Problemas de ruidos en audio luego actualizar drivers

Pablo_Kiteber · 17 Agosto, 2020 23:47

Hola! Primera vez que publico, perdón si no es la categoría correcta o el modo de hacerlo. Prometo mejorar.

Escribo porque desde hace unos días y luego de actualizar drivers con Drive Booster 7 , cambiar de antivirus (pasé de mcafee a eset) e instalar programas como el adobe audition y un controlador midi, empecé a experimentar ralentizaciones y crackeo cuando reproduzco audio, en mi compu que es nueva y anduvo perfecta hasta recien. Este problema se hace muy evidente cuando trato de reproducir audio via Zoom. El rendimiento de la máquina, medido por windows no muestra saturación de CPU, GPU o memria Ram, de hecho sigue mostrando que el sistema está muy holgado para el uso que le doy. Pasé Malware bytes y ccleaner pero el problema persiste. Si alguien pudiera darme una mano lo agradecería muchísimo.

Envío el log file del scaneo con Hijackthis,

Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.26

Platform:  x64 Windows 10 (Home), 10.0.18363.1016 (ReleaseId: 1909), Service Pack: 0
Time:      17.08.2020 - 20:21 (UTC-03:00)
Language:  OS: English (0x409). Display: Spanish (0x80A). Non-Unicode: English (0x409)
Elevated:  Yes
Ran by:    pablo	(group: Administrator) on DESKTOP-LOL8Q64, FirstRun: yes

Chrome:  84.0.4147.125
Edge:    11.0.18362.1016
Internet Explorer: 11.0.18362.1
Default: "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" -- "%1" (Microsoft Edge)

Boot mode: Normal

Running processes:
Number | Path
   1  C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe
   1  C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
  17  C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
   1  C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
   1  C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
   1  C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
   1  C:\Program Files\AMD\CNext\CNext\amddvr.exe
   1  C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
   1  C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
   1  C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
   1  C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
   1  C:\Program Files\Dell\DellDataVault\atiw.exe
   1  C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe
   1  C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7193.518\DSAPI.exe
   1  C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
   1  C:\Program Files\ESET\ESET Security\eguiProxy.exe
   1  C:\Program Files\ESET\ESET Security\ekrn.exe
   2  C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
   1  C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
   1  C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
   1  C:\Program Files\Rivet Networks\SmartByte\RAPS.exe
   1  C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe
   1  C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe
   1  C:\Program Files\Rivet Networks\SmartByte\SmartByteTelemetry.exe
   1  C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
   1  C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
   1  C:\Program Files\WindowsApps\Microsoft.WindowsStore_12007.1001.2.0_x64__8wekyb3d8bbwe\WinStore.App.exe
   1  C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20071.95.0_x64__8wekyb3d8bbwe\YourPhone.exe
   1  C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20032.12611.0_x64__8wekyb3d8bbwe\Music.UI.exe
   1  C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.20032.16211.0_x64__8wekyb3d8bbwe\Video.UI.exe
   1  C:\Program Files\mcafee\WebAdvisor\browserhost.exe
   1  C:\Program Files\mcafee\WebAdvisor\servicehost.exe
   1  C:\Program Files\mcafee\WebAdvisor\uihost.exe
   1  C:\Users\pablo\AppData\Local\Microsoft\OneDrive\20.124.0621.0006\FileCoAuth.exe
   1  C:\Users\pablo\AppData\Local\Microsoft\OneDrive\OneDrive.exe
   2  C:\Users\pablo\AppData\Roaming\Zoom\bin\Zoom.exe
   1  C:\Users\pablo\Downloads\HiJackThis.exe
   1  C:\Windows\ImmersiveControlPanel\SystemSettings.exe
   1  C:\Windows\SysWOW64\dllhost.exe
   1  C:\Windows\System32\ApplicationFrameHost.exe
   1  C:\Windows\System32\DriverStore\FileRepository\c0334730.inf_amd64_8c38871372c5f622\B334632\atieclxx.exe
   1  C:\Windows\System32\DriverStore\FileRepository\c0334730.inf_amd64_8c38871372c5f622\B334632\atiesrxx.exe
   7  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchFilterHost.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SearchProtocolHost.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SecurityHealthSystray.exe
   1  C:\Windows\System32\SettingSyncHost.exe
   1  C:\Windows\System32\SgrmBroker.exe
   1  C:\Windows\System32\Taskmgr.exe
   1  C:\Windows\System32\audiodg.exe
   1  C:\Windows\System32\cmd.exe
   2  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   3  C:\Windows\System32\dllhost.exe
   1  C:\Windows\System32\drivers\AdminService.exe
   1  C:\Windows\System32\drivers\QcomWlanSrvx64.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\msdtc.exe
   1  C:\Windows\System32\notepad.exe
   1  C:\Windows\System32\oobe\UserOOBEBroker.exe
   1  C:\Windows\System32\rundll32.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  77  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wbem\unsecapp.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe
   1  C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
   2  C:\Windows\explorer.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = http://dell17win10.msn.com/?pc=DCTE
O2 - HKLM\..\BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\84.0.522.59\BHO\ie_to_edge_bho_64.dll
O2 - HKLM\..\BHO: McAfee WebAdvisor - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll
O2-32 - HKLM\..\BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\84.0.522.59\BHO\ie_to_edge_bho.dll
O2-32 - HKLM\..\BHO: McAfee WebAdvisor - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
O4 - HKCU\..\Run: [OneDrive] = C:\Users\pablo\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background (Microsoft)
O4 - HKCU\..\StartupApproved\Run: [CCleaner Smart Cleaning] = C:\Program Files\CCleaner\CCleaner64.exe /MONITOR (2020/07/14)
O4 - HKLM\..\Run: [RTHDVCPL] = C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s
O4 - HKLM\..\Run: [RtHDVBg_PushButton] = C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /IM
O4 - HKLM\..\Run: [WavesSvc] = C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe -Jack
O4 - HKLM\..\Run: [egui] = C:\Program Files\ESET\ESET Security\ecmds.exe /run /hide /proxy
O4 - HKLM\..\StartupApproved\Run32: [AppManHelper] = C:\Program Files (x86)\Avid\Application Manager\AvidAppManHelper.exe (2020/07/08)
O4 - HKLM\..\StartupApproved\Run: [DellMobileConnectWelcome] = C:\Program Files\Dell\DellMobileConnectDrivers\DellMobileConnectWelcome.exe (2020/07/22)
O4 - HKLM\..\StartupApproved\StartupFolder: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avid Application Manager.lnk    ->    C:\WINDOWS\Installer\{A59C0B17-6673-46E6-9E00-BB25E755A299}\NewShortcut1_E1E0FF1FC1474601A40EFEF248F11D43.exe --trayonly (2020/08/06)
O9 - Button: HKLM\..\{48A61126-9A19-4C50-A214-FF08CB94995C}: McAfee WebAdvisor - C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll
O9 - Tools menu item: HKLM\..\{48A61126-9A19-4C50-A214-FF08CB94995C}: McAfee WebAdvisor - C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll
O9-32 - Button: HKLM\..\{48A61126-9A19-4C50-A214-FF08CB94995C}: McAfee WebAdvisor - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
O9-32 - Tools menu item: HKLM\..\{48A61126-9A19-4C50-A214-FF08CB94995C}: McAfee WebAdvisor - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
O17 - DHCP DNS 1: 192.168.1.1
O21 - HKLM\..\ShellIconOverlayIdentifiers\###MegaShellExtPending: (no name) - {056D528D-CE28-4194-9BA3-BA2E9197FF8C} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\###MegaShellExtSynced: (no name) - {05B38830-F4E9-4329-978B-1DD28605D202} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\###MegaShellExtSyncing: (no name) - {0596C850-7BDD-4C9D-AFDF-873BE6890637} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\###MegaShellExtPending: (no name) - {056D528D-CE28-4194-9BA3-BA2E9197FF8C} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\###MegaShellExtSynced: (no name) - {05B38830-F4E9-4329-978B-1DD28605D202} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\###MegaShellExtSyncing: (no name) - {0596C850-7BDD-4C9D-AFDF-873BE6890637} - (no file)
O22 - Task: (disabled) (update) \Microsoft\Windows\UpdateOrchestrator\Reboot_AC - C:\WINDOWS\system32\MusNotification.exe /RunOnAC RebootDialog (Microsoft)
O22 - Task: (disabled) (update) \Microsoft\Windows\UpdateOrchestrator\Reboot_Battery - C:\WINDOWS\system32\MusNotification.exe /RunOnBattery RebootDialog (Microsoft)
O22 - Task: (telemetry) SmartByte Telemetry - C:\Program Files\Rivet Networks\SmartByte\SmartByteTelemetry.exe
O22 - Task: (telemetry) \Microsoft\Office\OfficeTelemetryAgentFallBack2016 - C:\Program Files\Microsoft Office\root\Office16\msoia.exe scan upload mininterval:2880 (Microsoft)
O22 - Task: (telemetry) \Microsoft\Office\OfficeTelemetryAgentLogOn2016 - C:\Program Files\Microsoft Office\root\Office16\msoia.exe scan upload (Microsoft)
O22 - Task: (update) \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker - C:\WINDOWS\system32\MusNotification.exe (Microsoft)
O22 - Task: CCleaner Update - C:\Program Files\CCleaner\CCUpdate.exe
O22 - Task: CCleanerSkipUAC - C:\Program Files\CCleaner\CCleaner.exe $(Arg0)
O22 - Task: Dell SupportAssistAgent AutoUpdate - C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistInstaller.exe AutoUpdate
O22 - Task: Driver Booster Scheduler - C:\Program Files (x86)\IObit\Driver Booster\7.5.0\Scheduler.exe /scheduler
O22 - Task: Driver Booster SkipUAC (pablo) - C:\Program Files (x86)\IObit\Driver Booster\7.5.0\DriverBooster.exe /skipuac
O22 - Task: Driver Booster Update - C:\Program Files (x86)\IObit\Driver Booster\7.5.0\AutoUpdate.exe /auto
O22 - Task: GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
O22 - Task: GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
O22 - Task: StartCN - C:\Program Files\AMD\CNext\CNext\cncmd.exe startwithdelay
O22 - Task: StartDVR - C:\Program Files\AMD\CNext\CNext\dvrcmd.exe
O23 - Service R2: AMD External Events Utility - C:\WINDOWS\System32\DriverStore\FileRepository\c0334730.inf_amd64_8c38871372c5f622\B334632\atiesrxx.exe
O23 - Service R2: AtherosSvc - C:\WINDOWS\System32\drivers\AdminService.exe
O23 - Service R2: Dell Client Management Service - (DellClientManagementService) - C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
O23 - Service R2: Dell Data Vault Collector - (DDVDataCollector) - C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
O23 - Service R2: Dell Data Vault Processor - (DDVRulesProcessor) - C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
O23 - Service R2: Dell Data Vault Service API - (DDVCollectorSvcApi) - C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
O23 - Service R2: Dell Digital Delivery Services - C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe
O23 - Service R2: Dell Hardware Support - C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7193.518\DSAPI.exe
O23 - Service R2: Dell SupportAssist - (SupportAssistAgent) - C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
O23 - Service R2: Dell SupportAssist Remediation - C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe
O23 - Service R2: ESET Service - (ekrn) - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service R2: McAfee WebAdvisor - C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe
O23 - Service R2: Qualcomm Atheros WLAN Driver Service - (QcomWlanSrv) - C:\WINDOWS\System32\drivers\QcomWlanSrvx64.exe
O23 - Service R2: Realtek Audio Service - (RtkAudioService) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service R2: Rivet AP Selector Service - (RAPSService) - C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe
O23 - Service R2: SmartByte Network Service - (SmartByte Network Service x64) - C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe
O23 - Service R2: Waves Audio Services - (WavesSysSvc) - C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
O23 - Service R3: ESET Firewall Helper - (ekrnEpfw) - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service S2: Google Update Servicio (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S3: Dell Command | Power Manager Notify - (dcpm-notify) - C:\Program Files\Dell\CommandPowerManager\NotifyService.exe
O23 - Service S3: Google Chrome Elevation Service (GoogleChromeElevationService) - (GoogleChromeElevationService) - C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.125\elevation_service.exe
O23 - Service S3: Google Update Servicio (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc
O23 - Service S3: Malwarebytes Service - (MBAMService) - C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
O23 - Service S3: Office 64 Source Engine - (ose64) - c:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
O23 - Service S3: Rivet Dynamic Bandwidth Management - (RNDBWM) - C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe
O25 - WMI Event: DellCommandPowerManagerAlertEventConsumer - DellCommandPowerManagerAlertEventFilter - Event="BIOSEvent", Const EVENT_USER_MESSAGE = &H12¶ Function ZeroPaddedHex(number, padding)¶ ZeroPaddedHex = ""¶ If padding > 0 Then¶ For i = padding-1 To 0 Step -1¶ If number < 16^i Then¶ ZeroPaddedHex = ZeroPaddedHex & "0"¶ Else¶ ZeroPaddedHex = ZeroPaddedHex & Hex(number)¶ Exit For¶ End If¶ Next¶ End If¶ End Functi(1416 bytes)
O25 - WMI Event: DellCommandPowerManagerPolicyChangeEventConsumer - DellCommandPowerManagerPolicyChangeEventFilter - Event="RegistryKeyChangeEvent WHERE Hive = 'HKEY_LOCAL_MACHINE' AND KeyPath = 'SOFTWARE\\Policies\\Dell\\CommandPowerManager' ", Set shell = CreateObject("WScript.Shell")¶ On Error Resume Next¶ installpath = shell.RegRead("HKEY_LOCAL_MACHINE\SOFTWARE\Dell\CommandPowerManager\InstallPath")¶ If Err.Number <> 0 Then¶ On Error Goto 0¶ progfiles = shell.ExpandEnvironmentStrings("%ProgramFiles%")¶ shell.Run  """" & progfiles & "\De(634 bytes)


