Me ayudan, mi pc posiblemente esté infectada

Hola, dejo los dos reportes y pase el ccleaner y de momento todo bien.

Les comento un poco más mi problema, por ahí me pueden ayudar.

Desde ayer comencé a tener problemas con los editories de audio y/o reproductores. En otras palabras tengo problemas con el sonido. Tengo tarjeta interna de la notebook y tengo una placa de sonido Focusrite. Con ambas el sonido se me entrecorta.

Trabajando en uno de los editores de musica, pareciera como que el micro tuviera picos de mucho trabajo por eso mi sonido se entrecorta.

He configurado desde panel de control para que tenga el mejor desempeño aunque gaste más energía, y he visto el tema del bufer en los programas de música.

No se si tengo un virus que me está trabando en segundo plano o tengo algún problema de drives los cuales ya remplacé- NO se… me estoy volviendo loco y necesito de su ayuda-

Espero me puedan comentar algo.

Hola

Vamos a revisar tu equipo para ver si hay infecciones, pero ese ya sería otro problema diferente.

Desactiva temporalmente el Antivirus >> Cómo deshabilitar temporalmente su Antivirus

Descarga Farbar Recovery Scan Tool.en el escritorio, seleccionando la versión adecuada para la arquitectura(32 o 64bits) de tu equipo. :arrow_forward: ¿Cómo saber si mi Windows es de 32 o 64 bits.?

  • Ejecuta FRST.exe.
  • En el mensaje de la ventana del Disclaimer, pulsamos Yes
  • En la ventana principal pulsamos en el botón Scan y esperamos a que concluya el proceso.
  • Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.

Pon los dos reportes generados.

Debes copiarlos y pegarlos con todo su contenido y usaras varios mensajes si recibes un mensaje de error indicando que es muy largo(mas de 50.000 caracteres aprox.).

Un saludo


Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-08-2019

    Ran by Seba (administrator) on SEBA-PC (Hewlett-Packard HP Pavilion dv7 Notebook PC) (19-08-2019 09:57:27)

    Running from C:\Users\Seba\Desktop

    Loaded Profiles: Seba (Available Profiles: Seba)

    Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: English (United States)

    Internet Explorer Version 11 (Default browser: Chrome)

    Boot Mode: Normal

    Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

    ==================== Processes (Whitelisted) =================

    (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

    () [File not signed] C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe

    (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe

    (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe

    (Adobe Systems Incorporated -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe

    (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe

    (Avid Technology, Inc.) [File not signed] C:\Program Files\Avid\Pro Tools\MMERefresh.exe

    (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe

    (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe

    (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe

    (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe

    (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe

    (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe

    (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe

    (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe

    (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.RealTime.Client.exe

    (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.RealTimeOptimizer.exe

    (DeviceVM Inc. -> DeviceVM, Inc.) C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe

    (DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\DigitalPersona\Bin\DpHostW.exe

    (Focusrite Audio Engineering, Ltd.) [File not signed] C:\Program Files\FocusriteUSB\Focusrite Notifier.exe

    (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe

    (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe

    (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    (Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe

    (Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe

    (Hewlett-Packard Company -> Hewlett-Packard) C:\Windows\System32\hpservice.exe

    (Hewlett-Packard Company) [File not signed] C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

    (HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe

    (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

    (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.EXE

    (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe

    (Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe

    (Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe

    (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe

    (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

    (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE

    (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe

    (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe

    (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe

    (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe

    (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe

    (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe

    (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe

    (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe

    (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\stacsv64.exe

    (PACE Anti-Piracy, Inc. -> PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe

    (Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.5.21.0\CCleanerBrowserCrashHandler.exe

    (Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.5.21.0\CCleanerBrowserCrashHandler64.exe

    (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe

    (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe

    (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe

    (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe

    (Sonic Solutions -> CinemaNow, Inc.) C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemaNowSvc.exe

    (Validity Sensors, Inc -> Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe

    ==================== Registry (Whitelisted) ===========================

    (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

    HKLM\...\Run: [] => [X]

    HKLM\...\Run: [Focusrite Notifier] => C:\Program Files\FocusriteUSB\Focusrite Notifier.exe [3949568 2019-06-20] (Focusrite Audio Engineering, Ltd.) [File not signed]

    HKLM-x32\...\Run: [] => [X]

    HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [99048 2019-07-25] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

    HKLM-x32\...\Run: [Avira System Speedup User Starter] => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [330008 2019-08-15] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

    HKU\S-1-5-21-525092146-1667884894-650739964-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [83523944 2019-08-08] (Skype Software Sarl -> Skype Technologies S.A.)

    HKU\S-1-5-21-525092146-1667884894-650739964-1001\...\Run: [] => [X]

    HKU\S-1-5-21-525092146-1667884894-650739964-1001\...\Run: [GoogleChromeAutoLaunch_A3AE2B88709917E29C176A59EC07D358] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1678832 2019-08-05] (Google LLC -> Google LLC)

    HKU\S-1-5-21-525092146-1667884894-650739964-1001\...\MountPoints2: {0765a494-31da-11e9-800c-8948a32cda92} - G:\Startme.exe

    HKU\S-1-5-21-525092146-1667884894-650739964-1001\...\Winlogon: [Shell] C:\Windows\explorer.exe [3229696 2016-08-29] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION

    HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2018-12-03] (Microsoft Windows -> Microsoft Corporation)

    HKLM\...\Drivers32: [midi6] => C:\Windows\System32\KORGUM64.DRV [309848 2008-03-08] (Korg Inc. -> KORG Inc.)

    HKLM\...\Drivers32: [midi7] => C:\Windows\System32\KORGUM64.DRV [309848 2008-03-08] (Korg Inc. -> KORG Inc.)

    HKLM\...\Drivers32: [midi5] => C:\Windows\System32\KORGUM64.DRV [309848 2008-03-08] (Korg Inc. -> KORG Inc.)

    HKLM\...\Drivers32: [msacm.dvacm] => c:\Program Files (x86)\Common Files\Ulead Systems\VIO\DVACM.acm [20480 2010-01-14] (Corel TW Corp.) [File not signed]

    HKLM\...\Drivers32: [midi] => C:\Windows\SysWOW64\KORGUMDD.DRV [299608 2008-03-08] (Korg Inc. -> KORG Inc.)

    HKLM\...\Drivers32-x32: [midi6] => KORGUM64.DRV

    HKLM\...\Drivers32-x32: [midi7] => KORGUM64.DRV

    HKLM\...\Drivers32: [VIDC.MPG4] => C:\Windows\SysWOW64\mpg4c32.dll [427520 2000-06-02] (Microsoft Corporation) [File not signed]

    HKLM\...\Drivers32: [VIDC.MP42] => C:\Windows\SysWOW64\mpg4c32.dll [427520 2000-06-02] (Microsoft Corporation) [File not signed]

    HKLM\...\Drivers32: [msacm.msaudio1] => C:\Windows\SysWOW64\msaud32.acm [305152 2000-06-02] (Microsoft Corporation) [File not signed]

    HKLM\...\Drivers32: [msacm.sl_anet] => C:\Windows\SysWOW64\sl_anet.acm [102400 2000-06-02] (Sipro Lab Telecom Inc.) [File not signed]

    HKLM\...\Drivers32-x32: [midi5] => KORGUM64.DRV

    HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.100\Installer\chrmstp.exe [2019-08-08] (Google LLC -> Google LLC)

    HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\75.1.103.145\Installer\chrmstp.exe [2019-08-15] (Piriform Software Ltd -> Piriform Software)

    HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{10880D85-AAD9-4558-ABDC-2AB1552D831F}] -> C:\Program Files (x86)\Common Files\LightScribe\LSRunOnce.exe [2010-01-22] (Hewlett-Packard Company -> Hewlett-Packard Company)

    HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] ->

    HKLM\Software\...\Authentication\Credential Providers: [{2A16DF2F-490B-4F2B-8C68-21EF46FCCC37}] -> C:\Windows\system32\dpcrprov.dll [2009-12-30] (DigitalPersona, Inc. -> DigitalPersona, Inc.)

    HKLM\Software\...\Authentication\Credential Providers: [{3ADC7042-51AF-4D0F-BD1D-4D6965A77323}] -> C:\Windows\system32\dpcrprov.dll [2009-12-30] (DigitalPersona, Inc. -> DigitalPersona, Inc.)

    HKLM\Software\...\Authentication\Credential Providers: [{4C0F0D42-DA2D-45da-85BC-B7A1AB53BF65}] -> C:\Windows\system32\dpcrprov.dll [2009-12-30] (DigitalPersona, Inc. -> DigitalPersona, Inc.)

    HKLM\Software\...\Authentication\Credential Providers: [{57E84B57-5533-4624-AB49-E29C8C5489D6}] -> C:\Windows\system32\dpcrprov.dll [2009-12-30] (DigitalPersona, Inc. -> DigitalPersona, Inc.)

    HKLM\Software\...\Authentication\Credential Providers: [{70099717-17C8-4BD0-B3D4-FAF721AB1A62}] -> C:\Windows\system32\dpcrprov.dll [2009-12-30] (DigitalPersona, Inc. -> DigitalPersona, Inc.)

    HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2009-08-18] (Microsoft Corporation -> Microsoft Corporation)

    HKLM\Software\...\Authentication\Credential Provider Filters: [{FD2AB138-F9A8-4ab6-9095-EEE7AF8B6C28}] -> C:\Windows\system32\dpcrprov.dll [2009-12-30] (DigitalPersona, Inc. -> DigitalPersona, Inc.)

    Lsa: [Notification Packages] DPPassFilter scecli

    GroupPolicy: Restriction ? <==== ATTENTION

    ==================== Scheduled Tasks (Whitelisted) =============

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    Task: {01EBCAB4-3277-4BE3-98E9-3099771CECB3} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [26060672 2019-08-15] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG )

    Task: {0A94226D-EAA6-4857-BC09-6D85DB6B0B40} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [137592 2019-08-07] (HP Inc. -> HP Inc.)

    Task: {0F2145BA-2394-4BE7-BBA7-25FDEA94C5FC} - System32\Tasks\AdobeAAMUpdater-1.0-Seba-PC-Seba => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)

    Task: {1DC6CECC-FE88-4737-93C2-46BD323B35A8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506680 2019-06-14] (HP Inc. -> HP Inc.)

    Task: {1EECD814-D90A-42AC-8AB3-89C797AACBFD} - System32\Tasks\AdobeGCInvoker-1.0-Seba-PC-Seba => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)

    Task: {218C4128-490A-4707-83E5-DD1B9B1AF35F} - System32\Tasks\{A4331972-AB4E-4969-8FA4-7187A135045C} => C:\Windows\system32\pcalua.exe -a C:\Users\Seba\Downloads\8.68-091118a-092462c-xpw7\Setup.exe -d C:\Users\Seba\Downloads\8.68-091118a-092462c-xpw7

    Task: {3F455033-3D88-4DA4-9218-63AF917EA11F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506680 2019-06-14] (HP Inc. -> HP Inc.)

    Task: {493F16DA-B4A2-492E-A421-85D07D60A455} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-12-03] (Google Inc -> Google Inc.)

    Task: {4C431330-FDB9-461D-A9AA-C5916B444324} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [1828216 2019-07-22] (Piriform Software Ltd -> Piriform Software)

    Task: {53AB4301-884E-45F7-B9BF-6B3930F74949} - System32\Tasks\DVDAgent => c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe

    Task: {55C2E56E-9627-4542-A884-6A5D45022C99} - System32\Tasks\{77FEBEA2-85EB-4566-85E0-B19756C2023C} => C:\Windows\system32\pcalua.exe -a "C:\Users\Seba\Desktop\vst\Spectrasonics Stylus RMX 1.5 + 1.7 + 1.9.5 + keygen WORKING 100%\install first\dyn-rmx15d1\Windows\Setup.exe" -d "C:\Users\Seba\Desktop\vst\Spectrasonics Stylus RMX 1.5 + 1.7 + 1.9.5 + keygen WORKING 100%\install first\dyn-rmx15d1\Windows"

    Task: {634D7895-25F9-4E49-8562-531FD68034EE} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2019-05-10] (Corel Corporation -> Corel Corporation)

    Task: {7D2150D0-DEB4-4503-8740-18CD6341BA2B} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [209128 2019-08-15] (Piriform Software Ltd -> Piriform Software)

    Task: {845A0C0F-A070-4E0B-884C-289B5FDBA04A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [655736 2019-08-07] (HP Inc. -> HP Inc.)

    Task: {86C860F5-363A-45DF-90A1-6508CA191871} - System32\Tasks\CLMLSvc => c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Music\Kernel\CLML\CLMLSvc.exe

    Task: {8CA43350-A1D4-4B7B-B307-14FFC2F8EB8F} - System32\Tasks\Registration => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [38456 2010-01-27] (Hewlett-Packard Company -> )

    Task: {9A116367-DCC1-4E8A-84FC-4695CAFDF0A9} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [209128 2019-08-15] (Piriform Software Ltd -> Piriform Software)

    Task: {9AA88F5C-5E6B-4719-A3D4-B634986E9EF4} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1179648 2018-05-02] () [File not signed]

    Task: {A679B8CD-0A0C-4844-9988-D39B5D33A025} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2756136 2019-08-08] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

    Task: {A76B681D-42E8-47EA-91E2-B47A557E8B8C} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2019-05-10] (Corel Corporation -> Corel Corporation)

    Task: {A9A0FEF8-ACCF-448B-BB0C-D677B521E198} - System32\Tasks\RecoveryCDWin7 => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [38456 2010-01-27] (Hewlett-Packard Company -> )

    Task: {AFC410F3-465D-41A7-A3AD-C298255EF8C0} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [1828216 2019-07-22] (Piriform Software Ltd -> Piriform Software)

    Task: {B24CEA02-2230-4349-BCB6-AB9E5A93FF03} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [238968 2019-06-14] (HP Inc. -> HP Inc.)

    Task: {BE2EE114-9EA2-48A6-A05E-BC2A9856191E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16835256 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd)

    Task: {BFC2A2BF-CAFF-41C6-A59F-1A7BB90EB5B6} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984 2011-06-01] (Apple Inc. -> Apple Inc.)

    Task: {C346AEEB-3F4D-4B9C-A8B5-971741BFB4EB} - System32\Tasks\Hewlett-Packard\HP Assistant\First Boot => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe [58744 2019-06-14] (HP Inc. -> HP Inc.)

    Task: {D85C79E4-0817-4C7C-868B-B760A8415AD3} - System32\Tasks\NetworkWizardVCW => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [38456 2010-01-27] (Hewlett-Packard Company -> )

    Task: {DA38192F-AFA8-4302-92F3-AAC5E87F8976} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-12-03] (Google Inc -> Google Inc.)

    Task: {FC797749-2016-46A0-B105-D686382ECDDF} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd)

    Task: {FE5964EB-6D8C-4DFE-9E2C-ECD1A083F10A} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2019-05-10] (Corel Corporation -> Corel Corporation)

    (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

    ==================== Internet (Whitelisted) ====================

    (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

    Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt

    Tcpip\Parameters: [DhcpNameServer] 200.49.120.2 200.49.120.3

    Tcpip\..\Interfaces\{21822E5D-45A2-4A4A-AD2F-F94599823234}: [DhcpNameServer] 200.49.120.2 200.49.120.3

    Internet Explorer:

    ==================

    HKU\S-1-5-21-525092146-1667884894-650739964-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPNOT/1

    SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

    SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

    SearchScopes: HKLM-x32 -> DefaultScope {6D04BA4F-8635-46F4-B5B7-920421898F2C} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox

    SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

    SearchScopes: HKLM-x32 -> {6D04BA4F-8635-46F4-B5B7-920421898F2C} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox

    SearchScopes: HKU\S-1-5-21-525092146-1667884894-650739964-1001 -> DefaultScope {6D04BA4F-8635-46F4-B5B7-920421898F2C} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox

    SearchScopes: HKU\S-1-5-21-525092146-1667884894-650739964-1001 -> {6D04BA4F-8635-46F4-B5B7-920421898F2C} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox

    BHO: HP SimplePass Identity Protection Extension -> {395610AE-C624-4f58-B89E-23733EA00F9A} -> C:\Program Files\DigitalPersona\Bin\dpotspluginie8.dll [2009-12-30] (DigitalPersona, Inc. -> DigitalPersona, Inc.)

    BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation -> Microsoft Corporation)

    BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-02-28] (Sun Microsystems, Inc.) [File not signed]

    BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)

    BHO-x32: HP SimplePass Identity Protection Extension -> {395610AE-C624-4f58-B89E-23733EA00F9A} -> C:\Program Files (x86)\DigitalPersona\Bin\dpotspluginie8.dll [2009-12-30] (DigitalPersona, Inc. -> DigitalPersona, Inc.)

    BHO-x32: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File

    BHO-x32: Search Helper -> {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} -> C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-11-19] (Microsoft Corporation -> Microsoft Corporation)

    BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation -> Microsoft Corporation)

    BHO-x32: MSN Toolbar BHO -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\MSN Toolbar\Platform\4.0.0369.0\npwinext.dll [2009-11-30] (Microsoft Corporation -> Microsoft Corporation)

    BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2010-02-28] (Sun Microsystems, Inc. -> Sun Microsystems, Inc.)

