Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-04-2021 Ran by Pepinaso (administrator) on DESKTOP-33RB2E0 (Dell Inc. XPS 8930) (16-04-2021 20:21:26) Running from C:\Users\Pepinaso\Desktop Loaded Profiles: Pepinaso Platform: Windows 10 Home Version 20H2 19042.928 (X64) Language: English (United States) -> English (United Kingdom) Default browser: Chrome Boot Mode: Normal ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (CYBERLINK CORPORATION.) C:\Program Files\WindowsApps\DB6EA5DB.Power2GoforDell_11.0.3920.0_x86__mcezb6ze687jp\Power2Go11\CLMLSvc_P2G11.exe (Dell Inc -> ) C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe (Dell Inc -> Dell INC.) C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe (Dell Inc -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\nvapiw.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (Evgeny Suslikov -> hxxps://getfireshot.com) C:\Users\Pepinaso\AppData\Roaming\FireShot\0.98.98\fireshot-chrome-plugin.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <14> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_2dadf80722c4f751\igfxCUIService.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_2dadf80722c4f751\igfxEM.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_2dadf80722c4f751\IntelCpHDCPSvc.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_2dadf80722c4f751\IntelCpHeciSvc.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_f881c4be237ce854\RstMwService.exe (Intel(R) Software Development Products -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_62a0e7f4cd3e6c99\aesm_service.exe (Intel(R) Trust Services -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\SocketHeciServer.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxOutlook.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxTsr.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12101.1001.14.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Windows -> ) C:\Windows\System32\EoAExperiences.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\NisSrv.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvddi.inf_amd64_f3fdc49044533477\Display.NvContainer\NVDisplay.Container.exe <2> (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7240.285\DSAPI.exe (Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2> (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Rivet Networks LLC -> Rivet Networks LLC) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtility.exe (Rivet Networks LLC -> Rivet Networks) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe (Rivet Networks LLC -> Rivet Networks) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe (Rivet Networks LLC -> Rivet Networks, LLC.) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe (Rivet Networks LLC) C:\Program Files\WindowsApps\RivetNetworks.KillerControlCenter_2.2.3267.0_x64__rh07ty8m5nkag\KillerControlCenter_v2\KillerControlCenter.exe (Scarlet.Crush Productions) [File not signed] D:\Programs\Game resources\ScpServer\ScpServer\bin\ScpService.exe (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe (Wondershare Technology Co.,Ltd -> Wondershare) C:\ProgramData\Wondershare\Service\InstallAssistService.exe ==================== Registry (Whitelisted) =================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11102816 2021-01-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3618096 2021-01-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [DellMobileConnectWelcome] => C:\Program Files\Dell\DellMobileConnectDrivers\DellMobileConnectWStartup.exe [340480 2018-08-26] (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320056 2019-12-10] (Intel(R) Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [1236688 2020-12-04] (Waves Inc -> Waves Audio Ltd.) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7991528 2021-04-12] (Dropbox, Inc -> Dropbox, Inc.) HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [452016 2011-01-15] (Canon Inc. -> CANON INC.) HKLM-x32\...\Run: [MyBackupPC] => C:\Program Files (x86)\MyBackupPC\mybackuppc.exe [170791 2015-11-03] (Rerware LLC) [File not signed] HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [601784 2020-05-13] (Razer USA Ltd. -> Razer Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation) HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [1941368 2021-04-13] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [1941368 2021-04-13] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-153542611-3615973289-1248043461-1001\...\Run: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [1941368 2021-04-13] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-153542611-3615973289-1248043461-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [90952568 2020-10-09] (Skype Software Sarl -> Skype Technologies S.A.) HKU\S-1-5-21-153542611-3615973289-1248043461-1001\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler HKU\S-1-5-21-153542611-3615973289-1248043461-1001\...\Policies\system: [DisableLockWorkstation] 0 HKU\S-1-5-21-153542611-3615973289-1248043461-1002\...\Run: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [1941368 2021-04-13] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-18\...\Policies\system: [DisableLockWorkstation] 0 HKLM\...\Windows x64\Print Processors\Canon MG6200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDAU.DLL [30208 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor MG6200 series: C:\Windows\system32\CNMLMAU.DLL [385024 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJNP Port: C:\Windows\system32\CNMN6PPM.DLL [359936 2012-06-14] (CANON INC.) [File not signed] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\89.0.4389.128\Installer\chrmstp.exe [2021-04-15] (Google LLC -> Google LLC) Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION ==================== Scheduled Tasks (Whitelisted) ============ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {03E06751-826B-4603-BD40-B111718F075D} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-28] (NVIDIA Corporation -> NVIDIA Corporation) Task: {099103F3-3D59-4751-8052-74C92FAA7B5B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141160 2021-04-16] (Microsoft Corporation -> Microsoft Corporation) Task: {1932B5F2-75A1-424B-9E58-97FCBFCE8B94} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-13] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {20C809FD-7AB9-485C-901C-ADAB6256FE9C} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141160 2021-04-16] (Microsoft Corporation -> Microsoft Corporation) Task: {297B47DF-E49A-4EAD-A28E-F237DBC81F24} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-22] (Google Inc -> Google Inc.) Task: {3422A22A-2D7E-4011-83A4-9156B0626128} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-11-17] (Dropbox, Inc -> Dropbox, Inc.) Task: {3D71F065-337B-47C9-B7D2-62FE6258862F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-13] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {48D44291-F293-468B-94B0-DC2BC9DB1B52} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-13] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {51F1D073-476D-445D-989C-0B6661083307} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-13] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {5A555DFB-375A-4C95-8CF9-254CEADE3076} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-01-28] (NVIDIA Corporation -> NVIDIA Corporation) Task: {65FC4D40-AA68-44BC-B8C7-2260C2E23449} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23248792 2021-04-07] (Microsoft Corporation -> Microsoft Corporation) Task: {682319F3-7769-41DB-9132-B964CC612804} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-11-17] (Dropbox, Inc -> Dropbox, Inc.) Task: {7125C1B5-BC33-4AE9-8E40-600BAD4A844C} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [2884984 2021-04-13] (Microsoft Corporation -> Microsoft Corporation) Task: {7A18BE1B-7552-41FC-9F49-FB48998140FA} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistInstaller.exe [1059336 2021-01-09] (Dell Inc -> Dell Inc.) Task: {823C4C9A-875E-4EEE-8455-443076FF19B2} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646896 2021-01-28] (NVIDIA Corporation -> NVIDIA Corporation) Task: {9B3B3B61-1DB3-483E-8E0E-3BD668C046C0} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23248792 2021-04-07] (Microsoft Corporation -> Microsoft Corporation) Task: {9CBBFA0E-0776-4A3B-85BE-54A42D50B482} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5255600 2021-04-16] (Microsoft Corporation -> Microsoft Corporation) Task: {A05227D4-6005-446F-99EC-C85AFE59A1E8} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-01-28] (NVIDIA Corporation -> NVIDIA Corporation) Task: {B053F918-9386-4DD9-8D41-0545E860295C} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302128 2021-01-28] (NVIDIA Corporation -> NVIDIA Corporation) Task: {B95D0D7F-ADF3-4F23-A16C-BD9730DF1580} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [694752 2021-02-26] (Mozilla Corporation -> Mozilla Foundation) Task: {BA54908D-C29B-474D-A435-B513F6A7A4EF} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-01-12] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {BECDE22D-6D16-473B-926E-385B71961A08} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-28] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C4E100DC-EC8B-42DC-A3CF-9859D89215C8} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-28] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C77AF200-E9D6-43DF-8426-4D03F21C7706} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-01-12] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {CEF8C236-C8D6-4E89-8EDF-94986E7D8D82} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5255600 2021-04-16] (Microsoft Corporation -> Microsoft Corporation) Task: {FD85BE00-DB7D-422B-A188-A23CE080DD31} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-22] (Google Inc -> Google Inc.) Task: {FED27294-C628-4E9A-AB60-019ABD9C1CA1} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-28] (NVIDIA Corporation -> NVIDIA Corporation) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 192.168.20.1 0.0.0.0 Tcpip\..\Interfaces\{53770182-6d40-42ac-abb8-3d2bcdb4067c}: [DhcpNameServer] 192.168.20.1 0.0.0.0 Tcpip\..\Interfaces\{54622783-9511-467c-a339-933b50c081a2}: [DhcpNameServer] 192.168.20.1 0.0.0.0 Edge: ======= DownloadDir: C:\Users\Pepinaso\Downloads Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found] Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found] Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found] Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found] Edge DefaultProfile: Default Edge Profile: C:\Users\Pepinaso\AppData\Local\Microsoft\Edge\User Data\Default [2021-04-16] Edge DownloadDir: C:\Users\Pepinaso\Downloads Edge StartupUrls: Default -> "hxxps://google.com.au/" FireFox: ======== FF DefaultProfile: ua1sipfp.default FF ProfilePath: C:\Users\Pepinaso\AppData\Roaming\Mozilla\Firefox\Profiles\ua1sipfp.default [2021-04-15] FF DownloadDir: D:\Downloads FF Homepage: Mozilla\Firefox\Profiles\ua1sipfp.default -> www.google.com.au FF Notifications: Mozilla\Firefox\Profiles\ua1sipfp.default -> hxxps://web.whatsapp.com; hxxps://theaussieenglishclassroom.com FF Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\Pepinaso\AppData\Roaming\Mozilla\Firefox\Profiles\ua1sipfp.default\Extensions\@windscribeff.xpi [2021-02-26] FF Extension: (MyJDownloader Browser Extension) - C:\Users\Pepinaso\AppData\Roaming\Mozilla\Firefox\Profiles\ua1sipfp.default\Extensions\jid1-OY8Xu5BsKZQa6A@jetpack.xpi [2021-02-26] [UpdateUrl:hxxps://my.jdownloader.org/extensions/firefox.json] FF Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\Pepinaso\AppData\Roaming\Mozilla\Firefox\Profiles\ua1sipfp.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-02-08] FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-03-06] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-05] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-05] (VideoLAN -> VideoLAN) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [No File] FF Plugin-x32: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-01-25] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-01-25] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-03-06] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File] Chrome: ======= CHR Profile: C:\Users\Pepinaso\AppData\Local\Google\Chrome\User Data\Default [2021-04-16] CHR DownloadDir: D:\Downloads CHR Notifications: Default -> hxxps://shop.samsung.com; hxxps://www.bootbarn.com CHR HomePage: Default -> hxxp://www.google.com.au/ CHR StartupUrls: Default -> "hxxp://www.google.com.au/" CHR Extension: (Slides) - C:\Users\Pepinaso\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-11-22] CHR Extension: (Docs) - C:\Users\Pepinaso\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-11-22] CHR Extension: (Google Drive) - C:\Users\Pepinaso\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21] CHR Extension: (YouTube) - C:\Users\Pepinaso\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-11-22] CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Pepinaso\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-01-29] CHR Extension: (MyJDownloader Browser Extension) - C:\Users\Pepinaso\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip [2020-11-20] CHR Extension: (Sheets) - C:\Users\Pepinaso\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-11-22] CHR Extension: (Google Docs Offline) - C:\Users\Pepinaso\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-04-15] CHR Extension: (Take Webpage Screenshots Entirely - FireShot) - C:\Users\Pepinaso\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [2020-08-02] CHR Extension: (Chrome Web Store Payments) - C:\Users\Pepinaso\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Gmail) - C:\Users\Pepinaso\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23] CHR Extension: (Chrome Media Router) - C:\Users\Pepinaso\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-13] CHR Profile: C:\Users\Pepinaso\AppData\Local\Google\Chrome\User Data\System Profile [2021-04-15] ==================== Services (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8788392 2021-04-07] (Microsoft Corporation -> Microsoft Corporation) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-11-17] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-11-17] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44272 2021-04-12] (Dropbox, Inc -> Dropbox, Inc.) R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [287776 2020-10-25] (Dell Technologies Inc. -> Dell Technologies Inc.) R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3750944 2020-10-25] (Dell Technologies Inc. -> Dell Technologies Inc.) R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [507936 2020-10-25] (Dell Technologies Inc. -> Dell Technologies Inc.) R2 Dell Digital Delivery Services; C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe [48832 2020-11-19] (Dell Inc -> ) R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7240.285\DSAPI.exe [985584 2021-03-01] (PC-Doctor, Inc. -> PC-Doctor, Inc.) R2 Dell SupportAssist Remediation; C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe [19128 2021-04-01] (Dell Inc -> Dell INC.) R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [38592 2021-01-19] (Dell Inc -> ) R2 Ds3Service; D:\Programs\Game resources\ScpServer\ScpServer\bin\ScpService.exe [381952 2014-04-03] (Scarlet.Crush Productions) [File not signed] S3 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\21.052.0314.0001\FileSyncHelper.exe [2218872 2021-04-13] (Microsoft Corporation -> Microsoft Corporation) S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [410864 2021-01-25] (NVIDIA Corporation -> NVIDIA) S3 KAPSService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KAPSService.exe [73928 2020-04-16] (Rivet Networks LLC -> Rivet Networks, LLC.) R2 Killer Analytics Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe [1775840 2020-04-16] (Rivet Networks LLC -> Rivet Networks) R2 Killer Network Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2663128 2020-04-16] (Rivet Networks LLC -> Rivet Networks) S3 KNDBWM; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe [73928 2020-04-16] (Rivet Networks LLC -> Rivet Networks, LLC.) S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-04-16] (Malwarebytes Inc -> Malwarebytes) S3 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\21.052.0314.0001\OneDriveUpdaterService.exe [2603368 2021-04-13] (Microsoft Corporation -> Microsoft Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2466608 2019-11-19] (Electronic Arts, Inc. -> Electronic Arts) S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3344176 2019-11-19] (Electronic Arts, Inc. -> Electronic Arts) R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [39432 2021-01-09] (Dell Inc -> Dell Inc.) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\NisSrv.exe [2624104 2021-04-13] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MsMpEng.exe [128376 2021-04-13] (Microsoft Windows Publisher -> Microsoft Corporation) R2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [230176 2020-01-16] (Wondershare Technology Co.,Ltd -> Wondershare) S2 xTendSoftAPService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\xTendSoftAPService.exe [73944 2020-04-16] (Rivet Networks LLC -> Rivet Networks, LLC.) R2 xTendUtilityService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe [73944 2020-04-16] (Rivet Networks LLC -> Rivet Networks, LLC.) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvddi.inf_amd64_f3fdc49044533477\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvddi.inf_amd64_f3fdc49044533477\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Drivers (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 DBUtilDrv2; C:\WINDOWS\System32\drivers\DBUtilDrv2.sys [27896 2021-04-16] (WDKTestCert Amit_K_Tiwari,132158070448517957 -> ) R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [42376 2020-10-25] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.) S3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [41208 2018-05-09] (Techporch Incorporated -> Dell Computer Corporation) S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [226984 2018-05-02] (McAfee, Inc. -> McAfee, Inc.) R3 KfeCoSvc; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KfeCo10X64.sys [187848 2020-04-16] (Rivet Networks LLC -> Rivet Networks, LLC.) S3 libusbK; C:\WINDOWS\System32\drivers\libusbK.sys [47200 2020-07-30] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-04-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-04-16] (Malwarebytes Inc -> Malwarebytes) R2 npf; C:\WINDOWS\system32\drivers\npf.sys [36600 2018-12-25] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) S3 rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [50392 2015-08-14] (Razer Inc. -> Razer Inc) R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions) S3 SliceDisk5; C:\Program Files\A-FF Find and Mount\slicedisk-x64.sys [31824 2011-02-25] (OOO Sfera-Tehno -> Atola) [File not signed] S3 tapwindscribe0901; C:\WINDOWS\System32\drivers\tapwindscribe0901.sys [54896 2018-07-06] (Windscribe Limited -> The OpenVPN Project) S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2018-02-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.) S3 VKbms; C:\WINDOWS\System32\drivers\VKbms.sys [13312 2010-09-30] (G-SPY Co., Ltd. -> Windows (R) Win 7 DDK provider) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-04-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [421088 2021-04-13] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72928 2021-04-13] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One month (created) (Whitelisted) ========= (If an entry is included in the fixlist, the file/folder will be moved.) 2021-04-16 16:07 - 2021-04-16 16:07 - 000027896 _____ C:\WINDOWS\system32\Drivers\DBUtilDrv2.sys 2021-04-16 09:51 - 2021-04-16 09:51 - 000000000 ____D C:\Users\Pepinaso\AppData\Local\mbam 2021-04-16 09:50 - 2021-04-16 09:50 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2021-04-16 09:50 - 2021-04-16 09:50 - 000199128 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2021-04-16 09:50 - 2021-04-16 09:50 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2021-04-16 09:50 - 2021-04-16 09:50 - 000002043 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2021-04-16 09:50 - 2021-04-16 09:50 - 000002031 _____ C:\ProgramData\Desktop\Malwarebytes.lnk 2021-04-16 09:50 - 2021-04-16 09:50 - 000000000 ____D C:\ProgramData\Malwarebytes 2021-04-16 09:49 - 2021-04-16 09:49 - 000000000 ____D C:\Program Files\Malwarebytes 2021-04-16 09:47 - 2021-04-16 09:47 - 002078632 _____ (Malwarebytes) C:\Users\Pepinaso\Desktop\MBSetup.exe 2021-04-16 09:43 - 2021-04-16 20:10 - 000000000 ____D C:\AdwCleaner 2021-04-16 09:42 - 2021-04-16 09:42 - 008534696 _____ (Malwarebytes) C:\Users\Pepinaso\Desktop\AdwCleaner.exe 2021-04-16 09:36 - 2021-04-16 09:36 - 000000000 ____D C:\Users\larac\AppData\LocalLow\Intel 2021-04-16 09:36 - 2021-04-16 09:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2021-04-15 10:22 - 2021-04-15 10:22 - 000000008 __RSH C:\ProgramData\ntuser.pol 2021-04-15 10:19 - 2021-04-15 10:21 - 000006116 _____ C:\Users\Pepinaso\Desktop\Fixlog.txt 2021-04-15 10:02 - 2021-04-15 10:02 - 002298368 _____ (Farbar) C:\Users\Pepinaso\Desktop\FRST64.exe 2021-04-15 10:02 - 2021-04-15 10:02 - 000000000 ____D C:\Users\Pepinaso\Desktop\FRST-OlderVersion 2021-04-15 09:27 - 2021-04-15 09:27 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2021-04-15 09:27 - 2021-04-15 09:27 