Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07.01.2019
Ran by vlad (07-01-2019 17:16:08)
Running from C:\Users\vlad\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2015-10-10 00:48:05)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrador (S-1-5-21-2041496464-156937787-1904499423-500 - Administrator - Disabled)
Invitado (S-1-5-21-2041496464-156937787-1904499423-501 - Limited - Disabled)
vlad (S-1-5-21-2041496464-156937787-1904499423-1000 - Administrator - Enabled) => C:\Users\vlad
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Security (Disabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Security (Disabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Disabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
. . (HKLM\...\{E99F3005-A18B-4BF7-B751-7E780C5E87F0}) (Version: 7.1 - Intel) Hidden
. . . (HKLM-x32\...\{26ABF655-7062-4BBB-B954-F21DF44A1D76}) (Version: 2.9.0.2 - Intel) Hidden
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 19.010.20069 - Adobe Systems Incorporated)
Adobe After Effects CC (HKLM-x32\...\{317243C1-6580-4F43-AED7-37D4438C3DD5}) (Version: 12 - Adobe Systems Incorporated)
Adobe After Effects CS5.5 (HKLM-x32\...\{E82097B9-A3B8-404A-9A92-AC16A8AC9576}) (Version: 10.5 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Audition CS6 (HKLM-x32\...\{30FD541D-3C9D-41C4-B240-A994EE4E0231}) (Version: 5.0 - Adobe Systems Incorporated)
Adobe Creative Suite 5 Master Collection (HKLM-x32\...\{1BBD8D70-721A-41AD-AC8F-7308A0C8FA92}) (Version: 5.0 - Adobe Systems Incorporated)
Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.187 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Photoshop CC (HKLM-x32\...\{2D99B50E-431D-4AA8-85C1-172A6F8BCF09}) (Version: 14.0 - Adobe Systems Incorporated)
Adobe Premiere Pro CS6 (HKLM-x32\...\{7176B973-6011-43C1-AEBC-2D73FE7C6982}) (Version: 6.0 - Adobe Systems Incorporated)
Adobe Story (HKLM-x32\...\com.adobe.AdobeStory.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.0.571 - Adobe Systems Incorporated)
Allok 3GP PSP MP4 iPod Video Converter 6.2.0603 (HKLM-x32\...\Allok 3GP PSP MP4 iPod Video Converter_is1) (Version: - Allok Soft Inc)
AMD Catalyst Install Manager (HKLM\...\{7E5DC2C5-115A-322B-976C-219237FAED66}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Ample Guitar M Lite II version 2.0.2 (HKLM-x32\...\{548F88E8-79D2-441F-B87B-E71754257651}_is1) (Version: 2.0.2 - Ample Sound Technology Co., Ltd.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
BitTorrent (HKU\S-1-5-21-2041496464-156937787-1904499423-1000\...\BitTorrent) (Version: 7.9.5.41373 - BitTorrent Inc.)
bl (HKLM-x32\...\{2A075BB4-E976-4278-BF3F-E5C6945D84C0}) (Version: 1.0.0 - Your Company Name) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.14 - Piriform)
CGS17_Setup_x64 (HKLM\...\{83646B67-A878-4E95-BB4B-AF4A6E61F28C}) (Version: 17.0 - Corel Corporation) Hidden
Chrome Remote Desktop Host (HKLM-x32\...\{F51A03C4-2DD0-43B0-900F-EAD1C45DC542}) (Version: 71.0.3578.15 - Google Inc.)
Compatibilidad con Aplicaciones de Apple (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Corel Graphics - Windows Shell Extension (HKLM\...\_{4AB916EE-ABA8-4079-9889-745798B6D809}) (Version: 17.0.0.491 - Corel Corporation)
Corel Graphics - Windows Shell Extension (HKLM\...\{4AB916EE-ABA8-4079-9889-745798B6D809}) (Version: 17.0.491 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 32 Bit (HKLM\...\{FD4A43CE-ABAE-4161-83AC-314A3C804F42}) (Version: 17.0.491 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Capture (x64) (HKLM\...\{2C91CB9D-323D-43E5-A433-229B71CFB773}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Common (x64) (HKLM\...\{9178F0A8-B6F6-4DA7-AD63-317CC4875F4B}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Connect (x64) (HKLM\...\{BD036E95-A9CD-4DED-B744-95AB1DCAFF0C}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Custom Data (x64) (HKLM\...\{5162E418-BB43-4C8F-ACD6-069645EF98C3}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Draw (x64) (HKLM\...\{2C0DDC74-5234-43DD-BB5A-0645B8FE5289}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - EN (x64) (HKLM\...\{3BB8EB77-737B-4B32-BAB9-08C7110C46BD}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Filters (x64) (HKLM\...\{D10A5CFA-FE33-4F06-AE37-554604F00A52}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - FontNav (x64) (HKLM\...\{5406029B-67AD-4F8E-9F2D-F1959CD9CD86}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM Content (x64) (HKLM\...\{EF44BCCD-13F9-4974-862C-CCFAF43EE082}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM T (x64) (HKLM\...\{13179AB2-69FD-459B-800F-81865A501AD4}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - PHOTO-PAINT (x64) (HKLM\...\{C922F325-DD52-4E22-B204-431A06E63E51}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Photozoom Plugin (x64) (HKLM\...\{1A73168F-5983-46A6-AAAB-FD83BC231E02}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Redist (x64) (HKLM\...\{C57EDB5A-AC8E-4E03-9F1A-DC013A2BB9B2}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Setup Files (x64) (HKLM\...\{5CB73140-806C-42C6-A05A-1AFD0E92DEB5}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VBA (x64) (HKLM\...\{5672E0DC-7489-4EAC-8CFD-E01B3868FCB5}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VideoBrowser (x64) (HKLM\...\{966996DC-D67C-40E3-8BD4-31FA0F093571}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Writing Tools (x64) (HKLM\...\{D63404AC-C2F1-4B3D-96EA-9727AC9D994C}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 (64-Bit) (HKLM\...\_{5CB73140-806C-42C6-A05A-1AFD0E92DEB5}) (Version: 17.0.0.491 - Corel Corporation)
CPU Thermometer (HKLM-x32\...\{06EA836D-C7AD-42A0-9C17-47BCDE7E015B}_is1) (Version: - cputhermometer.com)
Cracklock 3.9.45 (HKLM-x32\...\Cracklock_is1) (Version: 3.9.45 - William Blum)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.45.4.0315 - DT Soft Ltd)
DCP-o-matic 2 (remove only) (HKLM\...\DCP-o-matic2) (Version: - )
Edirol HQ Orchestral v1.01 (HKLM-x32\...\Edirol HQ Orchestral v1.01) (Version: - )
Evernote v. 6.6.4 (HKLM-x32\...\{FAA0F386-730B-11E7-8B9C-005056951CAD}) (Version: 6.6.4.5512 - Evernote Corp.)
File Type Advisor 1.6 (HKLM-x32\...\File Type Advisor_is1) (Version: - )
FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version: - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line)
Free M4a to MP3 Converter 9.1 (HKLM-x32\...\Free M4a to MP3 Converter_is1) (Version: - ManiacTools.com)
Free Screen Video Recorder (HKLM-x32\...\Free Screen Video Recorder_is1) (Version: 3.0.46.1030 - Digital Wave Ltd)
Ghostscript GPL 8.64 (Msi Setup) (HKLM-x32\...\_{06CD45E6-FF5E-4D8E-BC01-B276A90DADF2}) (Version: 8.64 - Corel Corporation)
Ghostscript GPL 8.64 (Msi Setup) (HKLM-x32\...\{06CD45E6-FF5E-4D8E-BC01-B276A90DADF2}) (Version: 8.64 - Corel Corporation) Hidden
Glary Utilities 5.112 (HKLM-x32\...\Glary Utilities 5) (Version: 5.112.0.137 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.)
Google Earth Pro (HKLM-x32\...\{BF354C72-AC4C-4A87-8D42-B089862BAE58}) (Version: 7.3.2.5491 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
HyperCam 3 (HKLM-x32\...\HyperCam 3) (Version: 3.0.912.18 - Solveig Multimedia)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line)
Incomedia WebSite X5 v12 - Professional (HKLM-x32\...\{042C2A1D-2A0B-46E0-BAA1-60D62E33DB23}_is1) (Version: 12.0.5.22 - Incomedia s.r.l.)
Intel Processor Diagnostic Tool 64bit (HKLM\...\{D011AAF9-F756-43AB-8E91-47ADF0D86394}) (Version: 4.0.0.29 - Intel Corporation)
Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Network Connections 19.1.51.0 (HKLM\...\PROSetDX) (Version: 19.1.51.0 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3223 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel® Driver Update Utility (HKLM-x32\...\{e0c04d85-bdcb-4572-ac96-c3e248f87a87}) (Version: 2.9.0.2 - Intel)
Java(TM) 6 Update 22 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216022FF}) (Version: 6.0.220 - Oracle)
K-Lite Mega Codec Pack 11.9.6 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.9.6 - KLCP)
Krita (x64) 3.0 (HKLM\...\Krita_x64) (Version: 3.0.0.0 - Krita Foundation)
LMMS 1.1.3 (HKLM-x32\...\LMMS) (Version: 1.1.3 - LMMS Developers)
Macromedia Extension Manager (HKLM-x32\...\{F443F171-B49B-4645-915C-580E7ED79992}) (Version: 1.7.277 - Nombre de su organización)
Macromedia Flash 8 (HKLM-x32\...\{2BD5C305-1B27-4D41-B690-7A61172D2FEB}) (Version: 8.00.0000 - Macromedia)
Macromedia Flash 8 Video Encoder (HKLM-x32\...\{8BF2C401-02CE-424D-BC26-6C4F9FB446B6}) (Version: 1.00.0000 - Macromedia)
Macromedia Flash Player 8 (HKLM-x32\...\{885A63EA-382B-4DD4-A755-14809B8557D6}) (Version: 8.0.22.0 - Macromedia)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft AppLocale (HKLM-x32\...\{394BE3D9-7F57-4638-A8D1-1D88671913B7}) (Version: 1.0.0 - MS)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{5c75eda4-d029-43bf-a70b-a73d380f52ee}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2012 (HKLM-x32\...\{89ca2a32-2b52-4595-8dfd-6fe4757958d0}) (Version: 11.0.51108 - Microsoft Corporation)
Microsoft Windows Application Compatibility Database (HKLM\...\{deb7008b-681e-4a4a-8aae-cc833e8216ce}.sdb) (Version: - )
Mozilla Firefox 64.0 (x64 es-ES) (HKLM\...\Mozilla Firefox 64.0 (x64 es-ES)) (Version: 64.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 64.0.0.6914 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Native Instruments Kontakt 5 (HKLM-x32\...\Native Instruments Kontakt 5) (Version: 5.3.0.6464 - Native Instruments)
OpenDCP (HKLM-x32\...\OpenDCP-0.30.0) (Version: 0.30.0 - OpenDCP)
OpenOffice.org 3.3 (HKLM-x32\...\{4B930AE3-61C6-4D02-A9D4-84F4ACBCEC25}) (Version: 3.3.9567 - OpenOffice.org)
OpenToonz version 1.1.2 (HKLM\...\{D9A9B1A3-9370-4BE9-9C8F-7B52EEECB973}_is1) (Version: 1.1.2 - DWANGO Co., Ltd.)
Orchestral VST (HKLM-x32\...\{77832A71-8657-46D1-89BC-630243926C9A}) (Version: - )
Ori and the Blind Forest (HKLM-x32\...\Ori and the Blind Forest_is1) (Version: - )
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - PTB (HKLM\...\{E237254B-36A1-3D27-815E-B37C13BE0796}) (Version: 11.0.51108 - Microsoft
Corporation) Hidden
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - PTB (HKLM-x32\...\{03077B58-6ACF-32CA-B42A-EAA458C295A1}) (Version: 11.0.51108 - Microsoft
Corporation) Hidden
PC Inspector File Recovery (HKLM-x32\...\{0DD140D3-9563-481E-AA75-BA457CBDAEF2}) (Version: 4.0 - )
PDF Settings CC (HKLM-x32\...\{1FBAE18D-4DE4-47AA-83EC-D1B046F262DC}) (Version: 12.0 - Adobe Systems Incorporated) Hidden
ph (HKLM-x32\...\{185F9795-9663-4F13-9EF9-307A282ADB5A}) (Version: 1.0.0 - Your Company Name) Hidden
QL Voices of Passion (HKLM-x32\...\{3AA35C1A-A4D5-43A2-A3C0-6632A4AF9557}) (Version: 1.0.0 - EastWest Sounds, Inc.)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7246 - Realtek Semiconductor Corp.)
RealWorld Paint (HKLM-x32\...\{B6694991-632B-4DA4-B636-58A862645144}) (Version: 13.1.0 - RealWorld Graphics)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.28.1 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.28.1 - Renesas Electronics Corporation)
Revo Uninstaller 2.0.6 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.6 - VS Revo Group, Ltd.)
Revo Uninstaller Pro 3.1.8 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.8 - VS Revo Group, Ltd.)
Speccy (HKLM\...\Speccy) (Version: 1.29 - Piriform)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Spotify (HKU\S-1-5-21-2041496464-156937787-1904499423-1000\...\Spotify) (Version: 1.0.80.474.gef6b503e - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Tablet Driver V5.02 (HKLM-x32\...\TabletDriver) (Version: - )
THE KING OF FIGHTERS XIV STEAM EDITION (HKLM-x32\...\THE KING OF FIGHTERS XIV STEAM EDITION_is1) (Version: - )
UltraSearch V2.0.3 (64 bit) (HKLM\...\UltraSearch_is1) (Version: 2.0.3 - JAM Software)
Utilidad de Cliente Inalámbrico TP-LINK (HKLM-x32\...\{E9E37560-9D7F-4BD1-8D07-D747EC67F733}) (Version: 7 - TP-LINK)
VCRedistSetup (HKLM-x32\...\{3921A67A-5AB1-4E48-9444-C71814CF3027}) (Version: 1.0.0 - Nero AG) Hidden
VdhCoApp 1.2.4 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper)
Vocaloid4 4.2.1 Free Edition (HKLM-x32\...\Vocaloid4 4.2.1 Free Edition_is1) (Version: Vocaloid4 4.2.1 Free Edition - )
WinRAR 5.30 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH)
ZBrush 4R7 (HKLM-x32\...\ZBrush 4R7 4R7) (Version: 4R7 - Pixologic)
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x64) - RUS (HKLM\...\{25FB53C5-BE4C-3B6C-A0C9-D49A39227E1E}) (Version:
11.0.51108 - Microsoft Corporation) Hidden
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x86) - RUS (HKLM-x32\...\{68DC347D-C1C0-3DE2-A53E-CCC71DA53E57}) (Version:
11.0.51108 - Microsoft Corporation) Hidden
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2018-03-02] (Glarysoft Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-11-18] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-11-18] (Alexander Roshal)
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2018-03-02] (Glarysoft Ltd)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\atiacm64.dll [2015-08-04] (Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2013-06-27] (Intel Corporation)
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2018-03-02] (Glarysoft Ltd)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2016-12-15] (VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-11-18] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-11-18] (Alexander Roshal)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {321A70D2-7F21-440E-85C3-48B31A517C69} - System32\Tasks\AdobeGCInvoker-1.0-vlad-PC-vlad => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-12-13]
(Adobe Systems, Incorporated)
Task: {3513C75D-6069-4497-BC71-64C99ED6E1D5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-14] (Adobe Systems
Incorporated)
Task: {3E7149FB-1D11-477C-B4EA-D5DD495597CB} - System32\Tasks\AdobeAAMUpdater-1.0-vlad-PC-vlad => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2018-04-11]
(Adobe Systems Incorporated)
Task: {3F9FE4C3-7FB4-45EE-9C5E-24F6E5A11F4E} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2016-03-17] (Intel Corporation)
Task: {63FB9ADF-B78A-4DF7-8F27-E2897DC59CCF} - System32\Tasks\{B24F7FD5-B8A1-4F41-82ED-41F29116D286} => C:\Windows\system32\pcalua.exe -a "C:\Instaladores Programas\Programas dibujo animacion
\AnimatePro2\QuickTimeInstaller.exe" -d "C:\Program Files\JAM Software\UltraSearch"
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\vlad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk -> C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 1"
==================== Loaded Modules (Whitelisted) ==============
2017-01-19 08:17 - 2017-01-19 08:17 - 001684480 _____ () C:\Program Files\Common Files\Multimedia Helper\hlpsvc.exe
2017-08-31 14:35 - 2017-03-07 19:15 - 000824592 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe
2017-08-31 14:35 - 2017-03-07 19:18 - 001981712 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_modeler.dll
2017-08-31 14:35 - 2017-03-07 19:10 - 000248080 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\acpi_battery_input.dll
2017-08-31 14:35 - 2017-03-07 19:09 - 000213776 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\wifi_input.dll
2017-08-31 14:35 - 2017-03-07 19:10 - 000175376 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\devices_use_input.dll
2017-08-31 14:35 - 2017-03-07 19:09 - 000204048 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_system_power_state_input.dll
2017-08-31 14:35 - 2017-03-07 19:08 - 000337680 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_process_input.dll
2017-08-31 14:35 - 2017-03-07 19:05 - 000148240 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_winstat_input.dll
2017-08-31 14:35 - 2017-03-07 19:05 - 000178448 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_acdc_setting_input.dll
2017-08-31 14:35 - 2017-03-07 19:10 - 000213776 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\sema_thermal_input.dll
2017-08-31 14:35 - 2017-03-07 19:06 - 000229648 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_quality_and_reliability_input.dll
2017-08-31 14:35 - 2017-03-07 19:07 - 000225040 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_sampler_input.dll
2017-08-31 14:35 - 2017-03-07 19:05 - 000212752 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_stress_odometer_input.dll
2017-08-31 14:35 - 2017-03-07 19:07 - 000220432 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_turbo_input.dll