    Toolbar: HKLM-x32 - MSN Toolbar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\MSN Toolbar\Platform\4.0.0369.0\npwinext.dll [2009-11-30] (Microsoft Corporation -> Microsoft Corporation)

    Handler-x32: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files (x86)\Common Files\Microsoft Shared\Web Folders\PKMCDO.DLL [2001-01-22] (Microsoft Corporation) [File not signed]

    Handler-x32: http - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-07-31] (Microsoft Corporation) [File not signed]

    Handler-x32: http - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-07-31] (Microsoft Corporation) [File not signed]

    Handler-x32: https - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-07-31] (Microsoft Corporation) [File not signed]

    Handler-x32: https - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-07-31] (Microsoft Corporation) [File not signed]

    Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation -> Microsoft Corporation)

    Handler-x32: msdaipp - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-07-31] (Microsoft Corporation) [File not signed]

    Handler-x32: msdaipp - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-07-31] (Microsoft Corporation) [File not signed]

    Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation -> Microsoft Corporation)

    FireFox:

    ========

    FF ProfilePath: C:\Users\Seba\AppData\Roaming\Mozilla\Firefox\Profiles\Epn1xE3F.default [2019-08-19]

    FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\MSN Toolbar\Platform\4.0.0369.0\Firefox

    FF Extension: (MSN Toolbar) - C:\Program Files (x86)\MSN Toolbar\Platform\4.0.0369.0\Firefox [2010-06-26] [Legacy] [not signed]

    FF HKLM-x32\...\Firefox\Extensions: [{27182e60-b5f3-411c-b545-b44205977502}] - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension

    FF Extension: (Search Helper Extension) - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension [2010-06-26] [Legacy] [not signed]

    FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\DigitalPersona\Bin\FirefoxExt

    FF Extension: (DigitalPersona Extension) - C:\Program Files (x86)\DigitalPersona\Bin\FirefoxExt [2010-06-26] [Legacy] [not signed]

    FF Plugin: @microsoft.com/GENUINE -> disabled [No File]

    FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN -> VideoLAN)

    FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2018-09-13] (Adobe Systems Incorporated -> Adobe Systems)

    FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll [2009-07-21] (Adobe Systems, Inc.) [File not signed]

    FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]

    FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\3.0.40818.0\npctrl.dll [2009-08-18] (Microsoft Corporation -> Microsoft Corporation)

    FF Plugin-x32: @Microsoft.com/NpWinExt,version=4.0 -> C:\Program Files (x86)\MSN Toolbar\Platform\4.0.0369.0\npwinext.dll [2009-11-30] (Microsoft Corporation -> Microsoft Corporation)

    FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2009-07-10] (Microsoft Corporation -> Microsoft Corporation)

    FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-14] (Google Inc -> Google LLC)

    FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-14] (Google Inc -> Google LLC)

    FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2018-09-13] (Adobe Systems Incorporated -> Adobe Systems)

    FF Plugin HKU\S-1-5-21-525092146-1667884894-650739964-1001: @hulu.com/Hulu Desktop -> C:\Windows\..\Users\Default\AppData\Local\HuluDesktop\instances\0.9.11.1\npHDPlg.dll [2009-12-18] (Hulu -> Hulu LLC)

    Chrome:

    =======

    CHR DefaultSearchURL: Default -> hxxps://search.avira.com/#web/result?source=omnibar&q={searchTerms}

    CHR DefaultSearchKeyword: Default -> Avira

    CHR DefaultSuggestURL: Default -> hxxps://search.avira.com/suggestions?q={searchTerms}&li=ff&hl=es

    CHR Profile: C:\Users\Seba\AppData\Local\Google\Chrome\User Data\Default [2019-08-19]

    CHR Extension: (Presentaciones) - C:\Users\Seba\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-12-03]

    CHR Extension: (Documentos) - C:\Users\Seba\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-12-03]

    CHR Extension: (Google Drive) - C:\Users\Seba\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-12-03]

    CHR Extension: (YouTube) - C:\Users\Seba\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-12-03]

    CHR Extension: (uBlock Origin) - C:\Users\Seba\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2019-07-25]

    CHR Extension: (Hojas de cálculo) - C:\Users\Seba\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-12-03]

    CHR Extension: (Escritorio Remoto de Chrome) - C:\Users\Seba\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2019-08-06]

    CHR Extension: (Documentos de Google sin conexión) - C:\Users\Seba\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-12-03]

    CHR Extension: (Avira SafeSearch Plus) - C:\Users\Seba\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipmkfpcnmccejididiaagpgchgjfajgp [2019-08-15]

    CHR Extension: (Hangouts de Google) - C:\Users\Seba\AppData\Local\Google\Chrome\User Data\Default\Extensions\knipolnnllmklapflnccelgolnpehhpl [2019-05-23]

    CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Seba\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-12-03]

    CHR Extension: (Gmail) - C:\Users\Seba\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-29]

    CHR Extension: (Chrome Media Router) - C:\Users\Seba\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-08-09]

    CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx

    CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

    CHR HKLM\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx

    CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx

    CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

    CHR HKLM-x32\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx

    ==================== Services (Whitelisted) ====================

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [818136 2018-09-13] (Adobe Systems Incorporated -> Adobe Inc.)

    R2 AESTFilters; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe [89600 2009-03-03] (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation)

    R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3117648 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)

    R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2888272 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)

    R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [203264 2010-09-08] (Microsoft Windows Hardware Compatibility Publisher -> AMD)

    S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1206520 2019-08-08] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

    R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [482288 2019-08-08] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

    R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [482288 2019-08-08] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

    R2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [422056 2019-08-08] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

    R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [453408 2019-07-25] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

    R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2982312 2019-08-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

    S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [209128 2019-08-15] (Piriform Software Ltd -> Piriform Software)

    S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\75.1.103.145\elevation_service.exe [978680 2019-07-22] (Piriform Software Ltd -> Piriform Software)

    S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [209128 2019-08-15] (Piriform Software Ltd -> Piriform Software)

    R2 CinemaNow Service; C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemanowSvc.exe [127984 2010-01-15] (Sonic Solutions -> CinemaNow, Inc.)

    R2 DigiRefresh; C:\Program Files\Avid\Pro Tools\MMERefresh.exe [117760 2016-03-25] (Avid Technology, Inc.) [File not signed]

    S3 digiSPTIService64; C:\Program Files\Avid\Pro Tools\digisptiservice64.exe [197632 2016-03-25] (Avid Technology, Inc.) [File not signed]

    R2 DvmMDES; C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe [338168 2010-02-08] (DeviceVM Inc. -> DeviceVM, Inc.)

    S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149480 2018-06-07] (HP Inc. -> HP)

    R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [358264 2019-08-07] (HP Inc. -> HP Inc.)

    R2 HPWMISVC; C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [20480 2010-01-18] () [File not signed]

    R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2010-01-22] (Hewlett-Packard Company) [File not signed]

    R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6347056 2018-09-19] (Malwarebytes Corporation -> Malwarebytes)

    R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]

    R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\STacSV64.exe [244736 2010-01-14] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)

    R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)

    S2 HP Health Check Service; "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe" [X]

    ===================== Drivers (Whitelisted) ======================

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    R3 Accelerometer; C:\Windows\System32\DRIVERS\Accelerometer.sys [41272 2009-07-08] (Hewlett-Packard Company -> Hewlett-Packard)

    R3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [7767552 2010-09-08] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.)

    R3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [279040 2010-09-08] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)

    S3 AtiDCM; C:\Users\Seba\AppData\Local\Temp\atdcm64a.sys [26640 2010-09-08] (ATI Technologies, Inc -> Advanced Micro Devices, Inc.) <==== ATTENTION

    R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [68152 2019-06-17] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

    R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [213912 2019-07-24] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

    R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [176808 2019-07-24] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

    R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [36072 2019-02-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

    R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [78600 2018-11-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

    R0 avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [35376 2019-02-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

    R1 DVMIO; C:\Windows\System32\DRIVERS\dvmio.sys [20056 2010-01-30] (DeviceVM Inc. -> DeviceVM, Inc.)

    R3 FocusriteUSB; C:\Windows\System32\DRIVERS\FocusriteUSB.sys [112624 2019-06-20] (WDKTestCert builds,131886954661028733 -> Focusrite Audio Engineering Ltd.)

    R3 FocusriteUSBSwRoot; C:\Windows\System32\DRIVERS\FocusriteUSBSwRoot.sys [92048 2019-06-20] (WDKTestCert builds,131886954661028733 -> Focusrite Audio Engineering Ltd.)

    R3 FocusriteUSB_AUDIO; C:\Windows\System32\drivers\FocusriteUSBAudio.sys [53944 2019-06-20] (WDKTestCert builds,131886954661028733 -> Focusrite Audio Engineering Ltd.)

    R3 FocusriteUSB_MIDI; C:\Windows\System32\drivers\FocusriteUSBMidi.sys [40536 2019-06-20] (WDKTestCert builds,131886954661028733 -> Focusrite Audio Engineering Ltd.)

    R0 hpdskflt; C:\Windows\System32\DRIVERS\hpdskflt.sys [30008 2009-07-08] (Hewlett-Packard Company -> Hewlett-Packard)

    S3 KORGUMDS; C:\Windows\System32\Drivers\KORGUM64.SYS [31320 2008-03-08] (Korg Inc. -> KORG Inc.)

    R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [261032 2019-08-19] (Malwarebytes Corporation -> Malwarebytes)

    R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation -> Corel Corporation)

    S3 RTL8167; C:\Windows\System32\DRIVERS\Rt64win7.sys [295424 2009-11-27] (Microsoft Windows Hardware Compatibility Publisher -> Realtek )

    S3 SrvHsfHDA; C:\Windows\System32\DRIVERS\VSTAZL6.SYS [292864 2009-06-10] (Microsoft Windows -> Conexant Systems, Inc.)

    S3 SrvHsfV92; C:\Windows\System32\DRIVERS\VSTDPV6.SYS [1485312 2009-06-10] (Microsoft Windows -> Conexant Systems, Inc.)

    S3 SrvHsfWinac; C:\Windows\System32\DRIVERS\VSTCNXT6.SYS [740864 2009-06-10] (Microsoft Windows -> Conexant Systems, Inc.)

    R3 STHDA; C:\Windows\System32\DRIVERS\stwrt64.sys [505856 2010-01-14] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)

    R2 {55662437-DA8C-40c0-AADA-2C816A897A49}; c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl [146928 2010-01-27] (CyberLink -> CyberLink Corp.)

    S3 SoundGridMIDI; system32\drivers\SoundGridMidi.sys [X]

    ==================== NetSvcs (Whitelisted) ===================

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2040-12-03 13:41 - 2019-08-15 12:16 - 000000000 ____D C:\Users\Seba\Documents\Cubase LE AI Elements Projects

2040-12-03 13:40 - 2019-08-14 14:45 - 000000000 ____D C:\Users\Seba\Documents\VST3 Presets

2040-12-03 13:40 - 2019-01-05 12:34 - 000000000 ____D C:\Users\Seba\Documents\Steinberg

2040-12-03 13:37 - 2040-12-03 13:37 - 000000000 ____D C:\Program Files\Common Files\Steinberg

2040-12-03 13:37 - 2019-01-27 23:54 - 000000000 ____D C:\ProgramData\Steinberg

2040-12-03 13:35 - 2040-12-03 13:35 - 000002892 _____ () C:\Windows\SysWOW64\audcon.sys

2040-12-03 13:35 - 2019-02-13 17:10 - 000000000 ____D C:\Users\Seba\AppData\Roaming\Steinberg

2040-12-03 13:35 - 2019-02-13 17:10 - 000000000 ____D C:\Program Files\Steinberg

2040-12-03 13:35 - 2019-01-27 23:56 - 000000000 ____D C:\ProgramData\Syncrosoft

2040-12-03 13:34 - 2040-12-03 13:34 - 000000000 ____D C:\Program Files (x86)\Syncrosoft

2040-12-03 13:34 - 2019-01-28 13:20 - 000000049 _____ C:\Windows\SysWOW64\SYNSOPOS.exe.cfg

2040-12-03 13:34 - 2019-01-28 13:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eLicenser

2040-12-03 13:34 - 2011-12-14 16:21 - 000086016 _____ C:\Windows\SysWOW64\SYNSOPOS.exe

2040-12-03 13:33 - 2040-12-03 13:35 - 000000000 ____D C:\ProgramData\eLicenser

2040-12-03 13:33 - 2040-12-03 13:34 - 000000000 ____D C:\Program Files (x86)\eLicenser

2040-12-03 13:33 - 2040-12-03 13:33 - 000000000 ____D C:\Program Files\eLicenser

2040-12-03 13:33 - 2016-06-07 06:22 - 003875328 _____ (Steinberg Media Technologies GmbH) C:\Windows\SysWOW64\SYNSOACC.dll

2040-12-03 13:33 - 2016-06-07 06:19 - 005438976 _____ (Steinberg Media Technologies GmbH) C:\Windows\system32\SYNSOACC.dll

2019-08-19 09:57 - 2019-08-19 09:59 - 000039463 _____ C:\Users\Seba\Desktop\FRST.txt

2019-08-19 09:29 - 2019-08-19 09:29 - 001612800 _____ (Farbar) C:\Users\Seba\Desktop\FRST64.exe

2019-08-19 09:12 - 2019-08-19 09:12 - 000261032 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys

2019-08-18 16:42 - 2019-08-18 16:42 - 000000000 ____D C:\temp

2019-08-18 10:30 - 2019-08-18 10:56 - 000000016 _____ C:\Users\Seba\AppData\Roaming\msregsvv.dll

2019-08-18 09:46 - 2019-08-18 09:46 - 000278648 _____ C:\Windows\Minidump\081819-41449-01.dmp

2019-08-17 19:08 - 2019-08-17 19:08 - 000000000 ____D C:\Users\Seba\AppData\Local\ElevatedDiagnostics

2019-08-17 19:00 - 2019-08-17 19:00 - 000278672 _____ C:\Windows\Minidump\081719-23493-01.dmp

2019-08-17 18:26 - 2019-08-17 18:26 - 000000000 ____D C:\Users\Seba\AppData\Local\AviraSpeedup

2019-08-17 18:17 - 2019-08-17 18:20 - 000232730 _____ C:\Windows\ntbtlog.txt

2019-08-17 18:03 - 2019-08-17 18:03 - 000278672 _____ C:\Windows\Minidump\081719-31652-01.dmp

2019-08-17 15:01 - 2019-08-17 15:01 - 000000999 _____ C:\Users\Seba\Desktop\WhoCrashed.lnk

2019-08-17 15:01 - 2019-08-17 15:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WhoCrashed

2019-08-17 15:01 - 2019-08-17 15:01 - 000000000 ____D C:\Program Files\WhoCrashed

2019-08-17 14:57 - 2019-08-17 14:58 - 009936128 _____ (Resplendence Software Projects Sp. ) C:\Users\Seba\Downloads\whocrashedSetup.exe

2019-08-17 14:53 - 2019-08-17 15:29 - 000000000 ____D C:\Users\Seba\Downloads\installeddriverslist-x64

2019-08-17 14:50 - 2019-08-17 14:51 - 000069136 _____ C:\Users\Seba\Downloads\installeddriverslist-x64.zip

2019-08-17 10:46 - 2019-08-17 10:46 - 000000000 ____D C:\ProgramData\ATI

2019-08-17 08:17 - 2019-08-17 08:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center

2019-08-17 07:58 - 2019-08-17 07:59 - 031360544 _____ (Hewlett-Packard ) C:\Users\Seba\Downloads\sp46533.exe

2019-08-17 07:56 - 2019-08-17 08:02 - 208294888 _____ (Hewlett-Packard ) C:\Users\Seba\Downloads\sp50640.exe

2019-08-16 23:49 - 2019-08-16 23:49 - 000275160 _____ C:\Windows\Minidump\081619-44881-01.dmp

2019-08-16 23:46 - 2019-08-16 23:46 - 000000016 _____ C:\Windows\system32\w3data.vss

2019-08-16 23:46 - 2019-08-16 23:46 - 000000016 _____ C:\Windows\system32\msvcsv60.dll

2019-08-16 23:46 - 2019-08-16 23:46 - 000000016 _____ C:\Windows\msocreg32.dat

2019-08-16 23:28 - 2019-08-16 23:28 - 000277784 _____ C:\Windows\Minidump\081619-34881-01.dmp

2019-08-16 20:38 - 2019-08-16 20:38 - 000277560 _____ C:\Windows\Minidump\081619-28002-01.dmp

2019-08-16 20:30 - 2019-08-16 20:30 - 000002227 _____ C:\Users\Public\Desktop\HP Support Assistant.lnk

2019-08-16 20:30 - 2019-08-16 20:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support

2019-08-16 20:24 - 2019-08-16 20:24 - 000000000 ____D C:\ProgramData\HP Inc

2019-08-16 19:49 - 2019-08-16 19:49 - 000000000 ____D C:\Users\Seba\AppData\Local\HP

2019-08-16 19:45 - 2019-08-16 19:46 - 003521752 _____ (Oleg N. Scherbakov) C:\Users\Seba\Downloads\HPSupportSolutionsFramework-12.12.32.3.exe

2019-08-16 18:50 - 2019-08-17 08:17 - 000000000 ____D C:\Program Files\ATI Technologies

2019-08-16 18:48 - 2019-08-16 18:48 - 000003214 _____ C:\Windows\System32\Tasks\{A4331972-AB4E-4969-8FA4-7187A135045C}

2019-08-16 18:47 - 2019-08-16 18:48 - 000000000 ____D C:\Users\Seba\Downloads\8.68-091118a-092462c-xpw7

2019-08-16 18:23 - 2019-08-16 18:23 - 000318392 _____ C:\Windows\Minidump\081619-31902-01.dmp

2019-08-16 17:56 - 2019-08-18 10:46 - 703856351 _____ C:\Windows\MEMORY.DMP

2019-08-16 17:56 - 2019-08-16 17:56 - 000318392 _____ C:\Windows\Minidump\081619-32073-01.dmp

2019-08-16 17:48 - 2019-08-16 17:49 - 000306928 _____ (Thesycon GmbH) C:\Users\Seba\Downloads\dpclat.exe

2019-08-16 15:54 - 2019-08-16 16:11 - 000007614 _____ C:\Users\Seba\AppData\Local\Resmon.ResmonCfg

2019-08-16 13:39 - 2019-08-16 13:39 - 000000908 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Focusrite Mixing and Routing.lnk

2019-08-16 13:39 - 2019-08-16 13:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Focusrite Audio Engineering Ltd

2019-08-16 13:10 - 2019-08-16 13:10 - 000000000 ____D C:\Users\Seba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2

2019-08-16 13:10 - 2019-08-16 13:10 - 000000000 ____D C:\Program Files (x86)\ASIO4ALL v2

