Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Screen Glitches, slow response time, and freezes


  • Please log in to reply

#1
RJ7887

RJ7887

    Member

  • Member
  • PipPip
  • 96 posts

Good Morning,

 

I am having issues with my Windows 10 64-bit computer. Occasionally, the screen will glitch out and bounces up and down on the monitor until I CTRL-ALT-DEL it away. Sometimes the computer out right freezes and other times the response time is very slow. When typing, the text doesn't show for sometimes up to a minute. 

Please let me know if you need any additional info. 

Thank you

 

FRST LOG:

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-12-2016
Ran by angie (administrator) on OFFICEPC (19-12-2016 11:11:18)
Running from C:\Users\angie\Desktop
Loaded Profiles: angie & MSSQL$PSK2013 (Available Profiles: UpdatusUser & angie & MSSQL$PSK2013)
Platform: Windows 10 Home Version 1607 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicShellService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\SA3\CxUtilSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Rosetta Stone Ltd.) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Atheros) C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McTA990.tmp
(Symantec Corporation) C:\Program Files (x86)\Norton Security Suite\Engine\22.8.1.14\n360.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL11.PSK2013\MSSQL\Binn\sqlservr.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe
(Dell Inc.) C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVault.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security Suite\Engine\22.8.1.14\n360.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.SmartMonitor.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\caudiofilteragent64.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Akamai Technologies, Inc.) C:\Users\angie\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\angie\AppData\Local\Akamai\netsession_win.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.469\SSScheduler.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PrivacyIconClient.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\MSOSYNC.EXE
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Security) C:\Program Files\Intel Security\True Key\application\truekey.exe
(Intel Security) C:\Program Files\Intel Security\True Key\application\truekey.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
 
==================== Registry (Whitelisted) ====================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1796056 2014-08-19] (NVIDIA Corporation)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [883840 2012-03-28] (Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SA3\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176952 2016-07-05] (Apple Inc.)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe [133440 2012-07-19] (Intel Corporation)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [285240 2012-09-01] (Intel Corporation)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [67384 2016-07-05] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-08-06] (Apple Inc.)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [143360 2012-09-06] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.)
HKU\S-1-5-21-2363693564-2664365946-1726940214-1002\...\Run: [Akamai NetSession Interface] => C:\Users\angie\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
HKU\S-1-5-80-500879465-1970453601-637845946-1438361160-1539855291\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2016-07-16] (Microsoft Corporation)
AppInit_DLLs: C:\PROGRA~2\KEYCRY~1\KEYCRY~4.DLL => C:\Program Files (x86)\KeyCryptSDK\KeyCrypt64(1).dll [85304 2013-03-07] (Zemana Ltd.)
AppInit_DLLs: ,C:\Windows\system32\nvinitx.dll => No File
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
ShellIconOverlayIdentifiers: [  OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Security Suite\Engine64\22.8.1.14\buShell.dll [2016-11-11] (Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Security Suite\Engine64\22.8.1.14\buShell.dll [2016-11-11] (Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Security Suite\Engine64\22.8.1.14\buShell.dll [2016-11-11] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\angie\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\amd64\FileSyncShell64.dll [2016-12-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\angie\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\amd64\FileSyncShell64.dll [2016-12-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\angie\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\amd64\FileSyncShell64.dll [2016-12-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\angie\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\FileSyncShell.dll [2016-12-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\angie\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\FileSyncShell.dll [2016-12-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\angie\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\FileSyncShell.dll [2016-12-09] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Constant Guard.lnk [2013-08-20]
ShortcutTarget: Constant Guard.lnk -> C:\Program Files (x86)\Constant Guard Protection Suite\IDVault.exe (White Sky, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2016-12-14]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.469\SSScheduler.exe (McAfee, Inc.)
Startup: C:\Users\angie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Send to OneNote.lnk [2015-01-06]
ShortcutTarget: Send to OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe (Microsoft Corporation)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 10.0.1.1
Tcpip\..\Interfaces\{008e5fdc-6023-4076-84ad-8fcbee3b8662}: [DhcpNameServer] 10.0.1.1
Tcpip\..\Interfaces\{43daf37a-d2ff-44d6-8437-febfa4ac94f5}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{bcbfec0f-4b55-430a-9462-4b7994e980d5}: [DhcpNameServer] 10.0.1.1
 
Internet Explorer:
==================
HKU\S-1-5-21-2363693564-2664365946-1726940214-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://xfinity.comcast.net/?cid=mtmh08242013
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-03-18] (Microsoft Corporation)
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security Suite\Engine64\22.8.1.14\coIEPlg.dll [2016-11-11] (Symantec Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-04-20] (Microsoft Corporation)
BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-11-02] (Intel Security)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security Suite\Engine\22.8.1.14\coIEPlg.dll [2016-11-11] (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Security Suite\Engine\21.7.0.11\IPS\IPSBHO.DLL => No File
BHO-x32: Constant Guard Protection Suite -> {B84CDBE7-1B46-494B-A188-01D4C52DEB61} -> C:\ProgramData\White Sky, Inc\ID Vault\IEBHO1.13.521.2\NativeBHO.dll [2013-05-23] (WhiteSky)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security Suite\Engine64\22.8.1.14\coIEPlg.dll [2016-11-11] (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security Suite\Engine\22.8.1.14\coIEPlg.dll [2016-11-11] (Symantec Corporation)
Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-11-02] (Intel Security)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
 
FireFox:
========
FF ProfilePath: C:\Users\angie\AppData\Roaming\Mozilla\Firefox\Profiles\o356ea0v.default [2016-12-19]
FF Homepage: Mozilla\Firefox\Profiles\o356ea0v.default -> hxxp://xfinity.comcast.net/?cid=mtmh09022013
FF Extension: (XFINITY Constant Guard Protection Suite) - C:\Users\angie\AppData\Roaming\Mozilla\Firefox\Profiles\o356ea0v.default\Extensions\[email protected] [2013-11-22] [not signed]
FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.2.15\coFFAddon
FF Extension: (Norton Security Toolbar) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.2.15\coFFAddon [2016-12-07]
FF HKLM-x32\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.2.15\coFFAddon
FF HKLM-x32\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\McAfee\MSK => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll [2016-11-17] ()
FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\mcafee\msc\npMcSnFFPl64.dll [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_23_0_0_207.dll [2016-11-17] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2016-10-06] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\msc\npMcSnFFPl.dll [No File]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2013-08-11] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2014-07-02] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2014-07-02] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
 
Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\angie\AppData\Local\Google\Chrome\User Data\Default [2016-12-19]
CHR Extension: (Norton Security Toolbar) - C:\Users\angie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2016-12-19]
CHR Extension: (Norton Identity Safe) - C:\Users\angie\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2015-04-24]
CHR Extension: (Chrome Web Store Payments) - C:\Users\angie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-08-02]
CHR Extension: (Chrome Media Router) - C:\Users\angie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-19]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security Suite\Engine\22.8.1.14\Exts\Chrome.crx [2016-11-19]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security Suite\Engine\22.8.1.14\Exts\Chrome.crx [2016-11-19]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
 
==================== Services (Whitelisted) ====================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.)
S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [File not signed]
R2 ClassicShellService; C:\Program Files\Classic Shell\ClassicShellService.exe [63488 2012-08-19] (IvoSoft) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2829552 2016-03-08] (Microsoft Corporation)
R2 CxUtilSvc; C:\Program Files\Conexant\SA3\CxUtilSvc.exe [109184 2011-10-11] (Conexant Systems, Inc.)
R2 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2572024 2016-03-10] (Dell Inc.)
R2 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [202488 2016-03-10] (Dell Inc.)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [337888 2016-05-03] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [166720 2012-07-19] (Intel Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.469\McCHSvc.exe [329480 2016-12-02] (McAfee, Inc.)
R2 MSSQL$PSK2013; c:\Program Files\Microsoft SQL Server\MSSQL11.PSK2013\MSSQL\Binn\sqlservr.exe [191064 2012-02-11] (Microsoft Corporation)
R2 N360; C:\Program Files (x86)\Norton Security Suite\Engine\22.8.1.14\N360.exe [289080 2016-11-11] (Symantec Corporation)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] ()
R2 SftService; C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe [1915408 2013-10-09] (SoftThinks SAS)
S4 SQLAgent$PSK2013; c:\Program Files\Microsoft SQL Server\MSSQL11.PSK2013\MSSQL\Binn\SQLAGENT.EXE [597080 2012-02-11] (Microsoft Corporation)
R2 SupportAssistAgent; C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [31928 2016-04-22] (Dell Inc.)
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [990656 2016-10-28] (McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16248 2016-10-28] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [86864 2016-10-28] (McAfee, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe [77824 2012-06-19] (Atheros) [File not signed]
S2 0311221482164877mcinstcleanup; C:\WINDOWS\TEMP\031122~1.EXE -cleanup -nolog [X]
 
===================== Drivers (Whitelisted) ======================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R1 AntiLog32; C:\Windows\system32\drivers\AntiLog64.sys [49240 2013-08-20] (Zemana Ltd.)
R1 BHDrvx64; C:\Program Files (x86)\Norton Security Suite\NortonData\22.5.2.15\Definitions\BASHDefs\20161215.001\BHDrvx64.sys [1874136 2016-11-07] (Symantec Corporation)
R1 ccSet_N360; C:\WINDOWS\system32\drivers\N360x64\1608010.00E\ccSetx64.sys [174328 2016-06-01] (Symantec Corporation)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R3 DDDriver; C:\WINDOWS\system32\drivers\DDDriver64Dcsa.sys [23760 2015-01-30] (Dell Computer Corporation)
R3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [24240 2015-05-22] (Dell Computer Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [497368 2016-10-04] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [156888 2016-10-04] (Symantec Corporation)
S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [197264 2012-05-28] (McAfee, Inc.)
R1 IDSVia64; C:\Program Files (x86)\Norton Security Suite\NortonData\22.5.2.15\Definitions\IPSDefs\20161216.005\IDSvia64.sys [1038032 2016-12-16] (Symantec Corporation)
R3 keycrypt; C:\WINDOWS\System32\DRIVERS\KeyCrypt64.sys [25784 2013-03-07] (Zemana Ltd.)
S3 mfencbdc; C:\WINDOWS\system32\DRIVERS\mfencbdc.sys [337120 2013-02-18] (McAfee, Inc.)
S3 mfencrk; C:\WINDOWS\system32\DRIVERS\mfencrk.sys [95856 2013-02-18] (McAfee, Inc.)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_desktop_ref4wu.inf_amd64_6e17fae58779a6b0\nvlddmkm.sys [13754936 2016-09-12] (NVIDIA Corporation)
U5 NvStUSB; C:\Windows\System32\Drivers\NvStUSB.sys [448288 2013-01-18] (NVIDIA Corporation)
S4 RsFx0200; C:\WINDOWS\System32\DRIVERS\RsFx0200.sys [334936 2012-02-11] (Microsoft Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [589824 2016-07-16] (Realtek                                            )
R1 SRTSP; C:\WINDOWS\System32\Drivers\N360x64\1608010.00E\SRTSP64.SYS [784624 2016-11-11] (Symantec Corporation)
R1 SRTSPX; C:\WINDOWS\system32\drivers\N360x64\1608010.00E\SRTSPX64.SYS [49400 2016-11-11] (Symantec Corporation)
R0 SymEFASI; C:\WINDOWS\System32\drivers\N360x64\1608010.00E\SYMEFASI64.SYS [1628888 2016-11-11] (Symantec Corporation)
S0 SymELAM; C:\WINDOWS\System32\drivers\N360x64\1608010.00E\SymELAM.sys [24192 2015-07-10] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [100592 2016-10-17] (Symantec Corporation)
R1 SymIRON; C:\WINDOWS\system32\drivers\N360x64\1608010.00E\Ironx64.SYS [289520 2016-11-11] (Symantec Corporation)
R1 SymNetS; C:\WINDOWS\System32\Drivers\N360x64\1608010.00E\SYMNETS.SYS [567512 2016-11-11] (Symantec Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2016-12-19 11:11 - 2016-12-19 11:11 - 00024326 _____ C:\Users\angie\Desktop\FRST.txt
2016-12-19 11:11 - 2016-12-19 11:11 - 00000000 ____D C:\FRST
2016-12-19 11:09 - 2016-12-19 11:10 - 02420224 _____ (Farbar) C:\Users\angie\Desktop\FRST64.exe
2016-12-19 09:34 - 2016-12-19 09:34 - 00000000 ___HD C:\OneDriveTemp
2016-12-19 08:42 - 2016-12-19 08:42 - 00000000 ____D C:\WINDOWS\System32\Tasks\Norton 360
2016-12-17 09:36 - 2016-12-17 09:36 - 00000000 ___RD C:\Users\angie\AppData\Roaming\Brother
2016-12-17 09:36 - 2016-12-17 09:36 - 00000000 ____D C:\Users\angie\AppData\LocalLow\Brother
2016-12-16 15:53 - 2016-12-16 15:53 - 00003446 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1d1eb6c902b2ce7
2016-12-16 15:53 - 2016-12-16 15:53 - 00003322 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1d1eb6c8ffb7da9
2016-12-16 09:52 - 2016-12-09 02:42 - 01637728 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-12-16 09:52 - 2016-12-09 02:42 - 00137568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-12-16 09:52 - 2016-12-09 02:34 - 01051112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-12-16 09:52 - 2016-12-09 02:34 - 00894096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-12-16 09:52 - 2016-12-09 02:33 - 01354320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-12-16 09:52 - 2016-12-09 02:33 - 01173496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-12-16 09:52 - 2016-12-09 02:32 - 07816032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-12-16 09:52 - 2016-12-09 02:30 - 00377184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-12-16 09:52 - 2016-12-09 02:29 - 02681200 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-12-16 09:52 - 2016-12-09 02:28 - 00764392 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-12-16 09:52 - 2016-12-09 02:27 - 00172528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-12-16 09:52 - 2016-12-09 02:20 - 02677544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-12-16 09:52 - 2016-12-09 02:20 - 02189664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-12-16 09:52 - 2016-12-09 02:20 - 01738560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-12-16 09:52 - 2016-12-09 02:20 - 00658784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-12-16 09:52 - 2016-12-09 02:20 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-12-16 09:52 - 2016-12-09 02:19 - 01293152 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-12-16 09:52 - 2016-12-09 02:19 - 00168424 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2016-12-16 09:52 - 2016-12-09 02:18 - 02913144 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-12-16 09:52 - 2016-12-09 02:18 - 01267512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-12-16 09:52 - 2016-12-09 02:18 - 01100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2016-12-16 09:52 - 2016-12-09 02:18 - 00989024 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2016-12-16 09:52 - 2016-12-09 02:18 - 00947552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
2016-12-16 09:52 - 2016-12-09 02:18 - 00811872 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2016-12-16 09:52 - 2016-12-09 02:18 - 00624048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-12-16 09:52 - 2016-12-09 02:15 - 08168000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-12-16 09:52 - 2016-12-09 02:15 - 01988560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-12-16 09:52 - 2016-12-09 02:14 - 01274712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-12-16 09:52 - 2016-12-09 02:14 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-12-16 09:52 - 2016-12-09 02:11 - 02048496 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-12-16 09:52 - 2016-12-09 02:10 - 01572768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2016-12-16 09:52 - 2016-12-09 02:10 - 01461200 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-12-16 09:52 - 2016-12-09 02:09 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2016-12-16 09:52 - 2016-12-09 02:01 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2016-12-16 09:52 - 2016-12-09 02:01 - 01503544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-12-16 09:52 - 2016-12-09 02:01 - 00861024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-12-16 09:52 - 2016-12-09 02:00 - 00106896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
2016-12-16 09:52 - 2016-12-09 01:59 - 02166752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-12-16 09:52 - 2016-12-09 01:59 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2016-12-16 09:52 - 2016-12-09 01:57 - 06668040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-12-16 09:52 - 2016-12-09 01:57 - 01852720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-12-16 09:52 - 2016-12-09 01:56 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-12-16 09:52 - 2016-12-09 01:52 - 01435896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-12-16 09:52 - 2016-12-09 01:52 - 01415752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2016-12-16 09:52 - 2016-12-09 01:51 - 00117240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2016-12-16 09:52 - 2016-12-09 01:47 - 22563328 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-12-16 09:52 - 2016-12-09 01:45 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-12-16 09:52 - 2016-12-09 01:45 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2016-12-16 09:52 - 2016-12-09 01:42 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-12-16 09:52 - 2016-12-09 01:41 - 00380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2016-12-16 09:52 - 2016-12-09 01:41 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2016-12-16 09:52 - 2016-12-09 01:40 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2016-12-16 09:52 - 2016-12-09 01:38 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-12-16 09:52 - 2016-12-09 01:37 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-12-16 09:52 - 2016-12-09 01:37 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-12-16 09:52 - 2016-12-09 01:37 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-12-16 09:52 - 2016-12-09 01:36 - 06285312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-12-16 09:52 - 2016-12-09 01:36 - 03059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-12-16 09:52 - 2016-12-09 01:36 - 00425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2016-12-16 09:52 - 2016-12-09 01:36 - 00410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-12-16 09:52 - 2016-12-09 01:36 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2016-12-16 09:52 - 2016-12-09 01:34 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-12-16 09:52 - 2016-12-09 01:34 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2016-12-16 09:52 - 2016-12-09 01:33 - 03777536 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-12-16 09:52 - 2016-12-09 01:33 - 01589760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2016-12-16 09:52 - 2016-12-09 01:32 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2016-12-16 09:52 - 2016-12-09 01:31 - 03689984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-12-16 09:52 - 2016-12-09 01:31 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2016-12-16 09:52 - 2016-12-09 01:31 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-12-16 09:52 - 2016-12-09 01:30 - 23677952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-12-16 09:52 - 2016-12-09 01:30 - 19413504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-12-16 09:52 - 2016-12-09 01:30 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-12-16 09:52 - 2016-12-09 01:29 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-12-16 09:52 - 2016-12-09 01:28 - 03306496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-12-16 09:52 - 2016-12-09 01:28 - 01004544 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-12-16 09:52 - 2016-12-09 01:27 - 19417088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-12-16 09:52 - 2016-12-09 01:27 - 13084160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-12-16 09:52 - 2016-12-09 01:27 - 05114368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-12-16 09:52 - 2016-12-09 01:27 - 00981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-12-16 09:52 - 2016-12-09 01:26 - 08129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-12-16 09:52 - 2016-12-09 01:26 - 01692672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-12-16 09:52 - 2016-12-09 01:25 - 00376832 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2016-12-16 09:52 - 2016-12-09 01:24 - 02275840 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-12-16 09:52 - 2016-12-09 01:23 - 12177920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-12-16 09:52 - 2016-12-09 01:22 - 02820096 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-12-16 09:52 - 2016-12-09 01:22 - 02688512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-12-16 09:52 - 2016-12-09 01:22 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-12-16 09:52 - 2016-12-09 01:21 - 04746752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-12-16 09:52 - 2016-12-09 01:21 - 03616768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-12-16 09:52 - 2016-12-09 01:21 - 01512960 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-12-16 09:52 - 2016-12-09 01:21 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-12-16 09:52 - 2016-12-09 01:20 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-12-16 09:52 - 2016-12-09 01:20 - 03198464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2016-12-16 09:52 - 2016-12-09 01:20 - 00730624 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-12-16 09:52 - 2016-12-09 01:20 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2016-12-16 09:52 - 2016-12-09 01:20 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2016-12-16 09:52 - 2016-12-09 01:19 - 01121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-12-16 09:52 - 2016-12-09 01:19 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-12-16 09:52 - 2016-12-09 01:19 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-12-16 09:52 - 2016-12-09 01:19 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2016-12-16 09:52 - 2016-12-09 01:19 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2016-12-16 09:52 - 2016-12-09 01:18 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-12-16 09:52 - 2016-12-09 01:18 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2016-12-16 09:52 - 2016-12-09 01:18 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2016-12-16 09:52 - 2016-12-09 01:17 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2016-12-16 09:52 - 2016-12-09 01:17 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2016-12-16 09:52 - 2016-12-09 01:16 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2016-12-16 09:52 - 2016-12-09 01:16 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-12-16 09:52 - 2016-12-09 01:16 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2016-12-16 09:52 - 2016-12-09 01:15 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2016-12-16 09:52 - 2016-12-09 01:15 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll
2016-12-16 09:52 - 2016-12-09 01:15 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2016-12-16 09:52 - 2016-12-09 00:54 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2016-12-16 09:52 - 2016-11-02 02:28 - 00807424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2016-12-16 09:52 - 2016-11-02 02:25 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-12-16 09:52 - 2016-09-15 08:36 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-12-14 09:50 - 2016-12-14 09:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2016-12-09 13:36 - 2016-12-09 13:36 - 00003276 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2016-12-09 06:13 - 2016-11-11 02:22 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-12-09 06:13 - 2016-11-11 02:15 - 00198856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2016-12-09 06:13 - 2016-11-11 02:15 - 00101216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2016-12-09 06:13 - 2016-11-11 02:14 - 02482280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2016-12-09 06:13 - 2016-11-11 02:14 - 02186896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-12-09 06:13 - 2016-11-11 02:14 - 00603488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-12-09 06:13 - 2016-11-11 02:13 - 02213760 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-12-09 06:13 - 2016-11-11 02:13 - 01886344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-12-09 06:13 - 2016-11-11 02:13 - 00352096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2016-12-09 06:13 - 2016-11-11 02:12 - 00128352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-12-09 06:13 - 2016-11-11 02:08 - 00142176 _____ (Microsoft Corporation) C:\WINDOWS\system32\migisol.dll
2016-12-09 06:13 - 2016-11-11 02:03 - 01069720 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2016-12-09 06:13 - 2016-11-11 02:03 - 00328008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-12-09 06:13 - 2016-11-11 02:03 - 00266544 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2016-12-09 06:13 - 2016-11-11 02:02 - 02828376 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-12-09 06:13 - 2016-11-11 02:02 - 00360040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-12-09 06:13 - 2016-11-11 02:01 - 07219672 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-12-09 06:13 - 2016-11-11 02:01 - 01859264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-12-09 06:13 - 2016-11-11 02:01 - 00637400 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-12-09 06:13 - 2016-11-11 02:00 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-12-09 06:13 - 2016-11-11 02:00 - 00219488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-12-09 06:13 - 2016-11-11 01:57 - 22224480 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-12-09 06:13 - 2016-11-11 01:57 - 04130432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-12-09 06:13 - 2016-11-11 01:57 - 01473048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-12-09 06:13 - 2016-11-11 01:56 - 01062480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-12-09 06:13 - 2016-11-11 01:56 - 00534096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2016-12-09 06:13 - 2016-11-11 01:56 - 00424616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2016-12-09 06:13 - 2016-11-11 01:56 - 00418952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2016-12-09 06:13 - 2016-11-11 01:56 - 00187520 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudStorageWizard.exe
2016-12-09 06:13 - 2016-11-11 01:56 - 00163752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTWorkQ.dll
2016-12-09 06:13 - 2016-11-11 01:56 - 00126568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfaudiocnv.dll
2016-12-09 06:13 - 2016-11-11 01:55 - 01600624 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-12-09 06:13 - 2016-11-11 01:55 - 00882680 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-12-09 06:13 - 2016-11-11 01:55 - 00743224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-12-09 06:13 - 2016-11-11 01:54 - 01418312 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-12-09 06:13 - 2016-11-11 01:51 - 00454592 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2016-12-09 06:13 - 2016-11-11 01:31 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-12-09 06:13 - 2016-11-11 01:29 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-12-09 06:13 - 2016-11-11 01:27 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpremove.exe
2016-12-09 06:13 - 2016-11-11 01:26 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2016-12-09 06:13 - 2016-11-11 01:26 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2016-12-09 06:13 - 2016-11-11 01:26 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReportingCSP.dll
2016-12-09 06:13 - 2016-11-11 01:26 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\modem.sys
2016-12-09 06:13 - 2016-11-11 01:26 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgentc.exe
2016-12-09 06:13 - 2016-11-11 01:25 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll
2016-12-09 06:13 - 2016-11-11 01:25 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-12-09 06:13 - 2016-11-11 01:25 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2016-12-09 06:13 - 2016-11-11 01:25 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2016-12-09 06:13 - 2016-11-11 01:25 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-12-09 06:13 - 2016-11-11 01:24 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-12-09 06:13 - 2016-11-11 01:24 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-12-09 06:13 - 2016-11-11 01:24 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-12-09 06:13 - 2016-11-11 01:24 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-12-09 06:13 - 2016-11-11 01:24 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2016-12-09 06:13 - 2016-11-11 01:24 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2016-12-09 06:13 - 2016-11-11 01:24 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-12-09 06:13 - 2016-11-11 01:23 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2016-12-09 06:13 - 2016-11-11 01:23 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-12-09 06:13 - 2016-11-11 01:23 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\EAMProgressHandler.dll
2016-12-09 06:13 - 2016-11-11 01:22 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-12-09 06:13 - 2016-11-11 01:22 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\EDPCleanup.exe
2016-12-09 06:13 - 2016-11-11 01:21 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-12-09 06:13 - 2016-11-11 01:21 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-12-09 06:13 - 2016-11-11 01:21 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-12-09 06:13 - 2016-11-11 01:20 - 00641024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2016-12-09 06:13 - 2016-11-11 01:20 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2016-12-09 06:13 - 2016-11-11 01:20 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-12-09 06:13 - 2016-11-11 01:20 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2016-12-09 06:13 - 2016-11-11 01:20 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2016-12-09 06:13 - 2016-11-11 01:20 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-12-09 06:13 - 2016-11-11 01:20 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-12-09 06:13 - 2016-11-11 01:19 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-12-09 06:13 - 2016-11-11 01:19 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2016-12-09 06:13 - 2016-11-11 01:19 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2016-12-09 06:13 - 2016-11-11 01:19 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2016-12-09 06:13 - 2016-11-11 01:19 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-12-09 06:13 - 2016-11-11 01:19 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2016-12-09 06:13 - 2016-11-11 01:19 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2016-12-09 06:13 - 2016-11-11 01:18 - 17188352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-12-09 06:13 - 2016-11-11 01:18 - 02084352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2016-12-09 06:13 - 2016-11-11 01:18 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2016-12-09 06:13 - 2016-11-11 01:17 - 01220096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2016-12-09 06:13 - 2016-11-11 01:17 - 01002496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-12-09 06:13 - 2016-11-11 01:17 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2016-12-09 06:13 - 2016-11-11 01:16 - 01477632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2016-12-09 06:13 - 2016-11-11 01:16 - 00560128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2016-12-09 06:13 - 2016-11-11 01:16 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-12-09 06:13 - 2016-11-11 01:16 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2016-12-09 06:13 - 2016-11-11 01:15 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-12-09 06:13 - 2016-11-11 01:15 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
2016-12-09 06:13 - 2016-11-11 01:14 - 02104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-12-09 06:13 - 2016-11-11 01:14 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-12-09 06:13 - 2016-11-11 01:14 - 00615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2016-12-09 06:13 - 2016-11-11 01:14 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppnp.dll
2016-12-09 06:13 - 2016-11-11 01:13 - 00396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-12-09 06:13 - 2016-11-11 01:13 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcuiu.dll
2016-12-09 06:13 - 2016-11-11 01:12 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll
2016-12-09 06:13 - 2016-11-11 01:11 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-12-09 06:13 - 2016-11-11 01:11 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-12-09 06:13 - 2016-11-11 01:11 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-12-09 06:13 - 2016-11-11 01:09 - 01366016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-12-09 06:13 - 2016-11-11 01:09 - 00164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2016-12-09 06:13 - 2016-11-11 01:08 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-12-09 06:13 - 2016-11-11 01:07 - 02510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-12-09 06:13 - 2016-11-11 01:07 - 02009600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-12-09 06:13 - 2016-11-11 01:07 - 01691136 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2016-12-09 06:13 - 2016-11-11 01:07 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2016-12-09 06:13 - 2016-11-11 01:07 - 00347648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2016-12-09 06:13 - 2016-11-11 01:06 - 00960000 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-12-09 06:13 - 2016-11-11 01:06 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-12-09 06:13 - 2016-11-11 01:05 - 04136448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-12-09 06:13 - 2016-11-11 01:05 - 02852864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-12-09 06:13 - 2016-11-11 01:05 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-12-09 06:13 - 2016-11-11 01:04 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2016-12-09 06:13 - 2016-11-11 01:04 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-12-09 06:13 - 2016-11-11 01:04 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-12-09 06:13 - 2016-11-11 01:04 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-12-09 06:13 - 2016-11-11 01:04 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2016-12-09 06:13 - 2016-11-11 01:04 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-12-09 06:13 - 2016-11-11 01:03 - 04708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-12-09 06:13 - 2016-11-11 01:03 - 02287616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-12-09 06:13 - 2016-11-11 01:03 - 00842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-12-09 06:13 - 2016-11-11 01:03 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-12-09 06:13 - 2016-11-11 01:03 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-12-09 06:13 - 2016-11-11 01:03 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2016-12-09 06:13 - 2016-11-11 01:02 - 03542016 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-12-09 06:13 - 2016-11-11 01:02 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-12-09 06:13 - 2016-11-11 00:39 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-12-09 06:13 - 2016-11-11 00:00 - 01706488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-12-09 06:13 - 2016-11-10 23:59 - 01572768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-12-09 06:13 - 2016-11-10 23:54 - 00122208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\migisol.dll
2016-12-09 06:13 - 2016-11-10 23:49 - 00869848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2016-12-09 06:13 - 2016-11-10 23:49 - 00263472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2016-12-09 06:13 - 2016-11-10 23:49 - 00248480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2016-12-09 06:13 - 2016-11-10 23:48 - 02277248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-12-09 06:13 - 2016-11-10 23:47 - 05722832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-12-09 06:13 - 2016-11-10 23:47 - 00527880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2016-12-09 06:13 - 2016-11-10 23:42 - 03892864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-12-09 06:13 - 2016-11-10 23:42 - 01123912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-12-09 06:13 - 2016-11-10 23:42 - 00952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-12-09 06:13 - 2016-11-10 23:42 - 00382784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2016-12-09 06:13 - 2016-11-10 23:42 - 00374448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2016-12-09 06:13 - 2016-11-10 23:42 - 00152416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTWorkQ.dll
2016-12-09 06:13 - 2016-11-10 23:42 - 00091936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfaudiocnv.dll
2016-12-09 06:13 - 2016-11-10 23:41 - 04311736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-12-09 06:13 - 2016-11-10 23:41 - 00157536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudStorageWizard.exe
2016-12-09 06:13 - 2016-11-10 23:38 - 01263856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-12-09 06:13 - 2016-11-10 23:28 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2016-12-09 06:13 - 2016-11-10 23:27 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-12-09 06:13 - 2016-11-10 23:25 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-12-09 06:13 - 2016-11-10 23:25 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-12-09 06:13 - 2016-11-10 23:24 - 00519168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2016-12-09 06:13 - 2016-11-10 23:24 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRHelper.dll
2016-12-09 06:13 - 2016-11-10 23:24 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2016-12-09 06:13 - 2016-11-10 23:24 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-12-09 06:13 - 2016-11-10 23:23 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2016-12-09 06:13 - 2016-11-10 23:23 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2016-12-09 06:13 - 2016-11-10 23:22 - 00505856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-12-09 06:13 - 2016-11-10 23:22 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
2016-12-09 06:13 - 2016-11-10 23:21 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-12-09 06:13 - 2016-11-10 23:21 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2016-12-09 06:13 - 2016-11-10 23:19 - 13868544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-12-09 06:13 - 2016-11-10 23:19 - 01755136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceFlows.DataModel.dll
2016-12-09 06:13 - 2016-11-10 23:19 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-12-09 06:13 - 2016-11-10 23:19 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2016-12-09 06:13 - 2016-11-10 23:19 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2016-12-09 06:13 - 2016-11-10 23:19 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2016-12-09 06:13 - 2016-11-10 23:18 - 02333184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2016-12-09 06:13 - 2016-11-10 23:18 - 01336320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2016-12-09 06:13 - 2016-11-10 23:18 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2016-12-09 06:13 - 2016-11-10 23:18 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2016-12-09 06:13 - 2016-11-10 23:17 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2016-12-09 06:13 - 2016-11-10 23:17 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2016-12-09 06:13 - 2016-11-10 23:15 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-12-09 06:13 - 2016-11-10 23:15 - 01357824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-12-09 06:13 - 2016-11-10 23:15 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-12-09 06:13 - 2016-11-10 23:15 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2016-12-09 06:13 - 2016-11-10 23:15 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2016-12-09 06:13 - 2016-11-10 23:14 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2016-12-09 06:13 - 2016-11-10 23:13 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-12-09 06:13 - 2016-11-10 23:10 - 06109184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-12-09 06:13 - 2016-11-10 23:10 - 00746496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcprx.dll
2016-12-09 06:13 - 2016-11-10 23:09 - 05380608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-12-09 06:13 - 2016-11-10 23:09 - 00545280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2016-12-09 06:13 - 2016-11-10 23:08 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xolehlp.dll
2016-12-09 06:13 - 2016-11-10 23:06 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2016-12-09 06:13 - 2016-11-10 23:06 - 02362880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2016-12-09 06:13 - 2016-11-10 23:06 - 02109952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2016-12-09 06:13 - 2016-11-10 23:06 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-12-09 06:13 - 2016-11-10 23:06 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2016-12-09 06:13 - 2016-11-10 23:06 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxclu.dll
2016-12-09 06:13 - 2016-11-10 23:05 - 04423680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-12-09 06:13 - 2016-11-10 23:05 - 03370496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2016-12-09 06:13 - 2016-11-10 23:04 - 02682880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll
2016-12-09 06:13 - 2016-11-10 23:04 - 01992704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-12-09 06:13 - 2016-11-10 23:04 - 01595392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-12-09 06:13 - 2016-11-10 23:04 - 00912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2016-12-09 06:13 - 2016-11-10 23:04 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-12-09 06:13 - 2016-11-10 23:04 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2016-12-09 06:13 - 2016-11-10 23:03 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2016-12-09 06:13 - 2016-11-10 23:03 - 02256384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-12-09 06:13 - 2016-11-10 23:03 - 01576448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2016-12-09 06:13 - 2016-11-10 23:03 - 01556480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-12-09 06:13 - 2016-11-10 23:03 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-12-09 06:13 - 2016-11-10 23:03 - 00565248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2016-12-09 06:13 - 2016-11-10 23:02 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-12-09 06:12 - 2016-11-11 02:00 - 00223584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-12-09 06:12 - 2016-11-11 01:59 - 00433504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-12-09 06:12 - 2016-11-11 01:56 - 04673304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-12-09 06:12 - 2016-11-11 01:28 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-12-09 06:12 - 2016-11-11 01:28 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CbtBackgroundManagerPolicy.dll
2016-12-09 06:12 - 2016-11-11 01:27 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-12-09 06:12 - 2016-11-11 01:25 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-12-09 06:12 - 2016-11-11 01:25 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-12-09 06:12 - 2016-11-11 01:24 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2016-12-09 06:12 - 2016-11-11 01:23 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-12-09 06:12 - 2016-11-11 01:22 - 00489472 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-12-09 06:12 - 2016-11-11 01:22 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-12-09 06:12 - 2016-11-11 01:21 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-12-09 06:12 - 2016-11-11 01:21 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2016-12-09 06:12 - 2016-11-11 01:21 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-12-09 06:12 - 2016-11-11 01:20 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2016-12-09 06:12 - 2016-11-11 01:20 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2016-12-09 06:12 - 2016-11-11 01:20 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-12-09 06:12 - 2016-11-11 01:20 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2016-12-09 06:12 - 2016-11-11 01:20 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-12-09 06:12 - 2016-11-11 01:19 - 09131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-12-09 06:12 - 2016-11-11 01:19 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-12-09 06:12 - 2016-11-11 01:19 - 00388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2016-12-09 06:12 - 2016-11-11 01:16 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-12-09 06:12 - 2016-11-11 01:16 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2016-12-09 06:12 - 2016-11-11 01:15 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-12-09 06:12 - 2016-11-11 01:14 - 07654400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-12-09 06:12 - 2016-11-11 01:13 - 07812096 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-12-09 06:12 - 2016-11-11 01:11 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpoext.dll
2016-12-09 06:12 - 2016-11-11 01:07 - 03441152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2016-12-09 06:12 - 2016-11-11 01:07 - 02953216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2016-12-09 06:12 - 2016-11-11 01:07 - 01060864 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-12-09 06:12 - 2016-11-11 01:06 - 03400192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2016-12-09 06:12 - 2016-11-11 01:05 - 01779712 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-12-09 06:12 - 2016-11-11 01:05 - 01031680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-12-09 06:12 - 2016-11-11 01:04 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-12-09 06:12 - 2016-11-11 01:04 - 02611200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-12-09 06:12 - 2016-11-11 01:04 - 02317312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-12-09 06:12 - 2016-11-11 01:04 - 01709056 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-12-09 06:12 - 2016-11-11 01:04 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2016-12-09 06:12 - 2016-11-11 01:03 - 02669056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-12-09 06:12 - 2016-11-11 01:03 - 00905216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-12-09 06:12 - 2016-11-11 01:03 - 00632320 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2016-12-09 06:12 - 2016-11-11 01:02 - 00936448 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-12-09 06:12 - 2016-11-11 00:01 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2016-12-09 06:12 - 2016-11-11 00:01 - 01969912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2016-12-09 06:12 - 2016-11-11 00:01 - 00167848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2016-12-09 06:12 - 2016-11-10 23:47 - 01430720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2016-12-09 06:12 - 2016-11-10 23:42 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-12-09 06:12 - 2016-11-10 23:27 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetCfgNotifyObjectHost.exe
2016-12-09 06:12 - 2016-11-10 23:26 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgentc.exe
2016-12-09 06:12 - 2016-11-10 23:21 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-12-09 06:12 - 2016-11-10 23:20 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-12-09 06:12 - 2016-11-10 23:20 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-12-09 06:12 - 2016-11-10 23:20 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2016-12-09 06:12 - 2016-11-10 23:19 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2016-12-09 06:12 - 2016-11-10 23:19 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
2016-12-09 06:12 - 2016-11-10 23:18 - 01196544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2016-12-09 06:12 - 2016-11-10 23:18 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscinterop.dll
2016-12-09 06:12 - 2016-11-10 23:16 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-12-09 06:12 - 2016-11-10 23:12 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcuiu.dll
2016-12-09 06:12 - 2016-11-10 23:03 - 00772608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2016-12-05 20:05 - 2016-12-05 20:05 - 00154014 _____ C:\Users\angie\Downloads\161205-53536.pdf
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2016-12-19 11:07 - 2016-07-19 12:14 - 00000000 ____D C:\Users\angie\AppData\Local\tkdata
2016-12-19 11:06 - 2014-03-07 09:01 - 00000000 ____D C:\Users\angie\AppData\Local\Google
2016-12-19 11:05 - 2016-11-17 08:11 - 00000000 ____D C:\Users\angie\AppData\LocalLow\Mozilla
2016-12-19 11:05 - 2016-09-28 09:22 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-12-19 09:45 - 2016-07-16 03:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-12-19 09:34 - 2015-08-16 13:19 - 00000000 ____D C:\Users\angie\AppData\Local\CrashDumps
2016-12-19 09:34 - 2014-10-21 13:41 - 00000000 __RDO C:\Users\angie\OneDrive
2016-12-19 09:34 - 2014-10-21 13:39 - 00000000 __SHD C:\Users\angie\IntelGraphicsProfiles
2016-12-19 08:39 - 2016-07-16 03:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-12-19 08:28 - 2016-07-19 12:14 - 00001241 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\True Key.lnk
2016-12-19 08:28 - 2016-07-19 12:04 - 00000000 ____D C:\Program Files\TrueKey
2016-12-18 09:27 - 2016-07-16 03:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-12-18 09:21 - 2016-10-21 09:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-12-18 09:21 - 2013-08-09 17:47 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-12-17 19:09 - 2013-06-12 17:52 - 00000000 ____D C:\Program Files (x86)\Dell Backup and Recovery
2016-12-17 19:06 - 2016-09-28 09:42 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-12-17 19:06 - 2016-09-28 09:24 - 00000000 ____D C:\ProgramData\NVIDIA
2016-12-17 19:06 - 2016-09-28 09:22 - 00241880 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-12-17 19:05 - 2016-07-15 22:04 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2016-12-17 19:04 - 2016-07-16 03:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-12-16 10:03 - 2016-07-16 03:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-12-16 09:57 - 2013-08-14 02:56 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-12-16 09:55 - 2013-08-10 08:10 - 135632432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-12-16 09:31 - 2014-03-07 09:02 - 00002274 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-12-16 09:31 - 2014-03-07 09:02 - 00002262 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-12-14 09:54 - 2016-07-15 22:04 - 00008192 _____ C:\WINDOWS\system32\config\ELAM
2016-12-14 09:50 - 2016-08-14 11:33 - 00000000 ____D C:\Program Files\McAfee Security Scan
2016-12-14 09:50 - 2016-07-19 12:04 - 00002011 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2016-12-13 10:57 - 2013-08-09 14:26 - 00000000 ____D C:\Users\angie\AppData\Local\Packages
2016-12-13 10:31 - 2016-09-27 10:10 - 00000000 ____D C:\Program Files (x86)\Park Sidekick 2016
2016-12-13 09:32 - 2015-01-06 12:56 - 00000000 ____D C:\Users\angie\Desktop\Silver Dollar Invest docs
2016-12-13 09:16 - 2016-07-16 03:47 - 00000000 ____D C:\WINDOWS\rescache
2016-12-13 07:57 - 2016-07-19 12:12 - 00000000 ____D C:\Program Files (x86)\McAfee
2016-12-11 15:56 - 2016-07-16 03:49 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-12-11 15:56 - 2016-07-16 03:49 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-12-10 08:30 - 2016-09-28 09:27 - 00000000 ____D C:\Users\angie
2016-12-10 08:30 - 2013-08-10 14:21 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-12-10 06:50 - 2016-07-16 03:45 - 00000000 ____D C:\WINDOWS\INF
2016-12-09 17:44 - 2016-05-14 22:53 - 01222838 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-12-09 17:38 - 2016-07-16 03:47 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-12-09 17:36 - 2016-07-16 03:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-12-09 17:36 - 2016-07-16 03:47 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2016-12-09 17:36 - 2016-07-16 03:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-12-09 17:36 - 2016-07-16 03:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-12-09 17:36 - 2016-07-16 03:47 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-12-09 17:36 - 2016-07-15 22:04 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-12-09 17:36 - 2016-07-15 22:04 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-12-09 17:36 - 2016-07-15 22:04 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-12-09 17:36 - 2016-07-15 22:04 - 00000000 ____D C:\WINDOWS\servicing
2016-12-09 13:36 - 2016-05-15 06:30 - 00002409 _____ C:\Users\angie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-12-09 07:56 - 2013-08-09 17:18 - 00000000 ____D C:\Users\angie\Documents\Letters to Rob
2016-12-09 06:00 - 2016-07-16 03:42 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-12-07 09:26 - 2013-08-10 15:19 - 00000000 ____D C:\ProgramData\SoftThinks
2016-12-07 09:16 - 2016-07-15 02:35 - 00002415 _____ C:\Users\Public\Desktop\Norton 360.lnk
2016-12-07 09:16 - 2015-08-16 13:16 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security Suite
2016-12-07 09:16 - 2013-08-20 16:17 - 00000000 ____D C:\WINDOWS\system32\Drivers\N360x64
2016-12-02 10:59 - 2013-08-09 17:18 - 00000000 ____D C:\Users\angie\Desktop\REAL ESTATE
 
==================== Files in the root of some directories =======
 
2013-06-12 17:51 - 2013-06-12 17:52 - 0000119 _____ () C:\ProgramData\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}.log
2013-06-12 17:48 - 2013-06-12 17:49 - 0000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log
2013-06-12 17:49 - 2013-06-12 17:50 - 0000111 _____ () C:\ProgramData\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}.log
2013-06-12 17:48 - 2013-06-12 17:48 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
2013-06-12 17:50 - 2013-06-12 17:51 - 0000108 _____ () C:\ProgramData\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}.log
 
==================== Bamital & volsnap ======================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 
LastRegBack: 2016-12-10 09:42
 
==================== End of FRST.txt ============================
 
 
ADDITION LOG:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-12-2016
Ran by angie (19-12-2016 11:12:12)
Running from C:\Users\angie\Desktop
Windows 10 Home Version 1607 (X64) (2016-09-28 17:55:35)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-2363693564-2664365946-1726940214-500 - Administrator - Disabled)
angie (S-1-5-21-2363693564-2664365946-1726940214-1002 - Administrator - Enabled) => C:\Users\angie
DefaultAccount (S-1-5-21-2363693564-2664365946-1726940214-503 - Limited - Disabled)
Guest (S-1-5-21-2363693564-2664365946-1726940214-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2363693564-2664365946-1726940214-1006 - Limited - Enabled)
UpdatusUser (S-1-5-21-2363693564-2664365946-1726940214-1001 - Limited - Enabled) => C:\Users\UpdatusUser
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Norton Security Suite (Enabled - Up to date) {53C7D717-52E2-B95E-FA61-6F32ECC805DB}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Security Suite (Enabled - Up to date) {E8A636F3-74D8-B6D0-C0D1-5440974F4F66}
FW: Norton Security Suite (Enabled) {6BFC5632-188D-B806-D13E-C607121B42A0}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.207 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKU\S-1-5-21-2363693564-2664365946-1726940214-1002\...\Akamai) (Version:  - Akamai Technologies, Inc)
Amazon Browser App (HKLM-x32\...\{0A7D6F3C-F2AB-48ED-BE23-99791BFF87D6}) (Version: 1.0.0.0 - Amazon) <==== ATTENTION
AntiLogger SDK version 1.5.6.849 (HKLM-x32\...\{4D46DE30-49FE-4043-99F7-D7E8C06175E0}_is1) (Version: 1.5.6.849 - Zemana Ltd.)
Apple Application Support (32-bit) (HKLM-x32\...\{D4B07658-F443-4445-A261-E643996E139D}) (Version: 4.3.2 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{A6B0442B-E159-444B-B49D-6B9AC531EAE3}) (Version: 4.3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brother MFL-Pro Suite MFC-7860DW (HKLM-x32\...\{3ACCCFB3-7B17-4E9F-ACB0-46868FCD4487}) (Version: 1.1.3.0 - Brother Industries, Ltd.)
CA Landlord Rights Forms (HKLM-x32\...\CA Landlord Rights Forms) (Version:  - )
Classic Shell (HKLM\...\{DC45D291-769A-4608-A688-77E6DBC03498}) (Version: 3.6.1 - IvoSoft)
Conexant SmartAudio HD (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.50.12.0 - Conexant)
Constant Guard Protection Suite (HKLM-x32\...\ID Vault) (Version: 1.13.521.2 - Comcast)
CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 11.0 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dell Backup and Recovery - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 1.6.1.1 - Dell Inc.)
Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.6.1.1 - Dell Inc.)
Dell Data Vault (Version: 4.3.8.0 - Dell Inc.) Hidden
Dell Digital Delivery (HKLM-x32\...\{4B3230C5-F069-416B-9169-1B84A216ED6A}) (Version: 2.5.1400.0 - Dell Products, LP)
Dell Product Registration (HKLM-x32\...\{2A0F2CC5-3065-492C-8380-B03AA7106B1A}) (Version: 1.16.1 - Dell Inc.)
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.2.6793.01 - Dell)
Dell SupportAssistAgent (HKLM-x32\...\{3ED468C2-2235-4747-90AD-A7A34F0FE70A}) (Version: 1.2.2.8 - Dell)
Dell Wireless Driver Installation (HKLM-x32\...\{451517F1-7E41-400B-AA36-FB7E2563526D}) (Version: 10.0 - Dell)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
Google Earth (HKLM-x32\...\{A0C18B96-AB79-46BD-8321-6FA83E6D25B9}) (Version: 7.1.7.2606 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Intel Security True Key (HKLM\...\TrueKey) (Version: 4.9.108.1 - Intel Security)
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4358 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.6.0.1030 - Intel Corporation)
iTunes (HKLM\...\{E109B4A3-9883-4E6E-9A19-4D7E1A88AFE8}) (Version: 12.4.2.4 - Apple Inc.)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.469.2 - McAfee, Inc.)
Microsoft Office Home and Student 2013 - en-us (HKLM\...\HomeStudentRetail - en-us) (Version: 15.0.4815.1002 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2363693564-2664365946-1726940214-1002\...\OneDriveSetup.exe) (Version: 17.3.6720.1207 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files  (HKLM\...\{B40EE88B-400A-4266-A17B-E3DE64E94431}) (Version: 10.1.2731.0 - Microsoft Corporation)
Microsoft SQL Server 2012 (64-bit) (HKLM\...\Microsoft SQL Server SQLServer2012) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Setup (English) (HKLM\...\{8CB0713F-CFE0-445D-BCB2-538465860E1A}) (Version: 11.1.3128.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom  (HKLM\...\{0E8670B8-3965-4930-ADA6-570348B67153}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft VSS Writer for SQL Server 2012 (HKLM\...\{3E0DD83F-BE4C-4478-86A0-AD0D79D1353E}) (Version: 11.0.2100.60 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 50.1.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 50.1.0 (x86 en-US)) (Version: 50.1.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.1.0.6186 - Mozilla)
Norton Security Suite (HKLM-x32\...\N360) (Version: 22.8.1.14 - Symantec Corporation)
NVIDIA 3D Vision Driver 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 340.52 - NVIDIA Corporation)
NVIDIA Graphics Driver 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Update 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4815.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4815.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4815.1002 - Microsoft Corporation) Hidden
Park Sidekick 2013 (6.2.11.0) (HKLM-x32\...\ParkSidekick2013_is1) (Version:  - Property Sidekick, Inc.)
Park Sidekick 2016 (7.1.18.0) (HKLM-x32\...\ParkSidekick2016_is1) (Version:  - Property Sidekick, Inc.)
QuickTime 7 (HKLM-x32\...\{80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC}) (Version: 7.78.80.95 - Apple Inc.)
Rosetta Stone Language Training (HKLM-x32\...\{00384623-4937-4D7D-BDD9-23513D1C50AB}) (Version: 5.0.37.0 - Rosetta Stone, Ltd)
Rosetta Stone Ltd Services (HKLM-x32\...\{3165E4A6-D5DE-46B0-8597-D55E2B826B84}) (Version: 3.2.21 - Rosetta Stone Ltd.)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
SQL Server 2012 Common Files (Version: 11.0.2100.60 - Microsoft Corporation) Hidden
SQL Server 2012 Database Engine Services (Version: 11.0.2100.60 - Microsoft Corporation) Hidden
SQL Server 2012 Database Engine Shared (Version: 11.0.2100.60 - Microsoft Corporation) Hidden
SQL Server Browser for SQL Server 2012 (HKLM-x32\...\{4B9E6EB0-0EED-4E74-9479-F982C3254F71}) (Version: 11.0.2100.60 - Microsoft Corporation)
Sql Server Customer Experience Improvement Program (Version: 11.0.2100.60 - Microsoft Corporation) Hidden
TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.20202 - TeamViewer)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
CustomCLSID: HKU\S-1-5-21-2363693564-2664365946-1726940214-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {02E7B613-CD58-4546-AC37-B16D2A91CD2B} - \GoogleUpdateTaskMachineUA -> No File <==== ATTENTION
Task: {055E1C0C-F6D3-403B-B245-AB339D1EAA13} - \Microsoft\Windows Live\SOXE\Extractor Definitions Update Task -> No File <==== ATTENTION
Task: {094CD275-5C71-4753-B57E-5566CA859498} - \Microsoft\Windows\SideShow\AutoWake -> No File <==== ATTENTION
Task: {0B364CBC-7372-4E53-8CFB-4EF0DA4453B8} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {0BD75192-B550-43D0-85C4-DB580246C40D} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {0D21BBCE-5FF6-4613-B62C-48148CA6EAA1} - \Microsoft\Windows\RAC\RacTask -> No File <==== ATTENTION
Task: {0F3C47F5-AE6D-4FFE-BEC1-4C5BE89046BF} - \Norton WSC Integration -> No File <==== ATTENTION
Task: {0F6DBBD1-1FA5-490B-A482-1F43FCC689E6} - \Microsoft\Windows\SideShow\SystemDataProviders -> No File <==== ATTENTION
Task: {10AD99B1-9990-4C73-B8E9-E6EA376A9E3D} - \Microsoft\Windows\Shell\FamilySafetyUpload -> No File <==== ATTENTION
Task: {161B1995-165E-4F13-9BF8-6F9A7ECE44EF} - \User_Feed_Synchronization-{D397A01A-97A0-45F1-BF11-87E49C35E1B3} -> No File <==== ATTENTION
Task: {168CDAD5-7868-4B79-85D7-AEDAC2946A6B} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {1726C41B-82CD-49F5-B369-75EB551F9112} - System32\Tasks\GoogleUpdateTaskMachineUA1d1eb6c902b2ce7 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {1A4230A2-E136-4936-9B22-DDF624BB8332} - \Microsoft\Windows\IME\SQM data sender -> No File <==== ATTENTION
Task: {26FCD939-EFAF-4541-8CCD-32EBF362125F} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {28EB7C39-02F6-4C62-A92A-F38ACB9848E6} - \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot -> No File <==== ATTENTION
Task: {29B10F56-10FE-4900-A5EE-97A643B762AD} - \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display -> No File <==== ATTENTION
Task: {2C76A349-7602-41B6-9670-D3857BCAA13E} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - \Microsoft\Windows\Workplace Join\Automatic-Workplace-Join -> No File <==== ATTENTION
Task: {3716085D-1D7F-43B9-91A8-51613A5E9827} - \Apple\AppleSoftwareUpdate -> No File <==== ATTENTION
Task: {3B429983-3C6A-4110-85A5-335118BC7AB2} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {4A5FCABD-D679-494C-8379-F5D890700B13} - \Microsoft\Windows\RemovalTools\MRT_HB -> No File <==== ATTENTION
Task: {52ACF01E-EF1C-46C0-9F05-829F75FB4698} - \PCDoctorBackgroundMonitorTask -> No File <==== ATTENTION
Task: {58C0C332-BC2E-4BD2-AC22-303F59576DFA} - \Microsoft\Windows\WindowsUpdate\AUSessionConnect -> No File <==== ATTENTION
Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - \Microsoft\Windows\Customer Experience Improvement Program\BthSQM -> No File <==== ATTENTION
Task: {69C468B4-058A-40A1-A23C-158344148876} - \Microsoft\Windows\UpdateOrchestrator\Policy Install -> No File <==== ATTENTION
Task: {6A04CAA9-3C6C-4736-89DA-00D2AAC2419E} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {6BB84D76-1AFB-4561-89B1-B390A12DAB61} - \GoogleUpdateTaskMachineCore -> No File <==== ATTENTION
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - \Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task -> No File <==== ATTENTION
Task: {74A13B04-FB6C-4BB5-8747-063C3DA01D45} - \Microsoft\Windows\WindowsUpdate\AUFirmwareInstall -> No File <==== ATTENTION
Task: {7978C9DB-866F-4E93-9FDE-43A8C15D6F8C} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {7CE75E34-338D-4FC7-9F8E-A123DEDD9EE1} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {7DA9E879-49B7-4762-845A-345FEFAE67C5} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {7EDD0A95-FB0E-42C3-AB55-51603D3565F7} - \PCDDataUploadTask -> No File <==== ATTENTION
Task: {8181C451-0F2C-42CE-8C53-302D5B767182} - System32\Tasks\GoogleUpdateTaskMachineCore1d1eb6c8ffb7da9 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {849B6545-F309-4242-AFE4-F510B60E33F3} - \Microsoft\Windows\WindowsUpdate\AUScheduledInstall -> No File <==== ATTENTION
Task: {859BC0DD-CF2D-463F-96B6-BD6707D6E473} - \Dell\Dell System Registration -> No File <==== ATTENTION
Task: {86D15C1D-0C42-46F5-8D84-E127AB7A5AB0} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - \Microsoft\Windows\SkyDrive\Routine Maintenance Task -> No File <==== ATTENTION
Task: {8B6759EE-1C08-4B8F-955C-774AB5A6544E} - \Microsoft\Windows\SideShow\SessionAgent -> No File <==== ATTENTION
Task: {978754B2-44A8-43C4-A2E2-6B4080E2147C} - \Adobe Flash Player Updater -> No File <==== ATTENTION
Task: {9A823740-E6AF-448A-B61C-3FB16097D69D} - \Microsoft\Windows\WindowsUpdate\Scheduled Start With Network -> No File <==== ATTENTION
Task: {9CE6DD76-FAE5-4588-AC9F-4B2377DDBC71} - \Microsoft OneDrive Auto Update Task-S-1-5-21-2363693564-2664365946-1726940214-1002 -> No File <==== ATTENTION
Task: {A47D80BA-8C96-46CF-AB44-66B390BA2942} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {A84256F1-8B7E-4FCA-8644-BBEEEB5192A6} - \Microsoft\Windows\Customer Experience Improvement Program\Uploader -> No File <==== ATTENTION
Task: {B0FDE423-D8EB-4A2E-9C04-40039C3DFC27} - \PCDEventLauncherTask -> No File <==== ATTENTION
Task: {B60A334F-97E0-432B-B834-9F14842E0C6E} - \Norton 360\Norton Error Processor -> No File <==== ATTENTION
Task: {BB5717FF-673D-4D0A-A179-0C43671A731F} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {C4097EA3-CCD9-4523-BD47-B2BAFDA09507} - \Optimize Start Menu Cache Files-S-1-5-21-2363693564-2664365946-1726940214-1002 -> No File <==== ATTENTION
Task: {C4AE3C3E-C327-4689-B6FD-C11FB31AE88B} - \Microsoft\Windows\NetCfg\BindingWorkItemQueueHandler -> No File <==== ATTENTION
Task: {C9DCF59E-6B97-4C0C-8641-B8261089C8CA} - \Microsoft\Windows\MobilePC\HotStart -> No File <==== ATTENTION
Task: {C9E51750-647D-4C0A-BCE2-4C2D2ECD5C6C} - \Norton 360\Norton Error Analyzer -> No File <==== ATTENTION
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - \Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor -> No File <==== ATTENTION
Task: {D5DBC093-56AC-43B9-A6CB-4522FBB8E2B0} - \SystemToolsDailyTest -> No File <==== ATTENTION
Task: {DB115665-5956-49C3-ACF6-274D2CD598C3} - \Microsoft\Office\Office ClickToRun Service Monitor -> No File <==== ATTENTION
Task: {DB21EF32-6BA9-4118-BBC1-BC4FF48961E5} - \Microsoft\Windows\SideShow\GadgetManager -> No File <==== ATTENTION
Task: {DC2B003A-E142-4BF7-B6E9-B55B0D9A86C6} - \WPD\SqmUpload_S-1-5-21-2363693564-2664365946-1726940214-1002 -> No File <==== ATTENTION
Task: {E20F31E3-6F5E-41AB-B922-9828ADC6CE71} - \Microsoft\Office\Office Automatic Updates -> No File <==== ATTENTION
Task: {E4C0FA11-88E6-4528-8ADF-4D3A07F33946} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {E7F75BEE-E57C-4B58-B74B-9C1CD70AB831} - \CLMLSvc_P2G8 -> No File <==== ATTENTION
Task: {EB207023-0CCD-447F-8878-367D310A5D4B} - System32\Tasks\Norton 360\Norton Autofix => C:\Program Files (x86)\Norton Security Suite\Engine\22.8.1.14\SymErr.exe [2016-11-11] (Symantec Corporation)
Task: {F25CDB08-E940-462A-A0CD-80F7DD8C6992} - \CLVDLauncher -> No File <==== ATTENTION
Task: {F59812C2-AAC6-4DA8-9E40-27340770F2E1} - \Dell SupportAssistAgent AutoUpdate -> No File <==== ATTENTION
Task: {F8209457-E02E-4736-95F1-0DD2007962D1} - \Remediation\AntimalwareMigrationTask -> No File <==== ATTENTION
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
 
