13:01 - 2019-09-15 13:01 - 105325738 _____ C:\Users\Seba\Downloads\Pr3.3stu.0n 4.rar
2019-09-15 12:37 - 2019-09-15 12:37 - 000000000 ____D C:\Users\Seba\Desktop\cubase 7
2019-09-15 12:33 - 2019-09-15 12:33 - 000278648 _____ C:\Windows\Minidump\091519-39717-01.dmp
2019-09-13 14:30 - 2019-09-13 17:46 - 000000000 ____D C:\Users\Seba\Documents\Addictive Drums 2 Logs
2019-09-13 14:25 - 2019-09-13 14:25 - 000001058 _____ C:\Users\Seba\Desktop\Addictive Drums 2.lnk
2019-09-13 14:25 - 2019-09-13 14:25 - 000000000 ____D C:\Users\Seba\Documents\Addictive Drums 2
2019-09-13 14:16 - 2019-09-13 14:17 - 000000000 ____D C:\Users\Seba\Downloads\cuele7-p
2019-09-13 10:51 - 2019-09-13 11:43 - 000000000 ____D C:\Users\Seba\Downloads\Cubase Elements 7.0.5 Win x86.x64
2019-09-13 10:30 - 2019-09-13 10:30 - 000000000 ____D C:\Program Files (x86)\East West
2019-09-13 09:46 - 2019-09-13 09:46 - 015859534 _____ C:\Users\Seba\Downloads\2019.09.12 Alphabet vocals + Editions.m4a
2019-09-12 13:35 - 2019-09-12 13:35 - 000000086 _____ C:\Users\Seba\Desktop\East West Quantum Leap - Orquesta Sinfónica- Gold Pro XP (Kontakt) [p. 2] -- RuTracker.org.url
2019-09-12 13:31 - 2019-09-13 10:41 - 000000000 ____D C:\Users\Seba\Downloads\EWQLSO PRO XP Gold
2019-09-12 13:30 - 2019-09-12 13:30 - 000222655 _____ C:\Users\Seba\Downloads\East West Quantum Leap - Symphonic Orchestra Gold Pro XP (Kontakt) [rutracker-1559513].torrent
2019-09-11 16:58 - 2019-09-11 16:58 - 004598455 _____ C:\Users\Seba\Downloads\2019.09.09 Glockenspiel 2 (2).m4a
2019-09-11 16:41 - 2019-09-11 16:41 - 000000077 _____ C:\Users\Seba\Desktop\Spectrasonics - Omnisphere v2.3.2h, Trilian v1.4.3d, Moog Tribute v1.2c, Keyscape v1.0.2c + Keyscape Creative Patches v1.0e + 170 Bibliotecas -- RuTracker.org.url
2019-09-11 12:54 - 2019-09-11 12:54 - 004598455 _____ C:\Users\Seba\Downloads\2019.09.09 Glockenspiel 2 (1).m4a
2019-09-10 18:52 - 2019-08-15 22:02 - 000123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2019-09-10 18:52 - 2019-08-15 21:56 - 000142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2019-09-10 18:51 - 2019-08-27 02:07 - 025752064 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-09-10 18:51 - 2019-08-15 04:59 - 000878080 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-09-10 18:51 - 2019-08-15 04:59 - 000583680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-09-10 18:50 - 2019-08-28 23:56 - 003966904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2019-09-10 18:50 - 2019-08-28 23:55 - 004061112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2019-09-10 18:50 - 2019-08-28 23:55 - 000627424 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-09-10 18:50 - 2019-08-28 23:54 - 001319496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2019-09-10 18:50 - 2019-08-28 23:53 - 005553104 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-09-10 18:50 - 2019-08-28 23:53 - 000709856 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-09-10 18:50 - 2019-08-28 23:53 - 000264120 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-09-10 18:50 - 2019-08-28 23:53 - 000155360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2019-09-10 18:50 - 2019-08-28 23:53 - 000096992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2019-09-10 18:50 - 2019-08-28 23:52 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000836608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000261632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:52 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:51 - 001670784 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 001472512 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 001211392 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 001162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 001078784 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000733184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000408576 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:27 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2019-09-10 18:50 - 2019-08-28 23:27 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2019-09-10 18:50 - 2019-08-28 23:22 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2019-09-10 18:50 - 2019-08-28 23:22 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2019-09-10 18:50 - 2019-08-28 23:22 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2019-09-10 18:50 - 2019-08-28 23:22 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2019-09-10 18:50 - 2019-08-28 23:22 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2019-09-10 18:50 - 2019-08-28 23:22 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2019-09-10 18:50 - 2019-08-28 23:22 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2019-09-10 18:50 - 2019-08-28 23:22 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2019-09-10 18:50 - 2019-08-28 23:21 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2019-09-10 18:50 - 2019-08-28 23:21 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:21 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:21 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:21 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2019-09-10 18:50 - 2019-08-28 23:19 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2019-09-10 18:50 - 2019-08-28 23:19 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2019-09-10 18:50 - 2019-08-28 23:18 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2019-09-10 18:50 - 2019-08-28 23:15 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2019-09-10 18:50 - 2019-08-28 23:15 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-09-10 18:50 - 2019-08-28 23:15 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2019-09-10 18:50 - 2019-08-28 23:15 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-09-10 18:50 - 2019-08-28 23:15 - 000161280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-09-10 18:50 - 2019-08-28 23:15 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-09-10 18:50 - 2019-08-28 23:14 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-09-10 18:50 - 2019-08-28 23:14 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2019-09-10 18:50 - 2019-08-28 23:14 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2019-09-10 18:50 - 2019-08-28 23:14 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2019-09-10 18:50 - 2019-08-28 23:14 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2019-09-10 18:50 - 2019-08-28 23:14 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2019-09-10 18:50 - 2019-08-28 23:14 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2019-09-10 18:50 - 2019-08-27 17:50 - 000390536 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-09-10 18:50 - 2019-08-27 16:59 - 000341896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2019-09-10 18:50 - 2019-08-27 00:41 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2019-09-10 18:50 - 2019-08-27 00:41 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2019-09-10 18:50 - 2019-08-27 00:29 - 002909184 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-09-10 18:50 - 2019-08-27 00:27 - 000579072 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-09-10 18:50 - 2019-08-27 00:27 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2019-09-10 18:50 - 2019-08-27 00:27 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2019-09-10 18:50 - 2019-08-27 00:27 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2019-09-10 18:50 - 2019-08-27 00:26 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2019-09-10 18:50 - 2019-08-27 00:21 - 020290560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-09-10 18:50 - 2019-08-27 00:20 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2019-09-10 18:50 - 2019-08-27 00:19 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2019-09-10 18:50 - 2019-08-27 00:17 - 005500928 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-09-10 18:50 - 2019-08-27 00:17 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2019-09-10 18:50 - 2019-08-27 00:16 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2019-09-10 18:50 - 2019-08-27 00:16 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2019-09-10 18:50 - 2019-08-27 00:15 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2019-09-10 18:50 - 2019-08-27 00:15 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-09-10 18:50 - 2019-08-27 00:15 - 000790528 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-09-10 18:50 - 2019-08-27 00:08 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2019-09-10 18:50 - 2019-08-27 00:05 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2019-09-10 18:50 - 2019-08-27 00:03 - 000496128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-09-10 18:50 - 2019-08-27 00:03 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2019-09-10 18:50 - 2019-08-27 00:02 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2019-09-10 18:50 - 2019-08-27 00:02 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2019-09-10 18:50 - 2019-08-27 00:01 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2019-09-10 18:50 - 2019-08-26 23:59 - 002301952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-09-10 18:50 - 2019-08-26 23:59 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-09-10 18:50 - 2019-08-26 23:58 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2019-09-10 18:50 - 2019-08-26 23:58 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2019-09-10 18:50 - 2019-08-26 23:56 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2019-09-10 18:50 - 2019-08-26 23:56 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2019-09-10 18:50 - 2019-08-26 23:55 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2019-09-10 18:50 - 2019-08-26 23:54 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2019-09-10 18:50 - 2019-08-26 23:54 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-09-10 18:50 - 2019-08-26 23:53 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-09-10 18:50 - 2019-08-26 23:53 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2019-09-10 18:50 - 2019-08-26 23:53 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2019-09-10 18:50 - 2019-08-26 23:52 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2019-09-10 18:50 - 2019-08-26 23:50 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2019-09-10 18:50 - 2019-08-26 23:45 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2019-09-10 18:50 - 2019-08-26 23:42 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2019-09-10 18:50 - 2019-08-26 23:40 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2019-09-10 18:50 - 2019-08-26 23:40 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2019-09-10 18:50 - 2019-08-26 23:40 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2019-09-10 18:50 - 2019-08-26 23:39 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-09-10 18:50 - 2019-08-26 23:39 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2019-09-10 18:50 - 2019-08-26 23:37 - 002132480 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-09-10 18:50 - 2019-08-26 23:37 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2019-09-10 18:50 - 2019-08-26 23:37 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2019-09-10 18:50 - 2019-08-26 23:36 - 015389184 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-09-10 18:50 - 2019-08-26 23:36 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2019-09-10 18:50 - 2019-08-26 23:35 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2019-09-10 18:50 - 2019-08-26 23:34 - 000350208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys
2019-09-10 18:50 - 2019-08-26 23:34 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2019-09-10 18:50 - 2019-08-26 23:30 - 004112384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-09-10 18:50 - 2019-08-26 23:28 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2019-09-10 18:50 - 2019-08-26 23:27 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2019-09-10 18:50 - 2019-08-26 23:27 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2019-09-10 18:50 - 2019-08-26 23:26 - 004859392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-09-10 18:50 - 2019-08-26 23:26 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2019-09-10 18:50 - 2019-08-26 23:23 - 013791744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-09-10 18:50 - 2019-08-26 23:15 - 001568256 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-09-10 18:50 - 2019-08-26 23:09 - 004387840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-09-10 18:50 - 2019-08-26 23:06 - 001331712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2019-09-10 18:50 - 2019-08-26 23:04 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-09-10 18:50 - 2019-08-26 23:04 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2019-09-10 18:50 - 2019-08-22 19:07 - 000628480 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2019-09-10 18:50 - 2019-08-20 22:59 - 000311008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2019-09-10 18:50 - 2019-08-20 22:56 - 000071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2019-09-10 18:50 - 2019-08-20 22:56 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2019-09-10 18:50 - 2019-08-20 22:56 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2019-09-10 18:50 - 2019-08-20 20:19 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2019-09-10 18:50 - 2019-08-20 01:24 - 000385248 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2019-09-10 18:50 - 2019-08-20 01:21 - 000101376 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2019-09-10 18:50 - 2019-08-20 01:21 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2019-09-10 18:50 - 2019-08-20 01:21 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2019-09-10 18:50 - 2019-08-20 01:21 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2019-09-10 18:50 - 2019-08-20 00:59 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ws2ifsl.sys
2019-09-10 18:50 - 2019-08-20 00:51 - 003232256 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-09-10 18:50 - 2019-08-19 23:47 - 001251840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2019-09-10 18:50 - 2019-08-14 14:54 - 003229184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2019-09-10 18:50 - 2019-08-14 14:54 - 000271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2019-09-10 18:50 - 2019-08-14 14:53 - 000253440 _____ (Microsoft) C:\Windows\SysWOW64\DShowRdpFilter.dll
2019-09-10 18:50 - 2019-08-14 14:53 - 000131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2019-09-10 18:50 - 2019-08-14 02:22 - 000374496 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2019-09-10 18:50 - 2019-08-14 02:20 - 003730432 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2019-09-10 18:50 - 2019-08-14 02:20 - 000300032 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2019-09-10 18:50 - 2019-08-14 02:20 - 000282112 _____ (Microsoft) C:\Windows\system32\DShowRdpFilter.dll
2019-09-10 18:50 - 2019-08-14 02:20 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2019-09-10 18:50 - 2019-08-14 02:19 - 000158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2019-09-10 18:50 - 2019-08-14 02:04 - 001053184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2019-09-10 18:50 - 2019-08-14 02:04 - 000036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2019-09-10 18:50 - 2019-08-14 01:59 - 001120768 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2019-09-10 18:50 - 2019-08-14 01:59 - 000249344 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2019-09-10 18:50 - 2019-08-14 01:52 - 000455680 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2019-09-10 18:50 - 2019-08-13 19:20 - 000162016 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2019-09-10 18:50 - 2019-08-13 19:19 - 000988384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2019-09-10 18:50 - 2019-08-13 19:19 - 000267488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2019-09-10 18:50 - 2019-08-13 19:16 - 001009664 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2019-09-10 18:50 - 2019-08-13 19:16 - 000484864 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2019-09-10 18:50 - 2019-08-13 19:15 - 000732160 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2019-09-10 18:50 - 2019-08-13 19:15 - 000405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2019-09-10 18:50 - 2019-08-13 19:15 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2019-09-10 18:50 - 2019-08-13 19:13 - 000833536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2019-09-10 18:50 - 2019-08-13 19:13 - 000363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2019-09-10 18:50 - 2019-08-13 19:13 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2019-09-10 18:50 - 2019-08-12 23:58 - 001312256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2019-09-10 18:50 - 2019-08-12 23:58 - 000475648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxbde40.dll
2019-09-10 18:50 - 2019-08-12 23:58 - 000353280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2019-09-10 18:50 - 2019-08-12 23:58 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll
2019-09-10 18:50 - 2019-08-12 21:56 - 002863104 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2019-09-10 18:50 - 2019-08-12 21:56 - 001712640 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2019-09-10 18:50 - 2019-08-12 21:56 - 001650176 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2019-09-10 18:50 - 2019-08-12 21:56 - 000802304 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2019-09-10 18:50 - 2019-08-12 21:56 - 000634368 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2019-09-10 18:50 - 2019-08-12 21:56 - 000501760 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2019-09-10 18:50 - 2019-08-12 21:56 - 000456192 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2019-09-10 18:50 - 2019-08-12 21:56 - 000315904 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2019-09-10 18:50 - 2019-08-12 21:56 - 000257024 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2019-09-09 18:11 - 2019-09-09 18:11 - 004598455 _____ C:\Users\Seba\Downloads\2019.09.09 Glockenspiel 2.m4a
2019-09-09 18:00 - 2019-09-09 18:01 - 006578580 _____ C:\Users\Seba\Downloads\Jason Sample (1).wav
2019-09-09 07:06 - 2019-09-09 07:06 - 000319368 _____ C:\Windows\Minidump\090919-26629-01.dmp
2019-09-09 06:57 - 2019-09-09 06:57 - 000278648 _____ C:\Windows\Minidump\090919-30154-01.dmp
2019-09-09 06:45 - 2019-09-09 06:45 - 000262144 _____ C:\Windows\Minidump\090919-36192-01.dmp
2019-09-08 18:43 - 2019-09-08 18:43 - 000000085 _____ C:\Users\Seba\Desktop\Manual de Eset Online Scanner - Guías, manuales, tutoriales y más - ForoSpyware.url
2019-09-08 18:39 - 2019-09-08 18:40 - 008162616 _____ (ESET spol. s r.o.) C:\Users\Seba\Desktop\esetonlinescanner_esn.exe
2019-09-08 11:24 - 2019-09-08 11:24 - 000001980 _____ C:\Users\Seba\Documents\Cubase LE AI Elements Warnings - trident_jason.cpr.txt
2019-09-07 22:51 - 2019-09-07 22:51 - 000016281 _____ C:\Users\Seba\Downloads\The-Hustle-TSLatino.torrentlatino2.com_.torrent
2019-09-07 18:36 - 2019-09-07 18:36 - 000000799 _____ C:\Users\Seba\Downloads\alphabet_songVOICE.mid
2019-09-07 18:35 - 2019-09-07 18:36 - 000001299 _____ C:\Users\Seba\Downloads\KBrahmslullaby.mid
2019-09-05 16:47 - 2019-09-05 16:47 - 006578580 _____ C:\Users\Seba\Downloads\Jason Sample.wav
2019-09-04 18:41 - 2019-09-04 18:41 - 000067788 _____ C:\Users\Seba\Downloads\BEYONCE'.Naughty girl K (1).mid
2019-09-03 16:26 - 2019-09-03 16:42 - 000000000 ____D C:\Users\Seba\Downloads\Ample Sound - Ample Ethno Ukulele III v3.00
2019-09-03 16:25 - 2019-09-03 16:25 - 000017860 _____ C:\Users\Seba\Downloads\Ample Sound - Ample Ethno Ukulele III v3.00 VSTi, VSTi3, AAX x64 [06.2019] [rutracker-5751607].torrent
2019-09-03 16:13 - 2019-09-03 16:13 - 052145580 _____ C:\Users\Seba\Downloads\Fiver Who Knew Explanation.wav
2019-09-02 11:00 - 2019-09-02 11:00 - 000141041 _____ C:\Users\Seba\Downloads\Musician Work for Hire Agreement - Fiverr Nursery Rhymes (1).pdf
2019-09-01 23:46 - 2019-09-01 23:47 - 017103170 _____ C:\Users\Seba\Downloads\Ukulele who knew.wav
2019-08-31 05:26 - 2019-09-13 19:41 - 000001601 _____ C:\Users\Seba\Desktop\Liz.txt
2019-08-31 04:02 - 2019-08-31 04:02 - 000136850 _____ C:\Users\Seba\Downloads\Musician Work for Hire Agreement - Fiverr Nursery Rhymes.pdf
2019-08-29 21:00 - 2019-08-29 21:00 - 000003130 _____ C:\Windows\System32\Tasks\{6F1493EE-90A0-44E9-A67C-562A965AAF46}
2019-08-27 18:50 - 2019-08-27 18:50 - 000001859 _____ C:\Users\Seba\Downloads\old-macdonald-had-a-farm.mid
2019-08-27 17:17 - 2019-08-27 17:17 - 000000000 __SHD C:\found.000
2019-08-26 17:13 - 2019-08-26 17:13 - 000270178 _____ C:\Users\Seba\Downloads\Cool casual music game. Fun and positive.wav
2019-08-24 21:35 - 2019-08-24 21:35 - 000000000 ____D C:\Program Files\Klevgrand
2019-08-24 20:52 - 2019-08-24 20:52 - 000255676 _____ C:\Users\Seba\Downloads\new WAV.pkf
2019-08-24 20:48 - 2019-08-24 20:50 - 065444782 _____ C:\Users\Seba\Downloads\new WAV.wav
2019-08-24 20:39 - 2019-08-24 20:39 - 004932705 _____ C:\Users\Seba\Downloads\new.mp4
2019-08-23 20:08 - 2019-08-23 20:08 - 000000000 ___HD C:\ProgramData\.88e1acbae5709fcfe9749ab177d3698e_T
2019-08-23 20:08 - 2019-08-23 20:08 - 000000000 ___HD C:\ProgramData\.88e1acbae5709fcfe9749ab177d3698e
2019-08-22 11:36 - 2019-08-22 11:41 - 000027193 _____ C:\Users\Seba\Desktop\Fixlog.txt
2019-08-22 10:28 - 2019-08-22 10:28 - 000000259 _____ C:\DelFix.txt
2019-08-22 10:28 - 2019-08-22 10:28 - 000000000 ____D C:\Windows\ERUNT
2019-08-22 10:21 - 2019-08-22 10:21 - 000797760 _____ C:\Users\Seba\Desktop\delfix.exe
2019-08-21 19:20 - 2019-08-21 19:20 - 000639607 _____ C:\Users\Seba\Downloads\silhouette_of_couple_kissing_1201.zip
2019-08-21 18:59 - 2019-08-30 18:54 - 000000000 ____D C:\Users\Seba\Desktop\Forobeta
2019-08-21 15:18 - 2019-08-21 15:18 - 000001147 _____ C:\Users\Public\Desktop\Adobe Audition CS6.lnk
2019-08-21 15:18 - 2019-08-21 15:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Audition CS6
2019-08-21 15:17 - 2019-08-21 17:21 - 000000000 ____D C:\Program Files (x86)\Adobe Audition CS6
2019-08-21 15:17 - 2019-08-21 15:17 - 000000000 ____D C:\Users\Seba\Downloads\Instalar adobe audition CS6 (alex bros music)
2019-08-21 15:15 - 2019-08-21 15:16 - 065169192 _____ C:\Users\Seba\Downloads\Instalar adobe audition CS6 (alex bros music).rar
2019-08-21 14:25 - 2019-08-21 14:27 - 114661678 _____ C:\Users\Seba\Downloads\WhatsApp Audio 2019-08-20 at 1.07.45 PM (online-audio-converter.com).wav
2019-08-21 14:15 - 2019-08-21 14:15 - 008672701 _____ C:\Users\Seba\Downloads\WhatsApp Audio 2019-08-20 at 1.07.45 PM.mp4
2019-08-21 12:43 - 2019-08-21 19:31 - 000000112 _____ C:\Users\Seba\AppData\Roaming\JP2K CS6 Prefs
2019-08-21 11:08 - 2019-08-21 11:55 - 000000000 ____D C:\AppServ
2019-08-20 15:59 - 2019-08-20 16:02 - 099170746 _____ C:\Users\Seba\Downloads\appserv-x64-9.1.0.exe
2019-08-20 13:25 - 2019-08-20 13:25 - 001321305 _____ C:\Users\Seba\Downloads\StanleyWP-Package (1).zip
2019-08-20 13:21 - 2019-08-20 13:28 - 000000000 ____D C:\Users\Seba\Downloads\Themes
2019-08-20 13:12 - 2019-08-20 13:12 - 003098610 _____ C:\Users\Seba\Downloads\deejay.3.2.zip
2019-08-20 11:53 - 2019-08-27 10:46 - 000000911 _____ C:\Users\Seba\Desktop\Hacer para hoy.txt
2019-08-19 10:00 - 2019-08-19 10:04 - 000066293 _____ C:\Users\Seba\Desktop\Addition.txt
2019-08-19 09:57 - 2019-09-16 18:11 - 000034572 _____ C:\Users\Seba\Desktop\FRST.txt
2019-08-19 09:29 - 2019-09-16 18:07 - 001614848 _____ (Farbar) C:\Users\Seba\Desktop\FRST64.exe
2019-08-18 16:42 - 2019-08-18 16:42 - 000000000 ____D C:\temp
2019-08-17 19:08 - 2019-08-17 19:08 - 000000000 ____D C:\Users\Seba\AppData\Local\ElevatedDiagnostics
2019-08-17 18:26 - 2019-08-17 18:26 - 000000000 ____D C:\Users\Seba\AppData\Local\AviraSpeedup
2019-08-17 15:01 - 2019-08-17 15:01 - 000000999 _____ C:\Users\Seba\Desktop\WhoCrashed.lnk
2019-08-17 15:01 - 2019-08-17 15:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WhoCrashed
2019-08-17 15:01 - 2019-08-17 15:01 - 000000000 ____D C:\Program Files\WhoCrashed
2019-08-17 14:57 - 2019-08-17 14:58 - 009936128 _____ (Resplendence Software Projects Sp. ) C:\Users\Seba\Downloads\whocrashedSetup.exe
2019-08-17 14:53 - 2019-08-17 15:29 - 000000000 ____D C:\Users\Seba\Downloads\installeddriverslist-x64
2019-08-17 14:50 - 2019-08-17 14:51 - 000069136 _____ C:\Users\Seba\Downloads\installeddriverslist-x64.zip
2019-08-17 10:46 - 2019-08-17 10:46 - 000000000 ____D C:\ProgramData\ATI
2019-08-17 08:17 - 2019-08-17 08:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
2019-08-17 07:58 - 2019-08-17 07:59 - 031360544 _____ (Hewlett-Packard ) C:\Users\Seba\Downloads\sp46533.exe
2019-08-17 07:56 - 2019-08-17 08:02 - 208294888 _____ (Hewlett-Packard ) C:\Users\Seba\Downloads\sp50640.exe

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2040-09-15 13:56 - 2019-03-18 14:38 - 000000000 ____D C:\Users\Seba\AppData\Roaming\Celemony Software GmbH
2040-09-15 13:09 - 2018-12-04 06:32 - 000000000 ____D C:\Users\Seba\AppData\Roaming\vlc
2019-09-16 18:08 - 2018-12-12 12:42 - 000000000 ____D C:\FRST
2019-09-16 17:45 - 2009-07-14 01:45 - 000023248 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-09-16 17:45 - 2009-07-14 01:45 - 000023248 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-09-16 17:37 - 2018-12-03 05:38 - 000000000 ____D C:\Users\Seba
2019-09-16 17:37 - 2009-07-14 02:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-09-16 17:36 - 2019-08-13 22:15 - 000000000 ____D C:\Users\Public\Speedup Sessions
2019-09-16 17:36 - 2019-06-22 08:33 - 000000000 ____D C:\Users\Seba\Desktop\NubeRod
2019-09-16 17:36 - 2010-06-26 07:07 - 000000000 ____D C:\ProgramData\CinemaNow
2019-09-16 17:36 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\registration
2019-09-16 17:36 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\inf
2019-09-16 15:41 - 2019-08-15 23:53 - 000003726 _____ C:\Windows\System32\Tasks\CCleaner Browser Heartbeat Task (Hourly)
2019-09-16 15:41 - 2019-08-15 23:53 - 000003144 _____ C:\Windows\System32\Tasks\CCleaner Browser Heartbeat Task (Logon)
2019-09-16 15:41 - 2019-08-15 23:53 - 000002322 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk
2019-09-16 15:41 - 2019-08-15 23:48 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser
2019-09-15 15:43 - 2018-12-12 11:52 - 000004128 _____ C:\Windows\System32\Tasks\CCleaner Update
2019-09-15 14:58 - 2019-04-08 08:25 - 000000000 ____D C:\Users\Seba\Documents\Ample Sound
2019-09-15 14:58 - 2019-04-08 08:21 - 000000000 ____D C:\Users\Seba\AppData\Roaming\Ample Sound
2019-09-15 14:56 - 2018-12-03 16:12 - 000000000 ____D C:\Program Files\Common Files\VST3
2019-09-15 14:54 - 2018-12-23 13:24 - 000000000 ____D C:\ProgramData\ValhallaVintageVerbPreferences
2019-09-15 14:54 - 2018-12-23 13:24 - 000000000 ____D C:\ProgramData\ValhallaVintageVerb
2019-09-15 14:53 - 2019-01-26 15:53 - 000000000 ____D C:\Users\Seba\AppData\Roaming\JamOrigin
2019-09-15 14:30 - 2018-12-03 16:12 - 000000000 ____D C:\Program Files (x86)\VSTPlugIns
2019-09-15 14:28 - 2018-12-03 16:12 - 000000000 ____D C:\Program Files\VSTPlugIns
2019-09-15 14:18 - 2019-04-26 10:33 - 000000000 ____D C:\ProgramData\ValhallaRoom
2019-09-15 14:18 - 2018-12-11 08:59 - 000000000 ____D C:\Users\Seba\AppData\Local\Spectrasonics
2019-09-15 14:16 - 2019-08-16 23:46 - 000000032 _____ C:\Windows\system32\w3data.vss
2019-09-15 14:16 - 2019-08-16 23:46 - 000000032 _____ C:\Windows\system32\msvcsv60.dll
2019-09-15 14:16 - 2019-08-16 23:46 - 000000032 _____ C:\Windows\msocreg32.dat
2019-09-15 14:16 - 2019-05-07 17:31 - 000000032 _____ C:\ProgramData\autobk.inc
2019-09-15 14:15 - 2019-08-13 22:38 - 000000000 ____D C:\Windows\SecureLib
2019-09-15 12:46 - 2009-07-14 02:13 - 000781790 _____ C:\Windows\system32\PerfStringBackup.INI
2019-09-15 12:33 - 2018-12-06 11:29 - 000000000 ____D C:\Windows\Minidump
2019-09-13 14:57 - 2019-01-27 13:30 - 000000000 ____D C:\ProgramData\XLN Audio
2019-09-13 14:25 - 2019-01-27 13:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XLN Audio
2019-09-13 14:25 - 2019-01-27 13:30 - 000000000 ____D C:\Program Files\XLN Audio
2019-09-13 14:20 - 2018-12-05 17:21 - 000000000 ____D C:\Users\Seba\AppData\Roaming\uTorrent
2019-09-12 14:42 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\rescache
2019-09-12 13:23 - 2019-02-13 11:07 - 000000000 ____D C:\Users\Seba\Documents\Studio One
2019-09-12 13:05 - 2018-12-04 16:11 - 000000000 ____D C:\Users\Seba\AppData\Roaming\Maize Sampler Player
2019-09-11 09:27 - 2009-07-14 01:45 - 005166680 _____ C:\Windows\system32\FNTCACHE.DAT
2019-09-11 09:21 - 2018-12-04 23:35 - 000000000 ___SD C:\Windows\system32\CompatTel
2019-09-11 07:40 - 2018-12-04 14:41 - 000774404 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2019-09-09 05:56 - 2019-04-10 08:47 - 000000000 ____D C:\Users\Seba\Desktop\R2R
2019-09-09 05:47 - 2019-08-15 23:28 - 000000000 ____D C:\Users\Seba\Desktop\Virus
2019-09-08 20:52 - 2018-12-06 08:55 - 000000000 ____D C:\Programas
2019-09-08 18:40 - 2019-08-15 14:29 - 000000571 _____ C:\Users\Seba\Desktop\ESET Online Scanner.lnk
2019-09-05 16:32 - 2018-12-27 20:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2019-09-05 16:27 - 2018-12-27 21:59 - 000218552 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2019-09-05 16:27 - 2018-12-27 21:59 - 000176816 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2019-09-04 22:08 - 2019-05-23 12:11 - 000000374 _____ C:\Users\Seba\Desktop\Seba.txt
2019-09-03 16:52 - 2019-04-08 08:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ample Sound
2019-09-03 16:51 - 2019-04-08 08:21 - 000000000 ____D C:\Program Files\Ample Sound
2019-09-03 16:28 - 2018-12-03 14:50 - 000000000 ____D C:\ProgramData\Package Cache
2019-09-01 12:05 - 2018-12-27 21:59 - 000003292 _____ C:\Windows\System32\Tasks\Avira_Antivirus_Systray
2019-08-29 12:54 - 2018-12-03 17:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2019-08-27 07:06 - 2018-12-03 12:36 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-08-23 20:08 - 2019-01-24 12:02 - 000000000 ____D C:\Program Files\Soundspot
2019-08-22 11:47 - 2018-12-03 18:16 - 000000008 __RSH C:\ProgramData\ntuser.pol
2019-08-22 11:36 - 2009-07-14 00:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2019-08-22 11:36 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy
2019-08-21 15:25 - 2018-12-03 12:34 - 000000000 ____D C:\Users\Seba\AppData\Roaming\Adobe
2019-08-21 14:46 - 2018-12-15 19:52 - 000000000 ____D C:\Users\Seba\Documents\VST XMLs
2019-08-18 13:11 - 2019-08-08 17:07 - 000000132 _____ C:\Users\Seba\AppData\Roaming\Adobe PNG Format CC Prefs
2019-08-17 18:41 - 2009-07-14 02:08 - 000032550 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2019-08-17 08:17 - 2019-08-16 18:50 - 000000000 ____D C:\Program Files\ATI Technologies
2019-08-17 08:16 - 2010-06-26 06:41 - 000000000 ____D C:\Program Files (x86)\ATI Technologies
2019-08-17 08:10 - 2009-09-06 21:40 - 000000000 ____D C:\SwSetup

==================== Files in the root of some directories ================

2018-12-13 11:57 - 2017-04-08 14:38 - 004057620 _____ (Maizesoft) C:\Program Files (x86)\Fingerprint VST Win 64bit.dll
2019-08-08 17:07 - 2019-08-18 13:11 - 000000132 _____ () C:\Users\Seba\AppData\Roaming\Adobe PNG Format CC Prefs
2019-01-19 08:41 - 2019-01-19 10:17 - 000000132 _____ () C:\Users\Seba\AppData\Roaming\Adobe PNG Format CS5 Prefs
2019-08-21 12:43 - 2019-08-21 19:31 - 000000112 _____ () C:\Users\Seba\AppData\Roaming\JP2K CS6 Prefs
2040-09-15 13:55 - 2019-09-15 14:16 - 000000032 _____ () C:\Users\Seba\AppData\Roaming\msregsvv.dll
2019-02-17 15:24 - 2019-02-17 15:24 - 000000000 _____ () C:\Users\Seba\AppData\Local\oobelibMkey.log
2019-08-16 15:54 - 2019-08-16 16:11 - 000007614 _____ () C:\Users\Seba\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2019-09-10 17:12
==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-09-2019
Ran by Seba (16-09-2019 18:11:36)
Running from C:\Users\Seba\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2018-12-03 08:38:07)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

5DAF878E2F07480C9206 (S-1-5-21-525092146-1667884894-650739964-1006 - Limited - Enabled)
Administrator (S-1-5-21-525092146-1667884894-650739964-500 - Administrator - Disabled)
B86F90907D96447A95F7 (S-1-5-21-525092146-1667884894-650739964-1004 - Limited - Enabled)
Guest (S-1-5-21-525092146-1667884894-650739964-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-525092146-1667884894-650739964-1002 - Limited - Enabled)
Seba (S-1-5-21-525092146-1667884894-650739964-1001 - Administrator - Enabled) => C:\Users\Seba

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Antivirus (Disabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AS: Avira Antivirus (Disabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-525092146-1667884894-650739964-1001\...\uTorrent) (Version: 3.5.3.44358 - BitTorrent Inc.)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Acon Digital Deverberate 2 (HKLM\...\Deverberate 2_is1) (Version: 2.0.2 - Acon Digital)
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
ActiveCheck component for HP Active Support Library (HKLM-x32\...\{254C37AA-6B72-4300-84F6-98A82419187E}) (Version: 3.0.0.1 - Hewlett-Packard) Hidden
Adobe After Effects CS6 (HKLM-x32\...\{4817D846-700B-474E-A31B-80892B3E92E3}) (Version: 11 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.)
Adobe Audition CS6 (HKLM-x32\...\{2A069423-BB63-4E0E-842B-8535E28CD7F7}_is1) (Version: 5.0.0.708 - El Abuelo Sawa)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.7.0.400 - Adobe Systems Incorporated)
Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.0.42.34 - Adobe Systems Incorporated)
Adobe Reader 9.1 MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-A91000000001}) (Version: 9.1.0 - Adobe Systems Incorporated)
Adobe Shockwave Player (HKLM-x32\...\{D8DFA46A-39F7-4368-810D-18AFCFDDAEAF}) (Version: 11.5.1.601 - Adobe Systems, Inc.)
Ample Ethno U version 3.0.0 (HKLM-x32\...\{0BC1D8B4-646C-4DCE-89CF-1962491238C8}_is1) (Version: 3.0.0 - Ample Sound Technology Co., Ltd.)
Ample Ethno Ukulele version 1.5.5 (HKLM-x32\...\{F6D9F862-94D7-4DDD-AC3B-5F560312B508}_is1) (Version: 1.5.5 - Ample Sound Technology Co., Ltd.)
Ample Guitar M version 3.0.1 (HKLM-x32\...\{8DFC907C-D57F-490A-8392-E729A463CD97}_is1) (Version: 3.0.1 - Ample Sound Technology Co., Ltd.)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach)
ATI Catalyst Install Manager (HKLM\...\{FB07515A-48AC-9996-16EE-3A3DC8CF8D8E}) (Version: 3.0.790.0 - ATI Technologies, Inc.)
Avid License Control (HKLM-x32\...\{89A9B9EE-839E-4820-9450-2912C82F46AF}) (Version: 6.0.1 - Avid Technology, Inc.)
Avid Pro Tools (HKLM\...\{440A8FC5-DF1F-49F2-8936-227247138A34}) (Version: 12.5.0.395 - Avid Technology, Inc.)
Avira (HKLM-x32\...\{1db45392-716a-490d-9b3e-2d96adbb5ab0}) (Version: 1.2.136.25116 - Avira Operations GmbH & Co. KG)
Avira (HKLM-x32\...\{CC898F82-66EF-4083-947F-5C69703DDBAF}) (Version: 1.2.136.25116 - Avira Operations GmbH & Co. KG) Hidden
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.1908.1579 - Avira Operations GmbH & Co. KG)
Avira System Speedup (HKLM-x32\...\Avira System Speedup_is1) (Version: 6.2.0.10728 - Avira Operations GmbH & Co. KG)
Axis version 1.0.1 (HKLM\...\Axis_is1) (Version: 1.0.1 - )
Backmask version 1.0 (HKLM\...\{8A6411FB-7E85-4B61-9624-C624C89B9A07}_is1) (Version: 1.0 - Freakshow Industries)
Bejeweled 2 Deluxe (HKLM-x32\...\WT082192) (Version: 2.2.0.82 - WildTangent) Hidden
bl (HKLM-x32\...\{2A075BB4-E976-4278-BF3F-E5C6945D84C0}) (Version: 1.0.0 - Your Company Name) Hidden
Blackhawk Striker 2 (HKLM-x32\...\WT082122) (Version: 2.2.0.82 - WildTangent) Hidden
Blasterball 3 (HKLM-x32\...\WT082124) (Version: 2.2.0.82 - WildTangent) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Build-a-lot 2 (HKLM-x32\...\WT082438) (Version: 2.2.0.82 - WildTangent) Hidden
Cake Mania (HKLM-x32\...\WT083477) (Version: 2.2.0.82 - WildTangent) Hidden
ccc-core-static (HKLM-x32\...\{3EE91D75-5721-4662-AE9E-AEF5C6BF41D4}) (Version: 2010.0909.1412.23625 - Nombre de su organización) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.60 - Piriform)
CCleaner Browser (HKLM-x32\...\CCleaner Browser) (Version: 76.0.130.103 - Piriform Software)
CCleaner Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.5.21.0 - Piriform Software) Hidden
Celemony Melodyne Studio 4 (HKLM\...\Melodyne Studio 4_is1) (Version: 4.1.1.011 - Celemony)
Chuzzle Deluxe (HKLM-x32\...\WT082200) (Version: 2.2.0.82 - WildTangent) Hidden
CinemaNow Media Manager (HKLM-x32\...\{6C122441-1861-4CD7-B1C5-A163A6984E12}) (Version: 1.9.1.102 - CinemaNow, Inc.)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Contents (HKLM-x32\...\{F6A76E9C-C299-4CFA-AD2A-57FE9DD68B70}) (Version: 1.6.0.286 - Corel Corporation) Hidden
Corel PaintShop Photo Pro X3 (HKLM-x32\...\_{D1AEB5DB-04FA-489D-94EF-8600898B93EE}) (Version: 1.6.1.116 - Corel Corporation)
Corel PaintShop Photo Pro X3 (HKLM-x32\...\{DA4BF4BE-3CDC-43B5-BBDA-DDDA73103111}) (Version: 1.00.0000 - Corel Corporation) Hidden
Corel VideoStudio Pro X3 (HKLM-x32\...\_{F072CA07-A781-45E4-9975-C033A73019CF}) (Version: 1.6.0.286 - Corel Corporation)
CyberLink DVD Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 7.0.2527 - CyberLink Corp.)
DeviceIO (HKLM-x32\...\{F4E9851F-765E-40B7-9859-237C2724E62C}) (Version: 1.6.0.286 - Corel Corporation) Hidden
Diner Dash 2 Restaurant Rescue (HKLM-x32\...\WT082396) (Version: 2.2.0.82 - WildTangent) Hidden
Dora's Carnival Adventure (HKLM-x32\...\WT082133) (Version: 2.2.0.82 - WildTangent) Hidden
DVD Menu Pack for HP MediaSmart Video (HKLM-x32\...\{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}) (Version: 4.0.3715 - Hewlett-Packard) Hidden
DVD Menu Pack for HP MediaSmart Video (HKLM-x32\...\InstallShield_{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}) (Version: 4.0.3715 - Hewlett-Packard)
eLicenser Control (HKLM-x32\...\eLicenser Control) (Version: 6.6.6.2133 - Steinberg Media Technologies GmbH)
Endless Smile 1.0.0 (HKU\S-1-5-21-525092146-1667884894-650739964-1001\...\Endless Smile) (Version: 1.0.0 - Dada Life)
Escape Rosecliff Island (HKLM-x32\...\WT083484) (Version: 2.2.0.82 - WildTangent) Hidden
ESU for Microsoft Windows 7 (HKLM-x32\...\{3877C901-7B90-4727-A639-B6ED2DD59D43}) (Version: 1.0.0 - Hewlett-Packard)
EZdrummer 2 64-bit (HKLM\...\{B9217824-0EBE-49C7-98A0-A76CC46BBB7D}) (Version: 2.0.0 - Toontrack)
EZdrummer 2 64-bit Update (HKLM\...\{11CC8964-9CB0-46E6-9218-CD39ED4A554D}) (Version: 2.1.4 - Toontrack)
FabFilter Total Bundle (HKLM\...\FabFilter Total Bundle_is1) (Version: 2018.11 - FabFilter & Team V.R)
Faerie Solitaire (HKLM-x32\...\WT082442) (Version: 2.2.0.82 - WildTangent) Hidden
FATE (HKLM-x32\...\WT082141) (Version: 2.2.0.82 - WildTangent) Hidden
Fatmaker_Full_x64 version 1.1.0 (HKLM-x32\...\{4A6E3FFF-9E6F-4F79-8BF8-74741E64FFC0}_is1) (Version: 1.1.0 - Singomakers, Inc.)
Focusrite USB 4.63.23.563 (HKLM\...\Focusrite USB_is1) (Version: 4.63.23.563 - Focusrite Audio Engineering, Ltd.)
Goodhertz All Plugins Bundle (HKLM\...\Goodhertz All Plugins Bundle_is1) (Version: 3.3.1.1 - Goodhertz)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 76.0.3809.132 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
Hive (HKLM\...\u-he Hive_is1) (Version: 1.2.0.8115 - Heckmann Audio & Team V.R)
HP 3D DriveGuard (HKLM\...\{85A42FF0-F0D0-44A3-B226-C124D6E8B1D5}) (Version: 4.0.3.1 - Hewlett-Packard)
HP Advisor (HKLM-x32\...\{40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}) (Version: 3.4.10144.3282 - Hewlett-Packard)
HP DVB-T TV Tuner 8.0.64.43 (HKLM-x32\...\HP DVB-T TV Tuner) (Version: 8.0.64.43 - )
HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.0.80 - WildTangent)
HP MediaSmart CinemaNow 2.0 (HKLM-x32\...\{9008D736-35CA-40DB-A2BE-5F32D954E5AA}) (Version: 2.0 - Hewlett-Packard)
HP MediaSmart DVD (HKLM-x32\...\InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}) (Version: 4.0.3727 - Hewlett-Packard)
HP MediaSmart Internet TV (HKLM-x32\...\InstallShield_{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}) (Version: 3.2.2513 - Hewlett-Packard)
HP MediaSmart Movies and TV (HKLM\...\{4B4E2FA2-3B1E-4147-99DB-5033981D8C2F}) (Version: 1.0.0.10 - Hewlett-Packard)
HP MediaSmart Music (HKLM-x32\...\InstallShield_{91A34181-9FAD-43AB-A35F-E7A8945B7E1C}) (Version: 4.0.3722 - Hewlett-Packard)
HP MediaSmart Photo (HKLM-x32\...\InstallShield_{6DAF8CDC-9B04-413B-A0F2-BCC13CF8A5BF}) (Version: 4.0.3722 - Hewlett-Packard)
HP MediaSmart SmartMenu (HKLM\...\{731A1D36-BF17-4C76-B7E7-CC055AF8C54E}) (Version: 3.1.1.12 - Hewlett-Packard)
HP MediaSmart Video (HKLM-x32\...\InstallShield_{D12E3E7F-1B13-4933-A915-16C7DD37A095}) (Version: 4.0.3722 - Hewlett-Packard)
HP MediaSmart Webcam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 4.0.2511 - Hewlett-Packard)
HP MediaSmart/TouchSmart Netflix (HKLM-x32\...\{35021DFB-F9CA-402A-89A2-47F91E506465}) (Version: 1.0.2.0 - Hewlett-Packard)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.2261 - HP Photo Creations Powered by RocketLife)
HP Quick Launch (HKLM\...\{10F539B1-31AF-43BF-9F0C-0EB66E918922}) (Version: 1.0.18 - Hewlett-Packard)
HP QuickWeb Installer (HKLM-x32\...\{394FA67A-FF0A-4356-BB77-D85E5A300BDE}) (Version: 1.2.9.1 - DeviceVM Inc.)
HP Setup (HKLM-x32\...\{E2831862-F131-4327-B9CC-FA30F587EB6C}) (Version: 1.2.3988.3281 - Hewlett-Packard)
HP SimplePass Identity Protection (HKLM\...\{F20DF0CA-5929-4C26-A501-FDB19FDF0A50}) (Version: 5.00.140 - DigitalPersona, Inc.)
HP Software Framework (HKLM-x32\...\{15436D38-68EF-4D20-A794-755F54E7E955}) (Version: 3.5.16.1 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{33A0B67A-CF04-4F31-B3D0-EEEEDEF7078E}) (Version: 8.8.24.33 - HP Inc.)
HP Support Solutions Framework (HKLM-x32\...\{47972CE8-5384-4658-B426-E3063D37731B}) (Version: 12.12.32.3 - HP Inc.)
HP Tone Control (HKLM\...\{9207D4A1-586E-49CA-A002-FC9F475AB1A3}) (Version: 2.0.2 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{D46D081B-F60E-467E-A7C4-117B70D76731}) (Version: 5.001.000.014 - Hewlett-Packard)
HP User Guides 0177 (HKLM-x32\...\{8DA0CD14-79DF-49BF-B133-409C004F27E1}) (Version: 1.01.0000 - Hewlett-Packard)
HP Wireless Assistant (HKLM\...\{0279C882-B150-44B6-A769-A7C8A2F31CE3}) (Version: 4.0.3.2 - Hewlett-Packard)
HPAsset component for HP Active Support Library (HKLM-x32\...\{669D4A35-146B-4314-89F1-1AC3D7B88367}) (Version: 3.0.0.3 - Hewlett-Packard) Hidden
Hulu Desktop (HKU\S-1-5-21-525092146-1667884894-650739964-1001\...\HuluDesktop) (Version: 0.9.11 - Hulu LLC)
ICA (HKLM-x32\...\{D1AEB5DB-04FA-489D-94EF-8600898B93EE}) (Version: 1.6.1.116 - Corel Corporation) Hidden
ICA (HKLM-x32\...\{F072CA07-A781-45E4-9975-C033A73019CF}) (Version: 1.6.0.286 - Corel Corporation) Hidden
Icecream Screen Recorder versión 5.991 (HKLM-x32\...\{7ADEC622-3230-4C9A-9DCE-9BD462B74095}_is1) (Version: 5.991 - Icecream Apps)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6265.0 - IDT)
IK Multimedia Authorization Manager version 1.0.19 (HKLM\...\{85BC0DCB-69E5-4279-AA25-F108EF896588}_is1) (Version: 1.0.19 - IK Multimedia)
Intel(R) C++ Redistributables on IA-32 (HKLM-x32\...\{317059CB-7642-4F2E-89C0-62E69D4074B7}) (Version: 15.0.148 - Intel Corporation)
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{2DD3C090-2986-4970-B3CB-87BB4C8AC4A5}) (Version: 15.0.148 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.5.4.1001 - Intel Corporation)
Intel(R) Turbo Boost Technology Driver (HKLM-x32\...\{D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}) (Version: 01.00.00.1030 - Intel Corporation)
IPM_PSP_Pro (HKLM-x32\...\{DCD941B6-F2E7-4FAF-B102-F7D4DE5FF99A}) (Version: 1.00.0000 - Corel Corporation) Hidden
IPM_VS_Pro (HKLM-x32\...\{FD67D9F3-FED6-4A2E-9D6C-8C8C44DEF8FF}) (Version: 13.0 - Corel Corporation) Hidden
ISCOM (HKLM-x32\...\{D1F80EFD-A032-4E8E-A367-70C44AD4DCE0}) (Version: 1.6.1.116 - Corel Corporation) Hidden
ISCOM (HKLM-x32\...\{FE661711-E392-4B3F-A4A7-02C747C09134}) (Version: 1.6.0.286 - Corel Corporation) Hidden
iZotope iDrum (HKLM-x32\...\iZotope iDrum_is1) (Version: 1.75 - iZotope, Inc.)
iZotope RX 7 Audio Editor Advanced (HKLM\...\RX 7 Audio Editor Advanced_is1) (Version: 7.00 - iZotope & Team V.R)
iZotope VocalSynth 2 (HKLM\...\VocalSynth 2_is1) (Version: 2.00 - iZotope & Team V.R)
Jam Origin MIDI Guitar 2 (HKLM\...\MIDI Guitar 2_is1) (Version: 2.2.1 - Jam Origin)
Java(TM) 6 Update 17 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416017FF}) (Version: 6.0.170 - Sun Microsystems, Inc.)
Java(TM) 6 Update 17 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216017FF}) (Version: 6.0.170 - Sun Microsystems, Inc.)
JBridge (HKLM-x32\...\JBridge) (Version:  - JBridge)
Jewel Quest 3 (HKLM-x32\...\WT082443) (Version: 2.2.0.82 - WildTangent) Hidden
Jewel Quest Solitaire 2 (HKLM-x32\...\WT082468) (Version: 2.2.0.82 - WildTangent) Hidden
Junk Mail filter update (HKLM-x32\...\{E2DFE069-083E-4631-9B6C-43C48E991DE5}) (Version: 14.0.8089.726 - Microsoft Corporation) Hidden
K-Lite Codec Pack 14.1.5 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 14.1.5 - KLCP)
KORG USB-MIDI Driver Tools for Windows (HKLM-x32\...\{E373514C-21E0-4E76-BABD-C7BAF6BFFF45}) (Version: 1.11.0040 - KORG Inc.)
LabelPrint (HKLM-x32\...\{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.2515 - CyberLink Corp.) Hidden
LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.2515 - CyberLink Corp.)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
LightScribe System Software (HKLM-x32\...\{FA8BFB25-BF48-4F8B-8859-B30810745190}) (Version: 1.18.11.1 - LightScribe)
Malwarebytes versión 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes)
MeldaProduction Audio Plugins 13 (HKLM-x32\...\MeldaProduction Audio Plugins 13) (Version:  - MeldaProduction)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office PowerPoint Viewer 2007 (English) (HKLM-x32\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Suite Activation Assistant (HKLM-x32\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.9 - Microsoft Corporation)
Microsoft Office XP Professional con FrontPage (HKLM-x32\...\{90280C0A-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.4330.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 3.0.40818.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27027 (HKLM-x32\...\{fd9b6070-d13e-45dc-819b-41806bf45b6b}) (Version: 14.16.27027.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.14.26429 (HKLM-x32\...\{2019b6a0-8533-4a04-ac0e-b2c10bdb9841}) (Version: 14.14.26429.4 - Microsoft Corporation)
Microsoft Visual F# 2.0 Runtime (HKLM-x32\...\{85467CBC-7A39-33C9-8940-D72D9269B84F}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Works (HKLM-x32\...\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}) (Version: 9.7.0621 - Microsoft Corporation)
MODO BASS version 1.5.1 (HKLM\...\{C882B130-90DD-4F00-9D6B-2F58D923E92B}_is1) (Version: 1.5.1 - IK Multimedia)
Movie Theme Pack for HP MediaSmart Video (HKLM-x32\...\{3023EBDA-BF1B-4831-B347-E5018555F26E}) (Version: 4.0.3715 - Hewlett-Packard) Hidden
Movie Theme Pack for HP MediaSmart Video (HKLM-x32\...\InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}) (Version: 4.0.3715 - Hewlett-Packard)
Mozilla Firefox 65.0.2 (x64 es-AR) (HKLM\...\Mozilla Firefox 65.0.2 (x64 es-AR)) (Version: 65.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 64.0 - Mozilla)
MSN Toolbar (HKLM-x32\...\{08234a0d-cf39-4dca-99f0-0c5cb496da81}) (Version: 4.0.0369.0 - Microsoft Corporation)
MSN Toolbar Platform (HKLM-x32\...\{4123BE4D-C65C-467E-8071-232FB1FBF3B8}) (Version: 4.0.0369.0 - Microsoft Corporation) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Mystery P.I. - The New York Fortune (HKLM-x32\...\WT082456) (Version: 2.2.0.82 - WildTangent) Hidden
Native Instruments Kontakt 5 (HKLM-x32\...\Native Instruments Kontakt 5) (Version: 5.8.1.43 - Native Instruments)
Nebula version 1.0.2 (HKLM\...\Nebula_is1) (Version: 1.0.2 - )
Nicky Romero Kickstart 1.0.9 (HKLM\...\Kickstart_is1) (Version: 1.0.9 - Nicky Romero)
Oracle version 1.0.1 (HKLM\...\Oracle_is1) (Version: 1.0.1 - )
PACE License Support Win64 (HKLM\...\{83E92696-D92D-4c7e-B094-0BE853B191FE}) (Version: 2.5.2.1034 - PACE Anti-Piracy, Inc.) Hidden
PACE License Support Win64 (HKLM-x32\...\InstallShield_{83E92696-D92D-4c7e-B094-0BE853B191FE}) (Version: 2.5.2.1034 - PACE Anti-Piracy, Inc.)
Penguins! (HKLM-x32\...\WT082168) (Version: 2.2.0.82 - WildTangent) Hidden
ph (HKLM-x32\...\{185F9795-9663-4F13-9EF9-307A282ADB5A}) (Version: 1.0.0 - Your Company Name) Hidden
PhotoNow! (HKLM-x32\...\{D36DD326-7280-11D8-97C8-000129760CBE}) (Version: 1.1.6904 - CyberLink Corp.) Hidden
PhotoNow! (HKLM-x32\...\InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}) (Version: 1.1.6904 - CyberLink Corp.)
Photoshop CS5 Extended 12.0 (HKLM-x32\...\Photoshop CS5 Extended 12.0) (Version:  - )
Plants vs. Zombies (HKLM-x32\...\WT082170) (Version: 2.2.0.82 - WildTangent) Hidden
Poker Superstars III (HKLM-x32\...\WT082171) (Version: 2.2.0.82 - WildTangent) Hidden
Polar Bowler (HKLM-x32\...\WT082172) (Version: 2.2.0.82 - WildTangent) Hidden
Polar Golfer (HKLM-x32\...\WT082173) (Version: 2.2.0.82 - WildTangent) Hidden
Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.3715 - CyberLink Corp.) Hidden
Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.3715 - CyberLink Corp.)
PowerDirector (HKLM-x32\...\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 8.0.2514 - CyberLink Corp.) Hidden
PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 8.0.2514 - CyberLink Corp.)
PSPPContent (HKLM-x32\...\{DF8B9311-ADE7-4EDE-B121-326CAA3D225D}) (Version: 1.00.0000 - Corel Corporation) Hidden
PSPPRO_DCRAW (HKLM-x32\...\{DCF1928A-FC01-48E7-A7E6-4651D42EF6A1}) (Version: 13.0.0 - Corel Corporation) Hidden
PureHD (HKLM-x32\...\{F8423392-2296-4748-9B66-344432459632}) (Version: 1.6.0.286 - Corel Corporation) Hidden
PX Profile Update (HKLM-x32\...\{08C94F9D-EB51-D748-E299-E347A2C14A81}) (Version: 1.00.1. - AMD) Hidden
PX Profile Update (HKLM-x32\...\{12A98725-C278-32D9-11CA-ADCFF8D58FEB}) (Version: 1.00.1. - AMD) Hidden
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.11.1127.2009 - Realtek)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30111 - Realtek Semiconductor Corp.)
REAPER (x64) (HKLM\...\REAPER) (Version:  - )
Recovery Manager (HKLM-x32\...\{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}) (Version: 5.5.2512 - CyberLink Corp.) Hidden
reFX Nexus VSTi RTAS v2.2.0 (HKLM-x32\...\reFX Nexus_is1) (Version:  - )
Setup (HKLM-x32\...\{D1612A3D-0DCC-4055-BB6A-0036F31158A0}) (Version: 1.6.1.116 - Corel Corporation) Hidden
Setup (HKLM-x32\...\{F069C491-69E6-4D9B-9A0C-B7894A1FA97C}) (Version: 1.6.0.286 - Corel Corporation) Hidden
Share (HKLM-x32\...\{F909BD3C-8684-4ACF-B7C3-33F4F9F901B7}) (Version: 1.6.0.286 - Corel Corporation) Hidden
Share64 (HKLM\...\{F6246243-CF06-4E40-8A37-C3B537695C36}) (Version: 1.6.0.286 - Corel Corporation) Hidden
Sibelius 7 OpenType Fonts (HKLM-x32\...\{44998978-7DDB-4AD0-BDF5-D226FBC029FE}) (Version: 7.1.2 - Avid)
Sidechain Compressor (HKLM\...\Sidechain Compressor_is1) (Version: 2.0.0 - db audioware & Team V.R)
Skype version 8.51 (HKLM-x32\...\Skype_is1) (Version: 8.51 - Skype Technologies S.A.)
SoundWire Server version 2.5 (HKLM-x32\...\{E15658BC-7742-4397-999F-98B1BD11B784}_is1) (Version: 2.5 - GeorgieLabs)
Spectrasonics Trilian VSTi Plug-In version 1.4 (HKLM-x32\...\Spectrasonics Trilian VSTi Plug-In_is1) (Version:  - Copyright (C) 2009-2011 Spectrasonics)
Steinberg Cubase LE AI Elements 7 64bit (HKLM\...\{67E7C608-D0EA-4273-B374-50ABE42FBE08}) (Version: 7.0.6 - Steinberg Media Technologies GmbH)
Steinberg Drum Loop Expansion 01 (HKLM-x32\...\{490BF87E-1F75-4453-BF55-9F540543A3CA}) (Version: 2.0.0.0 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent ONE Content (HKLM-x32\...\{BD86F1AC-B594-46E4-85DC-1258AC9E2232}) (Version: 1.0.0.003 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent ONE Vintage Beatboxes (HKLM-x32\...\{DBF4BC99-53F1-4C97-84C3-7557D103E182}) (Version: 1.0.0.000 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent SE 64bit (HKLM\...\{A5AB0D21-21BD-4DB8-F097-02E8FC8C486A}) (Version: 4.2.30 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent SE Content (HKLM-x32\...\{AFC9D1CE-F050-437C-35A5-62DEDB262DC7}) (Version: 1.2.20 - Steinberg Media Technologies GmbH)
Steinberg HALion Sonic SE 64bit (HKLM\...\{B99C316B-C135-43B5-8E77-2BC5E241F964}) (Version: 2.0.2 - Steinberg Media Technologies GmbH)
Steinberg HALion Sonic SE Content for Cubase LE AI Elements (HKLM-x32\...\{CF45002F-2205-4116-BB51-2D015F436CAC}) (Version: 1.6.3 - Steinberg Media Technologies GmbH)
Steinberg Midi Loop Library (HKLM-x32\...\{89DE2651-6DD9-4C15-AC94-8348362D456C}) (Version: 1.0.0 - Steinberg Media Technologies GmbH)
Steinberg REVerence Content 01 (HKLM-x32\...\{532B917B-8235-4FA5-BE36-643A8BB053A5}) (Version: 2.0.1.000 - Steinberg Media Technologies GmbH)
Steinberg Upload Manager (HKLM-x32\...\{88BBBD8F-4C19-4809-B84B-7A8F8238B48D}) (Version: 1.0.2 - Steinberg Media Technologies GmbH)
Steinberg VST Amp Rack Content 01 (HKLM-x32\...\{8CBA7E47-48DA-47DC-8E98-6984BA830295}) (Version: 1.0.1 - Steinberg Media Technologies GmbH)
Storch Expansion 1 version 1.0.0 (HKLM\...\{8C4C3233-1E56-49A6-B484-510C1D743BEE}_is1) (Version: 1.0.0 - StudioLinked)
Storch Sound Content 1 version 1.0.0 (HKLM\...\{74D360DE-3AE3-4CC6-9EF1-B89227EE28EE}_is1) (Version: 1.0.0 - StudioLinked)
Storch version 1.0.0 (HKLM\...\{5B4A2EC3-279F-4025-B976-6CC54FCC1823}_is1) (Version: 1.0.0 - StudioLinkedVST)
Sugar Bytes TransVST 1.0 (HKLM\...\TransVST_is1) (Version: 1.0 - Sugar Bytes)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 14.0.19.0 - Synaptics Incorporated)
TextTwist 2 (HKLM-x32\...\WT083491) (Version: 2.2.0.82 - WildTangent) Hidden
The T-Pain Effect Bundle (HKLM-x32\...\The T-Pain Effect Bundle_is1) (Version: 1.02 - iZotope, Inc.)
Unfiltered Audio Plugins Bundle (HKLM\...\Unfiltered Audio Plugins Bundle_is1) (Version: 1.0.2 - Team V.R)
Update for Office 2007 (KB934528) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{2B939677-2FFD-48F6-9075-7BF48CB87C80}) (Version:  - )
Valhalla DSP Valhalla VintageVerb (HKLM\...\Valhalla VintageVerb_is1) (Version: 1.7.1 - Valhalla DSP)
ValhallaRoom version 1.1.1 (HKLM-x32\...\{375980F3-1584-496E-888B-BD3D81EF0C1D}_is1) (Version: 1.1.1 - Valhalla DSP, LLC)
Validity Sensors DDK (HKLM\...\{EE5017A6-7525-4EE9-99DA-2EF1F6C16B1B}) (Version: 4.1.129.0 - Validity Sensors, Inc.)
VEGAS Pro 15.0 (HKLM\...\{E1FCD40F-7FC4-11E7-88AD-95BE57594EAC}) (Version: 15.0.177 - VEGAS)
Vengeance Producer Suite - Scope CM edition 1.0.4 (HKLM-x32\...\{35A4AF82-BC1D-40AA-8174-CA860C6C5327}_is1) (Version:  - keilwerth Audio / Vengeance Sound)
VIO (HKLM-x32\...\{F95C8C1F-25BB-44EC-A7E6-5C17ABC6BC71}) (Version: 1.6.0.286 - Corel Corporation) Hidden
Virtual Families (HKLM-x32\...\WT082188) (Version: 2.2.0.82 - WildTangent) Hidden
Virtual Villagers - The Secret City (HKLM-x32\...\WT082241) (Version: 2.2.0.82 - WildTangent) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN)
Voxengo SPAN Plus (HKLM\...\Voxengo SPAN Plus_is1) (Version: 1.5 - Voxengo)
VSClassic (HKLM-x32\...\{FB0B6DDD-DF3E-4CD6-927C-724AB854E322}) (Version: 1.6.0.286 - Corel Corporation) Hidden
VSPro (HKLM-x32\...\{F206FEC3-F5DD-43FD-A8CF-9C46B8A6A92C}) (Version: 1.6.0.286 - Corel Corporation) Hidden
Wheel of Fortune 2 (HKLM-x32\...\WT082189) (Version: 2.2.0.82 - WildTangent) Hidden
WhoCrashed 6.65 (HKLM\...\WhoCrashed_is1) (Version:  - Resplendence Software Projects Sp.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8089.0726 - Microsoft Corporation)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}) (Version: 14.0.8089.726 - Microsoft Corporation)
Windows Live Upload Tool (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
Windows Media Encoder 9 Series (HKLM-x32\...\Windows Media Encoder 9) (Version:  - )
WinRAR 5.61 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH)
WinZip 23.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C2411F}) (Version: 23.0.13431 - Corel Corporation)
XLN Audio Addictive Drums 2 (HKLM\...\Addictive Drums 2_is1) (Version: 2.1.5 - XLN Audio)
XLN Audio RC-20 Retro Color (HKLM\...\RC-20 Retro Color_is1) (Version: 1.0.3 - XLN Audio)
Youlean Loudness Meter 2 version V2.1.1 (HKLM-x32\...\{57AC2129-BA28-47CC-ACC8-BDCE413849DF}_is1) (Version: V2.1.1 - Youlean)
Zuma's Revenge (HKLM-x32\...\WT082463) (Version: 2.2.0.82 - WildTangent) Hidden
Zynaptiq INTENSITY (HKLM\...\INTENSITY_is1) (Version: 1.2.0 - Zynaptiq)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-525092146-1667884894-650739964-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems)
ContextMenuHandlers1: [Corel.Paint.Shop.Pro.Photo] -> {B1D2CD8F-45E9-49d1-838A-AAA5780D94B7} => c:\Program Files (x86)\Corel\Corel PaintShop Photo Pro\X3\PSPClassic\PSPContextMenu64.dll [2010-01-19] (Corel Corporation -> )
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2019-09-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [SystemSpeedupFilesMenu] -> {14cb2bd0-2375-3d10-9b5d-5e18865c8959} => C:/Program Files (x86)/Avira/System Speedup/Avira.SystemSpeedup.UI.ShellExtension.DLL [2019-08-15] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2019-05-10] (Corel Corporation -> WinZip Computing)
ContextMenuHandlers2: [Corel.Paint.Shop.Pro.Photo] -> {B1D2CD8F-45E9-49d1-838A-AAA5780D94B7} => c:\Program Files (x86)\Corel\Corel PaintShop Photo Pro\X3\PSPClassic\PSPContextMenu64.dll [2010-01-19] (Corel Corporation -> )
ContextMenuHandlers2-x32: [Ulead UDF Driver] -> {DBD8E168-244D-448C-9922-25508950D1DC} => c:\Program Files (x86)\Common Files\Ulead Systems\DVD\USIShex.dll [2010-01-14] (Corel Corporation -> Ulead Systems, Inc.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [Corel.Paint.Shop.Pro.Photo] -> {B1D2CD8F-45E9-49d1-838A-AAA5780D94B7} => c:\Program Files (x86)\Corel\Corel PaintShop Photo Pro\X3\PSPClassic\PSPContextMenu64.dll [2010-01-19] (Corel Corporation -> )
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers4: [SystemSpeedupFoldersMenu] -> {700866bb-c8e9-3e71-b359-abb28baed0e8} => C:/Program Files (x86)/Avira/System Speedup/Avira.SystemSpeedup.UI.ShellExtension.DLL [2019-08-15] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2019-05-10] (Corel Corporation -> WinZip Computing)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2010-07-27] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [SystemSpeedupDesktopMenu] -> {0cab5786-30e8-3185-9b3b-ccefbf1b8afe} => C:/Program Files (x86)/Avira/System Speedup/Avira.SystemSpeedup.UI.ShellExtension.DLL [2019-08-15] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2019-09-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2019-05-10] (Corel Corporation -> WinZip Computing)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


ShortcutWithArgument: C:\Users\Seba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Escritorio Remoto de Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=gbchcmhmhahfdphkhkmpfmihenigjmpp
ShortcutWithArgument: C:\Users\Seba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Hangouts de Google.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=knipolnnllmklapflnccelgolnpehhpl

==================== Loaded Modules (Whitelisted) ==============

2010-06-26 06:43 - 2010-03-03 03:37 - 001892352 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\xerces-c_2_7.dll
2010-01-22 15:14 - 2010-01-22 15:14 - 000033792 _____ (Hewlett-Packard Company) [File not signed] C:\Program Files (x86)\Common Files\LightScribe\LSLog.dll
2010-01-22 15:13 - 2010-01-22 15:13 - 000110592 _____ (Hewlett-Packard Company) [File not signed] C:\Program Files (x86)\Common Files\LightScribe\LSSProxy.dll
2010-06-26 06:43 - 2010-03-03 03:37 - 000077824 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\DTMessageLib.dll
2010-06-26 06:43 - 2010-03-03 03:32 - 000069632 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\StatusStrings.dll
2009-08-18 15:24 - 2009-08-18 15:24 - 000167424 _____ (Microsoft Corporation) [File not signed] C:\Program Files\Common Files\Microsoft Shared\Windows Live\sqmapi.dll
2018-03-26 12:58 - 2018-03-26 12:58 - 000112128 _____ (Microsoft Corporation) [File not signed] C:\Windows\Microsoft.Net\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
2019-01-28 08:10 - 2019-01-28 08:09 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qico.dll
2019-01-28 08:10 - 2019-01-28 08:09 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qsvg.dll
2018-12-12 11:58 - 2019-01-28 08:09 - 001181184 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\platforms\qwindows.dll
2018-12-12 11:58 - 2019-01-28 08:09 - 005010944 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
2018-12-12 11:58 - 2019-01-28 08:09 - 005139968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Gui.dll
2018-12-12 11:58 - 2019-01-28 08:09 - 002234880 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Network.dll
2018-12-12 11:58 - 2019-01-28 08:09 - 002950144 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Qml.dll
2018-12-12 11:58 - 2019-01-28 08:09 - 003084800 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Quick.dll
2018-12-12 11:58 - 2019-01-28 08:09 - 000259584 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Svg.dll
2018-12-12 11:58 - 2019-01-28 08:09 - 004571648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Widgets.dll
2018-12-12 11:58 - 2019-01-28 08:09 - 000438272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5WinExtras.dll
2019-01-28 08:10 - 2019-01-28 08:09 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\modelsplugin.dll
2019-01-28 08:10 - 2019-01-28 08:09 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\qtquick2plugin.dll
2019-01-28 08:10 - 2019-01-28 08:09 - 000729088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-01-28 08:10 - 2019-01-28 08:09 - 000179712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\dialogplugin.dll
2019-01-28 08:10 - 2019-01-28 08:09 - 000073216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-01-28 08:10 - 2019-01-28 08:09 - 000101888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\PrivateWidgets\widgetsplugin.dll
2019-01-28 08:10 - 2019-01-28 08:09 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\windowplugin.dll
2018-12-12 11:58 - 2019-01-28 08:09 - 000124928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\styles\qwindowsvistastyle.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-525092146-1667884894-650739964-1001\...\localhost -> localhost

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 23:34 - 2019-08-22 11:40 - 000000035 _____ C:\Windows\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-525092146-1667884894-650739964-1001\Control Panel\Desktop\\Wallpaper -> 
DNS Servers: 200.49.120.2 - 200.49.120.3
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office.lnk => C:\Windows\pss\Microsoft Office.lnk.CommonStartup
MSCONFIG\startupreg: Adobe Creative Cloud => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeGCInvoker-1.0 => "C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe"
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: CCleaner Smart Cleaning => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: DigidesignMMERefresh => C:\Program Files\Avid\Pro Tools\MMERefresh.exe
MSCONFIG\startupreg: GoogleChromeAutoLaunch_A3AE2B88709917E29C176A59EC07D358 => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
MSCONFIG\startupreg: HP Quick Launch => C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: HPAdvisorDock => C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe
MSCONFIG\startupreg: HPToneControl => C:\Program Files\Hewlett-Packard\HPToneControl\HPTonectl.exe
MSCONFIG\startupreg: HPWirelessAssistant => C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe 120 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe /hidden
MSCONFIG\startupreg: LightScribe Control Panel => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
MSCONFIG\startupreg: Microsoft Default Manager => "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume
MSCONFIG\startupreg: MSN Toolbar => "C:\Program Files (x86)\MSN Toolbar\Platform\4.0.0369.0\mswinext.exe"
MSCONFIG\startupreg: NortonOnlineBackupReminder => "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NOBuActivation.exe" UNATTENDED
MSCONFIG\startupreg: SGDawNodeService => C:\Windows\SysWOW64\SGDawNodeService.exe runasservice
MSCONFIG\startupreg: Skype for Desktop => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
MSCONFIG\startupreg: SmartMenu => C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe /background
MSCONFIG\startupreg: StartCCC => "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Java\jre6\bin\jusched.exe"
MSCONFIG\startupreg: SynTPEnh => %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
MSCONFIG\startupreg: SysTrayApp => C:\Program Files\IDT\WDM\sttray64.exe
MSCONFIG\startupreg: uTorrent => "C:\Users\Seba\AppData\Roaming\uTorrent\uTorrent.exe"
MSCONFIG\startupreg: WinZip FAH => C:\Program Files\WinZip\FAHConsole.exe
MSCONFIG\startupreg: WinZip PreLoader => C:\Program Files\WinZip\WzPreloader.exe
MSCONFIG\startupreg: WinZip UN => C:\Program Files\WinZip\WZUpdateNotifier.exe -show

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{978749DB-C886-4B89-95FE-D6D4C8B8F350}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\wlcsdk.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8B2204C8-F50D-4E9B-B57A-03A41BD3D4CF}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E25C7EA2-0C0C-4F20-9074-0AF3FA52D85B}] => (Allow) svchost.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{D0DAEDE6-3229-40C7-9C47-72A2C8ACD8D3}] => (Allow) C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D3197E11-AC63-4B0E-A149-D236D23E6078}] => (Allow) c:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPDVDSmart.exe (CyberLink -> CyberLink Corp.)
FirewallRules: [{28F2781F-3828-4B41-B617-5A38175F2C1F}] => (Allow) c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Music\HPTouchSmartMusic.exe (CyberLink -> CyberLink Corp.)
FirewallRules: [{B90A00DB-D204-42EB-A383-DAA71F4C5C71}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\Media\iTV\HPiTV.exe (CyberLink -> CyberLink Corp.)
FirewallRules: [{BF10DECD-9048-4FEB-8211-A2CA49145F96}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\MediaSmart\CinemaNow\CinemaNow.exe (Sonic Solutions -> Sonic Solutions)
FirewallRules: [{D34D0FED-7168-4647-A9F5-9D12148E2BA4}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\MediaSmart\CinemaNow\CinemaNow.exe (Sonic Solutions -> Sonic Solutions)
FirewallRules: [{AC734806-3DF4-4295-AF49-85BD3F548CAE}] => (Allow) C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemaNowShell.exe (Sonic Solutions -> CinemaNow Inc.)
FirewallRules: [{587F17FD-57D4-405A-B09A-481FB2AE4305}] => (Allow) C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemaNowShell.exe (Sonic Solutions -> CinemaNow Inc.)
FirewallRules: [{A27C6CCE-76D9-4FB0-A928-BE6231A73A15}] => (Allow) C:\Program Files (x86)\Waves\MultiRack\MultiRack SoundGrid.exe (Waves Inc -> Waves Audio Ltd.)
FirewallRules: [{A7EA3B45-731E-4776-8548-5FFC539A1E1C}] => (Allow) C:\Users\Seba\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{D1382921-7F29-4F66-96BE-423E877FE7B5}] => (Allow) C:\Users\Seba\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{9BA19648-AB18-442E-A137-9ECF2E596A3B}] => (Allow) C:\Users\Seba\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{831F1626-399F-44D3-8EE9-BFFC70ACACC1}] => (Allow) C:\Users\Seba\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{40326070-A700-4EDB-BC4F-E145AC69DBF0}] => (Allow) C:\Users\Seba\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{D522C0B0-8A2B-44F2-88CA-49C21D733F70}] => (Allow) C:\Users\Seba\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{8063F6D8-2156-4C88-96EA-114379DB7F1B}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{C83DD626-7B24-4D74-90B8-6E52C85F7FA0}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{F4EDC09D-2A55-498B-BF5D-02EA98DB7B3D}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{16A54CE9-9473-43EB-B5C3-D9A860684765}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{CB312EE1-2FD3-4B70-A1B1-1A03AF1A637B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{659C3688-129A-4AE6-BC96-B8CA33837803}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{43527417-1328-4CA6-806E-17C9E1B94327}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2ED92086-DB77-478E-9780-84F9F34CA754}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{002039AA-3CCE-4825-99A2-0D7A1E10E305}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{197DDB01-504E-42BF-AB51-23C43C8D5CE7}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{43EB0CF6-ACA5-46CF-88CE-70E1AD6722EF}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{83DAB423-AB36-42C9-9F9B-0E244BB2E7B5}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D4E7F6FD-281D-42F6-91C7-D66540DD1E93}] => (Allow) C:\Users\Seba\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{458D5896-60EC-4D02-B0AE-8AB3C7D011A5}] => (Allow) C:\Users\Seba\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{A3909123-1775-4DF0-B5D4-6CFB48B41E3C}C:\program files\steinberg\cubase le ai elements 7\cubase le ai elements 7.exe] => (Allow) C:\program files\steinberg\cubase le ai elements 7\cubase le ai elements 7.exe (Steinberg Media Technologies GmbH -> Steinberg Media Technologies) [File not signed]
FirewallRules: [UDP Query User{249CED03-5EE5-45E8-B534-48CFAE9F6991}C:\program files\steinberg\cubase le ai elements 7\cubase le ai elements 7.exe] => (Allow) C:\program files\steinberg\cubase le ai elements 7\cubase le ai elements 7.exe (Steinberg Media Technologies GmbH -> Steinberg Media Technologies) [File not signed]
FirewallRules: [TCP Query User{9036DE2D-C359-4157-8941-A47100780E7A}C:\program files\steinberg\cubase le ai elements 7\components\vstbridgeapp.exe] => (Allow) C:\program files\steinberg\cubase le ai elements 7\components\vstbridgeapp.exe (Steinberg Media Technologies) [File not signed]
FirewallRules: [UDP Query User{0DD011DB-D3CE-4811-B622-2DFDD51A66C5}C:\program files\steinberg\cubase le ai elements 7\components\vstbridgeapp.exe] => (Allow) C:\program files\steinberg\cubase le ai elements 7\components\vstbridgeapp.exe (Steinberg Media Technologies) [File not signed]
FirewallRules: [TCP Query User{37321B4E-FDF4-4FE2-9E8D-6C2F4F5D65DB}C:\program files\steinberg\cubase le ai elements 7\cubase le ai elements 7.exe] => (Allow) C:\program files\steinberg\cubase le ai elements 7\cubase le ai elements 7.exe (Steinberg Media Technologies GmbH -> Steinberg Media Technologies) [File not signed]
FirewallRules: [UDP Query User{9A57BF31-0DEB-435C-8CC9-CFF8DB51404D}C:\program files\steinberg\cubase le ai elements 7\cubase le ai elements 7.exe] => (Allow) C:\program files\steinberg\cubase le ai elements 7\cubase le ai elements 7.exe (Steinberg Media Technologies GmbH -> Steinberg Media Technologies) [File not signed]
FirewallRules: [TCP Query User{93B8B7B2-2A58-4DB8-B0DC-A412EC9EA293}C:\program files\steinberg\cubase le ai elements 7\components\vstbridgeapp.exe] => (Allow) C:\program files\steinberg\cubase le ai elements 7\components\vstbridgeapp.exe (Steinberg Media Technologies) [File not signed]
FirewallRules: [UDP Query User{2FA7EF9D-C30D-4F17-8825-1294F73C7B8C}C:\program files\steinberg\cubase le ai elements 7\components\vstbridgeapp.exe] => (Allow) C:\program files\steinberg\cubase le ai elements 7\components\vstbridgeapp.exe (Steinberg Media Technologies) [File not signed]
FirewallRules: [{D3C78A4C-7812-4E26-91A3-E3BCB1F2BC85}] => (Allow) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe (Piriform Software Ltd -> Piriform Software)

==================== Restore Points =========================

16-09-2019 15:41:59 Windows Update
16-09-2019 17:26:00 Seba Registro malo
16-09-2019 17:27:31 Restore Operation
16-09-2019 17:49:12 Windows Update

==================== Faulty Device Manager Devices =============

Name: Microsoft Composite Battery
Description: Microsoft Composite Battery
Class Guid: {72631e54-78a4-11d0-bcf7-00aa00b7b32a}
Manufacturer: Microsoft
Service: Compbatt
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (09/16/2019 06:06:32 PM) (Source: PerfNet) (EventID: 2006) (User: )
Description: Unable to read Server Queue performance data from the Server service. The first four bytes (DWORD) of the Data section contains the status code, the second four bytes contains the IOSB.Status and the next four bytes contains the IOSB.Information.

Error: (09/16/2019 05:58:32 PM) (Source: PerfNet) (EventID: 2006) (User: )
Description: Unable to read Server Queue performance data from the Server service. The first four bytes (DWORD) of the Data section contains the status code, the second four bytes contains the IOSB.Status and the next four bytes contains the IOSB.Information.

Error: (09/16/2019 05:50:32 PM) (Source: PerfNet) (EventID: 2006) (User: )
Description: Unable to read Server Queue performance data from the Server service. The first four bytes (DWORD) of the Data section contains the status code, the second four bytes contains the IOSB.Status and the next four bytes contains the IOSB.Information.

Error: (09/16/2019 05:49:55 PM) (Source: PerfNet) (EventID: 2006) (User: )
Description: Unable to read Server Queue performance data from the Server service. The first four bytes (DWORD) of the Data section contains the status code, the second four bytes contains the IOSB.Status and the next four bytes contains the IOSB.Information.

Error: (09/16/2019 05:44:36 PM) (Source: PerfNet) (EventID: 2005) (User: )
Description: Unable to read performance data for the Server service. The first four bytes (DWORD) of the Data section contains the status code, the second four bytes contains the IOSB.Status and the next four bytes contains the IOSB.Information.

Error: (09/16/2019 05:44:33 PM) (Source: PerfNet) (EventID: 2006) (User: )
Description: Unable to read Server Queue performance data from the Server service. The first four bytes (DWORD) of the Data section contains the status code, the second four bytes contains the IOSB.Status and the next four bytes contains the IOSB.Information.

Error: (09/16/2019 05:43:56 PM) (Source: PerfNet) (EventID: 2005) (User: )
Description: Unable to read performance data for the Server service. The first four bytes (DWORD) of the Data section contains the status code, the second four bytes contains the IOSB.Status and the next four bytes contains the IOSB.Information.

Error: (09/16/2019 05:43:55 PM) (Source: PerfNet) (EventID: 2006) (User: )
Description: Unable to read Server Queue performance data from the Server service. The first four bytes (DWORD) of the Data section contains the status code, the second four bytes contains the IOSB.Status and the next four bytes contains the IOSB.Information.


System errors:
=============
Error: (09/16/2019 05:41:39 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The HP Wireless Assistant Service service failed to start due to the following error: 
The service did not respond to the start or control request in a timely fashion.

Error: (09/16/2019 05:41:39 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the HP Wireless Assistant Service service to connect.

Error: (09/16/2019 05:40:52 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The HomeGroup Listener service depends on the Server service which failed to start because of the following error: 
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

Error: (09/16/2019 05:40:52 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The HomeGroup Listener service depends on the Server service which failed to start because of the following error: 
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

Error: (09/16/2019 05:40:38 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The HomeGroup Listener service depends on the Server service which failed to start because of the following error: 
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

Error: (09/16/2019 05:38:21 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Power service terminated with the following error: 
The system cannot find the file specified.

Error: (09/16/2019 05:37:44 PM) (Source: BugCheck) (EventID: 1006) (User: )
Description: The computer has rebooted from a bugcheck.  A dump was not saved.

Error: (09/16/2019 05:22:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The CCleaner Browser Elevation Service service failed to start due to the following error: 
The system cannot find the file specified.


Windows Defender:
===================================
Date: 2019-09-16 17:44:08.458
Description: 
Windows Defender has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures.
Signatures Attempted:Current
Error Code:0x80070002
Error description:The system cannot find the file specified. 
Signature version:0.0.0.0
Engine version:0.0.0.0

Date: 2019-09-16 17:44:08.447
Description: 
Windows Defender has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version:
Update Source:Signature Update Folder
Signature Type:AntiSpyware
Update Type:Delta
Current Engine Version:1.1.15600.4
Previous Engine Version:
Error code:0x80070002
Error description:The system cannot find the file specified. 

Date: 2019-09-16 17:44:08.373
Description: 
Windows Defender has encountered an error trying to update the engine.
New Engine Version:1.1.15600.4
Previous Engine Version:
Update Source:Signature Update Folder
Error Code:0x80070002
Error description:The system cannot find the file specified. 

CodeIntegrity:
===================================

Date: 2019-08-14 09:09:36.981
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Seba\AppData\Local\Temp\ListOpenedFileDrv_64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-08-14 09:09:36.845
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Seba\AppData\Local\Temp\ListOpenedFileDrv_64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-08-14 09:09:36.715
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Seba\AppData\Local\Temp\ListOpenedFileDrv_64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-08-14 09:09:36.582
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Seba\AppData\Local\Temp\ListOpenedFileDrv_64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-03-02 12:33:20.295
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Seba\AppData\Local\Temp\ListOpenedFileDrv_64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-03-02 12:33:20.194
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Seba\AppData\Local\Temp\ListOpenedFileDrv_64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2018-12-03 19:27:02.500
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\SoundGridProtocol.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2018-12-03 19:27:02.468
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\SoundGridProtocol.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info =========================== 

BIOS: Hewlett-Packard F.09 06/22/2010
Motherboard: Hewlett-Packard 144B
Processor: Intel(R) Core(TM) i5 CPU M 430 @ 2.27GHz
Percentage of memory in use: 46%
Total physical RAM: 7989.86 MB
Available physical RAM: 4237.41 MB
Total Virtual: 15977.86 MB
Available Virtual: 12033.78 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:573.1 GB) (Free:5.72 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (RECOVERY) (Fixed) (Total:22.78 GB) (Free:3.31 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive e: (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.09 GB) FAT32

\\?\Volume{2e92f64d-f700-11e8-9e18-806e6f6e6963}\ (SYSTEM) (Fixed) (Total:0.19 GB) (Free:0.16 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 596.2 GB) (Disk ID: 41EA23B6)
Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=573.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=22.8 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=103 MB) - (Type=0C)

==================== End of Addition.txt ============================

Hola @SebaWeb

Mientras analizo los reportes hay una posible solución con esa fecha y hora.

La reconoces?

Salu2

Mientras analizo los reportes hay una posible solución con esa fecha y hora.

Mmmm… no entendí…

Hola:

Con esa fecha y hora hay una última copia de seguridad del registro realizada por el sistema. La copia de seguridad del registro contiene una copia de seguridad de todas las colmenas.

Tienes que confirmarme si esa fecha fue anterior a tu toqueteo del registro.

Salu2

Si, fue anterior. Yo importé el registro el día de ayer.

Tocando tocando y tocando, pude restaurar la copia que descargué del sitio, la que te deja todo por default. Osea, cuando descargué, me bajaron dos, una para que ande más rápido win, y otra que era volver a las configuraciones por defecto. Ahora mismo pude abrir la que me permitía volver a los valores por defecto… aunque el sonido sigue sin funcionar.

Ahora tengo salir unos minutos, pero a la vuelta intentaré cargar mi copia de seguridad… ahora estoy un poco preocupado, no tengo idea que hizo en mi registro y eso me crea un poco de paranoia.

En fin, hablamos a la vuelta.

Hola @SebaWeb

Para dejar todo como si nada hubieras tocado puedes hacer lo siguiente con mucha atención:

Herramientas necesarias.

• Un ordenador limpio con conexión a Internet.
• Un USB.

Desde el ordenador limpio (sin errores):.

• Descarga FRST.EXE a su escritorio, seleccionando la versión adecuada para la arquitectura (32 o 64bits) de su equipo. >>> ¿Cómo saber si mi Windows es de 32 o 64 bits.?
• Copie Frst.exe o Frst64.exe a su unidad USB.

Luego en ese mismo ordenador:

Inicio >>> Ejecutar >>>Escribes notepad.exe.

Ahora copia y pega estos archivos dentro del Notepad:

Start
LastRegBack: 2019-09-10 17:12
End

Lo guardas bajo el nombre de fixlist.txt en la misma USB donde se encuentra frst.exe o Frst64.exe. <<< Esto es muy importante.

Desde el equipo complicado:

Conecta el Usb en el equipo …

• Ingresa a Símbolo de Sistema del Entorno de Recuperación.:

Para acceder a las Opciones de Recuperación del Sistema:

Instrucciones para Windows 7.

• Reinicie el equipo.
• Tan pronto como se carga el BIOS comienze a apretar la tecla F8 hasta que aparezcan las opciones avanzadas de arranque.
• Selecciona Reparar el Equipo y presione enter.
• Espere a que cargue, seleccione el idioma y configuración de teclado, clic en siguiente.
• Seleccione el sistema operativo que desee reparar y haga clic en siguiente.
• Seleccione su cuenta de usuario haga clic en siguiente.

En el menú de Opciones de Recuperación del Sistema vera las siguientes opciones:

• Reparación de inicio.
• Restaurar sistema.
• Restauración de imagen del sistema.
• Diagnóstico de memoria de Windows.
• Símbolo del sistema.

Una vez en el Símbolo del Sistema:

• En la ventana de Comandos, escriba notepad.exe, presione “Enter”.
• Se abrirá la ventana del programa, en la parte superior vaya a Archivo >>> Abrir. *Seleccione “Equipo” para encontrar la letra de su Unidad USB, cierre el Bloc de Notas.

• Una vez dentro de la Ventana de Comandos escribe tal cual x:frst.exe o x:frst64.exe según sea su caso, donde x debe ser reemplazada por la letra de Su unidad Usb.
• Presione Enter.

Se abrirá la ventana del programa:

• Presionas una sola vez el botón Fix y esperas a que termine.
• Se guardara un reporte en tu unidad Usb llamado (Fixlog.txt) que pegaras en tu próxima respuesta.
• Cierras la ventana del programa si quedo abierta.
• Reinicias el equipo y entras en modo normal.

Cualquier duda nos consulta.

Para tu seguridad imprime los pasos.

Salu2

Ok, ahora mismo haré lo que dices y te comentaré.

Hola SanMar, seguí tus instrucciones al pie de la letra. Aun no he probado que tal funciona la computadora.

Dejo el reporte me dices si salió bien.

Fix result of Farbar Recovery Scan Tool (x64) Version: 14-09-2019
Ran by SYSTEM (16-09-2019 21:07:28) Run:2
Running from H:\
Boot Mode: Recovery
==============================================

fixlist content:
*****************
Star:
LastRegBack: 2019-09-10 17:12
End:
*****************

Star: => Error: No automatic fix found for this entry.
DEFAULT => copied successfully to System32\config\HiveBackup
DEFAULT => restored successfully from registry back up
SAM => copied successfully to System32\config\HiveBackup
SAM => restored successfully from registry back up
SECURITY => copied successfully to System32\config\HiveBackup
SECURITY => restored successfully from registry back up
SOFTWARE => copied successfully to System32\config\HiveBackup
SOFTWARE => restored successfully from registry back up
SYSTEM => copied successfully to System32\config\HiveBackup
SYSTEM => restored successfully from registry back up

==== End of Fixlog 21:07:43 ====

Hola @SebaWeb

Al menos se restauro con éxito.

Nos comentas como sientes el equipo.

Ademas vuelve a ejecutar FRST tal como te lo pedí en el Post 4 y nos traes reportes frescos y asi corregimos algunas entradas que se ven en tu reporte.

Salu2

Hola SanMar, aparentemente todo está funcionando con normalidad. El audio ahora funciona y parece que todo quedó bien.

Sabes, tengo muchos programas de edición de música y reinstalar todo de nuevo me lleva un tiempo que ni imaginas. Honestamente no se como agradecerte. Me has sacado mucho estrés y dolor de cabeza.

Te agradezco muchísimo tu ayuda y cuando lo hago lo hago pensando en mi hijo y mi familia. Comencé el camino de productor de música a mis 38 años y en mi familia soy el único que de momento está trabajando. En mi país todo está muy complicado. Por esa razón, creo que no tienes idea de lo mucho que me has ayudado.

De nuevo gracias y cualquier cosa por aquí estaré.

Saludos!!

Hola @SebaWeb

Soy Argentina, así que conozco de país complicado!

Pega un nuevo reporte fresco de FRST, que hay algunas entradas para eliminar.

Salu2