2019-08-15 23:53 - 2019-08-15 23:53 - 000003726 _____ C:\Windows\System32\Tasks\CCleaner Browser Heartbeat Task (Hourly)

2019-08-15 23:53 - 2019-08-15 23:53 - 000003144 _____ C:\Windows\System32\Tasks\CCleaner Browser Heartbeat Task (Logon)

2019-08-15 23:53 - 2019-08-15 23:53 - 000002394 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk

2019-08-15 23:49 - 2019-08-15 23:49 - 000003380 _____ C:\Windows\System32\Tasks\CCleanerUpdateTaskMachineUA

2019-08-15 23:49 - 2019-08-15 23:49 - 000003252 _____ C:\Windows\System32\Tasks\CCleanerUpdateTaskMachineCore

2019-08-15 23:48 - 2019-08-15 23:53 - 000000000 ____D C:\Users\Seba\AppData\Local\CCleaner Browser

2019-08-15 23:48 - 2019-08-15 23:53 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser

2019-08-15 23:48 - 2019-08-15 23:48 - 000000822 _____ C:\Users\Public\Desktop\CCleaner.lnk

2019-08-15 23:48 - 2019-08-15 23:48 - 000000000 ____D C:\ProgramData\CCleaner Browser

2019-08-15 23:46 - 2019-08-15 23:46 - 000002804 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC

2019-08-15 23:28 - 2019-08-15 23:44 - 000000000 ____D C:\Users\Seba\Desktop\Virus

2019-08-15 21:06 - 2019-08-15 21:06 - 000000000 ____D C:\Users\Seba\Downloads\Seba

2019-08-15 16:33 - 2019-08-15 16:35 - 035345999 _____ C:\Users\Seba\Desktop\ice_video_20190815-163359.webm

2019-08-15 16:31 - 2019-08-15 16:31 - 000000000 ____D C:\Users\Seba\AppData\Local\Icecream

2019-08-15 16:31 - 2019-08-15 16:31 - 000000000 ____D C:\Users\Seba\AppData\Local\CrashRpt

2019-08-15 16:31 - 2019-08-15 16:31 - 000000000 ____D C:\Users\Seba\.Icecream Screen Recorder

2019-08-15 16:30 - 2019-08-15 16:30 - 000001119 _____ C:\Users\Public\Desktop\Icecream Screen Recorder.lnk

2019-08-15 16:30 - 2019-08-15 16:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Icecream Screen Recorder

2019-08-15 16:30 - 2019-08-15 16:30 - 000000000 ____D C:\Program Files (x86)\Icecream Screen Recorder

2019-08-15 14:29 - 2019-08-16 16:07 - 000000784 _____ C:\Users\Seba\Desktop\ESET Online Scanner.lnk

2019-08-15 14:29 - 2019-08-15 14:29 - 000000000 ____D C:\Users\Seba\AppData\Local\ESET

2019-08-14 22:22 - 2019-08-14 22:22 - 000000000 ____D C:\Users\Seba\Downloads\SoundSpot - Axis 1.0.1 VST, VST3, AAX, AU WIN.OSX x86 x64

2019-08-14 14:49 - 2019-08-14 14:49 - 000000000 ____D C:\Users\Seba\AppData\Roaming\Plugin Alliance

2019-08-14 10:31 - 2019-08-05 19:58 - 000397432 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll

2019-08-14 10:31 - 2019-08-05 18:55 - 000348800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll

2019-08-14 10:31 - 2019-08-04 00:37 - 025754624 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2019-08-14 10:31 - 2019-08-03 23:16 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2019-08-14 10:31 - 2019-08-03 23:16 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll

2019-08-14 10:31 - 2019-08-03 23:04 - 002909184 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2019-08-14 10:31 - 2019-08-03 23:03 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2019-08-14 10:31 - 2019-08-03 23:02 - 000578560 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2019-08-14 10:31 - 2019-08-03 23:02 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec

2019-08-14 10:31 - 2019-08-03 23:02 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll

2019-08-14 10:31 - 2019-08-03 23:01 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll

2019-08-14 10:31 - 2019-08-03 22:55 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2019-08-14 10:31 - 2019-08-03 22:54 - 005775872 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2019-08-14 10:31 - 2019-08-03 22:54 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2019-08-14 10:31 - 2019-08-03 22:52 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2019-08-14 10:31 - 2019-08-03 22:51 - 000790528 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll

2019-08-14 10:31 - 2019-08-03 22:51 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

2019-08-14 10:31 - 2019-08-03 22:51 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe

2019-08-14 10:31 - 2019-08-03 22:50 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll

2019-08-14 10:31 - 2019-08-03 22:43 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

2019-08-14 10:31 - 2019-08-03 22:40 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2019-08-14 10:31 - 2019-08-03 22:34 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll

2019-08-14 10:31 - 2019-08-03 22:33 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll

2019-08-14 10:31 - 2019-08-03 22:33 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx

2019-08-14 10:31 - 2019-08-03 22:30 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2019-08-14 10:31 - 2019-08-03 22:29 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2019-08-14 10:31 - 2019-08-03 22:27 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2019-08-14 10:31 - 2019-08-03 22:25 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll

2019-08-14 10:31 - 2019-08-03 22:21 - 020291584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2019-08-14 10:31 - 2019-08-03 22:16 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll

2019-08-14 10:31 - 2019-08-03 22:15 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2019-08-14 10:31 - 2019-08-03 22:14 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2019-08-14 10:31 - 2019-08-03 22:14 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2019-08-14 10:31 - 2019-08-03 22:12 - 002132480 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2019-08-14 10:31 - 2019-08-03 22:12 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll

2019-08-14 10:31 - 2019-08-03 22:11 - 015390720 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2019-08-14 10:31 - 2019-08-03 22:04 - 000496128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll

2019-08-14 10:31 - 2019-08-03 22:03 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec

2019-08-14 10:31 - 2019-08-03 22:03 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2019-08-14 10:31 - 2019-08-03 22:03 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll

2019-08-14 10:31 - 2019-08-03 22:02 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll

2019-08-14 10:31 - 2019-08-03 22:01 - 004859392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2019-08-14 10:31 - 2019-08-03 22:00 - 002301952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2019-08-14 10:31 - 2019-08-03 21:57 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2019-08-14 10:31 - 2019-08-03 21:57 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2019-08-14 10:31 - 2019-08-03 21:55 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2019-08-14 10:31 - 2019-08-03 21:54 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2019-08-14 10:31 - 2019-08-03 21:54 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe

2019-08-14 10:31 - 2019-08-03 21:53 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll

2019-08-14 10:31 - 2019-08-03 21:50 - 001566208 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2019-08-14 10:31 - 2019-08-03 21:45 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll

2019-08-14 10:31 - 2019-08-03 21:41 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx

2019-08-14 10:31 - 2019-08-03 21:41 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll

2019-08-14 10:31 - 2019-08-03 21:40 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2019-08-14 10:31 - 2019-08-03 21:40 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll

2019-08-14 10:31 - 2019-08-03 21:38 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll

2019-08-14 10:31 - 2019-08-03 21:37 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2019-08-14 10:31 - 2019-08-03 21:36 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll

2019-08-14 10:31 - 2019-08-03 21:35 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll

2019-08-14 10:31 - 2019-08-03 21:32 - 004494848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2019-08-14 10:31 - 2019-08-03 21:29 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll

2019-08-14 10:31 - 2019-08-03 21:28 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2019-08-14 10:31 - 2019-08-03 21:28 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2019-08-14 10:31 - 2019-08-03 21:27 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll

2019-08-14 10:31 - 2019-08-03 21:23 - 013791744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2019-08-14 10:31 - 2019-08-03 21:09 - 004387840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2019-08-14 10:31 - 2019-08-03 21:06 - 001331200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2019-08-14 10:31 - 2019-08-03 21:04 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2019-08-14 10:31 - 2019-07-29 23:20 - 000878080 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll

2019-08-14 10:31 - 2019-07-29 23:20 - 000517632 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll

2019-08-14 10:31 - 2019-07-29 23:16 - 000583680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll

2019-08-14 10:31 - 2019-07-19 00:30 - 003231744 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

2019-08-14 10:31 - 2019-07-13 05:34 - 001391616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll

2019-08-14 10:31 - 2019-07-13 05:34 - 000836608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll

2019-08-14 10:31 - 2019-07-13 05:34 - 000335360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\P2PGraph.dll

2019-08-14 10:31 - 2019-07-13 05:33 - 000256512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll

2019-08-14 10:31 - 2019-07-13 05:33 - 000194560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll

2019-08-14 10:31 - 2019-07-13 05:33 - 000043520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll

2019-08-14 10:31 - 2019-07-13 05:32 - 002009600 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll

2019-08-14 10:31 - 2019-07-13 05:32 - 001077760 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll

2019-08-14 10:31 - 2019-07-13 05:32 - 000408576 _____ (Microsoft Corporation) C:\Windows\system32\P2PGraph.dll

2019-08-14 10:31 - 2019-07-13 05:32 - 000327168 _____ (Microsoft Corporation) C:\Windows\system32\pnrpsvc.dll

2019-08-14 10:31 - 2019-07-13 05:32 - 000193024 _____ (Microsoft Corporation) C:\Windows\system32\ssdpsrv.dll

2019-08-14 10:31 - 2019-07-13 05:32 - 000071680 _____ (Microsoft Corporation) C:\Windows\system32\Groupinghc.dll

2019-08-14 10:31 - 2019-07-13 05:32 - 000051200 _____ (Microsoft Corporation) C:\Windows\system32\ssdpapi.dll

2019-08-14 10:31 - 2019-07-13 05:31 - 000318976 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll

2019-08-14 10:31 - 2019-07-13 05:31 - 000226304 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll

2019-08-14 10:31 - 2019-07-13 05:31 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll

2019-08-14 10:30 - 2019-07-29 23:25 - 000627424 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi

2019-08-14 10:30 - 2019-07-29 23:23 - 005552568 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe

2019-08-14 10:30 - 2019-07-29 23:23 - 000710072 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi

2019-08-14 10:30 - 2019-07-29 23:23 - 000264120 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll

2019-08-14 10:30 - 2019-07-29 23:23 - 000155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys

2019-08-14 10:30 - 2019-07-29 23:23 - 000097208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys

2019-08-14 10:30 - 2019-07-29 23:22 - 001671000 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll

2019-08-14 10:30 - 2019-07-29 23:20 - 002072576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll

2019-08-14 10:30 - 2019-07-29 23:20 - 001472512 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll

2019-08-14 10:30 - 2019-07-29 23:20 - 001211392 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll

2019-08-14 10:30 - 2019-07-29 23:20 - 001162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll

2019-08-14 10:30 - 2019-07-29 23:20 - 000733184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll

2019-08-14 10:30 - 2019-07-29 23:20 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll

2019-08-14 10:30 - 2019-07-29 23:20 - 000408576 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll

2019-08-14 10:30 - 2019-07-29 23:20 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll

2019-08-14 10:30 - 2019-07-29 23:20 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll

2019-08-14 10:30 - 2019-07-29 23:20 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll

2019-08-14 10:30 - 2019-07-29 23:20 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll

2019-08-14 10:30 - 2019-07-29 23:20 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll

2019-08-14 10:30 - 2019-07-29 23:20 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll

2019-08-14 10:30 - 2019-07-29 23:20 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll

2019-08-14 10:30 - 2019-07-29 23:20 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll

2019-08-14 10:30 - 2019-07-29 23:20 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll

2019-08-14 10:30 - 2019-07-29 23:20 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll

2019-08-14 10:30 - 2019-07-29 23:20 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll

2019-08-14 10:30 - 2019-07-29 23:20 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll

2019-08-14 10:30 - 2019-07-29 23:20 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll

2019-08-14 10:30 - 2019-07-29 23:20 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll

2019-08-14 10:30 - 2019-07-29 23:20 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll

2019-08-14 10:30 - 2019-07-29 23:20 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll

2019-08-14 10:30 - 2019-07-29 23:20 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll

2019-08-14 10:30 - 2019-07-29 23:20 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll

2019-08-14 10:30 - 2019-07-29 23:20 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll

2019-08-14 10:30 - 2019-07-29 23:20 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll

2019-08-14 10:30 - 2019-07-29 23:20 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 004058848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe

2019-08-14 10:30 - 2019-07-29 23:19 - 003965664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe

2019-08-14 10:30 - 2019-07-29 23:19 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:17 - 001319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll

2019-08-14 10:30 - 2019-07-29 23:16 - 001425920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll

2019-08-14 10:30 - 2019-07-29 23:16 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll

2019-08-14 10:30 - 2019-07-29 23:16 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll

2019-08-14 10:30 - 2019-07-29 23:16 - 000555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll

2019-08-14 10:30 - 2019-07-29 23:16 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll

2019-08-14 10:30 - 2019-07-29 23:16 - 000261632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll

2019-08-14 10:30 - 2019-07-29 23:16 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll

2019-08-14 10:30 - 2019-07-29 23:16 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll

2019-08-14 10:30 - 2019-07-29 23:16 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll

2019-08-14 10:30 - 2019-07-29 23:16 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll

2019-08-14 10:30 - 2019-07-29 23:16 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll

2019-08-14 10:30 - 2019-07-29 23:16 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll

2019-08-14 10:30 - 2019-07-29 23:16 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll

2019-08-14 10:30 - 2019-07-29 23:16 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll

2019-08-14 10:30 - 2019-07-29 23:16 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll

2019-08-14 10:30 - 2019-07-29 23:16 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll

2019-08-14 10:30 - 2019-07-29 23:16 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll

2019-08-14 10:30 - 2019-07-29 23:16 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll

2019-08-14 10:30 - 2019-07-29 23:16 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll

2019-08-14 10:30 - 2019-07-29 23:15 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll

2019-08-14 10:30 - 2019-07-29 23:15 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll

2019-08-14 10:30 - 2019-07-29 23:15 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll

2019-08-14 10:30 - 2019-07-29 23:15 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll

2019-08-14 10:30 - 2019-07-29 23:15 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll

2019-08-14 10:30 - 2019-07-29 23:15 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll

2019-08-14 10:30 - 2019-07-29 23:15 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:15 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:15 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:15 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:15 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:15 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:15 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 23:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 22:54 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll

2019-08-14 10:30 - 2019-07-29 22:53 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll

2019-08-14 10:30 - 2019-07-29 22:52 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe

2019-08-14 10:30 - 2019-07-29 22:51 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe

2019-08-14 10:30 - 2019-07-29 22:51 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe

2019-08-14 10:30 - 2019-07-29 22:51 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys

2019-08-14 10:30 - 2019-07-29 22:51 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe

2019-08-14 10:30 - 2019-07-29 22:48 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe

2019-08-14 10:30 - 2019-07-29 22:48 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys

2019-08-14 10:30 - 2019-07-29 22:48 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe

2019-08-14 10:30 - 2019-07-29 22:48 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll

2019-08-14 10:30 - 2019-07-29 22:48 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe

2019-08-14 10:30 - 2019-07-29 22:48 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe

2019-08-14 10:30 - 2019-07-29 22:47 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe

2019-08-14 10:30 - 2019-07-29 22:47 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll

2019-08-14 10:30 - 2019-07-29 22:47 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 22:47 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 22:47 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 22:47 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll

2019-08-14 10:30 - 2019-07-29 22:44 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys

2019-08-14 10:30 - 2019-07-29 22:44 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys

2019-08-14 10:30 - 2019-07-29 22:44 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys

2019-08-14 10:30 - 2019-07-29 22:44 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys

2019-08-14 10:30 - 2019-07-29 22:44 - 000161280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys

2019-08-14 10:30 - 2019-07-29 22:44 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys

2019-08-14 10:30 - 2019-07-29 22:43 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe

2019-08-14 10:30 - 2019-07-29 22:43 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys

2019-08-14 10:30 - 2019-07-29 22:43 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys

2019-08-14 10:30 - 2019-07-29 22:43 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys

2019-08-14 10:30 - 2019-07-29 22:43 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys

2019-08-14 10:30 - 2019-07-29 22:43 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys

2019-08-14 10:30 - 2019-07-29 22:43 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe

2019-08-14 10:30 - 2019-07-13 05:37 - 000311008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll

2019-08-14 10:30 - 2019-07-13 05:36 - 000289720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS

2019-08-14 10:30 - 2019-07-13 05:35 - 001894840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys

2019-08-14 10:30 - 2019-07-13 05:35 - 000385464 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll

2019-08-14 10:30 - 2019-07-13 05:35 - 000378808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys

2019-08-14 10:30 - 2019-07-13 05:34 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll

2019-08-14 10:30 - 2019-07-13 05:34 - 000217600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\P2P.dll

2019-08-14 10:30 - 2019-07-13 05:34 - 000180736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll

2019-08-14 10:30 - 2019-07-13 05:34 - 000111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll

2019-08-14 10:30 - 2019-07-13 05:34 - 000039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ssdpapi.dll

2019-08-14 10:30 - 2019-07-13 05:34 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll

2019-08-14 10:30 - 2019-07-13 05:34 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll

2019-08-14 10:30 - 2019-07-13 05:33 - 000071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll

2019-08-14 10:30 - 2019-07-13 05:33 - 000061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc.dll

2019-08-14 10:30 - 2019-07-13 05:33 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll

2019-08-14 10:30 - 2019-07-13 05:32 - 000405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll

2019-08-14 10:30 - 2019-07-13 05:32 - 000264704 _____ (Microsoft Corporation) C:\Windows\system32\P2P.dll

2019-08-14 10:30 - 2019-07-13 05:32 - 000198656 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll

2019-08-14 10:30 - 2019-07-13 05:32 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll

2019-08-14 10:30 - 2019-07-13 05:32 - 000101376 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll

2019-08-14 10:30 - 2019-07-13 05:32 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll

2019-08-14 10:30 - 2019-07-13 05:32 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll

2019-08-14 10:30 - 2019-07-13 05:31 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll

2019-08-14 10:30 - 2019-07-13 05:31 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll

2019-08-14 10:30 - 2019-07-13 05:31 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll

2019-08-14 10:30 - 2019-07-13 05:31 - 000013824 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcmonitor.dll

2019-08-14 10:30 - 2019-07-13 05:22 - 000353280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll

2019-08-14 10:30 - 2019-07-13 05:22 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll

2019-08-14 10:30 - 2019-07-13 05:22 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll

2019-08-14 10:30 - 2019-07-13 05:13 - 000011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcmonitor.dll

2019-08-14 10:30 - 2019-07-13 05:07 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll

2019-08-14 10:30 - 2019-07-03 22:56 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll

2019-08-14 10:30 - 2019-07-03 22:14 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll

2019-08-14 09:02 - 2019-08-14 11:20 - 000000000 ____D C:\Users\Seba\Downloads\8Dio Dubstep KONTAKT

2019-08-13 22:38 - 2019-08-13 22:39 - 000000000 ____D C:\Windows\SecureLib

2019-08-13 22:15 - 2019-08-13 22:15 - 000000000 ____D C:\Users\Public\Speedup Sessions

2019-08-13 22:14 - 2019-08-13 22:14 - 000003664 _____ C:\Windows\System32\Tasks\AviraSystemSpeedupUpdate

2019-08-13 21:06 - 2019-08-13 21:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fatmaker

2019-08-12 10:00 - 2019-08-12 10:00 - 000000000 _____ C:\Users\Seba\Desktop\Valores borrar.txt

2019-08-11 08:38 - 2019-08-11 08:38 - 000000128 _____ C:\Users\Seba\Desktop\Trabajos independientes - Upwork.url

2019-08-08 17:07 - 2019-08-18 13:11 - 000000132 _____ C:\Users\Seba\AppData\Roaming\Adobe PNG Format CC Prefs

2019-08-08 12:40 - 2019-08-08 12:40 - 000000889 _____ C:\Users\Seba\Desktop\VLC media player.lnk

2019-08-07 11:48 - 2019-08-09 20:01 - 000000922 _____ C:\Users\Seba\Desktop\Music Tempo.txt

2019-08-06 09:47 - 2019-08-06 09:47 - 000001098 _____ C:\Users\Public\Desktop\SoundWire Server.lnk

2019-08-06 09:47 - 2019-08-06 09:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoundWire Server

2019-08-06 09:47 - 2019-08-06 09:47 - 000000000 ____D C:\Program Files (x86)\SoundWire Server

2019-07-31 11:33 - 2019-08-14 09:06 - 000000000 ____D C:\Users\Seba\Downloads\VIEJO

2019-07-31 11:14 - 2019-08-15 09:23 - 000000000 ____D C:\Users\Seba\Desktop\Panel Horos_

2019-07-30 09:35 - 2019-07-30 09:35 - 000000271 _____ C:\Users\Seba\Desktop\Record acoustic guitar track professionally by Mir05lav.url

2019-07-27 23:15 - 2019-07-28 17:21 - 000000000 ____D C:\Users\Seba\Desktop\Carpeta Juego danilo

2019-07-24 16:31 - 2019-07-24 16:31 - 000008097 _____ C:\Users\Seba\Desktop\22 Pino midi.mid

2019-07-24 11:30 - 2019-07-13 05:14 - 000334848 _____ (Microsoft Corporation) C:\Windows\system32\sipnotify.exe

2019-07-22 00:00 - 2019-07-22 00:00 - 000000069 _____ C:\Users\Seba\Desktop\Southside and TM88's Favorite Omnisphere Folders 🌊💿🔥 - YouTube.url

2019-07-21 12:02 - 2019-07-21 12:02 - 000000132 _____ C:\Users\Seba\Desktop\De que VOLTAJE son los LEDS de un TV - como saberlo sin... en Taringa!.url

2019-07-20 12:57 - 2019-08-10 17:40 - 000000390 _____ C:\Users\Seba\Desktop\Malletys.txt

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-08-19 09:55 - 2018-12-11 08:59 - 000000000 ____D C:\Users\Seba\AppData\Local\Spectrasonics

2019-08-19 09:34 - 2018-12-12 12:42 - 000000000 ____D C:\FRST

2019-08-19 09:23 - 2009-07-14 01:45 - 000023248 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2019-08-19 09:23 - 2009-07-14 01:45 - 000023248 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2019-08-19 09:11 - 2009-07-14 02:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT

2019-08-19 00:16 - 2018-12-04 06:32 - 000000000 ____D C:\Users\Seba\AppData\Roaming\vlc

2019-08-18 14:47 - 2019-03-18 14:38 - 000000000 ____D C:\Users\Seba\AppData\Roaming\Celemony Software GmbH

2019-08-18 10:56 - 2019-05-07 17:31 - 000000032 _____ C:\ProgramData\autobk.inc

2019-08-18 10:46 - 2018-12-06 11:29 - 000000000 ____D C:\Windows\Minidump

2019-08-18 09:39 - 2018-12-05 17:21 - 000000000 ____D C:\Users\Seba\AppData\Roaming\uTorrent

2019-08-17 21:22 - 2009-07-14 02:13 - 000781790 _____ C:\Windows\system32\PerfStringBackup.INI

2019-08-17 21:22 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\inf

2019-08-17 18:41 - 2009-07-14 02:08 - 000032550 _____ C:\Windows\Tasks\SCHEDLGU.TXT

2019-08-17 08:16 - 2010-06-26 06:41 - 000000000 ____D C:\Program Files (x86)\ATI Technologies

2019-08-17 08:10 - 2009-09-06 21:40 - 000000000 ____D C:\SwSetup

2019-08-16 23:20 - 2018-12-03 05:40 - 000000000 ____D C:\Users\Seba\AppData\Roaming\Hewlett-Packard

2019-08-16 20:24 - 2010-02-27 22:14 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard

2019-08-16 20:24 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\Help

2019-08-16 20:23 - 2018-12-03 05:42 - 000000000 ____D C:\Users\Seba\AppData\Roaming\hpqlog

2019-08-16 20:23 - 2018-12-03 05:42 - 000000000 ____D C:\Users\Seba\AppData\Local\Hewlett-Packard

2019-08-16 20:23 - 2010-02-28 01:52 - 000000000 ____D C:\Program Files (x86)\Hp

2019-08-16 20:23 - 2010-02-27 22:34 - 000000000 ____D C:\ProgramData\Hewlett-Packard

2019-08-16 20:23 - 2010-02-27 22:16 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information

2019-08-16 20:20 - 2010-02-27 22:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP

2019-08-16 20:11 - 2009-07-14 01:45 - 005166680 _____ C:\Windows\system32\FNTCACHE.DAT

2019-08-16 20:06 - 2010-06-26 07:27 - 000000000 ____D C:\Intel

2019-08-16 20:00 - 2010-02-27 22:34 - 000000000 ____D C:\Windows\System32\Tasks\Hewlett-Packard

2019-08-16 19:49 - 2018-12-03 05:42 - 000130200 _____ C:\Users\Seba\AppData\Local\GDIPFONTCACHEV1.DAT

2019-08-16 15:46 - 2019-04-26 10:33 - 000000000 ____D C:\ProgramData\ValhallaRoom

2019-08-16 15:37 - 2019-06-22 08:33 - 000000000 ____D C:\Users\Seba\Desktop\NubeRod

2019-08-16 14:49 - 2018-12-23 13:24 - 000000000 ____D C:\ProgramData\ValhallaVintageVerbPreferences

2019-08-16 14:49 - 2018-12-23 13:24 - 000000000 ____D C:\ProgramData\ValhallaVintageVerb

2019-08-16 14:40 - 2019-01-26 15:53 - 000000000 ____D C:\Users\Seba\AppData\Roaming\JamOrigin

2019-08-16 14:37 - 2019-04-08 08:25 - 000000000 ____D C:\Users\Seba\Documents\Ample Sound

2019-08-16 14:37 - 2019-04-08 08:21 - 000000000 ____D C:\Users\Seba\AppData\Roaming\Ample Sound

2019-08-16 13:39 - 2018-12-03 21:42 - 000000000 ____D C:\Program Files\FocusriteUSB

2019-08-16 13:38 - 2018-12-03 14:50 - 000000000 ____D C:\ProgramData\Package Cache

2019-08-16 11:36 - 2019-02-13 11:00 - 000000000 ____D C:\Users\Seba\AppData\Roaming\PreSonus

2019-08-16 10:06 - 2019-01-16 14:34 - 000000000 ____D C:\Users\Seba\Documents\My Corel Shows

2019-08-15 23:51 - 2019-01-30 08:00 - 000000000 ____D C:\Users\Seba\AppData\Roaming\MPC-HC

2019-08-15 23:48 - 2018-12-12 11:52 - 000003870 _____ C:\Windows\System32\Tasks\CCleaner Update

2019-08-15 23:39 - 2018-12-05 17:23 - 000000000 ____D C:\Users\Seba\AppData\Local\Lavasoft

2019-08-15 17:54 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\rescache

2019-08-15 16:31 - 2018-12-03 05:38 - 000000000 ____D C:\Users\Seba

2019-08-15 15:02 - 2018-12-03 17:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype

2019-08-15 14:36 - 2019-01-24 12:55 - 000000000 ____D C:\Program Files\Plugin Alliance

2019-08-15 14:36 - 2018-12-03 16:12 - 000000000 ____D C:\Program Files\Common Files\VST3

2019-08-15 14:36 - 2018-12-03 16:12 - 000000000 ____D C:\Program Files (x86)\VSTPlugIns

2019-08-15 11:14 - 2018-12-27 20:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira

2019-08-15 11:12 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\PolicyDefinitions

2019-08-15 00:14 - 2018-12-03 11:55 - 000000000 ____D C:\Windows\system32\MRT

2019-08-15 00:07 - 2018-12-03 11:55 - 134272480 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe

2019-08-14 22:24 - 2019-01-24 12:02 - 000000000 ___HD C:\ProgramData\.88e1acbae5709fcfe9749ab177d3698e_T

2019-08-14 22:24 - 2019-01-24 12:02 - 000000000 ___HD C:\ProgramData\.88e1acbae5709fcfe9749ab177d3698e

2019-08-14 22:24 - 2019-01-24 12:02 - 000000000 ____D C:\Program Files\Soundspot

2019-08-14 09:16 - 2018-12-24 06:03 - 000000000 ____D C:\Program Files\Common Files\Adobe

2019-08-14 09:15 - 2018-12-24 06:04 - 000000000 ____D C:\Program Files\Adobe

2019-08-14 09:15 - 2018-12-03 12:34 - 000000000 ____D C:\Users\Seba\AppData\Roaming\Adobe

2019-08-14 09:14 - 2018-12-24 06:10 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe

2019-08-14 09:12 - 2019-03-02 12:33 - 000000000 ____D C:\ProgramData\Avid

2019-08-14 09:12 - 2018-12-17 12:02 - 000000000 ____D C:\Program Files\Avid

2019-08-14 09:10 - 2018-12-17 12:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avid

2019-08-14 09:10 - 2018-12-17 12:02 - 000000000 ____D C:\Program Files (x86)\Avid

2019-08-14 09:07 - 2018-12-04 07:28 - 000000000 ___RD C:\Users\Seba\Desktop\vst

2019-08-13 22:15 - 2018-12-05 17:03 - 000000000 ____D C:\ProgramData\Avira

2019-08-13 22:15 - 2018-12-05 17:03 - 000000000 ____D C:\Program Files (x86)\Avira

2019-08-11 07:59 - 2018-12-27 21:59 - 000003292 _____ C:\Windows\System32\Tasks\Avira_Antivirus_Systray

2019-08-08 18:30 - 2018-12-03 12:36 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk

2019-08-06 09:34 - 2019-03-04 20:46 - 000000000 ____D C:\Users\Seba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome

2019-07-30 22:28 - 2019-04-08 08:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ample Sound

2019-07-30 22:28 - 2019-04-08 08:21 - 000000000 ____D C:\Program Files\Ample Sound

2019-07-24 19:24 - 2018-12-27 21:59 - 000213912 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys

2019-07-24 19:24 - 2018-12-27 21:59 - 000176808 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys

2019-07-24 12:31 - 2019-05-23 18:13 - 000002230 _____ C:\Users\Seba\Desktop\Trap.txt

2019-07-23 07:30 - 2019-07-02 09:02 - 000000026 _____ C:\Users\Seba\Desktop\Angela.txt

2019-07-21 13:17 - 2018-12-04 16:11 - 000000000 ____D C:\Users\Seba\AppData\Roaming\Maize Sampler Player

==================== Files in the root of some directories ================

2018-12-13 11:57 - 2017-04-08 14:38 - 004057620 _____ (Maizesoft) C:\Program Files (x86)\Fingerprint VST Win 64bit.dll

2019-08-08 17:07 - 2019-08-18 13:11 - 000000132 _____ () C:\Users\Seba\AppData\Roaming\Adobe PNG Format CC Prefs

2019-01-19 08:41 - 2019-01-19 10:17 - 000000132 _____ () C:\Users\Seba\AppData\Roaming\Adobe PNG Format CS5 Prefs

2019-08-18 10:30 - 2019-08-18 10:56 - 000000016 _____ () C:\Users\Seba\AppData\Roaming\msregsvv.dll

2019-02-17 15:24 - 2019-02-17 15:24 - 000000000 _____ () C:\Users\Seba\AppData\Local\oobelibMkey.log

2019-08-16 15:54 - 2019-08-16 16:11 - 000007614 _____ () C:\Users\Seba\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

LastRegBack: 2019-08-11 10:13

==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-08-2019

Ran by Seba (19-08-2019 10:00:32)

Running from C:\Users\Seba\Desktop

Windows 7 Home Premium Service Pack 1 (X64) (2018-12-03 08:38:07)

Boot Mode: Normal

==========================================================

==================== Accounts: =============================

5DAF878E2F07480C9206 (S-1-5-21-525092146-1667884894-650739964-1006 - Limited - Enabled)

Administrator (S-1-5-21-525092146-1667884894-650739964-500 - Administrator - Disabled)

B86F90907D96447A95F7 (S-1-5-21-525092146-1667884894-650739964-1004 - Limited - Enabled)

Guest (S-1-5-21-525092146-1667884894-650739964-501 - Limited - Disabled)

HomeGroupUser$ (S-1-5-21-525092146-1667884894-650739964-1002 - Limited - Enabled)

Seba (S-1-5-21-525092146-1667884894-650739964-1001 - Administrator - Enabled) => C:\Users\Seba

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Antivirus (Disabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}

AS: Avira Antivirus (Disabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-525092146-1667884894-650739964-1001\...\uTorrent) (Version: 3.5.3.44358 - BitTorrent Inc.)

7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)

Acon Digital Deverberate 2 (HKLM\...\Deverberate 2_is1) (Version: 2.0.2 - Acon Digital)

Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)

ActiveCheck component for HP Active Support Library (HKLM-x32\...\{254C37AA-6B72-4300-84F6-98A82419187E}) (Version: 3.0.0.1 - Hewlett-Packard) Hidden

Adobe After Effects CS6 (HKLM-x32\...\{4817D846-700B-474E-A31B-80892B3E92E3}) (Version: 11 - Adobe Systems Incorporated)

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.)

Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.7.0.400 - Adobe Systems Incorporated)

Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.0.42.34 - Adobe Systems Incorporated)

Adobe Reader 9.1 MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-A91000000001}) (Version: 9.1.0 - Adobe Systems Incorporated)

Adobe Shockwave Player (HKLM-x32\...\{D8DFA46A-39F7-4368-810D-18AFCFDDAEAF}) (Version: 11.5.1.601 - Adobe Systems, Inc.)

Ample Ethno Ukulele version 1.5.5 (HKLM-x32\...\{F6D9F862-94D7-4DDD-AC3B-5F560312B508}_is1) (Version: 1.5.5 - Ample Sound Technology Co., Ltd.)

Ample Guitar M version 3.0.1 (HKLM-x32\...\{8DFC907C-D57F-490A-8392-E729A463CD97}_is1) (Version: 3.0.1 - Ample Sound Technology Co., Ltd.)

Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)

Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)

ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach)

ATI Catalyst Install Manager (HKLM\...\{FB07515A-48AC-9996-16EE-3A3DC8CF8D8E}) (Version: 3.0.790.0 - ATI Technologies, Inc.)

Avid License Control (HKLM-x32\...\{89A9B9EE-839E-4820-9450-2912C82F46AF}) (Version: 6.0.1 - Avid Technology, Inc.)

Avid Pro Tools (HKLM\...\{440A8FC5-DF1F-49F2-8936-227247138A34}) (Version: 12.5.0.395 - Avid Technology, Inc.)

Avira (HKLM-x32\...\{21a0516b-5dd7-4dee-9d36-85ebdc37aa45}) (Version: 1.2.135.51949 - Avira Operations GmbH & Co. KG)

Avira (HKLM-x32\...\{42F08141-3F60-46FF-A5B4-08C4783DACFE}) (Version: 1.2.135.51949 - Avira Operations GmbH & Co. KG) Hidden

Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.1908.1548 - Avira Operations GmbH & Co. KG)

Avira System Speedup (HKLM-x32\...\Avira System Speedup_is1) (Version: 6.2.0.10728 - Avira Operations GmbH & Co. KG)

Axis version 1.0.1 (HKLM\...\Axis_is1) (Version: 1.0.1 - )

Backmask version 1.0 (HKLM\...\{8A6411FB-7E85-4B61-9624-C624C89B9A07}_is1) (Version: 1.0 - Freakshow Industries)

Bejeweled 2 Deluxe (HKLM-x32\...\WT082192) (Version: 2.2.0.82 - WildTangent) Hidden

bl (HKLM-x32\...\{2A075BB4-E976-4278-BF3F-E5C6945D84C0}) (Version: 1.0.0 - Your Company Name) Hidden

Blackhawk Striker 2 (HKLM-x32\...\WT082122) (Version: 2.2.0.82 - WildTangent) Hidden

Blasterball 3 (HKLM-x32\...\WT082124) (Version: 2.2.0.82 - WildTangent) Hidden

Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)

Build-a-lot 2 (HKLM-x32\...\WT082438) (Version: 2.2.0.82 - WildTangent) Hidden

Cake Mania (HKLM-x32\...\WT083477) (Version: 2.2.0.82 - WildTangent) Hidden

ccc-core-static (HKLM-x32\...\{3EE91D75-5721-4662-AE9E-AEF5C6BF41D4}) (Version: 2010.0909.1412.23625 - Nombre de su organización) Hidden

CCleaner (HKLM\...\CCleaner) (Version: 5.60 - Piriform)

CCleaner Browser (HKLM-x32\...\CCleaner Browser) (Version: 75.1.103.145 - Piriform Software)

CCleaner Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.5.21.0 - Piriform Software) Hidden

Celemony Melodyne Studio 4 (HKLM\...\Melodyne Studio 4_is1) (Version: 4.1.1.011 - Celemony)

Chuzzle Deluxe (HKLM-x32\...\WT082200) (Version: 2.2.0.82 - WildTangent) Hidden

CinemaNow Media Manager (HKLM-x32\...\{6C122441-1861-4CD7-B1C5-A163A6984E12}) (Version: 1.9.1.102 - CinemaNow, Inc.)

Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)

Contents (HKLM-x32\...\{F6A76E9C-C299-4CFA-AD2A-57FE9DD68B70}) (Version: 1.6.0.286 - Corel Corporation) Hidden

Corel PaintShop Photo Pro X3 (HKLM-x32\...\_{D1AEB5DB-04FA-489D-94EF-8600898B93EE}) (Version: 1.6.1.116 - Corel Corporation)

Corel PaintShop Photo Pro X3 (HKLM-x32\...\{DA4BF4BE-3CDC-43B5-BBDA-DDDA73103111}) (Version: 1.00.0000 - Corel Corporation) Hidden

Corel VideoStudio Pro X3 (HKLM-x32\...\_{F072CA07-A781-45E4-9975-C033A73019CF}) (Version: 1.6.0.286 - Corel Corporation)

CyberLink DVD Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 7.0.2527 - CyberLink Corp.)

DeviceIO (HKLM-x32\...\{F4E9851F-765E-40B7-9859-237C2724E62C}) (Version: 1.6.0.286 - Corel Corporation) Hidden

Diner Dash 2 Restaurant Rescue (HKLM-x32\...\WT082396) (Version: 2.2.0.82 - WildTangent) Hidden

Dora's Carnival Adventure (HKLM-x32\...\WT082133) (Version: 2.2.0.82 - WildTangent) Hidden

DVD Menu Pack for HP MediaSmart Video (HKLM-x32\...\{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}) (Version: 4.0.3715 - Hewlett-Packard) Hidden

DVD Menu Pack for HP MediaSmart Video (HKLM-x32\...\InstallShield_{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}) (Version: 4.0.3715 - Hewlett-Packard)

eLicenser Control (HKLM-x32\...\eLicenser Control) (Version: 6.10.5.1203 - Steinberg Media Technologies GmbH)

Endless Smile 1.0.0 (HKU\S-1-5-21-525092146-1667884894-650739964-1001\...\Endless Smile) (Version: 1.0.0 - Dada Life)

Escape Rosecliff Island (HKLM-x32\...\WT083484) (Version: 2.2.0.82 - WildTangent) Hidden

ESU for Microsoft Windows 7 (HKLM-x32\...\{3877C901-7B90-4727-A639-B6ED2DD59D43}) (Version: 1.0.0 - Hewlett-Packard)

EZdrummer 2 64-bit (HKLM\...\{B9217824-0EBE-49C7-98A0-A76CC46BBB7D}) (Version: 2.0.0 - Toontrack)

EZdrummer 2 64-bit Update (HKLM\...\{11CC8964-9CB0-46E6-9218-CD39ED4A554D}) (Version: 2.1.4 - Toontrack)

FabFilter Total Bundle (HKLM\...\FabFilter Total Bundle_is1) (Version: 2018.11 - FabFilter & Team V.R)

Faerie Solitaire (HKLM-x32\...\WT082442) (Version: 2.2.0.82 - WildTangent) Hidden

FATE (HKLM-x32\...\WT082141) (Version: 2.2.0.82 - WildTangent) Hidden

Fatmaker_Full_x64 version 1.1.0 (HKLM-x32\...\{4A6E3FFF-9E6F-4F79-8BF8-74741E64FFC0}_is1) (Version: 1.1.0 - Singomakers, Inc.)

Focusrite USB 4.63.23.563 (HKLM\...\Focusrite USB_is1) (Version: 4.63.23.563 - Focusrite Audio Engineering, Ltd.)

Goodhertz All Plugins Bundle (HKLM\...\Goodhertz All Plugins Bundle_is1) (Version: 3.3.1.1 - Goodhertz)

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 76.0.3809.100 - Google LLC)

Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden

Hive (HKLM\...\u-he Hive_is1) (Version: 1.2.0.8115 - Heckmann Audio & Team V.R)

HP 3D DriveGuard (HKLM\...\{85A42FF0-F0D0-44A3-B226-C124D6E8B1D5}) (Version: 4.0.3.1 - Hewlett-Packard)

HP Advisor (HKLM-x32\...\{40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}) (Version: 3.4.10144.3282 - Hewlett-Packard)

HP DVB-T TV Tuner 8.0.64.43 (HKLM-x32\...\HP DVB-T TV Tuner) (Version: 8.0.64.43 - )

HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.0.80 - WildTangent)

HP MediaSmart CinemaNow 2.0 (HKLM-x32\...\{9008D736-35CA-40DB-A2BE-5F32D954E5AA}) (Version: 2.0 - Hewlett-Packard)

HP MediaSmart DVD (HKLM-x32\...\InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}) (Version: 4.0.3727 - Hewlett-Packard)

HP MediaSmart Internet TV (HKLM-x32\...\InstallShield_{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}) (Version: 3.2.2513 - Hewlett-Packard)

HP MediaSmart Movies and TV (HKLM\...\{4B4E2FA2-3B1E-4147-99DB-5033981D8C2F}) (Version: 1.0.0.10 - Hewlett-Packard)

HP MediaSmart Music (HKLM-x32\...\InstallShield_{91A34181-9FAD-43AB-A35F-E7A8945B7E1C}) (Version: 4.0.3722 - Hewlett-Packard)

HP MediaSmart Photo (HKLM-x32\...\InstallShield_{6DAF8CDC-9B04-413B-A0F2-BCC13CF8A5BF}) (Version: 4.0.3722 - Hewlett-Packard)

HP MediaSmart SmartMenu (HKLM\...\{731A1D36-BF17-4C76-B7E7-CC055AF8C54E}) (Version: 3.1.1.12 - Hewlett-Packard)

HP MediaSmart Video (HKLM-x32\...\InstallShield_{D12E3E7F-1B13-4933-A915-16C7DD37A095}) (Version: 4.0.3722 - Hewlett-Packard)

HP MediaSmart Webcam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 4.0.2511 - Hewlett-Packard)

HP MediaSmart/TouchSmart Netflix (HKLM-x32\...\{35021DFB-F9CA-402A-89A2-47F91E506465}) (Version: 1.0.2.0 - Hewlett-Packard)

HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.2261 - HP Photo Creations Powered by RocketLife)

HP Quick Launch (HKLM\...\{10F539B1-31AF-43BF-9F0C-0EB66E918922}) (Version: 1.0.18 - Hewlett-Packard)

HP QuickWeb Installer (HKLM-x32\...\{394FA67A-FF0A-4356-BB77-D85E5A300BDE}) (Version: 1.2.9.1 - DeviceVM Inc.)

HP Setup (HKLM-x32\...\{E2831862-F131-4327-B9CC-FA30F587EB6C}) (Version: 1.2.3988.3281 - Hewlett-Packard)

HP SimplePass Identity Protection (HKLM\...\{F20DF0CA-5929-4C26-A501-FDB19FDF0A50}) (Version: 5.00.140 - DigitalPersona, Inc.)

HP Software Framework (HKLM-x32\...\{15436D38-68EF-4D20-A794-755F54E7E955}) (Version: 3.5.16.1 - Hewlett-Packard Company)

HP Support Assistant (HKLM-x32\...\{33A0B67A-CF04-4F31-B3D0-EEEEDEF7078E}) (Version: 8.8.24.33 - HP Inc.)

HP Support Solutions Framework (HKLM-x32\...\{47972CE8-5384-4658-B426-E3063D37731B}) (Version: 12.12.32.3 - HP Inc.)

HP Tone Control (HKLM\...\{9207D4A1-586E-49CA-A002-FC9F475AB1A3}) (Version: 2.0.2 - Hewlett-Packard Company)

HP Update (HKLM-x32\...\{D46D081B-F60E-467E-A7C4-117B70D76731}) (Version: 5.001.000.014 - Hewlett-Packard)

HP User Guides 0177 (HKLM-x32\...\{8DA0CD14-79DF-49BF-B133-409C004F27E1}) (Version: 1.01.0000 - Hewlett-Packard)

HP Wireless Assistant (HKLM\...\{0279C882-B150-44B6-A769-A7C8A2F31CE3}) (Version: 4.0.3.2 - Hewlett-Packard)

HPAsset component for HP Active Support Library (HKLM-x32\...\{669D4A35-146B-4314-89F1-1AC3D7B88367}) (Version: 3.0.0.3 - Hewlett-Packard) Hidden

Hulu Desktop (HKU\S-1-5-21-525092146-1667884894-650739964-1001\...\HuluDesktop) (Version: 0.9.11 - Hulu LLC)

ICA (HKLM-x32\...\{D1AEB5DB-04FA-489D-94EF-8600898B93EE}) (Version: 1.6.1.116 - Corel Corporation) Hidden

ICA (HKLM-x32\...\{F072CA07-A781-45E4-9975-C033A73019CF}) (Version: 1.6.0.286 - Corel Corporation) Hidden

Icecream Screen Recorder versión 5.991 (HKLM-x32\...\{7ADEC622-3230-4C9A-9DCE-9BD462B74095}_is1) (Version: 5.991 - Icecream Apps)

IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6265.0 - IDT)

IK Multimedia Authorization Manager version 1.0.19 (HKLM\...\{85BC0DCB-69E5-4279-AA25-F108EF896588}_is1) (Version: 1.0.19 - IK Multimedia)

Intel(R) C++ Redistributables on IA-32 (HKLM-x32\...\{317059CB-7642-4F2E-89C0-62E69D4074B7}) (Version: 15.0.148 - Intel Corporation)

Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{2DD3C090-2986-4970-B3CB-87BB4C8AC4A5}) (Version: 15.0.148 - Intel Corporation)

Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)

Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.5.4.1001 - Intel Corporation)

Intel(R) Turbo Boost Technology Driver (HKLM-x32\...\{D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}) (Version: 01.00.00.1030 - Intel Corporation)

IPM_PSP_Pro (HKLM-x32\...\{DCD941B6-F2E7-4FAF-B102-F7D4DE5FF99A}) (Version: 1.00.0000 - Corel Corporation) Hidden

IPM_VS_Pro (HKLM-x32\...\{FD67D9F3-FED6-4A2E-9D6C-8C8C44DEF8FF}) (Version: 13.0 - Corel Corporation) Hidden

ISCOM (HKLM-x32\...\{D1F80EFD-A032-4E8E-A367-70C44AD4DCE0}) (Version: 1.6.1.116 - Corel Corporation) Hidden

ISCOM (HKLM-x32\...\{FE661711-E392-4B3F-A4A7-02C747C09134}) (Version: 1.6.0.286 - Corel Corporation) Hidden

iZotope iDrum (HKLM-x32\...\iZotope iDrum_is1) (Version: 1.75 - iZotope, Inc.)

iZotope RX 7 Audio Editor Advanced (HKLM\...\RX 7 Audio Editor Advanced_is1) (Version: 7.00 - iZotope & Team V.R)

iZotope VocalSynth 2 (HKLM\...\VocalSynth 2_is1) (Version: 2.00 - iZotope & Team V.R)

Jam Origin MIDI Guitar 2 (HKLM\...\MIDI Guitar 2_is1) (Version: 2.2.1 - Jam Origin)

Java(TM) 6 Update 17 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416017FF}) (Version: 6.0.170 - Sun Microsystems, Inc.)

Java(TM) 6 Update 17 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216017FF}) (Version: 6.0.170 - Sun Microsystems, Inc.)

JBridge (HKLM-x32\...\JBridge) (Version: - JBridge)

Jewel Quest 3 (HKLM-x32\...\WT082443) (Version: 2.2.0.82 - WildTangent) Hidden

Jewel Quest Solitaire 2 (HKLM-x32\...\WT082468) (Version: 2.2.0.82 - WildTangent) Hidden

Junk Mail filter update (HKLM-x32\...\{E2DFE069-083E-4631-9B6C-43C48E991DE5}) (Version: 14.0.8089.726 - Microsoft Corporation) Hidden

K-Lite Codec Pack 14.1.5 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 14.1.5 - KLCP)

KORG USB-MIDI Driver Tools for Windows (HKLM-x32\...\{E373514C-21E0-4E76-BABD-C7BAF6BFFF45}) (Version: 1.11.0040 - KORG Inc.)

LabelPrint (HKLM-x32\...\{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.2515 - CyberLink Corp.) Hidden

LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.2515 - CyberLink Corp.)

LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )

LightScribe System Software (HKLM-x32\...\{FA8BFB25-BF48-4F8B-8859-B30810745190}) (Version: 1.18.11.1 - LightScribe)

Malwarebytes versión 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes)

MeldaProduction Audio Plugins 13 (HKLM-x32\...\MeldaProduction Audio Plugins 13) (Version: - MeldaProduction)

Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)

Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.4518.1014 - Microsoft Corporation)

Microsoft Office PowerPoint Viewer 2007 (English) (HKLM-x32\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)

Microsoft Office Suite Activation Assistant (HKLM-x32\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.9 - Microsoft Corporation)

Microsoft Office XP Professional con FrontPage (HKLM-x32\...\{90280C0A-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.4330.0 - Microsoft Corporation)

Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 3.0.40818.0 - Microsoft Corporation)

Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)

Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27027 (HKLM-x32\...\{fd9b6070-d13e-45dc-819b-41806bf45b6b}) (Version: 14.16.27027.1 - Microsoft Corporation)

Microsoft Visual C++ 2017 Redistributable (x86) - 14.14.26429 (HKLM-x32\...\{2019b6a0-8533-4a04-ac0e-b2c10bdb9841}) (Version: 14.14.26429.4 - Microsoft Corporation)

Microsoft Visual F# 2.0 Runtime (HKLM-x32\...\{85467CBC-7A39-33C9-8940-D72D9269B84F}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Works (HKLM-x32\...\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}) (Version: 9.7.0621 - Microsoft Corporation)

MODO BASS version 1.5.1 (HKLM\...\{C882B130-90DD-4F00-9D6B-2F58D923E92B}_is1) (Version: 1.5.1 - IK Multimedia)

Movie Theme Pack for HP MediaSmart Video (HKLM-x32\...\{3023EBDA-BF1B-4831-B347-E5018555F26E}) (Version: 4.0.3715 - Hewlett-Packard) Hidden

Movie Theme Pack for HP MediaSmart Video (HKLM-x32\...\InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}) (Version: 4.0.3715 - Hewlett-Packard)

Mozilla Firefox 65.0.2 (x64 es-AR) (HKLM\...\Mozilla Firefox 65.0.2 (x64 es-AR)) (Version: 65.0.2 - Mozilla)

Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 64.0 - Mozilla)

MSN Toolbar (HKLM-x32\...\{08234a0d-cf39-4dca-99f0-0c5cb496da81}) (Version: 4.0.0369.0 - Microsoft Corporation)

MSN Toolbar Platform (HKLM-x32\...\{4123BE4D-C65C-467E-8071-232FB1FBF3B8}) (Version: 4.0.0369.0 - Microsoft Corporation) Hidden

MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)

MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)

Mystery P.I. - The New York Fortune (HKLM-x32\...\WT082456) (Version: 2.2.0.82 - WildTangent) Hidden

Native Instruments Kontakt 5 (HKLM-x32\...\Native Instruments Kontakt 5) (Version: 5.8.1.43 - Native Instruments)

Nebula version 1.0.2 (HKLM\...\Nebula_is1) (Version: 1.0.2 - )

Nicky Romero Kickstart 1.0.9 (HKLM\...\Kickstart_is1) (Version: 1.0.9 - Nicky Romero)

Oracle version 1.0.1 (HKLM\...\Oracle_is1) (Version: 1.0.1 - )

PACE License Support Win64 (HKLM\...\{83E92696-D92D-4c7e-B094-0BE853B191FE}) (Version: 2.5.2.1034 - PACE Anti-Piracy, Inc.) Hidden

PACE License Support Win64 (HKLM-x32\...\InstallShield_{83E92696-D92D-4c7e-B094-0BE853B191FE}) (Version: 2.5.2.1034 - PACE Anti-Piracy, Inc.)

Penguins! (HKLM-x32\...\WT082168) (Version: 2.2.0.82 - WildTangent) Hidden

ph (HKLM-x32\...\{185F9795-9663-4F13-9EF9-307A282ADB5A}) (Version: 1.0.0 - Your Company Name) Hidden

PhotoNow! (HKLM-x32\...\{D36DD326-7280-11D8-97C8-000129760CBE}) (Version: 1.1.6904 - CyberLink Corp.) Hidden

PhotoNow! (HKLM-x32\...\InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}) (Version: 1.1.6904 - CyberLink Corp.)