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll 2021-04-15 09:27 - 2021-04-15 09:27 - 000011357 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-04-13 08:34 - 2021-04-13 08:34 - 000003206 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2021-04-13 08:34 - 2021-04-13 08:34 - 000002186 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-04-12 20:51 - 2021-04-12 20:51 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys 2021-04-12 20:51 - 2021-04-12 20:51 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys 2021-04-12 20:51 - 2021-04-12 20:51 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys 2021-04-12 20:51 - 2021-04-12 20:51 - 000044272 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2021-04-12 08:31 - 2021-04-12 10:19 - 000061483 _____ C:\Users\Pepinaso\Desktop\Addition.txt 2021-04-12 08:30 - 2021-04-16 20:21 - 000032814 _____ C:\Users\Pepinaso\Desktop\FRST.txt 2021-04-12 07:37 - 2021-04-12 07:37 - 000000000 ____D C:\Users\Pepinaso\AppData\LocalLow\Intel 2021-04-12 07:36 - 2021-04-15 10:22 - 000441760 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-04-07 17:21 - 2021-04-07 17:21 - 000000000 ____D C:\Users\Pepinaso\Documents\Zoom 2021-04-06 01:22 - 2021-01-18 08:09 - 000161384 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll 2021-04-06 01:22 - 2021-01-18 08:09 - 000136888 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll 2021-04-06 01:22 - 2021-01-18 08:08 - 001781616 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2021-04-06 01:22 - 2021-01-18 08:08 - 001781616 _____ C:\WINDOWS\system32\vulkaninfo.exe 2021-04-06 01:22 - 2021-01-18 08:08 - 001377648 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2021-04-06 01:22 - 2021-01-18 08:08 - 001377648 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2021-04-06 01:22 - 2021-01-18 08:08 - 001087704 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2021-04-06 01:22 - 2021-01-18 08:08 - 001087704 _____ C:\WINDOWS\system32\vulkan-1.dll 2021-04-06 01:22 - 2021-01-18 08:08 - 000940760 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2021-04-06 01:22 - 2021-01-18 08:08 - 000940760 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2021-04-06 01:22 - 2021-01-18 08:08 - 000499096 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2021-04-06 01:22 - 2021-01-18 08:08 - 000419224 _____ C:\WINDOWS\system32\ze_loader.dll 2021-04-06 01:22 - 2021-01-18 08:08 - 000361880 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2021-04-06 01:22 - 2021-01-18 08:08 - 000285592 _____ C:\WINDOWS\system32\igfxCPL.cpl 2021-04-06 01:22 - 2021-01-18 08:08 - 000140184 _____ C:\WINDOWS\system32\ze_validation_layer.dll 2021-04-03 16:33 - 2021-04-03 16:33 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla ==================== One month (modified) ================== (If an entry is included in the fixlist, the file/folder will be moved.) 2021-04-16 20:21 - 2020-01-25 08:08 - 000000000 ____D C:\FRST 2021-04-16 20:18 - 2020-07-31 08:37 - 001781530 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-04-16 20:18 - 2020-07-30 20:52 - 000790712 _____ C:\WINDOWS\system32\perfh00A.dat 2021-04-16 20:18 - 2020-07-30 20:52 - 000157464 _____ C:\WINDOWS\system32\perfc00A.dat 2021-04-16 20:18 - 2019-12-07 19:13 - 000000000 ____D C:\WINDOWS\INF 2021-04-16 20:15 - 2019-04-06 20:08 - 000000000 ____D C:\Program Files (x86)\Dell Digital Delivery Services 2021-04-16 20:15 - 2018-11-07 09:37 - 000000000 ____D C:\ProgramData\NVIDIA 2021-04-16 20:13 - 2020-11-18 16:41 - 000008192 ___SH C:\DumpStack.log.tmp 2021-04-16 20:13 - 2020-07-31 08:37 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-04-16 20:13 - 2019-12-07 19:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-04-16 20:13 - 2019-12-07 19:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2021-04-16 20:13 - 2018-11-15 12:28 - 000000000 __SHD C:\Users\Pepinaso\IntelGraphicsProfiles 2021-04-16 20:13 - 2018-11-07 09:31 - 000000000 ____D C:\Intel 2021-04-16 19:48 - 2020-07-31 08:30 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-04-16 10:24 - 2018-11-15 13:25 - 000000000 ____D C:\Users\Pepinaso\AppData\Local\CrashDumps 2021-04-16 09:59 - 2019-12-07 19:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-04-16 09:59 - 2019-12-07 19:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-04-16 09:50 - 2019-12-07 19:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2021-04-16 09:40 - 2018-12-08 12:55 - 000000000 ____D C:\Program Files\Microsoft Office 2021-04-16 09:39 - 2020-08-01 18:35 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-04-16 09:36 - 2019-02-21 08:30 - 000000000 ___RD C:\Users\larac\OneDrive 2021-04-16 09:36 - 2018-11-17 07:59 - 000000000 ____D C:\Program Files (x86)\Dropbox 2021-04-16 09:35 - 2019-02-21 05:21 - 000000000 __SHD C:\Users\larac\IntelGraphicsProfiles 2021-04-15 17:20 - 2019-01-31 05:15 - 000000000 ____D C:\ProgramData\Mozilla 2021-04-15 17:20 - 2018-11-15 12:44 - 000000000 ____D C:\Users\Pepinaso\AppData\LocalLow\Mozilla 2021-04-15 17:08 - 2021-02-26 17:57 - 000000000 ____D C:\Program Files\Mozilla Firefox 2021-04-15 10:21 - 2019-12-07 19:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2021-04-15 10:21 - 2019-12-07 19:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-04-15 10:21 - 2019-12-07 19:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-04-15 10:21 - 2019-12-07 19:14 - 000000000 ____D C:\WINDOWS\system32\setup 2021-04-15 10:21 - 2019-12-07 19:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-04-15 10:21 - 2019-12-07 19:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2021-04-15 10:21 - 2019-12-07 19:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2021-04-15 10:21 - 2019-12-07 19:14 - 000000000 ____D C:\WINDOWS\system32\et-EE 2021-04-15 10:21 - 2019-12-07 19:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2021-04-15 10:21 - 2019-12-07 19:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-04-15 10:21 - 2019-12-07 19:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-04-15 10:21 - 2019-12-07 19:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-04-15 10:21 - 2019-03-06 16:35 - 000000000 ____D C:\Users\larac\AppData\LocalLow\Temp 2021-04-15 10:19 - 2019-12-07 19:14 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy 2021-04-15 10:19 - 2018-04-12 09:38 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy 2021-04-15 09:29 - 2019-12-07 19:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-04-15 09:27 - 2020-07-31 08:32 - 002877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2021-04-15 09:25 - 2020-08-01 18:35 - 000003480 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-04-15 09:25 - 2020-08-01 18:35 - 000003356 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-04-15 09:25 - 2018-11-22 05:39 - 000002305 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-04-15 09:20 - 2018-11-16 11:56 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-04-15 09:18 - 2018-11-16 11:56 - 131963968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-04-13 09:09 - 2018-11-07 09:31 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-04-13 08:45 - 2020-02-21 08:32 - 000000000 ____D C:\Program Files (x86)\Microsoft OneDrive 2021-04-13 08:43 - 2020-03-01 11:49 - 000000000 ___HD C:\Program Files\qemu 2021-04-13 08:34 - 2018-11-15 12:30 - 000000000 ___RD C:\Users\Pepinaso\OneDrive 2021-04-12 08:03 - 2020-11-19 16:20 - 000000000 ____D C:\Program Files\DIFX 2021-04-12 07:58 - 2018-11-07 09:36 - 000000000 ____D C:\ProgramData\Package Cache 2021-04-12 07:57 - 2018-11-07 09:35 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2021-04-12 07:55 - 2020-06-21 15:54 - 000000000 ____D C:\Enterprise19ED 2021-04-12 07:45 - 2020-05-02 12:28 - 000000000 ____D C:\Users\Pepinaso\Documents\My Digital Editions 2021-04-12 07:41 - 2018-11-15 14:34 - 000000000 ____D C:\ProgramData\Adobe 2021-04-12 07:36 - 2018-11-15 12:44 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2021-04-08 12:30 - 2020-10-25 15:08 - 000000000 ____D C:\Users\Pepinaso\AppData\Roaming\vlc 2021-04-07 15:46 - 2020-07-30 20:24 - 000000000 ___DC C:\WINDOWS\Panther 2021-04-03 16:33 - 2018-11-15 12:44 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2021-03-30 09:27 - 2019-02-21 05:21 - 000000000 ____D C:\Users\larac\AppData\Local\Packages ==================== Files in the root of some directories ======== 2019-06-18 11:02 - 2019-06-18 11:02 - 000535552 _____ (Dirección General de la Policía) C:\Users\Pepinaso\AppData\Local\DNIeService.exe ==================== SigCheck ============================ (There is no automatic fix for files that do not pass verification.) ==================== End of FRST.txt ========================