==================== Shortcuts =============================
 
(The entries could be listed to be restored or removed.)
 
==================== Loaded Modules (Whitelisted) ==============
 
2014-03-21 07:31 - 2015-10-13 04:34 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2016-07-05 14:23 - 2016-07-05 14:23 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-07-05 14:23 - 2016-07-05 14:23 - 01354040 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2013-06-12 17:50 - 2012-04-24 18:43 - 00254512 ____N () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2016-06-02 10:32 - 2005-04-21 20:36 - 00143360 _____ () C:\WINDOWS\system32\BrSNMP64.dll
2016-07-16 03:42 - 2016-07-16 03:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-12-16 09:52 - 2016-12-09 02:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-09-28 09:24 - 2016-08-01 04:54 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-12-16 09:52 - 2016-12-09 02:29 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-12-16 09:52 - 2016-12-09 02:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-12-09 13:36 - 2016-12-09 13:36 - 01678560 _____ () C:\Users\angie\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\amd64\ClientTelemetry.dll
2015-10-30 04:31 - 2015-09-01 08:04 - 08901184 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2016-09-28 10:16 - 2016-09-28 10:16 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-12-16 09:52 - 2016-12-09 01:41 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-11-10 09:02 - 2016-11-02 02:21 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-11-10 09:02 - 2016-11-02 02:15 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-11-10 09:02 - 2016-11-02 02:14 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-11-10 09:02 - 2016-11-02 02:15 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-11-10 09:02 - 2016-11-02 02:16 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-11-10 09:02 - 2016-11-02 02:17 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-12-14 09:47 - 2016-12-14 09:47 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2016-12-14 09:47 - 2016-12-14 09:47 - 00179712 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-12-14 09:47 - 2016-12-14 09:47 - 42130432 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2016-12-14 09:47 - 2016-12-14 09:47 - 02216448 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\roottools.dll
2016-11-02 09:35 - 2016-11-02 09:35 - 65784544 _____ () C:\Program Files\Intel Security\True Key\Application\libcef.dll
2013-06-12 17:45 - 2012-07-18 11:55 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll
2016-12-09 13:36 - 2016-12-09 13:36 - 01244376 _____ () C:\Users\angie\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\ClientTelemetry.dll
2016-02-24 14:28 - 2016-02-24 14:28 - 00325824 _____ () C:\Program Files\Microsoft Office 15\root\office15\AppVIsvStream32.dll
2016-06-02 10:32 - 2009-02-27 15:38 - 00139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2016-02-24 14:32 - 2016-02-24 14:32 - 00325824 _____ () C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\AppVIsvStream32.dll
2016-02-24 14:28 - 2016-02-24 14:28 - 00325824 _____ () C:\Program Files\Microsoft Office 15\Root\Office15\AppVIsvStream32.dll
2016-12-16 09:31 - 2016-12-07 23:29 - 01829208 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll
2016-12-16 09:31 - 2016-12-07 23:29 - 00085848 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
 
==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 
==================== Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
 
==================== Hosts content: ===============================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2013-08-22 05:25 - 2016-12-14 09:50 - 00000861 ____A C:\WINDOWS\system32\Drivers\etc\hosts
 
 
0.0.0.1 mssplus.mcafee.com
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-2363693564-2664365946-1726940214-1002\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img1.jpg
HKU\S-1-5-80-500879465-1970453601-637845946-1438361160-1539855291\Control Panel\Desktop\\Wallpaper -> 
DNS Servers: 10.0.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
HKLM\...\StartupApproved\Run32: => "mcpltui_exe"
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [vm-monitoring-nb-session] => LPort=139
FirewallRules: [{F588E603-5E02-4A38-B023-0717D17840A9}] => LPort=77
FirewallRules: [{C70D4888-43C2-4E95-B1FC-273C1DA5DB94}] => C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{3183889B-44C4-4335-A9AE-C7558119B11F}] => LPort=54925
FirewallRules: [{E1C9413C-4DEE-4739-9496-4763759AF17B}] => C:\Program Files (x86)\Brother\Brmfl10f\FAXRX.exe
FirewallRules: [{11F25189-5547-42A3-AE28-617346793DBA}] => C:\Program Files (x86)\Brother\Brmfl10f\FAXRX.exe
FirewallRules: [{E3C6703B-B636-4685-A3DE-644D52C7D6A0}] => C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
FirewallRules: [{7B434AB6-7C14-4665-A970-5BD15AD0F961}] => C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
FirewallRules: [{FFF936C5-F5B8-4CD0-B204-D8D6FFA51497}] => C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneLtdServices.exe
FirewallRules: [{70359BC9-A4C3-4170-8CAE-3BC15CA44100}] => C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneLtdServices.exe
FirewallRules: [{6C2EC454-ADD1-4154-A952-9DF8A5455784}] => C:\Program Files\Common Files\mcafee\platform\mcsvchost\McSvHost.exe
FirewallRules: [{4BAC589A-1292-4FDA-8DDB-989E672488D0}] => C:\Program Files\Common Files\mcafee\platform\mcsvchost\McSvHost.exe
FirewallRules: [{CE47D221-7977-46AE-9ABA-500EE045BC8C}] => C:\Users\angie\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{751CF3E9-86D4-4F4A-ABB3-00B3893C15FF}] => C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
FirewallRules: [{97FCE3B3-1F7C-4FBD-B7B5-21272FD44FF2}] => C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
FirewallRules: [{8F9AAE11-44CB-4E9E-94AD-820D7517E9F2}] => C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
FirewallRules: [{E6358D11-C7A5-487D-BCED-CDAF50266806}] => C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
FirewallRules: [{7AD147AE-14AB-42E2-A524-E9226E95F37A}] => C:\Program Files\Common Files\mcafee\platform\mcsvchost\McSvHost.exe
FirewallRules: [{F9E4C8A9-2947-4E69-A50E-4A7311195D48}] => C:\Program Files\Common Files\mcafee\platform\mcsvchost\McSvHost.exe
FirewallRules: [{68566526-02CC-4EB9-BEBC-0B627EAF46F8}] => C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{AD502FC0-04EC-4A1A-8DFC-D83407D376AF}] => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{3BBEC611-9B8B-49AE-9684-A15B90054917}] => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [TCP Query User{69890660-854F-42D0-9A48-17E2EA35B4F1}C:\users\angie\appdata\local\akamai\netsession_win.exe] => C:\users\angie\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{44DC0F52-712D-405E-B8EC-515292A95C25}C:\users\angie\appdata\local\akamai\netsession_win.exe] => C:\users\angie\appdata\local\akamai\netsession_win.exe
FirewallRules: [{DF95F7BF-339C-4AFD-B5D0-3D3EAFE11481}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B40FCD67-1B61-4CA2-8C62-CF78380FABD2}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{DC8E4FB1-1C50-459A-A84B-7B12863EED5A}] => C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{B24A5472-FACB-4719-8C27-4B1CEF97532F}] => LPort=2869
FirewallRules: [{25B3F319-3D80-403D-BDA8-C19570046F18}] => LPort=1900
FirewallRules: [{82032946-1DE0-4FAB-8F46-694B7DF1BDA5}] => C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD Cinema\PowerDVDCinema12.exe
FirewallRules: [{4C822EB9-16BA-4795-BA48-9754DD6A2DF2}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3A4035F4-0EDA-4B8A-8782-ACC222E4EBEA}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{D081AD77-EB68-4EB4-AC6B-59550BE9954E}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{992AAF85-2FFF-41D2-BC07-A1A52121F172}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{07AAC8DD-FE8F-4219-8337-F4AAA5532EB7}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{FF81610A-65C3-4B48-B44B-8BFA4A2B91A2}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{D8CCEDC1-F81E-4495-9BF2-E3BD5EEBAFE7}] => LPort=78
FirewallRules: [{642A5E84-B40A-4204-8C4A-161CE4975406}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
==================== Restore Points =========================
 
25-11-2016 14:57:47 Scheduled Checkpoint
05-12-2016 11:59:42 Scheduled Checkpoint
09-12-2016 08:08:32 Windows Update
16-12-2016 09:54:49 Windows Update
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (12/19/2016 09:34:42 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: IDVault.exe, version: 1.13.521.2, time stamp: 0x519c3426
Faulting module name: KERNELBASE.dll, version: 10.0.14393.479, time stamp: 0x58256d37
Exception code: 0xe0434352
Fault offset: 0x000da832
Faulting process id: 0x7e0
Faulting application start time: 0x01d25a1e2e7ed761
Faulting application path: C:\Program Files (x86)\Constant Guard Protection Suite\IDVault.exe
Faulting module path: C:\WINDOWS\System32\KERNELBASE.dll
Report Id: 6a46e1af-ddb7-4ed4-b26c-34cb5b76b5b1
Faulting package full name: 
Faulting package-relative application ID:
 
Error: (12/19/2016 09:34:42 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: IDVault.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.IO.FileNotFoundException
   at GuardId.Program.Main(System.String[])
 
Error: (12/19/2016 08:52:22 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: IDVault.exe, version: 1.13.521.2, time stamp: 0x519c3426
Faulting module name: KERNELBASE.dll, version: 10.0.14393.479, time stamp: 0x58256d37
Exception code: 0xe0434352
Fault offset: 0x000da832
Faulting process id: 0x296c
Faulting application start time: 0x01d25a18445db49c
Faulting application path: C:\Program Files (x86)\Constant Guard Protection Suite\IDVault.exe
Faulting module path: C:\WINDOWS\System32\KERNELBASE.dll
Report Id: caa7c51d-6af3-4544-ba65-7bcd90b65b49
Faulting package full name: 
Faulting package-relative application ID:
 
Error: (12/19/2016 08:52:22 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: IDVault.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.IO.FileNotFoundException
   at GuardId.Program.Main(System.String[])
 
Error: (12/19/2016 08:28:31 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "BITS" in DLL "C:\Windows\System32\bitsperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
 
Error: (12/18/2016 09:21:18 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: IDVault.exe, version: 1.13.521.2, time stamp: 0x519c3426
Faulting module name: KERNELBASE.dll, version: 10.0.14393.479, time stamp: 0x58256d37
Exception code: 0xe0434352
Fault offset: 0x000da832
Faulting process id: 0x24c8
Faulting application start time: 0x01d2595323d30d58
Faulting application path: C:\Program Files (x86)\Constant Guard Protection Suite\IDVault.exe
Faulting module path: C:\WINDOWS\System32\KERNELBASE.dll
Report Id: 961df7ae-5e7c-42b8-b9ea-d92dd13f4ecd
Faulting package full name: 
Faulting package-relative application ID:
 
Error: (12/18/2016 09:21:17 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: IDVault.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.IO.FileNotFoundException
   at GuardId.Program.Main(System.String[])
 
Error: (12/17/2016 07:07:03 PM) (Source: IDVault) (EventID: 0) (User: )
Description: IDVault Service error. Message: The type initializer for 'GuardId.IdVaultCore.Tracking.TrackingService' threw an exception.
 
Error: (12/17/2016 09:46:53 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "BITS" in DLL "C:\Windows\System32\bitsperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
 
Error: (12/16/2016 09:53:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: svchost.exe_OneSyncSvc_35e94b9, version: 10.0.14393.0, time stamp: 0x57899b1c
Faulting module name: SYNCUTIL.dll, version: 10.0.14393.0, time stamp: 0x57899ab3
Exception code: 0xe0464645
Fault offset: 0x0000000000027917
Faulting process id: 0x1b4c
Faulting application start time: 0x01d257c1ca87e996
Faulting application path: C:\WINDOWS\system32\svchost.exe
Faulting module path: c:\windows\system32\SYNCUTIL.dll
Report Id: aaf932d3-aeaa-4a3a-9321-b8724de6dd70
Faulting package full name: 
Faulting package-relative application ID:
 
 
System errors:
=============
Error: (12/19/2016 09:49:08 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
 
Error: (12/19/2016 09:34:27 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 and APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (12/19/2016 09:22:55 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
 
Error: (12/19/2016 08:52:06 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 and APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (12/19/2016 08:49:25 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
 
Error: (12/19/2016 08:28:17 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Interactive Services Detection service terminated with the following error: 
Incorrect function.
 
Error: (12/18/2016 09:43:17 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
 
Error: (12/18/2016 09:20:50 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 and APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (12/18/2016 03:26:03 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
 
Error: (12/17/2016 07:16:32 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i5-3330 CPU @ 3.00GHz
Percentage of memory in use: 37%
Total physical RAM: 8063.55 MB
Available physical RAM: 5050.29 MB
Total Virtual: 9343.55 MB
Available Virtual: 5680.29 MB
 
==================== Drives ================================
 
Drive c: (OS) (Fixed) (Total:1849.58 GB) (Free:1693.96 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 1863 GB) (Disk ID: C5C90282)
 
Partition: GPT.
 
==================== End of Addition.txt ============================
 

  • 0

Advertisements


#2
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,031 posts
  • MVP

I would uninstall Constant Guard Protection Suite .  It' s causing a lot of errors.  Probably not your problem just ugly.

(Separate REPLIES for each log are fine)

 

First let's make sure the system files are good:

Open an elevated command prompt (see the following link if you don't know how.):

 
 
 
If you open an elevated command prompt it will by default open in c:\Windows\system32
 
Once you have an elevated command prompt:
 
Type(with an Enter after each line):
 
 DISM  /Online  /Cleanup-Image  /RestoreHealth
 
 (I use two spaces so you can be sure to see where one space goes.)
This will take a while to complete.  Once the prompt returns:
 
Reboot.  
 
Open an elevated Command Prompt again and type (with an Enter after the line):
 
sfc  /scannow

 

 

 
 
 
This will also take a few minutes.  
 
When it finishes type:
 
findstr  /c:"[SR]"  \windows\logs\cbs\cbs.log  >  \junk.txt 
 
Hit Enter.  Then type::
 
 
notepad  \junk.txt 
 
Hit Enter. 
 
 Copy the text from notepad and paste it into a reply.
 
REBOOT
 
1. Please download the Event Viewer Tool by Vino Rosso
and save it to your Desktop:
2. Right-click VEW.exe and Run AS Administrator
3. Under 'Select log to query', select:
 
* System
4. Under 'Select type to list', select:
* Error
* Warning
 
 
Then use the 'Number of events' as follows:
 
 
1. Click the radio button for 'Number of events'
Type 20 in the 1 to 20 box
Then click the Run button.
Notepad will open with the output log.
 
 
Please post the Output log in your next reply then repeat but select Application.  (Each time you run VEW it overwrites the log so copy the first one to a Reply or rename it before running it a second time.)
 

Now let's look a bit closer at your system:

 

Get the free version of Speccy:

 
http://www.filehippo...download_speccy (Look in the upper right for the Download
Latest Version button  - Do NOT press the large Start Download button on the upper left!)  
Download, Save and Install it.  Tell it you do not need CCLEANER if it wants to install it.    Run Speccy.  When it finishes (the little icon in the bottom left will stop moving), 
File, Save as Text File,  (to your desktop) note the name it gives. OK.  Open the file in notepad and delete the line that gives the serial number of your Operating System.  
(It will be near the top about 10 lines down.) Save the file.  Attach the file to your next post.  (More Reply Options, Choose File, Open, Attach This File)
 
Get Process Explorer
 
Save it to your desktop then run it (Vista or Win7 - right click and Run As Administrator).  
 
View, Select Column, check Verified Signer, OK
Options, Verify Image Signatures
 
 
Click twice on the CPU column header  to sort things by CPU usage with the big hitters at the top.  
 
Wait a full minute then:
 
File, Save As, Save.  Note the file name.   Open the file  on your desktop and copy and paste the text to a reply.
 
 
Copy the next 2 lines:
 
TASKLIST /SVC  > \junk.txt
notepad \junk.txt
 
Open an Elevated Command Prompt:
 
 
Right click and Paste (or Edit then Paste) and the copied lines should appear.
Hit Enter if notepad does not open.  Copy and paste the text from notepad into a reply.
 
In the elevated command Prompt type:
 
dxdiag
hit Enter.
 
Click on Run 64 bit DxDiag.
 
When the green line goes away click on Save All Information
 
Save dxdiag.txt to your desktop.
 
Open dxdiag.txt and copy and paste the text into a reply.
 
 

  • 0

#3
RJ7887

RJ7887

    Member

  • Topic Starter
  • Member
  • PipPip
  • 96 posts

Thank you so much for the help. Here is the first Junk.txt

 

Junk.txt:

2016-12-20 11:24:34, Info                  CSI    00000006 [SR] Verifying 100 components
2016-12-20 11:24:34, Info                  CSI    00000007 [SR] Beginning Verify and Repair transaction
2016-12-20 11:24:41, Info                  CSI    0000006c [SR] Verify complete
2016-12-20 11:24:41, Info                  CSI    0000006d [SR] Verifying 100 components
2016-12-20 11:24:41, Info                  CSI    0000006e [SR] Beginning Verify and Repair transaction
2016-12-20 11:24:46, Info                  CSI    000000d3 [SR] Verify complete
2016-12-20 11:24:46, Info                  CSI    000000d4 [SR] Verifying 100 components
2016-12-20 11:24:46, Info                  CSI    000000d5 [SR] Beginning Verify and Repair transaction
2016-12-20 11:24:49, Info                  CSI    0000013a [SR] Verify complete
2016-12-20 11:24:49, Info                  CSI    0000013b [SR] Verifying 100 components
2016-12-20 11:24:49, Info                  CSI    0000013c [SR] Beginning Verify and Repair transaction
2016-12-20 11:24:54, Info                  CSI    000001a1 [SR] Verify complete
2016-12-20 11:24:55, Info                  CSI    000001a2 [SR] Verifying 100 components
2016-12-20 11:24:55, Info                  CSI    000001a3 [SR] Beginning Verify and Repair transaction
2016-12-20 11:25:00, Info                  CSI    00000208 [SR] Verify complete
2016-12-20 11:25:00, Info                  CSI    00000209 [SR] Verifying 100 components
2016-12-20 11:25:00, Info                  CSI    0000020a [SR] Beginning Verify and Repair transaction
2016-12-20 11:25:04, Info                  CSI    0000026f [SR] Verify complete
2016-12-20 11:25:04, Info                  CSI    00000270 [SR] Verifying 100 components
2016-12-20 11:25:04, Info                  CSI    00000271 [SR] Beginning Verify and Repair transaction
2016-12-20 11:25:08, Info                  CSI    000002d6 [SR] Verify complete
2016-12-20 11:25:09, Info                  CSI    000002d7 [SR] Verifying 100 components
2016-12-20 11:25:09, Info                  CSI    000002d8 [SR] Beginning Verify and Repair transaction
2016-12-20 11:25:13, Info                  CSI    0000033d [SR] Verify complete
2016-12-20 11:25:13, Info                  CSI    0000033e [SR] Verifying 100 components
2016-12-20 11:25:13, Info                  CSI    0000033f [SR] Beginning Verify and Repair transaction
2016-12-20 11:25:17, Info                  CSI    000003a4 [SR] Verify complete
2016-12-20 11:25:17, Info                  CSI    000003a5 [SR] Verifying 100 components
2016-12-20 11:25:17, Info                  CSI    000003a6 [SR] Beginning Verify and Repair transaction
2016-12-20 11:25:20, Info                  CSI    0000040b [SR] Verify complete
2016-12-20 11:25:20, Info                  CSI    0000040c [SR] Verifying 100 components
2016-12-20 11:25:20, Info                  CSI    0000040d [SR] Beginning Verify and Repair transaction
2016-12-20 11:25:23, Info                  CSI    00000472 [SR] Verify complete
2016-12-20 11:25:24, Info                  CSI    00000473 [SR] Verifying 100 components
2016-12-20 11:25:24, Info                  CSI    00000474 [SR] Beginning Verify and Repair transaction
2016-12-20 11:25:27, Info                  CSI    000004d9 [SR] Verify complete
2016-12-20 11:25:27, Info                  CSI    000004da [SR] Verifying 100 components
2016-12-20 11:25:27, Info                  CSI    000004db [SR] Beginning Verify and Repair transaction
2016-12-20 11:25:30, Info                  CSI    00000540 [SR] Verify complete
2016-12-20 11:25:30, Info                  CSI    00000541 [SR] Verifying 100 components
2016-12-20 11:25:30, Info                  CSI    00000542 [SR] Beginning Verify and Repair transaction
2016-12-20 11:25:34, Info                  CSI    000005a7 [SR] Verify complete
2016-12-20 11:25:34, Info                  CSI    000005a8 [SR] Verifying 100 components
2016-12-20 11:25:34, Info                  CSI    000005a9 [SR] Beginning Verify and Repair transaction
2016-12-20 11:25:38, Info                  CSI    00000611 [SR] Verify complete
2016-12-20 11:25:38, Info                  CSI    00000612 [SR] Verifying 100 components
2016-12-20 11:25:38, Info                  CSI    00000613 [SR] Beginning Verify and Repair transaction
2016-12-20 11:25:42, Info                  CSI    00000678 [SR] Verify complete
2016-12-20 11:25:42, Info                  CSI    00000679 [SR] Verifying 100 components
2016-12-20 11:25:42, Info                  CSI    0000067a [SR] Beginning Verify and Repair transaction
2016-12-20 11:25:45, Info                  CSI    000006df [SR] Verify complete
2016-12-20 11:25:45, Info                  CSI    000006e0 [SR] Verifying 100 components
2016-12-20 11:25:45, Info                  CSI    000006e1 [SR] Beginning Verify and Repair transaction
2016-12-20 11:25:48, Info                  CSI    00000746 [SR] Verify complete
2016-12-20 11:25:48, Info                  CSI    00000747 [SR] Verifying 100 components
2016-12-20 11:25:48, Info                  CSI    00000748 [SR] Beginning Verify and Repair transaction
2016-12-20 11:25:51, Info                  CSI    000007ad [SR] Verify complete
2016-12-20 11:25:52, Info                  CSI    000007ae [SR] Verifying 100 components
2016-12-20 11:25:52, Info                  CSI    000007af [SR] Beginning Verify and Repair transaction
2016-12-20 11:25:53, Info                  CSI    00000814 [SR] Verify complete
2016-12-20 11:25:53, Info                  CSI    00000815 [SR] Verifying 100 components
2016-12-20 11:25:53, Info                  CSI    00000816 [SR] Beginning Verify and Repair transaction
2016-12-20 11:25:55, Info                  CSI    0000087b [SR] Verify complete
2016-12-20 11:25:55, Info                  CSI    0000087c [SR] Verifying 100 components
2016-12-20 11:25:55, Info                  CSI    0000087d [SR] Beginning Verify and Repair transaction
2016-12-20 11:25:58, Info                  CSI    000008e2 [SR] Verify complete
2016-12-20 11:25:58, Info                  CSI    000008e3 [SR] Verifying 100 components
2016-12-20 11:25:58, Info                  CSI    000008e4 [SR] Beginning Verify and Repair transaction
2016-12-20 11:26:02, Info                  CSI    00000949 [SR] Verify complete
2016-12-20 11:26:02, Info                  CSI    0000094a [SR] Verifying 100 components
2016-12-20 11:26:02, Info                  CSI    0000094b [SR] Beginning Verify and Repair transaction
2016-12-20 11:26:09, Info                  CSI    000009b0 [SR] Verify complete
2016-12-20 11:26:09, Info                  CSI    000009b1 [SR] Verifying 100 components
2016-12-20 11:26:09, Info                  CSI    000009b2 [SR] Beginning Verify and Repair transaction
2016-12-20 11:26:13, Info                  CSI    00000a17 [SR] Verify complete
2016-12-20 11:26:14, Info                  CSI    00000a18 [SR] Verifying 100 components
2016-12-20 11:26:14, Info                  CSI    00000a19 [SR] Beginning Verify and Repair transaction
2016-12-20 11:26:17, Info                  CSI    00000a7e [SR] Verify complete
2016-12-20 11:26:17, Info                  CSI    00000a7f [SR] Verifying 100 components
2016-12-20 11:26:17, Info                  CSI    00000a80 [SR] Beginning Verify and Repair transaction
2016-12-20 11:26:21, Info                  CSI    00000ae5 [SR] Verify complete
2016-12-20 11:26:21, Info                  CSI    00000ae6 [SR] Verifying 100 components
2016-12-20 11:26:21, Info                  CSI    00000ae7 [SR] Beginning Verify and Repair transaction
2016-12-20 11:26:24, Info                  CSI    00000b4d [SR] Verify complete
2016-12-20 11:26:24, Info                  CSI    00000b4e [SR] Verifying 100 components
2016-12-20 11:26:24, Info                  CSI    00000b4f [SR] Beginning Verify and Repair transaction
2016-12-20 11:26:27, Info                  CSI    00000bb4 [SR] Verify complete
2016-12-20 11:26:28, Info                  CSI    00000bb5 [SR] Verifying 100 components
2016-12-20 11:26:28, Info                  CSI    00000bb6 [SR] Beginning Verify and Repair transaction
2016-12-20 11:26:30, Info                  CSI    00000c1b [SR] Verify complete
2016-12-20 11:26:30, Info                  CSI    00000c1c [SR] Verifying 100 components
2016-12-20 11:26:30, Info                  CSI    00000c1d [SR] Beginning Verify and Repair transaction
2016-12-20 11:26:32, Info                  CSI    00000c82 [SR] Verify complete
2016-12-20 11:26:32, Info                  CSI    00000c83 [SR] Verifying 100 components
2016-12-20 11:26:32, Info                  CSI    00000c84 [SR] Beginning Verify and Repair transaction
2016-12-20 11:26:35, Info                  CSI    00000ce9 [SR] Verify complete
2016-12-20 11:26:35, Info                  CSI    00000cea [SR] Verifying 100 components
2016-12-20 11:26:35, Info                  CSI    00000ceb [SR] Beginning Verify and Repair transaction
2016-12-20 11:26:40, Info                  CSI    00000d58 [SR] Verify complete
2016-12-20 11:26:40, Info                  CSI    00000d59 [SR] Verifying 100 components
2016-12-20 11:26:40, Info                  CSI    00000d5a [SR] Beginning Verify and Repair transaction
2016-12-20 11:26:41, Info                  CSI    00000dbf [SR] Verify complete
2016-12-20 11:26:42, Info                  CSI    00000dc0 [SR] Verifying 100 components
2016-12-20 11:26:42, Info                  CSI    00000dc1 [SR] Beginning Verify and Repair transaction
2016-12-20 11:26:43, Info                  CSI    00000e26 [SR] Verify complete
2016-12-20 11:26:43, Info                  CSI    00000e27 [SR] Verifying 100 components
2016-12-20 11:26:43, Info                  CSI    00000e28 [SR] Beginning Verify and Repair transaction
2016-12-20 11:26:45, Info                  CSI    00000e98 [SR] Verify complete
2016-12-20 11:26:45, Info                  CSI    00000e99 [SR] Verifying 100 components
2016-12-20 11:26:45, Info                  CSI    00000e9a [SR] Beginning Verify and Repair transaction
2016-12-20 11:26:47, Info                  CSI    00000f02 [SR] Verify complete
2016-12-20 11:26:47, Info                  CSI    00000f03 [SR] Verifying 100 components
2016-12-20 11:26:47, Info                  CSI    00000f04 [SR] Beginning Verify and Repair transaction
2016-12-20 11:26:49, Info                  CSI    00000f69 [SR] Verify complete
2016-12-20 11:26:49, Info                  CSI    00000f6a [SR] Verifying 100 components
2016-12-20 11:26:49, Info                  CSI    00000f6b [SR] Beginning Verify and Repair transaction
2016-12-20 11:26:55, Info                  CSI    00000fdb [SR] Verify complete
2016-12-20 11:26:55, Info                  CSI    00000fdc [SR] Verifying 100 components
2016-12-20 11:26:55, Info                  CSI    00000fdd [SR] Beginning Verify and Repair transaction
2016-12-20 11:27:04, Info                  CSI    00001062 [SR] Verify complete
2016-12-20 11:27:04, Info                  CSI    00001063 [SR] Verifying 100 components
2016-12-20 11:27:04, Info                  CSI    00001064 [SR] Beginning Verify and Repair transaction
2016-12-20 11:27:12, Info                  CSI    000010d6 [SR] Verify complete
2016-12-20 11:27:12, Info                  CSI    000010d7 [SR] Verifying 100 components
2016-12-20 11:27:12, Info                  CSI    000010d8 [SR] Beginning Verify and Repair transaction
2016-12-20 11:27:19, Info                  CSI    00001142 [SR] Verify complete
2016-12-20 11:27:19, Info                  CSI    00001143 [SR] Verifying 100 components
2016-12-20 11:27:19, Info                  CSI    00001144 [SR] Beginning Verify and Repair transaction
2016-12-20 11:27:25, Info                  CSI    000011b5 [SR] Verify complete
2016-12-20 11:27:25, Info                  CSI    000011b6 [SR] Verifying 100 components
2016-12-20 11:27:25, Info                  CSI    000011b7 [SR] Beginning Verify and Repair transaction
2016-12-20 11:27:30, Info                  CSI    0000122d [SR] Verify complete
2016-12-20 11:27:30, Info                  CSI    0000122e [SR] Verifying 100 components
2016-12-20 11:27:30, Info                  CSI    0000122f [SR] Beginning Verify and Repair transaction
2016-12-20 11:27:34, Info                  CSI    000012f7 [SR] Verify complete
2016-12-20 11:27:34, Info                  CSI    000012f8 [SR] Verifying 100 components
2016-12-20 11:27:34, Info                  CSI    000012f9 [SR] Beginning Verify and Repair transaction
2016-12-20 11:27:42, Info                  CSI    00001367 [SR] Verify complete
2016-12-20 11:27:42, Info                  CSI    00001368 [SR] Verifying 100 components
2016-12-20 11:27:42, Info                  CSI    00001369 [SR] Beginning Verify and Repair transaction
2016-12-20 11:27:50, Info                  CSI    000013d2 [SR] Verify complete
2016-12-20 11:27:50, Info                  CSI    000013d3 [SR] Verifying 100 components
2016-12-20 11:27:50, Info                  CSI    000013d4 [SR] Beginning Verify and Repair transaction
2016-12-20 11:27:53, Info                  CSI    00001439 [SR] Verify complete
2016-12-20 11:27:54, Info                  CSI    0000143a [SR] Verifying 100 components
2016-12-20 11:27:54, Info                  CSI    0000143b [SR] Beginning Verify and Repair transaction
2016-12-20 11:27:59, Info                  CSI    000014a0 [SR] Verify complete
2016-12-20 11:27:59, Info                  CSI    000014a1 [SR] Verifying 100 components
2016-12-20 11:27:59, Info                  CSI    000014a2 [SR] Beginning Verify and Repair transaction
2016-12-20 11:28:12, Info                  CSI    0000150d [SR] Verify complete
2016-12-20 11:28:12, Info                  CSI    0000150e [SR] Verifying 100 components
2016-12-20 11:28:12, Info                  CSI    0000150f [SR] Beginning Verify and Repair transaction
2016-12-20 11:28:21, Info                  CSI    000015ac [SR] Verify complete
2016-12-20 11:28:21, Info                  CSI    000015ad [SR] Verifying 100 components
2016-12-20 11:28:21, Info                  CSI    000015ae [SR] Beginning Verify and Repair transaction
2016-12-20 11:28:28, Info                  CSI    00001638 [SR] Verify complete
2016-12-20 11:28:28, Info                  CSI    00001639 [SR] Verifying 100 components
2016-12-20 11:28:28, Info                  CSI    0000163a [SR] Beginning Verify and Repair transaction
2016-12-20 11:28:38, Info                  CSI    000016cf [SR] Verify complete
2016-12-20 11:28:38, Info                  CSI    000016d0 [SR] Verifying 100 components
2016-12-20 11:28:38, Info                  CSI    000016d1 [SR] Beginning Verify and Repair transaction
2016-12-20 11:28:49, Info                  CSI    00001745 [SR] Verify complete
2016-12-20 11:28:49, Info                  CSI    00001746 [SR] Verifying 100 components
2016-12-20 11:28:49, Info                  CSI    00001747 [SR] Beginning Verify and Repair transaction
2016-12-20 11:28:58, Info                  CSI    000017b9 [SR] Verify complete
2016-12-20 11:28:58, Info                  CSI    000017ba [SR] Verifying 100 components
2016-12-20 11:28:58, Info                  CSI    000017bb [SR] Beginning Verify and Repair transaction
2016-12-20 11:29:04, Info                  CSI    0000183d [SR] Verify complete
2016-12-20 11:29:04, Info                  CSI    0000183e [SR] Verifying 100 components
2016-12-20 11:29:04, Info                  CSI    0000183f [SR] Beginning Verify and Repair transaction
2016-12-20 11:29:11, Info                  CSI    000018b5 [SR] Verify complete
2016-12-20 11:29:11, Info                  CSI    000018b6 [SR] Verifying 100 components
2016-12-20 11:29:11, Info                  CSI    000018b7 [SR] Beginning Verify and Repair transaction
2016-12-20 11:29:19, Info                  CSI    0000191f [SR] Verify complete
2016-12-20 11:29:19, Info                  CSI    00001920 [SR] Verifying 100 components
2016-12-20 11:29:19, Info                  CSI    00001921 [SR] Beginning Verify and Repair transaction
2016-12-20 11:29:25, Info                  CSI    00001988 [SR] Verify complete
2016-12-20 11:29:25, Info                  CSI    00001989 [SR] Verifying 100 components
2016-12-20 11:29:25, Info                  CSI    0000198a [SR] Beginning Verify and Repair transaction
2016-12-20 11:29:32, Info                  CSI    000019f8 [SR] Verify complete
2016-12-20 11:29:32, Info                  CSI    000019f9 [SR] Verifying 100 components
2016-12-20 11:29:32, Info                  CSI    000019fa [SR] Beginning Verify and Repair transaction
2016-12-20 11:29:44, Info                  CSI    00001a70 [SR] Verify complete
2016-12-20 11:29:45, Info                  CSI    00001a71 [SR] Verifying 100 components
2016-12-20 11:29:45, Info                  CSI    00001a72 [SR] Beginning Verify and Repair transaction
2016-12-20 11:29:57, Info                  CSI    00001b00 [SR] Verify complete
2016-12-20 11:29:58, Info                  CSI    00001b01 [SR] Verifying 100 components
2016-12-20 11:29:58, Info                  CSI    00001b02 [SR] Beginning Verify and Repair transaction
2016-12-20 11:30:07, Info                  CSI    00001ba2 [SR] Verify complete
2016-12-20 11:30:07, Info                  CSI    00001ba3 [SR] Verifying 100 components
2016-12-20 11:30:07, Info                  CSI    00001ba4 [SR] Beginning Verify and Repair transaction
2016-12-20 11:30:19, Info                  CSI    00001c30 [SR] Verify complete
2016-12-20 11:30:20, Info                  CSI    00001c31 [SR] Verifying 100 components
2016-12-20 11:30:20, Info                  CSI    00001c32 [SR] Beginning Verify and Repair transaction
2016-12-20 11:30:24, Info                  CSI    00001ca0 [SR] Verify complete
2016-12-20 11:30:24, Info                  CSI    00001ca1 [SR] Verifying 100 components
2016-12-20 11:30:24, Info                  CSI    00001ca2 [SR] Beginning Verify and Repair transaction
2016-12-20 11:30:28, Info                  CSI    00001d0e [SR] Verify complete
2016-12-20 11:30:28, Info                  CSI    00001d0f [SR] Verifying 100 components
2016-12-20 11:30:28, Info                  CSI    00001d10 [SR] Beginning Verify and Repair transaction
2016-12-20 11:30:35, Info                  CSI    00001d86 [SR] Verify complete
2016-12-20 11:30:35, Info                  CSI    00001d87 [SR] Verifying 100 components
2016-12-20 11:30:35, Info                  CSI    00001d88 [SR] Beginning Verify and Repair transaction
2016-12-20 11:30:40, Info                  CSI    00001df2 [SR] Verify complete
2016-12-20 11:30:40, Info                  CSI    00001df3 [SR] Verifying 100 components
2016-12-20 11:30:40, Info                  CSI    00001df4 [SR] Beginning Verify and Repair transaction
2016-12-20 11:30:43, Info                  CSI    00001e59 [SR] Verify complete
2016-12-20 11:30:43, Info                  CSI    00001e5a [SR] Verifying 100 components
2016-12-20 11:30:43, Info                  CSI    00001e5b [SR] Beginning Verify and Repair transaction
2016-12-20 11:30:47, Info                  CSI    00001ecb [SR] Verify complete
2016-12-20 11:30:48, Info                  CSI    00001ecc [SR] Verifying 100 components
2016-12-20 11:30:48, Info                  CSI    00001ecd [SR] Beginning Verify and Repair transaction
2016-12-20 11:30:55, Info                  CSI    00001f42 [SR] Verify complete
2016-12-20 11:30:55, Info                  CSI    00001f43 [SR] Verifying 100 components
2016-12-20 11:30:55, Info                  CSI    00001f44 [SR] Beginning Verify and Repair transaction
2016-12-20 11:31:03, Info                  CSI    00001fbf [SR] Verify complete
2016-12-20 11:31:03, Info                  CSI    00001fc0 [SR] Verifying 100 components
2016-12-20 11:31:03, Info                  CSI    00001fc1 [SR] Beginning Verify and Repair transaction
2016-12-20 11:31:08, Info                  CSI    0000202a [SR] Verify complete
2016-12-20 11:31:08, Info                  CSI    0000202b [SR] Verifying 100 components
2016-12-20 11:31:08, Info                  CSI    0000202c [SR] Beginning Verify and Repair transaction
2016-12-20 11:31:12, Info                  CSI    0000209a [SR] Verify complete
2016-12-20 11:31:12, Info                  CSI    0000209b [SR] Verifying 100 components
2016-12-20 11:31:12, Info                  CSI    0000209c [SR] Beginning Verify and Repair transaction
2016-12-20 11:31:18, Info                  CSI    0000211e [SR] Verify complete
2016-12-20 11:31:18, Info                  CSI    0000211f [SR] Verifying 100 components
2016-12-20 11:31:18, Info                  CSI    00002120 [SR] Beginning Verify and Repair transaction
2016-12-20 11:31:26, Info                  CSI    00002191 [SR] Verify complete
2016-12-20 11:31:26, Info                  CSI    00002192 [SR] Verifying 100 components
2016-12-20 11:31:26, Info                  CSI    00002193 [SR] Beginning Verify and Repair transaction
2016-12-20 11:31:34, Info                  CSI    00002207 [SR] Verify complete
2016-12-20 11:31:34, Info                  CSI    00002208 [SR] Verifying 100 components
2016-12-20 11:31:34, Info                  CSI    00002209 [SR] Beginning Verify and Repair transaction
2016-12-20 11:31:36, Info                  CSI    0000226e [SR] Verify complete
2016-12-20 11:31:36, Info                  CSI    0000226f [SR] Verifying 100 components
2016-12-20 11:31:36, Info                  CSI    00002270 [SR] Beginning Verify and Repair transaction
2016-12-20 11:31:42, Info                  CSI    000022db [SR] Verify complete
2016-12-20 11:31:42, Info                  CSI    000022dc [SR] Verifying 100 components
2016-12-20 11:31:42, Info                  CSI    000022dd [SR] Beginning Verify and Repair transaction
2016-12-20 11:31:53, Info                  CSI    0000235d [SR] Verify complete
2016-12-20 11:31:53, Info                  CSI    0000235e [SR] Verifying 100 components
2016-12-20 11:31:53, Info                  CSI    0000235f [SR] Beginning Verify and Repair transaction
2016-12-20 11:32:00, Info                  CSI    000023d7 [SR] Verify complete
2016-12-20 11:32:00, Info                  CSI    000023d8 [SR] Verifying 100 components
2016-12-20 11:32:00, Info                  CSI    000023d9 [SR] Beginning Verify and Repair transaction
2016-12-20 11:32:04, Info                  CSI    00002446 [SR] Verify complete
2016-12-20 11:32:04, Info                  CSI    00002447 [SR] Verifying 100 components
2016-12-20 11:32:04, Info                  CSI    00002448 [SR] Beginning Verify and Repair transaction
2016-12-20 11:32:06, Info                  CSI    000024ae [SR] Verify complete
2016-12-20 11:32:07, Info                  CSI    000024af [SR] Verifying 100 components
2016-12-20 11:32:07, Info                  CSI    000024b0 [SR] Beginning Verify and Repair transaction
2016-12-20 11:32:11, Info                  CSI    00002522 [SR] Verify complete
2016-12-20 11:32:11, Info                  CSI    00002523 [SR] Verifying 100 components
2016-12-20 11:32:11, Info                  CSI    00002524 [SR] Beginning Verify and Repair transaction
2016-12-20 11:32:17, Info                  CSI    000025b8 [SR] Verify complete
2016-12-20 11:32:17, Info                  CSI    000025b9 [SR] Verifying 100 components
2016-12-20 11:32:17, Info                  CSI    000025ba [SR] Beginning Verify and Repair transaction
2016-12-20 11:32:20, Info                  CSI    0000261f [SR] Verify complete
2016-12-20 11:32:20, Info                  CSI    00002620 [SR] Verifying 100 components
2016-12-20 11:32:20, Info                  CSI    00002621 [SR] Beginning Verify and Repair transaction
2016-12-20 11:32:25, Info                  CSI    0000268c [SR] Verify complete
2016-12-20 11:32:25, Info                  CSI    0000268d [SR] Verifying 100 components
2016-12-20 11:32:25, Info                  CSI    0000268e [SR] Beginning Verify and Repair transaction
2016-12-20 11:32:30, Info                  CSI    00002700 [SR] Verify complete
2016-12-20 11:32:30, Info                  CSI    00002701 [SR] Verifying 100 components
2016-12-20 11:32:30, Info                  CSI    00002702 [SR] Beginning Verify and Repair transaction
2016-12-20 11:32:33, Info                  CSI    00002777 [SR] Verify complete
2016-12-20 11:32:33, Info                  CSI    00002778 [SR] Verifying 100 components
2016-12-20 11:32:33, Info                  CSI    00002779 [SR] Beginning Verify and Repair transaction
2016-12-20 11:32:38, Info                  CSI    000027e4 [SR] Verify complete
2016-12-20 11:32:38, Info                  CSI    000027e5 [SR] Verifying 100 components
2016-12-20 11:32:38, Info                  CSI    000027e6 [SR] Beginning Verify and Repair transaction
2016-12-20 11:32:45, Info                  CSI    00002882 [SR] Verify complete
2016-12-20 11:32:45, Info                  CSI    00002883 [SR] Verifying 100 components
2016-12-20 11:32:45, Info                  CSI    00002884 [SR] Beginning Verify and Repair transaction
2016-12-20 11:32:54, Info                  CSI    00002904 [SR] Verify complete
2016-12-20 11:32:54, Info                  CSI    00002905 [SR] Verifying 100 components
2016-12-20 11:32:54, Info                  CSI    00002906 [SR] Beginning Verify and Repair transaction
2016-12-20 11:32:59, Info                  CSI    00002971 [SR] Verify complete
2016-12-20 11:32:59, Info                  CSI    00002972 [SR] Verifying 100 components
2016-12-20 11:32:59, Info                  CSI    00002973 [SR] Beginning Verify and Repair transaction
2016-12-20 11:33:03, Info                  CSI    000029da [SR] Verify complete
2016-12-20 11:33:04, Info                  CSI    000029db [SR] Verifying 100 components
2016-12-20 11:33:04, Info                  CSI    000029dc [SR] Beginning Verify and Repair transaction
2016-12-20 11:33:07, Info                  CSI    00002a42 [SR] Verify complete
2016-12-20 11:33:07, Info                  CSI    00002a43 [SR] Verifying 100 components
2016-12-20 11:33:07, Info                  CSI    00002a44 [SR] Beginning Verify and Repair transaction
2016-12-20 11:33:12, Info                  CSI    00002ab8 [SR] Verify complete
2016-12-20 11:33:12, Info                  CSI    00002ab9 [SR] Verifying 100 components
2016-12-20 11:33:12, Info                  CSI    00002aba [SR] Beginning Verify and Repair transaction
2016-12-20 11:33:16, Info                  CSI    00002b22 [SR] Verify complete
2016-12-20 11:33:16, Info                  CSI    00002b23 [SR] Verifying 100 components
2016-12-20 11:33:16, Info                  CSI    00002b24 [SR] Beginning Verify and Repair transaction
2016-12-20 11:33:20, Info                  CSI    00002b8b [SR] Verify complete
2016-12-20 11:33:20, Info                  CSI    00002b8c [SR] Verifying 100 components
2016-12-20 11:33:20, Info                  CSI    00002b8d [SR] Beginning Verify and Repair transaction
2016-12-20 11:33:23, Info                  CSI    00002bf2 [SR] Verify complete
2016-12-20 11:33:23, Info                  CSI    00002bf3 [SR] Verifying 100 components
2016-12-20 11:33:23, Info                  CSI    00002bf4 [SR] Beginning Verify and Repair transaction
2016-12-20 11:33:32, Info                  CSI    00002c6f [SR] Verify complete
2016-12-20 11:33:32, Info                  CSI    00002c70 [SR] Verifying 100 components
2016-12-20 11:33:32, Info                  CSI    00002c71 [SR] Beginning Verify and Repair transaction
2016-12-20 11:33:37, Info                  CSI    00002cdd [SR] Verify complete
2016-12-20 11:33:38, Info                  CSI    00002cde [SR] Verifying 100 components
2016-12-20 11:33:38, Info                  CSI    00002cdf [SR] Beginning Verify and Repair transaction
2016-12-20 11:33:43, Info                  CSI    00002d49 [SR] Verify complete
2016-12-20 11:33:43, Info                  CSI    00002d4a [SR] Verifying 100 components
2016-12-20 11:33:43, Info                  CSI    00002d4b [SR] Beginning Verify and Repair transaction
2016-12-20 11:33:52, Info                  CSI    00002ded [SR] Verify complete
2016-12-20 11:33:53, Info                  CSI    00002dee [SR] Verifying 100 components
2016-12-20 11:33:53, Info                  CSI    00002def [SR] Beginning Verify and Repair transaction
2016-12-20 11:34:01, Info                  CSI    00002e63 [SR] Verify complete
2016-12-20 11:34:01, Info                  CSI    00002e64 [SR] Verifying 100 components
2016-12-20 11:34:01, Info                  CSI    00002e65 [SR] Beginning Verify and Repair transaction
2016-12-20 11:34:05, Info                  CSI    00002ecd [SR] Verify complete
2016-12-20 11:34:05, Info                  CSI    00002ece [SR] Verifying 100 components
2016-12-20 11:34:05, Info                  CSI    00002ecf [SR] Beginning Verify and Repair transaction
2016-12-20 11:34:10, Info                  CSI    00002f44 [SR] Verify complete
2016-12-20 11:34:10, Info                  CSI    00002f45 [SR] Verifying 100 components
2016-12-20 11:34:10, Info                  CSI    00002f46 [SR] Beginning Verify and Repair transaction
2016-12-20 11:34:16, Info                  CSI    00002faf [SR] Verify complete
2016-12-20 11:34:16, Info                  CSI    00002fb0 [SR] Verifying 100 components
2016-12-20 11:34:16, Info                  CSI    00002fb1 [SR] Beginning Verify and Repair transaction
2016-12-20 11:34:21, Info                  CSI    0000301a [SR] Verify complete
2016-12-20 11:34:22, Info                  CSI    0000301b [SR] Verifying 100 components
2016-12-20 11:34:22, Info                  CSI    0000301c [SR] Beginning Verify and Repair transaction
2016-12-20 11:34:25, Info                  CSI    00003083 [SR] Verify complete
2016-12-20 11:34:25, Info                  CSI    00003084 [SR] Verifying 100 components
2016-12-20 11:34:25, Info                  CSI    00003085 [SR] Beginning Verify and Repair transaction
2016-12-20 11:34:31, Info                  CSI    000030f6 [SR] Verify complete
2016-12-20 11:34:31, Info                  CSI    000030f7 [SR] Verifying 100 components
2016-12-20 11:34:31, Info                  CSI    000030f8 [SR] Beginning Verify and Repair transaction
2016-12-20 11:34:36, Info                  CSI    0000316d [SR] Verify complete
2016-12-20 11:34:36, Info                  CSI    0000316e [SR] Verifying 100 components
2016-12-20 11:34:36, Info                  CSI    0000316f [SR] Beginning Verify and Repair transaction
2016-12-20 11:34:40, Info                  CSI    000031de [SR] Verify complete
2016-12-20 11:34:40, Info                  CSI    000031df [SR] Verifying 100 components
2016-12-20 11:34:40, Info                  CSI    000031e0 [SR] Beginning Verify and Repair transaction
2016-12-20 11:34:45, Info                  CSI    0000324e [SR] Verify complete
2016-12-20 11:34:45, Info                  CSI    0000324f [SR] Verifying 100 components
2016-12-20 11:34:45, Info                  CSI    00003250 [SR] Beginning Verify and Repair transaction
2016-12-20 11:34:48, Info                  CSI    000032be [SR] Verify complete
2016-12-20 11:34:48, Info                  CSI    000032bf [SR] Verifying 100 components
2016-12-20 11:34:48, Info                  CSI    000032c0 [SR] Beginning Verify and Repair transaction
2016-12-20 11:34:52, Info                  CSI    00003334 [SR] Verify complete
2016-12-20 11:34:53, Info                  CSI    00003335 [SR] Verifying 100 components
2016-12-20 11:34:53, Info                  CSI    00003336 [SR] Beginning Verify and Repair transaction
2016-12-20 11:35:00, Info                  CSI    000033a0 [SR] Verify complete
2016-12-20 11:35:00, Info                  CSI    000033a1 [SR] Verifying 100 components
2016-12-20 11:35:00, Info                  CSI    000033a2 [SR] Beginning Verify and Repair transaction
2016-12-20 11:35:06, Info                  CSI    00003407 [SR] Verify complete
2016-12-20 11:35:06, Info                  CSI    00003408 [SR] Verifying 100 components
2016-12-20 11:35:06, Info                  CSI    00003409 [SR] Beginning Verify and Repair transaction
2016-12-20 11:35:13, Info                  CSI    0000347f [SR] Verify complete
2016-12-20 11:35:13, Info                  CSI    00003480 [SR] Verifying 100 components
2016-12-20 11:35:13, Info                  CSI    00003481 [SR] Beginning Verify and Repair transaction
2016-12-20 11:35:24, Info                  CSI    00003575 [SR] Verify complete
2016-12-20 11:35:24, Info                  CSI    00003576 [SR] Verifying 100 components
2016-12-20 11:35:24, Info                  CSI    00003577 [SR] Beginning Verify and Repair transaction
2016-12-20 11:35:29, Info                  CSI    000035f4 [SR] Verify complete
2016-12-20 11:35:29, Info                  CSI    000035f5 [SR] Verifying 100 components
2016-12-20 11:35:29, Info                  CSI    000035f6 [SR] Beginning Verify and Repair transaction
2016-12-20 11:35:34, Info                  CSI    0000365b [SR] Verify complete
2016-12-20 11:35:34, Info                  CSI    0000365c [SR] Verifying 100 components
2016-12-20 11:35:34, Info                  CSI    0000365d [SR] Beginning Verify and Repair transaction
2016-12-20 11:35:37, Info                  CSI    000036c2 [SR] Verify complete
2016-12-20 11:35:37, Info                  CSI    000036c3 [SR] Verifying 100 components
2016-12-20 11:35:37, Info                  CSI    000036c4 [SR] Beginning Verify and Repair transaction
2016-12-20 11:35:41, Info                  CSI    0000372a [SR] Verify complete
2016-12-20 11:35:41, Info                  CSI    0000372b [SR] Verifying 100 components
2016-12-20 11:35:41, Info                  CSI    0000372c [SR] Beginning Verify and Repair transaction
2016-12-20 11:35:46, Info                  CSI    00003791 [SR] Verify complete
2016-12-20 11:35:46, Info                  CSI    00003792 [SR] Verifying 100 components
2016-12-20 11:35:46, Info                  CSI    00003793 [SR] Beginning Verify and Repair transaction
2016-12-20 11:35:51, Info                  CSI    000037f8 [SR] Verify complete
2016-12-20 11:35:51, Info                  CSI    000037f9 [SR] Verifying 100 components
2016-12-20 11:35:51, Info                  CSI    000037fa [SR] Beginning Verify and Repair transaction
2016-12-20 11:35:56, Info                  CSI    0000385f [SR] Verify complete
2016-12-20 11:35:56, Info                  CSI    00003860 [SR] Verifying 100 components
2016-12-20 11:35:56, Info                  CSI    00003861 [SR] Beginning Verify and Repair transaction
2016-12-20 11:35:59, Info                  CSI    000038c7 [SR] Verify complete
2016-12-20 11:35:59, Info                  CSI    000038c8 [SR] Verifying 100 components
2016-12-20 11:35:59, Info                  CSI    000038c9 [SR] Beginning Verify and Repair transaction
2016-12-20 11:36:01, Info                  CSI    0000392f [SR] Verify complete
2016-12-20 11:36:01, Info                  CSI    00003930 [SR] Verifying 100 components
2016-12-20 11:36:01, Info                  CSI    00003931 [SR] Beginning Verify and Repair transaction
2016-12-20 11:36:04, Info                  CSI    00003996 [SR] Verify complete
2016-12-20 11:36:04, Info                  CSI    00003997 [SR] Verifying 100 components
2016-12-20 11:36:04, Info                  CSI    00003998 [SR] Beginning Verify and Repair transaction
2016-12-20 11:36:07, Info                  CSI    000039fd [SR] Verify complete
2016-12-20 11:36:07, Info                  CSI    000039fe [SR] Verifying 100 components
2016-12-20 11:36:07, Info                  CSI    000039ff [SR] Beginning Verify and Repair transaction
2016-12-20 11:36:11, Info                  CSI    00003a65 [SR] Verify complete
2016-12-20 11:36:11, Info                  CSI    00003a66 [SR] Verifying 100 components
2016-12-20 11:36:11, Info                  CSI    00003a67 [SR] Beginning Verify and Repair transaction
2016-12-20 11:36:14, Info                  CSI    00003aec [SR] Verify complete
2016-12-20 11:36:14, Info                  CSI    00003aed [SR] Verifying 100 components
2016-12-20 11:36:14, Info                  CSI    00003aee [SR] Beginning Verify and Repair transaction
2016-12-20 11:36:18, Info                  CSI    00003b53 [SR] Verify complete
2016-12-20 11:36:18, Info                  CSI    00003b54 [SR] Verifying 100 components
2016-12-20 11:36:18, Info                  CSI    00003b55 [SR] Beginning Verify and Repair transaction
2016-12-20 11:36:28, Info                  CSI    00003bbc [SR] Verify complete
2016-12-20 11:36:28, Info                  CSI    00003bbd [SR] Verifying 100 components
2016-12-20 11:36:28, Info                  CSI    00003bbe [SR] Beginning Verify and Repair transaction
2016-12-20 11:36:37, Info                  CSI    00003c23 [SR] Verify complete
2016-12-20 11:36:37, Info                  CSI    00003c24 [SR] Verifying 100 components
2016-12-20 11:36:37, Info                  CSI    00003c25 [SR] Beginning Verify and Repair transaction
2016-12-20 11:36:40, Info                  CSI    00003c8a [SR] Verify complete
2016-12-20 11:36:40, Info                  CSI    00003c8b [SR] Verifying 100 components
2016-12-20 11:36:40, Info                  CSI    00003c8c [SR] Beginning Verify and Repair transaction
2016-12-20 11:36:44, Info                  CSI    00003cf2 [SR] Verify complete
2016-12-20 11:36:44, Info                  CSI    00003cf3 [SR] Verifying 100 components
2016-12-20 11:36:44, Info                  CSI    00003cf4 [SR] Beginning Verify and Repair transaction
2016-12-20 11:36:48, Info                  CSI    00003d59 [SR] Verify complete
2016-12-20 11:36:48, Info                  CSI    00003d5a [SR] Verifying 100 components
2016-12-20 11:36:48, Info                  CSI    00003d5b [SR] Beginning Verify and Repair transaction
2016-12-20 11:36:56, Info                  CSI    00003dc5 [SR] Verify complete
2016-12-20 11:36:56, Info                  CSI    00003dc6 [SR] Verifying 100 components
2016-12-20 11:36:56, Info                  CSI    00003dc7 [SR] Beginning Verify and Repair transaction
2016-12-20 11:37:02, Info                  CSI    00003e31 [SR] Verify complete
2016-12-20 11:37:02, Info                  CSI    00003e32 [SR] Verifying 100 components
2016-12-20 11:37:02, Info                  CSI    00003e33 [SR] Beginning Verify and Repair transaction
2016-12-20 11:37:06, Info                  CSI    00003e98 [SR] Verify complete
2016-12-20 11:37:06, Info                  CSI    00003e99 [SR] Verifying 100 components
2016-12-20 11:37:06, Info                  CSI    00003e9a [SR] Beginning Verify and Repair transaction
2016-12-20 11:37:08, Info                  CSI    00003eff [SR] Verify complete
2016-12-20 11:37:08, Info                  CSI    00003f00 [SR] Verifying 100 components
2016-12-20 11:37:08, Info                  CSI    00003f01 [SR] Beginning Verify and Repair transaction
2016-12-20 11:37:13, Info                  CSI    00003f72 [SR] Verify complete
2016-12-20 11:37:13, Info                  CSI    00003f73 [SR] Verifying 100 components
2016-12-20 11:37:13, Info                  CSI    00003f74 [SR] Beginning Verify and Repair transaction
2016-12-20 11:37:17, Info                  CSI    00003fdb [SR] Verify complete
2016-12-20 11:37:17, Info                  CSI    00003fdc [SR] Verifying 100 components
2016-12-20 11:37:17, Info                  CSI    00003fdd [SR] Beginning Verify and Repair transaction
2016-12-20 11:37:20, Info                  CSI    00004042 [SR] Verify complete
2016-12-20 11:37:20, Info                  CSI    00004043 [SR] Verifying 100 components
2016-12-20 11:37:20, Info                  CSI    00004044 [SR] Beginning Verify and Repair transaction
2016-12-20 11:37:23, Info                  CSI    000040a9 [SR] Verify complete
2016-12-20 11:37:23, Info                  CSI    000040aa [SR] Verifying 100 components
2016-12-20 11:37:23, Info                  CSI    000040ab [SR] Beginning Verify and Repair transaction
2016-12-20 11:37:26, Info                  CSI    00004110 [SR] Verify complete
2016-12-20 11:37:26, Info                  CSI    00004111 [SR] Verifying 100 components
2016-12-20 11:37:26, Info                  CSI    00004112 [SR] Beginning Verify and Repair transaction
2016-12-20 11:37:29, Info                  CSI    00004177 [SR] Verify complete
2016-12-20 11:37:30, Info                  CSI    00004178 [SR] Verifying 100 components
2016-12-20 11:37:30, Info                  CSI    00004179 [SR] Beginning Verify and Repair transaction
2016-12-20 11:37:34, Info                  CSI    000041eb [SR] Verify complete
2016-12-20 11:37:34, Info                  CSI    000041ec [SR] Verifying 100 components
2016-12-20 11:37:34, Info                  CSI    000041ed [SR] Beginning Verify and Repair transaction
2016-12-20 11:37:39, Info                  CSI    00004258 [SR] Verify complete
2016-12-20 11:37:39, Info                  CSI    00004259 [SR] Verifying 100 components
2016-12-20 11:37:39, Info                  CSI    0000425a [SR] Beginning Verify and Repair transaction
2016-12-20 11:37:44, Info                  CSI    000042ca [SR] Verify complete
2016-12-20 11:37:44, Info                  CSI    000042cb [SR] Verifying 100 components
2016-12-20 11:37:44, Info                  CSI    000042cc [SR] Beginning Verify and Repair transaction
2016-12-20 11:37:48, Info                  CSI    00004344 [SR] Verify complete
2016-12-20 11:37:48, Info                  CSI    00004345 [SR] Verifying 100 components
2016-12-20 11:37:48, Info                  CSI    00004346 [SR] Beginning Verify and Repair transaction
2016-12-20 11:37:54, Info                  CSI    000043ab [SR] Verify complete
2016-12-20 11:37:54, Info                  CSI    000043ac [SR] Verifying 100 components
2016-12-20 11:37:54, Info                  CSI    000043ad [SR] Beginning Verify and Repair transaction
2016-12-20 11:37:59, Info                  CSI    00004426 [SR] Verify complete
2016-12-20 11:37:59, Info                  CSI    00004427 [SR] Verifying 100 components
2016-12-20 11:37:59, Info                  CSI    00004428 [SR] Beginning Verify and Repair transaction
2016-12-20 11:38:06, Info                  CSI    00004494 [SR] Verify complete
2016-12-20 11:38:06, Info                  CSI    00004495 [SR] Verifying 100 components
2016-12-20 11:38:06, Info                  CSI    00004496 [SR] Beginning Verify and Repair transaction
2016-12-20 11:38:09, Info                  CSI    000044fb [SR] Verify complete
2016-12-20 11:38:09, Info                  CSI    000044fc [SR] Verifying 100 components
2016-12-20 11:38:09, Info                  CSI    000044fd [SR] Beginning Verify and Repair transaction
2016-12-20 11:38:13, Info                  CSI    00004562 [SR] Verify complete
2016-12-20 11:38:13, Info                  CSI    00004563 [SR] Verifying 100 components
2016-12-20 11:38:13, Info                  CSI    00004564 [SR] Beginning Verify and Repair transaction
2016-12-20 11:38:19, Info                  CSI    000045da [SR] Verify complete
2016-12-20 11:38:20, Info                  CSI    000045db [SR] Verifying 100 components
2016-12-20 11:38:20, Info                  CSI    000045dc [SR] Beginning Verify and Repair transaction
2016-12-20 11:38:25, Info                  CSI    0000465d [SR] Verify complete
2016-12-20 11:38:25, Info                  CSI    0000465e [SR] Verifying 100 components
2016-12-20 11:38:25, Info                  CSI    0000465f [SR] Beginning Verify and Repair transaction
2016-12-20 11:38:34, Info                  CSI    000046df [SR] Verify complete
2016-12-20 11:38:34, Info                  CSI    000046e0 [SR] Verifying 100 components
2016-12-20 11:38:34, Info                  CSI    000046e1 [SR] Beginning Verify and Repair transaction
2016-12-20 11:38:40, Info                  CSI    00004750 [SR] Verify complete
2016-12-20 11:38:40, Info                  CSI    00004751 [SR] Verifying 100 components
2016-12-20 11:38:40, Info                  CSI    00004752 [SR] Beginning Verify and Repair transaction
2016-12-20 11:38:46, Info                  CSI    000047d5 [SR] Verify complete
2016-12-20 11:38:46, Info                  CSI    000047d6 [SR] Verifying 100 components
2016-12-20 11:38:46, Info                  CSI    000047d7 [SR] Beginning Verify and Repair transaction
2016-12-20 11:38:51, Info                  CSI    0000484a [SR] Verify complete
2016-12-20 11:38:51, Info                  CSI    0000484b [SR] Verifying 100 components
2016-12-20 11:38:51, Info                  CSI    0000484c [SR] Beginning Verify and Repair transaction
2016-12-20 11:38:57, Info                  CSI    000048c0 [SR] Verify complete
2016-12-20 11:38:57, Info                  CSI    000048c1 [SR] Verifying 100 components
2016-12-20 11:38:57, Info                  CSI    000048c2 [SR] Beginning Verify and Repair transaction
2016-12-20 11:39:03, Info                  CSI    0000492d [SR] Verify complete
2016-12-20 11:39:03, Info                  CSI    0000492e [SR] Verifying 100 components
2016-12-20 11:39:03, Info                  CSI    0000492f [SR] Beginning Verify and Repair transaction
2016-12-20 11:39:09, Info                  CSI    000049a8 [SR] Verify complete
2016-12-20 11:39:09, Info                  CSI    000049a9 [SR] Verifying 100 components
2016-12-20 11:39:09, Info                  CSI    000049aa [SR] Beginning Verify and Repair transaction
2016-12-20 11:39:15, Info                  CSI    00004a1b [SR] Verify complete
2016-12-20 11:39:15, Info                  CSI    00004a1c [SR] Verifying 100 components
2016-12-20 11:39:15, Info                  CSI    00004a1d [SR] Beginning Verify and Repair transaction
2016-12-20 11:39:21, Info                  CSI    00004a95 [SR] Verify complete
2016-12-20 11:39:21, Info                  CSI    00004a96 [SR] Verifying 100 components
2016-12-20 11:39:21, Info                  CSI    00004a97 [SR] Beginning Verify and Repair transaction
2016-12-20 11:39:26, Info                  CSI    00004b07 [SR] Verify complete
2016-12-20 11:39:26, Info                  CSI    00004b08 [SR] Verifying 100 components
2016-12-20 11:39:26, Info                  CSI    00004b09 [SR] Beginning Verify and Repair transaction
2016-12-20 11:39:33, Info                  CSI    00004bab [SR] Verify complete
2016-12-20 11:39:33, Info                  CSI    00004bac [SR] Verifying 100 components
2016-12-20 11:39:33, Info                  CSI    00004bad [SR] Beginning Verify and Repair transaction
2016-12-20 11:39:43, Info                  CSI    00004ca5 [SR] Verify complete
2016-12-20 11:39:43, Info                  CSI    00004ca6 [SR] Verifying 100 components
2016-12-20 11:39:43, Info                  CSI    00004ca7 [SR] Beginning Verify and Repair transaction
2016-12-20 11:39:48, Info                  CSI    00004d0d [SR] Verify complete
2016-12-20 11:39:48, Info                  CSI    00004d0e [SR] Verifying 100 components
2016-12-20 11:39:48, Info                  CSI    00004d0f [SR] Beginning Verify and Repair transaction
2016-12-20 11:39:53, Info                  CSI    00004d74 [SR] Verify complete
2016-12-20 11:39:53, Info                  CSI    00004d75 [SR] Verifying 100 components
2016-12-20 11:39:53, Info                  CSI    00004d76 [SR] Beginning Verify and Repair transaction
2016-12-20 11:39:58, Info                  CSI    00004df0 [SR] Verify complete
2016-12-20 11:39:58, Info                  CSI    00004df1 [SR] Verifying 100 components
2016-12-20 11:39:58, Info                  CSI    00004df2 [SR] Beginning Verify and Repair transaction
2016-12-20 11:40:03, Info                  CSI    00004e6e [SR] Verify complete
2016-12-20 11:40:03, Info                  CSI    00004e6f [SR] Verifying 100 components
2016-12-20 11:40:03, Info                  CSI    00004e70 [SR] Beginning Verify and Repair transaction
2016-12-20 11:40:09, Info                  CSI    00004eec [SR] Verify complete
2016-12-20 11:40:09, Info                  CSI    00004eed [SR] Verifying 100 components
2016-12-20 11:40:09, Info                  CSI    00004eee [SR] Beginning Verify and Repair transaction
2016-12-20 11:40:15, Info                  CSI    00004f5c [SR] Verify complete
2016-12-20 11:40:15, Info                  CSI    00004f5d [SR] Verifying 100 components
2016-12-20 11:40:15, Info                  CSI    00004f5e [SR] Beginning Verify and Repair transaction
2016-12-20 11:40:19, Info                  CSI    00004fc6 [SR] Verify complete
2016-12-20 11:40:19, Info                  CSI    00004fc7 [SR] Verifying 100 components
2016-12-20 11:40:19, Info                  CSI    00004fc8 [SR] Beginning Verify and Repair transaction
2016-12-20 11:40:25, Info                  CSI    0000505b [SR] Verify complete
2016-12-20 11:40:25, Info                  CSI    0000505c [SR] Verifying 100 components
2016-12-20 11:40:25, Info                  CSI    0000505d [SR] Beginning Verify and Repair transaction
2016-12-20 11:40:32, Info                  CSI    000050d2 [SR] Verify complete
2016-12-20 11:40:32, Info                  CSI    000050d3 [SR] Verifying 100 components
2016-12-20 11:40:32, Info                  CSI    000050d4 [SR] Beginning Verify and Repair transaction
2016-12-20 11:40:37, Info                  CSI    00005143 [SR] Verify complete
2016-12-20 11:40:38, Info                  CSI    00005144 [SR] Verifying 100 components
2016-12-20 11:40:38, Info                  CSI    00005145 [SR] Beginning Verify and Repair transaction
2016-12-20 11:40:42, Info                  CSI    000051ac [SR] Verify complete
2016-12-20 11:40:42, Info                  CSI    000051ad [SR] Verifying 100 components
2016-12-20 11:40:42, Info                  CSI    000051ae [SR] Beginning Verify and Repair transaction
2016-12-20 11:40:47, Info                  CSI    00005214 [SR] Verify complete
2016-12-20 11:40:47, Info                  CSI    00005215 [SR] Verifying 100 components
2016-12-20 11:40:47, Info                  CSI    00005216 [SR] Beginning Verify and Repair transaction
2016-12-20 11:40:52, Info                  CSI    0000527f [SR] Verify complete
2016-12-20 11:40:52, Info                  CSI    00005280 [SR] Verifying 100 components
2016-12-20 11:40:52, Info                  CSI    00005281 [SR] Beginning Verify and Repair transaction
2016-12-20 11:40:57, Info                  CSI    00005312 [SR] Verify complete
2016-12-20 11:40:57, Info                  CSI    00005313 [SR] Verifying 100 components
2016-12-20 11:40:57, Info                  CSI    00005314 [SR] Beginning Verify and Repair transaction
2016-12-20 11:41:01, Info                  CSI    0000537b [SR] Verify complete
2016-12-20 11:41:01, Info                  CSI    0000537c [SR] Verifying 100 components
2016-12-20 11:41:01, Info                  CSI    0000537d [SR] Beginning Verify and Repair transaction
2016-12-20 11:41:05, Info                  CSI    000053e4 [SR] Verify complete
2016-12-20 11:41:05, Info                  CSI    000053e5 [SR] Verifying 100 components
2016-12-20 11:41:05, Info                  CSI    000053e6 [SR] Beginning Verify and Repair transaction
2016-12-20 11:41:09, Info                  CSI    0000544d [SR] Verify complete
2016-12-20 11:41:09, Info                  CSI    0000544e [SR] Verifying 100 components
2016-12-20 11:41:09, Info                  CSI    0000544f [SR] Beginning Verify and Repair transaction
2016-12-20 11:41:15, Info                  CSI    000054ba [SR] Verify complete
2016-12-20 11:41:15, Info                  CSI    000054bb [SR] Verifying 100 components
2016-12-20 11:41:15, Info                  CSI    000054bc [SR] Beginning Verify and Repair transaction
2016-12-20 11:41:19, Info                  CSI    00005526 [SR] Verify complete
2016-12-20 11:41:19, Info                  CSI    00005527 [SR] Verifying 100 components
2016-12-20 11:41:19, Info                  CSI    00005528 [SR] Beginning Verify and Repair transaction
2016-12-20 11:41:23, Info                  CSI    0000558e [SR] Verify complete
2016-12-20 11:41:23, Info                  CSI    0000558f [SR] Verifying 100 components
2016-12-20 11:41:23, Info                  CSI    00005590 [SR] Beginning Verify and Repair transaction
2016-12-20 11:41:27, Info                  CSI    000055f7 [SR] Verify complete
2016-12-20 11:41:27, Info                  CSI    000055f8 [SR] Verifying 100 components
2016-12-20 11:41:27, Info                  CSI    000055f9 [SR] Beginning Verify and Repair transaction
2016-12-20 11:41:31, Info                  CSI    00005667 [SR] Verify complete
2016-12-20 11:41:31, Info                  CSI    00005668 [SR] Verifying 100 components
2016-12-20 11:41:31, Info                  CSI    00005669 [SR] Beginning Verify and Repair transaction
2016-12-20 11:41:36, Info                  CSI    000056d1 [SR] Verify complete
2016-12-20 11:41:37, Info                  CSI    000056d2 [SR] Verifying 100 components
2016-12-20 11:41:37, Info                  CSI    000056d3 [SR] Beginning Verify and Repair transaction
2016-12-20 11:41:42, Info                  CSI    00005739 [SR] Verify complete
2016-12-20 11:41:42, Info                  CSI    0000573a [SR] Verifying 100 components
2016-12-20 11:41:42, Info                  CSI    0000573b [SR] Beginning Verify and Repair transaction
2016-12-20 11:41:47, Info                  CSI    000057a0 [SR] Verify complete
2016-12-20 11:41:47, Info                  CSI    000057a1 [SR] Verifying 100 components
2016-12-20 11:41:47, Info                  CSI    000057a2 [SR] Beginning Verify and Repair transaction
2016-12-20 11:41:52, Info                  CSI    00005808 [SR] Verify complete
2016-12-20 11:41:52, Info                  CSI    00005809 [SR] Verifying 100 components
2016-12-20 11:41:52, Info                  CSI    0000580a [SR] Beginning Verify and Repair transaction
2016-12-20 11:41:56, Info                  CSI    00005871 [SR] Verify complete
2016-12-20 11:41:57, Info                  CSI    00005872 [SR] Verifying 100 components
2016-12-20 11:41:57, Info                  CSI    00005873 [SR] Beginning Verify and Repair transaction
2016-12-20 11:41:59, Info                  CSI    000058d8 [SR] Verify complete
2016-12-20 11:41:59, Info                  CSI    000058d9 [SR] Verifying 100 components
2016-12-20 11:41:59, Info                  CSI    000058da [SR] Beginning Verify and Repair transaction
2016-12-20 11:42:05, Info                  CSI    0000593f [SR] Verify complete
2016-12-20 11:42:05, Info                  CSI    00005940 [SR] Verifying 66 components
2016-12-20 11:42:05, Info                  CSI    00005941 [SR] Beginning Verify and Repair transaction
2016-12-20 11:42:07, Info                  CSI    00005984 [SR] Verify complete
2016-12-20 11:42:07, Info                  CSI    00005985 [SR] Repairing 0 components
2016-12-20 11:42:07, Info                  CSI    00005986 [SR] Beginning Verify and Repair transaction
2016-12-20 11:42:07, Info                  CSI    00005987 [SR] Repair complete

  • 0

#4
RJ7887

RJ7887

    Member

  • Topic Starter
  • Member
  • PipPip
  • 96 posts

First VEW log.

 

Vino's Event Viewer v01c run on Windows 7 in English
Report run at 20/12/2016 11:56:41 AM
 
Note: All dates below are in the format dd/mm/yyyy
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 20/12/2016 6:00:51 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 20/12/2016 7:55:00 PM
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The NVIDIA Update Service Daemon service failed to start due to the following error:  The service did not start due to a logon failure.
 
Log: 'System' Date/Time: 20/12/2016 7:55:00 PM
Type: Error Category: 0
Event: 7038 Source: Service Control Manager
The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error:  The password for this account has expired.  To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).
 
Log: 'System' Date/Time: 20/12/2016 7:54:41 PM
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The Dell Digital Delivery Service service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
 
Log: 'System' Date/Time: 20/12/2016 7:54:41 PM
Type: Error Category: 0
Event: 7009 Source: Service Control Manager
A timeout was reached (30000 milliseconds) while waiting for the Dell Digital Delivery Service service to connect.
 
Log: 'System' Date/Time: 20/12/2016 7:52:25 PM
Type: Error Category: 0
Event: 10016 Source: Microsoft-Windows-DistributedCOM
The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID  {8D8F4F83-3594-4F07-8369-FC3C3CAE4919}  and APPID  {F72671A9-012C-4725-9D2F-2A4D32D65169}  to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Log: 'System' Date/Time: 20/12/2016 7:51:59 PM
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The IDVaultSvc service failed to start due to the following error:  The system cannot find the file specified.
 
Log: 'System' Date/Time: 20/12/2016 7:32:07 PM
Type: Error Category: 0
Event: 10016 Source: Microsoft-Windows-DistributedCOM
The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID  {8D8F4F83-3594-4F07-8369-FC3C3CAE4919}  and APPID  {F72671A9-012C-4725-9D2F-2A4D32D65169}  to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Log: 'System' Date/Time: 20/12/2016 7:25:47 PM
Type: Error Category: 0
Event: 10016 Source: Microsoft-Windows-DistributedCOM
The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID  {C2F03A33-21F5-47FA-B4BB-156362A2F239}  and APPID  {316CDED5-E4AE-4B15-9113-7055D84DCC97}  to the user officePC\angie SID (S-1-5-21-2363693564-2664365946-1726940214-1002) from address LocalHost (Using LRPC) running in the application container Microsoft.Windows.Cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). This security permission can be modified using the Component Services administrative tool.
 
Log: 'System' Date/Time: 20/12/2016 7:25:45 PM
Type: Error Category: 0
Event: 10016 Source: Microsoft-Windows-DistributedCOM
The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID  {C2F03A33-21F5-47FA-B4BB-156362A2F239}  and APPID  {316CDED5-E4AE-4B15-9113-7055D84DCC97}  to the user officePC\angie SID (S-1-5-21-2363693564-2664365946-1726940214-1002) from address LocalHost (Using LRPC) running in the application container Microsoft.Windows.Cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). This security permission can be modified using the Component Services administrative tool.
 
Log: 'System' Date/Time: 20/12/2016 7:25:45 PM
Type: Error Category: 0
Event: 10016 Source: Microsoft-Windows-DistributedCOM
The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID  {C2F03A33-21F5-47FA-B4BB-156362A2F239}  and APPID  {316CDED5-E4AE-4B15-9113-7055D84DCC97}  to the user officePC\angie SID (S-1-5-21-2363693564-2664365946-1726940214-1002) from address LocalHost (Using LRPC) running in the application container Microsoft.Windows.Cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). This security permission can be modified using the Component Services administrative tool.
 
Log: 'System' Date/Time: 20/12/2016 7:25:42 PM
Type: Error Category: 0
Event: 10016 Source: Microsoft-Windows-DistributedCOM
The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID  {C2F03A33-21F5-47FA-B4BB-156362A2F239}  and APPID  {316CDED5-E4AE-4B15-9113-7055D84DCC97}  to the user officePC\angie SID (S-1-5-21-2363693564-2664365946-1726940214-1002) from address LocalHost (Using LRPC) running in the application container Microsoft.Windows.Cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). This security permission can be modified using the Component Services administrative tool.
 
Log: 'System' Date/Time: 20/12/2016 7:25:41 PM
Type: Error Category: 0
Event: 10016 Source: Microsoft-Windows-DistributedCOM
The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID  {C2F03A33-21F5-47FA-B4BB-156362A2F239}  and APPID  {316CDED5-E4AE-4B15-9113-7055D84DCC97}  to the user officePC\angie SID (S-1-5-21-2363693564-2664365946-1726940214-1002) from address LocalHost (Using LRPC) running in the application container Microsoft.Windows.Cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). This security permission can be modified using the Component Services administrative tool.
 
Log: 'System' Date/Time: 20/12/2016 7:25:41 PM
Type: Error Category: 0
Event: 10016 Source: Microsoft-Windows-DistributedCOM
The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID  {C2F03A33-21F5-47FA-B4BB-156362A2F239}  and APPID  {316CDED5-E4AE-4B15-9113-7055D84DCC97}  to the user officePC\angie SID (S-1-5-21-2363693564-2664365946-1726940214-1002) from address LocalHost (Using LRPC) running in the application container Microsoft.Windows.Cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). This security permission can be modified using the Component Services administrative tool.
 
Log: 'System' Date/Time: 20/12/2016 7:25:41 PM
Type: Error Category: 0
Event: 10016 Source: Microsoft-Windows-DistributedCOM
The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID  {C2F03A33-21F5-47FA-B4BB-156362A2F239}  and APPID  {316CDED5-E4AE-4B15-9113-7055D84DCC97}  to the user officePC\angie SID (S-1-5-21-2363693564-2664365946-1726940214-1002) from address LocalHost (Using LRPC) running in the application container Microsoft.Windows.Cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). This security permission can be modified using the Component Services administrative tool.
 
Log: 'System' Date/Time: 20/12/2016 7:23:30 PM
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The NVIDIA Update Service Daemon service failed to start due to the following error:  The service did not start due to a logon failure.
 
Log: 'System' Date/Time: 20/12/2016 7:23:30 PM
Type: Error Category: 0
Event: 7038 Source: Service Control Manager
The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error:  The password for this account has expired.  To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).
 
Log: 'System' Date/Time: 20/12/2016 7:23:23 PM
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The Dell Digital Delivery Service service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
 
Log: 'System' Date/Time: 20/12/2016 7:23:23 PM
Type: Error Category: 0
Event: 7009 Source: Service Control Manager
A timeout was reached (30000 milliseconds) while waiting for the Dell Digital Delivery Service service to connect.
 
Log: 'System' Date/Time: 20/12/2016 7:20:44 PM
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The IDVaultSvc service failed to start due to the following error:  The system cannot find the file specified.
 
Log: 'System' Date/Time: 20/12/2016 7:18:35 PM
Type: Error Category: 0
Event: 10010 Source: Microsoft-Windows-DistributedCOM
The server CortanaUI.AppX2zaz8jbbr0w290z5hj9akawcw92nxmjr.mca did not register with DCOM within the required timeout.
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 20/12/2016 7:52:07 PM
Type: Warning Category: 0
Event: 11 Source: Microsoft-Windows-Wininit
Custom dynamic link libraries are being loaded for every application. The system administrator should review the list of libraries to ensure they are related to trusted applications. Please visit http://support.microsoft.com/kb/197571for more information.
 
Log: 'System' Date/Time: 20/12/2016 7:51:57 PM
Type: Warning Category: 212
Event: 219 Source: Microsoft-Windows-Kernel-PnP
The driver \Driver\WudfRd failed to load for the device SWD\WPDBUSENUM\_??_USBSTOR#Disk&Ven_Generic-&Prod_Multi-Card&Rev_1.00#20071114173400000&0#{53f56307-b6bf-11d0-94f2-00a0c91efb8b}.
 
Log: 'System' Date/Time: 20/12/2016 7:20:50 PM
Type: Warning Category: 0
Event: 11 Source: Microsoft-Windows-Wininit
Custom dynamic link libraries are being loaded for every application. The system administrator should review the list of libraries to ensure they are related to trusted applications. Please visit http://support.microsoft.com/kb/197571for more information.
 
Log: 'System' Date/Time: 20/12/2016 7:20:42 PM
Type: Warning Category: 212
Event: 219 Source: Microsoft-Windows-Kernel-PnP
The driver \Driver\WudfRd failed to load for the device SWD\WPDBUSENUM\_??_USBSTOR#Disk&Ven_Generic-&Prod_Multi-Card&Rev_1.00#20071114173400000&0#{53f56307-b6bf-11d0-94f2-00a0c91efb8b}.
 
Log: 'System' Date/Time: 20/12/2016 6:59:19 PM
Type: Warning Category: 1014
Event: 1014 Source: Microsoft-Windows-DNS-Client
Name resolution for the name match.rtbidder.net timed out after none of the configured DNS servers responded.
 
Log: 'System' Date/Time: 20/12/2016 6:11:11 PM
Type: Warning Category: 0
Event: 11 Source: Microsoft-Windows-Wininit
Custom dynamic link libraries are being loaded for every application. The system administrator should review the list of libraries to ensure they are related to trusted applications. Please visit http://support.microsoft.com/kb/197571for more information.
 
Log: 'System' Date/Time: 20/12/2016 6:11:06 PM
Type: Warning Category: 212
Event: 219 Source: Microsoft-Windows-Kernel-PnP
The driver \Driver\WudfRd failed to load for the device SWD\WPDBUSENUM\_??_USBSTOR#Disk&Ven_Generic-&Prod_Multi-Card&Rev_1.00#20071114173400000&0#{53f56307-b6bf-11d0-94f2-00a0c91efb8b}.
 
Log: 'System' Date/Time: 20/12/2016 6:01:48 PM
Type: Warning Category: 0
Event: 11 Source: Microsoft-Windows-Wininit
Custom dynamic link libraries are being loaded for every application. The system administrator should review the list of libraries to ensure they are related to trusted applications. Please visit http://support.microsoft.com/kb/197571for more information.
 
Log: 'System' Date/Time: 20/12/2016 6:01:43 PM
Type: Warning Category: 212
Event: 219 Source: Microsoft-Windows-Kernel-PnP
The driver \Driver\WudfRd failed to load for the device SWD\WPDBUSENUM\_??_USBSTOR#Disk&Ven_Generic-&Prod_Multi-Card&Rev_1.00#20071114173400000&0#{53f56307-b6bf-11d0-94f2-00a0c91efb8b}.
 
Log: 'System' Date/Time: 20/12/2016 5:00:48 PM
Type: Warning Category: 0
Event: 134 Source: Microsoft-Windows-Time-Service
NtpClient was unable to set a manual peer to use as a time source because of DNS resolution error on 'time-a.nist.gov,0x1'. NtpClient will try again in 15 minutes and double the reattempt interval thereafter. The error was: No such host is known. (0x80072AF9)
 
Log: 'System' Date/Time: 19/12/2016 8:12:03 PM
Type: Warning Category: 1014
Event: 1014 Source: Microsoft-Windows-DNS-Client
Name resolution for the name wpad timed out after none of the configured DNS servers responded.
 
Log: 'System' Date/Time: 19/12/2016 5:33:45 PM
Type: Warning Category: 1014
Event: 1014 Source: Microsoft-Windows-DNS-Client
Name resolution for the name BRW008092A9FE93 timed out after none of the configured DNS servers responded.
 
Log: 'System' Date/Time: 19/12/2016 4:27:27 PM
Type: Warning Category: 0
Event: 134 Source: Microsoft-Windows-Time-Service
NtpClient was unable to set a manual peer to use as a time source because of DNS resolution error on 'time-a.nist.gov,0x1'. NtpClient will try again in 15 minutes and double the reattempt interval thereafter. The error was: No such host is known. (0x80072AF9)
 
Log: 'System' Date/Time: 18/12/2016 5:23:39 PM
Type: Warning Category: 1014
Event: 1014 Source: Microsoft-Windows-DNS-Client
Name resolution for the name match.rtbidder.net timed out after none of the configured DNS servers responded.
 
Log: 'System' Date/Time: 18/12/2016 5:20:19 PM
Type: Warning Category: 0
Event: 134 Source: Microsoft-Windows-Time-Service
NtpClient was unable to set a manual peer to use as a time source because of DNS resolution error on 'time-a.nist.gov,0x1'. NtpClient will try again in 15 minutes and double the reattempt interval thereafter. The error was: No such host is known. (0x80072AF9)
 
Log: 'System' Date/Time: 18/12/2016 11:26:01 AM
Type: Warning Category: 0
Event: 134 Source: Microsoft-Windows-Time-Service
NtpClient was unable to set a manual peer to use as a time source because of DNS resolution error on 'time-a.nist.gov,0x1'. NtpClient will try again in 15 minutes and double the reattempt interval thereafter. The error was: No such host is known. (0x80072AF9)
 
Log: 'System' Date/Time: 18/12/2016 11:25:59 AM
Type: Warning Category: 0
Event: 134 Source: Microsoft-Windows-Time-Service
NtpClient was unable to set a manual peer to use as a time source because of DNS resolution error on 'time-a.nist.gov,0x1'. NtpClient will try again in 15 minutes and double the reattempt interval thereafter. The error was: No such host is known. (0x80072AF9)
 
Log: 'System' Date/Time: 18/12/2016 11:21:31 AM
Type: Warning Category: 0
Event: 134 Source: Microsoft-Windows-Time-Service
NtpClient was unable to set a manual peer to use as a time source because of DNS resolution error on 'time-a.nist.gov,0x1'. NtpClient will try again in 15 minutes and double the reattempt interval thereafter. The error was: No such host is known. (0x80072AF9)
 
Log: 'System' Date/Time: 18/12/2016 3:06:38 AM
Type: Warning Category: 0
Event: 11 Source: Microsoft-Windows-Wininit
Custom dynamic link libraries are being loaded for every application. The system administrator should review the list of libraries to ensure they are related to trusted applications. Please visit http://support.microsoft.com/kb/197571for more information.
 
Log: 'System' Date/Time: 18/12/2016 3:06:35 AM
Type: Warning Category: 212
Event: 219 Source: Microsoft-Windows-Kernel-PnP
The driver \Driver\WudfRd failed to load for the device SWD\WPDBUSENUM\_??_USBSTOR#Disk&Ven_Generic-&Prod_Multi-Card&Rev_1.00#20071114173400000&0#{53f56307-b6bf-11d0-94f2-00a0c91efb8b}.

  • 0

#5
RJ7887

RJ7887

    Member

  • Topic Starter
  • Member
  • PipPip
  • 96 posts

VEW application log.

 

Vino's Event Viewer v01c run on Windows 7 in English
Report run at 20/12/2016 11:58:40 AM
 
Note: All dates below are in the format dd/mm/yyyy
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'Application' Date/Time: 20/12/2016 7:18:35 PM
Type: Error Category: 5973
Event: 5973 Source: Microsoft-Windows-Immersive-Shell
Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: The app didn't start. See the Microsoft-Windows-TWinUI/Operational log for additional information.
 
Log: 'Application' Date/Time: 20/12/2016 7:18:34 PM
Type: Error Category: 5973
Event: 5973 Source: Microsoft-Windows-Immersive-Shell
Activation of app Microsoft.Windows.Photos_8wekyb3d8bbwe!App failed with error: The app didn't start. See the Microsoft-Windows-TWinUI/Operational log for additional information.
 
Log: 'Application' Date/Time: 20/12/2016 6:56:23 PM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
Local Hostname officePC.local already in use; will try officePC-2.local instead
 
Log: 'Application' Date/Time: 20/12/2016 6:56:23 PM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
mDNSCoreReceiveResponse: ProbeCount 1; will deregister    4 officePC.local. Addr 10.0.1.39
 
Log: 'Application' Date/Time: 20/12/2016 6:56:23 PM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
mDNSCoreReceiveResponse: Received from 10.0.1.23:5353    4 officePC.local. Addr 10.0.1.23
 
Log: 'Application' Date/Time: 20/12/2016 6:16:38 PM
Type: Error Category: 0
Event: 1008 Source: Microsoft-Windows-Perflib
The Open Procedure for service "BITS" in DLL "C:\Windows\System32\bitsperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
 
Log: 'Application' Date/Time: 20/12/2016 6:09:24 PM
Type: Error Category: 100
Event: 1000 Source: Application Error
Faulting application name: IDVault.exe, version: 1.13.521.2, time stamp: 0x519c3426 Faulting module name: KERNELBASE.dll, version: 10.0.14393.479, time stamp: 0x58256d37 Exception code: 0xe0434352 Fault offset: 0x000da832 Faulting process id: 0x3790 Faulting application start time: 0x01d25aec31ef893f Faulting application path: C:\Program Files (x86)\Constant Guard Protection Suite\IDVault.exe Faulting module path: C:\WINDOWS\System32\KERNELBASE.dll Report Id: 4fe0d226-7f3e-408c-b187-9a3a42f6473f Faulting package full name:  Faulting package-relative application ID: 
 
Log: 'Application' Date/Time: 20/12/2016 6:09:24 PM
Type: Error Category: 0
Event: 1026 Source: .NET Runtime
Application: IDVault.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.IO.FileNotFoundException
   at GuardId.Program.Main(System.String[])
 
 
 
Log: 'Application' Date/Time: 20/12/2016 6:06:41 PM
Type: Error Category: 100
Event: 1000 Source: Application Error
Faulting application name: IDVault.exe, version: 1.13.521.2, time stamp: 0x519c3426 Faulting module name: KERNELBASE.dll, version: 10.0.14393.479, time stamp: 0x58256d37 Exception code: 0xe0434352 Fault offset: 0x000da832 Faulting process id: 0x2478 Faulting application start time: 0x01d25aebc586bb22 Faulting application path: C:\Program Files (x86)\Constant Guard Protection Suite\IDVault.exe Faulting module path: C:\WINDOWS\System32\KERNELBASE.dll Report Id: 2c1dc896-c85b-427e-9fc0-236b51227bb6 Faulting package full name:  Faulting package-relative application ID: 
 
Log: 'Application' Date/Time: 20/12/2016 6:06:35 PM
Type: Error Category: 0
Event: 1026 Source: .NET Runtime
Application: IDVault.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.IO.FileNotFoundException
   at GuardId.Program.Main(System.String[])
 
 
 
Log: 'Application' Date/Time: 20/12/2016 6:02:19 PM
Type: Error Category: 0
Event: 0 Source: IDVault
IDVault Service error. Message: The type initializer for 'GuardId.IdVaultCore.Tracking.TrackingService' threw an exception.
 
Log: 'Application' Date/Time: 19/12/2016 5:34:42 PM
Type: Error Category: 100
Event: 1000 Source: Application Error
Faulting application name: IDVault.exe, version: 1.13.521.2, time stamp: 0x519c3426 Faulting module name: KERNELBASE.dll, version: 10.0.14393.479, time stamp: 0x58256d37 Exception code: 0xe0434352 Fault offset: 0x000da832 Faulting process id: 0x7e0 Faulting application start time: 0x01d25a1e2e7ed761 Faulting application path: C:\Program Files (x86)\Constant Guard Protection Suite\IDVault.exe Faulting module path: C:\WINDOWS\System32\KERNELBASE.dll Report Id: 6a46e1af-ddb7-4ed4-b26c-34cb5b76b5b1 Faulting package full name:  Faulting package-relative application ID: 
 
Log: 'Application' Date/Time: 19/12/2016 5:34:42 PM
Type: Error Category: 0
Event: 1026 Source: .NET Runtime
Application: IDVault.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.IO.FileNotFoundException
   at GuardId.Program.Main(System.String[])
 
 
 
Log: 'Application' Date/Time: 19/12/2016 4:52:22 PM
Type: Error Category: 100
Event: 1000 Source: Application Error
Faulting application name: IDVault.exe, version: 1.13.521.2, time stamp: 0x519c3426 Faulting module name: KERNELBASE.dll, version: 10.0.14393.479, time stamp: 0x58256d37 Exception code: 0xe0434352 Fault offset: 0x000da832 Faulting process id: 0x296c Faulting application start time: 0x01d25a18445db49c Faulting application path: C:\Program Files (x86)\Constant Guard Protection Suite\IDVault.exe Faulting module path: C:\WINDOWS\System32\KERNELBASE.dll Report Id: caa7c51d-6af3-4544-ba65-7bcd90b65b49 Faulting package full name:  Faulting package-relative application ID: 
 
Log: 'Application' Date/Time: 19/12/2016 4:52:22 PM
Type: Error Category: 0
Event: 1026 Source: .NET Runtime
Application: IDVault.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.IO.FileNotFoundException
   at GuardId.Program.Main(System.String[])
 
 
 
Log: 'Application' Date/Time: 19/12/2016 4:28:31 PM
Type: Error Category: 0
Event: 1008 Source: Microsoft-Windows-Perflib
The Open Procedure for service "BITS" in DLL "C:\Windows\System32\bitsperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
 
Log: 'Application' Date/Time: 18/12/2016 5:21:18 PM
Type: Error Category: 100
Event: 1000 Source: Application Error
Faulting application name: IDVault.exe, version: 1.13.521.2, time stamp: 0x519c3426 Faulting module name: KERNELBASE.dll, version: 10.0.14393.479, time stamp: 0x58256d37 Exception code: 0xe0434352 Fault offset: 0x000da832 Faulting process id: 0x24c8 Faulting application start time: 0x01d2595323d30d58 Faulting application path: C:\Program Files (x86)\Constant Guard Protection Suite\IDVault.exe Faulting module path: C:\WINDOWS\System32\KERNELBASE.dll Report Id: 961df7ae-5e7c-42b8-b9ea-d92dd13f4ecd Faulting package full name:  Faulting package-relative application ID: 
 
Log: 'Application' Date/Time: 18/12/2016 5:21:17 PM
Type: Error Category: 0
Event: 1026 Source: .NET Runtime
Application: IDVault.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.IO.FileNotFoundException
   at GuardId.Program.Main(System.String[])
 
 
 
Log: 'Application' Date/Time: 18/12/2016 3:07:03 AM
Type: Error Category: 0
Event: 0 Source: IDVault
IDVault Service error. Message: The type initializer for 'GuardId.IdVaultCore.Tracking.TrackingService' threw an exception.
 
Log: 'Application' Date/Time: 17/12/2016 5:46:53 PM
Type: Error Category: 0
Event: 1008 Source: Microsoft-Windows-Perflib
The Open Procedure for service "BITS" in DLL "C:\Windows\System32\bitsperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'Application' Date/Time: 18/12/2016 3:03:09 AM
Type: Warning Category: 0
Event: 6001 Source: Microsoft-Windows-Winlogon
The winlogon notification subscriber <Sens> failed a notification event.
 
Log: 'Application' Date/Time: 16/12/2016 6:04:22 PM
Type: Warning Category: 7
Event: 508 Source: ESENT
SettingSyncHost (3388) {72180F22-7207-4727-975C-D2FBD41E9E3F}: A request to write to the file "C:\Users\angie\AppData\Local\Microsoft\Windows\SettingSync\metastore\meta.jfm" at offset 0 (0x0000000000000000) for 8192 (0x00002000) bytes succeeded, but took an abnormally long time (19 seconds) to be serviced by the OS. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.
 
Log: 'Application' Date/Time: 16/12/2016 6:03:40 PM
Type: Warning Category: 7
Event: 508 Source: ESENT
SettingSyncHost (3388) {D8F94BB5-21CB-4847-A3F6-9FB63FD92F03}: A request to write to the file "C:\Users\angie\AppData\Local\Microsoft\Windows\SettingSync\remotemetastore\v1\edb.log" at offset 159744 (0x0000000000027000) for 4096 (0x00001000) bytes succeeded, but took an abnormally long time (30 seconds) to be serviced by the OS. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.
 
Log: 'Application' Date/Time: 16/12/2016 6:03:38 PM
Type: Warning Category: 7
Event: 508 Source: ESENT
SettingSyncHost (3388) {72180F22-7207-4727-975C-D2FBD41E9E3F}: A request to write to the file "C:\Users\angie\AppData\Local\Microsoft\Windows\SettingSync\metastore\meta.edb" at offset 901120 (0x00000000000dc000) for 16384 (0x00004000) bytes succeeded, but took an abnormally long time (28 seconds) to be serviced by the OS. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.
 
Log: 'Application' Date/Time: 16/12/2016 6:03:38 PM
Type: Warning Category: 7
Event: 508 Source: ESENT
SettingSyncHost (3388) {72180F22-7207-4727-975C-D2FBD41E9E3F}: A request to write to the file "C:\Users\angie\AppData\Local\Microsoft\Windows\SettingSync\metastore\edb.log" at offset 499712 (0x000000000007a000) for 16384 (0x00004000) bytes succeeded, but took an abnormally long time (28 seconds) to be serviced by the OS. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.
 
Log: 'Application' Date/Time: 16/12/2016 6:03:38 PM
Type: Warning Category: 7
Event: 510 Source: ESENT
SettingSyncHost (3388) {D8F94BB5-21CB-4847-A3F6-9FB63FD92F03}: A request to write to the file "C:\Users\angie\AppData\Local\Microsoft\Windows\SettingSync\remotemetastore\v1\meta.edb" at offset 1376256 (0x0000000000150000) for 16384 (0x00004000) bytes succeeded, but took an abnormally long time (28 seconds) to be serviced by the OS. In addition, 0 other I/O requests to this file have also taken an abnormally long time to be serviced since the last message regarding this problem was posted 2 seconds ago. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.
 
Log: 'Application' Date/Time: 16/12/2016 6:03:38 PM
Type: Warning Category: 7
Event: 508 Source: ESENT
SettingSyncHost (3388) {D8F94BB5-21CB-4847-A3F6-9FB63FD92F03}: A request to write to the file "C:\Users\angie\AppData\Local\Microsoft\Windows\SettingSync\remotemetastore\v1\meta.edb" at offset 950272 (0x00000000000e8000) for 16384 (0x00004000) bytes succeeded, but took an abnormally long time (18 seconds) to be serviced by the OS. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.
 
Log: 'Application' Date/Time: 16/12/2016 5:30:22 PM
Type: Warning Category: 3
Event: 472 Source: ESENT
SettingSyncHost (3388) {31475560-D9AF-413A-8B9C-E9247BFF9333}: The shadow header page of file C:\Users\angie\AppData\Local\Microsoft\Windows\SettingSync\remotemetastore\v1\meta.edb was damaged. The primary header page (16384 bytes) was used instead.
 
Log: 'Application' Date/Time: 13/12/2016 3:57:14 PM
Type: Warning Category: 7
Event: 508 Source: ESENT
SettingSyncHost (1124) {4E995F63-4AAC-4DAE-A0E1-11BE2F1010E6}: A request to write to the file "C:\Users\angie\AppData\Local\Microsoft\Windows\SettingSync\remotemetastore\v1\edb.log" at offset 286720 (0x0000000000046000) for 4096 (0x00001000) bytes succeeded, but took an abnormally long time (17 seconds) to be serviced by the OS. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.
 
Log: 'Application' Date/Time: 13/12/2016 3:57:14 PM
Type: Warning Category: 7
Event: 508 Source: ESENT
SettingSyncHost (1124) {5CD8B69B-C14C-4C0D-8E09-5881C0A12C00}: A request to write to the file "C:\Users\angie\AppData\Local\Microsoft\Windows\SettingSync\metastore\meta.edb" at offset 1114112 (0x0000000000110000) for 16384 (0x00004000) bytes succeeded, but took an abnormally long time (16 seconds) to be serviced by the OS. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.
 
Log: 'Application' Date/Time: 10/12/2016 1:35:02 AM
Type: Warning Category: 0
Event: 6001 Source: Microsoft-Windows-Winlogon
The winlogon notification subscriber <Sens> failed a notification event.
 
Log: 'Application' Date/Time: 18/11/2016 4:58:22 PM
Type: Warning Category: 7
Event: 508 Source: ESENT
SettingSyncHost (10212) {16956CEB-C822-4EB4-8711-358A8302567A}: A request to write to the file "C:\Users\angie\AppData\Local\Microsoft\Windows\SettingSync\metastore\meta.jfm" at offset 0 (0x0000000000000000) for 8192 (0x00002000) bytes succeeded, but took an abnormally long time (30 seconds) to be serviced by the OS. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.
 
Log: 'Application' Date/Time: 18/11/2016 4:58:22 PM
Type: Warning Category: 7
Event: 508 Source: ESENT
SettingSyncHost (10212) {16956CEB-C822-4EB4-8711-358A8302567A}: A request to write to the file "C:\Users\angie\AppData\Local\Microsoft\Windows\SettingSync\metastore\meta.edb" at offset 901120 (0x00000000000dc000) for 16384 (0x00004000) bytes succeeded, but took an abnormally long time (37 seconds) to be serviced by the OS. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.
 
Log: 'Application' Date/Time: 18/11/2016 4:58:22 PM
Type: Warning Category: 7
Event: 508 Source: ESENT
SettingSyncHost (10212) {16956CEB-C822-4EB4-8711-358A8302567A}: A request to write to the file "C:\Users\angie\AppData\Local\Microsoft\Windows\SettingSync\metastore\edb.log" at offset 69632 (0x0000000000011000) for 12288 (0x00003000) bytes succeeded, but took an abnormally long time (37 seconds) to be serviced by the OS. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.
 
Log: 'Application' Date/Time: 18/11/2016 4:58:11 PM
Type: Warning Category: 7
Event: 510 Source: ESENT
SettingSyncHost (10212) {A54F39C6-9491-4311-B29E-7E7E25FDB83D}: A request to write to the file "C:\Users\angie\AppData\Local\Microsoft\Windows\SettingSync\remotemetastore\v1\meta.edb" at offset 1376256 (0x0000000000150000) for 16384 (0x00004000) bytes succeeded, but took an abnormally long time (26 seconds) to be serviced by the OS. In addition, 1 other I/O requests to this file have also taken an abnormally long time to be serviced since the last message regarding this problem was posted 10 seconds ago. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.
 
Log: 'Application' Date/Time: 18/11/2016 4:58:00 PM
Type: Warning Category: 7
Event: 508 Source: ESENT
SettingSyncHost (10212) {A54F39C6-9491-4311-B29E-7E7E25FDB83D}: A request to write to the file "C:\Users\angie\AppData\Local\Microsoft\Windows\SettingSync\remotemetastore\v1\meta.edb" at offset 1343488 (0x0000000000148000) for 16384 (0x00004000) bytes succeeded, but took an abnormally long time (15 seconds) to be serviced by the OS. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.
 
Log: 'Application' Date/Time: 18/11/2016 4:40:04 PM
Type: Warning Category: 7
Event: 508 Source: ESENT
SettingSyncHost (10212) {16956CEB-C822-4EB4-8711-358A8302567A}: A request to write to the file "C:\Users\angie\AppData\Local\Microsoft\Windows\SettingSync\metastore\edb.log" at offset 131072 (0x0000000000020000) for 4096 (0x00001000) bytes succeeded, but took an abnormally long time (15 seconds) to be serviced by the OS. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.
 
Log: 'Application' Date/Time: 12/11/2016 10:50:16 PM
Type: Warning Category: 7
Event: 508 Source: ESENT
SettingSyncHost (12188) {36CD0738-2797-47D9-8D04-23E2B635F37B}: A request to write to the file "C:\Users\angie\AppData\Local\Microsoft\Windows\SettingSync\metastore\edb.log" at offset 81920 (0x0000000000014000) for 4096 (0x00001000) bytes succeeded, but took an abnormally long time (17 seconds) to be serviced by the OS. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.
 
Log: 'Application' Date/Time: 12/11/2016 10:50:16 PM
Type: Warning Category: 7
Event: 508 Source: ESENT
SettingSyncHost (12188) {CFCC7633-F226-4E15-9ACC-913A3D7A264A}: A request to write to the file "C:\Users\angie\AppData\Local\Microsoft\Windows\SettingSync\remotemetastore\v1\edb.log" at offset 61440 (0x000000000000f000) for 4096 (0x00001000) bytes succeeded, but took an abnormally long time (24 seconds) to be serviced by the OS. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.
 
Log: 'Application' Date/Time: 12/11/2016 10:50:16 PM
Type: Warning Category: 7
Event: 508 Source: ESENT
SettingSyncHost (12188) {CFCC7633-F226-4E15-9ACC-913A3D7A264A}: A request to write to the file "C:\Users\angie\AppData\Local\Microsoft\Windows\SettingSync\remotemetastore\v1\meta.edb" at offset 753664 (0x00000000000b8000) for 16384 (0x00004000) bytes succeeded, but took an abnormally long time (24 seconds) to be serviced by the OS. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.

  • 0

#6
RJ7887

RJ7887

    Member

  • Topic Starter
  • Member
  • PipPip
  • 96 posts

Speccy file attached

Attached Files


  • 0

#7
RJ7887

RJ7887

    Member

  • Topic Starter
  • Member
  • PipPip
  • 96 posts

System Idle Process:

 

Process CPU Private Bytes Working Set PID Description Company Name Verified Signer
System Idle Process 87.82 0 K 4 K 0
n360.exe 5.62 114,564 K 32,208 K 2692 Norton 360 Symantec Corporation (Verified) Symantec Corporation
procexp64.exe 2.60 30,824 K 64,912 K 3556 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation
Speccy64.exe 0.65 19,104 K 48,816 K 2180 Speccy Piriform Ltd (Verified) Piriform Ltd
dwm.exe 0.59 43,960 K 37,312 K 572 Desktop Window Manager Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 0.50 24,696 K 52,360 K 1048 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
Interrupts 0.46 0 K 0 K n/a Hardware Interrupts and DPCs
System 0.41 132 K 2,280 K 4
IAStorDataMgrSvc.exe 0.31 36,760 K 45,656 K 11180 IAStorDataSvc Intel Corporation (Verified) Intel Corporation - Intel® Rapid Storage Technology
WmiPrvSE.exe 0.25 6,380 K 11,116 K 12076 WMI Provider Host Microsoft Corporation (Verified) Microsoft Windows
csrss.exe 0.25 2,192 K 4,860 K 692 Client Server Runtime Process Microsoft Corporation (Verified) Microsoft Windows Publisher
WmiPrvSE.exe 0.11 28,336 K 34,540 K 10112 WMI Provider Host Microsoft Corporation (Verified) Microsoft Windows
chrome.exe 0.06 80,448 K 105,660 K 9660 Google Chrome Google Inc. (Verified) Google Inc
services.exe 0.06 3,676 K 7,476 K 768 Services and Controller app Microsoft Corporation (Verified) Microsoft Windows Publisher
netsession_win.exe 0.05 8,212 K 17,936 K 1884 Akamai NetSession Client Akamai Technologies, Inc. (Verified) Akamai Technologies
DBRCrawler.exe 0.05 25,024 K 26,504 K 12028 DBRCrawler (Verified) SoftThinks
Toaster.exe 0.04 62,696 K 75,188 K 12184 Dell Backup And Recovery Toaster SoftThinks - Dell (Verified) Dell Inc.
SearchIndexer.exe 0.04 30,984 K 29,304 K 4732 Microsoft Windows Search Indexer Microsoft Corporation (Verified) Microsoft Windows
explorer.exe 0.03 59,156 K 102,736 K 7724 Windows Explorer Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 0.03 5,408 K 10,084 K 1008 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
chrome.exe 0.02 53,728 K 102,032 K 536 Google Chrome Google Inc. (Verified) Google Inc
svchost.exe 0.01 6,148 K 13,380 K 2848 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
sqlservr.exe 0.01 241,664 K 82,380 K 3720 SQL Server Windows NT - 64 Bit Microsoft Corporation (Verified) Microsoft Corporation
WmiApSrv.exe 0.01 1,516 K 7,680 K 5568 WMI Performance Reverse Adapter Microsoft Corporation (Verified) Microsoft Windows
iPodService.exe < 0.01 2,160 K 7,024 K 2132 iPodService Module (64-bit) Apple Inc. (Verified) Apple Inc.
svchost.exe < 0.01 3,696 K 9,656 K 2228 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
officeclicktorun.exe < 0.01 22,936 K 34,352 K 2516 Microsoft Office Click-to-Run Microsoft Corporation (Verified) Microsoft Corporation
svchost.exe < 0.01 7,700 K 16,808 K 1872 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
NvBackend.exe < 0.01 2,084 K 7,704 K 9156 NVIDIA Update Backend NVIDIA Corporation (Verified) NVIDIA Corporation
AppleMobileDeviceService.exe < 0.01 3,344 K 11,144 K 2492 MobileDeviceService Apple Inc. (Verified) Apple Inc.
svchost.exe < 0.01 12,132 K 27,112 K 1476 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
OneDrive.exe < 0.01 10,388 K 34,420 K 1420 Microsoft OneDrive Microsoft Corporation (Verified) Microsoft Corporation
csrss.exe < 0.01 1,620 K 4,196 K 584 Client Server Runtime Process Microsoft Corporation (Verified) Microsoft Windows Publisher
netsession_win.exe < 0.01 2,956 K 9,640 K 1144 Akamai NetSession Client Akamai Technologies, Inc. (Verified) Akamai Technologies
TeamViewer_Service.exe < 0.01 4,600 K 16,148 K 2840 TeamViewer 8 TeamViewer GmbH (Verified) TeamViewer
nvxdsync.exe < 0.01 8,280 K 21,552 K 1388 NVIDIA User Experience Driver Component NVIDIA Corporation (Verified) NVIDIA Corporation
iTunesHelper.exe < 0.01 4,164 K 13,804 K 8728 iTunesHelper Apple Inc. (Verified) Apple Inc.
Memory Compression < 0.01 104 K 16,276 K 3136
spoolsv.exe < 0.01 8,224 K 19,624 K 2120 Spooler SubSystem App Microsoft Corporation (Verified) Microsoft Windows
WUDFHost.exe 1,916 K 7,172 K 1452 Windows Driver Foundation - User-mode Driver Framework Host Process Microsoft Corporation (Verified) Microsoft Windows
WmiPrvSE.exe 15,968 K 29,300 K 4120 WMI Provider Host Microsoft Corporation (Verified) Microsoft Windows
winlogon.exe 2,004 K 8,504 K 812 Windows Logon Application Microsoft Corporation (Verified) Microsoft Windows
wininit.exe 1,128 K 4,268 K 676 Windows Start-Up Application Microsoft Corporation (Verified) Microsoft Windows Publisher
UNS.exe 4,748 K 15,832 K 11424 User Notification Service Intel Corporation (Verified) Intel Corporation
taskhostw.exe 7,036 K 17,708 K 7152 Host Process for Windows Tasks Microsoft Corporation (Verified) Microsoft Windows
SystemSettings.exe Suspended 18,440 K 38,704 K 10576 Settings Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 81,316 K 90,828 K 1176 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 15,288 K 26,296 K 1056 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 18,136 K 27,476 K 1112 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 10,056 K 23,248 K 936 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,276 K 8,464 K 1912 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 4,616 K 13,744 K 1644 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 9,120 K 31,724 K 7084 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 6,752 K 22,268 K 2508 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3,544 K 10,952 K 1124 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 9,176 K 13,704 K 4592 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 8,784 K 19,596 K 2892 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,396 K 6,456 K 10336 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,852 K 6,496 K 11108 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,536 K 6,036 K 2404 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
SupportAssistAgent.exe 41,256 K 45,296 K 11276 Service Dell Inc. (Verified) Dell Inc.
SSScheduler.exe 1,244 K 4,692 K 8240 McAfee Security Scanner Scheduler McAfee, Inc. (Verified) McAfee
sqlwriter.exe 1,560 K 6,744 K 2780 SQL Server VSS Writer - 64 Bit Microsoft Corporation (Verified) Microsoft Corporation
sqlbrowser.exe 1,368 K 3,908 K 2788 SQL Browser Service EXE Microsoft Corporation (Verified) Microsoft Corporation
smss.exe 408 K 968 K 412 Windows Session Manager Microsoft Corporation (Verified) Microsoft Windows Publisher
SkypeHost.exe Suspended 33,420 K 42,588 K 8512 Microsoft Skype Preview Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
sihost.exe 6,156 K 22,024 K 7116 Shell Infrastructure Host Microsoft Corporation (Verified) Microsoft Windows
ShellExperienceHost.exe 33,516 K 59,804 K 7232 Windows Shell Experience Host Microsoft Corporation (Verified) Microsoft Windows
SftService.exe 2,316 K 9,576 K 10436 SoftThinks Agent Service SoftThinks SAS (Verified) Dell Inc.
SettingSyncHost.exe 19,084 K 34,064 K 9176 Host Process for Setting Synchronization Microsoft Corporation (Verified) Microsoft Windows
SearchUI.exe Suspended 49,616 K 86,836 K 7972 Search and Cortana application Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 27,880 K 47,032 K 7428 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RosettaStoneDaemon.exe 3,340 K 8,980 K 2764 Rosetta Stone Ltd. application Rosetta Stone Ltd. (Verified) Rosetta Stone Ltd
RichVideo.exe 1,396 K 6,232 K 2740 RichVideo Module (Verified) CyberLink
RemindersServer.exe Suspended 9,532 K 17,512 K 8464 Reminders WinRT OOP Server Microsoft Corporation (Verified) Microsoft Windows
procexp.exe 2,848 K 8,080 K 1784 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation
PrivacyIconClient.exe 53,692 K 21,248 K 11372 Intel® Management and Security Status Intel Corporation (Verified) Intel Corporation
PresentationFontCache.exe 27,224 K 21,268 K 7176 PresentationFontCache.exe Microsoft Corporation (Verified) Microsoft Corporation
onenotem.exe 2,584 K 1,968 K 7652 Send to OneNote Tool Microsoft Corporation (Verified) Microsoft Corporation
nvvsvc.exe 2,512 K 8,848 K 1308 NVIDIA Driver Helper Service, Version 369.09 NVIDIA Corporation (Verified) NVIDIA Corporation
nvtray.exe 3,416 K 11,956 K 8948 NVIDIA Settings NVIDIA Corporation (Verified) NVIDIA Corporation
nvSCPAPISvr.exe 3,236 K 7,352 K 1300 Stereo Vision Control Panel API Server NVIDIA Corporation (Verified) NVIDIA Corporation
n360.exe 17,516 K 9,568 K 7016 Norton 360 Symantec Corporation (Verified) Symantec Corporation
mDNSResponder.exe 1,596 K 5,676 K 2500 Bonjour Service Apple Inc. (Verified) Apple Inc.
McTkSchedulerService.exe 19,260 K 21,244 K 2976 Intel Security True Key McAfee, Inc. (Verified) McAfee
McAfee.TrueKey.Service.exe 47,000 K 56,796 K 2932 Intel Security True Key McAfee, Inc. (Verified) McAfee
MC3D2D~1.EXE 25,160 K 31,436 K 7060 Intel Security True Key McAfee, Inc. (Verified) McAfee
lsass.exe 6,360 K 16,000 K 776 Local Security Authority Process Microsoft Corporation (Verified) Microsoft Windows Publisher
LMS.exe 1,656 K 5,676 K 4620 Local Manageability Service Intel Corporation (Verified) Intel Corporation
Jhi_service.exe 1,852 K 7,860 K 2588 Intel® Dynamic Application Loader Host Interface Intel Corporation (Verified) Intel Corporation
igfxEM.exe 7,588 K 13,468 K 8012 igfxEM Module Intel Corporation (Verified) Intel® pGFX
igfxCUIService.exe 1,704 K 7,568 K 1732 igfxCUIService Module Intel Corporation (Verified) Intel® pGFX
IAStorIcon.exe 23,616 K 29,664 K 7104 IAStorIcon Intel Corporation (Verified) Intel Corporation - Intel® Rapid Storage Technology
HeciServer.exe 1,436 K 6,424 K 2556 Intel® Capability Licensing Service Interface Intel® Corporation (Verified) Intel® Upgrade Service
GoogleCrashHandler64.exe 1,500 K 368 K 7204 Google Crash Handler Google Inc. (Verified) Google Inc
GoogleCrashHandler.exe 1,648 K 252 K 10084 Google Crash Handler Google Inc. (Verified) Google Inc
fontdrvhost.exe 808 K 2,620 K 10704 Usermode Font Driver Host Microsoft Corporation (Verified) Microsoft Windows
DellDataVaultWiz.exe 4,404 K 10,816 K 7872 Dell Data Vault Wizard Dell Inc. (Verified) Techporch Incorporated
DellDataVault.exe 9,472 K 16,448 K 11944 Dell Data Vault Service Dell Inc. (Verified) Techporch Incorporated
DBRUpd.exe 20,212 K 26,084 K 10640 Dell Backup And Recovery Update Launcher SoftThinks - Dell (Verified) Dell Inc.
dasHost.exe 5,208 K 12,940 K 3420 Device Association Framework Provider Host Microsoft Corporation (Verified) Microsoft Windows
CxUtilSvc.exe 1,180 K 5,656 K 2544 Utility Service Conexant Systems, Inc. (Verified) Conexant Systems
CSISYNCCLIENT.EXE 11,268 K 24,736 K 9544 Microsoft Office Document Cache Sync Client Interface Microsoft Corporation (Verified) Microsoft Corporation
conhost.exe 1,356 K 4,724 K 11612 Console Window Host Microsoft Corporation (Verified) Microsoft Windows
ClassicShellService.exe 912 K 4,180 K 1948 Classic Shell Service IvoSoft (No signature was present in the subject) IvoSoft
chrome.exe 40,036 K 53,488 K 9484 Google Chrome Google Inc. (Verified) Google Inc
chrome.exe 3,012 K 9,068 K 9336 Google Chrome Google Inc. (Verified) Google Inc
chrome.exe 2,844 K 9,704 K 9400 Google Chrome Google Inc. (Verified) Google Inc
caudiofilteragent64.exe 1,468 K 5,844 K 9040 Conexant High Definition Audio Filter Agent Conexant Systems, Inc. (Verified) Conexant Systems
BrCtrlCntr.exe 2,088 K 8,512 K 8520 ControlCenter Main Process Brother Industries, Ltd. (No signature was present in the subject) Brother Industries, Ltd.
BrCcUxSys.exe 1,936 K 8,088 K 9588 ControlCenter UX System Brother Industries, Ltd. (No signature was present in the subject) Brother Industries, Ltd.
backgroundTaskHost.exe Suspended 3,352 K 17,056 K 3208 Background Task Host Microsoft Corporation (Verified) Microsoft Windows
Ath_WlanAgent.exe 1,092 K 4,800 K 3004 Atheros Coex Service Application Atheros (No signature was present in the subject) Atheros
ApplicationFrameHost.exe 6,928 K 19,004 K 11864 Application Frame Host Microsoft Corporation (Verified) Microsoft Windows

  • 0

#8
RJ7887

RJ7887

    Member

  • Topic Starter
  • Member
  • PipPip
  • 96 posts
 
Image Name                     PID Services                                    
========================= ======== ============================================
System Idle Process              0 N/A                                         
System                           4 N/A                                         
smss.exe                       412 N/A                                         
csrss.exe                      584 N/A                                         
wininit.exe                    676 N/A                                         
csrss.exe                      692 N/A                                         
services.exe                   768 N/A                                         
lsass.exe                      776 KeyIso, SamSs, VaultSvc                     
winlogon.exe                   812 N/A                                         
svchost.exe                    936 BrokerInfrastructure, DcomLaunch, LSM,      
                                   PlugPlay, Power, SystemEventsBroker         
svchost.exe                   1008 RpcEptMapper, RpcSs                         
dwm.exe                        572 N/A                                         
svchost.exe                   1048 Appinfo, Browser, gpsvc, IKEEXT, iphlpsvc,  
                                   LanmanServer, lfsvc, ProfSvc, Schedule,     
                                   SENS, ShellHWDetection, Themes,             
                                   UserManager, Winmgmt, WpnService            
svchost.exe                   1056 BFE, CoreMessagingRegistrar, DPS, MpsSvc,   
                                   NcdAutoSetup                                
svchost.exe                   1112 Dhcp, EventLog, HomeGroupProvider, lmhosts, 
                                   TimeBrokerSvc, wscsvc                       
svchost.exe                   1176 AudioEndpointBuilder,                       
                                   DeviceAssociationService, hidserv,          
                                   NcbService, PcaSvc, SysMain, TrkWks,        
                                   WdiSystemHost, wudfsvc                      
nvSCPAPISvr.exe               1300 Stereo Service                              
nvvsvc.exe                    1308 nvsvc                                       
nvxdsync.exe                  1388 N/A                                         
WUDFHost.exe                  1452 N/A                                         
svchost.exe                   1476 CDPSvc, EventSystem, fdPHost, FontCache,    
                                   LicenseManager, netprofm, nsi, W32Time,     
                                   WdiServiceHost, WinHttpAutoProxySvc         
igfxCUIService.exe            1732 igfxCUIService1.0.0.0                       
svchost.exe                   1872 CryptSvc, Dnscache, LanmanWorkstation,      
                                   NlaSvc                                      
svchost.exe                   1912 Audiosrv                                    
ClassicShellService.exe       1948 ClassicShellService                         
svchost.exe                   1124 Wcmsvc                                      
svchost.exe                   1644 WlanSvc                                     
spoolsv.exe                   2120 Spooler                                     
svchost.exe                   2228 FDResPub, SSDPSRV                           
svchost.exe                   2404 PolicyAgent                                 
AppleMobileDeviceService.     2492 Apple Mobile Device Service                 
mDNSResponder.exe             2500 Bonjour Service                             
svchost.exe                   2508 DiagTrack                                   
officeclicktorun.exe          2516 ClickToRunSvc                               
CxUtilSvc.exe                 2544 CxUtilSvc                                   
HeciServer.exe                2556 Intel® Capability Licensing Service Interf
                                   ace                                         
Jhi_service.exe               2588 jhi_service                                 
n360.exe                      2692 N360                                        
RichVideo.exe                 2740 RichVideo                                   
RosettaStoneDaemon.exe        2764 RosettaStoneDaemon                          
sqlwriter.exe                 2780 SQLWriter                                   
sqlbrowser.exe                2788 SQLBrowser                                  
TeamViewer_Service.exe        2840 TeamViewer8                                 
svchost.exe                   2848 stisvc                                      
svchost.exe                   2892 StateRepository, tiledatamodelsvc           
McAfee.TrueKey.Service.ex     2932 TrueKey                                     
McTkSchedulerService.exe      2976 TrueKeyScheduler                            
Ath_WlanAgent.exe             3004 ZAtheros Wlan Agent                         
Memory Compression            3136 N/A                                         
dasHost.exe                   3420 N/A                                         
sqlservr.exe                  3720 MSSQL$PSK2013                               
WmiPrvSE.exe                  4120 N/A                                         
SearchIndexer.exe             4732 WSearch                                     
n360.exe                      7016 N/A                                         
MC3D2D~1.EXE                  7060 N/A                                         
svchost.exe                   7084 CDPUserSvc_6b249, OneSyncSvc_6b249,         
                                   PimIndexMaintenanceSvc_6b249,               
                                   UnistoreSvc_6b249, UserDataSvc_6b249        
sihost.exe                    7116 N/A                                         
taskhostw.exe                 7152 N/A                                         
PresentationFontCache.exe     7176 FontCache3.0.0.0                            
RuntimeBroker.exe             7428 N/A                                         
explorer.exe                  7724 N/A                                         
igfxEM.exe                    8012 N/A                                         
ShellExperienceHost.exe       7232 N/A                                         
SearchUI.exe                  7972 N/A                                         
RemindersServer.exe           8464 N/A                                         
SkypeHost.exe                 8512 N/A                                         
nvtray.exe                    8948 N/A                                         
NvBackend.exe                 9156 N/A                                         
SettingSyncHost.exe           9176 N/A                                         
caudiofilteragent64.exe       9040 N/A                                         
iTunesHelper.exe              8728 N/A                                         
netsession_win.exe            1144 N/A                                         
OneDrive.exe                  1420 N/A                                         
netsession_win.exe            1884 N/A                                         
SSScheduler.exe               8240 N/A                                         
iPodService.exe               2132 iPod Service                                
onenotem.exe                  7652 N/A                                         
chrome.exe                     536 N/A                                         
BrCtrlCntr.exe                8520 N/A                                         
chrome.exe                    9336 N/A                                         
chrome.exe                    9400 N/A                                         
chrome.exe                    9484 N/A                                         
CSISYNCCLIENT.EXE             9544 N/A                                         
BrCcUxSys.exe                 9588 N/A                                         
WmiPrvSE.exe                 10112 N/A                                         
chrome.exe                    9660 N/A                                         
GoogleCrashHandler.exe       10084 N/A                                         
GoogleCrashHandler64.exe      7204 N/A                                         
IAStorIcon.exe                7104 N/A                                         
DellDataVaultWiz.exe          7872 DellDataVaultWiz                            
IAStorDataMgrSvc.exe         11180 IAStorDataMgrSvc                            
LMS.exe                       4620 LMS                                         
SftService.exe               10436 SftService                                  
SupportAssistAgent.exe       11276 SupportAssistAgent                          
PrivacyIconClient.exe        11372 N/A                                         
UNS.exe                      11424 UNS                                         
DellDataVault.exe            11944 DellDataVault                               
WmiPrvSE.exe                 12076 N/A                                         
DBRUpd.exe                   10640 N/A                                         
Toaster.exe                  12184 N/A                                         
DBRCrawler.exe               12028 N/A                                         
conhost.exe                  11612 N/A                                         
fontdrvhost.exe              10704 N/A                                         
Speccy64.exe                  2180 N/A                                         
svchost.exe                  11108 p2pimsvc, PNRPsvc                           
procexp.exe                   1784 N/A                                         
procexp64.exe                 3556 N/A                                         
svchost.exe                  10336 ClipSVC                                     
ApplicationFrameHost.exe     11864 N/A                                         
SystemSettings.exe           10576 N/A                                         
svchost.exe                   4592 defragsvc                                   
WmiApSrv.exe                  5568 wmiApSrv                                    
smartscreen.exe              10356 N/A                                         
notepad.exe                   8756 N/A                                         
audiodg.exe                   4080 N/A                                         
cmd.exe                       6956 N/A                                         
conhost.exe                   4104 N/A                                         
tasklist.exe                  6968 N/A                                         

  • 0

#9
RJ7887

RJ7887

    Member

  • Topic Starter
  • Member
  • PipPip
  • 96 posts
------------------
System Information
------------------
      Time of this report: 12/20/2016, 12:18:10
             Machine name: OFFICEPC
               Machine Id: {F2C6ABAC-D548-45CC-A3AE-57BC61E18114}
         Operating System: Windows 10 Home 64-bit (10.0, Build 14393) (14393.rs1_release_inmarket.161208-2252)
                 Language: English (Regional Setting: English)
      System Manufacturer: Dell Inc.
             System Model: Inspiron 660
                     BIOS: A09
                Processor: Intel® Core™ i5-3330 CPU @ 3.00GHz (4 CPUs), ~3.0GHz
                   Memory: 8192MB RAM
      Available OS Memory: 8064MB RAM
                Page File: 3025MB used, 6318MB available
              Windows Dir: C:\WINDOWS
          DirectX Version: DirectX 12
      DX Setup Parameters: Not found
         User DPI Setting: Using System DPI
       System DPI Setting: 96 DPI (100 percent)
          DWM DPI Scaling: Disabled
                 Miracast: Not Available
Microsoft Graphics Hybrid: Not Supported
           DxDiag Version: 10.00.14393.0000 64bit Unicode
 
------------
DxDiag Notes
------------
      Display Tab 1: No problems found.
      Display Tab 2: No problems found.
        Sound Tab 1: No problems found.
        Sound Tab 2: No problems found.
          Input Tab: No problems found.
 
--------------------
DirectX Debug Levels
--------------------
Direct3D:    0/4 (retail)
DirectDraw:  0/4 (retail)
DirectInput: 0/5 (retail)
DirectMusic: 0/5 (retail)
DirectPlay:  0/9 (retail)
DirectSound: 0/5 (retail)
DirectShow:  0/6 (retail)
 
---------------
Display Devices
---------------
          Card name: NVIDIA GeForce GT 620
       Manufacturer: NVIDIA
          Chip type: GeForce GT 620
           DAC type: Integrated RAMDAC
        Device Type: Full Device
         Device Key: Enum\PCI\VEN_10DE&DEV_1049&SUBSYS_097710DE&REV_A1
      Device Status: 0180200A [DN_DRIVER_LOADED|DN_STARTED|DN_DISABLEABLE|DN_NT_ENUMERATOR|DN_NT_DRIVER] 
Device Problem Code: No Problem
Driver Problem Code: Unknown
     Display Memory: 5011 MB
   Dedicated Memory: 979 MB
      Shared Memory: 4031 MB
       Current Mode: 1920 x 1080 (32 bit) (60Hz)
       Monitor Name: DELL S2240M(Analog)
      Monitor Model: DELL S2240M
         Monitor Id: DELD055
        Native Mode: 1920 x 1080(p) (60.000Hz)
        Output Type: HD15
        Driver Name: C:\WINDOWS\System32\DriverStore\FileRepository\nv_desktop_ref4wu.inf_amd64_6e17fae58779a6b0\nvd3dumx.dll,C:\WINDOWS\System32\DriverStore\FileRepository\nv_desktop_ref4wu.inf_amd64_6e17fae58779a6b0\nvwgf2umx.dll,C:\WINDOWS\System32\DriverStore\FileRepository\nv_desktop_ref4wu.inf_amd64_6e17fae58779a6b0\nvwgf2umx.dll,C:\WINDOWS\System32\DriverStore\FileRepository\nv_desktop_ref4wu.inf_amd64_6e17fae58779a6b0\nvwgf2umx.dll
Driver File Version: 21.21.0013.6909 (English)
     Driver Version: 21.21.13.6909
        DDI Version: 11.4
     Feature Levels: 11_0,10_1,10_0,9_3,9_2,9_1
       Driver Model: WDDM 2.1
Graphics Preemption: DMA
 Compute Preemption: DMA
           Miracast: Not Supported by Graphics driver
Hybrid Graphics GPU: Not Supported
     Power P-states: Not Supported
  Driver Attributes: Final Retail
   Driver Date/Size: 7/31/2016 4:00:00 PM, 17799424 bytes
        WHQL Logo'd: Yes
    WHQL Date Stamp: Unknown
  Device Identifier: {D7B71E3E-5309-11CF-9369-7A291BC2D835}
          Vendor ID: 0x10DE
          Device ID: 0x1049
          SubSys ID: 0x097710DE
        Revision ID: 0x00A1
 Driver Strong Name: oem78.inf:0f066de3c760f7d2:Section002:21.21.13.6909:pci\ven_10de&dev_1049&subsys_097710de
     Rank Of Driver: 00D10001
        Video Accel: ModeMPEG2_A ModeMPEG2_C ModeVC1_C ModeWMV9_C 
        DXVA2 Modes: DXVA2_ModeMPEG2_IDCT  DXVA2_ModeMPEG2_VLD  DXVA2_ModeVC1_D2010  DXVA2_ModeVC1_VLD  DXVA2_ModeVC1_IDCT  DXVA2_ModeWMV9_IDCT  DXVA2_ModeH264_VLD_Stereo_Progressive_NoFGT  DXVA2_ModeH264_VLD_Stereo_NoFGT  DXVA2_ModeH264_VLD_NoFGT  DXVA2_ModeMPEG4pt2_VLD_Simple  DXVA2_ModeMPEG4pt2_VLD_AdvSimple_NoGMC  
   Deinterlace Caps: {6CB69578-7617-4637-91E5-1C02DB810285}: Format(In/Out)=(YUY2,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_PixelAdaptive 
                     {F9F19DA5-3B09-4B2F-9D89-C64753E3EAAB}: Format(In/Out)=(YUY2,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY 
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(YUY2,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY 
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(YUY2,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_BOBVerticalStretch 
                     {6CB69578-7617-4637-91E5-1C02DB810285}: Format(In/Out)=(UYVY,UYVY) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_PixelAdaptive 
                     {F9F19DA5-3B09-4B2F-9D89-C64753E3EAAB}: Format(In/Out)=(UYVY,UYVY) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY 
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(UYVY,UYVY) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY 
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(UYVY,UYVY) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_BOBVerticalStretch 
                     {6CB69578-7617-4637-91E5-1C02DB810285}: Format(In/Out)=(YV12,0x32315659) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_PixelAdaptive 
                     {F9F19DA5-3B09-4B2F-9D89-C64753E3EAAB}: Format(In/Out)=(YV12,0x32315659) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY 
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(YV12,0x32315659) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY 
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(YV12,0x32315659) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_BOBVerticalStretch 
                     {6CB69578-7617-4637-91E5-1C02DB810285}: Format(In/Out)=(NV12,0x3231564e) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_PixelAdaptive 
                     {F9F19DA5-3B09-4B2F-9D89-C64753E3EAAB}: Format(In/Out)=(NV12,0x3231564e) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY 
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(NV12,0x3231564e) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY 
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(NV12,0x3231564e) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_BOBVerticalStretch 
                     {6CB69578-7617-4637-91E5-1C02DB810285}: Format(In/Out)=(IMC1,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {F9F19DA5-3B09-4B2F-9D89-C64753E3EAAB}: Format(In/Out)=(IMC1,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(IMC1,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(IMC1,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {6CB69578-7617-4637-91E5-1C02DB810285}: Format(In/Out)=(IMC2,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {F9F19DA5-3B09-4B2F-9D89-C64753E3EAAB}: Format(In/Out)=(IMC2,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(IMC2,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(IMC2,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {6CB69578-7617-4637-91E5-1C02DB810285}: Format(In/Out)=(IMC3,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {F9F19DA5-3B09-4B2F-9D89-C64753E3EAAB}: Format(In/Out)=(IMC3,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(IMC3,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(IMC3,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {6CB69578-7617-4637-91E5-1C02DB810285}: Format(In/Out)=(IMC4,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {F9F19DA5-3B09-4B2F-9D89-C64753E3EAAB}: Format(In/Out)=(IMC4,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(IMC4,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(IMC4,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {6CB69578-7617-4637-91E5-1C02DB810285}: Format(In/Out)=(S340,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {F9F19DA5-3B09-4B2F-9D89-C64753E3EAAB}: Format(In/Out)=(S340,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(S340,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(S340,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {6CB69578-7617-4637-91E5-1C02DB810285}: Format(In/Out)=(S342,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {F9F19DA5-3B09-4B2F-9D89-C64753E3EAAB}: Format(In/Out)=(S342,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(S342,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(S342,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
       D3D9 Overlay: Supported
            DXVA-HD: Supported
       DDraw Status: Enabled
         D3D Status: Enabled
         AGP Status: Enabled
           MPO Caps: Not Supported
        MPO Stretch: Not Supported
    MPO Media Hints: Not Supported
        MPO Formats: Not Supported
 
          Card name: Intel® HD Graphics
       Manufacturer: Intel Corporation
          Chip type: Intel® HD Graphics Family
           DAC type: Internal
        Device Type: Full Device
         Device Key: Enum\PCI\VEN_8086&DEV_0152&SUBSYS_05811028&REV_09
      Device Status: 0180200A [DN_DRIVER_LOADED|DN_STARTED|DN_DISABLEABLE|DN_NT_ENUMERATOR|DN_NT_DRIVER] 
Device Problem Code: No Problem
Driver Problem Code: Unknown
     Display Memory: 1792 MB
   Dedicated Memory: 32 MB
      Shared Memory: 1760 MB
       Current Mode: Unknown
        Driver Name: igdumdim64.dll,igd10iumd64.dll,igd10iumd64.dll
Driver File Version: 10.18.0010.4358 (English)
     Driver Version: 10.18.10.4358
        DDI Version: 11.2
     Feature Levels: 11_0,10_1,10_0,9_3,9_2,9_1
       Driver Model: WDDM 1.3
Graphics Preemption: DMA
 Compute Preemption: Thread group
           Miracast: Supported
Hybrid Graphics GPU: Not Supported
     Power P-states: Not Supported
  Driver Attributes: Final Retail
   Driver Date/Size: 12/20/2015 4:00:00 PM, 11157656 bytes
        WHQL Logo'd: Yes
    WHQL Date Stamp: Unknown
  Device Identifier: Unknown
          Vendor ID: 0x8086
          Device ID: 0x0152
          SubSys ID: 0x05811028
        Revision ID: 0x0009
 Driver Strong Name: oem1.inf:5f63e534c477ad23:iIVBD_w10:10.18.10.4358:pci\ven_8086&dev_0152
     Rank Of Driver: 00D12001
        Video Accel: Unknown
        DXVA2 Modes: DXVA2_ModeMPEG2_VLD  DXVA2_ModeMPEG2_IDCT  DXVA2_ModeVC1_D2010  DXVA2_ModeWMV9_IDCT  DXVA2_ModeVC1_IDCT  DXVA2_ModeH264_VLD_NoFGT  
      Deinterlace Caps: n/a
       D3D9 Overlay: Unknown
            DXVA-HD: Unknown
       DDraw Status: Enabled
         D3D Status: Enabled
         AGP Status: Enabled
           MPO Caps: Not Supported
        MPO Stretch: Not Supported
    MPO Media Hints: Not Supported
        MPO Formats: Not Supported
 
-------------
Sound Devices
-------------
            Description: Speakers (High Definition Audio Device)
 Default Sound Playback: Yes
 Default Voice Playback: Yes
            Hardware ID: HDAUDIO\FUNC_01&VEN_14F1&DEV_50A1&SUBSYS_10280581&REV_1001
        Manufacturer ID: 1
             Product ID: 65535
                   Type: WDM
            Driver Name: HdAudio.sys
         Driver Version: 10.00.14393.0000 (English)
      Driver Attributes: Final Retail
            WHQL Logo'd: Yes
          Date and Size: 7/15/2016 12:00:00 AM, 410624 bytes
            Other Files: 
        Driver Provider: Microsoft
         HW Accel Level: Basic
              Cap Flags: 0xF1F
    Min/Max Sample Rate: 100, 200000
Static/Strm HW Mix Bufs: 1, 0
 Static/Strm HW 3D Bufs: 0, 0
              HW Memory: 0
       Voice Management: No
 EAX™ 2.0 Listen/Src: No, No
   I3DL2™ Listen/Src: No, No
Sensaura™ ZoomFX™: No
 
            Description: Headphones (High Definition Audio Device)
 Default Sound Playback: No
 Default Voice Playback: No
            Hardware ID: HDAUDIO\FUNC_01&VEN_14F1&DEV_50A1&SUBSYS_10280581&REV_1001
        Manufacturer ID: 1
             Product ID: 65535
                   Type: WDM
            Driver Name: HdAudio.sys
         Driver Version: 10.00.14393.0000 (English)
      Driver Attributes: Final Retail
            WHQL Logo'd: Yes
          Date and Size: 7/15/2016 12:00:00 AM, 410624 bytes
            Other Files: 
        Driver Provider: Microsoft
         HW Accel Level: Basic
              Cap Flags: 0xF1F
    Min/Max Sample Rate: 100, 200000
Static/Strm HW Mix Bufs: 1, 0
 Static/Strm HW 3D Bufs: 0, 0
              HW Memory: 0
       Voice Management: No
 EAX™ 2.0 Listen/Src: No, No
   I3DL2™ Listen/Src: No, No
Sensaura™ ZoomFX™: No
 
---------------------
Sound Capture Devices
---------------------
            Description: Microphone (High Definition Audio Device)
  Default Sound Capture: Yes
  Default Voice Capture: Yes
            Driver Name: HdAudio.sys
         Driver Version: 10.00.14393.0000 (English)
      Driver Attributes: Final Retail
          Date and Size: 7/16/2016 03:41:52, 410624 bytes
              Cap Flags: 0x1
           Format Flags: 0xFFFFF
 
            Description: Microphone (High Definition Audio Device)
  Default Sound Capture: No
  Default Voice Capture: No
            Driver Name: HdAudio.sys
         Driver Version: 10.00.14393.0000 (English)
      Driver Attributes: Final Retail
          Date and Size: 7/16/2016 03:41:52, 410624 bytes
              Cap Flags: 0x1
           Format Flags: 0xFFFFF
 
            Description: Line In (High Definition Audio Device)
  Default Sound Capture: No
  Default Voice Capture: No
            Driver Name: HdAudio.sys
         Driver Version: 10.00.14393.0000 (English)
      Driver Attributes: Final Retail
          Date and Size: 7/16/2016 03:41:52, 410624 bytes
              Cap Flags: 0x1
           Format Flags: 0xFFFFF
 
---------------------
Video Capture Devices
Number of Devices: 0
---------------------
-------------------
DirectInput Devices
-------------------
      Device Name: Mouse
         Attached: 1
    Controller ID: n/a
Vendor/Product ID: n/a
        FF Driver: n/a
 
      Device Name: Keyboard
         Attached: 1
    Controller ID: n/a
Vendor/Product ID: n/a
        FF Driver: n/a
 
      Device Name: Dell USB Wired Entry Keyboard
         Attached: 1
    Controller ID: 0x0
Vendor/Product ID: 0x413C, 0x2111
        FF Driver: n/a
 
      Device Name: Dell USB Wired Entry Keyboard
         Attached: 1
    Controller ID: 0x0
Vendor/Product ID: 0x413C, 0x2111
        FF Driver: n/a
 
Poll w/ Interrupt: No
 
-----------
USB Devices
-----------
+ USB Root Hub (xHCI)
| Vendor/Product ID: 0x8086, 0x1E31
| Matching Device ID: USB\ROOT_HUB30
| Service: USBHUB3
| Driver: USBHUB3.SYS, 7/16/2016 03:41:55, 535904 bytes
+-+ USB Input Device
| | Vendor/Product ID: 0x046D, 0xC077
| | Location: Port_#0003.Hub_#0003
| | Matching Device ID: USB\Class_03&SubClass_01
| | Service: HidUsb
| | Driver: hidusb.sys, 9/28/2016 10:16:50, 38400 bytes
| | Driver: hidclass.sys, 10/14/2016 19:55:50, 156672 bytes
| | Driver: hidparse.sys, 9/28/2016 10:16:50, 40960 bytes
| | 
| +-+ HID-compliant mouse
| | | Vendor/Product ID: 0x046D, 0xC077
| | | Matching Device ID: HID_DEVICE_SYSTEM_MOUSE
| | | Service: mouhid
| | | Driver: mouhid.sys, 7/16/2016 03:41:54, 32256 bytes
| | | Driver: mouclass.sys, 7/16/2016 03:41:54, 59232 bytes
| | 
+-+ USB Composite Device
| | Vendor/Product ID: 0x413C, 0x2111
| | Location: Port_#0004.Hub_#0003
| | Matching Device ID: USB\COMPOSITE
| | Service: usbccgp
| | Driver: usbccgp.sys, 7/16/2016 03:41:55, 169312 bytes
| | 
| +-+ USB Input Device
| | | Vendor/Product ID: 0x413C, 0x2111
| | | Location: 0000.0014.0000.004.000.000.000.000.000
| | | Matching Device ID: USB\Class_03&SubClass_01
| | | Service: HidUsb
| | | Driver: hidusb.sys, 9/28/2016 10:16:50, 38400 bytes
| | | Driver: hidclass.sys, 10/14/2016 19:55:50, 156672 bytes
| | | Driver: hidparse.sys, 9/28/2016 10:16:50, 40960 bytes
| | | 
| | +-+ HID Keyboard Device
| | | | Vendor/Product ID: 0x413C, 0x2111
| | | | Matching Device ID: HID_DEVICE_SYSTEM_KEYBOARD
| | | | Service: kbdhid
| | | | Driver: kbdhid.sys, 9/15/2016 08:43:23, 39424 bytes
| | | | Driver: kbdclass.sys, 7/16/2016 03:41:54, 62304 bytes
 
----------------
Gameport Devices
----------------
 
------------
PS/2 Devices
------------
 
------------------------
Disk & DVD/CD-ROM Drives
------------------------
      Drive: C:
 Free Space: 1735.4 GB
Total Space: 1894.0 GB
File System: NTFS
      Model: ST2000DM001-1CH164
 
      Drive: X:
 Free Space: 0.1 GB
Total Space: 0.4 GB
File System: NTFS
      Model: ST2000DM001-1CH164
 
      Drive: Y:
 Free Space: 0.3 GB
Total Space: 12.1 GB
File System: NTFS
      Model: ST2000DM001-1CH164
 
      Drive: E:
      Model: PLDS DVD+-RW DH-16AES
     Driver: c:\windows\system32\drivers\cdrom.sys, 10.00.14393.0000 (English), 7/16/2016 03:41:53, 173056 bytes
 
--------------
System Devices
--------------
     Name: Intel® 7 Series/C216 Chipset Family SMBus Host Controller - 1E22
Device ID: PCI\VEN_8086&DEV_1E22&SUBSYS_05811028&REV_04\3&11583659&0&FB
   Driver: n/a
 
     Name: Intel® 7 Series/C216 Chipset Family PCI Express Root Port 1 - 1E10
Device ID: PCI\VEN_8086&DEV_1E10&SUBSYS_05811028&REV_C4\3&11583659&0&E0
   Driver: C:\WINDOWS\system32\DRIVERS\pci.sys, 10.00.14393.0479 (English), 11/11/2016 02:00:00, 335712 bytes
 
     Name: Intel® Management Engine Interface 
Device ID: PCI\VEN_8086&DEV_1E3A&SUBSYS_05811028&REV_04\3&11583659&0&B0
   Driver: C:\WINDOWS\system32\DRIVERS\HECIx64.sys, 8.01.0000.1263 (English), 7/2/2012 15:16:02, 62784 bytes
 
     Name: Intel® HD Graphics
Device ID: PCI\VEN_8086&DEV_0152&SUBSYS_05811028&REV_09\3&11583659&0&10
   Driver: C:\WINDOWS\system32\DRIVERS\igdkmd64.sys, 10.18.0010.4358 (English), 5/3/2016 22:30:46, 3811288 bytes
   Driver: C:\WINDOWS\system32\igd10iumd64.dll, 10.18.0010.4358 (English), 5/3/2016 22:31:28, 12442464 bytes
   Driver: C:\WINDOWS\system32\igdusc64.dll, 10.18.0010.4358 (English), 5/3/2016 22:31:28, 4702968 bytes
   Driver: C:\WINDOWS\system32\igdmd64.dll, 10.18.0010.4358 (English), 5/3/2016 22:31:28, 480592 bytes
   Driver: C:\WINDOWS\system32\igfxcmrt64.dll, 3.00.0000.1284 (English), 5/3/2016 22:31:28, 209648 bytes
   Driver: C:\WINDOWS\system32\igfx11cmrt64.dll, 3.00.0000.1284 (English), 5/3/2016 22:30:46, 202248 bytes
   Driver: C:\WINDOWS\system32\igfxcmjit64.dll, 3.00.0000.1284 (English), 5/3/2016 22:30:46, 2044424 bytes
   Driver: C:\WINDOWS\system32\IccLibDll_x64.dll, 5/3/2016 22:30:46, 111624 bytes
   Driver: C:\WINDOWS\system32\igdde64.dll, 5/3/2016 22:30:46, 238600 bytes
   Driver: C:\WINDOWS\SysWow64\igdde32.dll, 5/3/2016 22:30:46, 200200 bytes
   Driver: C:\WINDOWS\system32\iglhxs64.vp, 12/30/2015 22:52:52, 2582 bytes
   Driver: C:\WINDOWS\system32\iglhxo64.vp, 12/30/2015 22:52:52, 44025 bytes
   Driver: C:\WINDOWS\system32\iglhxc64.vp, 12/30/2015 22:52:52, 43494 bytes
   Driver: C:\WINDOWS\system32\iglhxg64.vp, 12/30/2015 22:52:52, 43256 bytes
   Driver: C:\WINDOWS\system32\iglhxo64_dev.vp, 12/30/2015 22:52:52, 42079 bytes
   Driver: C:\WINDOWS\system32\iglhxc64_dev.vp, 12/30/2015 22:52:52, 43816 bytes
   Driver: C:\WINDOWS\system32\iglhxg64_dev.vp, 12/30/2015 22:52:52, 43298 bytes
   Driver: C:\WINDOWS\system32\iglhxa64.vp, 12/30/2015 22:52:52, 1125 bytes
   Driver: C:\WINDOWS\system32\iglhxa64.cpa, 12/30/2015 22:52:52, 2813952 bytes
   Driver: C:\WINDOWS\system32\iglhcp64.dll, 9.00.0020.9000 (English), 5/3/2016 22:31:28, 240432 bytes
   Driver: C:\WINDOWS\system32\iglhsip64.dll, 9.00.0020.9000 (English), 5/3/2016 22:31:28, 1174832 bytes
   Driver: C:\WINDOWS\SysWow64\igdusc32.dll, 10.18.0010.4358 (English), 5/3/2016 22:31:28, 3726232 bytes
   Driver: C:\WINDOWS\SysWow64\igdmd32.dll, 10.18.0010.4358 (English), 5/3/2016 22:31:28, 390928 bytes
   Driver: C:\WINDOWS\SysWow64\igd10iumd32.dll, 10.18.0010.4358 (English), 5/3/2016 22:31:28, 12007936 bytes
   Driver: C:\WINDOWS\SysWow64\igdumdim32.dll, 10.18.0010.4358 (English), 5/3/2016 22:31:30, 10675896 bytes
   Driver: C:\WINDOWS\SysWow64\igdail32.dll, 5/3/2016 22:30:44, 161288 bytes
   Driver: C:\WINDOWS\SysWow64\iglhcp32.dll, 9.00.0020.9000 (English), 5/3/2016 22:31:28, 204840 bytes
   Driver: C:\WINDOWS\SysWow64\iglhsip32.dll, 9.00.0020.9000 (English), 5/3/2016 22:31:28, 1170640 bytes
   Driver: C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe, 9.00.0020.9000 (English), 5/3/2016 22:30:46, 299488 bytes
   Driver: C:\WINDOWS\SysWow64\igfxcmrt32.dll, 3.00.0000.1284 (English), 5/3/2016 22:31:28, 179600 bytes
   Driver: C:\WINDOWS\SysWow64\igfx11cmrt32.dll, 3.00.0000.1284 (English), 5/3/2016 22:30:46, 172552 bytes
   Driver: C:\WINDOWS\SysWow64\igfxcmjit32.dll, 3.00.0000.1284 (English), 5/3/2016 22:30:46, 1775624 bytes
   Driver: C:\WINDOWS\system32\difx64.exe, 1.04.0003.0000 (English), 5/3/2016 22:30:44, 175072 bytes
   Driver: C:\WINDOWS\system32\igfxDH.dll, 6.15.0010.4358 (English), 5/3/2016 22:30:46, 690696 bytes
   Driver: C:\WINDOWS\system32\igfxDHLib.dll, 1.00.0000.0000 (Invariant Language), 5/3/2016 22:30:46, 77320 bytes
   Driver: C:\WINDOWS\system32\igfxDHLibv2_0.dll, 1.00.0000.0000 (Invariant Language), 5/3/2016 22:30:46, 87048 bytes
   Driver: C:\WINDOWS\system32\igfxDI.dll, 6.15.0010.4358 (English), 5/3/2016 22:30:46, 302088 bytes
   Driver: C:\WINDOWS\system32\igfxDILib.dll, 1.00.0000.0000 (Invariant Language), 5/3/2016 22:30:46, 28168 bytes
   Driver: C:\WINDOWS\system32\igfxDILibv2_0.dll, 1.00.0000.0000 (Invariant Language), 5/3/2016 22:30:46, 28168 bytes
   Driver: C:\WINDOWS\system32\igfxLHM.dll, 6.15.0010.4358 (English), 5/3/2016 22:30:46, 269832 bytes
   Driver: C:\WINDOWS\system32\igfxLHMLib.dll, 1.00.0000.0000 (Invariant Language), 5/3/2016 22:30:46, 22536 bytes
   Driver: C:\WINDOWS\system32\igfxLHMLibv2_0.dll, 1.00.0000.0000 (Invariant Language), 5/3/2016 22:30:46, 22536 bytes
   Driver: C:\WINDOWS\system32\igfxEM.exe, 6.15.0010.4358 (English), 5/3/2016 22:30:46, 549344 bytes
   Driver: C:\WINDOWS\system32\igfxEMLib.dll, 1.00.0000.0000 (Invariant Language), 5/3/2016 22:30:46, 27656 bytes
   Driver: C:\WINDOWS\system32\igfxEMLibv2_0.dll, 1.00.0000.0000 (Invariant Language), 5/3/2016 22:30:46, 27656 bytes
   Driver: C:\WINDOWS\system32\GfxUIEx.exe, 6.15.0010.4358 (English), 5/3/2016 22:30:44, 978400 bytes
   Driver: C:\WINDOWS\system32\Gfxv4_0.exe, 8.15.0010.4358 (English), 5/3/2016 22:30:44, 4401632 bytes
   Driver: C:\WINDOWS\system32\Gfxv4_0.exe.config, 12/30/2015 22:52:36, 889 bytes
   Driver: C:\WINDOWS\system32\Gfxv2_0.exe, 8.15.0010.4358 (English), 5/3/2016 22:30:44, 4398048 bytes
   Driver: C:\WINDOWS\system32\Gfxv2_0.exe.config, 12/30/2015 22:52:36, 895 bytes
   Driver: C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll, 1.00.0000.0000 (English), 5/3/2016 22:30:46, 626696 bytes
   Driver: C:\WINDOWS\system32\igfxCUIServicePS.dll, 5/3/2016 22:30:46, 103944 bytes
   Driver: C:\WINDOWS\system32\igfxCUIService.exe, 6.15.0010.4358 (English), 5/3/2016 22:30:46, 337888 bytes
   Driver: C:\WINDOWS\system32\igfxCPL.cpl, 5/3/2016 22:30:46, 272904 bytes
   Driver: C:\WINDOWS\system32\igfxTray.exe, 6.15.0010.4358 (English), 5/3/2016 22:30:46, 391648 bytes
   Driver: C:\WINDOWS\system32\igfxDTCM.dll, 6.15.0010.4358 (English), 5/3/2016 22:30:46, 226824 bytes
   Driver: C:\WINDOWS\system32\igfxHK.exe, 6.15.0010.4358 (English), 5/3/2016 22:30:46, 266208 bytes
   Driver: C:\WINDOWS\system32\igfxOSP.dll, 6.15.0010.4358 (English), 5/3/2016 22:30:46, 388616 bytes
   Driver: C:\WINDOWS\system32\DPTopologyApp.exe, 8.15.0010.4358 (English), 5/3/2016 22:30:44, 564696 bytes
   Driver: C:\WINDOWS\system32\DPTopologyApp.exe.config, 12/30/2015 22:52:34, 889 bytes
   Driver: C:\WINDOWS\system32\CustomModeApp.exe, 8.15.0010.4358 (English), 5/3/2016 22:30:44, 418784 bytes
   Driver: C:\WINDOWS\system32\CustomModeApp.exe.config, 12/30/2015 22:52:34, 889 bytes
   Driver: C:\WINDOWS\system32\DPTopologyAppv2_0.exe, 8.15.0010.4358 (English), 5/3/2016 22:30:44, 564192 bytes
   Driver: C:\WINDOWS\system32\DPTopologyAppv2_0.exe.config, 12/30/2015 22:52:34, 895 bytes
   Driver: C:\WINDOWS\system32\CustomModeAppv2_0.exe, 8.15.0010.4358 (English), 5/3/2016 22:30:44, 418264 bytes
   Driver: C:\WINDOWS\system32\CustomModeAppv2_0.exe.config, 12/30/2015 22:52:34, 895 bytes
   Driver: C:\WINDOWS\system32\igfxext.exe, 6.15.0010.4358 (English), 5/3/2016 22:30:46, 213984 bytes
   Driver: C:\WINDOWS\system32\igfxexps.dll, 6.15.0010.4358 (English), 5/3/2016 22:31:28, 49936 bytes
   Driver: C:\WINDOWS\SysWow64\igfxexps32.dll, 6.15.0010.4358 (English), 5/3/2016 22:30:46, 48136 bytes
   Driver: C:\WINDOWS\system32\resARA.cui, 12/30/2015 22:53:10, 164932 bytes
   Driver: C:\WINDOWS\system32\resCHS.cui, 12/30/2015 22:53:10, 149060 bytes
   Driver: C:\WINDOWS\system32\resCHT.cui, 12/30/2015 22:53:10, 149924 bytes
   Driver: C:\WINDOWS\system32\resCSY.cui, 12/30/2015 22:53:10, 156132 bytes
   Driver: C:\WINDOWS\system32\resDAN.cui, 12/30/2015 22:53:10, 153028 bytes
   Driver: C:\WINDOWS\system32\resDEU.cui, 12/30/2015 22:53:10, 157892 bytes
   Driver: C:\WINDOWS\system32\resELL.cui, 12/30/2015 22:53:10, 183476 bytes
   Driver: C:\WINDOWS\system32\resENU.cui, 12/30/2015 22:53:10, 151684 bytes
   Driver: C:\WINDOWS\system32\resESN.cui, 12/30/2015 22:53:10, 157572 bytes
   Driver: C:\WINDOWS\system32\resFIN.cui, 12/30/2015 22:53:10, 155460 bytes
   Driver: C:\WINDOWS\system32\resFRA.cui, 12/30/2015 22:53:10, 159716 bytes
   Driver: C:\WINDOWS\system32\resHEB.cui, 12/30/2015 22:53:10, 164356 bytes
   Driver: C:\WINDOWS\system32\resHRV.cui, 12/30/2015 22:53:10, 155060 bytes
   Driver: C:\WINDOWS\system32\resHUN.cui, 12/30/2015 22:53:10, 159732 bytes
   Driver: C:\WINDOWS\system32\resITA.cui, 12/30/2015 22:53:10, 157860 bytes
   Driver: C:\WINDOWS\system32\resJPN.cui, 12/30/2015 22:53:10, 164404 bytes
   Driver: C:\WINDOWS\system32\resKOR.cui, 12/30/2015 22:53:10, 158004 bytes
   Driver: C:\WINDOWS\system32\resNLD.cui, 12/30/2015 22:53:10, 156836 bytes
   Driver: C:\WINDOWS\system32\resNOR.cui, 12/30/2015 22:53:10, 153508 bytes
   Driver: C:\WINDOWS\system32\resPLK.cui, 12/30/2015 22:53:10, 157140 bytes
   Driver: C:\WINDOWS\system32\resPTB.cui, 12/30/2015 22:53:10, 156228 bytes
   Driver: C:\WINDOWS\system32\resPTG.cui, 12/30/2015 22:53:10, 155940 bytes
   Driver: C:\WINDOWS\system32\resROM.cui, 12/30/2015 22:53:10, 157668 bytes
   Driver: C:\WINDOWS\system32\resRUS.cui, 12/30/2015 22:53:10, 179252 bytes
   Driver: C:\WINDOWS\system32\resSKY.cui, 12/30/2015 22:53:10, 157012 bytes
   Driver: C:\WINDOWS\system32\resSLV.cui, 12/30/2015 22:53:10, 154484 bytes
   Driver: C:\WINDOWS\system32\resSVE.cui, 12/30/2015 22:53:10, 154628 bytes
   Driver: C:\WINDOWS\system32\resTHA.cui, 12/30/2015 22:53:10, 190868 bytes
   Driver: C:\WINDOWS\system32\resTRK.cui, 12/30/2015 22:53:10, 156116 bytes
   Driver: C:\WINDOWS\system32\ig7icd64.dll, 10.18.0010.4358 (English), 5/3/2016 22:30:46, 8531456 bytes
   Driver: C:\WINDOWS\SysWow64\ig7icd32.dll, 10.18.0010.4358 (English), 5/3/2016 22:30:46, 6518792 bytes
   Driver: C:\WINDOWS\system32\igdumdim64.dll, 10.18.0010.4358 (English), 5/3/2016 22:31:30, 11157656 bytes
   Driver: C:\WINDOWS\system32\igdail64.dll, 5/3/2016 22:30:44, 179720 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\llvm_release_license.txt, 12/30/2015 22:53:04, 1981 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\readme.txt, 12/30/2015 22:53:06, 9788 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\version.ini, 12/30/2015 22:53:06, 32 bytes
   Driver: C:\WINDOWS\SysWow64\Intel_OpenCL_ICD32.dll, 1.02.0011.0000 (English), 5/3/2016 22:30:46, 77832 bytes
   Driver: C:\WINDOWS\SysWow64\IntelOpenCL32.dll, 10.18.0010.4358 (English), 5/3/2016 22:30:46, 304136 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x86\task_executor32.dll, 3.00.0001.10891 (English), 5/3/2016 22:30:48, 225288 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x86\OclCpuBackend32.dll, 3.00.0001.10891 (English), 5/3/2016 22:30:48, 6776328 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x86\intelocl32.dll, 3.00.0001.10891 (English), 5/3/2016 22:30:48, 644104 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x86\cpu_device32.dll, 3.00.0001.10891 (English), 5/3/2016 22:30:48, 326152 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x86\clbltfnn8.rtl, 12/30/2015 22:53:04, 2986764 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x86\clbltfnn8_img_cbk.o, 12/30/2015 22:53:04, 240244 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x86\clbltfnn8_img_cbk.rtl, 12/30/2015 22:53:04, 375380 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x86\clbltfng9.rtl, 12/30/2015 22:53:02, 2930216 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x86\clbltfng9_img_cbk.o, 12/30/2015 22:53:02, 234396 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x86\clbltfng9_img_cbk.rtl, 12/30/2015 22:53:02, 374552 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x86\clbltfns9.rtl, 12/30/2015 22:53:04, 2408580 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x86\clbltfns9_img_cbk.o, 12/30/2015 22:53:04, 197272 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x86\clbltfns9_img_cbk.rtl, 12/30/2015 22:53:04, 329372 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x86\clang_compiler32.dll, 3.00.0001.10891 (English), 5/3/2016 22:30:48, 14906888 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x86\__ocl_svml_n8.dll, 2.00.0000.0000 (English), 5/3/2016 22:30:48, 5911560 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x86\__ocl_svml_g9.dll, 2.00.0000.0000 (English), 5/3/2016 22:30:48, 5182472 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x86\__ocl_svml_s9.dll, 2.00.0000.0000 (English), 5/3/2016 22:30:48, 4695048 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x86\tbb\tbbmalloc.dll, 4.00.2012.0408 (), 5/3/2016 22:30:48, 183240 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x86\tbb\tbb.dll, 4.00.2012.0408 (), 5/3/2016 22:30:48, 350664 bytes
   Driver: C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll, 1.02.0011.0000 (English), 5/3/2016 22:30:46, 81416 bytes
   Driver: C:\WINDOWS\system32\IntelOpenCL64.dll, 10.18.0010.4358 (English), 5/3/2016 22:30:46, 394248 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x64\task_executor64.dll, 3.00.0001.10891 (English), 5/3/2016 22:30:48, 263688 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x64\OclCpuBackend64.dll, 3.00.0001.10891 (English), 5/3/2016 22:30:48, 9179144 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x64\intelocl64.dll, 3.00.0001.10891 (English), 5/3/2016 22:30:48, 814088 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x64\cpu_device64.dll, 3.00.0001.10891 (English), 5/3/2016 22:30:48, 390152 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x64\clbltfnh8.rtl, 12/30/2015 22:53:02, 2941464 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x64\clbltfnh8_img_cbk.o, 12/30/2015 22:53:02, 295744 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x64\clbltfnh8_img_cbk.rtl, 12/30/2015 22:53:02, 388464 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x64\clbltfne9.rtl, 12/30/2015 22:53:02, 2884992 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x64\clbltfne9_img_cbk.o, 12/30/2015 22:53:02, 284840 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x64\clbltfne9_img_cbk.rtl, 12/30/2015 22:53:02, 387724 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x64\clbltfnl9.rtl, 12/30/2015 22:53:02, 2365892 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x64\clbltfnl9_img_cbk.o, 12/30/2015 22:53:02, 228328 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x64\clbltfnl9_img_cbk.rtl, 12/30/2015 22:53:02, 342372 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x64\clang_compiler64.dll, 3.00.0001.10891 (English), 5/3/2016 22:30:48, 19593736 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x64\__ocl_svml_h8.dll, 2.00.0000.0000 (English), 5/3/2016 22:30:48, 6108168 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x64\__ocl_svml_e9.dll, 2.00.0000.0000 (English), 5/3/2016 22:30:48, 5529608 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x64\__ocl_svml_l9.dll, 2.00.0000.0000 (English), 5/3/2016 22:30:48, 5076488 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x64\tbb\tbbmalloc.dll, 4.00.2012.0408 (), 5/3/2016 22:30:48, 215496 bytes
   Driver: C:\Program Files (x86)\Common Files\Intel\OpenCL\bin\x64\tbb\tbb.dll, 4.00.2012.0408 (), 5/3/2016 22:30:48, 425928 bytes
   Driver: C:\WINDOWS\SysWow64\IntelOpenCL32.dll, 10.18.0010.4358 (English), 5/3/2016 22:30:46, 304136 bytes
   Driver: C:\WINDOWS\SysWow64\igdbcl32.dll, 10.18.0010.4358 (English), 5/3/2016 22:30:44, 338952 bytes
   Driver: C:\WINDOWS\SysWow64\igdrcl32.dll, 10.18.0010.4358 (English), 5/3/2016 22:30:46, 1803784 bytes
   Driver: C:\WINDOWS\SysWow64\igdfcl32.dll, 10.18.0010.4358 (English), 5/3/2016 22:30:48, 17854984 bytes
   Driver: C:\WINDOWS\system32\IntelOpenCL64.dll, 10.18.0010.4358 (English), 5/3/2016 22:30:46, 394248 bytes
   Driver: C:\WINDOWS\system32\igdbcl64.dll, 10.18.0010.4358 (English), 5/3/2016 22:30:46, 383496 bytes
   Driver: C:\WINDOWS\system32\igdrcl64.dll, 10.18.0010.4358 (English), 5/3/2016 22:30:46, 2004488 bytes
   Driver: C:\WINDOWS\system32\igdfcl64.dll, 10.18.0010.4358 (English), 5/3/2016 22:30:46, 22922760 bytes
   Driver: C:\Program Files\Intel\Media SDK\libmfxhw32.dll, 5.15.0005.0029 (English), 5/3/2016 22:30:48, 8401664 bytes
   Driver: C:\Program Files\Intel\Media SDK\mfxplugin32_hw.dll, 3.11.0005.0020 (English), 5/3/2016 22:30:46, 599296 bytes
   Driver: C:\Program Files\Intel\Media SDK\mfx_mft_h264ve_32.dll, 6.15.0006.0002 (English), 5/3/2016 22:30:46, 820920 bytes
   Driver: C:\Program Files\Intel\Media SDK\mfx_mft_mjpgvd_32.dll, 6.15.0006.0002 (English), 5/3/2016 22:30:46, 763576 bytes
   Driver: C:\Program Files\Intel\Media SDK\he_32.vp, 12/30/2015 22:52:36, 28553 bytes
   Driver: C:\Program Files\Intel\Media SDK\c_32.cpa, 12/30/2015 22:52:34, 846855 bytes
   Driver: C:\Program Files\Intel\Media SDK\cpa_32.vp, 12/30/2015 22:52:34, 993 bytes
   Driver: C:\Program Files\Intel\Media SDK\dev_32.vp, 12/30/2015 22:52:34, 21523 bytes
   Driver: C:\Program Files\Intel\Media SDK\mj_32.vp, 12/30/2015 22:52:58, 26945 bytes
   Driver: C:\Program Files\Intel\Media SDK\libmfxhw64.dll, 5.15.0005.0029 (English), 5/3/2016 22:30:48, 9309440 bytes
   Driver: C:\Program Files\Intel\Media SDK\mfxplugin64_hw.dll, 3.11.0005.0020 (English), 5/3/2016 22:30:46, 696064 bytes
   Driver: C:\Program Files\Intel\Media SDK\mfx_mft_h264ve_64.dll, 6.15.0006.0002 (English), 5/3/2016 22:30:46, 1013432 bytes
   Driver: C:\Program Files\Intel\Media SDK\mfx_mft_mjpgvd_64.dll, 6.15.0006.0002 (English), 5/3/2016 22:30:46, 942776 bytes
   Driver: C:\Program Files\Intel\Media SDK\he_64.vp, 12/30/2015 22:52:36, 6533 bytes
   Driver: C:\Program Files\Intel\Media SDK\c_64.cpa, 12/30/2015 22:52:34, 1519616 bytes
   Driver: C:\Program Files\Intel\Media SDK\cpa_64.vp, 12/30/2015 22:52:34, 993 bytes
   Driver: C:\Program Files\Intel\Media SDK\dev_64.vp, 12/30/2015 22:52:34, 21523 bytes
   Driver: C:\Program Files\Intel\Media SDK\mj_64.vp, 12/30/2015 22:52:58, 6321 bytes
   Driver: C:\WINDOWS\system32\IntelWiDiMCUMD64.dll, 4.05.0072.0000 (English), 5/3/2016 22:30:46, 150504 bytes
   Driver: C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll, 4.05.0072.0000 (English), 5/3/2016 22:30:46, 1478632 bytes
   Driver: C:\WINDOWS\system32\IntelWiDiAAC64.dll, 4.05.0072.0000 (English), 5/3/2016 22:30:46, 4033000 bytes
   Driver: C:\WINDOWS\system32\IntelWiDiMux64.dll, 4.05.0072.0000 (English), 5/3/2016 22:30:46, 625640 bytes
   Driver: C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll, 4.05.0072.0000 (English), 5/3/2016 22:30:46, 199656 bytes
   Driver: C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll, 4.05.0072.0000 (English), 5/3/2016 22:30:46, 668136 bytes
   Driver: C:\WINDOWS\system32\IntelWiDiUtils64.dll, 4.05.0072.0000 (English), 5/3/2016 22:30:46, 232424 bytes
   Driver: C:\WINDOWS\system32\IntelWiDiLogServer64.dll, 4.05.0072.0000 (English), 5/3/2016 22:30:46, 116200 bytes
   Driver: C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll, 4.05.0072.0000 (English), 5/3/2016 22:30:46, 881128 bytes
   Driver: C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll, 4.05.0072.0000 (English), 5/3/2016 22:30:46, 366560 bytes
   Driver: C:\WINDOWS\system32\IntelWiDiVAD64.exe, 4.05.0072.0000 (English), 5/3/2016 22:30:48, 2516360 bytes
   Driver: C:\WINDOWS\system32\IntelWiDiUMS64.exe, 4.05.0072.0000 (English), 5/3/2016 22:30:46, 452576 bytes
   Driver: C:\WINDOWS\system32\igfxCoIn_v4358.dll, 1.03.0012.0000 (English), 5/3/2016 22:30:46, 206856 bytes
   Driver: C:\WINDOWS\system32\DisplayAudiox64.cab, 12/30/2015 22:52:34, 316245 bytes
 
     Name: Intel® USB 3.0 eXtensible Host Controller - 1.0 (Microsoft)
Device ID: PCI\VEN_8086&DEV_1E31&SUBSYS_05811028&REV_04\3&11583659&0&A0
   Driver: C:\WINDOWS\system32\DRIVERS\USBXHCI.SYS, 10.00.14393.0000 (English), 7/16/2016 03:41:55, 381792 bytes
 
     Name: High Definition Audio Controller
Device ID: PCI\VEN_8086&DEV_1E20&SUBSYS_05811028&REV_04\3&11583659&0&D8
   Driver: C:\WINDOWS\system32\DRIVERS\hdaudbus.sys, 10.00.14393.0000 (English), 7/16/2016 03:41:52, 83456 bytes
   Driver: C:\WINDOWS\system32\DRIVERS\drmk.sys, 10.00.14393.0000 (English), 7/16/2016 03:41:52, 97280 bytes
   Driver: C:\WINDOWS\system32\DRIVERS\portcls.sys, 10.00.14393.0000 (English), 7/16/2016 03:41:52, 366592 bytes
 
     Name: NVIDIA GeForce GT 620
Device ID: PCI\VEN_10DE&DEV_1049&SUBSYS_097710DE&REV_A1\4&3A8E07E3&0&0008
   Driver: C:\Program Files\NVIDIA Corporation\Drs\dbInstaller.exe, 21.21.0013.6909 (English), 9/12/2016 20:10:10, 474048 bytes
   Driver: C:\Program Files\NVIDIA Corporation\Drs\nvdrsdb.bin, 8/2/2016 22:49:26, 1341292 bytes
   Driver: C:\WINDOWS\System32\DriverStore\FileRepository\nv_desktop_ref4wu.inf_amd64_6e17fae58779a6b0\NvCplSetupInt.exe, 1.00.0005.0000 (English), 9/12/2016 20:10:16, 97078976 bytes
   Driver: C:\Program Files (x86)\NVIDIA Corporation\coprocmanager\detoured.dll, 2.01.0000.0207 (English), 9/12/2016 20:10:10, 36288 bytes
   Driver: C:\Program Files (x86)\NVIDIA Corporation\coprocmanager\nvd3d9wrap.dll, 21.21.0013.6909 (English), 9/12/2016 20:04:42, 207928 bytes
   Driver: C:\Program Files (x86)\NVIDIA Corporation\coprocmanager\nvdxgiwrap.dll, 21.21.0013.6909 (English), 9/12/2016 20:04:42, 134840 bytes
   Driver: C:\Program Files\NVIDIA Corporation\coprocmanager\detoured.dll, 2.01.0000.0207 (English), 9/12/2016 20:10:10, 37936 bytes
   Driver: C:\Program Files\NVIDIA Corporation\coprocmanager\nvd3d9wrapx.dll, 21.21.0013.6909 (English), 9/12/2016 20:04:42, 238384 bytes
   Driver: C:\Program Files\NVIDIA Corporation\coprocmanager\nvdxgiwrapx.dll, 21.21.0013.6909 (English), 9/12/2016 20:04:42, 155712 bytes
   Driver: C:\Program Files\NVIDIA Corporation\license.txt, 8/2/2016 22:49:04, 26629 bytes
   Driver: C:\Program Files\NVIDIA Corporation\NVSMI\MCU.exe, 1.01.5204.20580 (English), 9/12/2016 20:10:10, 865728 bytes
   Driver: C:\Program Files\NVIDIA Corporation\NVSMI\nvdebugdump.exe, 6.14.0013.6909 (English), 9/12/2016 20:10:10, 429112 bytes
   Driver: C:\Program Files\NVIDIA Corporation\NVSMI\nvidia-smi.1.pdf, 8/2/2016 22:49:30, 74003 bytes
   Driver: C:\Program Files\NVIDIA Corporation\NVSMI\nvidia-smi.exe, 8.17.0013.6909 (English), 9/12/2016 20:10:10, 467512 bytes
   Driver: C:\Program Files\NVIDIA Corporation\NVSMI\nvml.dll, 8.17.0013.6909 (English), 9/12/2016 20:10:12, 836152 bytes
   Driver: C:\Program Files\NVIDIA Corporation\OpenCL\OpenCL.dll, 1.02.0011.0000 (English), 9/12/2016 20:10:14, 219072 bytes
   Driver: C:\Program Files\NVIDIA Corporation\OpenCL\OpenCL64.dll, 1.02.0011.0000 (English), 9/12/2016 20:10:14, 233008 bytes
   Driver: C:\WINDOWS\System32\DriverStore\FileRepository\nv_desktop_ref4wu.inf_amd64_6e17fae58779a6b0\nvlddmkm.sys, 21.21.0013.6909 (English), 9/12/2016 20:10:12, 13754936 bytes
   Driver: C:\WINDOWS\System32\DriverStore\FileRepository\nv_desktop_ref4wu.inf_amd64_6e17fae58779a6b0\nvd3dumx.dll, 21.21.0013.6909 (English), 9/12/2016 20:04:44, 17799424 bytes
   Driver: C:\WINDOWS\System32\DriverStore\FileRepository\nv_desktop_ref4wu.inf_amd64_6e17fae58779a6b0\nvinitx.dll, 21.21.0013.6909 (English), 9/12/2016 20:04:42, 200896 bytes
   Driver: C:\WINDOWS\System32\DriverStore\FileRepository\nv_desktop_ref4wu.inf_amd64_6e17fae58779a6b0\nvoglshim64.dll, 21.21.0013.6909 (English), 9/12/2016 20:04:42, 173872 bytes
   Driver: C:\WINDOWS\System32\DriverStore\FileRepository\nv_desktop_ref4wu.inf_amd64_6e17fae58779a6b0\nvumdshimx.dll, 21.21.0013.6909 (English), 9/12/2016 20:04:44, 598296 bytes
   Driver: C:\WINDOWS\System32\DriverStore\FileRepository\nv_desktop_ref4wu.inf_amd64_6e17fae58779a6b0\nvwgf2umx.dll, 21.21.0013.6909 (English), 9/12/2016 20:04:44, 20853856 bytes
   Driver: C:\WINDOWS\system32\NvFBC64.dll, 6.14.0013.6909 (English), 9/12/2016 20:10:10, 1021496 bytes
   Driver: C:\WINDOWS\system32\NvIFR64.dll, 6.14.0013.6909 (English), 9/12/2016 20:10:12, 946112 bytes
   Driver: C:\WINDOWS\system32\nv-vk64.json, 8/2/2016 22:49:04, 594 bytes
   Driver: C:\WINDOWS\system32\nvapi64.dll, 21.21.0013.6909 (English), 9/12/2016 20:04:42, 3912128 bytes
   Driver: C:\WINDOWS\system32\nvcompiler.dll, 9/12/2016 20:10:12, 39996984 bytes
   Driver: C:\WINDOWS\system32\nvcuda.dll, 6.14.0013.6909 (English), 9/12/2016 20:04:42, 10374488 bytes
   Driver: C:\WINDOWS\system32\nvcuvid.dll, 7.17.0013.6909 (English), 9/12/2016 20:10:10, 2889272 bytes
   Driver: C:\WINDOWS\system32\nvfatbinaryLoader.dll, 9/12/2016 20:04:42, 724384 bytes
   Driver: C:\WINDOWS\system32\nvinfo.pb, 8/2/2016 22:49:32, 40296 bytes
   Driver: C:\WINDOWS\system32\nvoglv64.dll, 21.21.0013.6909 (English), 9/12/2016 20:10:12, 31704112 bytes
   Driver: C:\WINDOWS\system32\nvopencl.dll, 6.14.0013.6909 (English), 9/12/2016 20:04:44, 10840312 bytes
   Driver: C:\WINDOWS\system32\nvptxJitCompiler.dll, 9/12/2016 20:04:44, 10864440 bytes
   Driver: C:\WINDOWS\System32\DriverStore\FileRepository\nv_desktop_ref4wu.inf_amd64_6e17fae58779a6b0\nvd3dum.dll, 21.21.0013.6909 (English), 9/12/2016 20:04:44, 14767824 bytes
   Driver: C:\WINDOWS\System32\DriverStore\FileRepository\nv_desktop_ref4wu.inf_amd64_6e17fae58779a6b0\nvinit.dll, 21.21.0013.6909 (English), 9/12/2016 20:04:42, 179088 bytes
   Driver: C:\WINDOWS\System32\DriverStore\FileRepository\nv_desktop_ref4wu.inf_amd64_6e17fae58779a6b0\nvoglshim32.dll, 21.21.0013.6909 (English), 9/12/2016 20:04:42, 151608 bytes
   Driver: C:\WINDOWS\System32\DriverStore\FileRepository\nv_desktop_ref4wu.inf_amd64_6e17fae58779a6b0\nvumdshim.dll, 21.21.0013.6909 (English), 9/12/2016 20:04:44, 493720 bytes
   Driver: C:\WINDOWS\System32\DriverStore\FileRepository\nv_desktop_ref4wu.inf_amd64_6e17fae58779a6b0\nvwgf2um.dll, 21.21.0013.6909 (English), 9/12/2016 20:04:44, 18140240 bytes
   Driver: C:\WINDOWS\SysWow64\NvFBC.dll, 6.14.0013.6909 (English), 9/12/2016 20:10:10, 929848 bytes
   Driver: C:\WINDOWS\SysWow64\NvIFR.dll, 6.14.0013.6909 (English), 9/12/2016 20:10:12, 869432 bytes
   Driver: C:\WINDOWS\SysWow64\nv-vk32.json, 8/2/2016 22:49:04, 594 bytes
   Driver: C:\WINDOWS\SysWow64\nvapi.dll, 21.21.0013.6909 (English), 9/12/2016 20:04:42, 3460824 bytes
   Driver: C:\WINDOWS\SysWow64\nvcompiler.dll, 9/12/2016 20:10:10, 35133376 bytes
   Driver: C:\WINDOWS\SysWow64\nvcuda.dll, 6.14.0013.6909 (English), 9/12/2016 20:04:42, 8737976 bytes
   Driver: C:\WINDOWS\SysWow64\nvcuvid.dll, 7.17.0013.6909 (English), 9/12/2016 20:10:10, 2518584 bytes
   Driver: C:\WINDOWS\SysWow64\nvfatbinaryLoader.dll, 9/12/2016 20:04:42, 611608 bytes
   Driver: C:\WINDOWS\SysWow64\nvoglv32.dll, 21.21.0013.6909 (English), 9/12/2016 20:10:12, 25465280 bytes
   Driver: C:\WINDOWS\SysWow64\nvopencl.dll, 6.14.0013.6909 (English), 9/12/2016 20:04:44, 9151448 bytes
   Driver: C:\WINDOWS\SysWow64\nvptxJitCompiler.dll, 9/12/2016 20:04:44, 8916512 bytes
   Driver: C:\WINDOWS\System32\DriverStore\FileRepository\nv_desktop_ref4wu.inf_amd64_6e17fae58779a6b0\VulkanRT-Installer.exe, 1.00.0011.0001 (English), 9/12/2016 20:10:16, 13622896 bytes
   Driver: C:\WINDOWS\system32\nvdispco6436909.dll, 2.00.0045.0004 (English), 9/12/2016 20:10:10, 1956408 bytes
   Driver: C:\WINDOWS\system32\nvdispgenco6436909.dll, 2.00.0022.0002 (English), 9/12/2016 20:10:10, 1604152 bytes
 
     Name: Realtek PCIe GBE Family Controller
Device ID: PCI\VEN_10EC&DEV_8168&SUBSYS_05811028&REV_07\4&28981422&0&00E5
   Driver: C:\WINDOWS\system32\DRIVERS\rt640x64.sys, 9.01.0404.2015 (English), 7/16/2016 03:41:53, 589824 bytes
 
     Name: Intel® 7 Series/C216 Chipset Family PCI Express Root Port 6 - 1E1A
Device ID: PCI\VEN_8086&DEV_1E1A&SUBSYS_05811028&REV_C4\3&11583659&0&E5
   Driver: C:\WINDOWS\system32\DRIVERS\pci.sys, 10.00.14393.0479 (English), 11/11/2016 02:00:00, 335712 bytes
 
     Name: High Definition Audio Controller
Device ID: PCI\VEN_10DE&DEV_0E08&SUBSYS_097710DE&REV_A1\4&3A8E07E3&0&0108
   Driver: C:\WINDOWS\system32\DRIVERS\hdaudbus.sys, 10.00.14393.0000 (English), 7/16/2016 03:41:52, 83456 bytes
   Driver: C:\WINDOWS\system32\DRIVERS\drmk.sys, 10.00.14393.0000 (English), 7/16/2016 03:41:52, 97280 bytes
   Driver: C:\WINDOWS\system32\DRIVERS\portcls.sys, 10.00.14393.0000 (English), 7/16/2016 03:41:52, 366592 bytes
 
     Name: Xeon® processor E3-1200 v2/3rd Gen Core processor DRAM Controller - 0150
Device ID: PCI\VEN_8086&DEV_0150&SUBSYS_05811028&REV_09\3&11583659&0&00
   Driver: n/a
 
     Name: Intel® 7 Series/C216 Chipset Family USB Enhanced Host Controller - 1E26
Device ID: PCI\VEN_8086&DEV_1E26&SUBSYS_05811028&REV_04\3&11583659&0&E8
   Driver: C:\WINDOWS\system32\drivers\usbehci.sys, 10.00.14393.0000 (English), 7/16/2016 03:41:55, 96096 bytes
   Driver: C:\WINDOWS\system32\drivers\usbport.sys, 10.00.14393.0000 (English), 7/16/2016 03:41:55, 455520 bytes
   Driver: C:\WINDOWS\system32\drivers\usbhub.sys, 10.00.14393.0000 (English), 7/16/2016 03:41:55, 501088 bytes
 
     Name: Intel® 7 Series/C216 Chipset Family USB Enhanced Host Controller - 1E2D
Device ID: PCI\VEN_8086&DEV_1E2D&SUBSYS_05811028&REV_04\3&11583659&0&D0
   Driver: C:\WINDOWS\system32\drivers\usbehci.sys, 10.00.14393.0000 (English), 7/16/2016 03:41:55, 96096 bytes
   Driver: C:\WINDOWS\system32\drivers\usbport.sys, 10.00.14393.0000 (English), 7/16/2016 03:41:55, 455520 bytes
   Driver: C:\WINDOWS\system32\drivers\usbhub.sys, 10.00.14393.0000 (English), 7/16/2016 03:41:55, 501088 bytes
 
     Name: Intel® B75 Express Chipset LPC Controller - 1E49
Device ID: PCI\VEN_8086&DEV_1E49&SUBSYS_05811028&REV_04\3&11583659&0&F8
   Driver: C:\WINDOWS\system32\DRIVERS\msisadrv.sys, 10.00.14393.0000 (English), 7/16/2016 03:41:53, 18784 bytes
 
     Name: Intel® 7 Series/C216 Chipset Family PCI Express Root Port 2 - 1E12
Device ID: PCI\VEN_8086&DEV_1E12&SUBSYS_05811028&REV_C4\3&11583659&0&E1
   Driver: C:\WINDOWS\system32\DRIVERS\pci.sys, 10.00.14393.0479 (English), 11/11/2016 02:00:00, 335712 bytes
 
     Name: Xeon® processor E3-1200 v2/3rd Gen Core processor PCI Express Root Port - 0151
Device ID: PCI\VEN_8086&DEV_0151&SUBSYS_05811028&REV_09\3&11583659&0&08
   Driver: C:\WINDOWS\system32\DRIVERS\pci.sys, 10.00.14393.0479 (English), 11/11/2016 02:00:00, 335712 bytes
 
     Name: Intel® 7 Series/C216 Chipset Family SATA AHCI Controller
Device ID: PCI\VEN_8086&DEV_1E02&SUBSYS_05811028&REV_04\3&11583659&0&FA
   Driver: C:\WINDOWS\system32\DRIVERS\iaStorA.sys, 11.06.0001.1001 (English), 10/26/2012 21:02:10, 651832 bytes
 
     Name: Dell Wireless 1506 802.11b|g|n (2.4GHz)
Device ID: PCI\VEN_168C&DEV_0032&SUBSYS_02081028&REV_01\4&295ECE14&0&00E1
   Driver: C:\WINDOWS\system32\DRIVERS\athw8x.sys, 3.00.0002.0201 (English), 7/16/2016 03:41:50, 4233728 bytes
 
     Name: PCI-to-PCI Bridge
Device ID: PCI\VEN_8086&DEV_244E&SUBSYS_05811028&REV_A4\3&11583659&0&F0
   Driver: C:\WINDOWS\system32\DRIVERS\pci.sys, 10.00.14393.0479 (English), 11/11/2016 02:00:00, 335712 bytes
 
------------------
DirectShow Filters
------------------
 
DirectShow Filters:
WMAudio Decoder DMO,0x00800800,1,1,WMADMOD.DLL,10.00.14393.0000
WMAPro over S/PDIF DMO,0x00600800,1,1,WMADMOD.DLL,10.00.14393.0000
WMSpeech Decoder DMO,0x00600800,1,1,WMSPDMOD.DLL,10.00.14393.0000
MP3 Decoder DMO,0x00600800,1,1,mp3dmod.dll,10.00.14393.0000
Mpeg4s Decoder DMO,0x00800001,1,1,mp4sdecd.dll,10.00.14393.0000
WMV Screen decoder DMO,0x00600800,1,1,wmvsdecd.dll,10.00.14393.0000
WMVideo Decoder DMO,0x00800001,1,1,wmvdecod.dll,10.00.14393.0000
Mpeg43 Decoder DMO,0x00800001,1,1,mp43decd.dll,10.00.14393.0000
Mpeg4 Decoder DMO,0x00800001,1,1,mpg4decd.dll,10.00.14393.0000
DV Muxer,0x00400000,0,0,qdv.dll,10.00.14393.0000
Color Space Converter,0x00400001,1,1,quartz.dll,10.00.14393.0000
WM ASF Reader,0x00400000,0,0,qasf.dll,12.00.14393.0000
AVI Splitter,0x00600000,1,1,quartz.dll,10.00.14393.0000
VGA 16 Color Ditherer,0x00400000,1,1,quartz.dll,10.00.14393.0000
SBE2MediaTypeProfile,0x00200000,0,0,sbe.dll,10.00.14393.0206
Microsoft DTV-DVD Video Decoder,0x005fffff,2,4,msmpeg2vdec.dll,10.00.14393.0479
AC3 Parser Filter,0x00600000,1,1,mpg2splt.ax,10.00.14393.0000
StreamBufferSink,0x00200000,0,0,sbe.dll,10.00.14393.0206
MJPEG Decompressor,0x00600000,1,1,quartz.dll,10.00.14393.0000
MPEG-I Stream Splitter,0x00600000,1,2,quartz.dll,10.00.14393.0000
SAMI (CC) Parser,0x00400000,1,1,quartz.dll,10.00.14393.0000
VBI Codec,0x00600000,1,4,VBICodec.ax,10.00.14393.0000
MPEG-2 Splitter,0x005fffff,1,0,mpg2splt.ax,10.00.14393.0000
Closed Captions Analysis Filter,0x00200000,2,5,cca.dll,10.00.14393.0000
SBE2FileScan,0x00200000,0,0,sbe.dll,10.00.14393.0206
Microsoft MPEG-2 Video Encoder,0x00200000,1,1,msmpeg2enc.dll,10.00.14393.0000
Internal Script Command Renderer,0x00800001,1,0,quartz.dll,10.00.14393.0000
MPEG Audio Decoder,0x03680001,1,1,quartz.dll,10.00.14393.0000
DV Splitter,0x00600000,1,2,qdv.dll,10.00.14393.0000
Video Mixing Renderer 9,0x00200000,1,0,quartz.dll,10.00.14393.0000
Microsoft MPEG-2 Encoder,0x00200000,2,1,msmpeg2enc.dll,10.00.14393.0000
ACM Wrapper,0x00600000,1,1,quartz.dll,10.00.14393.0000
Video Renderer,0x00800001,1,0,quartz.dll,10.00.14393.0000
MPEG-2 Video Stream Analyzer,0x00200000,0,0,sbe.dll,10.00.14393.0206
Line 21 Decoder,0x00600000,1,1,,
Video Port Manager,0x00600000,2,1,quartz.dll,10.00.14393.0000
Video Renderer,0x00400000,1,0,quartz.dll,10.00.14393.0000
VPS Decoder,0x00200000,0,0,WSTPager.ax,10.00.14393.0000
WM ASF Writer,0x00400000,0,0,qasf.dll,12.00.14393.0000
VBI Surface Allocator,0x00600000,1,1,vbisurf.ax,
File writer,0x00200000,1,0,qcap.dll,10.00.14393.0000
DVD Navigator,0x00200000,0,3,qdvd.dll,10.00.14393.0000
Overlay Mixer2,0x00200000,1,1,,
Microsoft MPEG-2 Audio Encoder,0x00200000,1,1,msmpeg2enc.dll,10.00.14393.0000
WST Pager,0x00200000,1,1,WSTPager.ax,10.00.14393.0000
MPEG-2 Demultiplexer,0x00600000,1,1,mpg2splt.ax,10.00.14393.0000
DV Video Decoder,0x00800000,1,1,qdv.dll,10.00.14393.0000
SampleGrabber,0x00200000,1,1,qedit.dll,10.00.14393.0206
Null Renderer,0x00200000,1,0,qedit.dll,10.00.14393.0206
MPEG-2 Sections and Tables,0x005fffff,1,0,Mpeg2Data.ax,10.00.14393.0000
Microsoft AC3 Encoder,0x00200000,1,1,msac3enc.dll,10.00.14393.0206
StreamBufferSource,0x00200000,0,0,sbe.dll,10.00.14393.0206
Smart Tee,0x00200000,1,2,qcap.dll,10.00.14393.0000
Overlay Mixer,0x00200000,0,0,,
AVI Decompressor,0x00600000,1,1,quartz.dll,10.00.14393.0000
AVI/WAV File Source,0x00400000,0,2,quartz.dll,10.00.14393.0000
Wave Parser,0x00400000,1,1,quartz.dll,10.00.14393.0000
MIDI Parser,0x00400000,1,1,quartz.dll,10.00.14393.0000
Multi-file Parser,0x00400000,1,1,quartz.dll,10.00.14393.0000
File stream renderer,0x00400000,1,1,quartz.dll,10.00.14393.0000
Microsoft DTV-DVD Audio Decoder,0x005fffff,1,1,msmpeg2adec.dll,10.00.14393.0000
StreamBufferSink2,0x00200000,0,0,sbe.dll,10.00.14393.0206
AVI Mux,0x00200000,1,0,qcap.dll,10.00.14393.0000
Line 21 Decoder 2,0x00600002,1,1,quartz.dll,10.00.14393.0000
File Source (Async.),0x00400000,0,1,quartz.dll,10.00.14393.0000
File Source (URL),0x00400000,0,1,quartz.dll,10.00.14393.0000
Infinite Pin Tee Filter,0x00200000,1,1,qcap.dll,10.00.14393.0000
Enhanced Video Renderer,0x00200000,1,0,evr.dll,10.00.14393.0187
BDA MPEG2 Transport Information Filter,0x00200000,2,0,psisrndr.ax,10.00.14393.0000
MPEG Video Decoder,0x40000001,1,1,quartz.dll,10.00.14393.0000
 
WDM Streaming Tee/Splitter Devices:
Tee/Sink-to-Sink Converter,0x00200000,1,1,ksproxy.ax,10.00.14393.0000
 
Video Compressors:
WMVideo8 Encoder DMO,0x00600800,1,1,wmvxencd.dll,10.00.14393.0000
WMVideo9 Encoder DMO,0x00600800,1,1,wmvencod.dll,10.00.14393.0000
MSScreen 9 encoder DMO,0x00600800,1,1,wmvsencd.dll,10.00.14393.0000
DV Video Encoder,0x00200000,0,0,qdv.dll,10.00.14393.0000
MJPEG Compressor,0x00200000,0,0,quartz.dll,10.00.14393.0000
 
Audio Compressors:
WM Speech Encoder DMO,0x00600800,1,1,WMSPDMOE.DLL,10.00.14393.0000
WMAudio Encoder DMO,0x00600800,1,1,WMADMOE.DLL,10.00.14393.0000
IMA ADPCM,0x00200000,1,1,quartz.dll,10.00.14393.0000
PCM,0x00200000,1,1,quartz.dll,10.00.14393.0000
Microsoft ADPCM,0x00200000,1,1,quartz.dll,10.00.14393.0000
GSM 6.10,0x00200000,1,1,quartz.dll,10.00.14393.0000
CCITT A-Law,0x00200000,1,1,quartz.dll,10.00.14393.0000
CCITT u-Law,0x00200000,1,1,quartz.dll,10.00.14393.0000
MPEG Layer-3,0x00200000,1,1,quartz.dll,10.00.14393.0000
 
Audio Capture Sources:
Microphone (High Definition Audio Device),0x00200000,0,0,qcap.dll,10.00.14393.0000
Microphone (High Definition Audio Device),0x00200000,0,0,qcap.dll,10.00.14393.0000
Line In (High Definition Audio Device),0x00200000,0,0,qcap.dll,10.00.14393.0000
 
PBDA CP Filters:
PBDA DTFilter,0x00600000,1,1,CPFilters.dll,10.00.14393.0351
PBDA ETFilter,0x00200000,0,0,CPFilters.dll,10.00.14393.0351
PBDA PTFilter,0x00200000,0,0,CPFilters.dll,10.00.14393.0351
 
Midi Renderers:
Default MidiOut Device,0x00800000,1,0,quartz.dll,10.00.14393.0000
Microsoft GS Wavetable Synth,0x00200000,1,0,quartz.dll,10.00.14393.0000
 
WDM Streaming Capture Devices:
HD Audio Muxed capture,0x00200000,1,1,ksproxy.ax,10.00.14393.0000
HD Audio Microphone,0x00200000,1,1,ksproxy.ax,10.00.14393.0000
 
WDM Streaming Rendering Devices:
HD Audio Speaker,0x00200000,1,1,ksproxy.ax,10.00.14393.0000
HD Audio Headphone,0x00200000,1,1,ksproxy.ax,10.00.14393.0000
 
BDA Network Providers:
Microsoft ATSC Network Provider,0x00200000,0,1,MSDvbNP.ax,10.00.14393.0000
Microsoft DVBC Network Provider,0x00200000,0,1,MSDvbNP.ax,10.00.14393.0000
Microsoft DVBS Network Provider,0x00200000,0,1,MSDvbNP.ax,10.00.14393.0000
Microsoft DVBT Network Provider,0x00200000,0,1,MSDvbNP.ax,10.00.14393.0000
Microsoft Network Provider,0x00200000,0,1,MSNP.ax,10.00.14393.0000
 
Multi-Instance Capable VBI Codecs:
VBI Codec,0x00600000,1,4,VBICodec.ax,10.00.14393.0000
 
BDA Transport Information Renderers:
BDA MPEG2 Transport Information Filter,0x00600000,2,0,psisrndr.ax,10.00.14393.0000
MPEG-2 Sections and Tables,0x00600000,1,0,Mpeg2Data.ax,10.00.14393.0000
 
BDA CP/CA Filters:
Decrypt/Tag,0x00600000,1,1,EncDec.dll,10.00.14393.0351
Encrypt/Tag,0x00200000,0,0,EncDec.dll,10.00.14393.0351
PTFilter,0x00200000,0,0,EncDec.dll,10.00.14393.0351
XDS Codec,0x00200000,0,0,EncDec.dll,10.00.14393.0351
 
WDM Streaming Communication Transforms:
Tee/Sink-to-Sink Converter,0x00200000,1,1,ksproxy.ax,10.00.14393.0000
 
Audio Renderers:
Speakers (High Definition Audio Device),0x00200000,1,0,quartz.dll,10.00.14393.0000
Default DirectSound Device,0x00800000,1,0,quartz.dll,10.00.14393.0000
Default WaveOut Device,0x00200000,1,0,quartz.dll,10.00.14393.0000
DirectSound: Speakers (High Definition Audio Device),0x00200000,1,0,quartz.dll,10.00.14393.0000
DirectSound: Headphones (High Definition Audio Device),0x00200000,1,0,quartz.dll,10.00.14393.0000
Headphones (High Definition Audio Device),0x00200000,1,0,quartz.dll,10.00.14393.0000
 
 
----------------------------
Preferred DirectShow Filters
----------------------------
 
[HKEY_LOCAL_MACHINE\Software\Microsoft\DirectShow\Preferred]
 
<media subtype GUID>, [<filter friendly name>, ]<filter CLSID>
 
MEDIASUBTYPE_MPEG1Payload, MPEG Video Decoder, CLSID_CMpegVideoCodec
MEDIASUBTYPE_MPEG1Packet, MPEG Video Decoder, CLSID_CMpegVideoCodec
MEDIASUBTYPE_DVD_LPCM_AUDIO, Microsoft DTV-DVD Audio Decoder, CLSID_CMPEG2AudDecoderDS
MEDIASUBTYPE_MPEG2_AUDIO, Microsoft DTV-DVD Audio Decoder, CLSID_CMPEG2AudDecoderDS
MEDIASUBTYPE_MPEG2_VIDEO, Microsoft DTV-DVD Video Decoder, CLSID_CMPEG2VidDecoderDS
{78766964-0000-0010-8000-00AA00389B71}, Mpeg4s Decoder DMO, CLSID_CMpeg4sDecMediaObject
{7634706D-0000-0010-8000-00AA00389B71}, Mpeg4s Decoder DMO, CLSID_CMpeg4sDecMediaObject
MEDIASUBTYPE_mp4s, Mpeg4s Decoder DMO, CLSID_CMpeg4sDecMediaObject
{6C737664-0000-0010-8000-00AA00389B71}, DV Video Decoder, CLSID_DVVideoCodec
{64737664-0000-0010-8000-00AA00389B71}, DV Video Decoder, CLSID_DVVideoCodec
{64697678-0000-0010-8000-00AA00389B71}, Mpeg4s Decoder DMO, CLSID_CMpeg4sDecMediaObject
{64687664-0000-0010-8000-00AA00389B71}, DV Video Decoder, CLSID_DVVideoCodec
{58564944-0000-0010-8000-00AA00389B71}, Mpeg4s Decoder DMO, CLSID_CMpeg4sDecMediaObject
{5634504D-0000-0010-8000-00AA00389B71}, Mpeg4s Decoder DMO, CLSID_CMpeg4sDecMediaObject
MEDIASUBTYPE_MP4S, Mpeg4s Decoder DMO, CLSID_CMpeg4sDecMediaObject
MEDIASUBTYPE_WMVR, WMVideo Decoder DMO, CLSID_CWMVDecMediaObject
MEDIASUBTYPE_WMVP, WMVideo Decoder DMO, CLSID_CWMVDecMediaObject
MEDIASUBTYPE_MJPG, MJPEG Decompressor, CLSID_MjpegDec
{44495658-0000-0010-8000-00AA00389B71}, Mpeg4s Decoder DMO, CLSID_CMpeg4sDecMediaObject
MEDIASUBTYPE_WMVA, WMVideo Decoder DMO, CLSID_CWMVDecMediaObject
MEDIASUBTYPE_mpg4, Mpeg4 Decoder DMO, CLSID_CMpeg4DecMediaObject
MEDIASUBTYPE_MPG4, Mpeg4 Decoder DMO, CLSID_CMpeg4DecMediaObject
MEDIASUBTYPE_h264, Microsoft DTV-DVD Video Decoder, CLSID_CMPEG2VidDecoderDS
MEDIASUBTYPE_H264, Microsoft DTV-DVD Video Decoder, CLSID_CMPEG2VidDecoderDS
MEDIASUBTYPE_WMV3, WMVideo Decoder DMO, CLSID_CWMVDecMediaObject
MEDIASUBTYPE_mp43, Mpeg43 Decoder DMO, CLSID_CMpeg43DecMediaObject
MEDIASUBTYPE_MP43, Mpeg43 Decoder DMO, CLSID_CMpeg43DecMediaObject
MEDIASUBTYPE_m4s2, Mpeg4s Decoder DMO, CLSID_CMpeg4sDecMediaObject
MEDIASUBTYPE_WMV2, WMVideo Decoder DMO, CLSID_CWMVDecMediaObject
MEDIASUBTYPE_MSS2, WMV Screen decoder DMO, CLSID_CMSSCDecMediaObject
MEDIASUBTYPE_M4S2, Mpeg4s Decoder DMO, CLSID_CMpeg4sDecMediaObject
MEDIASUBTYPE_WVP2, WMVideo Decoder DMO, CLSID_CWMVDecMediaObject
MEDIASUBTYPE_mp42, Mpeg4 Decoder DMO, CLSID_CMpeg4DecMediaObject
MEDIASUBTYPE_MP42, Mpeg4 Decoder DMO, CLSID_CMpeg4DecMediaObject
MEDIASUBTYPE_WMV1, WMVideo Decoder DMO, CLSID_CWMVDecMediaObject
MEDIASUBTYPE_MSS1, WMV Screen decoder DMO, CLSID_CMSSCDecMediaObject
MEDIASUBTYPE_WVC1, WMVideo Decoder DMO, CLSID_CWMVDecMediaObject
MEDIASUBTYPE_AVC1, Microsoft DTV-DVD Video Decoder, CLSID_CMPEG2VidDecoderDS
{20637664-0000-0010-8000-00AA00389B71}, DV Video Decoder, CLSID_DVVideoCodec
MEDIASUBTYPE_MPEG_LOAS, Microsoft DTV-DVD Audio Decoder, CLSID_CMPEG2AudDecoderDS
MEDIASUBTYPE_MPEG_ADTS_AAC, Microsoft DTV-DVD Audio Decoder, CLSID_CMPEG2AudDecoderDS
MEDIASUBTYPE_WMAUDIO_LOSSLESS, WMAudio Decoder DMO, CLSID_CWMADecMediaObject
MEDIASUBTYPE_WMAUDIO3, WMAudio Decoder DMO, CLSID_CWMADecMediaObject
WMMEDIASUBTYPE_WMAudioV8, WMAudio Decoder DMO, CLSID_CWMADecMediaObject
MEDIASUBTYPE_MSAUDIO1, WMAudio Decoder DMO, CLSID_CWMADecMediaObject
MEDIASUBTYPE_RAW_AAC1, Microsoft DTV-DVD Audio Decoder, CLSID_CMPEG2AudDecoderDS
WMMEDIASUBTYPE_MP3, MP3 Decoder DMO, CLSID_CMP3DecMediaObject
MEDIASUBTYPE_MPEG1AudioPayload, MPEG Audio Decoder, CLSID_CMpegAudioCodec
WMMEDIASUBTYPE_WMSP2, WMSpeech Decoder DMO, CLSID_CWMSPDecMediaObject
WMMEDIASUBTYPE_WMSP1, WMSpeech Decoder DMO, CLSID_CWMSPDecMediaObject
 
 
---------------------------
Media Foundation Transforms
---------------------------
 
[HKEY_LOCAL_MACHINE\Software\Classes\MediaFoundation\Transforms]
 
<category>:
  <transform friendly name>, <transform CLSID>, <flags>, [<merit>, ]<file name>, <file version>
 
Video Decoders:
  Intel® Hardware M-JPEG Decoder MFT, {00C69F81-0524-48C0-A353-4DD9D54F9A6E}, 0x6, 7, mfx_mft_mjpgvd_64.dll, 6.15.0006.0002
  Microsoft MPEG Video Decoder MFT, {2D709E52-123F-49B5-9CBC-9AF5CDE28FB9}, 0x1, msmpeg2vdec.dll, 10.00.14393.0479
  DV Decoder MFT, {404A6DE5-D4D6-4260-9BC7-5A6CBD882432}, 0x1, mfdvdec.dll, 10.00.14393.0000
  Microsoft H265 Video Decoder MFT, {420A51A3-D605-430C-B4FC-45274FA6C562}, 0x1, hevcdecoder.dll, 10.00.14393.0479
  Mpeg4s Decoder MFT, CLSID_CMpeg4sDecMFT, 0x1, mp4sdecd.dll, 10.00.14393.0000
  Microsoft H264 Video Decoder MFT, CLSID_CMSH264DecoderMFT, 0x1, msmpeg2vdec.dll, 10.00.14393.0479
  WMV Screen decoder MFT, CLSID_CMSSCDecMediaObject, 0x1, wmvsdecd.dll, 10.00.14393.0000
  WMVideo Decoder MFT, CLSID_CWMVDecMediaObject, 0x1, wmvdecod.dll, 10.00.14393.0000
  MJPEG Decoder MFT, {CB17E772-E1CC-4633-8450-5617AF577905}, 0x1, mfmjpegdec.dll, 10.00.14393.0000
  Mpeg43 Decoder MFT, CLSID_CMpeg43DecMediaObject, 0x1, mp43decd.dll, 10.00.14393.0000
  Microsoft WebM MF VP8 Decoder Transform, {E3AAF548-C9A4-4C6E-234D-5ADA374B0000}, 0x1, MSVP9DEC.dll, 10.00.14393.0000
  Mpeg4 Decoder MFT, CLSID_CMpeg4DecMediaObject, 0x1, mpg4decd.dll, 10.00.14393.0000
Video Encoders:
  Intel® Quick Sync Video H.264 Encoder MFT, {4BE8D3C0-0515-4A37-AD55-E4BAE19AF471}, 0x4, 7, mfx_mft_h264ve_64.dll, 6.15.0006.0002
  H264 Encoder MFT, {6CA50344-051A-4DED-9779-A43305165E35}, 0x1, mfh264enc.dll, 10.00.14393.0000
  WMVideo8 Encoder MFT, CLSID_CWMVXEncMediaObject, 0x1, wmvxencd.dll, 10.00.14393.0000
  Microsoft MF VPX Encoder Transform, {AEB6C755-2546-4881-82CC-E15AE5EBFF3D}, 0x1, MSVPXENC.dll, 10.00.14393.0206
  H263 Encoder MFT, {BC47FCFE-98A0-4F27-BB07-698AF24F2B38}, 0x1, mfh263enc.dll, 10.00.14393.0000
  WMVideo9 Encoder MFT, CLSID_CWMV9EncMediaObject, 0x1, wmvencod.dll, 10.00.14393.0000
  Microsoft MPEG-2 Video Encoder MFT, {E6335F02-80B7-4DC4-ADFA-DFE7210D20D5}, 0x2, msmpeg2enc.dll, 10.00.14393.0000
  H265 Encoder MFT, {F2F84074-8BCA-40BD-9159-E880F673DD3B}, 0x1, mfh265enc.dll, 10.00.14393.0000
Video Effects:
  Frame Rate Converter, CLSID_CFrameRateConvertDmo, 0x1, mfvdsp.dll, 10.00.14393.0000
  Resizer MFT, CLSID_CResizerDMO, 0x1, vidreszr.dll, 10.00.14393.0000
  VideoStabilization MFT, {51571744-7FE4-4FF2-A498-2DC34FF74F1B}, 0x1, MSVideoDSP.dll, 10.00.14393.0206
  Color Control, CLSID_CColorControlDmo, 0x1, mfvdsp.dll, 10.00.14393.0000
  Color Converter MFT, CLSID_CColorConvertDMO, 0x1, colorcnv.dll, 10.00.14393.0000
Video Processor:
  Microsoft Video Processor MFT, {88753B26-5B24-49BD-B2E7-0C445C78C982}, 0x1, msvproc.dll, 10.00.14393.0351
Audio Decoders:
  Microsoft Dolby Digital Plus Decoder MFT, {177C0AFE-900B-48D4-9E4C-57ADD250B3D4}, 0x1, DolbyDecMFT.dll, 10.00.14393.0351
  MS AMRNB Decoder MFT, {265011AE-5481-4F77-A295-ABB6FFE8D63E}, 0x1, MSAMRNBDecoder.dll, 10.00.14393.0000
  WMAudio Decoder MFT, CLSID_CWMADecMediaObject, 0x1, WMADMOD.DLL, 10.00.14393.0000
  Microsoft AAC Audio Decoder MFT, CLSID_CMSAACDecMFT, 0x1, MSAudDecMFT.dll, 10.00.14393.0206
  A-law Wrapper MFT, {36CB6E0C-78C1-42B2-9943-846262F31786}, 0x1, mfcore.dll, 10.00.14393.0479
  GSM ACM Wrapper MFT, {4A76B469-7B66-4DD4-BA2D-DDF244C766DC}, 0x1, mfcore.dll, 10.00.14393.0479
  WMAPro over S/PDIF MFT, CLSID_CWMAudioSpdTxDMO, 0x1, WMADMOD.DLL, 10.00.14393.0000
  Microsoft Opus Audio Decoder MFT, {63E17C10-2D43-4C42-8FE3-8D8B63E46A6A}, 0x1, MSOpusDecoder.dll, 10.00.14393.0000
  Microsoft FLAC Audio Decoder MFT, {6B0B3E6B-A2C5-4514-8055-AFE8A95242D9}, 0x1, MSFlacDecoder.dll, 10.00.14393.0000
  Microsoft MPEG Audio Decoder MFT, {70707B39-B2CA-4015-ABEA-F8447D22D88B}, 0x1, MSAudDecMFT.dll, 10.00.14393.0206
  WMSpeech Decoder DMO, CLSID_CWMSPDecMediaObject, 0x1, WMSPDMOD.DLL, 10.00.14393.0000
  G711 Wrapper MFT, {92B66080-5E2D-449E-90C4-C41F268E5514}, 0x1, mfcore.dll, 10.00.14393.0479
  IMA ADPCM ACM Wrapper MFT, {A16E1BFF-A80D-48AD-AECD-A35C005685FE}, 0x1, mfcore.dll, 10.00.14393.0479
  MP3 Decoder MFT, CLSID_CMP3DecMediaObject, 0x1, mp3dmod.dll, 10.00.14393.0000
  Microsoft ALAC Audio Decoder MFT, {C0CD7D12-31FC-4BBC-B363-7322EE3E1879}, 0x1, MSAlacDecoder.dll, 10.00.14393.0000
  ADPCM ACM Wrapper MFT, {CA34FE0A-5722-43AD-AF23-05F7650257DD}, 0x1, mfcore.dll, 10.00.14393.0479
  Dolby TrueHD IEC-61937 converter MFT, {CF5EEEDF-0E92-4B3B-A161-BD0FFE545E4B}, 0x1, mfaudiocnv.dll, 10.00.14393.0479
  DTS IEC-61937 converter MFT, {D035E24C-C877-42D7-A795-2A8A339B472F}, 0x1, mfaudiocnv.dll, 10.00.14393.0479
Audio Encoders:
  LPCM DVD-Audio MFT, {068A8476-9229-4CC0-9D49-2FC699DCD30A}, 0x1, mfaudiocnv.dll, 10.00.14393.0479
  MP3 Encoder ACM Wrapper MFT, {11103421-354C-4CCA-A7A3-1AFF9A5B6701}, 0x1, mfcore.dll, 10.00.14393.0479
  Microsoft FLAC Audio Encoder MFT, {128509E9-C44E-45DC-95E9-C255B8F466A6}, 0x1, MSFlacEncoder.dll, 10.00.14393.0000
  WM Speech Encoder DMO, CLSID_CWMSPEncMediaObject2, 0x1, WMSPDMOE.DLL, 10.00.14393.0000
  MS AMRNB Encoder MFT, {2FAE8AFE-04A3-423A-A814-85DB454712B0}, 0x1, MSAMRNBEncoder.dll, 10.00.14393.0000
  Microsoft MPEG-2 Audio Encoder MFT, {46A4DD5C-73F8-4304-94DF-308F760974F4}, 0x1, msmpeg2enc.dll, 10.00.14393.0000
  WMAudio Encoder MFT, CLSID_CWMAEncMediaObject, 0x1, WMADMOE.DLL, 10.00.14393.0000
  Microsoft AAC Audio Encoder MFT, {93AF0C51-2275-45D2-A35B-F2BA21CAED00}, 0x1, mfAACEnc.dll, 10.00.14393.0000
  Microsoft ALAC Audio Encoder MFT, {9AB6A28C-748E-4B6A-BFFF-CC443B8E8FB4}, 0x1, MSAlacEncoder.dll, 10.00.14393.0000
  Microsoft Dolby Digital Encoder MFT, {AC3315C9-F481-45D7-826C-0B406C1F64B8}, 0x1, msac3enc.dll, 10.00.14393.0206
Audio Effects:
  AEC, CLSID_CWMAudioAEC, 0x1, mfwmaaec.dll, 10.00.14393.0000
  Resampler MFT, CLSID_CResamplerMediaObject, 0x1, resampledmo.dll, 10.00.14393.0000
Multiplexers:
  Microsoft MPEG2 Multiplexer MFT, {AB300F71-01AB-46D2-AB6C-64906CB03258}, 0x2, mfmpeg2srcsnk.dll, 10.00.14393.0206
Others:
  Microsoft H264 Video Remux (MPEG2TSToMP4) MFT, {05A47EBB-8BF0-4CBF-AD2F-3B71D75866F5}, 0x1, msmpeg2vdec.dll, 10.00.14393.0479
 
 
--------------------------------------------
Media Foundation Enabled Hardware Categories
--------------------------------------------
 
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows Media Foundation\HardwareMFT]
 
EnableEncoders = 1
EnableDecoders = 1
EnableVideoProcessors = 1
 
 
-------------------------------------
Media Foundation Byte Stream Handlers
-------------------------------------
 
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows Media Foundation\ByteStreamHandlers]
[HKEY_LOCAL_MACHINE\Software\Classes\MediaFoundation\MediaSources\Preferred]
 
<file ext. or MIME type>, <handler CLSID>, <brief description>[, Preferred]
 
.3g2, {271C3902-6095-4C45-A22F-20091816EE9E}, MPEG4 Byte Stream Handler, Preferred
.3gp, {271C3902-6095-4C45-A22F-20091816EE9E}, MPEG4 Byte Stream Handler, Preferred
.3gp2, {271C3902-6095-4C45-A22F-20091816EE9E}, MPEG4 Byte Stream Handler, Preferred
.3gpp, {271C3902-6095-4C45-A22F-20091816EE9E}, MPEG4 Byte Stream Handler, Preferred
.aac, {926F41F7-003E-4382-9E84-9E953BE10562}, ADTS Byte Stream Handler, Preferred
.ac3, {46031BA1-083F-47D9-8369-23C92BDAB2FF}, AC-3 Byte Stream Handler, Preferred
.adt, {926F41F7-003E-4382-9E84-9E953BE10562}, ADTS Byte Stream Handler, Preferred
.adts, {926F41F7-003E-4382-9E84-9E953BE10562}, ADTS Byte Stream Handler, Preferred
.am?, {EFE6208A-0A2C-49FA-8A01-3768B559B6DA}, MF AMRNB Media Source ByteStreamHandler
.amr, {EFE6208A-0A2C-49FA-8A01-3768B559B6DA}, MF AMRNB Media Source ByteStreamHandler, Preferred
.asf, {41457294-644C-4298-A28A-BD69F2C0CF3B}, ASF Byte Stream Handler, Preferred
.avi, {7AFA253E-F823-42F6-A5D9-714BDE467412}, AVI Byte Stream Handler, Preferred
.dvr-ms, {65964407-A5D8-4060-85B0-1CCD63F768E2}, dvr-ms Byte Stream Handler, Preferred
.dvr-ms, {A8721937-E2FB-4D7A-A9EE-4EB08C890B6E}, MF SBE Source ByteStreamHandler
.ec3, {46031BA1-083F-47D9-8369-23C92BDAB2FF}, AC-3 Byte Stream Handler, Preferred
.flac, {0E41CFB8-0506-40F4-A516-77CC23642D91}, MF FLAC Media Source ByteStreamHandler, Preferred
.m2t, {40871C59-AB40-471F-8DC3-1F259D862479}, MPEG2 Byte Stream Handler, Preferred
.m2ts, {40871C59-AB40-471F-8DC3-1F259D862479}, MPEG2 Byte Stream Handler, Preferred
.m4a, {271C3902-6095-4C45-A22F-20091816EE9E}, MPEG4 Byte Stream Handler, Preferred
.m4v, {271C3902-6095-4C45-A22F-20091816EE9E}, MPEG4 Byte Stream Handler, Preferred
.mk3d, {1F9A2C18-D89E-463E-B4F4-BB90152ACC64}, MKV Byte Stream Handler, Preferred
.mka, {1F9A2C18-D89E-463E-B4F4-BB90152ACC64}, MKV Byte Stream Handler, Preferred
.mks, {1F9A2C18-D89E-463E-B4F4-BB90152ACC64}, MKV Byte Stream Handler, Preferred
.mkv, {1F9A2C18-D89E-463E-B4F4-BB90152ACC64}, MKV Byte Stream Handler, Preferred
.mod, {40871C59-AB40-471F-8DC3-1F259D862479}, MPEG2 Byte Stream Handler, Preferred
.mov, {271C3902-6095-4C45-A22F-20091816EE9E}, MPEG4 Byte Stream Handler, Preferred
.mp2v, {40871C59-AB40-471F-8DC3-1F259D862479}, MPEG2 Byte Stream Handler, Preferred
.mp3, {A82E50BA-8E92-41EB-9DF2-433F50EC2993}, MP3 Byte Stream Handler, Preferred
.mp4, {271C3902-6095-4C45-A22F-20091816EE9E}, MPEG4 Byte Stream Handler, Preferred
.mp4v, {271C3902-6095-4C45-A22F-20091816EE9E}, MPEG4 Byte Stream Handler, Preferred
.mpa, {A82E50BA-8E92-41EB-9DF2-433F50EC2993}, MP3 Byte Stream Handler, Preferred
.mpeg, {40871C59-AB40-471F-8DC3-1F259D862479}, MPEG2 Byte Stream Handler, Preferred
.mpg, {40871C59-AB40-471F-8DC3-1F259D862479}, MPEG2 Byte Stream Handler, Preferred
.mts, {40871C59-AB40-471F-8DC3-1F259D862479}, MPEG2 Byte Stream Handler, Preferred
.nsc, {B084785C-DDE0-4D30-8CA8-05A373E185BE}, NSC Byte Stream Handler, Preferred
.sami, {7A56C4CB-D678-4188-85A8-BA2EF68FA10D}, SAMI Byte Stream Handler, Preferred
.smi, {7A56C4CB-D678-4188-85A8-BA2EF68FA10D}, SAMI Byte Stream Handler, Preferred
.tod, {40871C59-AB40-471F-8DC3-1F259D862479}, MPEG2 Byte Stream Handler, Preferred
.ts, {40871C59-AB40-471F-8DC3-1F259D862479}, MPEG2 Byte Stream Handler, Preferred
.tts, {40871C59-AB40-471F-8DC3-1F259D862479}, MPEG2 Byte Stream Handler, Preferred
.uvu, {271C3902-6095-4C45-A22F-20091816EE9E}, MPEG4 Byte Stream Handler, Preferred
.vob, {40871C59-AB40-471F-8DC3-1F259D862479}, MPEG2 Byte Stream Handler, Preferred
.wav, {42C9B9F5-16FC-47EF-AF22-DA05F7C842E3}, WAV Byte Stream Handler, Preferred
.wm, {41457294-644C-4298-A28A-BD69F2C0CF3B}, ASF Byte Stream Handler, Preferred
.wma, {41457294-644C-4298-A28A-BD69F2C0CF3B}, ASF Byte Stream Handler, Preferred
.wmv, {41457294-644C-4298-A28A-BD69F2C0CF3B}, ASF Byte Stream Handler, Preferred
.wtv, {65964407-A5D8-4060-85B0-1CCD63F768E2}, WTV Byte Stream Handler, Preferred
audio/3gpp, {271C3902-6095-4C45-A22F-20091816EE9E}, MPEG4 Byte Stream Handler, Preferred
audio/3gpp2, {271C3902-6095-4C45-A22F-20091816EE9E}, MPEG4 Byte Stream Handler, Preferred
audio/aac, {926F41F7-003E-4382-9E84-9E953BE10562}, ADTS Byte Stream Handler, Preferred
audio/aacp, {926F41F7-003E-4382-9E84-9E953BE10562}, ADTS Byte Stream Handler, Preferred
audio/eac3, {46031BA1-083F-47D9-8369-23C92BDAB2FF}, AC-3 Byte Stream Handler, Preferred
audio/L16, {3FFB3B8C-EB99-472B-8902-E1C1B05F07CF}, LPCM Byte Stream Handler, Preferred
audio/mp3, {A82E50BA-8E92-41EB-9DF2-433F50EC2993}, MP3 Byte Stream Handler, Preferred
audio/mp4, {271C3902-6095-4C45-A22F-20091816EE9E}, MPEG4 Byte Stream Handler, Preferred
audio/MP4A-LATM, {271C3902-6095-4C45-A22F-20091816EE9E}, MPEG4 Byte Stream Handler, Preferred
audio/mpa, {A82E50BA-8E92-41EB-9DF2-433F50EC2993}, MP3 Byte Stream Handler, Preferred
audio/mpeg, {A82E50BA-8E92-41EB-9DF2-433F50EC2993}, MP3 Byte Stream Handler, Preferred
audio/mpeg3, {A82E50BA-8E92-41EB-9DF2-433F50EC2993}, MP3 Byte Stream Handler, Preferred
audio/vnd.dlna.adts, {926F41F7-003E-4382-9E84-9E953BE10562}, ADTS Byte Stream Handler, Preferred
audio/vnd.dolby.dd-raw, {46031BA1-083F-47D9-8369-23C92BDAB2FF}, AC-3 Byte Stream Handler, Preferred
audio/wav, {42C9B9F5-16FC-47EF-AF22-DA05F7C842E3}, WAV Byte Stream Handler, Preferred
audio/x-aac, {926F41F7-003E-4382-9E84-9E953BE10562}, ADTS Byte Stream Handler, Preferred
audio/x-m4a, {271C3902-6095-4C45-A22F-20091816EE9E}, MPEG4 Byte Stream Handler, Preferred
audio/x-matroska, {1F9A2C18-D89E-463E-B4F4-BB90152ACC64}, MKV Byte Stream Handler, Preferred
audio/x-mp3, {A82E50BA-8E92-41EB-9DF2-433F50EC2993}, MP3 Byte Stream Handler, Preferred
audio/x-mpeg, {A82E50BA-8E92-41EB-9DF2-433F50EC2993}, MP3 Byte Stream Handler, Preferred
audio/x-ms-wma, {41457294-644C-4298-A28A-BD69F2C0CF3B}, ASF Byte Stream Handler, Preferred
audio/x-wav, {42C9B9F5-16FC-47EF-AF22-DA05F7C842E3}, WAV Byte Stream Handler, Preferred
video/3gpp, {271C3902-6095-4C45-A22F-20091816EE9E}, MPEG4 Byte Stream Handler, Preferred
video/3gpp2, {271C3902-6095-4C45-A22F-20091816EE9E}, MPEG4 Byte Stream Handler, Preferred
video/avi, {7AFA253E-F823-42F6-A5D9-714BDE467412}, AVI Byte Stream Handler, Preferred
video/mp4, {271C3902-6095-4C45-A22F-20091816EE9E}, MPEG4 Byte Stream Handler, Preferred
video/mpeg, {40871C59-AB40-471F-8DC3-1F259D862479}, MPEG2 Byte Stream Handler, Preferred
video/msvideo, {7AFA253E-F823-42F6-A5D9-714BDE467412}, AVI Byte Stream Handler, Preferred
video/vnd.dece.mp4, {271C3902-6095-4C45-A22F-20091816EE9E}, MPEG4 Byte Stream Handler, Preferred
video/vnd.dlna.mpeg-tts, {40871C59-AB40-471F-8DC3-1F259D862479}, MPEG2 Byte Stream Handler, Preferred
video/x-m4v, {271C3902-6095-4C45-A22F-20091816EE9E}, MPEG4 Byte Stream Handler, Preferred
video/x-matroska, {1F9A2C18-D89E-463E-B4F4-BB90152ACC64}, MKV Byte Stream Handler, Preferred
video/x-ms-asf, {41457294-644C-4298-A28A-BD69F2C0CF3B}, ASF Byte Stream Handler, Preferred
video/x-ms-wm, {41457294-644C-4298-A28A-BD69F2C0CF3B}, ASF Byte Stream Handler, Preferred
video/x-ms-wmv, {41457294-644C-4298-A28A-BD69F2C0CF3B}, ASF Byte Stream Handler, Preferred
video/x-msvideo, {7AFA253E-F823-42F6-A5D9-714BDE467412}, AVI Byte Stream Handler, Preferred
 
 
--------------------------------
Media Foundation Scheme Handlers
--------------------------------
 
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows Media Foundation\SchemeHandlers]
[HKEY_LOCAL_MACHINE\Software\Classes\MediaFoundation\MediaSources\Preferred]
 
<URL type>, <handler CLSID>, <brief description>[, Preferred]
 
file:, {477EC299-1421-4BDD-971F-7CCB933F21AD}, File Scheme Handler, Preferred
http:, {44CB442B-9DA9-49DF-B3FD-023777B16E50}, Http Scheme Handler
http:, {9EC4B4F9-3029-45AD-947B-344DE2A249E2}, Urlmon Scheme Handler
http:, {E9F4EBAB-D97B-463E-A2B1-C54EE3F9414D}, Net Scheme Handler, Preferred
httpd:, {44CB442B-9DA9-49DF-B3FD-023777B16E50}, Http Scheme Handler, Preferred
httpnd:, {2EEEED04-0908-4CDB-AF8F-AC5B768A34C9}, Drm Scheme Handler, Preferred
https:, {37A61C8B-7F8E-4D08-B12B-248D73E9AB4F}, Secure Http Scheme Handler, Preferred
httpsd:, {37A61C8B-7F8E-4D08-B12B-248D73E9AB4F}, Secure Http Scheme Handler, Preferred
httpt:, {E9F4EBAB-D97B-463E-A2B1-C54EE3F9414D}, Net Scheme Handler, Preferred
httpu:, {E9F4EBAB-D97B-463E-A2B1-C54EE3F9414D}, Net Scheme Handler, Preferred
mcast:, {E9F4EBAB-D97B-463E-A2B1-C54EE3F9414D}, Net Scheme Handler, Preferred
mcrecv:, {FA6D33D4-9405-4BA5-9983-12604AC8E77A}, Miracast Sink Scheme Handler, Preferred
mms:, {E9F4EBAB-D97B-463E-A2B1-C54EE3F9414D}, Net Scheme Handler, Preferred
ms-appdata:, {CFC81939-3886-4ACF-9692-DA58037AE716}, MsAppData Scheme Handler, Preferred
ms-appx-web:, {8DB0224B-3D65-4F6F-8E12-BEB4B78B8974}, MsAppxWeb Scheme Handler, Preferred
ms-appx:, {8DB0224B-3D65-4F6F-8E12-BEB4B78B8974}, MsAppx Scheme Handler, Preferred
ms-winsoundevent:, {F79A6BF9-7415-4CF3-AE10-4559509ABC3C}, Sound Event Scheme Handler, Preferred
rtsp:, {E9F4EBAB-D97B-463E-A2B1-C54EE3F9414D}, Net Scheme Handler, Preferred
rtspt:, {E9F4EBAB-D97B-463E-A2B1-C54EE3F9414D}, Net Scheme Handler, Preferred
rtspu:, {E9F4EBAB-D97B-463E-A2B1-C54EE3F9414D}, Net Scheme Handler, Preferred
sdp:, {E9F4EBAB-D97B-463E-A2B1-C54EE3F9414D}, Net Scheme Handler, Preferred
 
 
-------------------------------------
Preferred Media Foundation Transforms
-------------------------------------
 
[HKEY_LOCAL_MACHINE\Software\Classes\MediaFoundation\Transforms\Preferred]
 
<media subtype GUID>, [<transform friendly name>, ]<transform CLSID>
 
{EB27CEC4-163E-4CA3-8B74-8E25F91B517E}, Dolby TrueHD IEC-61937 converter MFT, {CF5EEEDF-0E92-4B3B-A161-BD0FFE545E4B}
{E06D802C-DB46-11CF-B4D1-00805F6CBBEA}, Microsoft Dolby Digital Plus Decoder MFT, {177C0AFE-900B-48D4-9E4C-57ADD250B3D4}
MFVideoFormat_MPEG2, Microsoft MPEG Video Decoder MFT, {2D709E52-123F-49B5-9CBC-9AF5CDE28FB9}
MEDIASUBTYPE_DOLBY_DDPLUS, Microsoft Dolby Digital Plus Decoder MFT, {177C0AFE-900B-48D4-9E4C-57ADD250B3D4}
{A2E58EB7-0FA9-48BB-A40C-FA0E156D0645}, DTS IEC-61937 converter MFT, {D035E24C-C877-42D7-A795-2A8A339B472F}
{7634706D-0000-0010-8000-00AA00389B71}, Mpeg4s Decoder MFT, CLSID_CMpeg4sDecMFT
{73616D72-767A-494D-B478-F29D25DC9037}, MS AMRNB Decoder MFT, {265011AE-5481-4F77-A295-ABB6FFE8D63E}
MEDIASUBTYPE_mp4s, Mpeg4s Decoder MFT, CLSID_CMpeg4sDecMFT
MFVideoFormat_DVSL, DV Decoder MFT, {404A6DE5-D4D6-4260-9BC7-5A6CBD882432}
MFVideoFormat_DVSD, DV Decoder MFT, {404A6DE5-D4D6-4260-9BC7-5A6CBD882432}
MFVideoFormat_DVHD, DV Decoder MFT, {404A6DE5-D4D6-4260-9BC7-5A6CBD882432}
MFVideoFormat_MP4V, Mpeg4s Decoder MFT, CLSID_CMpeg4sDecMFT
{53564548-0000-0010-8000-00AA00389B71}, Microsoft H265 Video Decoder MFT, {420A51A3-D605-430C-B4FC-45274FA6C562}
MFVideoFormat_MP4S, Mpeg4s Decoder MFT, CLSID_CMpeg4sDecMFT
{53314356-0000-0010-8000-00AA00389B71}, WMVideo Decoder MFT, CLSID_CWMVDecMediaObject
MEDIASUBTYPE_WMVR, WMVideo Decoder MFT, CLSID_CWMVDecMediaObject
MEDIASUBTYPE_WMVP, WMVideo Decoder MFT, CLSID_CWMVDecMediaObject
MFVideoFormat_MJPG, MJPEG Decoder MFT, {CB17E772-E1CC-4633-8450-5617AF577905}
{43564548-0000-0010-8000-00AA00389B71}, Microsoft H265 Video Decoder MFT, {420A51A3-D605-430C-B4FC-45274FA6C562}
MEDIASUBTYPE_WMVA, WMVideo Decoder MFT, CLSID_CWMVDecMediaObject
{3F40F4F0-5622-4FF8-B6D8-A17A584BEE5E}, Microsoft H264 Video Decoder MFT, CLSID_CMSH264DecoderMFT
MEDIASUBTYPE_mpg4, Mpeg4 Decoder MFT, CLSID_CMpeg4DecMediaObject
MEDIASUBTYPE_MPG4, Mpeg4 Decoder MFT, CLSID_CMpeg4DecMediaObject
MFVideoFormat_H264, Microsoft H264 Video Decoder MFT, CLSID_CMSH264DecoderMFT
MFVideoFormat_WMV3, WMVideo Decoder MFT, CLSID_CWMVDecMediaObject
{33363248-0000-0010-8000-00AA00389B71}, Mpeg4s Decoder MFT, CLSID_CMpeg4sDecMFT
MEDIASUBTYPE_mp43, Mpeg43 Decoder MFT, CLSID_CMpeg43DecMediaObject
MFVideoFormat_MP43, Mpeg43 Decoder MFT, CLSID_CMpeg43DecMediaObject
MEDIASUBTYPE_m4s2, Mpeg4s Decoder MFT, CLSID_CMpeg4sDecMFT
MFVideoFormat_WMV2, WMVideo Decoder MFT, CLSID_CWMVDecMediaObject
MFVideoFormat_MSS2, WMV Screen decoder MFT, CLSID_CMSSCDecMediaObject
MFVideoFormat_M4S2, Mpeg4s Decoder MFT, CLSID_CMpeg4sDecMFT
MEDIASUBTYPE_WVP2, WMVideo Decoder MFT, CLSID_CWMVDecMediaObject
MEDIASUBTYPE_mp42, Mpeg4 Decoder MFT, CLSID_CMpeg4DecMediaObject
MEDIASUBTYPE_MP42, Mpeg4 Decoder MFT, CLSID_CMpeg4DecMediaObject
MFVideoFormat_WMV1, WMVideo Decoder MFT, CLSID_CWMVDecMediaObject
MFVideoFormat_MSS1, WMV Screen decoder MFT, CLSID_CMSSCDecMediaObject
MFVideoFormat_MPG1, Microsoft MPEG Video Decoder MFT, {2D709E52-123F-49B5-9CBC-9AF5CDE28FB9}
MFVideoFormat_WVC1, WMVideo Decoder MFT, CLSID_CWMVDecMediaObject
{30395056-0000-0010-8000-00AA00389B71}, Microsoft WebM MF VP8 Decoder Transform, {E3AAF548-C9A4-4C6E-234D-5ADA374B0000}
{30385056-0000-0010-8000-00AA00389B71}, Microsoft WebM MF VP8 Decoder Transform, {E3AAF548-C9A4-4C6E-234D-5ADA374B0000}
MFVideoFormat_DVC, DV Decoder MFT, {404A6DE5-D4D6-4260-9BC7-5A6CBD882432}
{0000F1AC-0000-0010-8000-00AA00389B71}, Microsoft FLAC Audio Decoder MFT, {6B0B3E6B-A2C5-4514-8055-AFE8A95242D9}
{00007361-0000-0010-8000-00AA00389B71}, MS AMRNB Decoder MFT, {265011AE-5481-4F77-A295-ABB6FFE8D63E}
{0000704F-0000-0010-8000-00AA00389B71}, Microsoft Opus Audio Decoder MFT, {63E17C10-2D43-4C42-8FE3-8D8B63E46A6A}
{00006C61-0000-0010-8000-00AA00389B71}, Microsoft ALAC Audio Decoder MFT, {C0CD7D12-31FC-4BBC-B363-7322EE3E1879}
{00002001-0000-0010-8000-00AA00389B71}, DTS IEC-61937 converter MFT, {D035E24C-C877-42D7-A795-2A8A339B472F}
{00002000-0000-0010-8000-00AA00389B71}, Microsoft Dolby Digital Plus Decoder MFT, {177C0AFE-900B-48D4-9E4C-57ADD250B3D4}
MFAudioFormat_AAC, Microsoft AAC Audio Decoder MFT, CLSID_CMSAACDecMFT
{00001600-0000-0100-0800-000aa00389b71}, Microsoft AAC Audio Decoder MFT, CLSID_CMSAACDecMFT
MFAudioFormat_WMAudio_Lossless, WMAudio Decoder MFT, CLSID_CWMADecMediaObject
MFAudioFormat_WMAudioV9, WMAudio Decoder MFT, CLSID_CWMADecMediaObject
MFAudioFormat_WMAudioV8, WMAudio Decoder MFT, CLSID_CWMADecMediaObject
MEDIASUBTYPE_MSAUDIO1, WMAudio Decoder MFT, CLSID_CWMADecMediaObject
MEDIASUBTYPE_RAW_AAC1, Microsoft AAC Audio Decoder MFT, CLSID_CMSAACDecMFT
MFAudioFormat_MP3, MP3 Decoder MFT, CLSID_CMP3DecMediaObject
MFAudioFormat_MPEG, Microsoft MPEG Audio Decoder MFT, {70707B39-B2CA-4015-ABEA-F8447D22D88B}
{00000031-0000-0010-8000-00AA00389B71}, GSM ACM Wrapper MFT, {4A76B469-7B66-4DD4-BA2D-DDF244C766DC}
{00000011-0000-0010-8000-00AA00389B71}, IMA ADPCM ACM Wrapper MFT, {A16E1BFF-A80D-48AD-AECD-A35C005685FE}
WMMEDIASUBTYPE_WMSP2, WMSpeech Decoder DMO, CLSID_CWMSPDecMediaObject
MFAudioFormat_MSP1, WMSpeech Decoder DMO, CLSID_CWMSPDecMediaObject
KSDATAFORMAT_SUBTYPE_MULAW, G711 Wrapper MFT, {92B66080-5E2D-449E-90C4-C41F268E5514}
{00000006-0000-0010-8000-00AA00389B71}, A-law Wrapper MFT, {36CB6E0C-78C1-42B2-9943-846262F31786}
KSDATAFORMAT_SUBTYPE_ADPCM, ADPCM ACM Wrapper MFT, {CA34FE0A-5722-43AD-AF23-05F7650257DD}
 
 
-------------------------------------
Disabled Media Foundation Transforms
-------------------------------------
 
[HKEY_LOCAL_MACHINE\Software\Classes\MediaFoundation\Transforms\DoNotUse]
 
<transform CLSID>
 
 
 
------------------------
Disabled Media Sources
------------------------
 
[HKEY_LOCAL_MACHINE\Software\Classes\MediaFoundation\MediaSources\DoNotUse]
 
<media source CLSID>
 
 
---------------
EVR Power Information
---------------
Current Setting: {5C67A112-A4C9-483F-B4A7-1D473BECAFDC} (Quality) 
  Quality Flags: 2576
    Enabled:
    Force throttling
    Allow half deinterlace
    Allow scaling
    Decode Power Usage: 100
  Balanced Flags: 1424
    Enabled:
    Force throttling
    Allow batching
    Force half deinterlace
    Force scaling
    Decode Power Usage: 50
  PowerFlags: 1424
    Enabled:
    Force throttling
    Allow batching
    Force half deinterlace
    Force scaling
    Decode Power Usage: 0
 
---------------
Diagnostics
---------------
 
Windows Error Reporting:
+++ WER0 +++:
Fault bucket -773491338, type 5
 
Event Name: CLR20r3
 
Response: Not available
 
Cab Id: 0
 
 
 
Problem signature:
 
P1: deliveryservice.exe
 
P2: 2.5.1400.0
 
P3: 5140edb8
 
P4: DeliveryService
 
P5: 2.5.1400.0
 
P6: 5140edb8
 
P7: 1ea
 
P8: 24
 
P9: System.TypeInitialization
 
P10: 
 
 
 
 
+++ WER1 +++:
Fault bucket , type 0
 
Event Name: CLR20r3
 
Response: Not available
 
Cab Id: 0
 
 
 
Problem signature:
 
P1: deliveryservice.exe
 
P2: 2.5.1400.0
 
P3: 5140edb8
 
P4: DeliveryService
 
P5: 2.5.1400.0
 
P6: 5140edb8
 
P7: 1ea
 
P8: 24
 
P9: System.TypeInitialization
 
P10: 
 
 
 
 
+++ WER2 +++:
Fault bucket -773491338, type 5
 
Event Name: CLR20r3
 
Response: Not available
 
Cab Id: 0
 
 
 
Problem signature:
 
P1: deliveryservice.exe
 
P2: 2.5.1400.0
 
P3: 5140edb8
 
P4: DeliveryService
 
P5: 2.5.1400.0
 
P6: 5140edb8
 
P7: 1ea
 
P8: 24
 
P9: System.TypeInitialization
 
P10: 
 
 
 
 
+++ WER3 +++:
Fault bucket , type 0
 
Event Name: CLR20r3
 
Response: Not available
 
Cab Id: 0
 
 
 
Problem signature:
 
P1: deliveryservice.exe
 
P2: 2.5.1400.0
 
P3: 5140edb8
 
P4: DeliveryService
 
P5: 2.5.1400.0
 
P6: 5140edb8
 
P7: 1ea
 
P8: 24
 
P9: System.TypeInitialization
 
P10: 
 
 
 
 
+++ WER4 +++:
Fault bucket -773491338, type 5
 
Event Name: CLR20r3
 
Response: Not available
 
Cab Id: 0
 
 
 
Problem signature:
 
P1: deliveryservice.exe
 
P2: 2.5.1400.0
 
P3: 5140edb8
 
P4: DeliveryService
 
P5: 2.5.1400.0
 
P6: 5140edb8
 
P7: 1ea
 
P8: 24
 
P9: System.TypeInitialization
 
P10: 
 
 
 
 
+++ WER5 +++:
Fault bucket , type 0
 
Event Name: CLR20r3
 
Response: Not available
 
Cab Id: 0
 
 
 
Problem signature:
 
P1: deliveryservice.exe
 
P2: 2.5.1400.0
 
P3: 5140edb8
 
P4: DeliveryService
 
P5: 2.5.1400.0
 
P6: 5140edb8
 
P7: 1ea
 
P8: 24
 
P9: System.TypeInitialization
 
P10: 
 
 
 
 
+++ WER6 +++:
Fault bucket 108615142942, type 1
 
Event Name: APPCRASH
 
Response: Not available
 
Cab Id: 0
 
 
 
Problem signature:
 
P1: IDVault.exe
 
P2: 1.13.521.2
 
P3: 519c3426
 
P4: KERNELBASE.dll
 
P5: 10.0.14393.479
 
P6: 58256d37
 
P7: e0434352
 
P8: 000da832
 
P9: 
 
P10: 
 
 
 
 
+++ WER7 +++:
Fault bucket 108615142942, type 1
 
Event Name: APPCRASH
 
Response: Not available
 
Cab Id: 0
 
 
 
Problem signature:
 
P1: IDVault.exe
 
P2: 1.13.521.2
 
P3: 519c3426
 
P4: KERNELBASE.dll
 
P5: 10.0.14393.479
 
P6: 58256d37
 
P7: e0434352
 
P8: 000da832
 
P9: 
 
P10: 
 
 
 
 
+++ WER8 +++:
Fault bucket -773491338, type 5
 
Event Name: CLR20r3
 
Response: Not available
 
Cab Id: 0
 
 
 
Problem signature:
 
P1: deliveryservice.exe
 
P2: 2.5.1400.0
 
P3: 5140edb8
 
P4: DeliveryService
 
P5: 2.5.1400.0
 
P6: 5140edb8
 
P7: 1ea
 
P8: 24
 
P9: System.TypeInitialization
 
P10: 
 
 
 
 
+++ WER9 +++:
Fault bucket , type 0
 
Event Name: CLR20r3
 
Response: Not available
 
Cab Id: 0
 
 
 
Problem signature:
 
P1: deliveryservice.exe
 
P2: 2.5.1400.0
 
P3: 5140edb8
 
P4: DeliveryService
 
P5: 2.5.1400.0
 
P6: 5140edb8
 
P7: 1ea
 
P8: 24
 
P9: System.TypeInitialization
 
P10: 

  • 0

#10
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,031 posts
  • MVP

If we look at the errors like these:

 

Log: 'Application' Date/Time: 18/11/2016 4:58:22 PM
Type: Warning Category: 7
Event: 508 Source: ESENT
SettingSyncHost (10212) {16956CEB-C822-4EB4-8711-358A8302567A}: A request to write to the file "C:\Users\angie\AppData\Local\Microsoft\Windows\SettingSync\metastore\meta.edb" at offset 901120 (0x00000000000dc000) for 16384 (0x00004000) bytes succeeded, but took an abnormally long time (37 seconds) to be serviced by the OS. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.
 

 

 

and at highlighted attriburtes in the S.M.A.R.T. report from speccy:

 

S.M.A.R.T attributes
01
Attribute name Read Error Rate
Real value 0
Current 117
Worst 99
Threshold 6
Raw Value 0009A39738
Status Good
03
Attribute name Spin-Up Time
Real value 0 ms
Current 96
Worst 96
Threshold 0
Raw Value 0000000000
Status Good
04
Attribute name Start/Stop Count
Real value 2,763
Current 98
Worst 98
Threshold 20
Raw Value 0000000ACB
Status Good
05
Attribute name Reallocated Sectors Count
Real value 0
Current 100
Worst 100
Threshold 10
Raw Value 0000000000
Status Good
07
Attribute name Seek Error Rate
Real value 0
Current 85
Worst 60
Threshold 30
Raw Value 00179E5493
Status Good
09
Attribute name Power-On Hours (POH)
Real value 446d 14h
Current 88
Worst 88
Threshold 0
Raw Value 00000029DE
Status Good
0A
Attribute name Spin Retry Count
Real value 0
Current 100
Worst 100
Threshold 97
Raw Value 0000000000
Status Good
0C
Attribute name Device Power Cycle Count
Real value 2,766
Current 98
Worst 98
Threshold 20
Raw Value 0000000ACE
Status Good
B7
Attribute name SATA Downshift Error Count
Real value 0
Current 100
Worst 100
Threshold 0
Raw Value 0000000000
Status Good
B8
Attribute name End-to-End error / IOEDC
Real value 0
Current 100
Worst 100
Threshold 99
Raw Value 0000000000
Status Good
BB
Attribute name Reported Uncorrectable Errors
Real value 0
Current 100
Worst 100
Threshold 0
Raw Value 0000000000
Status Good
BC
Attribute name Command Timeout
Real value 0
Current 100
Worst 100
Threshold 0
Raw Value 0000000000
Status Good
BD
Attribute name High Fly Writes (WDC)
Real value 0
Current 100
Worst 100
Threshold 0
Raw Value 0000000000
Status Good
BE
Attribute name Airflow Temperature
Real value 40 °C
Current 60
Worst 54
Threshold 45
Raw Value 0028190028
Status Good
BF
Attribute name G-sense error rate
Real value 0
Current 100
Worst 100
Threshold 0
Raw Value 0000000000
Status Good
C0
Attribute name Power-off Retract Count
Real value 36
Current 100
Worst 100
Threshold 0
Raw Value 0000000024
Status Good
C1
Attribute name Load/Unload Cycle Count
Real value 10,451
Current 95
Worst 95
Threshold 0
Raw Value 00000028D3
Status Good
C2
Attribute name Temperature
Real value 40 °C
Current 40
Worst 46
Threshold 0
Raw Value 0000000028
Status Good
C5
Attribute name Current Pending Sector Count
Real value 0
Current 100
Worst 100
Threshold 0
Raw Value 0000000000
Status Good
C6
Attribute name Uncorrectable Sector Count
Real value 0
Current 100
Worst 100
Threshold 0
Raw Value 0000000000
Status Good
C7
Attribute name UltraDMA CRC Error Count
Real value 0
Current 200
Worst 200
Threshold 0
Raw Value 0000000000
Status Good
F0
Attribute name Head Flying Hours
Real value 450d 1h
Current 100
Worst 253
Threshold 0
Raw Value 0000002A31
Status Good
F1
Attribute name Total LBAs Written
Real value 21,751,186,041
Current 100
Worst 253
Threshold 0
Raw Value 001078C279
Status Good
F2
Attribute name Total LBAs Read
Real value 28,428,004,170
Current 100
Worst 253
Threshold 0
Raw Value 009E70EB4A
Status Good

 

I expect that's your problem.  The hard drive is starting to fail.  You should get a new drive (I recommend Western Digital Black but anything but Seagate will be an improvement.  Seagate has a terrible rep.) and clone the old one before it fails completely.  Since this is a desktop it should be straight forward.  You can use Seagate's seatools program or that of your new drive to do the cloning or you could use one of these:

 

Amazon has:

WD Black 2TB Performance Desktop Hard Disk Drive - 7200 RPM SATA 6 Gb/s 64MB Cache 3.5 Inch - WD2003FZEX for $118.65

or

WD Blue 2TB Desktop Hard Disk Drive - 5400 RPM SATA 6 Gb/s 64MB Cache 3.5 Inch - WD20EZRZ for $72.  (shorter warranty and not as fast)

 

I would also recommend trying to upgrade your nvidia software as it's old and causing errors.  You have 340 and they are up to 376.33  http://www.geforce.com/drivers

Remove

McAfee Security Scan Plus

 

Remove Bonjour and IdVault if you haven't already.  If you have removed them then do a new FRST scan with Addition.txt checked and post both logs.  I'll remove the remnants for you with the fixlist that will also clean up the dead tasks.