Photoshop CS5 Extended 12.0 (HKLM-x32\...\Photoshop CS5 Extended 12.0) (Version: - )

Plants vs. Zombies (HKLM-x32\...\WT082170) (Version: 2.2.0.82 - WildTangent) Hidden

Poker Superstars III (HKLM-x32\...\WT082171) (Version: 2.2.0.82 - WildTangent) Hidden

Polar Bowler (HKLM-x32\...\WT082172) (Version: 2.2.0.82 - WildTangent) Hidden

Polar Golfer (HKLM-x32\...\WT082173) (Version: 2.2.0.82 - WildTangent) Hidden

Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.3715 - CyberLink Corp.) Hidden

Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.3715 - CyberLink Corp.)

PowerDirector (HKLM-x32\...\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 8.0.2514 - CyberLink Corp.) Hidden

PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 8.0.2514 - CyberLink Corp.)

PreSonus Studio One 4 (HKLM\...\Studio One 4_is1) (Version: 4.1.3 - PreSonus)

PSPPContent (HKLM-x32\...\{DF8B9311-ADE7-4EDE-B121-326CAA3D225D}) (Version: 1.00.0000 - Corel Corporation) Hidden

PSPPRO_DCRAW (HKLM-x32\...\{DCF1928A-FC01-48E7-A7E6-4651D42EF6A1}) (Version: 13.0.0 - Corel Corporation) Hidden

PureHD (HKLM-x32\...\{F8423392-2296-4748-9B66-344432459632}) (Version: 1.6.0.286 - Corel Corporation) Hidden

PX Profile Update (HKLM-x32\...\{08C94F9D-EB51-D748-E299-E347A2C14A81}) (Version: 1.00.1. - AMD) Hidden

PX Profile Update (HKLM-x32\...\{12A98725-C278-32D9-11CA-ADCFF8D58FEB}) (Version: 1.00.1. - AMD) Hidden

QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)

Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.11.1127.2009 - Realtek)

Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30111 - Realtek Semiconductor Corp.)

REAPER (x64) (HKLM\...\REAPER) (Version: - )

Recovery Manager (HKLM-x32\...\{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}) (Version: 5.5.2512 - CyberLink Corp.) Hidden

reFX Nexus VSTi RTAS v2.2.0 (HKLM-x32\...\reFX Nexus_is1) (Version: - )

Setup (HKLM-x32\...\{D1612A3D-0DCC-4055-BB6A-0036F31158A0}) (Version: 1.6.1.116 - Corel Corporation) Hidden

Setup (HKLM-x32\...\{F069C491-69E6-4D9B-9A0C-B7894A1FA97C}) (Version: 1.6.0.286 - Corel Corporation) Hidden

Share (HKLM-x32\...\{F909BD3C-8684-4ACF-B7C3-33F4F9F901B7}) (Version: 1.6.0.286 - Corel Corporation) Hidden

Share64 (HKLM\...\{F6246243-CF06-4E40-8A37-C3B537695C36}) (Version: 1.6.0.286 - Corel Corporation) Hidden

Sibelius 7 OpenType Fonts (HKLM-x32\...\{44998978-7DDB-4AD0-BDF5-D226FBC029FE}) (Version: 7.1.2 - Avid)

Sidechain Compressor (HKLM\...\Sidechain Compressor_is1) (Version: 2.0.0 - db audioware & Team V.R)

Skype version 8.51 (HKLM-x32\...\Skype_is1) (Version: 8.51 - Skype Technologies S.A.)

SoundWire Server version 2.5 (HKLM-x32\...\{E15658BC-7742-4397-999F-98B1BD11B784}_is1) (Version: 2.5 - GeorgieLabs)

Spectrasonics Trilian VSTi Plug-In version 1.4 (HKLM-x32\...\Spectrasonics Trilian VSTi Plug-In_is1) (Version: - Copyright (C) 2009-2011 Spectrasonics)

Steinberg Cubase LE AI Elements 8 64bit (HKLM\...\{C801D1E6-30E3-46BE-368D-0106B42CCE17}) (Version: 8.0.35 - Steinberg Media Technologies GmbH)

Steinberg Drum Loop Expansion 01 (HKLM-x32\...\{490BF87E-1F75-4453-BF55-9F540543A3CA}) (Version: 2.0.0.0 - Steinberg Media Technologies GmbH)

Steinberg Groove Agent ONE Content (HKLM-x32\...\{BD86F1AC-B594-46E4-85DC-1258AC9E2232}) (Version: 1.0.0.003 - Steinberg Media Technologies GmbH)

Steinberg Groove Agent ONE Vintage Beatboxes (HKLM-x32\...\{DBF4BC99-53F1-4C97-84C3-7557D103E182}) (Version: 1.0.0.000 - Steinberg Media Technologies GmbH)

Steinberg Groove Agent SE 64bit (HKLM\...\{A5AB0D21-21BD-4DB8-F097-02E8FC8C486A}) (Version: 4.2.30 - Steinberg Media Technologies GmbH)

Steinberg Groove Agent SE Content (HKLM-x32\...\{AFC9D1CE-F050-437C-35A5-62DEDB262DC7}) (Version: 1.2.20 - Steinberg Media Technologies GmbH)

Steinberg HALion Sonic SE 64bit (HKLM\...\{B99C316B-C135-43B5-8E77-2BC5E241F964}) (Version: 2.0.2 - Steinberg Media Technologies GmbH)

Steinberg HALion Sonic SE Content for Cubase LE AI Elements (HKLM-x32\...\{CF45002F-2205-4116-BB51-2D015F436CAC}) (Version: 2.0.1 - Steinberg Media Technologies GmbH)

Steinberg Midi Loop Library (HKLM-x32\...\{89DE2651-6DD9-4C15-AC94-8348362D456C}) (Version: 1.0.0 - Steinberg Media Technologies GmbH)

Steinberg REVerence Content 01 (HKLM-x32\...\{532B917B-8235-4FA5-BE36-643A8BB053A5}) (Version: 2.0.1.000 - Steinberg Media Technologies GmbH)

Steinberg Upload Manager (HKLM-x32\...\{88BBBD8F-4C19-4809-B84B-7A8F8238B48D}) (Version: 1.0.2 - Steinberg Media Technologies GmbH)

Steinberg VST Amp Rack Content 01 (HKLM-x32\...\{8CBA7E47-48DA-47DC-8E98-6984BA830295}) (Version: 1.0.1 - Steinberg Media Technologies GmbH)

Storch Expansion 1 version 1.0.0 (HKLM\...\{8C4C3233-1E56-49A6-B484-510C1D743BEE}_is1) (Version: 1.0.0 - StudioLinked)

Storch Sound Content 1 version 1.0.0 (HKLM\...\{74D360DE-3AE3-4CC6-9EF1-B89227EE28EE}_is1) (Version: 1.0.0 - StudioLinked)

Storch version 1.0.0 (HKLM\...\{5B4A2EC3-279F-4025-B976-6CC54FCC1823}_is1) (Version: 1.0.0 - StudioLinkedVST)

Sugar Bytes TransVST 1.0 (HKLM\...\TransVST_is1) (Version: 1.0 - Sugar Bytes)

Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 14.0.19.0 - Synaptics Incorporated)

TextTwist 2 (HKLM-x32\...\WT083491) (Version: 2.2.0.82 - WildTangent) Hidden

The T-Pain Effect Bundle (HKLM-x32\...\The T-Pain Effect Bundle_is1) (Version: 1.02 - iZotope, Inc.)

Unfiltered Audio Plugins Bundle (HKLM\...\Unfiltered Audio Plugins Bundle_is1) (Version: 1.0.2 - Team V.R)

Update for Office 2007 (KB934528) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{2B939677-2FFD-48F6-9075-7BF48CB87C80}) (Version: - )

Valhalla DSP Valhalla VintageVerb (HKLM\...\Valhalla VintageVerb_is1) (Version: 1.7.1 - Valhalla DSP)

ValhallaRoom version 1.1.1 (HKLM-x32\...\{375980F3-1584-496E-888B-BD3D81EF0C1D}_is1) (Version: 1.1.1 - Valhalla DSP, LLC)

Validity Sensors DDK (HKLM\...\{EE5017A6-7525-4EE9-99DA-2EF1F6C16B1B}) (Version: 4.1.129.0 - Validity Sensors, Inc.)

VEGAS Pro 15.0 (HKLM\...\{E1FCD40F-7FC4-11E7-88AD-95BE57594EAC}) (Version: 15.0.177 - VEGAS)

Vengeance Producer Suite - Scope CM edition 1.0.4 (HKLM-x32\...\{35A4AF82-BC1D-40AA-8174-CA860C6C5327}_is1) (Version: - keilwerth Audio / Vengeance Sound)

VIO (HKLM-x32\...\{F95C8C1F-25BB-44EC-A7E6-5C17ABC6BC71}) (Version: 1.6.0.286 - Corel Corporation) Hidden

Virtual Families (HKLM-x32\...\WT082188) (Version: 2.2.0.82 - WildTangent) Hidden

Virtual Villagers - The Secret City (HKLM-x32\...\WT082241) (Version: 2.2.0.82 - WildTangent) Hidden

VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN)

Voxengo SPAN Plus (HKLM\...\Voxengo SPAN Plus_is1) (Version: 1.5 - Voxengo)

VSClassic (HKLM-x32\...\{FB0B6DDD-DF3E-4CD6-927C-724AB854E322}) (Version: 1.6.0.286 - Corel Corporation) Hidden

VSPro (HKLM-x32\...\{F206FEC3-F5DD-43FD-A8CF-9C46B8A6A92C}) (Version: 1.6.0.286 - Corel Corporation) Hidden

Wheel of Fortune 2 (HKLM-x32\...\WT082189) (Version: 2.2.0.82 - WildTangent) Hidden

WhoCrashed 6.65 (HKLM\...\WhoCrashed_is1) (Version: - Resplendence Software Projects Sp.)

Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8089.0726 - Microsoft Corporation)

Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)

Windows Live Sync (HKLM-x32\...\{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}) (Version: 14.0.8089.726 - Microsoft Corporation)

Windows Live Upload Tool (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)

Windows Media Encoder 9 Series (HKLM-x32\...\Windows Media Encoder 9) (Version: - )

WinRAR 5.61 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH)

WinZip 23.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C2411F}) (Version: 23.0.13431 - Corel Corporation)

XLN Audio RC-20 Retro Color (HKLM\...\RC-20 Retro Color_is1) (Version: 1.0.3 - XLN Audio)

Youlean Loudness Meter 2 version V2.1.1 (HKLM-x32\...\{57AC2129-BA28-47CC-ACC8-BDCE413849DF}_is1) (Version: V2.1.1 - Youlean)

Zuma's Revenge (HKLM-x32\...\WT082463) (Version: 2.2.0.82 - WildTangent) Hidden

Zynaptiq INTENSITY (HKLM\...\INTENSITY_is1) (Version: 1.2.0 - Zynaptiq)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-525092146-1667884894-650739964-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems)

ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]

ContextMenuHandlers1: [Corel.Paint.Shop.Pro.Photo] -> {B1D2CD8F-45E9-49d1-838A-AAA5780D94B7} => c:\Program Files (x86)\Corel\Corel PaintShop Photo Pro\X3\PSPClassic\PSPContextMenu64.dll [2010-01-19] (Corel Corporation -> )

ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2019-08-08] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

ContextMenuHandlers1: [SystemSpeedupFilesMenu] -> {14cb2bd0-2375-3d10-9b5d-5e18865c8959} => C:/Program Files (x86)/Avira/System Speedup/Avira.SystemSpeedup.UI.ShellExtension.DLL [2019-08-15] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)

ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)

ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2019-05-10] (Corel Corporation -> WinZip Computing)

ContextMenuHandlers2: [Corel.Paint.Shop.Pro.Photo] -> {B1D2CD8F-45E9-49d1-838A-AAA5780D94B7} => c:\Program Files (x86)\Corel\Corel PaintShop Photo Pro\X3\PSPClassic\PSPContextMenu64.dll [2010-01-19] (Corel Corporation -> )

ContextMenuHandlers2-x32: [Ulead UDF Driver] -> {DBD8E168-244D-448C-9922-25508950D1DC} => c:\Program Files (x86)\Common Files\Ulead Systems\DVD\USIShex.dll [2010-01-14] (Corel Corporation -> Ulead Systems, Inc.)

ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes Corporation -> Malwarebytes)

ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]

ContextMenuHandlers4: [Corel.Paint.Shop.Pro.Photo] -> {B1D2CD8F-45E9-49d1-838A-AAA5780D94B7} => c:\Program Files (x86)\Corel\Corel PaintShop Photo Pro\X3\PSPClassic\PSPContextMenu64.dll [2010-01-19] (Corel Corporation -> )

ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File

ContextMenuHandlers4: [SystemSpeedupFoldersMenu] -> {700866bb-c8e9-3e71-b359-abb28baed0e8} => C:/Program Files (x86)/Avira/System Speedup/Avira.SystemSpeedup.UI.ShellExtension.DLL [2019-08-15] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2019-05-10] (Corel Corporation -> WinZip Computing)

ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2010-09-09] (Advanced Micro Devices, Inc.) [File not signed]

ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2010-07-27] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)

ContextMenuHandlers5: [SystemSpeedupDesktopMenu] -> {0cab5786-30e8-3185-9b3b-ccefbf1b8afe} => C:/Program Files (x86)/Avira/System Speedup/Avira.SystemSpeedup.UI.ShellExtension.DLL [2019-08-15] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]

ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes Corporation -> Malwarebytes)

ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File

ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2019-08-08] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)

ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)

ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2019-05-10] (Corel Corporation -> WinZip Computing)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Seba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Escritorio Remoto de Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=gbchcmhmhahfdphkhkmpfmihenigjmpp

ShortcutWithArgument: C:\Users\Seba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Hangouts de Google.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-id=knipolnnllmklapflnccelgolnpehhpl

==================== Loaded Modules (Whitelisted) ==============

2010-02-27 22:33 - 2010-02-27 22:33 - 000005120 _____ ( ) [File not signed] C:\Windows\assembly\GAC_MSIL\Interop.HPQWMIEXLib\1.0.0.0__67b8d1b5179ba5f8\Interop.HPQWMIEXLib.dll

2018-12-03 17:00 - 2019-08-08 17:12 - 001901568 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\ffmpeg.dll

2018-12-03 17:00 - 2019-08-08 17:12 - 000115712 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\libegl.dll

2018-12-03 17:00 - 2019-08-08 17:12 - 004636672 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\libglesv2.dll

2010-09-09 14:06 - 2010-09-09 14:06 - 000875520 _____ (Advanced Micro Devices, Inc.) [File not signed] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll

2010-09-09 14:05 - 2010-09-09 14:05 - 000003584 _____ (Advanced Micro Devices, Inc.) [File not signed] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiamenu.dll

2010-06-26 06:43 - 2010-03-03 03:37 - 001892352 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\xerces-c_2_7.dll

2010-01-11 19:18 - 2010-01-11 19:18 - 000101472 _____ (CyberLink -> Cyberlink) [File not signed] c:\Program Files (x86)\Hewlett-Packard\Media\Webcam\subsys\YouCam\CLRGL.ax

2010-01-11 19:19 - 2010-01-11 19:19 - 000281696 _____ (CyberLink -> CyberLink) [File not signed] c:\Program Files (x86)\Hewlett-Packard\Media\Webcam\subsys\YouCam\YCWebCameraSource.ax

2010-01-11 19:19 - 2010-01-11 19:19 - 001056352 _____ (CyberLink -> Microsoft Corporation) [File not signed] c:\Program Files (x86)\Hewlett-Packard\Media\Webcam\subsys\YouCam\MFC71U.DLL

2010-01-11 19:19 - 2010-01-11 19:19 - 000506976 _____ (CyberLink -> Microsoft Corporation) [File not signed] c:\Program Files (x86)\Hewlett-Packard\Media\Webcam\subsys\YouCam\MSVCP71.dll

2010-01-11 19:19 - 2010-01-11 19:19 - 000351328 _____ (CyberLink -> Microsoft Corporation) [File not signed] c:\Program Files (x86)\Hewlett-Packard\Media\Webcam\subsys\YouCam\MSVCR71.dll

2010-01-22 15:14 - 2010-01-22 15:14 - 000033792 _____ (Hewlett-Packard Company) [File not signed] C:\Program Files (x86)\Common Files\LightScribe\LSLog.dll

2010-01-22 15:13 - 2010-01-22 15:13 - 000110592 _____ (Hewlett-Packard Company) [File not signed] C:\Program Files (x86)\Common Files\LightScribe\LSSProxy.dll

2019-05-16 21:01 - 2019-02-21 13:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll

2010-06-26 06:43 - 2010-03-03 03:37 - 000077824 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\DTMessageLib.dll

2010-06-26 06:43 - 2010-03-03 03:32 - 000069632 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\StatusStrings.dll

2009-08-18 15:24 - 2009-08-18 15:24 - 000167424 _____ (Microsoft Corporation) [File not signed] C:\Program Files\Common Files\Microsoft Shared\Windows Live\sqmapi.dll

2018-03-26 12:58 - 2018-03-26 12:58 - 000112128 _____ (Microsoft Corporation) [File not signed] C:\Windows\Microsoft.Net\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll

2019-01-28 08:10 - 2019-01-28 08:09 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qico.dll

2019-01-28 08:10 - 2019-01-28 08:09 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qsvg.dll

2018-12-12 11:58 - 2019-01-28 08:09 - 001181184 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\platforms\qwindows.dll

2018-12-12 11:58 - 2019-01-28 08:09 - 005010944 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll

2018-12-12 11:58 - 2019-01-28 08:09 - 005139968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Gui.dll

2018-12-12 11:58 - 2019-01-28 08:09 - 002234880 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Network.dll

2018-12-12 11:58 - 2019-01-28 08:09 - 002950144 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Qml.dll

2018-12-12 11:58 - 2019-01-28 08:09 - 003084800 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Quick.dll

2018-12-12 11:58 - 2019-01-28 08:09 - 000259584 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Svg.dll

2018-12-12 11:58 - 2019-01-28 08:09 - 004571648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Widgets.dll

2018-12-12 11:58 - 2019-01-28 08:09 - 000438272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5WinExtras.dll