2018-12-12 20:00 - 2018-12-12 02:11 - 005237216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\libglesv2.dll
2018-12-12 20:00 - 2018-12-12 02:11 - 000117216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\libegl.dll
2016-06-29 15:01 - 2016-06-29 15:01 - 008166536 _____ () C:\Program Files (x86)\SpeedFan\speedfan.exe
2017-12-20 19:03 - 2017-10-25 12:22 - 000114664 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\zlib1.dll
2017-12-20 19:03 - 2017-10-25 12:22 - 000108008 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_filesystem-vc120-mt-1_56.dll
2017-12-20 19:03 - 2017-10-25 12:22 - 000024040 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_system-vc120-mt-1_56.dll
2017-12-20 19:03 - 2017-10-25 12:22 - 000048104 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_date_time-vc120-mt-1_56.dll
2015-10-09 23:12 - 2010-09-28 11:00 - 000285696 _____ () C:\Windows\system32\WinTab32.DLL
2017-07-27 14:31 - 2017-07-27 14:31 - 000667520 _____ () C:\Program Files (x86)\Evernote\Evernote\tidy.dll
2015-10-09 23:12 - 2010-09-28 11:00 - 000217088 _____ () C:\Windows\SysWOW64\WinTab32.DLL
2015-10-09 23:12 - 2010-05-13 15:03 - 000232960 _____ () C:\Windows\SysWOW64\MyDrawLineWindowDll.dll
2017-09-05 00:38 - 2012-06-25 14:41 - 001198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2019-01-07 17:14 - 2019-01-07 17:14 - 000158720 _____ () C:\Users\vlad\AppData\Local\Temp\sfareca00001.dll
2019-01-07 13:34 - 2019-01-07 17:14 - 000192512 _____ () C:\Users\vlad\AppData\Local\Temp\sfamcc00001.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
HKU\S-1-5-21-2041496464-156937787-1904499423-1000\Software\Classes\regfile: regedit.exe "%1" <==== ATTENTION
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-13 23:34 - 2019-01-07 12:24 - 000000035 _____ C:\Windows\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%C_EM64T_REDIST11%bin\Intel64;%SystemRoot
%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\AMD\ATI.ACE\Core-Static;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin
\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\QuickTime\QTSystem\;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK
\2.0\bin\x64;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management
Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT
HKCU\Environment\\Path: C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%C_EM64T_REDIST11%bin\Intel64;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%
\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\AMD\ATI.ACE\Core-Static;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel
\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\QuickTime\QTSystem\;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files
\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:
\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT
HKU\S-1-5-21-2041496464-156937787-1904499423-1000\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 200.42.4.204 - 200.49.130.40
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
MSCONFIG\Services: ekrn => 2
MSCONFIG\Services: WsAppService => 2
MSCONFIG\startupfolder: C:^Users^vlad^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.3.lnk => C:\Windows\pss\OpenOffice.org 3.3.lnk.Startup
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: Spotify => C:\Users\vlad\AppData\Roaming\Spotify\Spotify.exe --autostart --minimized
MSCONFIG\startupreg: Spotify Web Helper => C:\Users\vlad\AppData\Roaming\Spotify\SpotifyWebHelper.exe --autostart
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{CDA690CF-ABE2-4CA4-8396-2CF08BDC2778}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [TCP Query User{60A3BB1C-EFC2-4AAD-916D-E1D9946A9559}C:\instaladores programas\borderlands 2 game of the year [multi7][pcdvd][todos los dlc][3dm][www.gamestorrents.com]\3dm-
bordergoyear\binaries\win32\borderlands2.exe] => (Block) C:\instaladores programas\borderlands 2 game of the year [multi7][pcdvd][todos los dlc][3dm][www.gamestorrents.com]\3dm-bordergoyear
\binaries\win32\borderlands2.exe (Take-Two Interactive Software, Inc.)
FirewallRules: [UDP Query User{F47CCBC4-8ED9-4527-9706-0BEA5749A678}C:\instaladores programas\borderlands 2 game of the year [multi7][pcdvd][todos los dlc][3dm][www.gamestorrents.com]\3dm-
bordergoyear\binaries\win32\borderlands2.exe] => (Block) C:\instaladores programas\borderlands 2 game of the year [multi7][pcdvd][todos los dlc][3dm][www.gamestorrents.com]\3dm-bordergoyear
\binaries\win32\borderlands2.exe (Take-Two Interactive Software, Inc.)
FirewallRules: [{A018E902-0123-4EE1-B50F-B6244E7C2825}] => (Allow) C:\Users\vlad\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc.)
FirewallRules: [{E6B2455B-0178-447D-B81D-540776FDC391}] => (Allow) C:\Users\vlad\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc.)
FirewallRules: [{1F20EA1A-ACAE-4DA8-AE65-91127B357B87}] => (Allow) C:\Users\vlad\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc.)
FirewallRules: [{6AF2C58B-F1E2-49FD-84DE-F60A3D26248E}] => (Allow) C:\Users\vlad\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc.)
FirewallRules: [{CB44690B-2ADC-49B9-BEBB-2DB773C87A7F}] => (Allow) C:\Users\vlad\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc.)
FirewallRules: [{07CC16E8-CC00-4C4B-9EEC-8B03C66AB514}] => (Allow) C:\Users\vlad\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc.)
FirewallRules: [{BFF61281-38BD-4070-BADB-47C84F8385E8}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe (Apple Inc.)
FirewallRules: [{65A66E6A-3F31-47CC-A7C3-5F5D1F6E1084}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite X7\Programs64\CorelDrw.exe (Corel Corporation)
FirewallRules: [{0F72A2E0-56A8-42D6-A7F6-0BB65161EADC}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite X7\Programs64\CorelPP.exe (Corel Corporation)
FirewallRules: [{2424E425-6D88-47A5-86BA-73F895696887}] => (Block) C:\Program Files (x86)\WebSite X5 v12 - Professional\WebSiteX5.exe (Incomedia s.r.l.)
FirewallRules: [{91E01790-5ADA-4F2F-8D0D-1F97273AAFCB}] => (Block) C:\Program Files (x86)\WebSite X5 v12 - Professional\WebSiteX5.exe (Incomedia s.r.l.)
FirewallRules: [{9ABF6429-8982-4EB9-8E08-0CFED117EFE5}] => (Block) C:\Program Files (x86)\WebSite X5 v12 - Professional\WebSiteX5.exe (Incomedia s.r.l.)
FirewallRules: [{F5136776-C2C6-4FB5-824F-70FB581E812B}] => (Block) C:\Program Files (x86)\WebSite X5 v12 - Professional\WebSiteX5.exe (Incomedia s.r.l.)
FirewallRules: [TCP Query User{1C3815D8-6BF5-42A3-BEF2-469534061857}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla
Corporation)
FirewallRules: [UDP Query User{E3D1B7D6-760E-4C9E-8626-63A62B7A3D63}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla
Corporation)
FirewallRules: [TCP Query User{0D128A4A-70FC-4B43-A0DB-180193E09BF8}C:\program files\dcp-o-matic 2\bin\dcpomatic2.exe] => (Block) C:\program files\dcp-o-matic 2\bin\dcpomatic2.exe ()
FirewallRules: [UDP Query User{C6ED451A-9EFB-42B6-BF4E-9834ADEAFC43}C:\program files\dcp-o-matic 2\bin\dcpomatic2.exe] => (Block) C:\program files\dcp-o-matic 2\bin\dcpomatic2.exe ()
FirewallRules: [{B9339C27-6C10-4ACA-8E3A-A72ABA0C613A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
FirewallRules: [{61E9E5C6-5BA4-46BB-A801-182D70FC7679}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
FirewallRules: [{20C8C9EC-25D1-43A8-9459-07802F33340B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve Corporation)
FirewallRules: [{B67D2B84-E75E-48CF-99E3-8C8DFA57BAD6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve Corporation)
FirewallRules: [TCP Query User{12772BE8-4713-4764-865F-435FC79B2EAD}C:\users\vlad\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\vlad\appdata\roaming\spotify\spotify.exe (Spotify Ltd)
FirewallRules: [UDP Query User{910735E5-B335-48D6-90D0-66782EFCAAEC}C:\users\vlad\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\vlad\appdata\roaming\spotify\spotify.exe (Spotify Ltd)
FirewallRules: [TCP Query User{972D64AC-24E6-45AE-B1F4-BCC2868B7C92}C:\program files (x86)\twomon pc program\twomon pc program.exe] => (Allow) C:\program files (x86)\twomon pc program\twomon pc
program.exe No File
FirewallRules: [UDP Query User{D2E646AB-E418-44DE-A2C2-3A83020A9856}C:\program files (x86)\twomon pc program\twomon pc program.exe] => (Allow) C:\program files (x86)\twomon pc program\twomon pc
program.exe No File
FirewallRules: [{318E94E3-B6BD-44AE-B1BF-DF21EC680378}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\71.0.3578.15\remoting_host.exe (Google Inc.)
FirewallRules: [{70A56A3C-6090-404B-8ADE-4B1E94660FA4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
==================== Restore Points =========================
05-01-2019 23:06:02 Removed 4K Video Downloader 4.4
06-01-2019 23:59:32 Windows Update
07-01-2019 10:04:02 Revo Uninstaller's restore point - "Spore"
07-01-2019 10:09:06 Revo Uninstaller's restore point - Argente - Registry Cleaner 3.1.2.0
07-01-2019 10:10:11 Revo Uninstaller's restore point - Malwarebytes versión 3.6.1.2711
07-01-2019 10:11:21 Revo Uninstaller's restore point - MegaDownloader 1.7
07-01-2019 10:12:31 Revo Uninstaller's restore point - Twomon PC Program
07-01-2019 10:13:16 Removed Twomon PC Program.
07-01-2019 10:15:16 Revo Uninstaller's restore point - Wondershare Dr.Fone for Android(Build 5.1.0.24)
07-01-2019 10:16:44 Revo Uninstaller's restore point - XnView 2.36
07-01-2019 10:19:30 Revo Uninstaller's restore point - Blender
07-01-2019 11:23:52 Restore Point Created by FRST
07-01-2019 11:47:48 Restore Point Created by FRST
07-01-2019 12:23:37 Restore Point Created by FRST
07-01-2019 15:08:28 Revo Uninstaller's restore point - Malwarebytes versión 3.6.1.2711
==================== Faulty Device Manager Devices =============
Name: Administrador de volúmenes dinámicos
Description: Administrador de volúmenes dinámicos
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: volmgrx
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Event log errors: =========================
Application errors:
==================
Error: (01/07/2019 05:16:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: McTkSchedulerService.exe, versión: 4.2.131.0, marca de tiempo: 0x57510351
Nombre del módulo con errores: unknown, versión: 0.0.0.0, marca de tiempo: 0x00000000
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000007fe9292485f
Id. del proceso con errores: 0x42c
Hora de inicio de la aplicación con errores: 0x01d4a6c5ce10ddd3
Ruta de acceso de la aplicación con errores: C:\Program Files\TrueKey\McTkSchedulerService.exe
Ruta de acceso del módulo con errores: unknown
Id. del informe: 12ec9cff-12b9-11e9-953c-e06995697e82
Error: (01/07/2019 05:16:11 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: McTkSchedulerService.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info:
System.NullReferenceException
at SchedulerTasksHelper.SchedulerMgr.OOBEWait()
at SchedulerTasksHelper.SchedulerMgr.Process()
at SchedulerService.Service1.SchedulerThreadWork()
at
System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run
(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext,
System.Threading.ContextCallback, System.Object)
at System.Threading.ThreadHelper.ThreadStart()
Error: (01/07/2019 05:14:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: McTkSchedulerService.exe, versión: 4.2.131.0, marca de tiempo: 0x57510351
Nombre del módulo con errores: unknown, versión: 0.0.0.0, marca de tiempo: 0x00000000
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000007fe9293485f
Id. del proceso con errores: 0x1894
Hora de inicio de la aplicación con errores: 0x01d4a6c5a2fbe812
Ruta de acceso de la aplicación con errores: C:\Program Files\TrueKey\McTkSchedulerService.exe
Ruta de acceso del módulo con errores: unknown
Id. del informe: e7e284bb-12b8-11e9-953c-e06995697e82
Error: (01/07/2019 05:14:59 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: McTkSchedulerService.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info:
System.NullReferenceException
at SchedulerTasksHelper.SchedulerMgr.OOBEWait()
at SchedulerTasksHelper.SchedulerMgr.Process()
at SchedulerService.Service1.SchedulerThreadWork()
at
System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run
(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext,
System.Threading.ContextCallback, System.Object)
at System.Threading.ThreadHelper.ThreadStart()
Error: (01/07/2019 05:13:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: McTkSchedulerService.exe, versión: 4.2.131.0, marca de tiempo: 0x57510351
Nombre del módulo con errores: unknown, versión: 0.0.0.0, marca de tiempo: 0x00000000
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000007fe9293485f
Id. del proceso con errores: 0x1558
Hora de inicio de la aplicación con errores: 0x01d4a6c577f4b240
Ruta de acceso de la aplicación con errores: C:\Program Files\TrueKey\McTkSchedulerService.exe
Ruta de acceso del módulo con errores: unknown
Id. del informe: bccd7278-12b8-11e9-953c-e06995697e82
Error: (01/07/2019 05:13:47 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: McTkSchedulerService.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info:
System.NullReferenceException
at SchedulerTasksHelper.SchedulerMgr.OOBEWait()
at SchedulerTasksHelper.SchedulerMgr.Process()
at SchedulerService.Service1.SchedulerThreadWork()
at
System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run
(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext,
System.Threading.ContextCallback, System.Object)
at System.Threading.ThreadHelper.ThreadStart()
Error: (01/07/2019 05:12:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: McTkSchedulerService.exe, versión: 4.2.131.0, marca de tiempo: 0x57510351
Nombre del módulo con errores: unknown, versión: 0.0.0.0, marca de tiempo: 0x00000000
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x000007fe9292485f
Id. del proceso con errores: 0x18a8
Hora de inicio de la aplicación con errores: 0x01d4a6c54ce11a44
Ruta de acceso de la aplicación con errores: C:\Program Files\TrueKey\McTkSchedulerService.exe
Ruta de acceso del módulo con errores: unknown
Id. del informe: 91c509d4-12b8-11e9-953c-e06995697e82
Error: (01/07/2019 05:12:35 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: McTkSchedulerService.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info:
System.NullReferenceException
at SchedulerTasksHelper.SchedulerMgr.OOBEWait()
at SchedulerTasksHelper.SchedulerMgr.Process()
at SchedulerService.Service1.SchedulerThreadWork()
at
System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run
(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext,
System.Threading.ContextCallback, System.Object)
at System.Threading.ThreadHelper.ThreadStart()
System errors:
=============
Error: (01/07/2019 05:16:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Intel Security True Key Scheduler terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 60000 milisegundos: Reiniciar el
servicio.
Error: (01/07/2019 05:14:59 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Intel Security True Key Scheduler terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 60000 milisegundos: Reiniciar el
servicio.
Error: (01/07/2019 05:13:47 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Intel Security True Key Scheduler terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 60000 milisegundos: Reiniciar el
servicio.
Error: (01/07/2019 05:12:35 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Intel Security True Key Scheduler terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 60000 milisegundos: Reiniciar el
servicio.
Error: (01/07/2019 05:11:22 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Intel Security True Key Scheduler terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 60000 milisegundos: Reiniciar el
servicio.
Error: (01/07/2019 05:10:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Intel Security True Key Scheduler terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 60000 milisegundos: Reiniciar el
servicio.
Error: (01/07/2019 05:08:58 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Intel Security True Key Scheduler terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 60000 milisegundos: Reiniciar el
servicio.
Error: (01/07/2019 05:07:46 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Intel Security True Key Scheduler terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 60000 milisegundos: Reiniciar el
servicio.
CodeIntegrity:
===================================
Date: 2019-01-05 02:26:38.209
Description:
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume6\Windows\System32\drivers\AtihdW76.sys porque el hash del archivo no se encuentra en el sistema. Puede que
un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.
Date: 2019-01-05 02:26:38.208
Description:
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume6\Windows\System32\drivers\AtihdW76.sys porque el hash del archivo no se encuentra en el sistema. Puede que
un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.
Date: 2018-01-29 00:49:19.514
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume6\Program Files\ESET\ESET NOD32 Antivirus\Drivers\eelam\eelam.sys porque el conjunto de hashes
de imagen por página no se encuentra en el sistema.
Date: 2018-01-29 00:49:19.512
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume6\Program Files\ESET\ESET NOD32 Antivirus\Drivers\eelam\eelam.sys porque el conjunto de hashes
de imagen por página no se encuentra en el sistema.
Date: 2018-01-29 00:49:19.511
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume6\Program Files\ESET\ESET NOD32 Antivirus\Drivers\eelam\eelam.sys porque el conjunto de hashes
de imagen por página no se encuentra en el sistema.
Date: 2018-01-27 20:06:02.913
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume6\Program Files\ESET\ESET NOD32 Antivirus\Drivers\eelam\eelam.sys porque el conjunto de hashes
de imagen por página no se encuentra en el sistema.
Date: 2018-01-27 20:06:02.912
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume6\Program Files\ESET\ESET NOD32 Antivirus\Drivers\eelam\eelam.sys porque el conjunto de hashes
de imagen por página no se encuentra en el sistema.
Date: 2018-01-27 20:06:02.911
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume6\Program Files\ESET\ESET NOD32 Antivirus\Drivers\eelam\eelam.sys porque el conjunto de hashes
de imagen por página no se encuentra en el sistema.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i7-2600 CPU @ 3.40GHz
Percentage of memory in use: 30%
Total physical RAM: 8169.4 MB
Available physical RAM: 5639.54 MB
Total Virtual: 16336.94 MB
Available Virtual: 13493.71 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:1862.92 GB) (Free:866.54 GB) NTFS
Drive d: (Windows_10_10240_PGA_THEMES) (CDROM) (Total:2.89 GB) (Free:0 GB) UDF
Drive e: (Windows) (Fixed) (Total:58.54 GB) (Free:27.92 GB) NTFS
\\?\Volume{48f22e45-6ee7-11e5-a6fe-806e6f6e6963}\ (Reservado para el sistema) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{f98f9163-77e5-4fa0-a710-ef892209204a}\ (Recovery) (Fixed) (Total:0.98 GB) (Free:0.62 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 59.6 GB) (Disk ID: 66FB0177)
Partition: GPT.
========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 65FE704F)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1862.9 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
al inicio del informe y otra como este 
al final del mismo.
.