--
End of file - Time spent: 13,5 sec. - 29822 bytes, CRC32: FFFFFFFF. Sign: 뎇셙

Muchisimas gracias!!

JavierHF · 19 Agosto, 2020 15:15

Hola @Pablo_Kiteber y Bienvenido al Foro…!!

Nos puedes poner el informe de Malwarebytes para que podamos valorarlo adecuadamente.

Y luego podamos darte nuevas indicaciones.

Saludos.

Pablo_Kiteber · 19 Agosto, 2020 15:35

@JavierHF Muchisimas gracis por tu respuesta. Aqui va el reporte de Malwarebytes:

Malwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 19/8/20
Hora del análisis: 12:31
Archivo de registro: 0254278c-e231-11ea-a1db-3c2c30ce690c.json

-Información del software-
Versión: 4.1.2.73
Versión de los componentes: 1.0.1003
Versión del paquete de actualización: 1.0.28723
Licencia: Gratis

-Información del sistema-
SO: Windows 10 (Build 18362.1016)
CPU: x64
Sistema de archivos: NTFS
Usuario: DESKTOP-LOL8Q64\pablo

-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 278157
Amenazas detectadas: 23
Amenazas en cuarentena: 0
Tiempo transcurrido: 1 min, 20 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 0
(No hay elementos maliciosos detectados)

Valor del registro: 0
(No hay elementos maliciosos detectados)

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 7
PUP.Optional.Babylon, C:\USERS\PABLO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, Sin acciones por parte del usuario, 398, 455059, , , , , , 
PUP.Optional.Spigot, C:\USERS\PABLO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, Sin acciones por parte del usuario, 151, 454814, , , , , , 
PUP.Optional.SweetIM, C:\USERS\PABLO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, Sin acciones por parte del usuario, 452, 455282, , , , , , 
PUP.Optional.SweetIM, C:\USERS\PABLO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, Sin acciones por parte del usuario, 452, 455282, , , , , , 
Adware.Elex.ShrtCln, C:\USERS\PABLO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, Sin acciones por parte del usuario, 297, 454693, , , , , , 
Adware.Elex.ShrtCln, C:\USERS\PABLO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, Sin acciones por parte del usuario, 297, 454711, , , , , , 
Adware.Elex.ShrtCln, C:\USERS\PABLO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, Sin acciones por parte del usuario, 297, 454721, , , , , , 

Archivo: 16
PUP.Optional.Babylon, C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000005.ldb, Sin acciones por parte del usuario, 398, 455059, , , , , 842452EA249F636B089282B252B773BE, 4091701ABF9C2F12C9728D35CA33671FF9665DBFEC805D42C5C9F75C5C13C714
PUP.Optional.Babylon, C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000038.ldb, Sin acciones por parte del usuario, 398, 455059, , , , , 7C2DC3BB976BEB2FB02D439022A3EE91, D0F95259BE4B6780E4DC50C43B9B87854D0BA83552BAB33E6B4994277126B40E
PUP.Optional.Babylon, C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000040.log, Sin acciones por parte del usuario, 398, 455059, , , , , 146C8A12636AE4D4051E4F7EB0229D3A, F068DE59C16DB887D42465D3D59C0A4322F3607705977CF939A64FDCE4B774A8
PUP.Optional.Babylon, C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000041.ldb, Sin acciones por parte del usuario, 398, 455059, , , , , 1BE20BBF2B2ABC510EE4380F601DCD2A, B9221F3D7231D9C26898120E7EB4460AC6BB8B7F82FF7E937A35DC14BA6FFA01
PUP.Optional.Babylon, C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\CURRENT, Sin acciones por parte del usuario, 398, 455059, , , , , 46295CAC801E5D4857D09837238A6394, 0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
PUP.Optional.Babylon, C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOCK, Sin acciones por parte del usuario, 398, 455059, , , , , , 
PUP.Optional.Babylon, C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG, Sin acciones por parte del usuario, 398, 455059, , , , , D8F160B44937DF2F6A84FFB172136C60, 4788885F3A847F43C8F84CD774C792A2FD61DF237956E2A61CEBEE43147FEEF7
PUP.Optional.Babylon, C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old, Sin acciones por parte del usuario, 398, 455059, , , , , 0326DF5E7CF70ED66265EF52ED4D28F0, 3CEF1D173A0B924D37CCC585A533CDB02188304AB6A4475BB05D1724EAFD314F
PUP.Optional.Babylon, C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\MANIFEST-000001, Sin acciones por parte del usuario, 398, 455059, , , , , 19B3B2AFD4EF32298C4C59D8C8A03BF7, D058FB72067EF8E41121CDC9953A473E4D1A004633715A1626D65BCFC0F9360F
PUP.Optional.Babylon, C:\USERS\PABLO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sin acciones por parte del usuario, 398, 455059, 1.0.28723, , ame, , 338B22D19425A5756600D727B62D68DD, 760E3E18BCCA31118CC065CABA50375A3B2B5737DDD178F9DB18F3CD378FFA1E
PUP.Optional.Spigot, C:\USERS\PABLO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sin acciones por parte del usuario, 151, 454814, 1.0.28723, , ame, , 338B22D19425A5756600D727B62D68DD, 760E3E18BCCA31118CC065CABA50375A3B2B5737DDD178F9DB18F3CD378FFA1E
PUP.Optional.SweetIM, C:\USERS\PABLO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sin acciones por parte del usuario, 452, 455282, 1.0.28723, , ame, , 338B22D19425A5756600D727B62D68DD, 760E3E18BCCA31118CC065CABA50375A3B2B5737DDD178F9DB18F3CD378FFA1E
PUP.Optional.SweetIM, C:\USERS\PABLO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sin acciones por parte del usuario, 452, 455282, 1.0.28723, , ame, , 338B22D19425A5756600D727B62D68DD, 760E3E18BCCA31118CC065CABA50375A3B2B5737DDD178F9DB18F3CD378FFA1E
Adware.Elex.ShrtCln, C:\USERS\PABLO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sin acciones por parte del usuario, 297, 454693, 1.0.28723, , ame, , 338B22D19425A5756600D727B62D68DD, 760E3E18BCCA31118CC065CABA50375A3B2B5737DDD178F9DB18F3CD378FFA1E
Adware.Elex.ShrtCln, C:\USERS\PABLO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sin acciones por parte del usuario, 297, 454711, 1.0.28723, , ame, , 338B22D19425A5756600D727B62D68DD, 760E3E18BCCA31118CC065CABA50375A3B2B5737DDD178F9DB18F3CD378FFA1E
Adware.Elex.ShrtCln, C:\USERS\PABLO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sin acciones por parte del usuario, 297, 454721, 1.0.28723, , ame, , 338B22D19425A5756600D727B62D68DD, 760E3E18BCCA31118CC065CABA50375A3B2B5737DDD178F9DB18F3CD378FFA1E

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end)

JavierHF · 19 Agosto, 2020 15:53

Hola.

Una primera cuestión, por favor, NO hace falta que pongas el [Justifiy] en cada linea de tus respuestas.

JavierHF · 19 Agosto, 2020 15:56

Bien… pues visto las infecciones que tenias vamos a realizar una verificación y limpieza completa de tu equipo.

Para hacerlo sigue estos pasos(aunque alguno ya lo hubieras realizado), en el orden indicado y leyendo todo lo explicado.

Desactiva temporalmente el Antivirus [Cómo deshabilitar temporalmente su Antivirus , mientras estemos realizando TODOS los pasos.

Vamos a descargar en TU ESCRITORIO(y NO en otro lugar ) todas las herramientas que vamos a utilizar en este procedimiento (pero no las ejecutes todavía) :

CCleaner + Manual.
Malwarebytes’ Anti-Malware + Manual. revisa en detalle el manual, para que sepas usarlo y configurarlo correctamente.
AdwCleaner + Manual.
Junkware Removal Tool.
Farbar Recovery Scan Tool. seleccionando la versión adecuada para la arquitectura(32 o 64bits) de tu equipo. Como saber si Mi Windows es de 32 o 64 Bits ?.

Ejecutas las herramientas de una en una y en el orden indicado :

CCleaner.-

Instalas y Ejecutas CCleaner siguiendo los pasos indicados en el manual.
Úsalo primero en su opción de Limpiador para borrar cookies, temporales de Internet y todos los archivos que te muestre como obsoletos.
Después usa su opción de Registro para limpiar todo el registro de Windows(haciendo copia de seguridad).

Malwarebytes.-

Instalas y Ejecutas MBAM siguiendo los pasos indicados en el manual.
Realiza un Análisis Personalizado.
Seleccionando TODOS a Cuarentena para enviarlo a la cuarentena y Reinicias el sistema.
En el apartado del programa Historial de detecciones encontrarás el informe de MBAM, que debes copiar y pegar en tu próxima respuesta, para poder analizarlo.

AdwCleaner.-

Ejecuta Adwcleaner.exe.
Pulsamos en el botón Analizar ahora, y espera a que se realice el proceso, inmediatamente pulsa siempre sobre el botón Iniciar Reparación.
Espera a que se complete y sigue las instrucciones, si te pidiera Reiniciar el sistema Aceptas.
El log/informe lo encontramos en la pestaña “Informes”, volviendo a abrir el programa si fuese necesario, para poder copiarlo y pegarlo en tu próxima respuesta.
El informe también se puede encontrar en C:\AdwCleaner\Logs\AdwCleaner[C00].txt

Junkware Removal Tool.-

Ejecuta JRT.exe.
Y pulsar cualquier tecla para continuar, esperar pacientemente a que termine el proceso.
Si en algún momento te pide Reiniciar hazlo.
Al finalizar, un registro/informe (JRT.txt) se guardara en el escritorio y se abrirá automáticamente.
Copia y pega el contenido de JRT.txt en tu próxima respuesta.

Farbar Recovery Scan Tool.-

Ejecuta FRST.exe.
En el mensaje de la ventana del Disclaimer/Responsabilidad, pulsamos Sí/Yes
En la ventana principal pulsamos en el botón Analizar/Scan y esperamos a que concluya el proceso.
Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.

Poner los informes en tu próxima respuesta de :

Malwarebytes, AdwCleaner, JRT, FRST + Addition.txt, y en ese orden.

Debes copiarlos y pegarlos con todo su contenido y usaras varios mensajes si recibes un mensaje de error indicando que es muy largo(más de 64.000 caracteres aprox.).

Y nos cuentas como funciona tu equipo en relación al problema planteado.

Saludos.

Pablo_Kiteber · 20 Agosto, 2020 00:24

Muchas, muchas gracias, por tu respuesta, voy a hacer todos estos pasos el fin de semana, luego te informo!!

JavierHF · 20 Agosto, 2020 14:34

Perfecto, por aquí esperamos los informes.

Pablo_Kiteber · 20 Agosto, 2020 16:29

Ahi van los informes, espero que esten bien colocados, si no pido disculpas


Malwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 17/8/20
Hora del análisis: 9:07
Archivo de registro: 3ec57cda-e082-11ea-ab7f-3c2c30ce690c.json

-Información del software-
Versión: 4.1.2.73
Versión de los componentes: 1.0.1003
Versión del paquete de actualización: 1.0.28613
Licencia: Gratis

-Información del sistema-
SO: Windows 10 (Build 18362.1016)
CPU: x64
Sistema de archivos: NTFS
Usuario: DESKTOP-LOL8Q64\pablo

-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 277789
Amenazas detectadas: 25
Amenazas en cuarentena: 25
Tiempo transcurrido: 1 min, 18 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 0
(No hay elementos maliciosos detectados)

Valor del registro: 0
(No hay elementos maliciosos detectados)

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 7
PUP.Optional.SweetIM, C:\USERS\PABLO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, En cuarentena, 452, 455282, , , , , , 
Adware.Elex.ShrtCln, C:\USERS\PABLO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, En cuarentena, 297, 454693, , , , , , 
Adware.Elex.ShrtCln, C:\USERS\PABLO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, En cuarentena, 297, 454711, , , , , , 
Adware.Elex.ShrtCln, C:\USERS\PABLO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, En cuarentena, 297, 454721, , , , , , 
PUP.Optional.Babylon, C:\USERS\PABLO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, En cuarentena, 398, 455059, , , , , , 
PUP.Optional.Spigot, C:\USERS\PABLO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, En cuarentena, 151, 454814, , , , , , 
PUP.Optional.SweetIM, C:\USERS\PABLO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, En cuarentena, 452, 455282, , , , , , 

Archivo: 18
PUP.Optional.SweetIM, C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000005.ldb, En cuarentena, 452, 455282, , , , , 03AD3BD3D88D9200790EE0A8CEC3EDF9, 7507D3D167BB0139667B5095A1541DC5717AFC2391832BDAB9FDB6644D4D74BC
PUP.Optional.SweetIM, C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000019.ldb, En cuarentena, 452, 455282, , , , , 7F7CC3DA2E3E66037188611E8502E52B, 72FBC48226F8B4D4440892893A2A134DBD29F4CCFFB9C34222848B1571CD55F4
PUP.Optional.SweetIM, C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000022.ldb, En cuarentena, 452, 455282, , , , , 019C6E3B463E81D209B4ACA007890FDA, 9729434173CA672C2C34910DDDCDAE539A697AE9417A825DDCB698740DD59455
PUP.Optional.SweetIM, C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000024.ldb, En cuarentena, 452, 455282, , , , , 8A8A889E45C5BC5A5FB2FDDA1957DE2D, 7A1B07FACDE622F8E957A2B0940D6A72411841E24C1C249885D9514DAA674CB6
PUP.Optional.SweetIM, C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000027.log, En cuarentena, 452, 455282, , , , , EAB3399AD8A3755F2A2355C8AA1AF1F0, 33213F3D90785290709EDF3A7B6E40A80162B405269DE0039D5628B48427AA9B
PUP.Optional.SweetIM, C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000028.ldb, En cuarentena, 452, 455282, , , , , 735AA87B1F272704E97E166E437AE043, 3EA056DD9C5EDED2E77C6768A7054C3ED9399E6F9B4FBDCD9F707AD7726826FD
PUP.Optional.SweetIM, C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\CURRENT, En cuarentena, 452, 455282, , , , , 2091E7AF40368B8A9183A08A62EFC8F9, 368B5CDAB2FF128767296BB4F19BFCD39BAA627EAAF43CAFBA54FC223FEEC47F
PUP.Optional.SweetIM, C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOCK, En cuarentena, 452, 455282, , , , , , 
PUP.Optional.SweetIM, C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG, En cuarentena, 452, 455282, , , , , C3C640BF7C2D455653C61672BDB244E9, 14607CEAC7D9EC745A57B31DF16ECB8B0C6EF8FE65A8433F4E6C95749ED889F6
PUP.Optional.SweetIM, C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old, En cuarentena, 452, 455282, , , , , 54FAFDF0799A160F904A336E4F7862B9, 080ACF2A0D0B92EC02CBA1A72A44364C5BF3B3126E4428DCD46E20989A1CA631
PUP.Optional.SweetIM, C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\MANIFEST-000023, En cuarentena, 452, 455282, , , , , FC2CF5E2CE23996BB40ADEB298344985, 2C3F178C2A8E8A5F5D2B017F39E048105B3DEF4260BF30E6AF550B9739E71A3F
PUP.Optional.SweetIM, C:\USERS\PABLO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sustituido, 452, 455282, 1.0.28613, , ame, , F1A42922BFBDAA8F8DBAD5870DA9F7E5, E5BB24BAD1E47A60342BB862B1801175680D1579449A35451977719120263104
Adware.Elex.ShrtCln, C:\USERS\PABLO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sustituido, 297, 454693, 1.0.28613, , ame, , F1A42922BFBDAA8F8DBAD5870DA9F7E5, E5BB24BAD1E47A60342BB862B1801175680D1579449A35451977719120263104
Adware.Elex.ShrtCln, C:\USERS\PABLO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sustituido, 297, 454711, 1.0.28613, , ame, , F1A42922BFBDAA8F8DBAD5870DA9F7E5, E5BB24BAD1E47A60342BB862B1801175680D1579449A35451977719120263104
Adware.Elex.ShrtCln, C:\USERS\PABLO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sustituido, 297, 454721, 1.0.28613, , ame, , F1A42922BFBDAA8F8DBAD5870DA9F7E5, E5BB24BAD1E47A60342BB862B1801175680D1579449A35451977719120263104
PUP.Optional.Babylon, C:\USERS\PABLO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sustituido, 398, 455059, 1.0.28613, , ame, , F1A42922BFBDAA8F8DBAD5870DA9F7E5, E5BB24BAD1E47A60342BB862B1801175680D1579449A35451977719120263104
PUP.Optional.Spigot, C:\USERS\PABLO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sustituido, 151, 454814, 1.0.28613, , ame, , F1A42922BFBDAA8F8DBAD5870DA9F7E5, E5BB24BAD1E47A60342BB862B1801175680D1579449A35451977719120263104
PUP.Optional.SweetIM, C:\USERS\PABLO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sustituido, 452, 455282, 1.0.28613, , ame, , F1A42922BFBDAA8F8DBAD5870DA9F7E5, E5BB24BAD1E47A60342BB862B1801175680D1579449A35451977719120263104

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end)

# -------------------------------
# Malwarebytes AdwCleaner 8.0.7.0
# -------------------------------
# Build:    07-22-2020
# Database: 2020-07-20.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start:    08-20-2020
# Duration: 00:00:20
# OS:       Windows 10 Home
# Scanned:  31837
# Detected: 41


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

PUP.Optional.AdvancedSystemCare C:\ProgramData\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare C:\Users\pablo\AppData\Roaming\IObit\Advanced SystemCare

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

PUP.Optional.Legacy             C:\Windows\System32\Tasks\DRIVER BOOSTER SCHEDULER

***** [ Registry ] *****

PUP.Optional.Legacy             HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A255D2BB-F350-4E4F-B0D4-142D77535EF4} 
PUP.Optional.Legacy             HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster Scheduler
PUP.Optional.Legacy             HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtPending
PUP.Optional.Legacy             HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtSynced
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtPending
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtSynced

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

PUP.Optional.Babylon            Search the web (Babylon)
PUP.Optional.Babylon            Search the web (Babylon)
PUP.Optional.Legacy             SweetIM Search
PUP.Optional.Legacy             SweetIM Search
PUP.Optional.Legacy             istartsurf
PUP.Optional.Legacy             mystartsearch
PUP.Optional.Legacy             mystartsearch
PUP.Optional.Legacy             mystartsearch
PUP.Optional.Legacy             mystartsearch
PUP.Optional.Legacy             oursurfing

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

Preinstalled.DellCommand|PowerManager   Folder   C:\Program Files\DELL\COMMANDPOWERMANAGER 
Preinstalled.DellCommand|PowerManager   Folder   C:\ProgramData\DELL\COMMANDPOWERMANAGER 
Preinstalled.DellCommand|PowerManager   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{18469ED8-8C36-4CF7-BD43-0FC9B1931AF8} 
Preinstalled.DellSupportAssistAgent   Folder   C:\Program Files\DELL\SAREMEDIATION\AGENT 
Preinstalled.DellSupportAssistAgent   Folder   C:\Program Files\DELL\SAREMEDIATION\AUDIT 
Preinstalled.DellSupportAssistAgent   Folder   C:\Program Files\DELL\SAREMEDIATION\PLUGIN 
Preinstalled.DellSupportAssistAgent   Folder   C:\Program Files\DELL\SUPPORTASSISTAGENT 
Preinstalled.DellSupportAssistAgent   Folder   C:\ProgramData\DELL\SAREMEDIATION\AGENT 
Preinstalled.DellSupportAssistAgent   Folder   C:\ProgramData\DELL\SAREMEDIATION\PLUGIN 
Preinstalled.DellSupportAssistAgent   Folder   C:\ProgramData\SUPPORTASSIST\CLIENT\TECHNICIANTOOLKIT 
Preinstalled.DellSupportAssistAgent   Registry   HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4C15672C-92E0-47C2-9D6B-BCDFE81B9142}  
Preinstalled.DellSupportAssistAgent   Registry   HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4C15672C-92E0-47C2-9D6B-BCDFE81B9142}  
Preinstalled.DellSupportAssistAgent   Registry   HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Dell SupportAssistAgent AutoUpdate 
Preinstalled.DellSupportAssistAgent   Task   C:\Windows\System32\Tasks\DELL SUPPORTASSISTAGENT AUTOUPDATE 
Preinstalled.DellUpdateforWindows10   Folder   C:\Program Files (x86)\DELL\UPDATESERVICE 
Preinstalled.DellUpdateforWindows10   Folder   C:\Program Files\DELL\UPDATE 
Preinstalled.DellUpdateforWindows10   Folder   C:\ProgramData\DELL\UPDATESERVICE 
Preinstalled.DellUpdateforWindows10   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{70E9F8CC-A23E-4C25-B292-C86C1821587C} 
Preinstalled.SmartByte   Folder   C:\Program Files\RIVET NETWORKS 
Preinstalled.SmartByte   Registry   HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7FC96B86-3C5E-4159-83B3-DF0E8DB853F9}  
Preinstalled.SmartByte   Registry   HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SmartByte Telemetry 
Preinstalled.SmartByte   Task   C:\Windows\System32\Tasks\SMARTBYTE TELEMETRY 



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########

# -------------------------------
# Malwarebytes AdwCleaner 8.0.7.0
# -------------------------------
# Build:    07-22-2020
# Database: 2020-07-20.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    08-20-2020
# Duration: 00:00:04
# OS:       Windows 10 Home
# Cleaned:  19
# Failed:   0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted       C:\ProgramData\IObit\Advanced SystemCare
Deleted       C:\Users\pablo\AppData\Roaming\IObit\Advanced SystemCare

***** [ Files ] *****

No malicious files cleaned.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Home x64 
Ran by pablo (Administrator) on jue. 20/08/2020 at 13:04:47,01
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 3 

Successfully deleted: C:\ProgramData\productdata (Folder) 
Successfully deleted: C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (pablo) (Task)
Successfully deleted: C:\WINDOWS\system32\Tasks\Driver Booster Update (Task)



Registry: 2 

Successfully deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on jue. 20/08/2020 at 13:07:24,10
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Pablo_Kiteber · 20 Agosto, 2020 16:36


Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19-08-2020
Ran by pablo (administrator) on DESKTOP-LOL8Q64 (Dell Inc. Inspiron 5575) (20-08-2020 13:09:28)
Running from C:\Users\pablo\OneDrive\Escritorio
Loaded Profiles: pablo
Platform: Windows 10 Home Version 1909 18363.1016 (X64) Language: Inglés (Estados Unidos)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0334730.inf_amd64_8c38871372c5f622\B334632\atiesrxx.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
(Dell Inc -> Dell INC.) C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe
(Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\atiw.exe
(Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(Dell Inc. -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\uihost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7193.518\DSAPI.exe
(Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Rivet Networks LLC -> DELL) C:\Program Files\Rivet Networks\SmartByte\SmartByteTelemetry.exe
(Rivet Networks LLC -> Rivet Networks LLC) C:\Program Files\Rivet Networks\SmartByte\RAPS.exe
(Rivet Networks LLC -> Rivet Networks) C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe
(Rivet Networks LLC -> Rivet Networks, LLC.) C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe
(Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9269088 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506144 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [DellMobileConnectWelcome] => C:\Program Files\Dell\DellMobileConnectDrivers\DellMobileConnectWelcome.exe [345848 2019-02-13] (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [185648 2020-07-23] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [1220416 2018-03-06] (Waves Inc -> Waves Audio Ltd.)
HKLM-x32\...\Run: [AppManHelper] => C:\Program Files (x86)\Avid\Application Manager\AvidAppManHelper.exe [617984 2015-06-09] (Avid Technology, Inc.) [File not signed]
HKU\S-1-5-21-3039257810-2054696879-4166507184-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [29262520 2020-07-09] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.125\Installer\chrmstp.exe [2020-08-11] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avid Application Manager.lnk [2020-07-07]
ShortcutTarget: Avid Application Manager.lnk -> C:\Windows\Installer\{A59C0B17-6673-46E6-9E00-BB25E755A299}\NewShortcut1_E1E0FF1FC1474601A40EFEF248F11D43.exe (Flexera Software LLC) [File not signed]

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {109687FC-A8FA-469E-B12C-B7A651EEE534} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [49032 2018-10-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {33D58D70-36F5-443F-B9D9-85B76FF01C81} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-07-09] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {383443B7-678A-45A3-B419-054A4EAFA457} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5725080 2020-08-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {40BE0231-ADA5-41EC-9704-1CC99CEAA47F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24910520 2020-07-09] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {4C15672C-92E0-47C2-9D6B-BCDFE81B9142} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistInstaller.exe [1045976 2020-07-06] (Dell Inc. -> Dell Inc.)
Task: {54E57647-9063-465B-A651-3BF166B95C5A} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23819120 2020-08-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {58774B9E-A4C3-4934-94D9-309BFC6C1DFF} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe [63880 2018-10-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {59259ADA-8311-4BE5-BA29-1A5F2D797605} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-06] (Google LLC -> Google LLC)
Task: {7FC96B86-3C5E-4159-83B3-DF0E8DB853F9} - System32\Tasks\SmartByte Telemetry => C:\Program Files\Rivet Networks\SmartByte\SmartByteTelemetry.exe [36440 2020-04-10] (Rivet Networks LLC -> DELL)
Task: {9E31AEB1-78A3-40D7-AD96-42EA247EFC29} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23819120 2020-08-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {A238F50B-DBC5-4877-B69A-BC6927CCD34C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5725080 2020-08-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {B270E118-5355-4C05-8BA4-7ADF1B333863} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [155488 2020-08-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {E2F7673F-71E1-43A6-A9DD-6A2D6BB459F4} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [155488 2020-08-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {F05AE856-51BE-4BA0-982C-D448DB7929FE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-06] (Google LLC -> Google LLC)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{02f36f5a-9f78-4d23-a95d-34a44c7f88c0}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{09c5dadf-3889-45ee-9480-aa769b8f86dd}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f816f55a-f4a9-4580-9ba7-545411a3405a}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{fd023bcc-d7a3-43df-b1fc-ebb63859c5ca}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3039257810-2054696879-4166507184-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3039257810-2054696879-4166507184-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell17win10.msn.com/?pc=DCTE
SearchScopes: HKU\S-1-5-21-3039257810-2054696879-4166507184-1001 -> DefaultScope {4E9E4BFD-AE8C-4395-A7D6-121CF8D12D67} URL = 
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2020-07-08] (Microsoft Corporation -> Microsoft Corporation)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2020-08-06] (McAfee, LLC -> McAfee, LLC)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-07-08] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2020-08-06] (McAfee, LLC -> McAfee, LLC)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2020-08-14] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-08-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-08-05] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-08-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-08-05] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-08-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-08-05] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-08-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-08-05] (Microsoft Corporation -> Microsoft Corporation)

Edge: 
======
Edge DefaultProfile: Default
Edge Profile: C:\Users\pablo\AppData\Local\Microsoft\Edge\User Data\Default [2020-08-20]

FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2020-08-06] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-07-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-07-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-07-08] (Microsoft Corporation -> Microsoft Corporation)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default [2020-08-20]
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Extension: (Presentaciones) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-07-06]
CHR Extension: (Documentos) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-07-06]
CHR Extension: (Google Drive) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-07-06]
CHR Extension: (ShowPassword) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbiclfnbhommljbjcoelobnnnibemabl [2020-07-06]
CHR Extension: (YouTube) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-07-06]
CHR Extension: (Adblock para Youtube™) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2020-07-06]
CHR Extension: (Hojas de cálculo) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-07-06]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2020-08-16]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-08-15]
CHR Extension: (AdBlock: el mejor bloqueador de anuncios) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-08-14]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-07-06]
CHR Extension: (Gmail) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-07-06]
CHR Extension: (Chrome Media Router) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-07-21]
CHR Profile: C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Profile 1 [2020-08-20]
CHR Extension: (Presentaciones) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-08-03]
CHR Extension: (Documentos) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2020-08-03]
CHR Extension: (Google Drive) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-08-03]
CHR Extension: (YouTube) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-08-03]
CHR Extension: (Hojas de cálculo) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-08-03]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2020-08-06]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-08-03]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-08-03]
CHR Extension: (Gmail) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-08-03]
CHR Extension: (Chrome Media Router) - C:\Users\pablo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-08-03]
CHR Profile: C:\Users\pablo\AppData\Local\Google\Chrome\User Data\System Profile [2020-08-20]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10566536 2020-08-05] (Microsoft Corporation -> Microsoft Corporation)
S3 dcpm-notify; C:\Program Files\Dell\CommandPowerManager\NotifyService.exe [313488 2020-01-05] (Dell Inc -> Dell Inc.)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [284720 2020-06-10] (Dell Inc -> Dell Technologies Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3455536 2020-06-10] (Dell Inc -> Dell Technologies Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [294448 2020-06-10] (Dell Inc -> Dell Technologies Inc.)
R2 Dell Digital Delivery Services; C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe [40656 2020-04-09] (Dell Inc -> )
R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7193.518\DSAPI.exe [965104 2020-07-22] (PC-Doctor, Inc. -> PC-Doctor, Inc.)
R2 Dell SupportAssist Remediation; C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe [17608 2020-07-03] (Dell Inc -> Dell INC.)
S3 Dell.CommandPowerManager.Service; C:\WINDOWS\system32\dllhost.exe /Processid:{B58A3AB8-2B6E-4366-AA17-42FFA5F87F88} [21304 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 Dell.CommandPowerManager.Service; C:\WINDOWS\system32\dllhost.exe /Processid:{B58A3AB8-2B6E-4366-AA17-42FFA5F87F88} [21304 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [37056 2020-07-29] (Dell Inc -> )
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2371760 2020-07-23] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2371760 2020-07-23] (ESET, spol. s r.o. -> ESET)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6970968 2020-07-07] (Malwarebytes Inc -> Malwarebytes)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [949960 2020-08-06] (McAfee, LLC -> McAfee, LLC)
R2 RAPSService; C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe [65096 2020-04-10] (Rivet Networks LLC -> Rivet Networks, LLC.)
S3 RNDBWM; C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe [65104 2020-04-10] (Rivet Networks LLC -> Rivet Networks, LLC.)
R2 SmartByte Network Service x64; C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe [2361952 2020-04-10] (Rivet Networks LLC -> Rivet Networks)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [33240 2020-07-06] (Dell Inc. -> Dell Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\NisSrv.exe [2496144 2020-07-31] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MsMpEng.exe [104192 2020-07-31] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [35208 2020-05-26] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.)
R3 DellRbtn; C:\WINDOWS\System32\drivers\DellRbtn.sys [22848 2017-10-13] (WDKTestCert Andy_Chen6,131219483243550933 -> OSR Open Systems Resources, Inc.)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [159528 2020-07-23] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15800 2020-07-23] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [195456 2020-07-23] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [116488 2020-07-23] (ESET, spol. s r.o. -> ESET)
S3 H2OFFT; C:\WINDOWS\System32\drivers\H2OFFT64.sys [77280 2017-10-03] (Insyde Software Corp. -> Insyde Software)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2020-07-06] (Martin Malik - REALiX -> REALiX(tm))
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [216056 2020-08-19] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-07-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-08-17] (Malwarebytes Inc -> Malwarebytes)
R3 SmbCoSvc; C:\WINDOWS\system32\DRIVERS\SmbCo10X64.sys [158552 2020-04-10] (Rivet Networks LLC -> Rivet Networks, LLC.)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45976 2020-07-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [408816 2020-07-31] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64224 2020-07-31] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz143; \??\C:\Users\pablo\AppData\Local\Temp\cpuz143\cpuz143_x64.sys [X] <==== ATTENTION

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-08-20 13:08 - 2020-08-20 13:09 - 000000000 ____D C:\FRST
2020-08-20 13:01 - 2020-08-20 13:02 - 000000000 ____D C:\AdwCleaner
2020-08-19 21:11 - 2020-08-19 21:11 - 000000000 _____ C:\WINDOWS\invcol.tmp
2020-08-19 12:31 - 2020-08-19 12:31 - 000216056 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-08-19 11:49 - 2020-08-19 11:54 - 700558310 _____ C:\Users\pablo\Downloads\GMT20200817-212338_Apreciaci-_gallery_1920x1080.mp4
2020-08-19 11:05 - 2020-08-19 11:49 - 147676531 _____ C:\Users\pablo\Downloads\GMT20200817-212338_Apreciaci-_gallery_1920x1080.mp4.crdownload
2020-08-18 15:03 - 2020-08-18 15:03 - 000083288 _____ (Zoom Video Communications, Inc.) C:\Users\pablo\Downloads\Zoom_cm_ds_mV68ZkJ9mUisbUiHZv9akcEiIz869j9ztXlI@KMLXzJKrqQxE3GVM_kcf98d1c4067944e5_.exe
2020-08-18 09:27 - 2020-08-18 09:27 - 013852672 _____ C:\Users\pablo\Downloads\clase ASI  moodif.ppt
2020-08-18 09:26 - 2020-08-18 09:26 - 000270848 _____ C:\Users\pablo\Downloads\infanto 2020.ppt
2020-08-17 21:47 - 2020-08-17 21:47 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3039257810-2054696879-4166507184-1001
2020-08-17 21:47 - 2020-08-17 21:47 - 000002369 _____ C:\Users\pablo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-08-17 20:11 - 2020-08-17 20:12 - 006875040 _____ (Stanislav Polshyn & Trend Micro Inc.) C:\Users\pablo\Downloads\HiJackThis.exe
2020-08-17 16:10 - 2020-08-17 16:10 - 000007683 _____ C:\Users\pablo\Downloads\rlm_aide_en.php
2020-08-17 09:07 - 2020-08-17 09:07 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-08-14 21:20 - 2020-08-14 21:20 - 003478024 _____ C:\Users\pablo\Downloads\GMT20200814-233524_Coral-Rafa.pkf
2020-08-14 14:30 - 2020-08-14 14:30 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2020-08-14 14:30 - 2020-08-10 10:38 - 000436536 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll
2020-08-14 14:30 - 2020-08-10 10:37 - 000905528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll
2020-08-14 14:27 - 2020-08-14 14:27 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-08-14 14:27 - 2020-08-14 14:27 - 019812352 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-08-14 14:27 - 2020-08-14 14:27 - 005013504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2020-08-14 14:27 - 2020-08-14 14:27 - 004129408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-08-14 14:27 - 2020-08-14 14:27 - 003637760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2020-08-14 14:27 - 2020-08-14 14:27 - 002950808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2020-08-14 14:27 - 2020-08-14 14:27 - 002588688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2020-08-14 14:27 - 2020-08-14 14:27 - 002422384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2020-08-14 14:27 - 2020-08-14 14:27 - 002259192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2020-08-14 14:27 - 2020-08-14 14:27 - 002138280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2020-08-14 14:27 - 2020-08-14 14:27 - 001870200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2020-08-14 14:27 - 2020-08-14 14:27 - 001836160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2020-08-14 14:27 - 2020-08-14 14:27 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-08-14 14:27 - 2020-08-14 14:27 - 001418832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2020-08-14 14:27 - 2020-08-14 14:27 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-08-14 14:27 - 2020-08-14 14:27 - 001012792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-08-14 14:27 - 2020-08-14 14:27 - 000941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2020-08-14 14:27 - 2020-08-14 14:27 - 000738064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2020-08-14 14:27 - 2020-08-14 14:27 - 000724480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2020-08-14 14:27 - 2020-08-14 14:27 - 000709120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2020-08-14 14:27 - 2020-08-14 14:27 - 000666280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2020-08-14 14:27 - 2020-08-14 14:27 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2020-08-14 14:27 - 2020-08-14 14:27 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2020-08-14 14:27 - 2020-08-14 14:27 - 000359496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL
2020-08-14 14:27 - 2020-08-14 14:27 - 000343408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL
2020-08-14 14:27 - 2020-08-14 14:27 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2020-08-14 14:27 - 2020-08-14 14:27 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrahc.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 025903104 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 022642688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 019852288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 018032128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 014820352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 009932088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 007915864 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 007758848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 007270912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 007270728 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 006526448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 006436864 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 006294528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 006074552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 005946368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 005904896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 005849872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 005767224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 005283776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 005111296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 005003824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 004859904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 004611072 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 004565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 003974376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 003822592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 003806208 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 003743056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 003727872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-08-14 14:26 - 2020-08-14 14:26 - 003516416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 003368616 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-08-14 14:26 - 2020-08-14 14:26 - 002799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-08-14 14:26 - 2020-08-14 14:26 - 002766952 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-08-14 14:26 - 2020-08-14 14:26 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-08-14 14:26 - 2020-08-14 14:26 - 002739200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directml.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 002737664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 002698048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2020-08-14 14:26 - 2020-08-14 14:26 - 002583496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 002471936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 002307584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 002260312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 002096128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 002085632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 002022400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 001756592 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-08-14 14:26 - 2020-08-14 14:26 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 001740800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 001672544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 001669344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 001665024 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 001660536 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 001654312 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 001564160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 001512848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 001482568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2020-08-14 14:26 - 2020-08-14 14:26 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 001420320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 001406464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 001397576 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 001393960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 001366144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-08-14 14:26 - 2020-08-14 14:26 - 001338368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 001282872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2020-08-14 14:26 - 2020-08-14 14:26 - 001274128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 001215488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 001197056 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 001182248 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 001123344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 001101312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 001015296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 001009664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 001008128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000995840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 000963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000917800 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000914432 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000897648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000894032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 000888352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000875520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000867840 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000823744 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 000822800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000775480 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 000718336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000716312 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000702976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000692224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000690536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000675040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 000675024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000673088 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000672256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000671040 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000661816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-08-14 14:26 - 2020-08-14 14:26 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000593480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000579584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000572200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000568128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000564488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-08-14 14:26 - 2020-08-14 14:26 - 000548352 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000535040 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000522688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-08-14 14:26 - 2020-08-14 14:26 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000467968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000463168 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000457016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2020-08-14 14:26 - 2020-08-14 14:26 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000431104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\DispBroker.Desktop.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000379704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000369304 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HrtfApo.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-08-14 14:26 - 2020-08-14 14:26 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapisrv.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000273744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapisrv.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000220984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000209208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 000199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Winlangdb.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000194048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatializerApo.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000186472 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47mrm.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\net1.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-08-14 14:26 - 2020-08-14 14:26 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtm.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000165176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtm.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000152416 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\net1.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 000141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Winlangdb.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000133256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47mrm.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000132408 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\globinputhost.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000124512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceUpdateAgent.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\globinputhost.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 000090936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpkinstall.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmRes.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguageProfileCallback.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguageProfileCallback.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afunix.sys
2020-08-14 14:26 - 2020-08-14 14:26 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\acwow64.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Drivers\afunix.sys
2020-08-14 14:26 - 2020-08-14 14:26 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbservicetrigger.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmplpxy.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtprio.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtprio.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
2020-08-14 14:26 - 2020-08-14 14:26 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-08-14 14:26 - 2020-08-14 14:26 - 000000357 _____ C:\WINDOWS\system32\DrtmAuthKeyDelegate_From_20190529_To_20200303.bin
2020-08-14 14:26 - 2020-08-14 14:26 - 000000357 _____ C:\WINDOWS\system32\DrtmAuth1KeyDelegate.bin
2020-08-14 14:26 - 2020-08-14 14:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-08-14 14:26 - 2020-08-14 14:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-08-14 14:26 - 2020-08-14 14:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-08-14 14:26 - 2020-08-14 14:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-08-14 14:26 - 2020-08-14 14:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-08-14 14:26 - 2020-08-14 14:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-08-14 14:26 - 2020-08-14 14:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-08-14 14:26 - 2020-08-14 14:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-08-14 14:26 - 2020-08-14 14:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-08-14 14:26 - 2020-08-14 14:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-08-14 14:26 - 2020-08-14 14:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-08-14 14:26 - 2020-08-14 14:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-08-14 14:25 - 2020-08-14 14:25 - 017792512 _____ (Microsoft Corporation)

Pablo_Kiteber · 20 Agosto, 2020 16:37

C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 007850784 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 007583272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 007297536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 004625184 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-08-14 14:25 - 2020-08-14 14:25 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin
2020-08-14 14:25 - 2020-08-14 14:25 - 004005376 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 003581240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-08-14 14:25 - 2020-08-14 14:25 - 003141632 _____ (Microsoft Corporation) C:\WINDOWS\system32\directml.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 002808832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 002717696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-08-14 14:25 - 2020-08-14 14:25 - 002552120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 002523136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 002289152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 002136064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 001182208 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-08-14 14:25 - 2020-08-14 14:25 - 001127424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 001072128 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 001059328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 001055232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 000937984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 000875424 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-08-14 14:25 - 2020-08-14 14:25 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\system32\HrtfApo.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-08-14 14:25 - 2020-08-14 14:25 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageOverlayServer.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2020-08-14 14:25 - 2020-08-14 14:25 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 000263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatializerApo.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 000201544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBAUDIO.sys
2020-08-14 14:25 - 2020-08-14 14:25 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-08-14 14:25 - 2020-08-14 14:25 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmRes.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe
2020-08-14 14:25 - 2020-08-14 14:25 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2020-08-14 14:25 - 2020-08-14 14:25 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-08-14 14:25 - 2020-08-14 14:25 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmplpxy.dll
2020-08-14 14:13 - 2020-07-18 00:07 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-08-14 14:13 - 2020-07-17 23:53 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-08-14 10:45 - 2020-08-14 10:45 - 000001119 _____ C:\ProgramData\Microsoft\Windows\Start 
Menu\Programs\Waves MaxxAudioPro.lnk
2020-08-14 10:45 - 2020-08-14 10:45 - 000000000 ____D C:\Program Files\Waves
2020-08-13 20:18 - 2020-08-14 15:57 - 000541800 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-08-13 17:06 - 2020-08-13 17:06 - 000047502 _____ C:\Users\pablo\Downloads\4.1-ES.pdf
2020-08-13 12:35 - 2020-08-13 12:35 - 001370164 _____ C:\Users\pablo\Downloads\Ave_Maria_des_Prez.pkf
2020-08-13 08:38 - 2020-08-13 08:38 - 001146448 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2020-08-13 08:38 - 2020-08-13 08:38 - 000438320 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdtee_api.dll
2020-08-13 08:38 - 2020-08-13 08:38 - 000350256 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdtee_api.dll
2020-08-13 08:38 - 2020-08-13 08:38 - 000146688 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\Drivers\amdpsp.sys
2020-08-13 08:37 - 2020-08-13 08:37 - 000085704 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\amd_sata.sys
2020-08-13 08:37 - 2020-08-13 08:37 - 000045832 _____ (Advanced Micro Devices, Inc) C:\WINDOWS\system32\Drivers\amdgpio2.sys
2020-08-13 08:37 - 2020-08-13 08:37 - 000043720 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\amd_xata.sys
2020-08-13 08:20 - 2020-08-13 08:20 - 000000000 ____D C:\WINDOWS\{11A89B9C-E4A8-479A-9C38-07489C2FC153}
2020-08-12 18:28 - 2020-08-12 18:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start 
Menu\Programs\MIDI-OX
2020-08-12 18:28 - 2020-08-12 18:28 - 000000000 ____D C:\Program Files (x86)\MIDIOX
2020-08-12 18:27 - 2020-08-12 18:27 - 000917504 _____ C:\Users\pablo\Downloads\midioxse.exe
2020-08-12 15:53 - 2020-08-12 15:53 - 000627764 _____ C:\Users\pablo\Downloads\Lasciatemi_morire_Monteverdi.pkf
2020-08-12 10:20 - 2020-08-12 10:20 - 020086828 _____ C:\Users\pablo\Downloads\Lasciatemi_morire_Monteverdi.wav
2020-08-11 20:50 - 2020-08-11 20:50 - 000299460 _____ C:\Users\pablo\Downloads\rudolf_steiner_como_superar_la_incertidumbre.pdf
2020-08-11 19:17 - 2020-08-11 19:17 - 000223815 _____ C:\Users\pablo\Downloads\carta queridos maestros   3.pdf
2020-08-11 18:01 - 2020-08-11 18:01 - 004197654 _____ C:\Users\pablo\Downloads\WhatsApp Audio 2020-08-10 at 20.59.51.mpeg
2020-08-11 09:14 - 2020-08-11 09:19 - 704357196 _____ C:\Users\pablo\Downloads\GMT20200810-211019_Apreciaci-_gallery_1920x1080.mp4
2020-08-10 16:08 - 2020-08-10 16:08 - 043843628 _____ C:\Users\pablo\Downloads\Ave_Maria_des_Prez.wav
2020-08-10 15:45 - 2020-08-10 16:08 - 000072961 _____ C:\Users\pablo\Downloads\Ave_Maria_des_Prez.mid
2020-08-10 08:50 - 2020-08-10 08:54 - 000000000 ____D C:\WINDOWS\system32\Tasks\MEGA
2020-08-10 08:47 - 2020-08-10 08:47 - 000000000 ____D C:\Users\pablo\AppData\Local\Mega Limited
2020-08-09 18:40 - 2020-08-12 10:20 - 000054251 _____ C:\Users\pablo\Downloads\Lasciatemi_morire_Monteverdi.mid
2020-08-09 18:00 - 2020-08-09 18:00 - 000000000 ____D C:\Users\pablo\OneDrive\Documents\Adobe
2020-08-09 17:56 - 2020-08-09 17:56 - 000001100 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Audition 2020.lnk
2020-08-09 17:56 - 2020-08-09 17:56 - 000000000 ____D C:\Program Files\Common Files\Adobe
2020-08-09 17:56 - 2020-08-09 17:56 - 000000000 ____D C:\Program Files\Adobe
2020-08-09 17:55 - 2020-08-09 17:59 - 000000000 ____D C:\Users\pablo\AppData\Local\Adobe
2020-08-09 17:55 - 2020-08-09 17:55 - 000000000 ____D C:\ProgramData\Adobe
2020-08-09 17:48 - 2020-08-09 17:48 - 000000000 ____D C:\Users\pablo\AppData\Local\ESET
2020-08-07 13:30 - 2020-08-07 13:30 - 000000000 ____D C:\Users\pablo\AppData\Local\OneDrive
2020-08-06 08:49 - 2020-08-06 08:49 - 000417792 _____ C:\Users\pablo\Downloads\Clase Amenorreas 2020.ppt
2020-08-06 08:48 - 2020-08-06 08:48 - 000312320 _____ C:\Users\pablo\Downloads\SPM y dismenorrea 2020.ppt
2020-08-05 22:11 - 2020-08-05 22:11 - 000010404 _____ C:\Users\pablo\Downloads\extracto (1).pdf
2020-08-05 22:09 - 2020-08-05 22:09 - 000010404 _____ C:\Users\pablo\Downloads\extracto.pdf
2020-08-05 08:35 - 2020-08-05 08:35 - 000170517 _____ C:\Users\pablo\Downloads\WhatsApp Image 2020-07-28 at 15.13.42 (1).jpeg
2020-08-04 18:19 - 2020-08-04 18:19 - 004216530 _____ C:\Users\pablo\Downloads\Videoconferencia de Tocoginecología final2.pptx
2020-08-04 09:49 - 2020-08-17 21:15 - 000000000 ____D C:\Users\pablo\AppData\Local\ElevatedDiagnostics
2020-08-03 16:35 - 2020-08-03 17:40 - 004048089 _____ C:\Users\pablo\Downloads\Videoconferencia de Tocogineco.pptx
2020-08-03 16:33 - 2020-08-06 08:49 - 000000000 ____D C:\Users\pablo\OneDrive\Documents\Clara
2020-08-03 16:21 - 2020-08-03 16:21 - 000414817 _____ C:\Users\pablo\Downloads\FASGO 2012.pdf
2020-08-03 16:20 - 2020-08-03 16:33 - 003671620 _____ C:\Users\pablo\Downloads\Videoconferencia de Tocogineco - Diabetes.pptx
2020-08-03 10:37 - 2020-08-03 10:37 - 000544768 _____ C:\Users\pablo\Downloads\Rol del Ginecólogo en la Atención Primaria 2020.ppt
2020-07-31 21:33 - 2020-07-31 21:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2020-07-31 21:33 - 2020-07-31 21:33 - 000000000 ____D C:\ProgramData\ESET
2020-07-31 21:33 - 2020-07-31 21:33 - 000000000 ____D C:\Program Files\ESET
2020-07-30 09:04 - 2020-07-30 09:04 - 000063220 _____ C:\Users\pablo\Downloads\Poliza_8_2248707_1.pdf
2020-07-29 13:14 - 2020-07-29 13:14 - 000000000 ____D C:\ProgramData\PCDr_Backup_DBA678
2020-07-29 10:43 - 2020-07-29 10:43 - 000170517 _____ C:\Users\pablo\Downloads\WhatsApp Image 2020-07-28 at 15.13.42.jpeg
2020-07-29 10:39 - 2020-07-29 10:39 - 000126082 _____ C:\Users\pablo\Downloads\cicerenella.pdf
2020-07-28 20:14 - 2020-07-28 20:14 - 000007383 _____ C:\Users\pablo\Downloads\archivo.pdf
2020-07-28 16:35 - 2020-07-28 16:35 - 000000000 ____D C:\ProgramData\Brother
2020-07-28 16:35 - 2013-11-21 01:32 - 000180224 _____ (Brother Industries, Ltd.) C:\WINDOWS\SysWOW64\BROSNMP.DLL
2020-07-28 16:35 - 2013-11-21 01:32 - 000103736 _____ (Brother Industries Ltd) C:\WINDOWS\SysWOW64\BRRBTOOL.EXE
2020-07-28 16:35 - 2013-11-21 01:32 - 000077824 _____ (Brother Industries, Ltd.) C:\WINDOWS\SysWOW64\BRLMW03A.DLL
2020-07-28 16:35 - 2013-11-21 01:32 - 000045056 _____ C:\WINDOWS\SysWOW64\BRTCPCON.DLL
2020-07-28 16:35 - 2013-11-21 01:32 - 000025299 _____ (Brother Industries, Ltd) C:\WINDOWS\SysWOW64\BRLM03A.DLL
2020-07-28 16:35 - 2013-11-21 01:32 - 000000114 _____ C:\WINDOWS\SysWOW64\BRLMW03A.INI
2020-07-28 16:35 - 2013-11-21 01:32 - 000000050 _____ C:\WINDOWS\system32\BRADM10A.DAT
2020-07-28 16:35 - 2013-05-22 12:32 - 001439744 _____ (Brother Industries, Ltd.) C:\WINDOWS\system32\BrWi209d.dll
2020-07-28 16:35 - 2013-05-22 12:32 - 000278528 _____ (Brother Industries, Ltd.) C:\WINDOWS\system32\BrJDec.dll
2020-07-28 16:35 - 2013-05-22 12:32 - 000050688 _____ (Brother Industries, Ltd.) C:\WINDOWS\system32\BrUsi09d.dll
2020-07-23 12:24 - 2020-07-23 12:24 - 000195456 _____ (ESET) C:\WINDOWS\system32\Drivers\ehdrv.sys
2020-07-23 12:24 - 2020-07-23 12:24 - 000159528 _____ (ESET) C:\WINDOWS\system32\Drivers\eamonm.sys
2020-07-23 12:24 - 2020-07-23 12:24 - 000116488 _____ (ESET) C:\WINDOWS\system32\Drivers\epfwwfp.sys
2020-07-23 12:24 - 2020-07-23 12:24 - 000015800 _____ (ESET) C:\WINDOWS\system32\Drivers\eelam.sys
2020-07-23 08:56 - 2020-07-23 08:56 - 000426729 _____ C:\Users\pablo\Downloads\Judith von Hall_la pandemia del coronavirus.pdf
2020-07-22 14:20 - 2020-07-22 14:20 - 002372670 _____ C:\Users\pablo\Downloads\kupdf.net_the-ultimate-gospel-choir-book-1-satb.pdf
2020-07-22 09:59 - 2020-07-22 09:59 - 000000000 ____D C:\WINDOWS\system32\ihvmanager
2020-07-22 09:00 - 2017-10-03 07:09 - 000077280 _____ (Insyde Software) C:\WINDOWS\system32\Drivers\H2OFFT64.sys
2020-07-22 08:59 - 2020-07-22 08:59 - 000000000 ____D C:\ProgramData\ATI
2020-07-22 08:59 - 2019-07-05 11:50 - 009899960 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsCRIcon.dll
2020-07-22 08:57 - 2020-07-22 08:57 - 000003068 _____ C:\WINDOWS\system32\Tasks\SmartByte Telemetry
2020-07-22 08:57 - 2020-07-22 08:57 - 000000000 ____D C:\Program Files\Rivet Networks
2020-07-22 08:52 - 2020-07-22 08:52 - 000000000 ____D C:\WINDOWS\{596E009B-903D-4FD9-A40C-7714DE2E0211}

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-08-20 13:07 - 2020-07-07 03:20 - 000784468 _____ C:\WINDOWS\system32\perfh00A.dat
2020-08-20 13:07 - 2020-07-07 03:20 - 000152950 _____ C:\WINDOWS\system32\perfc00A.dat
2020-08-20 13:07 - 2020-07-06 22:42 - 001767630 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-08-20 13:07 - 2019-03-19 01:50 - 000000000 ____D C:\WINDOWS\INF
2020-08-20 13:05 - 2019-06-13 18:13 - 000000000 ____D C:\Program Files (x86)\Dell Digital Delivery Services
2020-08-20 13:05 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\Registration
2020-08-20 13:03 - 2020-07-06 22:43 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-08-20 13:03 - 2020-07-06 13:36 - 000000000 ___RD C:\Users\pablo\OneDrive
2020-08-20 13:03 - 2019-03-19 01:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-08-20 13:02 - 2020-07-06 20:56 - 000000000 ____D C:\Users\pablo\AppData\Roaming\IObit
2020-08-20 13:02 - 2020-07-06 20:56 - 000000000 ____D C:\ProgramData\IObit
2020-08-20 13:02 - 2019-03-19 01:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-08-20 11:51 - 2020-07-06 22:33 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-08-20 08:43 - 2020-07-06 15:01 - 000000000 ____D C:\Users\pablo\AppData\Roaming\Deezloader Remix
2020-08-20 08:15 - 2020-07-09 09:18 - 000000000 ____D C:\Users\pablo\Deezloader Music
2020-08-19 18:49 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-08-19 18:44 - 2020-07-07 18:55 - 000004220 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{D884BECF-2BCB-4B8D-915F-DF654BA2B316}
2020-08-19 18:39 - 2020-07-06 22:36 - 000000000 ____D C:\Users\pablo
2020-08-19 09:45 - 2020-07-06 16:10 - 000000000 ____D C:\Users\pablo\AppData\Roaming\audacity
2020-08-19 08:32 - 2020-07-07 08:39 - 000002423 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-08-18 09:30 - 2020-07-06 13:34 - 000000000 ____D C:\Users\pablo\AppData\Local\Packages
2020-08-17 22:24 - 2019-03-19 01:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-08-16 10:05 - 2019-03-19 01:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-08-15 21:29 - 2020-07-06 13:37 - 000000000 ____D C:\Users\pablo\AppData\Local\PlaceholderTileLogoFolder
2020-08-14 21:31 - 2020-07-07 18:29 - 000000000 ____D C:\Program Files\Microsoft Office
2020-08-14 15:57 - 2020-07-06 13:34 - 000000000 ___RD C:\Users\pablo\3D Objects
2020-08-14 15:57 - 2019-06-13 19:05 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-08-14 15:57 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-08-14 15:57 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2020-08-14 15:57 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2020-08-14 15:57 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-08-14 15:57 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-08-14 15:56 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\setup
2020-08-14 15:56 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2020-08-14 15:56 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-08-14 15:56 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-08-14 15:56 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\es-MX
2020-08-14 15:56 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-08-14 15:56 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-08-14 15:56 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\Provisioning
2020-08-14 15:56 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-08-14 15:56 - 2019-03-19 01:37 - 000000000 ____D C:\WINDOWS\servicing
2020-08-14 10:45 - 2019-06-13 18:06 - 000000000 ____D C:\WINDOWS\system32\RTCOM
2020-08-14 10:45 - 2019-06-13 18:05 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2020-08-14 08:33 - 2020-07-06 13:34 - 000000000 ____D C:\Users\pablo\AppData\Local\D3DSCache
2020-08-13 22:30 - 2019-06-13 18:04 - 000000000 ____D C:\WINDOWS\AMDTAs
2020-08-12 18:29 - 2020-07-06 13:34 - 000000000 ____D C:\Users\pablo\AppData\Local\VirtualStore
2020-08-11 20:18 - 2020-07-06 13:34 - 000000000 ____D C:\Users\pablo\AppData\Roaming\Adobe
2020-08-11 19:26 - 2020-07-06 14:21 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-08-10 16:00 - 2020-07-20 11:27 - 000000000 ____D C:\Users\pablo\OneDrive\Documents\1. Pablo
2020-08-10 12:40 - 2020-07-07 18:43 - 000000000 ____D C:\Program Files (x86)\Avid
2020-08-09 17:55 - 2019-06-13 18:04 - 000000000 ____D C:\ProgramData\Package Cache
2020-07-31 21:33 - 2019-03-19 01:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-07-31 21:30 - 2019-06-13 18:19 - 000000000 ____D C:\ProgramData\McAfee
2020-07-31 21:30 - 2019-06-13 18:19 - 000000000 ____D C:\Program Files\mcafee
2020-07-31 21:29 - 2019-03-19 01:37 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2020-07-31 21:28 - 2019-06-13 17:54 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-07-31 21:28 - 2019-03-19 01:52 - 000000000 ____D C:\Program Files\Windows Defender
2020-07-28 16:34 - 2020-07-07 18:44 - 000000000 ____D C:\Users\pablo\OneDrive\Documents\Partituras
2020-07-28 16:34 - 2020-07-06 13:37 - 000000119 ____R C:\Users\pablo\OneDrive\Documents\Bloc de notas de Pablo.url
2020-07-24 11:01 - 2020-07-06 14:07 - 000000000 ___DC C:\WINDOWS\Panther
2020-07-22 10:18 - 2020-07-06 22:43 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-07-22 10:00 - 2019-06-13 18:07 - 000000000 ____D C:\Program Files (x86)\Qualcomm
2020-07-22 09:52 - 2019-06-13 18:03 - 000000000 ____D C:\ProgramData\PCDr
2020-07-22 09:38 - 2019-06-13 18:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2020-07-22 09:37 - 2019-06-13 18:28 - 000000000 ____D C:\ProgramData\Dell
2020-07-22 09:36 - 2020-07-06 22:43 - 000003918 _____ C:\WINDOWS\system32\Tasks\Dell SupportAssistAgent AutoUpdate
2020-07-22 08:59 - 2019-06-13 18:04 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-07-22 08:59 - 2019-06-13 18:04 - 000000000 ____D C:\Program Files (x86)\Realtek

==================== Files in the root of some directories ========

2020-07-07 18:43 - 2020-07-07 18:43 - 001239686 _____ () C:\Users\pablo\AppData\Roaming\AvidApplicationManager_Install.log

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-08-2020
Ran by pablo (20-08-2020 13:10:51)
Running from C:\Users\pablo\OneDrive\Escritorio
Windows 10 Home Version 1909 18363.1016 (X64) (2020-07-07 01:43:50)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3039257810-2054696879-4166507184-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3039257810-2054696879-4166507184-503 - Limited - Disabled)
Guest (S-1-5-21-3039257810-2054696879-4166507184-501 - Limited - Disabled)
pablo (S-1-5-21-3039257810-2054696879-4166507184-1001 - Administrator - Enabled) => C:\Users\pablo
WDAGUtilityAccount (S-1-5-21-3039257810-2054696879-4166507184-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AS: McAfee VirusScan (Enabled - Up to date) {2624E002-54CC-27F9-FD39-B2DD14D41191}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Audition 2020 (HKLM-x32\...\AUDT_13_0_3) (Version: 13.0.3 - Adobe Systems Incorporated)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
Audacity 2.4.2 (HKLM-x32\...\Audacity_is1) (Version: 2.4.2 - Audacity Team)
Avid Application Manager (HKLM-x32\...\{A59C0B17-6673-46E6-9E00-BB25E755A299}) (Version: 2.4.0.6360 - Avid Technology, Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.69 - Piriform)
Deezloader Remix 4.4.1 (HKU\S-1-5-21-3039257810-2054696879-4166507184-1001\...\5eed4b40-1ed5-51be-ab52-56cdb94a998f) (Version: 4.4.1 - RemixDevs)
Dell Digital Delivery Services (HKLM-x32\...\{CC5730C7-C867-43BD-94DA-00BB3836906F}) (Version: 4.0.52.0 - Dell Inc.)
Dell Mobile Connect Drivers (HKLM\...\{1E754E2C-CF3B-42CB-B36D-D560CEA96149}) (Version: 2.0.7811 - Screenovate Technologies Ltd.)
Dell Power Manager Service (HKLM\...\{18469ED8-8C36-4CF7-BD43-0FC9B1931AF8}) (Version: 3.6.0 - Dell Inc.)
Dell SupportAssist (HKLM\...\{57CBE96A-3AA5-4421-A87C-6C6C3B6C5ECA}) (Version: 3.6.0.97 - Dell Inc.)
Dell SupportAssist Remediation (HKLM\...\{29DFEBDA-0506-4882-87E8-8894E49B3643}) (Version: 5.1.3.11985 - Dell Inc.) Hidden
Dell SupportAssist Remediation (HKLM-x32\...\{a48e1a80-e880-4a78-96e4-7601fc38dc6f}) (Version: 5.1.3.11985 - Dell Inc.)
Dell Update - SupportAssist Update Plugin (HKLM\...\{EDE60887-F1EA-4304-A3E9-806D29EEE3FB}) (Version: 5.1.0.11858 - Dell Inc.) Hidden
Dell Update - SupportAssist Update Plugin (HKLM-x32\...\{9aec637d-a647-4f3b-998e-425f40e7dd50}) (Version: 5.1.0.11858 - Dell Inc.)
Dell Update for Windows 10 (HKLM\...\{70E9F8CC-A23E-4C25-B292-C86C1821587C}) (Version: 3.1.3 - Dell, Inc.)
Driver Booster 7 (HKLM-x32\...\Driver Booster_is1) (Version: 7.5.0 - IObit)
Epic Games Launcher (HKLM-x32\...\{90D54587-044D-4B17-AA6D-BB7976F3211C}) (Version: 1.1.279.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
ESET Security (HKLM\...\{000F877D-3C80-464E-999B-86AE42B48FD8}) (Version: 13.2.16.0 - ESET, spol. s r.o.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 84.0.4147.125 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Malwarebytes version 4.1.2.73 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.2.73 - Malwarebytes)
Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.7.9434.5 - Waves Audio Ltd.) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 84.0.522.61 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.133.5 - )
Microsoft Office Profesional Plus 2019 - es-es (HKLM\...\ProPlus2019Retail - es-es) (Version: 16.0.13029.20344 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3039257810-2054696879-4166507184-1001\...\OneDriveSetup.exe) (Version: 20.134.0705.0008 - Microsoft Corporation)
Microsoft Project Professional 2019 - es-es (HKLM\...\ProjectPro2019Retail - es-es) (Version: 16.0.13029.20344 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{406C9ADB-1325-4FD0-9D13-C119CFF64E0A}) (Version: 2.65.0.0 - Microsoft Corporation)
Microsoft Visio - es-es (HKLM\...\VisioPro2019Retail - es-es) (Version: 16.0.13029.20344 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.21.27702 (HKLM-x32\...\{f4220b74-9edd-4ded-bc8b-0342c1e164d8}) (Version: 14.21.27702.2 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM-x32\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation)
MIDI-OX (HKLM-x32\...\{A6457851-5EA9-45B0-AF1D-D2A0A4781CFB}) (Version: 7.02.372 - MIDIOX Computing)
OEM Application Profile (HKLM-x32\...\{12C2AEB0-ED60-4CCF-DD83-C65BC7CCFB50}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.13029.20200 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.13029.20236 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0C0A-1000-0000000FF1CE}) (Version: 16.0.13029.20200 - Microsoft Corporation) Hidden
Paquete de controladores de Windows - Advanced Micro Devices, Inc. (amdkmdap) Display  (10/11/2018 25.20.14003.2000) (HKLM\...\ED5A352F9502C604344EB7B5CEB190AE90F575DF) (Version: 10/11/2018 25.20.14003.2000 - Advanced Micro Devices, Inc.)
Qualcomm 11ac Wireless LAN&Bluetooth Installer (HKLM-x32\...\{E7086B15-806E-4519-A876-DBA9FDDE9A13}) (Version: 11.0.0.10505 - Qualcomm)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.18362.31252 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8555 - Realtek Semiconductor Corp.)
Sibelius (HKLM\...\{071EC410-2103-4647-A1C9-9231006DC62C}) (Version: 8.0.0.66 - Avid Technology)
Sibelius 7 OpenType Fonts (HKLM-x32\...\{623C2BD8-1B28-4F98-B578-E9D139827269}) (Version: 7.1.3 - Avid)
SmartByte Drivers and Services (HKLM\...\{1E9AE03E-28AC-4FE3-A66B-F3147A47578B}) (Version: 3.0.863 - Rivet Networks)
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
WebAdvisor by McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.141 - McAfee, LLC)
WinRAR 5.90 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-3039257810-2054696879-4166507184-1001\...\ZoomUMX) (Version: 5.1 - Zoom Video Communications, Inc.)

Packages:
=========
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_6.12.4.0_x86__kgqvnymyfvs32 [2020-08-17] (king.com)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.40.4.0_x86__kgqvnymyfvs32 [2020-08-17] (king.com)
Complemento de Fotos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2020-08-14] (Microsoft Corporation)
Complemento de motor multimedia para Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-08-14] (Microsoft Corporation)
Deezer Music -> C:\Program Files\WindowsApps\Deezer.62021768415AF_4.21.0.0_x86__q7m17pa7q8kj0 [2020-08-07] (Deezer SA)
Dell CinemaColor -> C:\Program Files\WindowsApps\PortraitDisplays.DellCinemaColor_2.1.14.0_x64__2dgmkzkw4h30c [2020-07-06] (Portrait Displays)
Dell Customer Connect -> C:\Program Files\WindowsApps\DellInc.DellCustomerConnect_5.2.45.0_x64__htrsf667h5kn2 [2020-07-23] (Dell Inc)
Dell Digital Delivery -> C:\Program Files\WindowsApps\DellInc.DellDigitalDelivery_4.0.52.0_x64__htrsf667h5kn2 [2020-07-06] (Dell Inc)
Dell Mobile Connect -> C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.1.9518.0_x64__0vhbc3ng4wbp0 [2020-07-17] (Screenovate Technologies) [Startup Task]
Dell Power Manager -> C:\Program Files\WindowsApps\DellInc.DellPowerManager_3.6.12.0_x64__htrsf667h5kn2 [2020-07-06] (Dell Inc)
Dell SupportAssist for Home PCs -> C:\Program Files\WindowsApps\DellInc.DellSupportAssistforPCs_3.6.6.0_x64__htrsf667h5kn2 [2020-07-22] (Dell Inc)
Dell Update -> C:\Program Files\WindowsApps\DellInc.DellUpdate_3.1.103.0_x64__htrsf667h5kn2 [2020-08-13] (Dell Inc)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.4.249.0_x64__rz1tebttyb220 [2020-08-07] (Dolby Laboratories)
Dropbox - promoción -> C:\Program Files\WindowsApps\C27EB4BA.DropboxOEM_20.4.3.0_x64__xbfy0k16fey96 [2020-07-06] (Dropbox Inc.)
Extensión de video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2020-07-06] (Microsoft Corporation)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2020-07-06] (LinkedIn)
McAfee® Personal Security -> C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.39.0_x64__wafk5atnkzcwy [2020-07-06] (McAfee LLC.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-07-06] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-07-06] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8042.0_x64__8wekyb3d8bbwe [2020-08-08] (Microsoft Studios) [MS Ad]
MSN El tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-07-06] (Microsoft Corporation) [MS Ad]
My Dell -> C:\Program Files\WindowsApps\DellInc.MyDell_1.5.26.0_x64__htrsf667h5kn2 [2020-07-23] (Dell Inc)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-17] (Netflix, Inc.)
SmartByte -> C:\Program Files\WindowsApps\RivetNetworks.SmartByte_3.0.869.0_x64__rh07ty8m5nkag [2020-07-06] (Rivet Networks LLC)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.139.612.0_x86__zpdnekdrzrea0 [2020-08-17] (Spotify AB) [Startup Task]
Traductor -> C:\Program Files\WindowsApps\Microsoft.BingTranslator_5.6.0.0_x64__8wekyb3d8bbwe [2020-07-06] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3039257810-2054696879-4166507184-1001_Classes\CLSID\{a9872fee-5a55-4ecb-9b0f-b06fedcf14d1}\localserver32 -> C:\Program Files\Waves\MaxxAudio\MaxxAudioPro.exe (Waves Inc -> Waves Audio Ltd)
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  -> No File
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  -> No File
ContextMenuHandlers1: [###MegaContextMenuExt] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> No File
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-07-23] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-07-23] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-07-07] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [###MegaContextMenuExt] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> No File
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-07-23] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-07-07] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2020-04-09 20:11 - 2020-04-09 20:11 - 000019456 _____ () [File not signed] C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.HSA.Server.dll
2020-04-10 10:27 - 2020-04-10 10:27 - 000122880 _____ (Rivet Networks) [File not signed] C:\Program Files\Rivet Networks\SmartByte\KillerNetworkServicePS.dll
2020-05-03 07:13 - 2020-05-03 07:13 - 001899008 _____ (SQLite Development Team) [File not signed] C:\Program Files\Dell\SupportAssistAgent\bin\x64\sqlite3.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-09-15 04:31 - 2018-09-15 04:31 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3039257810-2054696879-4166507184-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\pablo\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img0.jpg
DNS Servers: Media is not connected to internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\StartupFolder: => "Avid Application Manager.lnk"
HKLM\...\StartupApproved\Run: => "DellMobileConnectWelcome"
HKLM\...\StartupApproved\Run32: => "AppManHelper"
HKU\S-1-5-21-3039257810-2054696879-4166507184-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{807F393C-AC86-4E4B-A931-448BE7E13C62}C:\users\pablo\appdata\local\programs\deezloader remix\deezloader remix.exe] => (Allow) C:\users\pablo\appdata\local\programs\deezloader remix\deezloader remix.exe (RemixDevs) [File not signed]
FirewallRules: [TCP Query User{FE648A34-CF6F-4337-9143-08F1B3799083}C:\users\pablo\appdata\local\programs\deezloader remix\deezloader remix.exe] => (Allow) C:\users\pablo\appdata\local\programs\deezloader remix\deezloader remix.exe (RemixDevs) [File not signed]
FirewallRules: [{7B21CA1E-BA2F-41AC-8DA0-7396A69A6125}] => (Allow) C:\Users\pablo\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{C0BDD6BF-D65F-466A-A229-6E45113480AF}] => (Allow) C:\Program Files (x86)\Avid\Application Manager\jre\bin\java.exe
FirewallRules: [{9E068A37-190D-4ECB-ABBF-8E673BB9D5F1}] => (Allow) C:\Program Files (x86)\Avid\Application Manager\AvidApplicationManager.exe (Avid Technology, Inc. -> Avid Technology, Inc.)
FirewallRules: [{CDF91FB1-449E-4F74-BF6D-A92BA6C22474}] => (Allow) C:\Program Files (x86)\Avid\Application Manager\AvidAppManHelper.exe (Avid Technology, Inc.) [File not signed]
FirewallRules: [{9785050B-1452-44E3-8496-A0116E2A9C14}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{77A54AEA-7A72-4E44-91D4-3FD8DAE20B84}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B57B4AF3-D4B4-497A-86DD-064CF44C1B18}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4B6F6EAC-6C9B-4B8D-BFAE-E5319BE0F009}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AA49ED7C-B91E-41EF-A909-2795C23F939F}] => (Allow) C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.1.9518.0_x64__0vhbc3ng4wbp0\app\DellMobileConnectClient.exe (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.)
FirewallRules: [{E922978B-2C7C-4975-9731-BB1489DE22AE}] => (Allow) C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.1.9518.0_x64__0vhbc3ng4wbp0\app\DellMobileConnectClient.exe (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.)
FirewallRules: [{F767F627-C736-4C79-A0E2-2DCE8BE7AE84}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{96C92B5B-4197-49E2-8928-5EAD389A1334}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5D06A145-D55A-449B-AC25-71850FAB19C3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{250EB0DE-163A-4D85-B2FC-59CF644F263B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6FA9BFF9-3253-400C-980E-CD87ED004CF5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6E87A3F7-694C-482C-BE22-1B11301EBD49}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{A2BC6272-B10F-45D0-9140-64A57F5D1657}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.139.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5665408B-E538-4AA3-BD8B-ECAF669B5D3B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.139.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{825EC717-DD59-4B86-A361-F09CEB7717D5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.139.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FFE04B4C-BA10-4472-B1E2-2AFE6672C5B3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.139.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FC70DEBE-C26B-4D58-880E-1B94B0770855}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.139.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E8B7D990-4A2B-4984-BB3B-984E3444F87D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.139.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{164F5F5A-A306-4463-9EFB-DF4391D46E1D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.139.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{ACD26162-C245-49EE-AA90-00BE4CF03222}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.139.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)

==================== Restore Points =========================

20-08-2020 13:04:49 JRT Pre-Junkware Removal

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (08/20/2020 01:10:46 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (2344,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (08/20/2020 12:57:52 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (1100,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (08/20/2020 12:55:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: mbamtray.exe, versión: 4.0.0.766, marca de tiempo: 0x5f20a5ba
Nombre del módulo con errores: Qt5Core.dll, versión: 5.14.1.0, marca de tiempo: 0x5e8272e4
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x0000000000219d05
Identificador del proceso con errores: 0x6e0
Hora de inicio de la aplicación con errores: 0x01d6770a39371744
Ruta de acceso de la aplicación con errores: C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
Ruta de acceso del módulo con errores: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
Identificador del informe: b9508860-1e1e-4b37-ad19-966ee80d5ca5
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:

Error: (08/20/2020 12:48:54 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (14724,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (08/20/2020 12:46:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: dwm.exe, versión: 10.0.18362.387, marca de tiempo: 0x8e064b77
Nombre del módulo con errores: ntdll.dll, versión: 10.0.18362.815, marca de tiempo: 0xb29ecf52
Código de excepción: 0xc0000374
Desplazamiento de errores: 0x00000000000f9229
Identificador del proceso con errores: 0x3d90
Hora de inicio de la aplicación con errores: 0x01d67702bd44e9d1
Ruta de acceso de la aplicación con errores: C:\WINDOWS\System32\dwm.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\SYSTEM32\ntdll.dll
Identificador del informe: 399100be-6da2-4829-8a67-1d248b74591b
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:

Error: (08/20/2020 12:01:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: dwm.exe, versión: 10.0.18362.387, marca de tiempo: 0x8e064b77
Nombre del módulo con errores: ntdll.dll, versión: 10.0.18362.815, marca de tiempo: 0xb29ecf52
Código de excepción: 0xc0000374
Desplazamiento de errores: 0x00000000000f9229
Identificador del proceso con errores: 0x1098
Hora de inicio de la aplicación con errores: 0x01d676e82363c235
Ruta de acceso de la aplicación con errores: C:\WINDOWS\System32\dwm.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\SYSTEM32\ntdll.dll
Identificador del informe: c5531071-5b0c-4617-8041-c9c63bdce126
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:

Error: (08/20/2020 11:24:39 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (14940,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (08/20/2020 11:18:03 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (780,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.


System errors:
=============
Error: (08/20/2020 01:04:22 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-LOL8Q64)
Description: El servidor Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca no se registró con DCOM dentro del tiempo de espera requerido.

Error: (08/20/2020 01:03:37 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-LOL8Q64)
Description: El servidor Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca no se registró con DCOM dentro del tiempo de espera requerido.

Error: (08/20/2020 01:02:34 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Dell SupportAssist Remediation se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (08/20/2020 01:02:34 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Dell Data Vault Service API depende del servicio Dell Data Vault Collector, el cual no pudo iniciarse debido al siguiente error: 
El proceso ha terminado de forma inesperada.

Error: (08/20/2020 01:02:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Dell Data Vault Collector terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 0 milisegundos: Restart the service.

Error: (08/20/2020 01:02:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Dell Hardware Support terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 60000 milisegundos: Restart the service.

Error: (08/20/2020 01:02:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Dell Data Vault Service API terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 0 milisegundos: Restart the service.

Error: (08/20/2020 01:02:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Dell Digital Delivery Services terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 1000 milisegundos: Restart the service.


CodeIntegrity:
===================================

Date: 2020-08-20 13:05:28.004
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-08-20 13:05:27.997
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-08-20 13:05:27.981
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-08-20 13:05:14.681
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-08-20 13:05:14.397
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-08-20 13:05:14.386
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-08-20 12:43:11.531
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-08-20 12:43:11.526
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info =========================== 

BIOS: Dell Inc. 1.3.3 10/31/2019
Motherboard: Dell Inc. 0M0Y6P
Processor: AMD Ryzen 5 2500U with Radeon Vega Mobile Gfx 
Percentage of memory in use: 19%
Total physical RAM: 16020.37 MB
Available physical RAM: 12893.04 MB
Total Virtual: 18452.37 MB
Available Virtual: 15024.19 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:223.81 GB) (Free:99.99 GB) NTFS

\\?\Volume{76d436bf-1d0a-41d5-8bee-8bb0631a5238}\ (WINRETOOLS) (Fixed) (Total:0.97 GB) (Free:0.48 GB) NTFS
\\?\Volume{05c6223d-23bf-4608-8e3d-72f99713d3bf}\ (Image) (Fixed) (Total:11.73 GB) (Free:0.21 GB) NTFS
\\?\Volume{05126503-30ba-4cee-b264-2c0deb9fa07d}\ (DELLSUPPORT) (Fixed) (Total:1.12 GB) (Free:0.36 GB) NTFS
\\?\Volume{f406a83e-045d-4ec9-b62a-4ca09275f1f2}\ (ESP) (Fixed) (Total:0.73 GB) (Free:0.64 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: 2B89B45D)

Partition: GPT.

==================== End of Addition.txt =======================

Gracias por la ayuda, espero haberlo hecho bien!! Me costó bastante entender el sistema de posteo.

JavierHF · 21 Agosto, 2020 09:21

Hola @Pablo_Kiteber.

Indicaste que habías des-instalado y cambiado McAfee por ESET, pero te han quedado muchos restos de McAffe, para quitarlo adecuadamente debes usar la Herramientas de desinstalación de Antivirus, AntiSpyware y Firewall , especifica de ese antivirus y una vez que termines de hacerlo revisas también que NO quede ninguna “extensión/complemento” del mismo en tus navegadores.

Cuando termines todos esos pasos REINICIAS el equipo y nos comentas los resultados para poderte dar mas indicaciones de ser necesario.

Saludos.

Pablo_Kiteber · 21 Agosto, 2020 15:50

Gracias!! Hice todo eso, buenisimo!! Al tema con el audio persiste, me pregunto si no será algún driver… Le bajé la calidad de muestreo de 48000hz a 44100hz, estuve leyendo que esa puede ser una causa… pero el problema sigue.

JavierHF · 21 Agosto, 2020 17:57

Hola.

Podría ser algún driver que hayas descargado e instalado con Driver Booster, ese tipo de herramientas y/o actualizar Drivers por nuestra cuenta pueden provocar ese tipo de problemas/errores.

YO NUNCA recomiendo actualizar drivers para NADA(y mucho menos en Windows 10), el propio sistema operativo se encarga de realizar la actualizacion de los drivers cuando existe alguno que se tenga que actualizar.

De todas maneras también puede ser el causante el programa/controlador de MIDI que indicas que instalaste, lo primero que deberías probar es a realizar la des-instalación de ese programa de MIDI y/o todos aquellos programas que hubieras instalado previos a tener el problema.

Para desinstalar correctamente todos ellos usa este programa Manual de Revo Uninstaller

Y úsalo para desinstalar todos esos programas y cuando Revo te pida, que selecciones el método de desinstalación, seleccionas “Avanzado”.

Si durante el proceso te solicita “Reiniciar” NO lo hagas, dile que NO y deja que Revo siga trabajando.

Cuando termines todos los procesos de desinstalación ya REINICIAS tú el ordenador.

Compruebas el problema y nos comentas.

Si persiste el problema, vuelve a usar FRST para ponernos nuevos informes de FRST.txt y Addition.txt

Saludos.

Pablo_Kiteber · 26 Agosto, 2020 11:37

@JavierHF Esperé unos dias para contestarte para constatar como respodía la máquina usandola en las tareas habituales y da la impresión que funciona correctamente. Muchisimas gracias por la mano gigante que me diste!!

JavierHF · 26 Agosto, 2020 15:16

Perfecto @Pablo_Kiteber excelente, nos alegra ver que ya está el problema inicial completamente arreglado, ahora solo queda eliminar las herramientas usadas.

Para hacerlo descarga DelFix.exe en tu escritorio.

Doble clic para ejecutarlo. (Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona - Ejecutar como Administrador -).
Marca todas las casillas, y pulsas en Run

Se abrirá el informe (DelFix.txt), puedes cerrarlo.

Para cualquier otro problema, no dudes en volver a postear., ya sabes dónde estamos.

Tema Solucionado.

Saludos, Javier.