2019-01-28 08:10 - 2019-01-28 08:09 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\modelsplugin.dll

2019-01-28 08:10 - 2019-01-28 08:09 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\qtquick2plugin.dll

2019-01-28 08:10 - 2019-01-28 08:09 - 000729088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\qtquickcontrolsplugin.dll

2019-01-28 08:10 - 2019-01-28 08:09 - 000179712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\dialogplugin.dll

2019-01-28 08:10 - 2019-01-28 08:09 - 000073216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\qquicklayoutsplugin.dll

2019-01-28 08:10 - 2019-01-28 08:09 - 000101888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\PrivateWidgets\widgetsplugin.dll

2019-01-28 08:10 - 2019-01-28 08:09 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\windowplugin.dll

2018-12-12 11:58 - 2019-01-28 08:09 - 000124928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\styles\qwindowsvistastyle.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-525092146-1667884894-650739964-1001\...\localhost -> localhost

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 23:34 - 2019-01-27 13:26 - 000000889 _____ C:\Windows\system32\drivers\etc\hosts

127.0.0.1 www.r2rdownload.com

127.0.0.1 www.elephantafiles.com

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-525092146-1667884894-650739964-1001\Control Panel\Desktop\\Wallpaper ->

DNS Servers: 200.49.120.2 - 200.49.120.3

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office.lnk => C:\Windows\pss\Microsoft Office.lnk.CommonStartup

MSCONFIG\startupreg: Adobe Creative Cloud => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true

MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"

MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

MSCONFIG\startupreg: AdobeGCInvoker-1.0 => "C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe"

MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

MSCONFIG\startupreg: CCleaner Smart Cleaning => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR

MSCONFIG\startupreg: DigidesignMMERefresh => C:\Program Files\Avid\Pro Tools\MMERefresh.exe

MSCONFIG\startupreg: GoogleChromeAutoLaunch_A3AE2B88709917E29C176A59EC07D358 => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5

MSCONFIG\startupreg: HP Quick Launch => C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe

MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe

MSCONFIG\startupreg: HPAdvisorDock => C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe

MSCONFIG\startupreg: HPToneControl => C:\Program Files\Hewlett-Packard\HPToneControl\HPTonectl.exe

MSCONFIG\startupreg: HPWirelessAssistant => C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe 120 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe /hidden

MSCONFIG\startupreg: LightScribe Control Panel => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden

MSCONFIG\startupreg: Microsoft Default Manager => "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume

MSCONFIG\startupreg: MSN Toolbar => "C:\Program Files (x86)\MSN Toolbar\Platform\4.0.0369.0\mswinext.exe"

MSCONFIG\startupreg: NortonOnlineBackupReminder => "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NOBuActivation.exe" UNATTENDED

MSCONFIG\startupreg: SGDawNodeService => C:\Windows\SysWOW64\SGDawNodeService.exe runasservice

MSCONFIG\startupreg: SmartMenu => C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe /background

MSCONFIG\startupreg: StartCCC => "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Java\jre6\bin\jusched.exe"

MSCONFIG\startupreg: SynTPEnh => %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe

MSCONFIG\startupreg: SysTrayApp => C:\Program Files\IDT\WDM\sttray64.exe

MSCONFIG\startupreg: uTorrent => "C:\Users\Seba\AppData\Roaming\uTorrent\uTorrent.exe"

MSCONFIG\startupreg: WinZip FAH => C:\Program Files\WinZip\FAHConsole.exe

MSCONFIG\startupreg: WinZip PreLoader => C:\Program Files\WinZip\WzPreloader.exe

MSCONFIG\startupreg: WinZip UN => C:\Program Files\WinZip\WZUpdateNotifier.exe -show

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{978749DB-C886-4B89-95FE-D6D4C8B8F350}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\wlcsdk.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{8B2204C8-F50D-4E9B-B57A-03A41BD3D4CF}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{E25C7EA2-0C0C-4F20-9074-0AF3FA52D85B}] => (Allow) svchost.exe (Microsoft Windows -> Microsoft Corporation)

FirewallRules: [{D0DAEDE6-3229-40C7-9C47-72A2C8ACD8D3}] => (Allow) C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{D3197E11-AC63-4B0E-A149-D236D23E6078}] => (Allow) c:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPDVDSmart.exe (CyberLink -> CyberLink Corp.)

FirewallRules: [{28F2781F-3828-4B41-B617-5A38175F2C1F}] => (Allow) c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Music\HPTouchSmartMusic.exe (CyberLink -> CyberLink Corp.)

FirewallRules: [{B90A00DB-D204-42EB-A383-DAA71F4C5C71}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\Media\iTV\HPiTV.exe (CyberLink -> CyberLink Corp.)

FirewallRules: [{BF10DECD-9048-4FEB-8211-A2CA49145F96}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\MediaSmart\CinemaNow\CinemaNow.exe (Sonic Solutions -> Sonic Solutions)

FirewallRules: [{D34D0FED-7168-4647-A9F5-9D12148E2BA4}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\MediaSmart\CinemaNow\CinemaNow.exe (Sonic Solutions -> Sonic Solutions)

FirewallRules: [{AC734806-3DF4-4295-AF49-85BD3F548CAE}] => (Allow) C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemaNowShell.exe (Sonic Solutions -> CinemaNow Inc.)

FirewallRules: [{587F17FD-57D4-405A-B09A-481FB2AE4305}] => (Allow) C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemaNowShell.exe (Sonic Solutions -> CinemaNow Inc.)

FirewallRules: [{A27C6CCE-76D9-4FB0-A928-BE6231A73A15}] => (Allow) C:\Program Files (x86)\Waves\MultiRack\MultiRack SoundGrid.exe (Waves Inc -> Waves Audio Ltd.)

FirewallRules: [{A7EA3B45-731E-4776-8548-5FFC539A1E1C}] => (Allow) C:\Users\Seba\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)

FirewallRules: [{D1382921-7F29-4F66-96BE-423E877FE7B5}] => (Allow) C:\Users\Seba\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)

FirewallRules: [{9BA19648-AB18-442E-A137-9ECF2E596A3B}] => (Allow) C:\Users\Seba\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)

FirewallRules: [{831F1626-399F-44D3-8EE9-BFFC70ACACC1}] => (Allow) C:\Users\Seba\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)

FirewallRules: [{40326070-A700-4EDB-BC4F-E145AC69DBF0}] => (Allow) C:\Users\Seba\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)

FirewallRules: [{D522C0B0-8A2B-44F2-88CA-49C21D733F70}] => (Allow) C:\Users\Seba\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)

FirewallRules: [{8063F6D8-2156-4C88-96EA-114379DB7F1B}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)

FirewallRules: [{C83DD626-7B24-4D74-90B8-6E52C85F7FA0}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)

FirewallRules: [{F4EDC09D-2A55-498B-BF5D-02EA98DB7B3D}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{BE25E9AA-CB1F-4AFF-99DB-354CEAC64C7C}] => (Allow) C:\Program Files\Avid\Pro Tools\ProTools.exe (Avid Technology, Inc.) [File not signed]

FirewallRules: [{16A54CE9-9473-43EB-B5C3-D9A860684765}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{CB312EE1-2FD3-4B70-A1B1-1A03AF1A637B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{659C3688-129A-4AE6-BC96-B8CA33837803}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{43527417-1328-4CA6-806E-17C9E1B94327}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{2ED92086-DB77-478E-9780-84F9F34CA754}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)

FirewallRules: [{002039AA-3CCE-4825-99A2-0D7A1E10E305}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)

FirewallRules: [TCP Query User{12ECC321-5C6E-4463-8DE8-60E6CAB98D81}C:\program files\presonus\studio one 4\studio one.exe] => (Allow) C:\program files\presonus\studio one 4\studio one.exe (PreSonus) [File not signed]

FirewallRules: [UDP Query User{5815E8D2-ABDD-46D2-8522-BEC58941EC5C}C:\program files\presonus\studio one 4\studio one.exe] => (Allow) C:\program files\presonus\studio one 4\studio one.exe (PreSonus) [File not signed]

FirewallRules: [TCP Query User{D776C89B-380B-4CEE-9284-F6165C0F9FF0}C:\program files\presonus\studio one 4\pluginscanner.exe] => (Allow) C:\program files\presonus\studio one 4\pluginscanner.exe (PreSonus) [File not signed]

FirewallRules: [UDP Query User{77B5D548-999C-4537-99D2-DA008CD16BBE}C:\program files\presonus\studio one 4\pluginscanner.exe] => (Allow) C:\program files\presonus\studio one 4\pluginscanner.exe (PreSonus) [File not signed]

FirewallRules: [TCP Query User{68E20B87-8799-4B18-A328-EB7F1E39B30F}C:\program files\steinberg\cubase le ai elements 8\cubase le ai elements 8.exe] => (Allow) C:\program files\steinberg\cubase le ai elements 8\cubase le ai elements 8.exe (Steinberg Media Technologies GmbH -> Steinberg Media Technologies) [File not signed]

FirewallRules: [UDP Query User{0B69043A-DF28-4059-8582-4E0620945818}C:\program files\steinberg\cubase le ai elements 8\cubase le ai elements 8.exe] => (Allow) C:\program files\steinberg\cubase le ai elements 8\cubase le ai elements 8.exe (Steinberg Media Technologies GmbH -> Steinberg Media Technologies) [File not signed]

FirewallRules: [TCP Query User{812176DE-92F0-4F30-8019-D87F43642EB7}C:\program files\steinberg\cubase le ai elements 8\components\vstbridgeapp.exe] => (Allow) C:\program files\steinberg\cubase le ai elements 8\components\vstbridgeapp.exe (Steinberg Media Technologies) [File not signed]

FirewallRules: [UDP Query User{544F5C0F-B2A4-47D4-BDF3-AA5A30B7379C}C:\program files\steinberg\cubase le ai elements 8\components\vstbridgeapp.exe] => (Allow) C:\program files\steinberg\cubase le ai elements 8\components\vstbridgeapp.exe (Steinberg Media Technologies) [File not signed]

FirewallRules: [TCP Query User{0ADE0738-8253-40FB-B5BC-DDC2F1ECDD14}C:\program files\steinberg\cubase le ai elements 8\cubase le ai elements 8.exe] => (Allow) C:\program files\steinberg\cubase le ai elements 8\cubase le ai elements 8.exe (Steinberg Media Technologies GmbH -> Steinberg Media Technologies) [File not signed]

FirewallRules: [UDP Query User{A306B65B-4D30-46C3-8915-773AE614D974}C:\program files\steinberg\cubase le ai elements 8\cubase le ai elements 8.exe] => (Allow) C:\program files\steinberg\cubase le ai elements 8\cubase le ai elements 8.exe (Steinberg Media Technologies GmbH -> Steinberg Media Technologies) [File not signed]

FirewallRules: [TCP Query User{F2E22F3E-1C99-45EB-B76F-FA6F3CC127F4}C:\program files\steinberg\cubase le ai elements 8\components\vstbridgeapp.exe] => (Allow) C:\program files\steinberg\cubase le ai elements 8\components\vstbridgeapp.exe (Steinberg Media Technologies) [File not signed]

FirewallRules: [UDP Query User{4EEB2094-F594-4FA8-8A2F-6B5397BA0A2F}C:\program files\steinberg\cubase le ai elements 8\components\vstbridgeapp.exe] => (Allow) C:\program files\steinberg\cubase le ai elements 8\components\vstbridgeapp.exe (Steinberg Media Technologies) [File not signed]

FirewallRules: [TCP Query User{8DFB727D-C03C-432B-A198-FB704EE24820}C:\program files\presonus\studio one 4\studio one.exe] => (Allow) C:\program files\presonus\studio one 4\studio one.exe (PreSonus) [File not signed]

FirewallRules: [UDP Query User{8244E711-E7CB-4A6B-8234-2CCF43DFC680}C:\program files\presonus\studio one 4\studio one.exe] => (Allow) C:\program files\presonus\studio one 4\studio one.exe (PreSonus) [File not signed]

FirewallRules: [{E470749C-82D4-4400-BCA5-0A18298DC233}] => (Allow) C:\Program Files (x86)\WOMic\womicclient.exe () [File not signed]

FirewallRules: [TCP Query User{6438C525-4880-4919-8786-5B3CF68723EE}C:\program files\presonus\studio one 4\pluginscanner.exe] => (Block) C:\program files\presonus\studio one 4\pluginscanner.exe (PreSonus) [File not signed]

FirewallRules: [UDP Query User{C283CD00-8D15-48AE-96A7-BF72AD8B5AA4}C:\program files\presonus\studio one 4\pluginscanner.exe] => (Block) C:\program files\presonus\studio one 4\pluginscanner.exe (PreSonus) [File not signed]

FirewallRules: [TCP Query User{054A9F08-54E1-4028-8AC1-47177C53E20D}C:\program files (x86)\soundwire server\soundwireserver.exe] => (Allow) C:\program files (x86)\soundwire server\soundwireserver.exe (GeorgieLabs) [File not signed]

FirewallRules: [UDP Query User{1CECB613-01C5-46BD-9B1B-8158280F40F6}C:\program files (x86)\soundwire server\soundwireserver.exe] => (Allow) C:\program files (x86)\soundwire server\soundwireserver.exe (GeorgieLabs) [File not signed]

FirewallRules: [{F294D172-F478-4B85-9A2F-7BF503A0B587}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

FirewallRules: [{4B8979B7-6FC4-4B98-9199-396515BFAFFB}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [{B725B276-3E80-414D-8921-9F204D693CD9}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [{97D12BDA-4081-4B29-9139-BB538485DCEB}] => (Allow) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe (Piriform Software Ltd -> Piriform Software)

==================== Restore Points =========================

18-08-2019 12:22:21 Scheduled Checkpoint

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:

==================

Error: (08/19/2019 09:56:46 AM) (Source: Application Hang) (EventID: 1002) (User: )

Description: The program Cubase LE AI Elements 8.exe version 8.0.35.565 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1db0

Start Time: 01d5568bcf45595e

Termination Time: 444

Application Path: C:\Program Files\Steinberg\Cubase LE AI Elements 8\Cubase LE AI Elements 8.exe

Report Id:

Error: (08/19/2019 09:48:32 AM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: Client application registered 2 identical instances of service Seba-PC._omni-live._tcp.local. port 1582.

Error: (08/19/2019 09:47:41 AM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: Client application registered 2 identical instances of service Seba-PC._omni-live._tcp.local. port 1582.

Error: (08/19/2019 09:47:35 AM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: Client application registered 2 identical instances of service Seba-PC._omni-live._tcp.local. port 1582.

Error: (08/19/2019 09:47:19 AM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: Client application registered 2 identical instances of service Seba-PC._omni-live._tcp.local. port 1582.

Error: (08/19/2019 09:47:15 AM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: Client application registered 2 identical instances of service Seba-PC._omni-live._tcp.local. port 1582.

Error: (08/19/2019 09:47:12 AM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: Client application registered 2 identical instances of service Seba-PC._omni-live._tcp.local. port 1582.

Error: (08/19/2019 09:47:10 AM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: Client application registered 2 identical instances of service Seba-PC._omni-live._tcp.local. port 1582.

System errors:

=============

Error: (08/19/2019 09:15:55 AM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: The HP Health Check Service service failed to start due to the following error:

The system cannot find the file specified.

Error: (08/18/2019 10:13:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: The HP Health Check Service service failed to start due to the following error:

The system cannot find the file specified.

Error: (08/18/2019 04:48:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: The HP Wireless Assistant Service service failed to start due to the following error:

The service did not respond to the start or control request in a timely fashion.

Error: (08/18/2019 04:48:11 PM) (Source: Service Control Manager) (EventID: 7009) (User: )

Description: A timeout was reached (30000 milliseconds) while waiting for the HP Wireless Assistant Service service to connect.

Error: (08/18/2019 04:47:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: The HP Health Check Service service failed to start due to the following error:

The system cannot find the file specified.

Error: (08/18/2019 04:43:43 PM) (Source: EventLog) (EventID: 6008) (User: )

Description: The previous system shutdown at 4:41:56 PM on ‎8/‎18/‎2019 was unexpected.

Error: (08/18/2019 10:49:27 AM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: The HP Health Check Service service failed to start due to the following error:

The system cannot find the file specified.

Error: (08/18/2019 10:46:06 AM) (Source: BugCheck) (EventID: 1001) (User: )

Description: The computer has rebooted from a bugcheck. The bugcheck was: 0x000000d1 (0x0000000000000000, 0x0000000000000002, 0x0000000000000008, 0x0000000000000000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: .

CodeIntegrity:

===================================

Date: 2019-08-14 09:09:36.981

Description:

Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Seba\AppData\Local\Temp\ListOpenedFileDrv_64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-08-14 09:09:36.845

Description:

Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Seba\AppData\Local\Temp\ListOpenedFileDrv_64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-08-14 09:09:36.715

Description:

Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Seba\AppData\Local\Temp\ListOpenedFileDrv_64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-08-14 09:09:36.582

Description:

Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Seba\AppData\Local\Temp\ListOpenedFileDrv_64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-03-02 12:33:20.295

Description:

Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Seba\AppData\Local\Temp\ListOpenedFileDrv_64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-03-02 12:33:20.194

Description:

Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Seba\AppData\Local\Temp\ListOpenedFileDrv_64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2018-12-03 19:27:02.500

Description:

Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\SoundGridProtocol.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2018-12-03 19:27:02.468

Description:

Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\SoundGridProtocol.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

BIOS: Hewlett-Packard F.09 06/22/2010

Motherboard: Hewlett-Packard 144B

Processor: Intel(R) Core(TM) i5 CPU M 430 @ 2.27GHz

Percentage of memory in use: 65%

Total physical RAM: 5941.86 MB

Available physical RAM: 2023.17 MB

Total Virtual: 11881.86 MB

Available Virtual: 6786.74 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:573.1 GB) (Free:25.57 GB) NTFS ==>[system with boot components (obtained from drive)]

Drive d: (RECOVERY) (Fixed) (Total:22.78 GB) (Free:3.31 GB) NTFS ==>[system with boot components (obtained from drive)]

Drive e: (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.09 GB) FAT32

\\?\Volume{2e92f64d-f700-11e8-9e18-806e6f6e6963}\ (SYSTEM) (Fixed) (Total:0.19 GB) (Free:0.16 GB) NTFS

==================== MBR & Partition Table ==================

========================================================

Disk: 0 (Size: 596.2 GB) (Disk ID: 41EA23B6)

Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)

Partition 2: (Not Active) - (Size=573.1 GB) - (Type=07 NTFS)

Partition 3: (Not Active) - (Size=22.8 GB) - (Type=07 NTFS)

Partition 4: (Not Active) - (Size=103 MB) - (Type=0C)

==================== End of Addition.txt ============================

Hay infecciones? Muchas gracias de verdad.

Y habemus virus? O no habemus virus?

Hola

:arrow_forward: MUY Importante :arrow_backward: Realiza una copia de seguridad del registro :

  • Para hacerlo descarga :arrow_forward: DelFix.exe( en tu escritorio).

  • Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona -Ejecutar como Administrador-).

  • Atención, ahora marca/selecciona únicamente la casilla "Create registry backup", las demás NO.

  • Pulsar en Run.

Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.

A continuación inicia tu equipo desde el Modo Seguro de Windows sin función de red

:warning: Con los demás programas cerrados ve a :arrow_forward: Inicio :arrow_forward: Ejecutar :arrow_forward: y escribe Notepad.exe.

  • Ahora debes copiar y pegar los códigos/líneas que están en el interior del recuadro de más abajo, dentro del Notepad.
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Focusrite Notifier] => C:\Program Files\FocusriteUSB\Focusrite Notifier.exe [3949568 2019-06-20] (Focusrite Audio Engineering, Ltd.) [File not signed]
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-525092146-1667884894-650739964-1001\...\Run: [] => [X]
HKU\S-1-5-21-525092146-1667884894-650739964-1001\...\MountPoints2: {0765a494-31da-11e9-800c-8948a32cda92} - G:\Startme.exe
HKU\S-1-5-21-525092146-1667884894-650739964-1001\...\Winlogon: [Shell] C:\Windows\explorer.exe [3229696 2016-08-29] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION
HKLM\...\Drivers32: [msacm.dvacm] => c:\Program Files (x86)\Common Files\Ulead Systems\VIO\DVACM.acm [20480 2010-01-14] (Corel TW Corp.) [File not signed]
HKLM\...\Drivers32: [VIDC.MPG4] => C:\Windows\SysWOW64\mpg4c32.dll [427520 2000-06-02] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [VIDC.MP42] => C:\Windows\SysWOW64\mpg4c32.dll [427520 2000-06-02] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [msacm.msaudio1] => C:\Windows\SysWOW64\msaud32.acm [305152 2000-06-02] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [msacm.sl_anet] => C:\Windows\SysWOW64\sl_anet.acm [102400 2000-06-02] (Sipro Lab Telecom Inc.) [File not signed]
GroupPolicy: Restriction ? <==== ATTENTION
Task: {55C2E56E-9627-4542-A884-6A5D45022C99} - System32\Tasks\{77FEBEA2-85EB-4566-85E0-B19756C2023C} => C:\Windows\system32\pcalua.exe -a "C:\Users\Seba\Desktop\vst\Spectrasonics Stylus RMX 1.5 + 1.7 + 1.9.5 + keygen WORKING 100%\install first\dyn-rmx15d1\Windows\Setup.exe" -d "C:\Users\Seba\Desktop\vst\Spectrasonics Stylus RMX 1.5 + 1.7 + 1.9.5 + keygen WORKING 100%\install first\dyn-rmx15d1\Windows"
Task: {9AA88F5C-5E6B-4719-A3D4-B634986E9EF4} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1179648 2018-05-02] () [File not signed]
SearchScopes: HKLM-x32 -> DefaultScope {6D04BA4F-8635-46F4-B5B7-920421898F2C} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
SearchScopes: HKLM-x32 -> {6D04BA4F-8635-46F4-B5B7-920421898F2C} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-525092146-1667884894-650739964-1001 -> DefaultScope {6D04BA4F-8635-46F4-B5B7-920421898F2C} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-525092146-1667884894-650739964-1001 -> {6D04BA4F-8635-46F4-B5B7-920421898F2C} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-02-28] (Sun Microsystems, Inc.) [File not signed]
BHO-x32: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
Toolbar: HKLM-x32 - MSN Toolbar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\MSN Toolbar\Platform\4.0.0369.0\npwinext.dll [2009-11-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files (x86)\Common Files\Microsoft Shared\Web Folders\PKMCDO.DLL [2001-01-22] (Microsoft Corporation) [File not signed]
Handler-x32: http - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-07-31] (Microsoft Corporation) [File not signed]
Handler-x32: http - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-07-31] (Microsoft Corporation) [File not signed]
Handler-x32: https - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-07-31] (Microsoft Corporation) [File not signed]
Handler-x32: https - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-07-31] (Microsoft Corporation) [File not signed]
Handler-x32: msdaipp - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-07-31] (Microsoft Corporation) [File not signed]
Handler-x32: msdaipp - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-07-31] (Microsoft Corporation) [File not signed]
FF Extension: (MSN Toolbar) - C:\Program Files (x86)\MSN Toolbar\Platform\4.0.0369.0\Firefox [2010-06-26] [Legacy] [not signed]
FF Extension: (Search Helper Extension) - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension [2010-06-26] [Legacy] [not signed]
FF Extension: (DigitalPersona Extension) - C:\Program Files (x86)\DigitalPersona\Bin\FirefoxExt [2010-06-26] [Legacy] [not signed]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll [2009-07-21] (Adobe Systems, Inc.) [File not signed]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
S2 HP Health Check Service; "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe" [X]
S3 SoundGridMIDI; system32\drivers\SoundGridMidi.sys [X]
2019-08-16 18:48 - 2019-08-16 18:48 - 000003214 _____ C:\Windows\System32\Tasks\{A4331972-AB4E-4969-8FA4-7187A135045C}
2019-08-14 22:24 - 2019-01-24 12:02 - 000000000 ___HD C:\ProgramData\.88e1acbae5709fcfe9749ab177d3698e_T
2019-08-14 22:24 - 2019-01-24 12:02 - 000000000 ___HD C:\ProgramData\.88e1acbae5709fcfe9749ab177d3698e
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2010-09-09] (Advanced Micro Devices, Inc.) [File not signed]
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
FirewallRules: [{BE25E9AA-CB1F-4AFF-99DB-354CEAC64C7C}] => (Allow) C:\Program Files\Avid\Pro Tools\ProTools.exe (Avid Technology, Inc.) [File not signed]
FirewallRules: [TCP Query User{12ECC321-5C6E-4463-8DE8-60E6CAB98D81}C:\program files\presonus\studio one 4\studio one.exe] => (Allow) C:\program files\presonus\studio one 4\studio one.exe (PreSonus) [File not signed]
FirewallRules: [UDP Query User{5815E8D2-ABDD-46D2-8522-BEC58941EC5C}C:\program files\presonus\studio one 4\studio one.exe] => (Allow) C:\program files\presonus\studio one 4\studio one.exe (PreSonus) [File not signed]
FirewallRules: [TCP Query User{D776C89B-380B-4CEE-9284-F6165C0F9FF0}C:\program files\presonus\studio one 4\pluginscanner.exe] => (Allow) C:\program files\presonus\studio one 4\pluginscanner.exe (PreSonus) [File not signed]
FirewallRules: [UDP Query User{77B5D548-999C-4537-99D2-DA008CD16BBE}C:\program files\presonus\studio one 4\pluginscanner.exe] => (Allow) C:\program files\presonus\studio one 4\pluginscanner.exe (PreSonus) [File not signed]
FirewallRules: [TCP Query User{68E20B87-8799-4B18-A328-EB7F1E39B30F}C:\program files\steinberg\cubase le ai elements 8\cubase le ai elements 8.exe] => (Allow) C:\program files\steinberg\cubase le ai elements 8\cubase le ai elements 8.exe (Steinberg Media Technologies GmbH -> Steinberg Media Technologies) [File not signed]
FirewallRules: [UDP Query User{0B69043A-DF28-4059-8582-4E0620945818}C:\program files\steinberg\cubase le ai elements 8\cubase le ai elements 8.exe] => (Allow) C:\program files\steinberg\cubase le ai elements 8\cubase le ai elements 8.exe (Steinberg Media Technologies GmbH -> Steinberg Media Technologies) [File not signed]
FirewallRules: [TCP Query User{812176DE-92F0-4F30-8019-D87F43642EB7}C:\program files\steinberg\cubase le ai elements 8\components\vstbridgeapp.exe] => (Allow) C:\program files\steinberg\cubase le ai elements 8\components\vstbridgeapp.exe (Steinberg Media Technologies) [File not signed]
FirewallRules: [UDP Query User{544F5C0F-B2A4-47D4-BDF3-AA5A30B7379C}C:\program files\steinberg\cubase le ai elements 8\components\vstbridgeapp.exe] => (Allow) C:\program files\steinberg\cubase le ai elements 8\components\vstbridgeapp.exe (Steinberg Media Technologies) [File not signed]
FirewallRules: [TCP Query User{0ADE0738-8253-40FB-B5BC-DDC2F1ECDD14}C:\program files\steinberg\cubase le ai elements 8\cubase le ai elements 8.exe] => (Allow) C:\program files\steinberg\cubase le ai elements 8\cubase le ai elements 8.exe (Steinberg Media Technologies GmbH -> Steinberg Media Technologies) [File not signed]
FirewallRules: [UDP Query User{A306B65B-4D30-46C3-8915-773AE614D974}C:\program files\steinberg\cubase le ai elements 8\cubase le ai elements 8.exe] => (Allow) C:\program files\steinberg\cubase le ai elements 8\cubase le ai elements 8.exe (Steinberg Media Technologies GmbH -> Steinberg Media Technologies) [File not signed]
FirewallRules: [TCP Query User{F2E22F3E-1C99-45EB-B76F-FA6F3CC127F4}C:\program files\steinberg\cubase le ai elements 8\components\vstbridgeapp.exe] => (Allow) C:\program files\steinberg\cubase le ai elements 8\components\vstbridgeapp.exe (Steinberg Media Technologies) [File not signed]
FirewallRules: [UDP Query User{4EEB2094-F594-4FA8-8A2F-6B5397BA0A2F}C:\program files\steinberg\cubase le ai elements 8\components\vstbridgeapp.exe] => (Allow) C:\program files\steinberg\cubase le ai elements 8\components\vstbridgeapp.exe (Steinberg Media Technologies) [File not signed]
FirewallRules: [TCP Query User{8DFB727D-C03C-432B-A198-FB704EE24820}C:\program files\presonus\studio one 4\studio one.exe] => (Allow) C:\program files\presonus\studio one 4\studio one.exe (PreSonus) [File not signed]
FirewallRules: [UDP Query User{8244E711-E7CB-4A6B-8234-2CCF43DFC680}C:\program files\presonus\studio one 4\studio one.exe] => (Allow) C:\program files\presonus\studio one 4\studio one.exe (PreSonus) [File not signed]
FirewallRules: [{E470749C-82D4-4400-BCA5-0A18298DC233}] => (Allow) C:\Program Files (x86)\WOMic\womicclient.exe () [File not signed]
FirewallRules: [TCP Query User{6438C525-4880-4919-8786-5B3CF68723EE}C:\program files\presonus\studio one 4\pluginscanner.exe] => (Block) C:\program files\presonus\studio one 4\pluginscanner.exe (PreSonus) [File not signed]
FirewallRules: [UDP Query User{C283CD00-8D15-48AE-96A7-BF72AD8B5AA4}C:\program files\presonus\studio one 4\pluginscanner.exe] => (Block) C:\program files\presonus\studio one 4\pluginscanner.exe (PreSonus) [File not signed]
FirewallRules: [TCP Query User{054A9F08-54E1-4028-8AC1-47177C53E20D}C:\program files (x86)\soundwire server\soundwireserver.exe] => (Allow) C:\program files (x86)\soundwire server\soundwireserver.exe (GeorgieLabs) [File not signed]
FirewallRules: [UDP Query User{1CECB613-01C5-46BD-9B1B-8158280F40F6}C:\program files (x86)\soundwire server\soundwireserver.exe] => (Allow) C:\program files (x86)\soundwire server\soundwireserver.exe (GeorgieLabs) [File not signed]


HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END

Guárdalo bajo el nombre de FIXLIST.TXT en el escritorio :arrow_backward: Esto es muy importante.

:o: Nota :o: Es importante que la herramienta FRST.exe (Farbar Recovery Scanner Tool) y FIXLIST.TXT se encuentren en la misma ubicación (escritorio) o si no, no trabajara.


  • Ejecuta FRST.exe.(Si usas Windows Vista/7/8 o 10, presiona clic derecho y seleccionas -Ejecutar como Administrador-).
  • Presionar el botón FIX y aguardar a que termine.
  • La Herramienta guardara el reporte de reparación en el escritorio (FIXLOG.TXT).

Pega el contenido de este fichero en tu próxima respuesta.

Reiniciar el equipo y comprobar su funcionamiento en relación al problema planteado y comentarlo.

Un saludo

Ok, estoy por hacer lo que me comentas. Estoy viendo todo detalladamente y me he dado cuenta que en mi escritorio tengo el Farbar RecoveryScanner Tool, pero no lo tengo como FRST.EXE sino que lo tengo como FRST64. Es lo mismo? Le tengo que cambiar el nombre o hago sin problema alguno. Muchas gracias por tu respuesta.

Hola

Está correcto, no tienes que cambiarle el nombre, realiza las indicaciones según ésta el programa :+1:

Un saludo

Ok, hice lo que me indicaste cuidadosamente. He notado que al apagar no me dice que tengo que forzar programas para que se cierre. Pero al usar cualquiera de los editores de sonido que uso (por ejemplo cubase), se me sigue trancando.

Me llamó mucho la atención al ver las lineas de texto o el escript que hiciste, que mencionabas a la placa de sonido focusrite, algo de la placa de video ATI, y los editores.

Te pregunto porque por ahí me puedes dar alguna información que me pueda ayudar para solucionar esto de las trancadas que da. Investigando antes de escribir en el foro, me había topado con personas que habían tenido problemas de este tipo y que se trataba de sus drives de video. Por eso me llamó la atención que estuviera escrito en el script lo de ATI.

Me puedes comentar un poquito por donde viene la mano así veo si puedo dar con el problema?

Hola

Abre el “Administrador de dispositivos” y mira a ver si tiene una interrogación.

Un saludo

Ninguno tiene signo ni de interrogación o exclamación. Alguna sugerencia más?

Hola

Los problemas de sonido comenzaron cuando instalaste esos plugins?

Mira a ver si tienes un punto de restauración antes de instalarlos y restaura el equipo a esa fecha anterior.

Comenta como sigue.

Un saludo

Hola Daniela, casualmente te estaba por comentar algo hoy.

En general he notado una mejoría en el pc. Sin duda alguna ah sido realmente útil tu ayuda.

Con el tema de que se traba cuando reproduzco sonido, ahora es más llevadero. Me deja trabajar bastante. Cuando estoy con un editor y comienza a trabarse, lo cierro y abro de nuevo y comienza a funcionar bien.

En general tu ayuda fue bastante positiva.

Con respecto a tus preguntas, desde que instalé un plugin en particular, las cosas comenzaron a funcionar mal. Lo descargué desde una pagina torrent y cuando lo instalé me saltó el antivirus por un troyano en una dll TR/Crypt.XPACK.Gen2

Cuando se instalan esos plugin te da la opción de instalar las dll de 32 y 64 bits. Yo tengo equipo de 64, y el problema surgió con las de 32. Las envió a cuarentena y todo siguió normal. Pero luego comenzaron los tildes.

Por otro lado, ese día estuve sobrecargando el pc. Desde el editor de audio, reproducía un video y trabajaba con muchas pistas de audio y con varios plugins pesados. Por supuesto que en algunos momentos se entrecortaba y funcionaba mal el editor. Pero eso es algo normal porque estaba usando cosas muy pesadas.

El problema fue que luego de todo eso (que paso en el mismo día, mismo día trabajo) el pc comenzó a funcionar mal.

O fue por el archivo infectado (que también quiero aclara que tuve que ejecutar un instalador exe, no fue copiar y pegar dll. Instalé un programa) o mis drivers se dañaron y no tiene nada que ver un el virus.

Pero de todas formas, como te día mi notebook está funcionando mejor.

Ahora mismo me tengo que poner a trabajar y cualquier cosa te comentaré sobre su desempeño.

Y claro, desde ya muchas gracias por tu ayuda. Estoy casi sin trabajo, tengo una familia, un hijo y gracias a tu ayuda puedo seguir luchando para llevar el pan a casa. Como podrás imaginar, es algo muy grande lo que hiciste y estás haciendo por mi.

Gracias Daniela!

Hola

No hay de qué, lo hago con mucho gusto :+1:

Pudiste restaurar a un punto anterior a la instalación de los plugins?

Cuando puedas, realiza los siguientes pasos, vamos a ver si tiene alguna infección por aahí:

Análisis del PC con Eset Online Scaner : Manual de Uso lee las instrucciones para salvar el reporte.

Análisis del PC con Kasperky Virus Removal Tool: Manual de Uso

  • Este no da reporte cuando te encuentres al finalizar, si es que lo hace con alguna infección, tomas una imagen y la subes.

Como subir imágenes al Foro ?

Comenta como sigue el funcionamiento.

Un saludo

Hola Daniela, disculpa, me faltó responderte la pregunta de restaurar a un punto anterior. Lo había intentado pero aparentemente no tenía habilitada esta opción o no tenía puntos de restauración. No fue posible restaurar. En fin, haré las dos cosas que me dices y te daré novedades a la brevedad.

Muchas gracias de nuevo Daniela. Los mantengo al tanto.

Hola

De acuerdo, por aquí estaremos esperando los reportes y resultados :+1:

Un saludo