[CODE] Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08.11.2018 Ran by Maxi (09-11-2018 14:22:33) Running from C:\Users\Maxi\Desktop Windows 7 Ultimate Service Pack 1 (X64) (2014-08-08 23:05:38) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrador (S-1-5-21-1870994137-524594959-531252655-500 - Administrator - Disabled) Invitado (S-1-5-21-1870994137-524594959-531252655-501 - Limited - Disabled) Maxi (S-1-5-21-1870994137-524594959-531252655-1000 - Administrator - Enabled) => C:\Users\Maxi ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96} AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) ABBYY FineReader 9.0 Sprint (HKLM-x32\...\{F9000000-0018-0000-0000-074957833700}) (Version: 9.01.513.58212 - ABBYY) Hidden ABBYY FineReader 9.0 Sprint (HKLM-x32\...\ABBYY FineReader 9.0 Sprint) (Version: 9.01.513.58212 - ABBYY) Actualización de NVIDIA 15.3.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 15.3.13 - NVIDIA Corporation) Hidden Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 19.008.20080 - Adobe Systems Incorporated) Aimersoft Helper Compact 2.5.2 (HKLM-x32\...\{405147F7-FCC5-499B-A27E-EA6BD4A80435}_is1) (Version: 2.5.2 - Aimersoft) Aplicación para detectar Winamp (HKU\S-1-5-21-1870994137-524594959-531252655-1000\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc) aTube Catcher versión 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp) avast! Free Antivirus (HKLM-x32\...\avast) (Version: 9.0.2021 - AVAST Software) Back to the Future The Game (HKU\S-1-5-21-1870994137-524594959-531252655-1000\...\Back to the Future The Game) (Version: 2.0.0.0 - Telltale Games) Backup and Sync from Google (HKLM\...\{608EBDC6-D18A-4CF6-AD54-EE6B71D29065}) (Version: 3.43.1584.4446 - Google, Inc.) Cakewalk Pro Audio 9 (HKLM-x32\...\Cakewalk Pro Audio 9) (Version: - ) CCleaner (HKLM\...\CCleaner) (Version: 5.47 - Piriform) Chromium (HKLM-x32\...\{12EDFA2D-426D-2BAD-F3ED-5B2D236D88AD}) (Version: - ) Clubes v2.38 (HKLM-x32\...\Clubes_is1) (Version: - ) Corel Graphics - Windows Shell Extension (HKLM\...\_{B16BB34E-B7BF-47DF-8658-BEABCF40CD6A}) (Version: 16.1.0.843 - Corel Corporation) Corel Graphics - Windows Shell Extension (HKLM\...\{B16BB34E-B7BF-47DF-8658-BEABCF40CD6A}) (Version: 16.1.843 - Corel Corporation) Hidden Corel Graphics - Windows Shell Extension 32 Bit (HKLM\...\{0CEA94E0-E6F4-4F2D-AA98-D0EFD6833754}) (Version: 16.1.843 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - Capture (HKLM-x32\...\{EDB98D5A-A6FB-425C-BFB7-51A0924B762D}) (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - Common (HKLM-x32\...\{CA3861BA-1D96-4D66-B577-318E1602C4F3}) (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - Connect (HKLM-x32\...\{54B8F4A1-02B0-4D32-8F37-925526C0EEC6}) (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - Custom Data (HKLM-x32\...\{24D9A3E0-D086-4B62-AF93-63CF6B05CB48}) (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - Draw (HKLM-x32\...\{62978C1C-FE2E-4A4E-851D-3EB406C9EBC2}) (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - ES (HKLM-x32\...\{68EE5C41-2F79-4F36-BE85-22A814F55AF7}) (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - Filters (HKLM-x32\...\{3472C84E-2FD0-439F-B27F-C290C1E4CD8B}) (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - FontNav (HKLM-x32\...\{983F7145-CABF-4EDD-9F3D-E06B2F024BD3}) (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - IPM (HKLM-x32\...\{DE6CBC04-8673-4DBA-BA81-07F1639CEB5F}) (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - PHOTO-PAINT (HKLM-x32\...\{A1B04B6B-25BB-48AD-8BD9-D31A86E89F3E}) (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - Photozoom Plugin (HKLM-x32\...\{D642FF8D-438D-4545-A1D5-2EDB4BCAE3BA}) (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - Redist (HKLM-x32\...\{59123CCF-FED2-46FF-9293-D1DC80042219}) (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - Setup Files (HKLM-x32\...\{CE54DCE1-E00A-4D91-ACB9-A2D916C24051}) (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - VBA (HKLM-x32\...\{57400C1E-BC51-4ECE-AD2A-A6096204DDEC}) (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - VideoBrowser (HKLM-x32\...\{FE4B83DE-85CF-4DE5-90CE-A2735A0E1F21}) (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - VSTA (HKLM-x32\...\{260ED378-2B8C-4831-ADAE-D0712D119AC5}) (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 - WT (HKLM-x32\...\{9244E956-5939-4B88-930C-0699D4AB2B95}) (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X5 (HKLM-x32\...\{B399C91E-96F2-4265-9884-1C9A10E9FCF4}) (Version: 15.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - Capture (x64) (HKLM\...\{1967EF95-E00B-4669-8B1C-A589BE8BF24F}) (Version: 16.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - Common (x64) (HKLM\...\{35869A6C-BA31-4F23-B52D-BC1B1E41EC1B}) (Version: 16.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - Connect (x64) (HKLM\...\{96AAAB95-AEBE-437A-B7CA-37C7BE13FFE9}) (Version: 16.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - Custom Data (x64) (HKLM\...\{7386B5FA-8715-481D-821F-7785110506DF}) (Version: 16.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - Draw (x64) (HKLM\...\{27AE72A4-B217-4CDC-B82B-3311E9D7460E}) (Version: 16.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - ES (x64) (HKLM\...\{839546C9-2E4E-4A42-B0D4-22E05E92E7AA}) (Version: 16.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - Filters (x64) (HKLM\...\{E699230D-4B5E-411E-9F45-FF50789B18DD}) (Version: 16.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - FontNav (x64) (HKLM\...\{3933C06C-8239-432B-87FC-F2BDC5B49A10}) (Version: 16.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - IPM (HKLM\...\{B6DF7031-2843-44FD-9CAB-DECAB4257456}) (Version: 16.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - PHOTO-PAINT (x64) (HKLM\...\{D7C2687D-924E-4485-B367-C7D95CBF8DDD}) (Version: 16.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - Photozoom Plugin (x64) (HKLM\...\{2C72B5E4-AA34-4F1A-8C7E-468530F9F6A3}) (Version: 16.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - Redist (x64) (HKLM\...\{6099F026-0A98-4D40-9B3D-ED2123A8CBD0}) (Version: 16.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - Setup Files (x64) (HKLM\...\{BDBFAC49-8877-472F-876B-75ADB7DBC955}) (Version: 16.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - VBA (x64) (HKLM\...\{10762393-1B90-4AC2-AF1A-4C0C04AE303F}) (Version: 16.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - VideoBrowser (x64) (HKLM\...\{7B79AE44-9B76-4815-84E5-ACAC3F0F0278}) (Version: 16.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - VSTA (x64) (HKLM\...\{1E3A578C-0A7D-4820-990F-B7545C0B2303}) (Version: 16.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 - Writing Tools (x64) (HKLM\...\{DDE82E3D-20C4-48E1-AE1D-B1F10E42CA44}) (Version: 16.1 - Corel Corporation) Hidden CorelDRAW Graphics Suite X6 (64-Bit) (HKLM\...\_{BDBFAC49-8877-472F-876B-75ADB7DBC955}) (Version: 16.1.0.843 - Corel Corporation) CorelDRAW Graphics Suite X6 (x64) (HKLM\...\{CCE7423E-1D84-4CD3-9E32-220EC9358D97}) (Version: 16.1 - Corel Corporation) Hidden CorelDRAW(R) Graphics Suite X5 (HKLM-x32\...\_{CE54DCE1-E00A-4D91-ACB9-A2D916C24051}) (Version: 15.0.0.486 - Corel Corporation) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden DAEMON Tools Pro (HKLM-x32\...\DAEMON Tools Pro) (Version: 5.2.0.0348 - DT Soft Ltd) Dropbox (HKLM-x32\...\Dropbox) (Version: 61.4.95 - Dropbox, Inc.) Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.141.1 - Dropbox, Inc.) Hidden Epic Games Launcher (HKLM-x32\...\{79F5479A-BF71-4F4C-9C49-9D616AF923DE}) (Version: 1.1.151.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Epson Connect Printer Setup (HKLM-x32\...\{D9B1D51B-EB56-410D-AEB5-1CCFAC4B6C8C}) (Version: 1.4.0 - Seiko Epson Corporation) Epson Customer Research Participation (HKLM\...\{B26449A6-6007-4460-B4FE-C4776115BCEA}) (Version: 1.83.0000 - Seiko Epson Corporation) Epson Easy Photo Print 2 (HKLM-x32\...\{71038C40-8258-44D2-BBF4-B6312338172C}) (Version: 2.8.3.0 - Seiko Epson Corporation) Epson Event Manager (HKLM-x32\...\{541E6575-D4A4-448A-91F3-F5E9D6731A7F}) (Version: 3.10.0083 - Seiko Epson Corporation) EPSON L4150 Series Printer Uninstall (HKLM\...\EPSON L4150 Series) (Version: - Seiko Epson Corporation) Epson Scan 2 (HKLM-x32\...\Epson Scan 2) (Version: - Seiko Epson Corporation) EPSON Scan OCR Component (HKLM-x32\...\{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 3.00.04 - SEIKO EPSON Corp.) Epson Software Updater (HKLM-x32\...\{B55DB65D-EF6E-4E04-89D5-B03603BF681B}) (Version: 4.4.5 - SEIKO EPSON CORPORATION) EpsonNet Print (HKLM\...\{96ED1D58-440C-4345-8FEE-C4781366C67F}) (Version: 3.1.4.0 - SEIKO EPSON Corporation) Facebook (HKLM-x32\...\{d85544fc-e402-c7a2-a96a-48078edaf203}_is1) (Version: 2.0.701 - Facebook_Webapp) Galería de fotos (HKLM-x32\...\{198CEF22-A27F-4DC7-9B66-2C22A4B1CA09}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 70.0.3538.77 - Google Inc.) Google Earth Pro (HKLM-x32\...\{BF354C72-AC4C-4A87-8D42-B089862BAE58}) (Version: 7.3.2.5491 - Google) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden i-Look 110 (HKLM-x32\...\{99F351B0-E2CD-43E2-935F-256F1CF1348B}) (Version: 1.0.4.15 - KYE) iMusic(Version 2.0.7) (HKLM-x32\...\{929CB871-3112-45D0-8B87-4228A469CE0C}_is1) (Version: 2.0.7 - iMusic) Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation) Java 8 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation) K-Lite Codec Pack 13.6.5 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 13.6.5 - KLCP) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Malwarebytes versión 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes) Manual Epson L4150 (HKLM-x32\...\UsersGuideManual Epson L4150_is1) (Version: 1.0 - Epson America, Inc.) MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited) Microsoft .NET Framework 4.7.1 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.7.02558 - Microsoft Corporation) Microsoft .NET Framework 4.7.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02558 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office Professional Plus 2007 (HKLM-x32\...\PROPLUS) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual Studio Tools for Applications 2.0 - ENU (HKLM-x32\...\{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual Studio Tools for Applications 2.0 Language Pack - ESN (HKLM-x32\...\{6D972506-DC01-39BC-A5DD-06DA86E00031}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual Studio Tools for Applications 2.0 Runtime (HKLM-x32\...\{299C0434-4F4E-341F-A916-4E07AEB35E79}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual Studio Tools for Applications 2.0 Runtime Language Pack - ESN (HKLM-x32\...\{4A28444E-0532-3264-B07D-5AFE590E30BE}) (Version: 9.0.30729 - Microsoft Corporation) Movie Maker (HKLM-x32\...\{9C82436F-F19C-42A4-B476-F87A28A95BF9}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden MSI Afterburner 3.0.1 (HKLM-x32\...\Afterburner) (Version: 3.0.1 - MSI Co., LTD) Norton PartitionMagic (HKLM-x32\...\{21DBBDD6-93A5-4326-9A04-C9A5C9148502}) (Version: 8.05.000 - Symantec) Hidden NVIDIA Controlador de 3D Vision 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 340.52 - NVIDIA Corporation) NVIDIA Controlador de audio HD 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation) NVIDIA Controlador de gráficos 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation) NVIDIA Controlador de la controladora 3D Vision 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.52 - NVIDIA Corporation) NVIDIA GeForce Experience 2.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.0 - NVIDIA Corporation) NVIDIA Software del sistema PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation) Octoshape Streaming Services (HKU\S-1-5-21-1870994137-524594959-531252655-1000\...\Octoshape Streaming Services) (Version: - Octoshape ApS) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Opera Stable 56.0.3051.99 (HKU\S-1-5-21-1870994137-524594959-531252655-1000\...\Opera 56.0.3051.99) (Version: 56.0.3051.99 - Opera Software) paint.net (HKLM\...\{E8FA8815-3817-4128-A814-E2EAC456ADF0}) (Version: 4.0.21 - dotPDN LLC) Panel de control de NVIDIA 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 340.52 - NVIDIA Corporation) Hidden Photodex Presenter (HKLM-x32\...\Photodex Presenter) (Version: - Photodex Corporation) Photoshop CS5 Extended 12.0 (HKLM-x32\...\Photoshop CS5 Extended 12.0) (Version: - ) Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.) Hidden Popcorn Time (HKLM-x32\...\Popcorn Time_is1) (Version: 5.5.1.2 - Popcorn Time) <==== ATTENTION PosteRazor (HKLM-x32\...\PosteRazor_is1) (Version: 1.5.2 - Alessandro Portale) ProShow Gold (HKLM-x32\...\ProShow Gold) (Version: - Photodex Corporation) Recuva (HKLM\...\Recuva) (Version: 1.50 - Piriform) Revisión para Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947789) (HKLM-x32\...\{6D972506-DC01-39BC-A5DD-06DA86E00031}.KB947789) (Version: 1 - Microsoft Corporation) Roblox Player for Maxi (HKU\S-1-5-21-1870994137-524594959-531252655-1000\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - Roblox Corporation) Roblox Player for Maxi (HKU\S-1-5-21-1870994137-524594959-531252655-1000\...\roblox-player) (Version: - Roblox Corporation) RocketDock 1.3.5 (HKLM-x32\...\RocketDock_is1) (Version: - Punk Software) SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 3.1.100 - NVIDIA Corporation) Hidden Speccy (HKLM\...\Speccy) (Version: 1.25 - Piriform) Spotify (HKU\S-1-5-21-1870994137-524594959-531252655-1000\...\Spotify) (Version: 1.0.74.380.g1fcff12a - Spotify AB) Steinberg HALionOne (HKLM-x32\...\{E70E7159-93B1-470D-9FBD-D8E9EF34B538}) (Version: 1.1.0.457 - Steinberg Media Technologies GmbH) Steinberg HALionOne GM Drum Set (HKLM-x32\...\{AC997F93-0757-4ED4-A701-F40C2D654D09}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH) Steinberg HALionOne GM Set (HKLM-x32\...\{F057965A-D974-4C64-ADB1-4381CD4B8956}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH) Steinberg HALionOne Pro Set (HKLM-x32\...\{D82CDA0D-C182-42C8-8FF2-5649C98D6003}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH) Steinberg HALionOne Studio Drum Set (HKLM-x32\...\{865D9ED1-EAC2-436D-AFA7-0B750EB5AAAB}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH) Steinberg HALionOne Studio Set (HKLM-x32\...\{D23CBFDA-C46B-4920-BA70-FC7878A3F05A}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH) Steinberg Nuendo 4 (HKLM-x32\...\{41E0A8DD-4343-4B33-95C3-272A99F18984}) (Version: 4.3.0.371 - Steinberg Media Technologies GmbH) Steinberg Nuendo Expansion Kit (HKLM-x32\...\{A1E50F2C-F6CA-4C27-AEA7-819B2A486223}) (Version: 4.2.2.274 - Steinberg Media Technologies GmbH) Subs en Español para Back to the Future (Ep #1) (HKLM\...\{741BA7A7-56F8-4AEA-9197-3B4A236C4D69}) (Version: 1.0.0 - www.cuevadeclasicos.org) Subs en Español para Back to the Future (Ep #2) (HKLM\...\{EB46CEFC-EEE5-4712-A42C-8F69A94B5F09}) (Version: 2.0.0 - www.cuevadeclasicos.org) Subs en Español para Back to the Future (Ep #3) (HKLM\...\{0688327B-9D26-4B15-912B-8ECC047992DC}) (Version: 3.0.0 - www.cuevadeclasicos.org) Subs en Español para Back to the Future (Ep #4) (HKLM\...\{9CBD0110-29F9-409D-ACD9-E78F838CC1C5}) (Version: 4.0.0 - www.cuevadeclasicos.org) Subs en Español para Back to the Future (Ep #5) (HKLM\...\{BCB933A8-1025-4859-BFAA-E9FC43F9D2DF}) (Version: 5.0.0 - www.cuevadeclasicos.org) Switch Sound File Converter (HKLM-x32\...\Switch) (Version: - NCH Software) TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.2.26558 - TeamViewer) UltraISO Premium V9.52 (HKLM-x32\...\UltraISO_is1) (Version: - ) Universal Adb Driver (HKLM-x32\...\{D9C4202E-6D51-4B06-A8F1-22316E654BCA}) (Version: 1.0.0 - ClockworkMod) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) VIA Administrador de dispositivos de plataforma (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.) Visual C++ 64-bit Redistributables (HKLM-x32\...\InstallShield_{FB03650C-B373-4B20-ACA5-B7BA1A8EEE33}) (Version: 1.2.0.5555 - PACE Anti-Piracy, Inc.) Visual C++ Redistributables (HKLM-x32\...\InstallShield_{F03117FA-9270-46B0-9666-0B4BC2CDEBF5}) (Version: 1.2.0.5555 - PACE Anti-Piracy, Inc.) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) VSO ConvertXtoDVD 5 (HKLM-x32\...\{CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1) (Version: 5.0.0.24 - VSO-Software SARL) Winamp (HKLM-x32\...\Winamp) (Version: 5.65 - Nullsoft, Inc) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) WinRAR 4.00 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH) WinRAR 5.30 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH) Yadis! Backup 1.10.15 (HKLM-x32\...\Yadis_is1) (Version: - Codessentials) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Maxi\AppData\Local\MEGAsync\ShellExtX64.dll [2016-10-31] () ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Maxi\AppData\Local\MEGAsync\ShellExtX64.dll [2016-10-31] () ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Maxi\AppData\Local\MEGAsync\ShellExtX64.dll [2016-10-31] () ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-10-04] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-10-04] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-10-04] (Google) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2014-10-03] (AVAST Software) ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Maxi\AppData\Local\MEGAsync\ShellExtX64.dll [2016-10-31] () ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Maxi\AppData\Local\MEGAsync\ShellExtX64.dll [2016-10-31] () ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Maxi\AppData\Local\MEGAsync\ShellExtX64.dll [2016-10-31] () ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2014-10-03] (AVAST Software) ContextMenuHandlers1: [DaemonShellExtImage] -> {40966797-8FFE-46C8-9EF8-7003F33CCF0F} => C:\Program Files (x86)\DAEMON Tools Pro\DTShl64.dll [2012-10-23] (DT Soft Ltd) ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2018-10-04] (Google) ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Maxi\AppData\Local\MEGAsync\ShellExtX64.dll [2016-10-31] () ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-11-18] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-11-18] (Alexander Roshal) ContextMenuHandlers2: [DaemonShellExtDrive] -> {A5415364-784A-41A5-B47A-D452909CA8FF} => C:\Program Files (x86)\DAEMON Tools Pro\DTShl64.dll [2012-10-23] (DT Soft Ltd) ContextMenuHandlers2: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2009-10-22] (EZB Systems, Inc.) ContextMenuHandlers3: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2014-10-03] (AVAST Software) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes) ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Maxi\AppData\Local\MEGAsync\ShellExtX64.dll [2016-10-31] () ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2018-10-04] (Google) ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Maxi\AppData\Local\MEGAsync\ShellExtX64.dll [2016-10-31] () ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2014-01-02] (Piriform Ltd) ContextMenuHandlers4: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2009-10-22] (EZB Systems, Inc.) ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-11-18] (Alexander Roshal) ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-11-18] (Alexander Roshal) ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2014-07-02] (NVIDIA Corporation) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2014-10-03] (AVAST Software) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes) ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2014-01-02] (Piriform Ltd) ContextMenuHandlers6: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2009-10-22] (EZB Systems, Inc.) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-11-18] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-11-18] (Alexander Roshal) ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {151B3B9F-40DE-4C7C-927A-F98D6B6D9892} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\avast software\overseer\overseer.exe [2017-12-06] (AVAST Software) Task: {289318CA-0801-48D0-BC52-14F8828168CE} - System32\Tasks\{30AE2229-CF27-4BDA-A075-EB1220B77BEF} => C:\Windows\system32\pcalua.exe -a G:\Espanol\Guide\setup.exe -d G:\Espanol\Guide Task: {31849885-D034-4C8E-9B78-EEF45C895041} - System32\Tasks\avastBCLRestart_chrome.exe => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe Task: {3D59F548-9C41-4644-9F17-4F8C94762A21} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-14] (Adobe Systems Incorporated) Task: {3ECFFB14-6571-4F1F-A465-9F02C768F928} - System32\Tasks\{DC0B10BD-10B3-44C2-8E30-2414C58C4E93} => C:\Program Files (x86)\DsNET Corp\aTube Catcher 2.0\yct.exe [2018-07-02] (DsNET) Task: {41D99CAF-EF81-447F-BFCB-0C6A67A5CD29} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-09-19] (Piriform Ltd) Task: {4D056E71-430C-423C-9744-E09015BA7ED3} - System32\Tasks\Facebook1 => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --app=hxxps://www.facebook.com/campaign/landing.php?campaign_id=572665646222743&keyword=ZOe1Rle65z8hupVOIrfjPiXM6E83%2FbUPLLzhSim%2F4EskvOFKJLzpSim79xR36LQJLMiwGHTsvhR60YYec%2B%2BhCzftoxgivOxIJbrhTSS66Eko%2FlEAAAARjtF7&extra_2=AR&placement=100&creative=webApp --app-window-size=1600,900 Task: {4E03E978-566F-4EFD-8CD5-DAAC3EFCA756} - System32\Tasks\Opera scheduled Autoupdate 1529857370 => C:\Users\Maxi\AppData\Local\Programs\Opera\launcher.exe [2018-11-06] (Opera Software) Task: {53166195-744D-4248-BE37-8FBBF46115A2} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-09-19] (Piriform Ltd) Task: {59246245-16A7-4D60-ADA7-22EAA66F5A0B} - System32\Tasks\EPSON L4150 Series Update {1BDF30FA-E8C4-4E3A-8C7F-9EB05A894A90} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSSOE.EXE [2013-11-22] (SEIKO EPSON CORPORATION) Task: {6593867D-CCC0-413E-8D2E-4926882D6E3A} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-06-08] (Oracle Corporation) Task: {6A67E260-8044-4572-BC9B-A594822C68D8} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2017-11-09] () Task: {81F4D73D-E61F-40BC-A1E9-DDF01E71586C} - System32\Tasks\Yahoo! Powered lemed => C:\Windows\system32\wscript.exe "C:\ProgramData\{7C7CB91F-F63E-33D9-70F8-AD9BEABA2655}\dero" "68747470733a2f2f64327a79766c736b6a35337136352e636c6f756466726f6e742e6e6574" "//B" "//E:jscript" "--IsErIk" Task: {8EDEB7C4-561D-410C-8B55-9AED2B93B5B9} - System32\Tasks\{48326A46-82E0-4780-8B15-9FC20680B993} => C:\Windows\system32\pcalua.exe -a "C:\Users\Maxi\Desktop\Los Sims 4\__Installer\vp6\vp6install.exe" -d "C:\Users\Maxi\Desktop\Los Sims 4\__Installer\vp6" Task: {99E3A1D0-6AD0-4B49-A97F-1F8DA7EA3575} - System32\Tasks\{4A2B0EDD-937E-4CD0-A761-09B37AC736A9} => C:\Program Files (x86)\DsNET Corp\aTube Catcher 2.0\yct.exe [2018-07-02] (DsNET) Task: {9F59C7FF-A2A4-4F11-8DA4-3CCD8447990B} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2018-08-23] (AVAST Software) Task: {C25CB287-63FF-450E-9943-FB07489458D0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.) Task: {C2CB7C3F-E18F-4FDA-B556-D07BAFE47A0B} - System32\Tasks\{A15B7DBD-79F0-422C-892C-73EE89CACD46} => C:\Windows\system32\pcalua.exe -a C:\Windows\IsUninst.exe -d C:\Windows -c -fC:\PROGRA~2\Cakewalk\CAKEWA~1\CWPA9_~1.ISU Task: {D84401DF-AA79-432B-86D3-521A1D7C7C16} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-08-12] (Dropbox, Inc.) Task: {DBD62322-13CE-40BD-B00B-E902B8B0AFB2} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe Task: {DDA7D081-E48A-41DE-A26A-24FACA8BC3B6} - System32\Tasks\Adobe Reader and Acrobat Manager => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-14] (Adobe Systems Incorporated) Task: {DE6B2D65-E202-4BD0-A5A5-6041A20D9F22} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-08-12] (Dropbox, Inc.) Task: {E2C1563F-33A0-4746-A276-3D2AB1BE4F03} - System32\Tasks\avastBCLRestartS-1-5-21-1870994137-524594959-531252655-1000 => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe Task: {E46D808D-5C74-4331-8853-D9BEF41CE7D1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.) Task: {E68BAE5D-456F-4483-9622-6EFB13D2305D} - System32\Tasks\{748E38F1-6EB9-437B-A0FC-CE9384539931} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{FEFAF112-4DA8-479C-89E2-7DE25091711A}\setup.exe" -c -runfromtemp -l0x040a (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\EPSON L4150 Series Update {1BDF30FA-E8C4-4E3A-8C7F-9EB05A894A90}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSSOE.EXE:/EXE:{1BDF30FA-E8C4-4E3A-8C7F-9EB05A894A90} /F:UpdateSYSTEMĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi Task: C:\Windows\Tasks\Yahoo! Powered lemed.job => Wscript exe ==================== Shortcuts & WMI ======================== (The entries could be listed to be restored or removed.) WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\": WMI:subscription\__EventFilter->BVTFilter: WMI:subscription\CommandLineEventConsumer->BVTConsumer: Shortcut: C:\Users\Maxi\Favorites\NCH Audio and Telephony Software.lnk -> hxxp://www.nch.com.au/index.htm ==================== Loaded Modules (Whitelisted) ============== 2015-06-12 17:53 - 2014-07-02 15:55 - 000116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-09-27 22:16 - 2016-09-27 22:16 - 000186760 _____ () C:\Program Files (x86)\Photodex\ProShowGold\ScsiAccess.exe 2018-11-08 23:10 - 2018-11-08 23:16 - 002821952 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll 2018-11-08 23:10 - 2018-11-08 23:16 - 002695360 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll 2016-10-31 16:45 - 2016-10-31 16:45 - 000592384 _____ () C:\Users\Maxi\AppData\Local\MEGAsync\ShellExtX64.dll 2014-08-10 05:43 - 2007-09-02 13:58 - 000495616 _____ () C:\Program Files (x86)\RocketDock\RocketDock.exe 2018-10-04 19:44 - 2018-10-04 19:44 - 046459080 _____ () C:\Program Files\Google\Drive\googledrivesync.exe 2014-08-11 19:32 - 2010-05-24 06:10 - 000076192 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll 2014-08-11 19:32 - 2010-05-24 06:10 - 000383904 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll 2014-08-11 19:32 - 2010-05-24 06:10 - 000103328 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\VMicApi.dll 2014-08-11 19:32 - 2010-05-24 06:10 - 064641440 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Skin.dll 2013-12-19 13:36 - 2013-12-19 13:36 - 000039192 _____ () C:\Program Files\CCleaner\branding.dll 2018-09-19 05:13 - 2018-09-19 05:13 - 000095168 _____ () C:\Program Files\CCleaner\lang\lang-1034.dll 2018-10-24 18:42 - 2018-10-23 18:24 - 005020504 _____ () C:\Program Files (x86)\Google\Chrome\Application\70.0.3538.77\libglesv2.dll 2018-10-24 18:42 - 2018-10-23 18:24 - 000116056 _____ () C:\Program Files (x86)\Google\Chrome\Application\70.0.3538.77\libegl.dll 2018-11-09 14:12 - 2018-11-09 14:12 - 000113664 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\_ctypes.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 000080896 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\bz2.pyd 2018-11-09 14:12 - 2018-11-09 14:12 - 001792512 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\_hashlib.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 000128512 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\win32api.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 000137728 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\pywintypes27.dll 2018-11-09 14:13 - 2018-11-09 14:13 - 000548864 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\pythoncom27.dll 2018-11-09 14:13 - 2018-11-09 14:13 - 000689664 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\unicodedata.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 000438784 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\win32com.shell.shell.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 001489408 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\wx._core_.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 001007104 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\wx._gdi_.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 001039872 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\wx._windows_.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 001325056 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\wx._controls_.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 000916992 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\wx._misc_.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 001084416 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\pysqlite2._sqlite.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 000149504 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\win32file.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 000136192 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\win32security.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 000007680 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\hashobjs_ext.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 000020992 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\thumbnails_ext.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 000118784 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\usb_ext.pyd 2018-11-09 14:12 - 2018-11-09 14:12 - 000047616 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\_socket.pyd 2018-11-09 14:12 - 2018-11-09 14:12 - 002224640 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\_ssl.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 000014848 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\common.time34.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 000023040 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\win32event.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 000034304 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\windows.conditional.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 000020480 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\windows.winwrap.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 000110080 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\windows.volumes.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 000223232 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\win32gui.pyd 2018-11-09 14:12 - 2018-11-09 14:12 - 000173568 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\_elementtree.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 000169472 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\pyexpat.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 000048128 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\win32inet.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 000103424 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\wx._html2.pyd 2018-11-09 14:12 - 2018-11-09 14:12 - 000046080 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\_psutil_windows.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 000633272 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\windows._cacheinvalidation.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 000011776 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\win32crypt.pyd 2018-11-09 14:12 - 2018-11-09 14:12 - 000301568 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\PIL._imaging.pyd 2018-11-09 14:12 - 2018-11-09 14:12 - 000032256 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\_multiprocessing.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 005752320 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\cello.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 000026112 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\_yappi.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 000044032 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\win32process.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 000027648 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\win32pipe.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 000010752 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\select.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 000029696 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\win32pdh.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 000038400 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\windows.connectivity.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 000073216 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\windows.device_monitor.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 000020480 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\win32profile.pyd 2018-11-09 14:13 - 2018-11-09 14:13 - 000026624 _____ () C:\Users\Maxi\AppData\Local\Temp\_MEI31642\win32ts.pyd 2014-10-03 07:42 - 2014-10-03 07:42 - 000301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll 2018-11-09 11:14 - 2018-11-09 11:14 - 005719184 _____ () C:\Program Files\AVAST Software\Avast\defs\18110904\algo.dll 2014-08-10 05:43 - 2007-09-02 13:57 - 000069632 _____ () C:\Program Files (x86)\RocketDock\RocketDock.dll 2015-07-13 05:49 - 2012-11-17 01:30 - 000107520 _____ () C:\Program Files (x86)\DAEMON Tools Pro\BRD.dll 2014-10-03 07:42 - 2014-10-03 07:42 - 019329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2018-11-05 20:27 - 2017-02-15 03:30 - 002854400 _____ () C:\Users\Maxi\AppData\Local\chromium\Application\58.0.3014.0\libglesv2.dll 2018-11-05 20:27 - 2017-02-15 03:30 - 000079360 _____ () C:\Users\Maxi\AppData\Local\chromium\Application\58.0.3014.0\libegl.dll 2018-11-06 22:27 - 2018-11-06 10:06 - 001141064 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll 2018-11-06 22:27 - 2018-11-06 10:06 - 002103112 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_crashpad.dll 2018-11-06 22:28 - 2018-11-06 10:09 - 000023376 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.cp35-win32.pyd 2018-11-06 22:26 - 2018-11-06 10:08 - 000025456 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.cp35-win32.pyd 2018-11-06 22:28 - 2018-11-06 10:06 - 000142312 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.cp35-win32.pyd 2018-11-06 22:26 - 2018-11-06 10:08 - 001953640 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.cp35-win32.pyd 2018-11-06 22:26 - 2018-11-06 10:08 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.cp35-win32.pyd 2018-11-06 22:27 - 2018-11-06 10:06 - 000118232 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes35.dll 2018-11-06 22:28 - 2018-11-06 10:06 - 000109024 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.cp35-win32.pyd 2018-11-06 22:27 - 2018-11-06 10:08 - 000083784 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.cp35-win32.pyd 2018-11-06 22:27 - 2018-11-06 10:06 - 000418776 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom35.dll 2018-11-06 22:27 - 2018-11-06 10:08 - 000074072 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.cp35-win32.pyd 2018-11-06 22:28 - 2018-11-06 10:06 - 000027616 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.cp35-win32.pyd 2018-11-06 22:28 - 2018-11-06 10:06 - 000049128 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.cp35-win32.pyd 2018-11-06 22:28 - 2018-11-06 10:06 - 000026600 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.cp35-win32.pyd 2018-11-06 22:28 - 2018-11-06 10:06 - 000131552 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.cp35-win32.pyd 2018-11-06 22:28 - 2018-11-06 10:06 - 000182752 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.cp35-win32.pyd 2018-11-06 22:28 - 2018-11-06 10:06 - 000027616 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.cp35-win32.pyd 2018-11-06 22:28 - 2018-11-06 10:06 - 000119272 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.cp35-win32.pyd 2018-11-06 22:28 - 2018-11-06 10:09 - 000401752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.cp35-win32.pyd 2018-11-06 22:28 - 2018-11-06 10:06 - 000028640 _____ () C:\Program Files (x86)\Dropbox\Client\win32job.cp35-win32.pyd 2018-11-06 22:28 - 2018-11-06 10:09 - 000034664 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.cp35-win32.pyd 2018-11-06 22:28 - 2018-11-06 10:09 - 000061792 _____ () C:\Program Files (x86)\Dropbox\Client\winshell.compiled._winshell.cp35-win32.pyd 2018-11-06 22:27 - 2018-11-06 10:06 - 000023520 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.cp35-win32.pyd 2018-11-06 22:28 - 2018-11-06 10:06 - 000053736 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.cp35-win32.pyd 2018-11-06 22:28 - 2018-11-06 10:06 - 000065504 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.cp35-win32.pyd 2018-11-06 22:26 - 2018-11-06 10:08 - 000025944 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.cp35-win32.pyd 2018-11-06 22:28 - 2018-11-06 10:09 - 000068968 _____ () C:\Program Files (x86)\Dropbox\Client\winenumhandles.compiled._WinEnumHandles.cp35-win32.pyd 2018-11-06 22:28 - 2018-11-06 10:09 - 000028520 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.cp35-win32.pyd 2018-11-06 22:26 - 2018-11-06 10:08 - 000027488 _____ () C:\Program Files (x86)\Dropbox\Client\crashpad.compiled._Crashpad.cp35-win32.pyd 2018-11-06 22:28 - 2018-11-06 10:06 - 000032224 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.cp35-win32.pyd 2018-11-06 22:27 - 2018-11-06 10:08 - 000156504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.cp35-win32.pyd 2018-11-06 22:28 - 2018-11-06 10:09 - 000092488 _____ () C:\Program Files (x86)\Dropbox\Client\sip.cp35-win32.pyd 2018-11-06 22:27 - 2018-11-06 10:08 - 001778000 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.cp35-win32.pyd 2018-11-06 22:27 - 2018-11-06 10:08 - 000518992 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.cp35-win32.pyd 2018-11-06 22:27 - 2018-11-06 10:08 - 000052056 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineCore.cp35-win32.pyd 2018-11-06 22:27 - 2018-11-06 10:08 - 001929552 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.cp35-win32.pyd 2018-11-06 22:27 - 2018-11-06 10:08 - 003821392 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.cp35-win32.pyd 2018-11-06 22:27 - 2018-11-06 10:08 - 000044888 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.cp35-win32.pyd 2018-11-06 22:27 - 2018-11-06 10:08 - 000132944 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.cp35-win32.pyd 2018-11-06 22:27 - 2018-11-06 10:08 - 000218456 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.cp35-win32.pyd 2018-11-06 22:27 - 2018-11-06 10:08 - 000205656 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.cp35-win32.pyd 2018-11-06 22:28 - 2018-11-06 10:06 - 000061408 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.cp35-win32.pyd 2018-11-06 22:28 - 2018-11-06 10:09 - 000051552 _____ () C:\Program Files (x86)\Dropbox\Client\winrpcserver.compiled._RPCServer.cp35-win32.pyd 2018-11-06 22:28 - 2018-11-06 10:06 - 000027624 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.cp35-win32.pyd 2018-11-06 22:28 - 2018-11-06 10:09 - 000033632 _____ () C:\Program Files (x86)\Dropbox\Client\winreindex.compiled._winreindex.cp35-win32.pyd 2018-11-06 22:28 - 2018-11-06 10:09 - 000028008 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.cp35-win32.pyd 2018-11-06 22:28 - 2018-11-06 10:09 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.cp35-win32.pyd 2018-11-06 22:28 - 2018-11-06 10:09 - 000025448 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.cp35-win32.pyd 2018-11-06 22:28 - 2018-11-06 10:09 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.cp35-win32.pyd 2018-11-06 22:27 - 2018-11-06 10:08 - 000031600 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.cp35-win32.pyd 2018-11-06 22:28 - 2018-11-06 10:06 - 000486880 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.cp35-win32.pyd 2018-11-06 22:28 - 2018-11-06 10:09 - 000029040 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.cp35-win32.pyd 2018-11-06 22:27 - 2018-11-06 10:08 - 011144016 _____ () C:\Program Files (x86)\Dropbox\Client\nucleus_python.cp35-win32.pyd 2018-11-06 22:27 - 2018-11-06 10:08 - 000029024 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.cp35-win32.pyd 2018-11-06 22:27 - 2018-11-06 10:06 - 000036312 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll 2018-11-06 22:28 - 2018-11-06 10:09 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.advapi32.compiled._winffi_advapi32.cp35-win32.pyd 2018-11-06 22:27 - 2018-11-06 10:08 - 000433992 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL 2018-11-06 22:28 - 2018-11-06 10:09 - 000035680 _____ () C:\Program Files (x86)\Dropbox\Client\wind3d11.compiled._wind3d11.cp35-win32.pyd 2018-11-06 22:27 - 2018-11-06 10:08 - 000025920 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.DLL 2018-11-06 22:27 - 2018-11-06 10:08 - 001592128 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll 2018-11-06 22:28 - 2018-11-06 10:09 - 000029544 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.cp35-win32.pyd 2018-11-06 22:27 - 2018-11-06 10:08 - 000102736 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWinExtras.cp35-win32.pyd 2018-11-06 22:28 - 2018-11-06 10:09 - 000025448 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.gdi32.compiled._winffi_gdi32.cp35-win32.pyd 2018-11-06 22:28 - 2018-11-06 10:09 - 000028520 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.shell32.compiled._winffi_shell32.cp35-win32.pyd 2018-11-06 22:27 - 2018-11-06 10:08 - 000037200 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngine.cp35-win32.pyd 2018-11-06 22:27 - 2018-11-06 10:08 - 000530768 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.cp35-win32.pyd 2018-11-06 22:27 - 2018-11-06 10:08 - 000348496 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.cp35-win32.pyd 2018-11-05 18:12 - 2016-10-08 17:03 - 001506304 _____ () C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\DAQExp.dll 2018-11-05 18:12 - 2016-07-21 10:54 - 000137728 _____ () C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\CBSCreateVC.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`26hfm [0] AlternateDataStreams: C:\ProgramData\TEMP:56E2E879 [238] ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-13 23:34 - 2018-11-05 21:58 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-1870994137-524594959-531252655-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Maxi\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: Media is not connected to internet. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == If an entry is included in the fixlist, it will be removed. ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{2BE500B5-3759-4A58-81AA-BB80EB7ED41E}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe FirewallRules: [{32F92ED3-435D-4DBA-8E8B-6917E2F42A6C}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe FirewallRules: [{81D9C203-C2BA-4926-8BD6-79BB654E1360}] => (Allow) G:\Common\EpsonNet Setup\ENEasyApp.exe FirewallRules: [{7FE463F0-6450-4E89-BD35-16E1559467AB}] => (Allow) G:\Common\EpsonNet Setup\ENEasyApp.exe FirewallRules: [TCP Query User{BC444D29-B272-42D9-803D-C97ADF6216D4}C:\users\maxi\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\maxi\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{17EE1D64-2D2E-4123-B79D-10D32B62665A}C:\users\maxi\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\maxi\appdata\roaming\spotify\spotify.exe FirewallRules: [{A7C4B1FB-7E51-4723-9516-F9E95A8028D4}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{29DF9528-54D1-4E94-83F5-53CEAA2A530F}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{6C3BB5DA-99EE-43D8-9E69-8B4E7E5C31BC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{70ADD99C-610A-4721-B5ED-6010AB48CD0A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{FACF4743-6A00-4EB2-8D10-6AF11D67AA18}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{1C96094D-176F-4960-821D-EB21BA925457}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{CA0054ED-4EEB-4299-B18A-82F619C14D73}] => (Allow) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe FirewallRules: [{2420ACDC-ABE6-485B-97D5-687F5D0DD939}] => (Allow) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe FirewallRules: [TCP Query User{18EC66B1-31DD-4B92-9CF0-92E533EB9434}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe FirewallRules: [UDP Query User{8BB5A045-9D29-4CE7-95F3-52D6F4A0BB4B}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe FirewallRules: [TCP Query User{E0445AE1-92E2-48DD-86D0-71CA9C16F63C}C:\users\maxi\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\maxi\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{D0827940-DDA1-41AC-AE97-D0B15C1EAD45}C:\users\maxi\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\maxi\appdata\roaming\spotify\spotify.exe FirewallRules: [{24E7FF81-C092-4A2B-857D-574C29127FBE}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{59ACE489-CC5E-46F1-8D9F-85D44727D042}] => (Allow) LPort=2869 FirewallRules: [{D7EAA4C7-1BCE-4088-BB55-A2B2955D682F}] => (Allow) LPort=1900 FirewallRules: [TCP Query User{F69ED951-0F93-4E79-8260-869DFF7580CA}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe FirewallRules: [UDP Query User{637A971B-0E59-4ACD-A443-F27215A0CFE8}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe FirewallRules: [TCP Query User{CC1F92C6-D3BF-4E24-A5AF-F1827B883233}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [UDP Query User{E765A37F-54F2-4806-86BA-BCEA79E6A54D}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [{355584A2-A387-4841-B782-E76C0BB3E0FC}] => (Allow) G:\Network\EpsonNetSetup\ENEasyApp.exe FirewallRules: [{E1ECCBAD-51A3-4C82-9427-133690E3E395}] => (Allow) G:\Network\EpsonNetSetup\ENEasyApp.exe FirewallRules: [{B1B32F44-5462-45D6-96E4-38C4DC85E000}] => (Allow) C:\Program Files (x86)\EPSON Software\ECPrinterSetup\ENPApp.exe FirewallRules: [{FE50B195-B243-4372-AB81-10DCA9AD91E3}] => (Allow) C:\Program Files (x86)\EPSON Software\ECPrinterSetup\ENPApp.exe FirewallRules: [{D6264E11-C0A9-4A6C-85A6-7810C3EA294C}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe FirewallRules: [{52279632-7C84-43F8-8D3F-DFFFBAE182E7}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe FirewallRules: [{DA917E04-9501-4B67-9F1F-E9DF6B548717}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{F163CA20-C759-4EFA-8479-B1BA261D2CC9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{2BFD203A-3F4E-43DD-BE49-9653AAA8CF98}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{26F94391-1B3C-422E-AB77-8FA4C034F4E7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{83D62CEC-EEE1-4BB3-B17F-23FF047D8219}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{CE395526-2AAD-44A3-9D3D-F7F9E31483BF}] => (Allow) C:\Users\Maxi\AppData\Local\Chromium\Application\chrome.exe FirewallRules: [{AF9C7FEA-E2B2-4BA5-A060-455C8A1463CA}] => (Allow) C:\Program Files (x86)\DsNET Corp\aTube Catcher 2.0\yct.exe FirewallRules: [{07F05C67-C6AE-4804-977F-5E92F16B97C0}] => (Allow) C:\Program Files (x86)\DsNET Corp\aTube Catcher 2.0\yct.exe FirewallRules: [{90577CB9-F5CD-4E59-A54C-EE0AC96EEAB5}] => (Allow) C:\Program Files (x86)\DsNET Corp\aTube Catcher 2.0\yct.exe FirewallRules: [{48B33A2B-0514-4C9B-BBE9-88D605CF2C25}] => (Allow) C:\Program Files (x86)\DsNET Corp\aTube Catcher 2.0\yct.exe FirewallRules: [{33AFA112-7DBD-41CB-BFBA-CCC1B45F2634}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe FirewallRules: [{0F662648-612E-4BD4-A01F-A253C73BBA79}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe FirewallRules: [{2630785E-590C-4797-8223-BA305E81FCB0}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe ==================== Restore Points ========================= 01-11-2018 00:00:04 Punto de control programado 05-11-2018 18:10:55 Instalación del paquete de controladores de dispositivo: Wondershare Software Co., Ltd. Controladoras de sonido y vídeo y dispositivos de juego 09-11-2018 13:37:34 JRT Pre-Junkware Removal ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (11/09/2018 02:16:30 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nombre de la aplicación con errores: mbamtray.exe, versión: 3.1.0.1644, marca de tiempo: 0x5bc8b2d1 Nombre del módulo con errores: Qt5Core.dll, versión: 5.11.1.0, marca de tiempo: 0x5b9bc256 Código de excepción: 0xc0000005 Desplazamiento de errores: 0x001b91fe Id. del proceso con errores: 0x1be0 Hora de inicio de la aplicación con errores: 0x01d4784fdd05e6c0 Ruta de acceso de la aplicación con errores: C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe Ruta de acceso del módulo con errores: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll Id. del informe: 325efda0-e443-11e8-832a-f46d04d5392e Error: (11/09/2018 02:13:48 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema. Error: (11/09/2018 02:13:44 PM) (Source: NvStreamSvc) (EventID: 1) (User: ) Description: Event-ID 1 Error: (11/09/2018 02:13:44 PM) (Source: NvStreamSvc) (EventID: 1) (User: ) Description: Event-ID 1 Error: (11/09/2018 02:13:44 PM) (Source: NvStreamSvc) (EventID: 1) (User: ) Description: Event-ID 1 Error: (11/09/2018 01:29:16 PM) (Source: Windows Search Service) (EventID: 7010) (User: ) Description: No se puede inicializar el índice. Detalles: El catálogo del índice de contenido está dañado. (HRESULT : 0xc0041801) (0xc0041801) Error: (11/09/2018 01:29:16 PM) (Source: Windows Search Service) (EventID: 3058) (User: ) Description: No se puede inicializar la aplicación. Contexto: aplicación Windows Detalles: El catálogo del índice de contenido está dañado. (HRESULT : 0xc0041801) (0xc0041801) Error: (11/09/2018 01:29:16 PM) (Source: Windows Search Service) (EventID: 3028) (User: ) Description: No se puede inicializar el objeto Recopilador. Contexto: aplicación Windows, catálogo SystemIndex Detalles: El catálogo del índice de contenido está dañado. (HRESULT : 0xc0041801) (0xc0041801) System errors: ============= Error: (11/09/2018 02:20:27 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: El servicio Windows Update no respondió después de iniciar. Error: (11/09/2018 02:16:27 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: El servicio Google Update Servicio (gupdate) no pudo iniciarse debido al siguiente error: El servicio no respondió a tiempo a la solicitud de inicio o de control. Error: (11/09/2018 02:16:27 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Google Update Servicio (gupdate). Error: (11/09/2018 02:11:49 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: Se bloqueó la carga de \SystemRoot\SysWow64\Drivers\PQNTDrv.SYS por una incompatibilidad con este sistema. Póngase en contacto con el fabricante del software para obtener una versión compatible del controlador. Error: (11/09/2018 01:39:16 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: El servicio NVIDIA Streamer Service se terminó de manera inesperada. Esto ha sucedido 1 veces. Error: (11/09/2018 01:39:08 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: El servicio NVIDIA Display Driver Service se terminó de manera inesperada. Esto ha sucedido 1 veces. Error: (11/09/2018 01:35:56 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: El servicio Windows Update no respondió después de iniciar. Error: (11/09/2018 01:29:17 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: El servicio Windows Search terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 30000 milisegundos: Reiniciar el servicio. ==================== Memory info =========================== Processor: AMD Athlon(tm) II X4 640 Processor Percentage of memory in use: 72% Total physical RAM: 2047.23 MB Available physical RAM: 554.43 MB Total Virtual: 4094.45 MB Available Virtual: 1684.92 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:156.15 GB) (Free:48.09 GB) NTFS Drive e: (ALUMNI) (Fixed) (Total:163.02 GB) (Free:137.12 GB) NTFS Drive f: (TAMARA) (Fixed) (Total:146.48 GB) (Free:108.84 GB) NTFS Drive h: (Nuendo 4.3) (CDROM) (Total:3.45 GB) (Free:0 GB) UDF Drive i: (Elements) (Fixed) (Total:1862.98 GB) (Free:1595.07 GB) NTFS \\?\Volume{72efba87-1f6c-11e4-9541-806e6f6e6963}\ (GOLOSINAS) (Fixed) (Total:37.27 GB) (Free:37.11 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 37.3 GB) (Disk ID: 51729CA1) Partition 1: (Active) - (Size=37.3 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 246B246A) Partition 1: (Not Active) - (Size=156.2 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=146.5 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=163 GB) - (Type=0F Extended) ======================================================== Disk: 2 (Size: 1863 GB) (Disk ID: 16F2A91F) Partition: GPT. ==================== End of Addition.txt ============================ [/CODE]