 

 

 
Search for
 
services.msc
hit Enter.
 
This should bring up the Services Window.  Scroll down to
Windows Driver Foundation - User-mode Driver Framework
and right click and select Properties.  Then change the Startup Type: to Automatic and OK.
 
This should fix these errors:
 
Log: 'System' Date/Time: 18/12/2016 3:06:35 AM
Type: Warning Category: 212
Event: 219 Source: Microsoft-Windows-Kernel-PnP
The driver \Driver\WudfRd failed to load for the device SWD\WPDBUSENUM\_??_USBSTOR#Disk&Ven_Generic-&Prod_Multi-Card&Rev_1.00#20071114173400000&0#{53f56307-b6bf-11d0-94f2-00a0c91efb8b}.
 

 

 

For the following errors:
 
Log: 'System' Date/Time: 19/12/2016 8:12:03 PM
Type: Warning Category: 1014
Event: 1014 Source: Microsoft-Windows-DNS-Client
Name resolution for the name wpad timed out after none of the configured DNS servers responded.
 
 

 

 

Search for
control panel
and hit Enter
 
click on Internet Options
 
thne on Connections
 
then on LAN Settings then 
UNCHECK 
all boxes.  OK.

  • 0

Advertisements


#11
RJ7887

RJ7887

    Member

  • Topic Starter
  • Member
  • PipPip
  • 96 posts

Thank you so much for the info. I will go through these steps and get back to you shortly.

Just had this error pop up as well while trying to update my drivers from NVidia.

Thanks again.

*edit*

I couldn't upload the image with a word doc, so here is the verbiage from the error.

 

truekey.exe - Bad Image

 

C:\Program Files\Intel Security\True Key\Application\libcef.dll is either not designed to run on windows or it contains an error. Try installing the program again using the original installation media or contact your system administrator or the software vendor for support. Error status 0xc000012f.

 

 

Thank you


  • 0

#12
RJ7887

RJ7887

    Member

  • Topic Starter
  • Member
  • PipPip
  • 96 posts

FRST Log:

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-12-2016
Ran by angie (administrator) on OFFICEPC (21-12-2016 13:48:53)
Running from C:\Users\angie\Desktop
Loaded Profiles: angie & MSSQL$PSK2013 (Available Profiles: angie & MSSQL$PSK2013)
Platform: Windows 10 Home Version 1607 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicShellService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\SA3\CxUtilSvc.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security Suite\Engine\22.8.1.14\n360.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Rosetta Stone Ltd.) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McTkSchedulerService.exe
(Atheros) C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL11.PSK2013\MSSQL\Binn\sqlservr.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security Suite\Engine\22.8.1.14\n360.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.SmartMonitor.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\caudiofilteragent64.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Akamai Technologies, Inc.) C:\Users\angie\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\angie\AppData\Local\Akamai\netsession_win.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe
(Dell Inc.) C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PrivacyIconClient.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVault.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell Backup and Recovery\Components\DBRUpdate\DBRUpd.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell Backup and Recovery\Toaster.exe
() C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBRCrawler.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
 
==================== Registry (Whitelisted) ====================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [883840 2012-03-28] (Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SA3\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176952 2016-07-05] (Apple Inc.)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe [133440 2012-07-19] (Intel Corporation)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [285240 2012-09-01] (Intel Corporation)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [67384 2016-07-05] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-08-06] (Apple Inc.)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [143360 2012-09-06] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKU\S-1-5-21-2363693564-2664365946-1726940214-1002\...\Run: [Akamai NetSession Interface] => C:\Users\angie\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
HKU\S-1-5-21-2363693564-2664365946-1726940214-1002\...\RunOnce: [FlashPlayerUpdate] => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashUtil32_23_0_0_207_Plugin.exe [1224896 2016-11-17] (Adobe Systems Incorporated)
HKU\S-1-5-80-500879465-1970453601-637845946-1438361160-1539855291\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2016-07-16] (Microsoft Corporation)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => No File
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
ShellIconOverlayIdentifiers: [  OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Security Suite\Engine64\22.8.1.14\buShell.dll [2016-11-11] (Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Security Suite\Engine64\22.8.1.14\buShell.dll [2016-11-11] (Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Security Suite\Engine64\22.8.1.14\buShell.dll [2016-11-11] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\angie\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\amd64\FileSyncShell64.dll [2016-12-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\angie\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\amd64\FileSyncShell64.dll [2016-12-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\angie\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\amd64\FileSyncShell64.dll [2016-12-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\angie\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\FileSyncShell.dll [2016-12-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\angie\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\FileSyncShell.dll [2016-12-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\angie\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\FileSyncShell.dll [2016-12-09] (Microsoft Corporation)
Startup: C:\Users\angie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Send to OneNote.lnk [2015-01-06]
ShortcutTarget: Send to OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe (Microsoft Corporation)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 10.0.1.1
Tcpip\..\Interfaces\{008e5fdc-6023-4076-84ad-8fcbee3b8662}: [DhcpNameServer] 10.0.1.1
Tcpip\..\Interfaces\{43daf37a-d2ff-44d6-8437-febfa4ac94f5}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{bcbfec0f-4b55-430a-9462-4b7994e980d5}: [DhcpNameServer] 10.0.1.1
 
Internet Explorer:
==================
HKU\S-1-5-21-2363693564-2664365946-1726940214-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://xfinity.comcast.net/?cid=mtmh08242013
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-03-18] (Microsoft Corporation)
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security Suite\Engine64\22.8.1.14\coIEPlg.dll [2016-11-11] (Symantec Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-04-20] (Microsoft Corporation)
BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-12-09] ()
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security Suite\Engine\22.8.1.14\coIEPlg.dll [2016-11-11] (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Security Suite\Engine\21.7.0.11\IPS\IPSBHO.DLL => No File
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-12-21] (Oracle Corporation)
BHO-x32: Constant Guard Protection Suite -> {B84CDBE7-1B46-494B-A188-01D4C52DEB61} -> C:\ProgramData\White Sky, Inc\ID Vault\IEBHO1.13.521.2\NativeBHO.dll => No File
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-12-21] (Oracle Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security Suite\Engine64\22.8.1.14\coIEPlg.dll [2016-11-11] (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security Suite\Engine\22.8.1.14\coIEPlg.dll [2016-11-11] (Symantec Corporation)
Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-12-09] ()
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
 
FireFox:
========
FF ProfilePath: C:\Users\angie\AppData\Roaming\Mozilla\Firefox\Profiles\o356ea0v.default [2016-12-21]
FF Homepage: Mozilla\Firefox\Profiles\o356ea0v.default -> hxxp://xfinity.comcast.net/?cid=mtmh09022013
FF Extension: (XFINITY Constant Guard Protection Suite) - C:\Users\angie\AppData\Roaming\Mozilla\Firefox\Profiles\o356ea0v.default\Extensions\[email protected] [2013-11-22] [not signed]
FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.2.15\coFFAddon
FF Extension: (Norton Security Toolbar) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.2.15\coFFAddon [2016-12-07]
FF HKLM-x32\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.2.15\coFFAddon
FF HKLM-x32\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\McAfee\MSK => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll [2016-11-17] ()
FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\mcafee\msc\npMcSnFFPl64.dll [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_23_0_0_207.dll [2016-11-17] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2016-10-06] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-12-21] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-12-21] (Oracle Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\msc\npMcSnFFPl.dll [No File]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2013-08-11] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-11] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-11] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
 
Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\angie\AppData\Local\Google\Chrome\User Data\Default [2016-12-21]
CHR Extension: (Norton Security Toolbar) - C:\Users\angie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2016-12-19]
CHR Extension: (Norton Identity Safe) - C:\Users\angie\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2015-04-24]
CHR Extension: (Chrome Web Store Payments) - C:\Users\angie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-08-02]
CHR Extension: (Chrome Media Router) - C:\Users\angie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-20]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security Suite\Engine\22.8.1.14\Exts\Chrome.crx [2016-11-19]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security Suite\Engine\22.8.1.14\Exts\Chrome.crx [2016-11-19]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
 
==================== Services (Whitelisted) ====================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S2 0020361482296451mcinstcleanup; C:\WINDOWS\TEMP\002036~1.EXE [922152 2016-03-02] (McAfee, Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.)
S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [File not signed]
R2 ClassicShellService; C:\Program Files\Classic Shell\ClassicShellService.exe [63488 2012-08-19] (IvoSoft) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2829552 2016-03-08] (Microsoft Corporation)
R2 CxUtilSvc; C:\Program Files\Conexant\SA3\CxUtilSvc.exe [109184 2011-10-11] (Conexant Systems, Inc.)
R2 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2572024 2016-03-10] (Dell Inc.)
R2 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [202488 2016-03-10] (Dell Inc.)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [337888 2016-05-03] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [166720 2012-07-19] (Intel Corporation)
R2 MSSQL$PSK2013; c:\Program Files\Microsoft SQL Server\MSSQL11.PSK2013\MSSQL\Binn\sqlservr.exe [191064 2012-02-11] (Microsoft Corporation)
R2 N360; C:\Program Files (x86)\Norton Security Suite\Engine\22.8.1.14\N360.exe [289080 2016-11-11] (Symantec Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-12-11] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-12-11] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [459832 2016-12-11] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-12-11] (NVIDIA Corporation)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] ()
R2 SftService; C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe [1915408 2013-10-09] (SoftThinks SAS)
S4 SQLAgent$PSK2013; c:\Program Files\Microsoft SQL Server\MSSQL11.PSK2013\MSSQL\Binn\SQLAGENT.EXE [597080 2012-02-11] (Microsoft Corporation)
R2 SupportAssistAgent; C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [31928 2016-04-22] (Dell Inc.)
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [995800 2016-11-30] (McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16248 2016-11-30] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [86864 2016-11-30] (McAfee, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe [77824 2012-06-19] (Atheros) [File not signed]
S2 IDVaultSvc; "C:\Program Files (x86)\Constant Guard Protection Suite\IDVaultSvc.exe" [X]
 
===================== Drivers (Whitelisted) ======================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R1 AntiLog32; C:\Windows\system32\drivers\AntiLog64.sys [49240 2013-08-20] (Zemana Ltd.)
R1 BHDrvx64; C:\Program Files (x86)\Norton Security Suite\NortonData\22.5.2.15\Definitions\BASHDefs\20161220.001\BHDrvx64.sys [1874136 2016-11-07] (Symantec Corporation)
R1 ccSet_N360; C:\WINDOWS\system32\drivers\N360x64\1608010.00E\ccSetx64.sys [174328 2016-06-01] (Symantec Corporation)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R3 DDDriver; C:\WINDOWS\system32\drivers\DDDriver64Dcsa.sys [23760 2015-01-30] (Dell Computer Corporation)
R3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [24240 2015-05-22] (Dell Computer Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [497368 2016-10-04] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [156888 2016-10-04] (Symantec Corporation)
S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [197264 2012-05-28] (McAfee, Inc.)
R1 IDSVia64; C:\Program Files (x86)\Norton Security Suite\NortonData\22.5.2.15\Definitions\IPSDefs\20161221.001\IDSvia64.sys [1038032 2016-12-16] (Symantec Corporation)
S3 keycrypt; C:\WINDOWS\System32\DRIVERS\KeyCrypt64.sys [25784 2013-03-07] (Zemana Ltd.)
S3 mfencbdc; C:\WINDOWS\system32\DRIVERS\mfencbdc.sys [337120 2013-02-18] (McAfee, Inc.)
S3 mfencrk; C:\WINDOWS\system32\DRIVERS\mfencrk.sys [95856 2013-02-18] (McAfee, Inc.)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_desktop_ref4i.inf_amd64_e9418cd4947d9b45\nvlddmkm.sys [14200880 2016-12-12] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-12-11] (NVIDIA Corporation)
U5 NvStUSB; C:\Windows\System32\Drivers\NvStUSB.sys [448288 2013-01-18] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [46016 2016-12-11] (NVIDIA Corporation)
S4 RsFx0200; C:\WINDOWS\System32\DRIVERS\RsFx0200.sys [334936 2012-02-11] (Microsoft Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [589824 2016-07-16] (Realtek                                            )
R1 SRTSP; C:\WINDOWS\System32\Drivers\N360x64\1608010.00E\SRTSP64.SYS [784624 2016-11-11] (Symantec Corporation)
R1 SRTSPX; C:\WINDOWS\system32\drivers\N360x64\1608010.00E\SRTSPX64.SYS [49400 2016-11-11] (Symantec Corporation)
R0 SymEFASI; C:\WINDOWS\System32\drivers\N360x64\1608010.00E\SYMEFASI64.SYS [1628888 2016-11-11] (Symantec Corporation)
S0 SymELAM; C:\WINDOWS\System32\drivers\N360x64\1608010.00E\SymELAM.sys [24192 2015-07-10] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [100592 2016-10-17] (Symantec Corporation)
R1 SymIRON; C:\WINDOWS\system32\drivers\N360x64\1608010.00E\Ironx64.SYS [289520 2016-11-11] (Symantec Corporation)
R1 SymNetS; C:\WINDOWS\System32\Drivers\N360x64\1608010.00E\SYMNETS.SYS [567512 2016-11-11] (Symantec Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2016-12-21 13:47 - 2016-12-21 13:47 - 00000000 ____D C:\Users\angie\Desktop\FRST-OlderVersion
2016-12-21 13:43 - 2016-12-21 13:44 - 00000000 ____D C:\Users\angie\AppData\Local\NVIDIA Corporation
2016-12-21 13:43 - 2016-12-21 13:43 - 00001491 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2016-12-21 12:49 - 2016-12-21 12:49 - 00003924 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-21 12:49 - 2016-12-11 19:03 - 01854400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2016-12-21 12:49 - 2016-12-11 19:03 - 01755072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2016-12-21 12:49 - 2016-12-11 19:03 - 01452480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2016-12-21 12:49 - 2016-12-11 19:03 - 01317312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2016-12-21 12:49 - 2016-12-11 19:03 - 00120256 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2016-12-21 12:49 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2016-12-21 12:49 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2016-12-21 12:49 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2016-12-21 12:49 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2016-12-21 12:49 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2016-12-21 12:49 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2016-12-21 12:48 - 2016-12-21 12:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-12-21 12:48 - 2016-12-21 12:48 - 00003988 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-21 12:48 - 2016-12-21 12:48 - 00003960 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-21 12:48 - 2016-12-21 12:48 - 00003898 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-21 12:48 - 2016-12-21 12:48 - 00003736 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-21 12:48 - 2016-12-21 12:48 - 00003694 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-21 12:47 - 2016-12-21 12:47 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-12-21 12:47 - 2016-12-11 10:23 - 00134712 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2016-12-21 12:47 - 2016-09-09 10:25 - 00269600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2016-12-21 12:47 - 2016-09-09 10:25 - 00261920 _____ C:\WINDOWS\system32\vulkan-1.dll
2016-12-21 12:47 - 2016-09-09 10:25 - 00110880 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2016-12-21 12:47 - 2016-09-09 10:24 - 00125216 _____ C:\WINDOWS\system32\vulkaninfo.exe
2016-12-21 12:46 - 2016-12-21 12:47 - 00000000 ____D C:\WINDOWS\LastGood
2016-12-21 12:46 - 2016-12-11 19:03 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2016-12-21 12:42 - 2016-12-11 19:03 - 00101824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2016-12-21 12:42 - 2016-12-11 19:03 - 00046016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2016-12-21 12:41 - 2016-12-11 19:03 - 40125496 _____ C:\WINDOWS\system32\nvcompiler.dll
2016-12-21 12:41 - 2016-12-11 19:03 - 35222976 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2016-12-21 12:41 - 2016-12-11 19:03 - 34710584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2016-12-21 12:41 - 2016-12-11 19:03 - 28201408 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2016-12-21 12:41 - 2016-12-11 19:03 - 10912744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2016-12-21 12:41 - 2016-12-11 19:03 - 10803880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2016-12-21 12:41 - 2016-12-11 19:03 - 10353960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2016-12-21 12:41 - 2016-12-11 19:03 - 09158616 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2016-12-21 12:41 - 2016-12-11 19:03 - 08913328 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2016-12-21 12:41 - 2016-12-11 19:03 - 08761560 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2016-12-21 12:41 - 2016-12-11 19:03 - 03474392 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2016-12-21 12:41 - 2016-12-11 19:03 - 02950200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2016-12-21 12:41 - 2016-12-11 19:03 - 02587704 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2016-12-21 12:41 - 2016-12-11 19:03 - 01953336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6437633.dll
2016-12-21 12:41 - 2016-12-11 19:03 - 01586744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6437633.dll
2016-12-21 12:41 - 2016-12-11 19:03 - 01038392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2016-12-21 12:41 - 2016-12-11 19:03 - 00974784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2016-12-21 12:41 - 2016-12-11 19:03 - 00942528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2016-12-21 12:41 - 2016-12-11 19:03 - 00894400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2016-12-21 12:41 - 2016-12-11 19:03 - 00683640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2016-12-21 12:41 - 2016-12-11 19:03 - 00572888 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2016-12-21 12:41 - 2016-12-11 19:03 - 00091584 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2016-12-21 12:41 - 2016-12-11 19:03 - 00046024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2016-12-21 12:41 - 2016-12-11 19:03 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2016-12-21 12:41 - 2016-12-11 19:03 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json
2016-12-21 12:40 - 2016-12-21 12:40 - 00000000 ____D C:\NVIDIA
2016-12-21 12:39 - 2016-12-21 12:39 - 393367376 _____ (NVIDIA Corporation) C:\Users\angie\Downloads\376.33-desktop-win10-64bit-international-whql.exe
2016-12-21 12:28 - 2016-12-21 12:28 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2016-12-21 12:28 - 2016-12-21 12:28 - 00000000 ____D C:\Users\angie\AppData\Roaming\Sun
2016-12-21 12:28 - 2016-12-21 12:28 - 00000000 ____D C:\Users\angie\AppData\LocalLow\Sun
2016-12-21 12:28 - 2016-12-21 12:28 - 00000000 ____D C:\ProgramData\Oracle
2016-12-21 12:28 - 2016-12-21 12:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-12-21 12:28 - 2016-12-21 12:28 - 00000000 ____D C:\Program Files (x86)\Java
2016-12-21 12:27 - 2016-12-21 12:27 - 00737344 _____ (Oracle Corporation) C:\Users\angie\Desktop\JavaSetup8u111.exe
2016-12-21 10:10 - 2016-12-21 10:10 - 00000000 ____D C:\WINDOWS\System32\Tasks\Norton 360
2016-12-20 12:18 - 2016-12-20 12:18 - 00088702 _____ C:\Users\angie\Desktop\DxDiag.txt
2016-12-20 12:15 - 2016-12-20 12:15 - 00013423 _____ C:\Users\angie\Desktop\System Idle Process.txt
2016-12-20 12:06 - 2016-12-20 12:06 - 02720928 _____ (Sysinternals - www.sysinternals.com) C:\Users\angie\Desktop\procexp.exe
2016-12-20 12:06 - 2016-12-20 12:06 - 00042168 _____ (Sysinternals - www.sysinternals.com) C:\WINDOWS\system32\Drivers\PROCEXP152.SYS
2016-12-20 12:02 - 2016-12-20 12:04 - 00116903 _____ C:\Users\angie\Desktop\OFFICEPC.txt
2016-12-20 12:01 - 2016-12-20 12:01 - 00000839 _____ C:\Users\Public\Desktop\Speccy.lnk
2016-12-20 12:01 - 2016-12-20 12:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2016-12-20 12:01 - 2016-12-20 12:01 - 00000000 ____D C:\Program Files\Speccy
2016-12-20 12:00 - 2016-12-20 12:01 - 06293184 _____ (Piriform Ltd) C:\Users\angie\Desktop\spsetup130.exe
2016-12-20 11:56 - 2016-12-20 11:58 - 00019120 _____ C:\VEW.txt
2016-12-20 11:54 - 2016-12-20 11:54 - 00061440 _____ ( ) C:\Users\angie\Desktop\VEW.exe
2016-12-20 11:53 - 2016-12-20 11:53 - 00000000 ___HD C:\OneDriveTemp
2016-12-20 11:49 - 2016-12-20 12:17 - 00010937 _____ C:\junk.txt
2016-12-19 11:12 - 2016-12-19 11:12 - 00039189 _____ C:\Users\angie\Desktop\Addition.txt
2016-12-19 11:11 - 2016-12-21 13:49 - 00025487 _____ C:\Users\angie\Desktop\FRST.txt
2016-12-19 11:11 - 2016-12-21 13:48 - 00000000 ____D C:\FRST
2016-12-19 11:09 - 2016-12-21 13:47 - 02420736 _____ (Farbar) C:\Users\angie\Desktop\FRST64.exe
2016-12-17 09:36 - 2016-12-17 09:36 - 00000000 ___RD C:\Users\angie\AppData\Roaming\Brother
2016-12-17 09:36 - 2016-12-17 09:36 - 00000000 ____D C:\Users\angie\AppData\LocalLow\Brother
2016-12-16 15:53 - 2016-12-16 15:53 - 00003446 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1d1eb6c902b2ce7
2016-12-16 15:53 - 2016-12-16 15:53 - 00003322 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1d1eb6c8ffb7da9
2016-12-16 09:52 - 2016-12-09 02:42 - 01637728 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-12-16 09:52 - 2016-12-09 02:42 - 00137568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-12-16 09:52 - 2016-12-09 02:34 - 01051112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-12-16 09:52 - 2016-12-09 02:34 - 00894096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-12-16 09:52 - 2016-12-09 02:33 - 01354320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-12-16 09:52 - 2016-12-09 02:33 - 01173496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-12-16 09:52 - 2016-12-09 02:32 - 07816032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-12-16 09:52 - 2016-12-09 02:30 - 00377184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-12-16 09:52 - 2016-12-09 02:29 - 02681200 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-12-16 09:52 - 2016-12-09 02:28 - 00764392 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-12-16 09:52 - 2016-12-09 02:27 - 00172528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-12-16 09:52 - 2016-12-09 02:20 - 02677544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-12-16 09:52 - 2016-12-09 02:20 - 02189664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-12-16 09:52 - 2016-12-09 02:20 - 01738560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-12-16 09:52 - 2016-12-09 02:20 - 00658784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-12-16 09:52 - 2016-12-09 02:20 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-12-16 09:52 - 2016-12-09 02:19 - 01293152 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-12-16 09:52 - 2016-12-09 02:19 - 00168424 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2016-12-16 09:52 - 2016-12-09 02:18 - 02913144 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-12-16 09:52 - 2016-12-09 02:18 - 01267512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-12-16 09:52 - 2016-12-09 02:18 - 01100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2016-12-16 09:52 - 2016-12-09 02:18 - 00989024 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2016-12-16 09:52 - 2016-12-09 02:18 - 00947552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
2016-12-16 09:52 - 2016-12-09 02:18 - 00811872 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2016-12-16 09:52 - 2016-12-09 02:18 - 00624048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-12-16 09:52 - 2016-12-09 02:15 - 08168000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-12-16 09:52 - 2016-12-09 02:15 - 01988560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-12-16 09:52 - 2016-12-09 02:14 - 01274712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-12-16 09:52 - 2016-12-09 02:14 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-12-16 09:52 - 2016-12-09 02:11 - 02048496 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-12-16 09:52 - 2016-12-09 02:10 - 01572768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2016-12-16 09:52 - 2016-12-09 02:10 - 01461200 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-12-16 09:52 - 2016-12-09 02:09 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2016-12-16 09:52 - 2016-12-09 02:01 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2016-12-16 09:52 - 2016-12-09 02:01 - 01503544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-12-16 09:52 - 2016-12-09 02:01 - 00861024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-12-16 09:52 - 2016-12-09 02:00 - 00106896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
2016-12-16 09:52 - 2016-12-09 01:59 - 02166752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-12-16 09:52 - 2016-12-09 01:59 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2016-12-16 09:52 - 2016-12-09 01:57 - 06668040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-12-16 09:52 - 2016-12-09 01:57 - 01852720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-12-16 09:52 - 2016-12-09 01:56 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-12-16 09:52 - 2016-12-09 01:52 - 01435896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-12-16 09:52 - 2016-12-09 01:52 - 01415752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2016-12-16 09:52 - 2016-12-09 01:51 - 00117240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2016-12-16 09:52 - 2016-12-09 01:47 - 22563328 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-12-16 09:52 - 2016-12-09 01:45 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-12-16 09:52 - 2016-12-09 01:45 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2016-12-16 09:52 - 2016-12-09 01:42 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-12-16 09:52 - 2016-12-09 01:41 - 00380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2016-12-16 09:52 - 2016-12-09 01:41 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2016-12-16 09:52 - 2016-12-09 01:40 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2016-12-16 09:52 - 2016-12-09 01:38 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-12-16 09:52 - 2016-12-09 01:37 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-12-16 09:52 - 2016-12-09 01:37 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-12-16 09:52 - 2016-12-09 01:37 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-12-16 09:52 - 2016-12-09 01:36 - 06285312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-12-16 09:52 - 2016-12-09 01:36 - 03059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-12-16 09:52 - 2016-12-09 01:36 - 00425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2016-12-16 09:52 - 2016-12-09 01:36 - 00410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-12-16 09:52 - 2016-12-09 01:36 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2016-12-16 09:52 - 2016-12-09 01:34 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-12-16 09:52 - 2016-12-09 01:34 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2016-12-16 09:52 - 2016-12-09 01:33 - 03777536 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-12-16 09:52 - 2016-12-09 01:33 - 01589760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2016-12-16 09:52 - 2016-12-09 01:32 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2016-12-16 09:52 - 2016-12-09 01:31 - 03689984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-12-16 09:52 - 2016-12-09 01:31 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2016-12-16 09:52 - 2016-12-09 01:31 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-12-16 09:52 - 2016-12-09 01:30 - 23677952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-12-16 09:52 - 2016-12-09 01:30 - 19413504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-12-16 09:52 - 2016-12-09 01:30 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-12-16 09:52 - 2016-12-09 01:29 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-12-16 09:52 - 2016-12-09 01:28 - 03306496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-12-16 09:52 - 2016-12-09 01:28 - 01004544 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-12-16 09:52 - 2016-12-09 01:27 - 19417088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-12-16 09:52 - 2016-12-09 01:27 - 13084160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-12-16 09:52 - 2016-12-09 01:27 - 05114368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-12-16 09:52 - 2016-12-09 01:27 - 00981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-12-16 09:52 - 2016-12-09 01:26 - 08129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-12-16 09:52 - 2016-12-09 01:26 - 01692672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-12-16 09:52 - 2016-12-09 01:25 - 00376832 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2016-12-16 09:52 - 2016-12-09 01:24 - 02275840 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-12-16 09:52 - 2016-12-09 01:23 - 12177920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-12-16 09:52 - 2016-12-09 01:22 - 02820096 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-12-16 09:52 - 2016-12-09 01:22 - 02688512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-12-16 09:52 - 2016-12-09 01:22 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-12-16 09:52 - 2016-12-09 01:21 - 04746752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-12-16 09:52 - 2016-12-09 01:21 - 03616768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-12-16 09:52 - 2016-12-09 01:21 - 01512960 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-12-16 09:52 - 2016-12-09 01:21 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-12-16 09:52 - 2016-12-09 01:20 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-12-16 09:52 - 2016-12-09 01:20 - 03198464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2016-12-16 09:52 - 2016-12-09 01:20 - 00730624 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-12-16 09:52 - 2016-12-09 01:20 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2016-12-16 09:52 - 2016-12-09 01:20 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2016-12-16 09:52 - 2016-12-09 01:19 - 01121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-12-16 09:52 - 2016-12-09 01:19 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-12-16 09:52 - 2016-12-09 01:19 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-12-16 09:52 - 2016-12-09 01:19 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2016-12-16 09:52 - 2016-12-09 01:19 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2016-12-16 09:52 - 2016-12-09 01:18 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-12-16 09:52 - 2016-12-09 01:18 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2016-12-16 09:52 - 2016-12-09 01:18 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2016-12-16 09:52 - 2016-12-09 01:17 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2016-12-16 09:52 - 2016-12-09 01:17 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2016-12-16 09:52 - 2016-12-09 01:16 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2016-12-16 09:52 - 2016-12-09 01:16 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-12-16 09:52 - 2016-12-09 01:16 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2016-12-16 09:52 - 2016-12-09 01:15 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2016-12-16 09:52 - 2016-12-09 01:15 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll
2016-12-16 09:52 - 2016-12-09 01:15 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2016-12-16 09:52 - 2016-12-09 00:54 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2016-12-16 09:52 - 2016-11-02 02:28 - 00807424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2016-12-16 09:52 - 2016-11-02 02:25 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-12-16 09:52 - 2016-09-15 08:36 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-12-09 13:36 - 2016-12-09 13:36 - 00003276 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2016-12-09 06:13 - 2016-11-11 02:22 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-12-09 06:13 - 2016-11-11 02:15 - 00198856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2016-12-09 06:13 - 2016-11-11 02:15 - 00101216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2016-12-09 06:13 - 2016-11-11 02:14 - 02482280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2016-12-09 06:13 - 2016-11-11 02:14 - 02186896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-12-09 06:13 - 2016-11-11 02:14 - 00603488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-12-09 06:13 - 2016-11-11 02:13 - 02213760 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-12-09 06:13 - 2016-11-11 02:13 - 01886344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-12-09 06:13 - 2016-11-11 02:13 - 00352096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2016-12-09 06:13 - 2016-11-11 02:12 - 00128352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-12-09 06:13 - 2016-11-11 02:08 - 00142176 _____ (Microsoft Corporation) C:\WINDOWS\system32\migisol.dll
2016-12-09 06:13 - 2016-11-11 02:03 - 01069720 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2016-12-09 06:13 - 2016-11-11 02:03 - 00328008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-12-09 06:13 - 2016-11-11 02:03 - 00266544 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2016-12-09 06:13 - 2016-11-11 02:02 - 02828376 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-12-09 06:13 - 2016-11-11 02:02 - 00360040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-12-09 06:13 - 2016-11-11 02:01 - 07219672 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-12-09 06:13 - 2016-11-11 02:01 - 01859264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-12-09 06:13 - 2016-11-11 02:01 - 00637400 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-12-09 06:13 - 2016-11-11 02:00 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-12-09 06:13 - 2016-11-11 02:00 - 00219488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-12-09 06:13 - 2016-11-11 01:57 - 22224480 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-12-09 06:13 - 2016-11-11 01:57 - 04130432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-12-09 06:13 - 2016-11-11 01:57 - 01473048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-12-09 06:13 - 2016-11-11 01:56 - 01062480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-12-09 06:13 - 2016-11-11 01:56 - 00534096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2016-12-09 06:13 - 2016-11-11 01:56 - 00424616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2016-12-09 06:13 - 2016-11-11 01:56 - 00418952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2016-12-09 06:13 - 2016-11-11 01:56 - 00187520 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudStorageWizard.exe
2016-12-09 06:13 - 2016-11-11 01:56 - 00163752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTWorkQ.dll
2016-12-09 06:13 - 2016-11-11 01:56 - 00126568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfaudiocnv.dll
2016-12-09 06:13 - 2016-11-11 01:55 - 01600624 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-12-09 06:13 - 2016-11-11 01:55 - 00882680 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-12-09 06:13 - 2016-11-11 01:55 - 00743224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-12-09 06:13 - 2016-11-11 01:54 - 01418312 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-12-09 06:13 - 2016-11-11 01:51 - 00454592 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2016-12-09 06:13 - 2016-11-11 01:31 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-12-09 06:13 - 2016-11-11 01:29 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-12-09 06:13 - 2016-11-11 01:27 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpremove.exe
2016-12-09 06:13 - 2016-11-11 01:26 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2016-12-09 06:13 - 2016-11-11 01:26 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2016-12-09 06:13 - 2016-11-11 01:26 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReportingCSP.dll
2016-12-09 06:13 - 2016-11-11 01:26 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\modem.sys
2016-12-09 06:13 - 2016-11-11 01:26 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgentc.exe
2016-12-09 06:13 - 2016-11-11 01:25 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll
2016-12-09 06:13 - 2016-11-11 01:25 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-12-09 06:13 - 2016-11-11 01:25 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2016-12-09 06:13 - 2016-11-11 01:25 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2016-12-09 06:13 - 2016-11-11 01:25 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-12-09 06:13 - 2016-11-11 01:24 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-12-09 06:13 - 2016-11-11 01:24 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-12-09 06:13 - 2016-11-11 01:24 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-12-09 06:13 - 2016-11-11 01:24 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-12-09 06:13 - 2016-11-11 01:24 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2016-12-09 06:13 - 2016-11-11 01:24 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2016-12-09 06:13 - 2016-11-11 01:24 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-12-09 06:13 - 2016-11-11 01:23 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2016-12-09 06:13 - 2016-11-11 01:23 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-12-09 06:13 - 2016-11-11 01:23 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\EAMProgressHandler.dll
2016-12-09 06:13 - 2016-11-11 01:22 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-12-09 06:13 - 2016-11-11 01:22 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\EDPCleanup.exe
2016-12-09 06:13 - 2016-11-11 01:21 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-12-09 06:13 - 2016-11-11 01:21 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-12-09 06:13 - 2016-11-11 01:21 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-12-09 06:13 - 2016-11-11 01:20 - 00641024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2016-12-09 06:13 - 2016-11-11 01:20 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2016-12-09 06:13 - 2016-11-11 01:20 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-12-09 06:13 - 2016-11-11 01:20 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2016-12-09 06:13 - 2016-11-11 01:20 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2016-12-09 06:13 - 2016-11-11 01:20 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-12-09 06:13 - 2016-11-11 01:20 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-12-09 06:13 - 2016-11-11 01:19 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-12-09 06:13 - 2016-11-11 01:19 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2016-12-09 06:13 - 2016-11-11 01:19 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2016-12-09 06:13 - 2016-11-11 01:19 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2016-12-09 06:13 - 2016-11-11 01:19 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-12-09 06:13 - 2016-11-11 01:19 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2016-12-09 06:13 - 2016-11-11 01:19 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2016-12-09 06:13 - 2016-11-11 01:18 - 17188352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-12-09 06:13 - 2016-11-11 01:18 - 02084352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2016-12-09 06:13 - 2016-11-11 01:18 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2016-12-09 06:13 - 2016-11-11 01:17 - 01220096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2016-12-09 06:13 - 2016-11-11 01:17 - 01002496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-12-09 06:13 - 2016-11-11 01:17 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2016-12-09 06:13 - 2016-11-11 01:16 - 01477632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2016-12-09 06:13 - 2016-11-11 01:16 - 00560128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2016-12-09 06:13 - 2016-11-11 01:16 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-12-09 06:13 - 2016-11-11 01:16 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2016-12-09 06:13 - 2016-11-11 01:15 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-12-09 06:13 - 2016-11-11 01:15 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
2016-12-09 06:13 - 2016-11-11 01:14 - 02104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-12-09 06:13 - 2016-11-11 01:14 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-12-09 06:13 - 2016-11-11 01:14 - 00615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2016-12-09 06:13 - 2016-11-11 01:14 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppnp.dll
2016-12-09 06:13 - 2016-11-11 01:13 - 00396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-12-09 06:13 - 2016-11-11 01:13 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcuiu.dll
2016-12-09 06:13 - 2016-11-11 01:12 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll
2016-12-09 06:13 - 2016-11-11 01:11 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-12-09 06:13 - 2016-11-11 01:11 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-12-09 06:13 - 2016-11-11 01:11 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-12-09 06:13 - 2016-11-11 01:09 - 01366016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-12-09 06:13 - 2016-11-11 01:09 - 00164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2016-12-09 06:13 - 2016-11-11 01:08 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-12-09 06:13 - 2016-11-11 01:07 - 02510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-12-09 06:13 - 2016-11-11 01:07 - 02009600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-12-09 06:13 - 2016-11-11 01:07 - 01691136 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2016-12-09 06:13 - 2016-11-11 01:07 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2016-12-09 06:13 - 2016-11-11 01:07 - 00347648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2016-12-09 06:13 - 2016-11-11 01:06 - 00960000 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-12-09 06:13 - 2016-11-11 01:06 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-12-09 06:13 - 2016-11-11 01:05 - 04136448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-12-09 06:13 - 2016-11-11 01:05 - 02852864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-12-09 06:13 - 2016-11-11 01:05 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-12-09 06:13 - 2016-11-11 01:04 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2016-12-09 06:13 - 2016-11-11 01:04 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-12-09 06:13 - 2016-11-11 01:04 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-12-09 06:13 - 2016-11-11 01:04 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-12-09 06:13 - 2016-11-11 01:04 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2016-12-09 06:13 - 2016-11-11 01:04 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-12-09 06:13 - 2016-11-11 01:03 - 04708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-12-09 06:13 - 2016-11-11 01:03 - 02287616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-12-09 06:13 - 2016-11-11 01:03 - 00842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-12-09 06:13 - 2016-11-11 01:03 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-12-09 06:13 - 2016-11-11 01:03 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-12-09 06:13 - 2016-11-11 01:03 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2016-12-09 06:13 - 2016-11-11 01:02 - 03542016 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-12-09 06:13 - 2016-11-11 01:02 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-12-09 06:13 - 2016-11-11 00:39 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-12-09 06:13 - 2016-11-11 00:00 - 01706488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-12-09 06:13 - 2016-11-10 23:59 - 01572768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-12-09 06:13 - 2016-11-10 23:54 - 00122208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\migisol.dll
2016-12-09 06:13 - 2016-11-10 23:49 - 00869848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2016-12-09 06:13 - 2016-11-10 23:49 - 00263472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2016-12-09 06:13 - 2016-11-10 23:49 - 00248480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2016-12-09 06:13 - 2016-11-10 23:48 - 02277248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-12-09 06:13 - 2016-11-10 23:47 - 05722832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-12-09 06:13 - 2016-11-10 23:47 - 00527880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2016-12-09 06:13 - 2016-11-10 23:42 - 03892864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-12-09 06:13 - 2016-11-10 23:42 - 01123912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-12-09 06:13 - 2016-11-10 23:42 - 00952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-12-09 06:13 - 2016-11-10 23:42 - 00382784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2016-12-09 06:13 - 2016-11-10 23:42 - 00374448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2016-12-09 06:13 - 2016-11-10 23:42 - 00152416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTWorkQ.dll
2016-12-09 06:13 - 2016-11-10 23:42 - 00091936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfaudiocnv.dll
2016-12-09 06:13 - 2016-11-10 23:41 - 04311736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-12-09 06:13 - 2016-11-10 23:41 - 00157536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudStorageWizard.exe
2016-12-09 06:13 - 2016-11-10 23:38 - 01263856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-12-09 06:13 - 2016-11-10 23:28 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2016-12-09 06:13 - 2016-11-10 23:27 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-12-09 06:13 - 2016-11-10 23:25 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-12-09 06:13 - 2016-11-10 23:25 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-12-09 06:13 - 2016-11-10 23:24 - 00519168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2016-12-09 06:13 - 2016-11-10 23:24 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRHelper.dll
2016-12-09 06:13 - 2016-11-10 23:24 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2016-12-09 06:13 - 2016-11-10 23:24 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-12-09 06:13 - 2016-11-10 23:23 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2016-12-09 06:13 - 2016-11-10 23:23 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2016-12-09 06:13 - 2016-11-10 23:22 - 00505856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-12-09 06:13 - 2016-11-10 23:22 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
2016-12-09 06:13 - 2016-11-10 23:21 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-12-09 06:13 - 2016-11-10 23:21 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2016-12-09 06:13 - 2016-11-10 23:19 - 13868544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-12-09 06:13 - 2016-11-10 23:19 - 01755136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceFlows.DataModel.dll
2016-12-09 06:13 - 2016-11-10 23:19 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-12-09 06:13 - 2016-11-10 23:19 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2016-12-09 06:13 - 2016-11-10 23:19 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2016-12-09 06:13 - 2016-11-10 23:19 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2016-12-09 06:13 - 2016-11-10 23:18 - 02333184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2016-12-09 06:13 - 2016-11-10 23:18 - 01336320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2016-12-09 06:13 - 2016-11-10 23:18 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2016-12-09 06:13 - 2016-11-10 23:18 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2016-12-09 06:13 - 2016-11-10 23:17 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2016-12-09 06:13 - 2016-11-10 23:17 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2016-12-09 06:13 - 2016-11-10 23:15 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-12-09 06:13 - 2016-11-10 23:15 - 01357824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-12-09 06:13 - 2016-11-10 23:15 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-12-09 06:13 - 2016-11-10 23:15 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2016-12-09 06:13 - 2016-11-10 23:15 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2016-12-09 06:13 - 2016-11-10 23:14 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2016-12-09 06:13 - 2016-11-10 23:13 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-12-09 06:13 - 2016-11-10 23:10 - 06109184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-12-09 06:13 - 2016-11-10 23:10 - 00746496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcprx.dll
2016-12-09 06:13 - 2016-11-10 23:09 - 05380608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-12-09 06:13 - 2016-11-10 23:09 - 00545280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2016-12-09 06:13 - 2016-11-10 23:08 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xolehlp.dll
2016-12-09 06:13 - 2016-11-10 23:06 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2016-12-09 06:13 - 2016-11-10 23:06 - 02362880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2016-12-09 06:13 - 2016-11-10 23:06 - 02109952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2016-12-09 06:13 - 2016-11-10 23:06 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-12-09 06:13 - 2016-11-10 23:06 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2016-12-09 06:13 - 2016-11-10 23:06 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxclu.dll
2016-12-09 06:13 - 2016-11-10 23:05 - 04423680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-12-09 06:13 - 2016-11-10 23:05 - 03370496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2016-12-09 06:13 - 2016-11-10 23:04 - 02682880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll
2016-12-09 06:13 - 2016-11-10 23:04 - 01992704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-12-09 06:13 - 2016-11-10 23:04 - 01595392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-12-09 06:13 - 2016-11-10 23:04 - 00912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2016-12-09 06:13 - 2016-11-10 23:04 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-12-09 06:13 - 2016-11-10 23:04 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2016-12-09 06:13 - 2016-11-10 23:03 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2016-12-09 06:13 - 2016-11-10 23:03 - 02256384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-12-09 06:13 - 2016-11-10 23:03 - 01576448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2016-12-09 06:13 - 2016-11-10 23:03 - 01556480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-12-09 06:13 - 2016-11-10 23:03 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-12-09 06:13 - 2016-11-10 23:03 - 00565248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2016-12-09 06:13 - 2016-11-10 23:02 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-12-09 06:12 - 2016-11-11 02:00 - 00223584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-12-09 06:12 - 2016-11-11 01:59 - 00433504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-12-09 06:12 - 2016-11-11 01:56 - 04673304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-12-09 06:12 - 2016-11-11 01:28 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-12-09 06:12 - 2016-11-11 01:28 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CbtBackgroundManagerPolicy.dll
2016-12-09 06:12 - 2016-11-11 01:27 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-12-09 06:12 - 2016-11-11 01:25 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-12-09 06:12 - 2016-11-11 01:25 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-12-09 06:12 - 2016-11-11 01:24 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2016-12-09 06:12 - 2016-11-11 01:23 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-12-09 06:12 - 2016-11-11 01:22 - 00489472 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-12-09 06:12 - 2016-11-11 01:22 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-12-09 06:12 - 2016-11-11 01:21 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-12-09 06:12 - 2016-11-11 01:21 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2016-12-09 06:12 - 2016-11-11 01:21 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-12-09 06:12 - 2016-11-11 01:20 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2016-12-09 06:12 - 2016-11-11 01:20 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2016-12-09 06:12 - 2016-11-11 01:20 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-12-09 06:12 - 2016-11-11 01:20 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2016-12-09 06:12 - 2016-11-11 01:20 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-12-09 06:12 - 2016-11-11 01:19 - 09131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-12-09 06:12 - 2016-11-11 01:19 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-12-09 06:12 - 2016-11-11 01:19 - 00388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2016-12-09 06:12 - 2016-11-11 01:16 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-12-09 06:12 - 2016-11-11 01:16 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2016-12-09 06:12 - 2016-11-11 01:15 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-12-09 06:12 - 2016-11-11 01:14 - 07654400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-12-09 06:12 - 2016-11-11 01:13 - 07812096 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-12-09 06:12 - 2016-11-11 01:11 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpoext.dll
2016-12-09 06:12 - 2016-11-11 01:07 - 03441152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2016-12-09 06:12 - 2016-11-11 01:07 - 02953216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2016-12-09 06:12 - 2016-11-11 01:07 - 01060864 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-12-09 06:12 - 2016-11-11 01:06 - 03400192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2016-12-09 06:12 - 2016-11-11 01:05 - 01779712 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-12-09 06:12 - 2016-11-11 01:05 - 01031680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-12-09 06:12 - 2016-11-11 01:04 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-12-09 06:12 - 2016-11-11 01:04 - 02611200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-12-09 06:12 - 2016-11-11 01:04 - 02317312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-12-09 06:12 - 2016-11-11 01:04 - 01709056 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-12-09 06:12 - 2016-11-11 01:04 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2016-12-09 06:12 - 2016-11-11 01:03 - 02669056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-12-09 06:12 - 2016-11-11 01:03 - 00905216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-12-09 06:12 - 2016-11-11 01:03 - 00632320 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2016-12-09 06:12 - 2016-11-11 01:02 - 00936448 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-12-09 06:12 - 2016-11-11 00:01 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2016-12-09 06:12 - 2016-11-11 00:01 - 01969912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2016-12-09 06:12 - 2016-11-11 00:01 - 00167848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2016-12-09 06:12 - 2016-11-10 23:47 - 01430720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2016-12-09 06:12 - 2016-11-10 23:42 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-12-09 06:12 - 2016-11-10 23:27 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetCfgNotifyObjectHost.exe
2016-12-09 06:12 - 2016-11-10 23:26 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgentc.exe
2016-12-09 06:12 - 2016-11-10 23:21 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-12-09 06:12 - 2016-11-10 23:20 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-12-09 06:12 - 2016-11-10 23:20 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-12-09 06:12 - 2016-11-10 23:20 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2016-12-09 06:12 - 2016-11-10 23:19 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2016-12-09 06:12 - 2016-11-10 23:19 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
2016-12-09 06:12 - 2016-11-10 23:18 - 01196544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2016-12-09 06:12 - 2016-11-10 23:18 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscinterop.dll
2016-12-09 06:12 - 2016-11-10 23:16 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-12-09 06:12 - 2016-11-10 23:12 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcuiu.dll
2016-12-09 06:12 - 2016-11-10 23:03 - 00772608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2016-12-05 20:05 - 2016-12-05 20:05 - 00154014 _____ C:\Users\angie\Downloads\161205-53536.pdf
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2016-12-21 13:49 - 2016-11-17 08:11 - 00000000 ____D C:\Users\angie\AppData\LocalLow\Mozilla
2016-12-21 13:44 - 2016-07-16 03:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-12-21 13:44 - 2016-07-16 03:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-12-21 13:44 - 2013-08-09 14:26 - 00000000 ____D C:\Users\angie\AppData\Local\Packages
2016-12-21 13:43 - 2016-09-28 09:24 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-12-21 13:43 - 2016-09-28 09:24 - 00000000 ____D C:\ProgramData\NVIDIA
2016-12-21 13:42 - 2016-09-28 09:22 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-12-21 12:50 - 2016-07-16 03:45 - 00000000 ____D C:\WINDOWS\INF
2016-12-21 12:49 - 2016-09-28 09:24 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-12-21 12:48 - 2016-09-28 09:24 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-12-21 12:48 - 2013-06-12 17:53 - 00000000 ____D C:\Temp
2016-12-21 12:44 - 2016-01-13 05:50 - 00000000 ____D C:\ProgramData\Package Cache
2016-12-20 21:00 - 2016-07-19 12:04 - 00000000 ____D C:\Program Files\TrueKey
2016-12-20 12:14 - 2016-07-16 03:47 - 00000000 ____D C:\WINDOWS\rescache
2016-12-20 12:01 - 2013-08-10 15:19 - 00000000 ____D C:\ProgramData\SoftThinks
2016-12-20 12:01 - 2013-06-12 17:52 - 00000000 ____D C:\Program Files (x86)\Dell Backup and Recovery
2016-12-20 11:53 - 2014-10-21 13:41 - 00000000 __RDO C:\Users\angie\OneDrive
2016-12-20 11:52 - 2014-10-21 13:39 - 00000000 __SHD C:\Users\angie\IntelGraphicsProfiles
2016-12-20 11:51 - 2016-09-28 09:42 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-12-20 11:51 - 2016-07-15 22:04 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2016-12-20 11:16 - 2016-07-16 03:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-12-20 10:10 - 2016-09-28 09:27 - 00000000 ____D C:\Users\MSSQL$PSK2013
2016-12-20 10:09 - 2015-08-16 13:19 - 00000000 ____D C:\Users\angie\AppData\Local\CrashDumps
2016-12-20 10:09 - 2013-08-20 05:37 - 00000000 ____D C:\Program Files (x86)\Constant Guard Protection Suite
2016-12-20 10:01 - 2016-10-21 09:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-12-20 10:01 - 2013-08-09 17:47 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-12-20 09:02 - 2016-07-19 12:14 - 00001241 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\True Key.lnk
2016-12-19 11:07 - 2016-07-19 12:14 - 00000000 ____D C:\Users\angie\AppData\Local\tkdata
2016-12-19 11:06 - 2014-03-07 09:01 - 00000000 ____D C:\Users\angie\AppData\Local\Google
2016-12-19 08:39 - 2016-07-16 03:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-12-17 19:06 - 2016-09-28 09:22 - 00241880 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-12-17 19:04 - 2016-07-16 03:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-12-16 09:57 - 2013-08-14 02:56 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-12-16 09:55 - 2013-08-10 08:10 - 135632432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-12-16 09:31 - 2014-03-07 09:02 - 00002274 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-12-16 09:31 - 2014-03-07 09:02 - 00002262 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-12-14 09:54 - 2016-07-15 22:04 - 00008192 _____ C:\WINDOWS\system32\config\ELAM
2016-12-13 10:31 - 2016-09-27 10:10 - 00000000 ____D C:\Program Files (x86)\Park Sidekick 2016
2016-12-13 09:32 - 2015-01-06 12:56 - 00000000 ____D C:\Users\angie\Desktop\Silver Dollar Invest docs
2016-12-13 07:57 - 2016-07-19 12:12 - 00000000 ____D C:\Program Files (x86)\McAfee
2016-12-11 19:03 - 2016-09-12 20:10 - 01595456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2016-12-11 19:03 - 2016-09-12 20:10 - 00212936 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2016-12-11 19:03 - 2016-09-12 20:04 - 03934504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2016-12-11 19:03 - 2016-08-02 22:49 - 00042286 _____ C:\WINDOWS\system32\nvinfo.pb
2016-12-11 15:56 - 2016-07-16 03:49 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-12-11 15:56 - 2016-07-16 03:49 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-12-11 10:47 - 2016-09-28 09:24 - 06384576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2016-12-11 10:47 - 2016-09-28 09:24 - 02475968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2016-12-11 10:47 - 2016-09-28 09:24 - 01764408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2016-12-11 10:47 - 2016-09-28 09:24 - 00548408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2016-12-11 10:47 - 2016-09-28 09:24 - 00392128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2016-12-11 10:47 - 2016-09-28 09:24 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2016-12-11 10:47 - 2016-09-28 09:24 - 00071224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2016-12-10 08:30 - 2016-09-28 09:27 - 00000000 ____D C:\Users\angie
2016-12-10 08:30 - 2013-08-10 14:21 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-12-09 17:44 - 2016-05-14 22:53 - 01222838 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-12-09 17:38 - 2016-07-16 03:47 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-12-09 17:36 - 2016-07-16 03:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-12-09 17:36 - 2016-07-16 03:47 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2016-12-09 17:36 - 2016-07-16 03:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-12-09 17:36 - 2016-07-16 03:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-12-09 17:36 - 2016-07-16 03:47 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-12-09 17:36 - 2016-07-15 22:04 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-12-09 17:36 - 2016-07-15 22:04 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-12-09 17:36 - 2016-07-15 22:04 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-12-09 17:36 - 2016-07-15 22:04 - 00000000 ____D C:\WINDOWS\servicing
2016-12-09 13:36 - 2016-05-15 06:30 - 00002409 _____ C:\Users\angie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-12-09 07:56 - 2013-08-09 17:18 - 00000000 ____D C:\Users\angie\Documents\Letters to Rob
2016-12-09 06:00 - 2016-07-16 03:42 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-12-09 00:52 - 2016-09-28 09:24 - 07639617 _____ C:\WINDOWS\system32\nvcoproc.bin
2016-12-07 09:16 - 2016-07-15 02:35 - 00002415 _____ C:\Users\Public\Desktop\Norton 360.lnk
2016-12-07 09:16 - 2015-08-16 13:16 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security Suite
2016-12-07 09:16 - 2013-08-20 16:17 - 00000000 ____D C:\WINDOWS\system32\Drivers\N360x64
2016-12-02 10:59 - 2013-08-09 17:18 - 00000000 ____D C:\Users\angie\Desktop\REAL ESTATE
 
==================== Files in the root of some directories =======
 
2013-06-12 17:51 - 2013-06-12 17:52 - 0000119 _____ () C:\ProgramData\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}.log
2013-06-12 17:48 - 2013-06-12 17:49 - 0000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log
2013-06-12 17:49 - 2013-06-12 17:50 - 0000111 _____ () C:\ProgramData\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}.log
2013-06-12 17:48 - 2013-06-12 17:48 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
2013-06-12 17:50 - 2013-06-12 17:51 - 0000108 _____ () C:\ProgramData\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}.log
 
Some files in TEMP:
====================
C:\Users\angie\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\angie\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\angie\AppData\Local\Temp\nvStInst.exe
 
 
==================== Bamital & volsnap ======================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 
LastRegBack: 2016-12-20 11:17
 
==================== End of FRST.txt ============================

 

 

 

Addition:

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-12-2016
Ran by angie (21-12-2016 13:50:29)
Running from C:\Users\angie\Desktop
Windows 10 Home Version 1607 (X64) (2016-09-28 17:55:35)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-2363693564-2664365946-1726940214-500 - Administrator - Disabled)
angie (S-1-5-21-2363693564-2664365946-1726940214-1002 - Administrator - Enabled) => C:\Users\angie
DefaultAccount (S-1-5-21-2363693564-2664365946-1726940214-503 - Limited - Disabled)
Guest (S-1-5-21-2363693564-2664365946-1726940214-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2363693564-2664365946-1726940214-1006 - Limited - Enabled)
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Norton Security Suite (Enabled - Up to date) {53C7D717-52E2-B95E-FA61-6F32ECC805DB}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Security Suite (Enabled - Up to date) {E8A636F3-74D8-B6D0-C0D1-5440974F4F66}
FW: Norton Security Suite (Enabled) {6BFC5632-188D-B806-D13E-C607121B42A0}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.207 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKU\S-1-5-21-2363693564-2664365946-1726940214-1002\...\Akamai) (Version:  - Akamai Technologies, Inc)
Amazon Browser App (HKLM-x32\...\{0A7D6F3C-F2AB-48ED-BE23-99791BFF87D6}) (Version: 1.0.0.0 - Amazon) <==== ATTENTION
Ansel (Version: 376.33 - NVIDIA Corporation) Hidden
Apple Application Support (32-bit) (HKLM-x32\...\{D4B07658-F443-4445-A261-E643996E139D}) (Version: 4.3.2 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{A6B0442B-E159-444B-B49D-6B9AC531EAE3}) (Version: 4.3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Brother MFL-Pro Suite MFC-7860DW (HKLM-x32\...\{3ACCCFB3-7B17-4E9F-ACB0-46868FCD4487}) (Version: 1.1.3.0 - Brother Industries, Ltd.)
CA Landlord Rights Forms (HKLM-x32\...\CA Landlord Rights Forms) (Version:  - )
Classic Shell (HKLM\...\{DC45D291-769A-4608-A688-77E6DBC03498}) (Version: 3.6.1 - IvoSoft)
Conexant SmartAudio HD (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.50.12.0 - Conexant)
CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 11.0 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dell Backup and Recovery - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 1.6.1.1 - Dell Inc.)
Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.6.1.1 - Dell Inc.)
Dell Data Vault (Version: 4.3.8.0 - Dell Inc.) Hidden
Dell Digital Delivery (HKLM-x32\...\{4B3230C5-F069-416B-9169-1B84A216ED6A}) (Version: 2.5.1400.0 - Dell Products, LP)
Dell Product Registration (HKLM-x32\...\{2A0F2CC5-3065-492C-8380-B03AA7106B1A}) (Version: 1.16.1 - Dell Inc.)
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.2.6793.01 - Dell)
Dell SupportAssistAgent (HKLM-x32\...\{3ED468C2-2235-4747-90AD-A7A34F0FE70A}) (Version: 1.2.2.8 - Dell)
Dell Wireless Driver Installation (HKLM-x32\...\{451517F1-7E41-400B-AA36-FB7E2563526D}) (Version: 10.0 - Dell)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
Google Earth (HKLM-x32\...\{A0C18B96-AB79-46BD-8321-6FA83E6D25B9}) (Version: 7.1.7.2606 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Intel Security True Key (HKLM\...\TrueKey) (Version: 4.11.110.1 - Intel Security)
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4358 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.6.0.1030 - Intel Corporation)
iTunes (HKLM\...\{E109B4A3-9883-4E6E-9A19-4D7E1A88AFE8}) (Version: 12.4.2.4 - Apple Inc.)
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Microsoft Office Home and Student 2013 - en-us (HKLM\...\HomeStudentRetail - en-us) (Version: 15.0.4815.1002 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2363693564-2664365946-1726940214-1002\...\OneDriveSetup.exe) (Version: 17.3.6720.1207 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files  (HKLM\...\{B40EE88B-400A-4266-A17B-E3DE64E94431}) (Version: 10.1.2731.0 - Microsoft Corporation)
Microsoft SQL Server 2012 (64-bit) (HKLM\...\Microsoft SQL Server SQLServer2012) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Setup (English) (HKLM\...\{8CB0713F-CFE0-445D-BCB2-538465860E1A}) (Version: 11.1.3128.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom  (HKLM\...\{0E8670B8-3965-4930-ADA6-570348B67153}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft VSS Writer for SQL Server 2012 (HKLM\...\{3E0DD83F-BE4C-4478-86A0-AD0D79D1353E}) (Version: 11.0.2100.60 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 50.1.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 50.1.0 (x86 en-US)) (Version: 50.1.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.1.0.6186 - Mozilla)
Norton Security Suite (HKLM-x32\...\N360) (Version: 22.8.1.14 - Symantec Corporation)
NVIDIA 3D Vision Controller Driver 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.33 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.1.2.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.1.2.31 - NVIDIA Corporation)
NVIDIA Graphics Driver 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.33 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (Version: 3.1.2.31 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 1.2.0.0 - NVIDIA Corporation) Hidden
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4815.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4815.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4815.1002 - Microsoft Corporation) Hidden
Park Sidekick 2013 (6.2.11.0) (HKLM-x32\...\ParkSidekick2013_is1) (Version:  - Property Sidekick, Inc.)
Park Sidekick 2016 (7.1.18.0) (HKLM-x32\...\ParkSidekick2016_is1) (Version:  - Property Sidekick, Inc.)
QuickTime 7 (HKLM-x32\...\{80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC}) (Version: 7.78.80.95 - Apple Inc.)
Rosetta Stone Language Training (HKLM-x32\...\{00384623-4937-4D7D-BDD9-23513D1C50AB}) (Version: 5.0.37.0 - Rosetta Stone, Ltd)
Rosetta Stone Ltd Services (HKLM-x32\...\{3165E4A6-D5DE-46B0-8597-D55E2B826B84}) (Version: 3.2.21 - Rosetta Stone Ltd.)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
SHIELD Streaming (Version: 7.1.0340 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.1.2.31 - NVIDIA Corporation) Hidden
Speccy (HKLM\...\Speccy) (Version: 1.30 - Piriform)
SQL Server 2012 Common Files (Version: 11.0.2100.60 - Microsoft Corporation) Hidden
SQL Server 2012 Database Engine Services (Version: 11.0.2100.60 - Microsoft Corporation) Hidden
SQL Server 2012 Database Engine Shared (Version: 11.0.2100.60 - Microsoft Corporation) Hidden
SQL Server Browser for SQL Server 2012 (HKLM-x32\...\{4B9E6EB0-0EED-4E74-9479-F982C3254F71}) (Version: 11.0.2100.60 - Microsoft Corporation)
Sql Server Customer Experience Improvement Program (Version: 11.0.2100.60 - Microsoft Corporation) Hidden
TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.20202 - TeamViewer)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
CustomCLSID: HKU\S-1-5-21-2363693564-2664365946-1726940214-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {02E7B613-CD58-4546-AC37-B16D2A91CD2B} - \GoogleUpdateTaskMachineUA -> No File <==== ATTENTION
Task: {055E1C0C-F6D3-403B-B245-AB339D1EAA13} - \Microsoft\Windows Live\SOXE\Extractor Definitions Update Task -> No File <==== ATTENTION
Task: {094CD275-5C71-4753-B57E-5566CA859498} - \Microsoft\Windows\SideShow\AutoWake -> No File <==== ATTENTION
Task: {0B364CBC-7372-4E53-8CFB-4EF0DA4453B8} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {0BD75192-B550-43D0-85C4-DB580246C40D} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {0D21BBCE-5FF6-4613-B62C-48148CA6EAA1} - \Microsoft\Windows\RAC\RacTask -> No File <==== ATTENTION
Task: {0F3C47F5-AE6D-4FFE-BEC1-4C5BE89046BF} - \Norton WSC Integration -> No File <==== ATTENTION
Task: {0F6DBBD1-1FA5-490B-A482-1F43FCC689E6} - \Microsoft\Windows\SideShow\SystemDataProviders -> No File <==== ATTENTION
Task: {10AD99B1-9990-4C73-B8E9-E6EA376A9E3D} - \Microsoft\Windows\Shell\FamilySafetyUpload -> No File <==== ATTENTION
Task: {124B7E97-4176-4AF9-8993-24E9F8F05BB8} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-12-11] (NVIDIA Corporation)
Task: {161B1995-165E-4F13-9BF8-6F9A7ECE44EF} - \User_Feed_Synchronization-{D397A01A-97A0-45F1-BF11-87E49C35E1B3} -> No File <==== ATTENTION
Task: {168CDAD5-7868-4B79-85D7-AEDAC2946A6B} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {1726C41B-82CD-49F5-B369-75EB551F9112} - System32\Tasks\GoogleUpdateTaskMachineUA1d1eb6c902b2ce7 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {1A4230A2-E136-4936-9B22-DDF624BB8332} - \Microsoft\Windows\IME\SQM data sender -> No File <==== ATTENTION
Task: {26FCD939-EFAF-4541-8CCD-32EBF362125F} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {28EB7C39-02F6-4C62-A92A-F38ACB9848E6} - \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot -> No File <==== ATTENTION
Task: {291345B7-ECD3-48FA-B8B4-6F033896BC87} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-12-11] (NVIDIA Corporation)
Task: {29B10F56-10FE-4900-A5EE-97A643B762AD} - \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display -> No File <==== ATTENTION
Task: {2C76A349-7602-41B6-9670-D3857BCAA13E} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {328680A3-BFBE-4BE7-B54E-DA52C4CA5A3F} - System32\Tasks\Norton 360\Norton Autofix => C:\Program Files (x86)\Norton Security Suite\Engine\22.8.1.14\SymErr.exe [2016-11-11] (Symantec Corporation)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - \Microsoft\Windows\Workplace Join\Automatic-Workplace-Join -> No File <==== ATTENTION
Task: {3716085D-1D7F-43B9-91A8-51613A5E9827} - \Apple\AppleSoftwareUpdate -> No File <==== ATTENTION
Task: {3B429983-3C6A-4110-85A5-335118BC7AB2} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {45489900-B5C6-4524-8E82-F3BE44C3E7B7} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-12-11] (NVIDIA Corporation)
Task: {4A5FCABD-D679-494C-8379-F5D890700B13} - \Microsoft\Windows\RemovalTools\MRT_HB -> No File <==== ATTENTION
Task: {52ACF01E-EF1C-46C0-9F05-829F75FB4698} - \PCDoctorBackgroundMonitorTask -> No File <==== ATTENTION
Task: {5804B77F-C355-42F5-A140-B2C479008901} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-12-11] (NVIDIA Corporation)
Task: {58C0C332-BC2E-4BD2-AC22-303F59576DFA} - \Microsoft\Windows\WindowsUpdate\AUSessionConnect -> No File <==== ATTENTION
Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - \Microsoft\Windows\Customer Experience Improvement Program\BthSQM -> No File <==== ATTENTION
Task: {69C468B4-058A-40A1-A23C-158344148876} - \Microsoft\Windows\UpdateOrchestrator\Policy Install -> No File <==== ATTENTION
Task: {6A04CAA9-3C6C-4736-89DA-00D2AAC2419E} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {6BB84D76-1AFB-4561-89B1-B390A12DAB61} - \GoogleUpdateTaskMachineCore -> No File <==== ATTENTION
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - \Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task -> No File <==== ATTENTION
Task: {74A13B04-FB6C-4BB5-8747-063C3DA01D45} - \Microsoft\Windows\WindowsUpdate\AUFirmwareInstall -> No File <==== ATTENTION
Task: {7978C9DB-866F-4E93-9FDE-43A8C15D6F8C} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {7CE75E34-338D-4FC7-9F8E-A123DEDD9EE1} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {7DA9E879-49B7-4762-845A-345FEFAE67C5} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {7EDD0A95-FB0E-42C3-AB55-51603D3565F7} - \PCDDataUploadTask -> No File <==== ATTENTION
Task: {8181C451-0F2C-42CE-8C53-302D5B767182} - System32\Tasks\GoogleUpdateTaskMachineCore1d1eb6c8ffb7da9 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {849B6545-F309-4242-AFE4-F510B60E33F3} - \Microsoft\Windows\WindowsUpdate\AUScheduledInstall -> No File <==== ATTENTION
Task: {859BC0DD-CF2D-463F-96B6-BD6707D6E473} - \Dell\Dell System Registration -> No File <==== ATTENTION
Task: {86D15C1D-0C42-46F5-8D84-E127AB7A5AB0} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - \Microsoft\Windows\SkyDrive\Routine Maintenance Task -> No File <==== ATTENTION
Task: {8B6759EE-1C08-4B8F-955C-774AB5A6544E} - \Microsoft\Windows\SideShow\SessionAgent -> No File <==== ATTENTION
Task: {978754B2-44A8-43C4-A2E2-6B4080E2147C} - \Adobe Flash Player Updater -> No File <==== ATTENTION
Task: {9A823740-E6AF-448A-B61C-3FB16097D69D} - \Microsoft\Windows\WindowsUpdate\Scheduled Start With Network -> No File <==== ATTENTION
Task: {9CE6DD76-FAE5-4588-AC9F-4B2377DDBC71} - \Microsoft OneDrive Auto Update Task-S-1-5-21-2363693564-2664365946-1726940214-1002 -> No File <==== ATTENTION
Task: {A47D80BA-8C96-46CF-AB44-66B390BA2942} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {A84256F1-8B7E-4FCA-8644-BBEEEB5192A6} - \Microsoft\Windows\Customer Experience Improvement Program\Uploader -> No File <==== ATTENTION
Task: {B0FDE423-D8EB-4A2E-9C04-40039C3DFC27} - \PCDEventLauncherTask -> No File <==== ATTENTION
Task: {B31F9DA4-C47C-48CA-BA36-772B02DEE65B} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-12-11] (NVIDIA Corporation)
Task: {B60A334F-97E0-432B-B834-9F14842E0C6E} - \Norton 360\Norton Error Processor -> No File <==== ATTENTION
Task: {BB5717FF-673D-4D0A-A179-0C43671A731F} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {C4097EA3-CCD9-4523-BD47-B2BAFDA09507} - \Optimize Start Menu Cache Files-S-1-5-21-2363693564-2664365946-1726940214-1002 -> No File <==== ATTENTION
Task: {C4AE3C3E-C327-4689-B6FD-C11FB31AE88B} - \Microsoft\Windows\NetCfg\BindingWorkItemQueueHandler -> No File <==== ATTENTION
Task: {C9DCF59E-6B97-4C0C-8641-B8261089C8CA} - \Microsoft\Windows\MobilePC\HotStart -> No File <==== ATTENTION
Task: {C9E51750-647D-4C0A-BCE2-4C2D2ECD5C6C} - \Norton 360\Norton Error Analyzer -> No File <==== ATTENTION
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - \Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor -> No File <==== ATTENTION
Task: {D5DBC093-56AC-43B9-A6CB-4522FBB8E2B0} - \SystemToolsDailyTest -> No File <==== ATTENTION
Task: {DB115665-5956-49C3-ACF6-274D2CD598C3} - \Microsoft\Office\Office ClickToRun Service Monitor -> No File <==== ATTENTION
Task: {DB21EF32-6BA9-4118-BBC1-BC4FF48961E5} - \Microsoft\Windows\SideShow\GadgetManager -> No File <==== ATTENTION
Task: {DC2B003A-E142-4BF7-B6E9-B55B0D9A86C6} - \WPD\SqmUpload_S-1-5-21-2363693564-2664365946-1726940214-1002 -> No File <==== ATTENTION
Task: {DFE19E24-DC70-408F-A094-A10A742F4623} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-12-11] (NVIDIA Corporation)
Task: {E20F31E3-6F5E-41AB-B922-9828ADC6CE71} - \Microsoft\Office\Office Automatic Updates -> No File <==== ATTENTION
Task: {E4C0FA11-88E6-4528-8ADF-4D3A07F33946} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {E7F75BEE-E57C-4B58-B74B-9C1CD70AB831} - \CLMLSvc_P2G8 -> No File <==== ATTENTION
Task: {F25CDB08-E940-462A-A0CD-80F7DD8C6992} - \CLVDLauncher -> No File <==== ATTENTION
Task: {F59812C2-AAC6-4DA8-9E40-27340770F2E1} - \Dell SupportAssistAgent AutoUpdate -> No File <==== ATTENTION
Task: {F8209457-E02E-4736-95F1-0DD2007962D1} - \Remediation\AntimalwareMigrationTask -> No File <==== ATTENTION
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
 
==================== Shortcuts =============================
 
(The entries could be listed to be restored or removed.)
 
==================== Loaded Modules (Whitelisted) ==============
 
2016-07-16 03:42 - 2016-07-16 03:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-12-16 09:52 - 2016-12-09 02:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-07-05 14:23 - 2016-07-05 14:23 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-07-05 14:23 - 2016-07-05 14:23 - 01354040 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-03-21 07:31 - 2015-10-13 04:34 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2013-06-12 17:50 - 2012-04-24 18:43 - 00254512 ____N () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2016-06-02 10:32 - 2005-04-21 20:36 - 00143360 _____ () C:\WINDOWS\system32\BrSNMP64.dll
2016-12-16 09:52 - 2016-12-09 02:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-12-09 13:36 - 2016-12-09 13:36 - 01678560 _____ () C:\Users\angie\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\amd64\ClientTelemetry.dll
2015-10-30 04:31 - 2015-09-01 08:04 - 08901184 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2016-09-28 10:16 - 2016-09-28 10:16 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-12-16 09:52 - 2016-12-09 01:41 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-12-16 09:52 - 2016-12-09 01:23 - 03940864 _____ () C:\Windows\ShellExperiences\PenWorkspace.dll
2016-11-10 09:02 - 2016-11-02 02:15 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-12-14 09:47 - 2016-12-14 09:47 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2016-12-14 09:47 - 2016-12-14 09:47 - 00179712 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-12-14 09:47 - 2016-12-14 09:47 - 42130432 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2016-12-14 09:47 - 2016-12-14 09:47 - 02216448 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\roottools.dll
2013-10-14 09:07 - 2013-08-19 08:21 - 00484640 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBRCrawler.exe
2016-11-10 09:02 - 2016-11-02 02:21 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-11-10 09:02 - 2016-11-02 02:14 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-11-10 09:02 - 2016-11-02 02:15 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-11-10 09:02 - 2016-11-02 02:16 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-11-10 09:02 - 2016-11-02 02:17 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-09-28 09:24 - 2016-12-11 10:47 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-12-21 12:48 - 2016-12-11 19:03 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-12-21 12:48 - 2016-12-11 19:03 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-12-21 12:49 - 2016-12-11 19:03 - 00418752 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll
2016-12-09 13:36 - 2016-12-09 13:36 - 01244376 _____ () C:\Users\angie\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\ClientTelemetry.dll
2016-02-24 14:28 - 2016-02-24 14:28 - 00325824 _____ () C:\Program Files\Microsoft Office 15\root\office15\AppVIsvStream32.dll
2016-06-02 10:32 - 2009-02-27 15:38 - 00139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2016-02-24 14:32 - 2016-02-24 14:32 - 00325824 _____ () C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\AppVIsvStream32.dll
2016-12-19 09:18 - 2016-12-19 09:18 - 00016384 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PSIClient\f0a20d12788d247d3c3196c7c2dc5c1b\PSIClient.ni.dll
2013-06-12 17:45 - 2012-07-18 11:55 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll
2013-10-14 09:07 - 2013-10-11 14:21 - 01904928 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Restore\STRestoreAPI.dll
2013-06-12 17:52 - 2012-11-25 21:20 - 01153384 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Restore\libxml2.dll
2013-06-12 17:52 - 2012-11-25 21:20 - 00117608 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Restore\zlib1.dll
2016-12-16 09:31 - 2016-12-07 23:29 - 01829208 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll
2016-12-16 09:31 - 2016-12-07 23:29 - 00085848 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll
2016-12-21 12:48 - 2016-12-11 19:03 - 00506424 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-12-21 12:48 - 2016-12-11 19:03 - 00252352 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-12-21 12:48 - 2016-12-11 19:03 - 02809912 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-12-21 12:48 - 2016-12-11 19:03 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-12-21 12:48 - 2016-12-11 19:03 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2016-12-21 12:48 - 2016-12-11 19:03 - 00245184 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-12-21 12:48 - 2016-12-11 19:03 - 00436792 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-12-21 12:48 - 2016-12-11 19:03 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-12-21 12:48 - 2016-12-11 19:03 - 00968248 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node
2016-12-21 12:48 - 2016-12-11 19:03 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
 
==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 
==================== Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
 
==================== Hosts content: ===============================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2013-08-22 05:25 - 2016-12-21 12:42 - 00000834 ____A C:\WINDOWS\system32\Drivers\etc\hosts
 
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-2363693564-2664365946-1726940214-1002\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img1.jpg
HKU\S-1-5-80-500879465-1970453601-637845946-1438361160-1539855291\Control Panel\Desktop\\Wallpaper -> 
DNS Servers: 10.0.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
HKLM\...\StartupApproved\Run32: => "mcpltui_exe"
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [vm-monitoring-nb-session] => LPort=139
FirewallRules: [{F588E603-5E02-4A38-B023-0717D17840A9}] => LPort=77
FirewallRules: [{C70D4888-43C2-4E95-B1FC-273C1DA5DB94}] => C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{3183889B-44C4-4335-A9AE-C7558119B11F}] => LPort=54925
FirewallRules: [{E1C9413C-4DEE-4739-9496-4763759AF17B}] => C:\Program Files (x86)\Brother\Brmfl10f\FAXRX.exe
FirewallRules: [{11F25189-5547-42A3-AE28-617346793DBA}] => C:\Program Files (x86)\Brother\Brmfl10f\FAXRX.exe
FirewallRules: [{E3C6703B-B636-4685-A3DE-644D52C7D6A0}] => C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
FirewallRules: [{7B434AB6-7C14-4665-A970-5BD15AD0F961}] => C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
FirewallRules: [{FFF936C5-F5B8-4CD0-B204-D8D6FFA51497}] => C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneLtdServices.exe
FirewallRules: [{70359BC9-A4C3-4170-8CAE-3BC15CA44100}] => C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneLtdServices.exe
FirewallRules: [{6C2EC454-ADD1-4154-A952-9DF8A5455784}] => C:\Program Files\Common Files\mcafee\platform\mcsvchost\McSvHost.exe
FirewallRules: [{4BAC589A-1292-4FDA-8DDB-989E672488D0}] => C:\Program Files\Common Files\mcafee\platform\mcsvchost\McSvHost.exe
FirewallRules: [{CE47D221-7977-46AE-9ABA-500EE045BC8C}] => C:\Users\angie\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{751CF3E9-86D4-4F4A-ABB3-00B3893C15FF}] => C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
FirewallRules: [{97FCE3B3-1F7C-4FBD-B7B5-21272FD44FF2}] => C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
FirewallRules: [{8F9AAE11-44CB-4E9E-94AD-820D7517E9F2}] => C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
FirewallRules: [{E6358D11-C7A5-487D-BCED-CDAF50266806}] => C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
FirewallRules: [{7AD147AE-14AB-42E2-A524-E9226E95F37A}] => C:\Program Files\Common Files\mcafee\platform\mcsvchost\McSvHost.exe
FirewallRules: [{F9E4C8A9-2947-4E69-A50E-4A7311195D48}] => C:\Program Files\Common Files\mcafee\platform\mcsvchost\McSvHost.exe
FirewallRules: [{68566526-02CC-4EB9-BEBC-0B627EAF46F8}] => C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{AD502FC0-04EC-4A1A-8DFC-D83407D376AF}] => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{3BBEC611-9B8B-49AE-9684-A15B90054917}] => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [TCP Query User{69890660-854F-42D0-9A48-17E2EA35B4F1}C:\users\angie\appdata\local\akamai\netsession_win.exe] => C:\users\angie\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{44DC0F52-712D-405E-B8EC-515292A95C25}C:\users\angie\appdata\local\akamai\netsession_win.exe] => C:\users\angie\appdata\local\akamai\netsession_win.exe
FirewallRules: [{DF95F7BF-339C-4AFD-B5D0-3D3EAFE11481}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B40FCD67-1B61-4CA2-8C62-CF78380FABD2}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{DC8E4FB1-1C50-459A-A84B-7B12863EED5A}] => C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{B24A5472-FACB-4719-8C27-4B1CEF97532F}] => LPort=2869
FirewallRules: [{25B3F319-3D80-403D-BDA8-C19570046F18}] => LPort=1900
FirewallRules: [{82032946-1DE0-4FAB-8F46-694B7DF1BDA5}] => C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD Cinema\PowerDVDCinema12.exe
FirewallRules: [{4C822EB9-16BA-4795-BA48-9754DD6A2DF2}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3A4035F4-0EDA-4B8A-8782-ACC222E4EBEA}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{D8CCEDC1-F81E-4495-9BF2-E3BD5EEBAFE7}] => LPort=78
FirewallRules: [{642A5E84-B40A-4204-8C4A-161CE4975406}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{0B94E865-BDFA-4B1F-A0AD-7F782CEDBFB8}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{B4AF4B8C-2C48-4C1D-BB00-1C4BD67DE8AF}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{A2A19182-FEC4-4E3E-93BE-D6C7130735E0}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{583642B9-D0D8-490B-A8EB-26D2867CFF56}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{720183B6-018B-47AE-BF05-484D0CDC41B4}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
 
==================== Restore Points =========================
 
05-12-2016 11:59:42 Scheduled Checkpoint
09-12-2016 08:08:32 Windows Update
16-12-2016 09:54:49 Windows Update
21-12-2016 12:42:57 Removed Bonjour
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (12/21/2016 12:44:42 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine QueryFullProcessImageNameW.  hr = 0x80070006, The handle is invalid.
.
 
 
Operation:
   Executing Asynchronous Operation
 
Context:
   Current State: DoSnapshotSet
 
Error: (12/21/2016 12:44:00 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.
 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
 
System Error:
Access is denied.
.
 
Error: (12/21/2016 12:43:34 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.
 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
 
System Error:
Access is denied.
.
 
Error: (12/21/2016 12:43:32 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine QueryFullProcessImageNameW.  hr = 0x80070006, The handle is invalid.
.
 
 
Operation:
   Executing Asynchronous Operation
 
Context:
   Current State: DoSnapshotSet
 
Error: (12/21/2016 12:43:05 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.
 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
 
System Error:
Access is denied.
.
 
Error: (12/20/2016 11:18:35 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: OFFICEPC)
Description: Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.
 
Error: (12/20/2016 11:18:34 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: OFFICEPC)
Description: Activation of app Microsoft.Windows.Photos_8wekyb3d8bbwe!App failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.
 
Error: (12/20/2016 10:56:23 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname officePC.local already in use; will try officePC-2.local instead
 
Error: (12/20/2016 10:56:23 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 1; will deregister    4 officePC.local. Addr 10.0.1.39
 
Error: (12/20/2016 10:56:23 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 10.0.1.23:5353    4 officePC.local. Addr 10.0.1.23
 
 
System errors:
=============
Error: (12/21/2016 12:57:38 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
 
Error: (12/20/2016 12:37:22 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
 
Error: (12/20/2016 11:55:00 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error: 
The service did not start due to a logon failure.
 
Error: (12/20/2016 11:55:00 AM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error: 
The password for this account has expired.
 
 
To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).
 
Error: (12/20/2016 11:54:41 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Dell Digital Delivery Service service failed to start due to the following error: 
The service did not respond to the start or control request in a timely fashion.
 
Error: (12/20/2016 11:54:41 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Dell Digital Delivery Service service to connect.
 
Error: (12/20/2016 11:52:25 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 and APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (12/20/2016 11:51:59 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The IDVaultSvc service failed to start due to the following error: 
The system cannot find the file specified.
 
Error: (12/20/2016 11:32:07 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 and APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (12/20/2016 11:25:47 AM) (Source: DCOM) (EventID: 10016) (User: OFFICEPC)
Description: The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
 and APPID 
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
 to the user officePC\angie SID (S-1-5-21-2363693564-2664365946-1726940214-1002) from address LocalHost (Using LRPC) running in the application container Microsoft.Windows.Cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). This security permission can be modified using the Component Services administrative tool.
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i5-3330 CPU @ 3.00GHz
Percentage of memory in use: 40%
Total physical RAM: 8063.55 MB
Available physical RAM: 4833.8 MB
Total Virtual: 9343.55 MB
Available Virtual: 5607.6 MB
 
==================== Drives ================================
 
Drive c: (OS) (Fixed) (Total:1849.58 GB) (Free:1690.53 GB) NTFS
Drive f: (OneTouch4 Plus) (Fixed) (Total:232.88 GB) (Free:73.24 GB) NTFS
Drive x: () (Fixed) (Total:0.44 GB) (Free:0.11 GB) NTFS
Drive y: (PBR Image) (Fixed) (Total:11.86 GB) (Free:0.26 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 1863 GB) (Disk ID: C5C90282)
 
Partition: GPT.
 
========================================================
Disk: 2 (Size: 232.9 GB) (Disk ID: 36CDD7CC)
Partition 1: (Active) - (Size=232.9 GB) - (Type=07 NTFS)
 
==================== End of Addition.txt ============================

  • 0

#13
RJ7887

RJ7887

    Member

  • Topic Starter
  • Member
  • PipPip
  • 96 posts

We are going to order a new HDD and also upgrade the RAM from 8gb to 16gb. 

Should have them in a few days. 

Thanks again for your on-going help


  • 0

#14
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,031 posts
  • MVP

The error is caused by Intel Security True Key.  This is probably  foistware you got when you update an adobe product.  Uninstall it.

 

You have a lot of desd tasks.  Let's clean them up:

 

 

 
Download the attached fixlist.txt to the same location as FRST
Attached File  fixlist.txt   16.84KB   23 downloads
 
 
Run FRST and press Fix
A fix log will be generated please post that 
 
If it doesn't do it for you please reboot
 
Run FRST again as before.  Make sure Addition.txt is checked and hit Scan.  Post both logs.
 

 


  • 0

#15
RJ7887

RJ7887

    Member

  • Topic Starter
  • Member
  • PipPip
  • 96 posts
Fix result of Farbar Recovery Scan Tool (x64) Version: 21-12-2016
Ran by angie (23-12-2016 14:49:24) Run:1
Running from C:\Users\angie\Desktop
Loaded Profiles: angie & MSSQL$PSK2013 (Available Profiles: angie & MSSQL$PSK2013)
Boot Mode: Normal
==============================================
 
fixlist content:
*****************
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => No File
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-12-09] ()
FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\mcafee\msc\npMcSnFFPl64.dll [No File]
S2 0020361482296451mcinstcleanup; C:\WINDOWS\TEMP\002036~1.EXE [922152 2016-03-02] (McAfee, Inc.)
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [995800 2016-11-30] (McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16248 2016-11-30] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [86864 2016-11-30] (McAfee, Inc.)
S2 IDVaultSvc; "C:\Program Files (x86)\Constant Guard Protection Suite\IDVaultSvc.exe" [X]
S3 mfencbdc; C:\WINDOWS\system32\DRIVERS\mfencbdc.sys [337120 2013-02-18] (McAfee, Inc.)
S3 mfencrk; C:\WINDOWS\system32\DRIVERS\mfencrk.sys [95856 2013-02-18] (McAfee, Inc.)
Task: {02E7B613-CD58-4546-AC37-B16D2A91CD2B} - \GoogleUpdateTaskMachineUA -> No File <==== ATTENTION
Task: {055E1C0C-F6D3-403B-B245-AB339D1EAA13} - \Microsoft\Windows Live\SOXE\Extractor Definitions Update Task -> No File <==== ATTENTION
Task: {094CD275-5C71-4753-B57E-5566CA859498} - \Microsoft\Windows\SideShow\AutoWake -> No File <==== ATTENTION
Task: {0B364CBC-7372-4E53-8CFB-4EF0DA4453B8} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {0BD75192-B550-43D0-85C4-DB580246C40D} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {0D21BBCE-5FF6-4613-B62C-48148CA6EAA1} - \Microsoft\Windows\RAC\RacTask -> No File <==== ATTENTION
Task: {0F3C47F5-AE6D-4FFE-BEC1-4C5BE89046BF} - \Norton WSC Integration -> No File <==== ATTENTION
Task: {0F6DBBD1-1FA5-490B-A482-1F43FCC689E6} - \Microsoft\Windows\SideShow\SystemDataProviders -> No File <==== ATTENTION
Task: {10AD99B1-9990-4C73-B8E9-E6EA376A9E3D} - \Microsoft\Windows\Shell\FamilySafetyUpload -> No File <==== ATTENTION
Task: {161B1995-165E-4F13-9BF8-6F9A7ECE44EF} - \User_Feed_Synchronization-{D397A01A-97A0-45F1-BF11-87E49C35E1B3} -> No File <==== ATTENTION
Task: {168CDAD5-7868-4B79-85D7-AEDAC2946A6B} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {1A4230A2-E136-4936-9B22-DDF624BB8332} - \Microsoft\Windows\IME\SQM data sender -> No File <==== ATTENTION
Task: {26FCD939-EFAF-4541-8CCD-32EBF362125F} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {29B10F56-10FE-4900-A5EE-97A643B762AD} - \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display -> No File <==== ATTENTION
Task: {2C76A349-7602-41B6-9670-D3857BCAA13E} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - \Microsoft\Windows\Workplace Join\Automatic-Workplace-Join -> No File <==== ATTENTION
Task: {3716085D-1D7F-43B9-91A8-51613A5E9827} - \Apple\AppleSoftwareUpdate -> No File <==== ATTENTION
Task: {3B429983-3C6A-4110-85A5-335118BC7AB2} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {4A5FCABD-D679-494C-8379-F5D890700B13} - \Microsoft\Windows\RemovalTools\MRT_HB -> No File <==== ATTENTION
Task: {52ACF01E-EF1C-46C0-9F05-829F75FB4698} - \PCDoctorBackgroundMonitorTask -> No File <==== ATTENTION
Task: {58C0C332-BC2E-4BD2-AC22-303F59576DFA} - \Microsoft\Windows\WindowsUpdate\AUSessionConnect -> No File <==== ATTENTION
Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - \Microsoft\Windows\Customer Experience Improvement Program\BthSQM -> No File <==== ATTENTION
Task: {69C468B4-058A-40A1-A23C-158344148876} - \Microsoft\Windows\UpdateOrchestrator\Policy Install -> No File <==== ATTENTION
Task: {6A04CAA9-3C6C-4736-89DA-00D2AAC2419E} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {6BB84D76-1AFB-4561-89B1-B390A12DAB61} - \GoogleUpdateTaskMachineCore -> No File <==== ATTENTION
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - \Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task -> No File <==== ATTENTION
Task: {74A13B04-FB6C-4BB5-8747-063C3DA01D45} - \Microsoft\Windows\WindowsUpdate\AUFirmwareInstall -> No File <==== ATTENTION
Task: {7978C9DB-866F-4E93-9FDE-43A8C15D6F8C} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {7CE75E34-338D-4FC7-9F8E-A123DEDD9EE1} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {7DA9E879-49B7-4762-845A-345FEFAE67C5} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {7EDD0A95-FB0E-42C3-AB55-51603D3565F7} - \PCDDataUploadTask -> No File <==== ATTENTION
Task: {849B6545-F309-4242-AFE4-F510B60E33F3} - \Microsoft\Windows\WindowsUpdate\AUScheduledInstall -> No File <==== ATTENTION
Task: {859BC0DD-CF2D-463F-96B6-BD6707D6E473} - \Dell\Dell System Registration -> No File <==== ATTENTION
Task: {86D15C1D-0C42-46F5-8D84-E127AB7A5AB0} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - \Microsoft\Windows\SkyDrive\Routine Maintenance Task -> No File <==== ATTENTION
Task: {8B6759EE-1C08-4B8F-955C-774AB5A6544E} - \Microsoft\Windows\SideShow\SessionAgent -> No File <==== ATTENTION
Task: {978754B2-44A8-43C4-A2E2-6B4080E2147C} - \Adobe Flash Player Updater -> No File <==== ATTENTION
Task: {9A823740-E6AF-448A-B61C-3FB16097D69D} - \Microsoft\Windows\WindowsUpdate\Scheduled Start With Network -> No File <==== ATTENTION
Task: {9CE6DD76-FAE5-4588-AC9F-4B2377DDBC71} - \Microsoft OneDrive Auto Update Task-S-1-5-21-2363693564-2664365946-1726940214-1002 -> No File <==== ATTENTION
Task: {A47D80BA-8C96-46CF-AB44-66B390BA2942} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {A84256F1-8B7E-4FCA-8644-BBEEEB5192A6} - \Microsoft\Windows\Customer Experience Improvement Program\Uploader -> No File <==== ATTENTION
Task: {B0FDE423-D8EB-4A2E-9C04-40039C3DFC27} - \PCDEventLauncherTask -> No File <==== ATTENTION
Task: {B60A334F-97E0-432B-B834-9F14842E0C6E} - \Norton 360\Norton Error Processor -> No File <==== ATTENTION
Task: {BB5717FF-673D-4D0A-A179-0C43671A731F} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {C4097EA3-CCD9-4523-BD47-B2BAFDA09507} - \Optimize Start Menu Cache Files-S-1-5-21-2363693564-2664365946-1726940214-1002 -> No File <==== ATTENTION
Task: {C4AE3C3E-C327-4689-B6FD-C11FB31AE88B} - \Microsoft\Windows\NetCfg\BindingWorkItemQueueHandler -> No File <==== ATTENTION
Task: {C9DCF59E-6B97-4C0C-8641-B8261089C8CA} - \Microsoft\Windows\MobilePC\HotStart -> No File <==== ATTENTION
Task: {C9E51750-647D-4C0A-BCE2-4C2D2ECD5C6C} - \Norton 360\Norton Error Analyzer -> No File <==== ATTENTION
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - \Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor -> No File <==== ATTENTION
Task: {D5DBC093-56AC-43B9-A6CB-4522FBB8E2B0} - \SystemToolsDailyTest -> No File <==== ATTENTION
Task: {DB115665-5956-49C3-ACF6-274D2CD598C3} - \Microsoft\Office\Office ClickToRun Service Monitor -> No File <==== ATTENTION
Task: {DB21EF32-6BA9-4118-BBC1-BC4FF48961E5} - \Microsoft\Windows\SideShow\GadgetManager -> No File <==== ATTENTION
Task: {DC2B003A-E142-4BF7-B6E9-B55B0D9A86C6} - \WPD\SqmUpload_S-1-5-21-2363693564-2664365946-1726940214-1002 -> No File <==== ATTENTION
Task: {E20F31E3-6F5E-41AB-B922-9828ADC6CE71} - \Microsoft\Office\Office Automatic Updates -> No File <==== ATTENTION
Task: {E4C0FA11-88E6-4528-8ADF-4D3A07F33946} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {E7F75BEE-E57C-4B58-B74B-9C1CD70AB831} - \CLMLSvc_P2G8 -> No File <==== ATTENTION
Task: {F25CDB08-E940-462A-A0CD-80F7DD8C6992} - \CLVDLauncher -> No File <==== ATTENTION
Task: {F59812C2-AAC6-4DA8-9E40-27340770F2E1} - \Dell SupportAssistAgent AutoUpdate -> No File <==== ATTENTION
Task: {F8209457-E02E-4736-95F1-0DD2007962D1} - \Remediation\AntimalwareMigrationTask -> No File <==== ATTENTION
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
CMD: FOR /F "usebackq delims==" %i IN (`wevtutil el`) DO wevtutil cl "%i"
 
 
 
*****************
 
"C:\Windows\system32\nvinitx.dll" => Value data removed successfully.
HKLM\System\CurrentControlSet\Control\Lsa\\Notification Packages => value restored successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} => value not found.
HKCR\Wow6432Node\CLSID\{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} => key not found. 
"HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10" => key removed successfully
0020361482296451mcinstcleanup => service removed successfully
TrueKey => service not found.
TrueKeyScheduler => service not found.
TrueKeyServiceHelper => service not found.
IDVaultSvc => service removed successfully
mfencbdc => service removed successfully
mfencrk => service removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{02E7B613-CD58-4546-AC37-B16D2A91CD2B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{02E7B613-CD58-4546-AC37-B16D2A91CD2B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{055E1C0C-F6D3-403B-B245-AB339D1EAA13}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{055E1C0C-F6D3-403B-B245-AB339D1EAA13}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{094CD275-5C71-4753-B57E-5566CA859498}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{094CD275-5C71-4753-B57E-5566CA859498}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\SideShow\AutoWake" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0B364CBC-7372-4E53-8CFB-4EF0DA4453B8}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0B364CBC-7372-4E53-8CFB-4EF0DA4453B8}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0BD75192-B550-43D0-85C4-DB580246C40D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0BD75192-B550-43D0-85C4-DB580246C40D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{0D21BBCE-5FF6-4613-B62C-48148CA6EAA1}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0D21BBCE-5FF6-4613-B62C-48148CA6EAA1}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\RAC\RacTask" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0F3C47F5-AE6D-4FFE-BEC1-4C5BE89046BF}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0F3C47F5-AE6D-4FFE-BEC1-4C5BE89046BF}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Norton WSC Integration" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0F6DBBD1-1FA5-490B-A482-1F43FCC689E6}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0F6DBBD1-1FA5-490B-A482-1F43FCC689E6}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\SideShow\SystemDataProviders" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{10AD99B1-9990-4C73-B8E9-E6EA376A9E3D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{10AD99B1-9990-4C73-B8E9-E6EA376A9E3D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Shell\FamilySafetyUpload" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{161B1995-165E-4F13-9BF8-6F9A7ECE44EF}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{161B1995-165E-4F13-9BF8-6F9A7ECE44EF}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\User_Feed_Synchronization-{D397A01A-97A0-45F1-BF11-87E49C35E1B3}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{168CDAD5-7868-4B79-85D7-AEDAC2946A6B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{168CDAD5-7868-4B79-85D7-AEDAC2946A6B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1A4230A2-E136-4936-9B22-DDF624BB8332}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1A4230A2-E136-4936-9B22-DDF624BB8332}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\IME\SQM data sender" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{26FCD939-EFAF-4541-8CCD-32EBF362125F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{26FCD939-EFAF-4541-8CCD-32EBF362125F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{29B10F56-10FE-4900-A5EE-97A643B762AD}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{29B10F56-10FE-4900-A5EE-97A643B762AD}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2C76A349-7602-41B6-9670-D3857BCAA13E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2C76A349-7602-41B6-9670-D3857BCAA13E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\rundetector" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{352E6CA0-7314-4DF4-89C4-682368D80D57}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{352E6CA0-7314-4DF4-89C4-682368D80D57}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3716085D-1D7F-43B9-91A8-51613A5E9827}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3716085D-1D7F-43B9-91A8-51613A5E9827}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Apple\AppleSoftwareUpdate" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3B429983-3C6A-4110-85A5-335118BC7AB2}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3B429983-3C6A-4110-85A5-335118BC7AB2}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4A5FCABD-D679-494C-8379-F5D890700B13}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4A5FCABD-D679-494C-8379-F5D890700B13}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\RemovalTools\MRT_HB" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{52ACF01E-EF1C-46C0-9F05-829F75FB4698}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{52ACF01E-EF1C-46C0-9F05-829F75FB4698}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\PCDoctorBackgroundMonitorTask" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{58C0C332-BC2E-4BD2-AC22-303F59576DFA}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{58C0C332-BC2E-4BD2-AC22-303F59576DFA}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\WindowsUpdate\AUSessionConnect" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5A3FB241-0B11-4EA5-BC66-0D9F1B406040}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5A3FB241-0B11-4EA5-BC66-0D9F1B406040}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Customer Experience Improvement Program\BthSQM" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{69C468B4-058A-40A1-A23C-158344148876}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{69C468B4-058A-40A1-A23C-158344148876}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\Policy Install" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{6A04CAA9-3C6C-4736-89DA-00D2AAC2419E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6A04CAA9-3C6C-4736-89DA-00D2AAC2419E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{6BB84D76-1AFB-4561-89B1-B390A12DAB61}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6BB84D76-1AFB-4561-89B1-B390A12DAB61}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6DFCB649-0769-4F83-BB10-F60F235F6D3D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6DFCB649-0769-4F83-BB10-F60F235F6D3D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{74A13B04-FB6C-4BB5-8747-063C3DA01D45}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{74A13B04-FB6C-4BB5-8747-063C3DA01D45}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\WindowsUpdate\AUFirmwareInstall" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7978C9DB-866F-4E93-9FDE-43A8C15D6F8C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7978C9DB-866F-4E93-9FDE-43A8C15D6F8C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7CE75E34-338D-4FC7-9F8E-A123DEDD9EE1}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7CE75E34-338D-4FC7-9F8E-A123DEDD9EE1}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7DA9E879-49B7-4762-845A-345FEFAE67C5}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7DA9E879-49B7-4762-845A-345FEFAE67C5}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7EDD0A95-FB0E-42C3-AB55-51603D3565F7}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7EDD0A95-FB0E-42C3-AB55-51603D3565F7}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\PCDDataUploadTask" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{849B6545-F309-4242-AFE4-F510B60E33F3}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{849B6545-F309-4242-AFE4-F510B60E33F3}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\WindowsUpdate\AUScheduledInstall" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{859BC0DD-CF2D-463F-96B6-BD6707D6E473}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{859BC0DD-CF2D-463F-96B6-BD6707D6E473}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Dell\Dell System Registration" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{86D15C1D-0C42-46F5-8D84-E127AB7A5AB0}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{86D15C1D-0C42-46F5-8D84-E127AB7A5AB0}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{872D0E53-FD2E-41E3-B431-698AF82882CE}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{872D0E53-FD2E-41E3-B431-698AF82882CE}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\SkyDrive\Routine Maintenance Task" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{8B6759EE-1C08-4B8F-955C-774AB5A6544E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8B6759EE-1C08-4B8F-955C-774AB5A6544E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\SideShow\SessionAgent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{978754B2-44A8-43C4-A2E2-6B4080E2147C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{978754B2-44A8-43C4-A2E2-6B4080E2147C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Flash Player Updater" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9A823740-E6AF-448A-B61C-3FB16097D69D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9A823740-E6AF-448A-B61C-3FB16097D69D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9CE6DD76-FAE5-4588-AC9F-4B2377DDBC71}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9CE6DD76-FAE5-4588-AC9F-4B2377DDBC71}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft OneDrive Auto Update Task-S-1-5-21-2363693564-2664365946-1726940214-1002" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A47D80BA-8C96-46CF-AB44-66B390BA2942}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A47D80BA-8C96-46CF-AB44-66B390BA2942}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A84256F1-8B7E-4FCA-8644-BBEEEB5192A6}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A84256F1-8B7E-4FCA-8644-BBEEEB5192A6}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Customer Experience Improvement Program\Uploader" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B0FDE423-D8EB-4A2E-9C04-40039C3DFC27}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B0FDE423-D8EB-4A2E-9C04-40039C3DFC27}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\PCDEventLauncherTask" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B60A334F-97E0-432B-B834-9F14842E0C6E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B60A334F-97E0-432B-B834-9F14842E0C6E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Norton 360\Norton Error Processor" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BB5717FF-673D-4D0A-A179-0C43671A731F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BB5717FF-673D-4D0A-A179-0C43671A731F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C4097EA3-CCD9-4523-BD47-B2BAFDA09507}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C4097EA3-CCD9-4523-BD47-B2BAFDA09507}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Optimize Start Menu Cache Files-S-1-5-21-2363693564-2664365946-1726940214-1002" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{C4AE3C3E-C327-4689-B6FD-C11FB31AE88B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C4AE3C3E-C327-4689-B6FD-C11FB31AE88B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\NetCfg\BindingWorkItemQueueHandler" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C9DCF59E-6B97-4C0C-8641-B8261089C8CA}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C9DCF59E-6B97-4C0C-8641-B8261089C8CA}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\MobilePC\HotStart" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C9E51750-647D-4C0A-BCE2-4C2D2ECD5C6C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C9E51750-647D-4C0A-BCE2-4C2D2ECD5C6C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Norton 360\Norton Error Analyzer" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CE2DE968-E342-40D7-9566-427D45E4A886}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CE2DE968-E342-40D7-9566-427D45E4A886}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D5DBC093-56AC-43B9-A6CB-4522FBB8E2B0}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D5DBC093-56AC-43B9-A6CB-4522FBB8E2B0}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SystemToolsDailyTest" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DB115665-5956-49C3-ACF6-274D2CD598C3}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DB115665-5956-49C3-ACF6-274D2CD598C3}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Office\Office ClickToRun Service Monitor" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{DB21EF32-6BA9-4118-BBC1-BC4FF48961E5}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DB21EF32-6BA9-4118-BBC1-BC4FF48961E5}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\SideShow\GadgetManager" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DC2B003A-E142-4BF7-B6E9-B55B0D9A86C6}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DC2B003A-E142-4BF7-B6E9-B55B0D9A86C6}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WPD\SqmUpload_S-1-5-21-2363693564-2664365946-1726940214-1002" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E20F31E3-6F5E-41AB-B922-9828ADC6CE71}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E20F31E3-6F5E-41AB-B922-9828ADC6CE71}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Office\Office Automatic Updates" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E4C0FA11-88E6-4528-8ADF-4D3A07F33946}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E4C0FA11-88E6-4528-8ADF-4D3A07F33946}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E7F75BEE-E57C-4B58-B74B-9C1CD70AB831}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E7F75BEE-E57C-4B58-B74B-9C1CD70AB831}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CLMLSvc_P2G8" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F25CDB08-E940-462A-A0CD-80F7DD8C6992}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F25CDB08-E940-462A-A0CD-80F7DD8C6992}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CLVDLauncher" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F59812C2-AAC6-4DA8-9E40-27340770F2E1}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F59812C2-AAC6-4DA8-9E40-27340770F2E1}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Dell SupportAssistAgent AutoUpdate" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F8209457-E02E-4736-95F1-0DD2007962D1}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F8209457-E02E-4736-95F1-0DD2007962D1}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Remediation\AntimalwareMigrationTask" => key removed successfully
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
 
========= FOR /F "usebackq delims==" %i IN (`wevtutil el`) DO wevtutil cl "%i" =========
 
Failed to clear log Microsoft-Windows-LiveId/Analytic. Access is denied.
Failed to clear log Microsoft-Windows-LiveId/Operational. Access is denied.
 
========= End of CMD: =========
 
 
==== End of Fixlog 14:50:15 ====

  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP