Gracias por responder. El equipo sigue igual, dejo los reportes de Farbar.
Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 19-07-2020
Ejecutado por Gilberto (administrador) sobre DESKTOP-F9C7RJH (Dell Inc. Inspiron 5567) (20-07-2020 22:25:58)
Ejecutado desde C:\Users\Gilberto\Desktop
Perfiles cargados: Gilberto
Platform: Windows 10 Home Single Language Versión 1903 18362.959 (X64) Idioma: Español (España, internacional)
Navegador predeterminado: Chrome
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Procesos (Lista blanca) =================
(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe
(Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(Dell Inc. -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Entertainment Experience LLC -> ) C:\Program Files\TrueColor\TrueColorALS.exe
(Entertainment Experience LLC -> Entertainment Experience) C:\Program Files\TrueColor\TrueColorUI.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel Corporation -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\igfxext.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2005.23.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12007.1001.2.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7193.518\DSAPI.exe
(Plex, Inc. -> Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Rivet Networks LLC -> Rivet Networks LLC) C:\Program Files\Rivet Networks\SmartByte\RAPS.exe
(Rivet Networks LLC -> Rivet Networks) C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe
(Rivet Networks LLC -> Rivet Networks, LLC.) C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe
(Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
==================== Registro (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11235928 2020-02-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320568 2016-09-20] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [TrueColor UI] => C:\Program Files\TrueColor\TrueColorUI.exe [19638160 2016-12-28] (Entertainment Experience LLC -> Entertainment Experience)
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-02-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [1235160 2019-09-26] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646160 2019-12-11] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-1505549421-2506334975-1048970357-1001\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [24625656 2020-02-24] (Plex, Inc. -> Plex, Inc.)
HKU\S-1-5-21-1505549421-2506334975-1048970357-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [29072568 2020-05-22] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-18\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [24625656 2020-02-24] (Plex, Inc. -> Plex, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.116\Installer\chrmstp.exe [2020-06-22] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2020-04-03]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
Startup: C:\Users\Gilberto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2020-04-30]
ShortcutTarget: MEGAsync.lnk -> C:\Users\Gilberto\AppData\Local\MEGAsync\MEGAsync.exe (Ningún archivo)
GroupPolicy: Restricción ? <==== ATENCIÓN
==================== Tareas programadas (Lista blanca) ============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
Task: {0CBA4467-48B4-498B-85FE-1E3EF0D66400} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {14C8C2B6-2CC9-48D8-B8B3-F9644F3C85AB} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-1505549421-2506334975-1048970357-1001 => C:\Users\Gilberto\AppData\Local\MEGAsync\MEGAupdater.exe
Task: {2AEC7C43-D6BA-42E0-AB04-961476BBAEA6} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-02-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {446DB093-73EB-41DB-B30A-FA122AAF7FF1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1331792 2020-05-07] (Adobe Inc. -> Adobe Inc.)
Task: {4B26117A-AAB5-4A73-9046-35362647096F} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-05-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {4D4C39D0-26DA-421C-9C3E-A7D1C46015F6} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {62941390-A91A-44AA-B9E1-12D631D2BEB9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-05] (Google Inc -> Google LLC)
Task: {7321DFA9-DA73-4668-84F4-4CA2B1AB39CF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-05] (Google Inc -> Google LLC)
Task: {764B7083-9698-4889-8E4E-A52149E06255} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {765E46C0-B395-4A7F-A95D-4CC50BEBFA28} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe
Task: {9866D49E-24CF-4A96-9F22-D4DFDE929520} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [816960 2017-10-11] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {9928BC75-3C16-457C-9AE8-71450F672A5C} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe
Task: {9C2AF140-E304-4CC9-9926-E71A504F7DF8} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {9E32EA38-C070-459B-8889-73B918362667} - System32\Tasks\AdwCleaner_onReboot => C:\Users\Gilberto\Downloads\adwcleaner_8.0.6.exe [8420016 2020-07-19] (Malwarebytes Inc -> Malwarebytes)
Task: {BF552662-4DC2-49CD-9A85-7A5CE1C21592} - System32\Tasks\PCDDataUploadTask => uaclauncher.exe
Task: {E5DE3339-3A4E-4E76-B055-CCABFF1791B8} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24690360 2020-05-22] (Piriform Software Ltd -> Piriform Software Ltd)
(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\RunDLC.job => cmd c sc start Dell Help SupportWORKGROUP DESKTOP F9C7RJH
==================== Internet (Lista blanca) ====================
(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{477d217a-aeff-428f-93ee-070a153c5d67}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{ef6a2156-c1a8-4d47-a710-ff535f61faac}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1505549421-2506334975-1048970357-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
HKU\S-1-5-21-1505549421-2506334975-1048970357-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell17win10.msn.com/?pc=DCTE
SearchScopes: HKU\S-1-5-21-1505549421-2506334975-1048970357-1001 -> DefaultScope {5E3AA19E-3DCC-4208-A973-B757AB47CD6D} URL =
SearchScopes: HKU\S-1-5-21-1505549421-2506334975-1048970357-1001 -> {5E3AA19E-3DCC-4208-A973-B757AB47CD6D} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\ssv.dll [2020-04-06] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\jp2ssv.dll [2020-04-06] (Oracle America, Inc. -> Oracle Corporation)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Edge:
======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Gilberto\AppData\Local\Microsoft\Edge\User Data\Default [2020-07-20]
Edge HomePage: Default -> hxxps://www.google.com.mx/
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.241.2 -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\dtplugin\npDeployJava1.dll [2020-04-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.241.2 -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\plugin2\npjp2.dll [2020-04-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-03] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\Gilberto\AppData\Local\Google\Chrome\User Data\Default [2020-07-20]
CHR HomePage: Default -> hxxps://www.google.com.mx/
CHR StartupUrls: Default -> "hxxps://www.google.com.mx/"
CHR Extension: (Presentaciones) - C:\Users\Gilberto\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-06-05]
CHR Extension: (Documentos) - C:\Users\Gilberto\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-06-05]
CHR Extension: (Google Drive) - C:\Users\Gilberto\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-06-05]
CHR Extension: (YouTube) - C:\Users\Gilberto\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-06-05]
CHR Extension: (Hojas de cálculo) - C:\Users\Gilberto\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-06-05]
CHR Extension: (Dark atmosphere) - C:\Users\Gilberto\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfpikgkkfdoabncoileilaglepbpdhek [2019-06-09]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Gilberto\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-28]
CHR Extension: (AdBlock: el mejor bloqueador de anuncios) - C:\Users\Gilberto\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-07-12]
CHR Extension: (Keepa - Amazon Price Tracker) - C:\Users\Gilberto\AppData\Local\Google\Chrome\User Data\Default\Extensions\neebplgakaahbhdphmkckjjcegoiijjo [2020-07-15]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Gilberto\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-13]
CHR Extension: (Gmail) - C:\Users\Gilberto\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-06-05]
CHR Extension: (Chrome Media Router) - C:\Users\Gilberto\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-28]
==================== Servicios (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
S2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [3153872 2020-04-03] (philandro Software GmbH -> philandro Software GmbH)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [284720 2020-06-10] (Dell Inc -> Dell Technologies Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3455536 2020-06-10] (Dell Inc -> Dell Technologies Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [294448 2020-06-10] (Dell Inc -> Dell Technologies Inc.)
R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7193.518\DSAPI.exe [965104 2020-07-15] (PC-Doctor, Inc. -> PC-Doctor, Inc.)
R2 Dell Help & Support; C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe [77648 2016-12-22] (Dell Inc -> Dell Inc.)
R2 Dell SupportAssist Remediation; C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe [293528 2018-10-20] (Dell Inc -> Dell Inc.)
R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [36544 2020-04-17] (Dell Inc -> )
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6970968 2020-07-13] (Malwarebytes Inc -> Malwarebytes)
R2 PlexUpdateService; C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe [2148856 2020-02-24] (Plex, Inc. -> Plex, Inc.)
R2 RAPSService; C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe [65096 2020-04-10] (Rivet Networks LLC -> Rivet Networks, LLC.)
S3 RNDBWM; C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe [65104 2020-04-10] (Rivet Networks LLC -> Rivet Networks, LLC.)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [269600 2020-02-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
R2 SmartByte Network Service x64; C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe [2361952 2020-04-10] (Rivet Networks LLC -> Rivet Networks)
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182120 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [33240 2020-07-06] (Dell Inc. -> Dell Inc.)
R2 TrueColorALS; C:\Program Files\TrueColor\TrueColorALS.exe [93072 2016-12-12] (Entertainment Experience LLC -> )
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-18] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-18] (Microsoft Corporation -> Microsoft Corporation)
===================== Controladores (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [35208 2020-05-26] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.)
S3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [32568 2017-04-11] (Techporch Incorporated -> Dell Computer Corporation)
R3 DellRbtn; C:\WINDOWS\System32\drivers\DellRbtn.sys [22864 2016-10-27] (WDKTestCert Andy_Chen6,131219483243550933 -> OSR Open Systems Resources, Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [135520 2019-07-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [225432 2017-03-31] (McAfee, Inc. -> McAfee, Inc.)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-07-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-07-20] (Malwarebytes Inc -> Malwarebytes)
R3 PCDSRVC{628864C0-331E8A33-06030000}_0; c:\program files\dell\supportassistagent\pcdr\supportassist\6.0.7193.518\pcdsrvc_x64.pkms [55024 2020-07-15] (PC-Doctor, Inc. -> PC-Doctor, Inc.)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
R3 SmbCoSvc; C:\WINDOWS\system32\DRIVERS\SmbCo10X64.sys [158552 2020-04-10] (Rivet Networks LLC -> Rivet Networks, LLC.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166752 2019-07-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43368 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [46472 2019-03-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [333784 2019-03-18] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-18] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
==================== Un mes (creado) ===================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2020-07-20 21:49 - 2020-07-20 21:52 - 000038416 _____ C:\Users\Gilberto\Desktop\Addition.txt
2020-07-20 21:47 - 2020-07-20 22:26 - 000023617 _____ C:\Users\Gilberto\Desktop\FRST.txt
2020-07-20 21:46 - 2020-07-20 22:26 - 000000000 ____D C:\FRST
2020-07-20 21:44 - 2020-07-20 21:44 - 002293760 _____ (Farbar) C:\Users\Gilberto\Desktop\FRST64.exe
2020-07-20 21:12 - 2020-07-15 16:17 - 000058520 _____ (Intel Corporation ) C:\WINDOWS\system32\Drivers\iqvw64e.sys
2020-07-20 21:05 - 2020-07-20 21:05 - 000000000 ____D C:\Users\Gil\AppData\Local\Mega Limited
2020-07-20 21:04 - 2020-07-20 21:04 - 000000000 ____D C:\Users\Gil\AppData\Local\conda
2020-07-20 21:02 - 2020-07-20 21:02 - 000000000 ____D C:\Users\Gil\AppData\Roaming\GlarySoft
2020-07-20 21:00 - 2020-07-20 21:00 - 000000000 ____D C:\Users\Gil\AppData\Local\D3DSCache
2020-07-20 20:58 - 2020-07-20 21:02 - 000250946 _____ C:\WINDOWS\ntbtlog.txt
2020-07-20 20:55 - 2020-07-20 20:55 - 000000000 ____D C:\Users\Gil\AppData\Roaming\Intel Corporation
2020-07-20 20:54 - 2020-07-20 20:54 - 000000000 ____D C:\Users\Gil\AppData\Roaming\AnyDesk
2020-07-20 20:53 - 2020-07-20 20:53 - 000000000 ____D C:\Users\Gil\AppData\Local\Publishers
2020-07-20 20:52 - 2020-07-20 21:09 - 000000000 __SHD C:\Users\Gil\IntelGraphicsProfiles
2020-07-20 20:52 - 2020-07-20 21:00 - 000002336 _____ C:\Users\Gil\Desktop\Google Chrome.lnk
2020-07-20 20:52 - 2020-07-20 20:53 - 000000000 ____D C:\Users\Gil\AppData\Local\Packages
2020-07-20 20:52 - 2020-07-20 20:53 - 000000000 ____D C:\Users\Gil\AppData\Local\Intel
2020-07-20 20:52 - 2020-07-20 20:52 - 000000000 ___RD C:\Users\Gil\3D Objects
2020-07-20 20:52 - 2020-07-20 20:52 - 000000000 ____D C:\Users\Gil\AppData\Roaming\Adobe
2020-07-20 20:52 - 2020-07-20 20:52 - 000000000 ____D C:\Users\Gil\AppData\Local\VirtualStore
2020-07-20 20:52 - 2020-07-20 20:52 - 000000000 ____D C:\Users\Gil\AppData\Local\Google
2020-07-20 20:52 - 2020-07-20 20:52 - 000000000 ____D C:\Users\Gil\AppData\Local\Dell
2020-07-20 20:51 - 2020-07-20 20:52 - 000000000 ____D C:\Users\Gil\AppData\Local\ConnectedDevicesPlatform
2020-07-20 20:51 - 2020-07-20 20:52 - 000000000 ____D C:\Users\Gil
2020-07-20 20:51 - 2020-07-20 20:51 - 000000020 ___SH C:\Users\Gil\ntuser.ini
2020-07-20 20:51 - 2019-03-18 23:46 - 000001105 _____ C:\Users\Gil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-07-20 20:46 - 2020-07-20 20:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\S-1-5-21-1505549421-2506334975-1048970357-1001
2020-07-20 20:45 - 2020-07-20 20:45 - 000000000 _____ C:\WINDOWS\invcol.tmp
2020-07-20 20:12 - 2020-07-20 20:12 - 000010139 _____ C:\Users\Gilberto\Desktop\ZHPCleaner (R).html
2020-07-20 20:12 - 2020-07-20 20:12 - 000003337 _____ C:\Users\Gilberto\Desktop\ZHPCleaner (R).txt
2020-07-20 20:05 - 2020-07-20 20:05 - 000009588 _____ C:\Users\Gilberto\Desktop\ZHPCleaner (S).html
2020-07-20 20:05 - 2020-07-20 20:05 - 000002985 _____ C:\Users\Gilberto\Desktop\ZHPCleaner (S).txt
2020-07-20 19:56 - 2020-07-20 20:12 - 000000000 ____D C:\Users\Gilberto\AppData\Roaming\ZHP
2020-07-20 19:56 - 2020-07-20 19:56 - 000000927 _____ C:\Users\Gilberto\Desktop\ZHPCleaner.lnk
2020-07-20 19:56 - 2020-07-20 19:56 - 000000000 ____D C:\Users\Gilberto\AppData\Local\ZHP
2020-07-20 19:44 - 2020-07-20 19:44 - 000000000 ____D C:\Users\Gilberto\AppData\Roaming\Skype
2020-07-20 19:39 - 2020-07-20 19:39 - 000003182 _____ C:\WINDOWS\system32\Tasks\AdwCleaner_onReboot
2020-07-20 19:33 - 2020-07-20 19:38 - 000000000 ____D C:\AdwCleaner
2020-07-20 18:15 - 2020-07-20 18:15 - 000001929 _____ C:\Users\Gilberto\Desktop\malware.txt
2020-07-19 11:05 - 2020-07-19 11:05 - 003310976 _____ (Nicolas Coolman) C:\Users\Gilberto\Downloads\ZHPCleaner.exe
2020-07-19 11:03 - 2020-07-19 11:05 - 008420016 _____ (Malwarebytes) C:\Users\Gilberto\Downloads\adwcleaner_8.0.6.exe
2020-07-19 01:09 - 2020-07-20 20:59 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2020-07-19 00:33 - 2020-07-19 00:33 - 000027855 _____ C:\Users\Gilberto\Downloads\8142E661-67AA-48F3-9C3E-97F5599B1767.pdf
2020-07-19 00:32 - 2020-07-19 00:32 - 000027885 _____ C:\Users\Gilberto\Downloads\BF144A35-4AAE-4CED-9E26-53BB7661DD9C.pdf
2020-07-19 00:32 - 2020-07-19 00:32 - 000027834 _____ C:\Users\Gilberto\Downloads\97A1DCF2-7C91-4B87-9EB1-D87902C79992.pdf
2020-07-19 00:32 - 2020-07-19 00:32 - 000027675 _____ C:\Users\Gilberto\Downloads\6F6184DC-8B04-4D3F-B25F-0622C125726D.pdf
2020-07-19 00:31 - 2020-07-19 00:31 - 000027929 _____ C:\Users\Gilberto\Downloads\CC26E470-6C90-4428-8B38-803C54141AC9.pdf
2020-07-18 18:10 - 2020-07-18 18:10 - 025902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 022641664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 019851776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 019812864 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 018031104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 008015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 007823912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 007269376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 007012864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 006523856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 006292992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 005765648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 005099384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 004129424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 002799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-07-18 18:10 - 2020-07-18 18:10 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 001952880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 001665728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 001581568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 001495040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 001477632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 001420328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 001397568 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-07-18 18:10 - 2020-07-18 18:10 - 001346048 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 001344512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 001307136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 001284608 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 001265152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 001195008 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 001125376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CBDHSvc.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-07-18 18:10 - 2020-07-18 18:10 - 001009152 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000995840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000967680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000945176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000898048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000891392 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000875008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000783488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-07-18 18:10 - 2020-07-18 18:10 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000685384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000673448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-07-18 18:10 - 2020-07-18 18:10 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000653824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000538664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000453944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-07-18 18:10 - 2020-07-18 18:10 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000442096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000406992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000405944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000387584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000380224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000345560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-07-18 18:10 - 2020-07-18 18:10 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PickerPlatform.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000268552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConsoleLogon.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2020-07-18 18:10 - 2020-07-18 18:10 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2020-07-18 18:10 - 2020-07-18 18:10 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagSvc.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000199496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-07-18 18:10 - 2020-07-18 18:10 - 000196096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000193600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000190056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2020-07-18 18:10 - 2020-07-18 18:10 - 000186368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdigest.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Clipboard.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000176952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Management.Workplace.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWSDAHost.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000150336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2020-07-18 18:10 - 2020-07-18 18:10 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowService.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWSDAHost.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EaseOfAccessDialog.exe
2020-07-18 18:10 - 2020-07-18 18:10 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sethc.exe
2020-07-18 18:10 - 2020-07-18 18:10 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiverExt.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\keyiso.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Print.Workflow.Source.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiverExt.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-07-18 18:10 - 2020-07-18 18:10 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-07-18 18:10 - 2020-07-18 18:10 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowProxy.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-07-18 18:10 - 2020-07-18 18:10 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-07-18 18:10 - 2020-07-18 18:10 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-07-18 18:10 - 2020-07-18 18:10 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-07-18 18:10 - 2020-07-18 18:10 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-07-18 18:10 - 2020-07-18 18:10 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-07-18 18:10 - 2020-07-18 18:10 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-07-18 18:10 - 2020-07-18 18:10 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-07-18 18:10 - 2020-07-18 18:10 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-07-18 18:10 - 2020-07-18 18:10 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-07-18 18:10 - 2020-07-18 18:10 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-07-18 18:10 - 2020-07-18 18:10 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-07-18 18:10 - 2020-07-18 18:10 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-07-18 18:09 - 2020-07-18 18:10 - 001991592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 014820352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 009931576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-07-18 18:09 - 2020-07-18 18:09 - 007917408 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 007850288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 007268640 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 006437376 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 006169088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 006089512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 005946368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 005111808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 004565264 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-07-18 18:09 - 2020-07-18 18:09 - 004014592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 003974368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-07-18 18:09 - 2020-07-18 18:09 - 003800576 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 003748352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 003743048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 003727360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-07-18 18:09 - 2020-07-18 18:09 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 002768984 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 002737664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-07-18 18:09 - 2020-07-18 18:09 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 002552120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 002505496 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 002467840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 002448712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 002357248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 002285056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 002264064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 002237096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 002161664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 002087168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 002074112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 001946144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 001918464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 001877504 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 001827328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 001821696 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 001787392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 001764336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2020-07-18 18:09 - 2020-07-18 18:09 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll