Hola
Te dejo el Log:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 30.01.2019
Ran by Vanhelsing (administrator) on VANHELSING-PC (02-02-2019 22:57:23)
Running from C:\Users\Vanhelsing\Desktop
Loaded Profiles: Vanhelsing (Available Profiles: Vanhelsing)
Platform: Windows 7 Home Basic Service Pack 1 (X64) Language: Español (España, internacional)
Internet Explorer Version 11 (Default browser not detected!)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\RocketDock\RocketDock.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(MAGIX®) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Opera Software) C:\Program Files (x86)\Opera\58.0.3135.53\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\58.0.3135.53\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\58.0.3135.53\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\58.0.3135.53\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\58.0.3135.53\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\58.0.3135.53\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\58.0.3135.53\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\58.0.3135.53\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\58.0.3135.53\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\58.0.3135.53\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\58.0.3135.53\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\58.0.3135.53\opera.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM-x32\...\Winlogon: [Userinit] c:\windows\syswow64\userinit.exe,c:\program files (x86)\neuratron\audioscore ultimate 8 demo\neuratron audioscoresrv.exe,
HKLM\...\Policies\Explorer: [ForceActiveDesktopOn] C:\Windows\System32\0 [0 2016-05-15] ()
HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-21-3507022562-1330472618-3652623963-1000\...\Run: [RocketDock] => C:\Program Files (x86)\RocketDock\RocketDock.exe [495616 2007-09-02] ()
HKU\S-1-5-21-3507022562-1330472618-3652623963-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-3507022562-1330472618-3652623963-1000\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\System32\frapsv64.dll [105984 2018-09-25] (Beepa P/L)
HKLM\...\Drivers32: [msacm.l3codecp] => C:\Windows\System32\l3codecp.acm [182272 2009-07-13] (Fraunhofer Institut Integrierte Schaltungen IIS)
HKLM\...\Drivers32: [vidc.pDAD] => C:\Windows\System32\prodad-codec.dll [607256 2015-08-27] (proDAD GmbH)
HKLM\...\Drivers32: [VIDC.FICV] => C:\Windows\System32\ficvdec_x64.dll [652288 2013-05-28] ()
HKLM\...\Drivers32-x32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [94208 2018-09-25] (Beepa P/L)
HKLM\...\Drivers32-x32: [msacm.vorbis] => C:\Windows\SysWOW64\vorbis.acm [1554944 2015-03-11] (HMS hxxp://hp.vector.co.jp/authors/VA012897/)
HKLM\...\Drivers32-x32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software)
HKLM\...\Drivers32-x32: [msacm.l3codecp] => C:\Windows\SysWOW64\l3codecp.acm [220672 2009-07-13] (Fraunhofer Institut Integrierte Schaltungen IIS)
HKLM\...\Drivers32-x32: [VIDC.FICV] => C:\Windows\SysWOW64\ficvdec_x86.dll [641024 2013-05-28] ()
HKLM\...\Drivers32-x32: [vidc.x264] => C:\Program Files (x86)\x264vfw\x264vfw.dll [3649536 2013-03-17] (x264vfw project)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2018-12-14] (Google Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll [2009-10-02] (Broadcom Corporation.)
HKLM\Software\...\Authentication\Credential Providers: [{67187239-0780-4d9b-895B-7F0968AA474E}] -> C:\Program Files (x86)\CyberLink\YouCam7\CLCredProv\x64\CLCredProv.dll [2017-05-16] (CyberLink)
HKLM\Software\...\Authentication\Credential Provider Filters: [{67187239-0780-4d9b-895B-7F0968AA474E}] -> C:\Program Files (x86)\CyberLink\YouCam7\CLCredProv\x64\CLCredProv.dll [2017-05-16] (CyberLink)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 186.130.128.111 200.63.155.64
Tcpip\..\Interfaces\{ABA4E354-C46C-4657-BBED-EC7EDD9C9BCC}: [DhcpNameServer] 186.130.128.111 200.63.155.64
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKU\S-1-5-21-3507022562-1330472618-3652623963-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3507022562-1330472618-3652623963-1000 -> {DB5BFFD0-F555-4008-AFDE-DA0571CFDFFE} URL = hxxps://www.google.com/search?q={searchTerms}
BHO: Kaspersky Protection -> {EC1E29BB-F56A-45D8-B023-D3EF710FA0E0} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\IEExt\ie_plugin.dll [2019-02-01] (AO Kaspersky Lab)
BHO-x32: Kaspersky Protection -> {EC1E29BB-F56A-45D8-B023-D3EF710FA0E0} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\IEExt\ie_plugin.dll [2019-02-01] (AO Kaspersky Lab)
Toolbar: HKLM - Kaspersky Protection Toolbar - {C500C267-63BF-451F-8797-4D720C9A2ED9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\IEExt\ie_plugin.dll [2019-02-01] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {C500C267-63BF-451F-8797-4D720C9A2ED9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\IEExt\ie_plugin.dll [2019-02-01] (AO Kaspersky Lab)
FireFox:
========
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\FFExt\light_plugin_firefox\addon.xpi [2019-02-01]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: (HP Smart Web Printing) - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2017-06-02] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_114.dll [2019-01-09] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1234204.dll [2018-06-06] (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] ()
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-07-31] (Google, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [No File]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems Inc.)
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Profile: C:\Users\Vanhelsing\AppData\Local\Google\Chrome\User Data\Default [2019-01-31]
CHR Extension: (Presentaciones) - C:\Users\Vanhelsing\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-12-14]
CHR Extension: (Documentos) - C:\Users\Vanhelsing\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-12-14]
CHR Extension: (Google Drive) - C:\Users\Vanhelsing\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-12-14]
CHR Extension: (AdGuard AdBlocker) - C:\Users\Vanhelsing\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2019-01-25]
CHR Extension: (YouTube) - C:\Users\Vanhelsing\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-12-14]
CHR Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\Vanhelsing\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-01-25]
CHR Extension: (Hojas de cálculo) - C:\Users\Vanhelsing\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-12-14]
CHR Extension: (AdBlock) - C:\Users\Vanhelsing\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-01-31]
CHR Extension: (Conversor de vídeo) - C:\Users\Vanhelsing\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcjjnhgakghmggnimjkldjmmpabhnhne [2018-12-14]
CHR Extension: (Ghostery – Bloqueador de anuncios para privacidad) - C:\Users\Vanhelsing\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2019-01-25]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Vanhelsing\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-12-14]
CHR Extension: (Gmail) - C:\Users\Vanhelsing\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-12-14]
CHR Extension: (Chrome Media Router) - C:\Users\Vanhelsing\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-14]
CHR HKLM\...\Chrome\Extension: [amkpcclbbgegoafihnpgomddadjhcadd] - hxxps://chrome.google.com/webstore/detail/amkpcclbbgegoafihnpgomddadjhcadd
CHR HKLM-x32\...\Chrome\Extension: [amkpcclbbgegoafihnpgomddadjhcadd] - hxxps://chrome.google.com/webstore/detail/amkpcclbbgegoafihnpgomddadjhcadd
Opera:
=======
OPR Extension: (Ghostery – Bloqueador de anuncios para privacidad) - C:\Users\Vanhelsing\AppData\Roaming\Opera Software\Opera Stable\Extensions\bbkekonodcdmedgffkkbgmnnekbainbg [2018-12-06]
OPR Extension: (AdGuard AdBlocker) - C:\Users\Vanhelsing\AppData\Roaming\Opera Software\Opera Stable\Extensions\bopfaehpakahokaelnomggbohfbimcia [2018-10-03]
OPR Extension: (WOT: Web of Trust, valoraciones de reputación de sitios web) - C:\Users\Vanhelsing\AppData\Roaming\Opera Software\Opera Stable\Extensions\eeokceolphhfjdfcibaiiopmekmcbedp [2018-07-18]
OPR Extension: (Bookmarks Import & Export) - C:\Users\Vanhelsing\AppData\Roaming\Opera Software\Opera Stable\Extensions\omhcddilnfoiiplehpjihipcocdplljn [2016-10-28]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2917864 2018-12-13] (Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2709480 2018-12-13] (Adobe Systems, Incorporated)
S2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [85304 2018-10-16] (Apple Inc.)
S2 AVP19.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\avp.exe [619640 2018-02-28] (AO Kaspersky Lab)
R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1253376 2009-08-27] (MAGIX AG) [File not signed]
R2 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [3276800 2008-08-07] (MAGIX®) [File not signed]
S4 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S3 klvssbridge64_19.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\vssbridge64.exe [414352 2019-02-01] (AO Kaspersky Lab)
S3 KSDE3.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksde.exe [617016 2018-02-28] (AO Kaspersky Lab)
S2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [File not signed]
S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [File not signed]
S2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [253776 2018-12-18] (Razer Inc)
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [535424 2018-12-18] (Razer Inc.)
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [290352 2018-12-19] (Razer Inc.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11660528 2018-12-07] (TeamViewer GmbH)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AmUStor; C:\Windows\System32\drivers\AmUStor.SYS [118184 2018-05-14] ()
R3 anvsnddrv; C:\Windows\System32\drivers\anvsnddrv.sys [33872 2011-11-28] (AnvSoft Inc.)
S3 aswTap; C:\Windows\System32\DRIVERS\aswTap.sys [53904 2018-05-17] (The OpenVPN Project)
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2015-06-07] ()
S3 Btcsrusb; C:\Windows\System32\Drivers\btcusb.sys [42536 2016-06-16] (IVT Corporation.)
R0 BtHidBus; C:\Windows\System32\Drivers\BtHidBus.sys [24328 2008-07-31] (IVT Corporation.)
R3 CLMirrorDriver; C:\Windows\System32\DRIVERS\CLMirrorDriver.sys [21264 2018-05-11] (CyberLink)
R3 clwvd7; C:\Windows\System32\DRIVERS\clwvd7.sys [49944 2016-06-02] (CyberLink Corporation)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [243400 2018-01-27] (AO Kaspersky Lab)
S3 DFX11_1; C:\Windows\System32\drivers\dfx11_1x64.sys [28008 2015-08-31] (Windows (R) Win 7 DDK provider)
R3 DFX12; C:\Windows\System32\drivers\dfx12x64.sys [29688 2015-11-12] (Windows (R) Win 7 DDK provider)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2016-04-10] (DT Soft Ltd)
R1 HWiNFO32; C:\windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-04-22] (REALiX(tm))
S1 hwinterface; C:\Windows\SysWOW64\Drivers\hwinterface.sys [3026 2018-07-15] (Logix4u) [File not signed]
S3 IvtBtBUs; C:\Windows\System32\Drivers\IvtBtBus.sys [31624 2008-07-02] (IVT Corporation.)
S3 keycrypt; C:\Windows\System32\DRIVERS\KeyCrypt64.sys [158848 2016-04-13] (Zemana Ltd.)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [528576 2018-02-20] (AO Kaspersky Lab)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [73416 2018-12-12] (AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [123144 2018-12-12] (AO Kaspersky Lab)
R1 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [89168 2018-12-12] (AO Kaspersky Lab)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [218720 2019-02-01] (AO Kaspersky Lab)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [1214752 2019-02-01] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1129256 2019-02-01] (AO Kaspersky Lab)
R1 klim6; C:\Windows\System32\DRIVERS\klim6.sys [56520 2018-02-12] (AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [58056 2018-01-15] (AO Kaspersky Lab)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [83496 2017-12-11] (AO Kaspersky Lab)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [50648 2017-05-30] (AO Kaspersky Lab)
R3 kltap; C:\Windows\System32\DRIVERS\kltap.sys [48080 2018-02-12] (The OpenVPN Project)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [81632 2017-11-07] (AO Kaspersky Lab)
R1 klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [177472 2018-12-12] (AO Kaspersky Lab)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [203968 2018-02-24] (AO Kaspersky Lab)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2015-06-07] ()
R3 mlkumidi; C:\Windows\System32\drivers\mlkumidi.sys [57408 2012-08-29] (MusicLab, Inc.)
S3 pwdrvio; C:\windows\system32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\windows\system32\pwdspio.sys [12504 2013-09-30] ()
S3 REN2CAP_DRIVER; C:\Windows\System32\drivers\ren2cap.sys [46728 2012-01-05] ()
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [28400 2018-12-27] () [File not signed]
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [51808 2018-02-08] (Synaptics Incorporated)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [394296 2016-03-26] (Duplex Secure Ltd.)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
S3 WiseHDInfo; C:\windows\WiseHDInfo64.dll [14800 2017-01-20] (wisecleaner.com) [File not signed]
S1 MpKsl577c14db; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{5485FB1B-D983-417A-AF15-3307AE2F1C4E}\MpKsl577c14db.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-02-02 22:57 - 2019-02-02 22:58 - 000019749 _____ C:\Users\Vanhelsing\Desktop\FRST.txt
2019-02-02 01:52 - 2019-02-02 01:53 - 000000000 ____D C:\Users\Vanhelsing\AppData\Roaming\Screaming Bee
2019-02-02 01:52 - 2019-02-02 01:53 - 000000000 ____D C:\ProgramData\Screaming Bee
2019-02-02 01:52 - 2019-02-02 01:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Screaming Bee
2019-02-02 01:52 - 2019-02-02 01:52 - 000000000 ____D C:\Program Files (x86)\Screaming Bee
2019-02-02 01:50 - 2019-02-02 01:50 - 000000000 ____D C:\Users\Vanhelsing\Desktop\MorphVOX Pro Crack 2017
2019-02-02 01:50 - 2019-02-02 01:50 - 000000000 ____D C:\Users\Vanhelsing\Desktop\Cool Voices For MorphVOX Pro
2019-02-02 01:37 - 2019-02-02 01:38 - 001057152 _____ C:\Users\Vanhelsing\Desktop\e37a6f16-3da1-4ee7-973f-aff0791349b9.mp4
2019-02-02 00:12 - 2019-02-02 00:12 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Light Force
2019-02-01 23:56 - 2019-02-01 23:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2019-02-01 23:56 - 2019-02-01 23:52 - 000002091 _____ C:\Users\Vanhelsing\Documents\Safe Money.lnk
2019-02-01 23:56 - 2019-02-01 23:52 - 000002045 _____ C:\Users\Vanhelsing\Documents\Kaspersky Internet Security.lnk
2019-02-01 23:53 - 2019-02-01 23:53 - 000001174 _____ C:\Users\Vanhelsing\Documents\Kaspersky Secure Connection.lnk
2019-02-01 23:53 - 2019-02-01 23:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Secure Connection
2019-02-01 23:52 - 2019-02-02 22:21 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2019-02-01 23:52 - 2019-02-01 23:53 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab
2019-02-01 23:52 - 2019-02-01 23:52 - 001214752 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klhk.sys
2019-02-01 23:52 - 2019-02-01 23:52 - 001129256 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klif.sys
2019-02-01 23:52 - 2019-02-01 23:52 - 000218720 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klflt.sys
2019-02-01 23:52 - 2019-02-01 23:52 - 000152960 _____ (AO Kaspersky Lab) C:\Windows\system32\klhkum.dll
2019-02-01 23:52 - 2013-05-06 08:13 - 000110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll
2019-02-01 23:48 - 2019-02-01 23:49 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2019-02-01 23:22 - 2019-02-01 23:24 - 000000000 ____D C:\ProgramData\BullGuard
2019-02-01 00:35 - 2019-02-02 22:57 - 000000000 ____D C:\FRST
2019-02-01 00:35 - 2019-02-01 00:36 - 000016004 _____ C:\Users\Vanhelsing\Desktop\Fixlog.txt
2019-02-01 00:33 - 2019-02-01 00:33 - 002428928 _____ (Farbar) C:\Users\Vanhelsing\Desktop\FRST64.exe
2019-02-01 00:32 - 2019-02-01 00:32 - 000797760 _____ C:\Users\Vanhelsing\Desktop\delfix.exe
2019-02-01 00:28 - 2019-02-01 00:31 - 000000489 _____ C:\DelFix.txt
2019-01-31 12:39 - 2019-01-31 12:45 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Steel Engraved
2019-01-31 01:06 - 2019-01-31 01:06 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Within Temptation - Resist (2019)
2019-01-29 01:47 - 2019-01-29 01:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2019-01-26 23:32 - 2019-01-26 23:32 - 000000000 ____D C:\ProgramData\Ubisoft
2019-01-26 22:58 - 2019-01-26 22:58 - 000000000 ____D C:\Program Files (x86)\Ubisoft
2019-01-25 00:06 - 2019-01-25 00:06 - 000000000 ____D C:\Users\Vanhelsing\Documents\FX Interactive
2019-01-24 23:55 - 2019-01-24 23:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FX Interactive
2019-01-24 23:55 - 2019-01-24 23:55 - 000000000 ____D C:\Program Files (x86)\FX Interactive
2019-01-24 23:31 - 2019-01-31 01:47 - 000000000 ____D C:\Program Files (x86)\System Ninja
2019-01-24 23:31 - 2019-01-24 23:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Ninja
2019-01-22 23:23 - 2019-01-22 23:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project 64 2.0
2019-01-22 22:50 - 2019-01-22 22:50 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Skid Row - Skid Row (30th Anniversary Deluxe Edition) (2019)
2019-01-22 22:32 - 2019-01-22 23:23 - 000000000 ____D C:\Users\Vanhelsing\Documents\Nintendo 64+Pimball+Sega Genesis+Super Nintendo
2019-01-22 22:30 - 2019-01-23 11:15 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Van Halen - Essentials (2019)
2019-01-19 22:52 - 2019-01-19 22:54 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Kane Roberts - The New Normal (Japanese Edition) (2019)
2019-01-19 22:51 - 2019-01-19 23:37 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Metal Inquisitor - Panopticon
2019-01-19 22:51 - 2019-01-19 23:35 - 000000000 ____D C:\Users\Vanhelsing\Downloads\OOMPH! - Ritual (Limited Edition) (2019)
2019-01-19 22:51 - 2019-01-19 22:53 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Altitudes & Attitude - Get It Out
2019-01-19 22:51 - 2019-01-19 22:51 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Spellwitch - The Witching Hour (2018)
2019-01-19 22:51 - 2019-01-19 22:51 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Brutality - Antecedent Offerings (EP)(2018)
2019-01-19 22:50 - 2019-01-19 22:52 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Evergrey - The Atlantic (2019)
2019-01-19 22:50 - 2019-01-19 22:51 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Sister Rose - No Cause For Distraction (2019)
2019-01-18 23:02 - 2019-01-18 23:06 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Stranger - Pretty Angels (1990)
2019-01-18 23:00 - 2019-01-18 23:11 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Stranger 1985 The Bell (Remastered 2005)
2019-01-18 22:59 - 2019-01-21 20:34 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Arcánima - Cambia El Destino (2019)
2019-01-18 22:59 - 2019-01-18 23:02 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Stranger - Stranger (2013)
2019-01-18 22:59 - 2019-01-18 23:00 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Stranger - Sailing Out (1990)
2019-01-18 22:59 - 2019-01-18 23:00 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Ancient Bards - Origine (The Black Crystal Sword Saga Part 2) (2019)
2019-01-18 02:25 - 2019-01-18 02:31 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Toto
2019-01-18 02:25 - 2019-01-18 02:31 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Arch Enemy - Covered In Blood (Compilation) (2019)
2019-01-18 02:25 - 2019-01-18 02:28 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Overkill
2019-01-18 02:25 - 2019-01-18 02:26 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Flotsam and Jetsam - The End of Chaos (2019)all tracks
2019-01-18 02:25 - 2019-01-18 02:25 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Aphylon
2019-01-17 22:00 - 2019-01-17 22:07 - 000000000 ____D C:\Users\Vanhelsing\Documents\W7
2019-01-17 21:49 - 2019-01-17 21:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RocketDock
2019-01-17 21:49 - 2019-01-17 21:49 - 000000000 ____D C:\Program Files (x86)\RocketDock
2019-01-16 22:48 - 2019-01-24 23:19 - 000000000 ____D C:\Program Files (x86)\VictorVal
2019-01-16 01:15 - 2019-01-16 21:12 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Arch Enemy (512 Kbps)
2019-01-15 01:06 - 2019-01-15 01:06 - 000000000 ____D C:\Users\Vanhelsing\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\La Santa Biblia 3D para PC
2019-01-15 01:06 - 2019-01-15 01:06 - 000000000 ____D C:\Program Files (x86)\La Santa Biblia 3D para PC
2019-01-14 03:19 - 2019-01-14 03:19 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Dream Theater - Fall into the Light (Single) (2019)
2019-01-14 00:02 - 2019-01-14 00:02 - 000001011 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 14.lnk
2019-01-13 23:19 - 2019-02-02 09:41 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2019-01-13 23:15 - 2019-01-13 23:15 - 000000000 ____D C:\Users\Vanhelsing\Documents\Xion
2019-01-13 23:11 - 2019-01-13 23:11 - 000001674 _____ C:\Users\Vanhelsing\Documents\DFX.lnk
2019-01-13 23:11 - 2019-01-13 23:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DFX Audio Enhancer
2019-01-13 23:10 - 2019-01-13 23:12 - 000000000 ____D C:\Program Files (x86)\DFX
2019-01-13 23:10 - 2019-01-13 23:10 - 000000000 ____D C:\Users\Vanhelsing\AppData\Roaming\vlc
2019-01-13 23:06 - 2019-01-13 23:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\r2 Studios
2019-01-13 23:06 - 2019-01-13 23:06 - 000000000 ____D C:\Program Files (x86)\r2 Studios
2019-01-13 23:02 - 2019-01-13 23:02 - 000000000 ____D C:\Users\Vanhelsing\AppData\Roaming\CD Label Designer
2019-01-13 23:02 - 2019-01-13 23:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CD Label Designer
2019-01-13 23:02 - 2019-01-13 23:02 - 000000000 ____D C:\Program Files (x86)\CD Label Designer
2019-01-13 22:23 - 2019-01-14 01:09 - 000000000 ____D C:\Users\Vanhelsing\Documents\Skins
2019-01-13 12:40 - 2019-01-13 12:46 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Steeler
2019-01-13 12:39 - 2019-01-13 12:47 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Axel Rudi Pell
2019-01-13 12:39 - 2019-01-13 12:41 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Axel Rudi Pell - Knights Call (2018)
2019-01-12 02:40 - 2019-01-22 11:35 - 000000000 ____D C:\Users\Vanhelsing\AppData\Roaming\TeamViewer
2019-01-11 02:43 - 2019-01-12 15:16 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Starbreaker - Dysphoria (Japanese Edition) (2019)
2019-01-11 02:42 - 2019-01-12 15:21 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Black Rain - Requiem for a Killer 2015
2019-01-11 02:42 - 2019-01-12 03:13 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Powerwolf
2019-01-11 02:42 - 2019-01-11 02:44 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Unmasked - Behind the Mask (2019)
2019-01-11 02:42 - 2019-01-11 02:44 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Powergame
2019-01-11 02:42 - 2019-01-11 02:44 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Black Rain - Totalitarian Order (2019)
2019-01-08 23:40 - 2019-01-08 23:41 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Warrant - Greatest & Latest (2016)
2019-01-08 23:37 - 2019-01-08 23:37 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Nitevigil - State Of Emergency (EP)1988
2019-01-08 00:51 - 2019-01-08 23:46 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Warrant - Cherry Pie (Rock Candy Remastered 2017)
2019-01-08 00:48 - 2019-01-08 23:36 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Shred Attack - Shred Attack 2018
2019-01-08 00:48 - 2019-01-08 00:51 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Spitfire
2019-01-08 00:48 - 2019-01-08 00:48 - 000000000 ____D C:\Users\Vanhelsing\Downloads\Warrant - Inside Out (Compilation)
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-02-02 21:56 - 2011-07-14 04:56 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2019-02-02 17:27 - 2018-05-20 01:53 - 000000000 ____D C:\Users\Vanhelsing\AppData\Roaming\uTorrent
2019-02-02 09:53 - 2009-07-14 01:45 - 000022624 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-02-02 09:53 - 2009-07-14 01:45 - 000022624 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-02-02 09:40 - 2009-07-14 02:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-02-02 02:42 - 2018-12-16 21:36 - 000000000 ____D C:\Program Files (x86)\SpeedFan
2019-02-02 02:01 - 2014-06-02 18:05 - 000000000 ____D C:\ProgramData\Package Cache
2019-02-02 01:52 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\inf
2019-02-02 01:28 - 2016-07-17 02:13 - 000003864 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1468732425
2019-02-02 01:28 - 2016-07-17 02:12 - 000000000 ____D C:\Program Files (x86)\Opera
2019-02-01 23:56 - 2016-10-26 02:20 - 000000000 ____D C:\Program Files\Common Files\AV
2019-02-01 23:48 - 2014-10-02 21:04 - 000000000 ____D C:\Users\Vanhelsing\Documents\Cracks varios
2019-02-01 23:23 - 2009-07-14 00:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2019-02-01 23:23 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy
2019-02-01 23:01 - 2014-12-11 00:48 - 000000000 ____D C:\Users\Public\Documents\RonyaSoft
2019-02-01 00:38 - 2015-11-03 00:49 - 000000008 __RSH C:\ProgramData\ntuser.pol
2019-02-01 00:36 - 2018-10-30 00:37 - 000000000 ____D C:\Windows\System32\Tasks\Avast Software
2019-02-01 00:36 - 2014-08-03 23:50 - 000000000 ____D C:\Windows\pss
2019-02-01 00:08 - 2018-03-13 23:51 - 000000000 ____D C:\Users\Vanhelsing\AppData\Local\CrashDumps
2019-01-29 01:47 - 2018-10-19 23:43 - 000000000 ____D C:\Program Files\iTunes
2019-01-29 01:47 - 2014-06-21 00:07 - 000000000 ____D C:\Program Files\iPod
2019-01-26 23:28 - 2009-07-14 02:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2019-01-26 22:58 - 2011-07-14 04:35 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2019-01-26 22:54 - 2013-12-05 22:13 - 000000000 ____D C:\Archivos de programa
2019-01-26 22:34 - 2013-12-06 18:25 - 000000000 ____D C:\Users\Vanhelsing\AppData\Roaming\AnvSoft
2019-01-24 23:56 - 2018-12-10 00:40 - 000000000 ____D C:\Users\Vanhelsing\Documents\SkidRow
2019-01-24 23:07 - 2016-04-10 22:35 - 000000000 ____D C:\Users\Vanhelsing\AppData\Roaming\DAEMON Tools Pro
2019-01-24 23:03 - 2018-09-08 12:39 - 000000000 ___HD C:\Windows\msdownld.tmp
2019-01-24 23:03 - 2013-12-06 00:32 - 000000000 ____D C:\Windows\SysWOW64\directx
2019-01-22 23:24 - 2018-09-11 21:03 - 000000000 ____D C:\Program Files (x86)\Project64 2.1
2019-01-22 22:37 - 2013-12-06 18:02 - 000000000 ____D C:\Games
2019-01-22 22:36 - 2013-12-06 00:31 - 000000000 ____D C:\Users\Vanhelsing\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2019-01-22 21:47 - 2015-12-02 17:35 - 000000000 ____D C:\Users\Vanhelsing\Documents\Torrents para descargar
2019-01-22 14:13 - 2013-12-11 23:07 - 000000000 ____D C:\Users\Vanhelsing\Documents\Youcam
2019-01-22 01:45 - 2016-05-01 22:25 - 000000000 ____D C:\Users\Vanhelsing\Documents\Programas Portables
2019-01-22 00:18 - 2013-12-06 00:59 - 000000000 ____D C:\Users\Vanhelsing\AppData\Roaming\PhotoScape
2019-01-21 20:46 - 2017-02-27 23:14 - 000003156 _____ C:\Windows\SysWOW64\ealregsnapshot1.reg
2019-01-21 20:45 - 2015-11-27 03:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2019-01-21 20:45 - 2015-11-27 03:17 - 000000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2019-01-19 22:00 - 2014-01-11 02:17 - 000000000 ____D C:\Users\Vanhelsing\AppData\Local\ElevatedDiagnostics
2019-01-18 00:55 - 2018-12-10 00:55 - 000000451 _____ C:\Users\Vanhelsing\Documents\911.CT
2019-01-16 23:55 - 2018-03-11 01:13 - 000000000 ____D C:\Users\Vanhelsing\Documents\BioWare
2019-01-16 23:50 - 2014-08-02 21:44 - 000466456 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll
2019-01-16 23:50 - 2014-08-02 21:44 - 000444952 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll
2019-01-16 23:50 - 2014-08-02 21:44 - 000122904 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll
2019-01-16 23:50 - 2014-08-02 21:44 - 000109080 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll
2019-01-15 01:28 - 2013-12-11 23:07 - 000000000 ____D C:\Users\Public\CyberLink
2019-01-14 16:31 - 2016-09-20 00:59 - 000000000 ____D C:\Users\Vanhelsing\Documents\Camtasia Studio
2019-01-14 16:29 - 2018-11-09 22:58 - 005462032 _____ C:\Windows\system32\FNTCACHE.DAT
2019-01-14 00:06 - 2017-12-27 01:47 - 000222584 _____ C:\Users\Vanhelsing\AppData\Local\GDIPFONTCACHEV1.DAT
2019-01-13 23:15 - 2016-02-22 22:48 - 000000000 ____D C:\Users\Vanhelsing\AppData\Roaming\r2 Studios
2019-01-13 02:17 - 2016-06-09 01:59 - 000000000 ____D C:\Users\Vanhelsing\AppData\Roaming\AIMP
2019-01-09 01:27 - 2016-12-15 00:26 - 000004496 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2019-01-09 01:27 - 2016-12-14 22:48 - 000004320 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2019-01-09 01:27 - 2013-12-11 23:38 - 000842240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2019-01-09 01:27 - 2013-12-11 23:38 - 000175104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-01-09 01:27 - 2013-12-11 23:37 - 000000000 ____D C:\Windows\system32\Macromed
2019-01-09 00:26 - 2018-03-14 02:26 - 000004512 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-01-08 00:48 - 2018-12-17 01:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer Cortex
2019-01-08 00:34 - 2014-10-19 00:13 - 000000000 ____D C:\Users\Vanhelsing\AppData\Roaming\Audacity
==================== Files in the root of some directories =======
2014-08-12 01:16 - 2014-08-12 01:23 - 000016952 ____T (Un4seen Developments) C:\Users\Vanhelsing\AppData\Roaming\Microsoft\1eaadjc.dll
2014-08-12 01:16 - 2014-08-12 01:23 - 000018724 ____T () C:\Users\Vanhelsing\AppData\Roaming\Microsoft\bass.dll
2014-08-12 01:16 - 2014-08-12 01:23 - 000014392 ____T (Un4seen Developments) C:\Users\Vanhelsing\AppData\Roaming\Microsoft\kfgresk.dll
2014-08-12 01:16 - 2014-08-12 01:23 - 000013984 ____T () C:\Users\Vanhelsing\AppData\Roaming\Microsoft\mjcriu.dll
2014-08-12 01:16 - 2014-08-12 01:23 - 000010808 ____T (Un4seen Developments) C:\Users\Vanhelsing\AppData\Roaming\Microsoft\peaadje.dll
2014-08-12 01:16 - 2014-08-12 01:23 - 000026200 ____T ((: JOBnik! :) [Arthur Aminov, ISRAEL]) C:\Users\Vanhelsing\AppData\Roaming\Microsoft\qwadjb.dll
2014-08-12 01:16 - 2014-08-12 01:23 - 000015416 ____T (Un4seen Developments) C:\Users\Vanhelsing\AppData\Roaming\Microsoft\rsaadjd.dll
2018-07-04 23:56 - 2018-07-04 23:56 - 000000001 _____ () C:\Users\Vanhelsing\AppData\Local\llftool.4.40.agreement
2018-07-05 00:12 - 2018-07-05 00:12 - 000000019 _____ () C:\Users\Vanhelsing\AppData\Local\llftool.license
2018-09-29 11:28 - 2018-09-29 11:28 - 000000000 _____ () C:\Users\Vanhelsing\AppData\Local\oobelibMkey.log
2018-08-23 23:47 - 2018-08-23 23:47 - 000003384 _____ () C:\Users\Vanhelsing\AppData\Local\recently-used.xbel
2018-06-15 02:44 - 2018-06-15 02:44 - 000000017 _____ () C:\Users\Vanhelsing\AppData\Local\resmon.resmoncfg
Some files in TEMP:
====================
2019-02-01 23:22 - 2019-02-01 23:23 - 069196560 _____ (BullGuard Ltd.) C:\Users\Vanhelsing\AppData\Local\Temp\BullGuard Internet Security Setup.exe
2019-02-02 02:05 - 2019-02-02 02:42 - 000192512 _____ () C:\Users\Vanhelsing\AppData\Local\Temp\sfamcc00001.dll
2019-02-02 02:05 - 2019-02-02 02:42 - 000158720 _____ () C:\Users\Vanhelsing\AppData\Local\Temp\sfareca00001.dll
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\dllhost.exe => File is digitally signed
C:\Windows\SysWOW64\dllhost.exe => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2019-02-02 11:29
==================== End of FRST.txt ============================