Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

My computer may be infected, i don't know


  • Please log in to reply

#1
trehm

trehm

    New Member

  • Member
  • Pip
  • 2 posts
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28.09.2018
Ran by Hp DV6 (administrator) on HP-REHM (02-10-2018 00:04:07)
Running from C:\Users\Hp DV6\Downloads
Loaded Profiles: Hp DV6 (Available Profiles: Hp DV6)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Safe Mode (with Networking)
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Windows\HelpPane.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2832168 2011-10-01] (Synaptics Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-07-05] (Advanced Micro Devices, Inc.)
HKU\S-1-5-21-1350837343-389437000-2571130527-1000\...\Run: [Lync] => C:\Program Files\Microsoft Office\root\Office16\lync.exe [26877528 2018-09-29] (Microsoft Corporation)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76
Tcpip\..\Interfaces\{98A93052-270C-4564-A6BD-B43BDC69CCB6}: [DhcpNameServer] 75.75.75.75 75.75.76.76
 
Internet Explorer:
==================
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2018-09-29] (Microsoft Corporation)
BHO: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll [2011-06-07] (Advanced Micro Devices)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2018-09-29] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2018-09-29] (Microsoft Corporation)
BHO-x32: No Name -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> No File
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2018-09-29] (Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-09-29] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2018-09-29] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-09-29] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2018-09-29] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-09-29] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2018-09-29] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-09-29] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2018-09-29] (Microsoft Corporation)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-07] (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-07] (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-07] (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-07] (Advanced Micro Devices)
 
FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-09-29] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-09-29] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2018-09-29] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-19] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-06-29] (Adobe Systems Inc.)
 
Chrome: 
=======
CHR HomePage: Default -> hxxp://trehm1.wix.com/jmsdrama
CHR StartupUrls: Default -> "hxxp://espn.go.com/","hxxp://www.fedex.com/us/office/localindex.html"
CHR Profile: C:\Users\Hp DV6\AppData\Local\Google\Chrome\User Data\Default [2018-10-02]
CHR Extension: (Slides) - C:\Users\Hp DV6\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-02-03]
CHR Extension: (Docs) - C:\Users\Hp DV6\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-02-03]
CHR Extension: (Google Drive) - C:\Users\Hp DV6\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-02-03]
CHR Extension: (BeFunky Photo Editor) - C:\Users\Hp DV6\AppData\Local\Google\Chrome\User Data\Default\Extensions\apfkepiiddolifkgjmfdgpnipgnfejab [2018-09-29]
CHR Extension: (Kleki) - C:\Users\Hp DV6\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdndldkfimmnnfbagnkjgnemgpjadbag [2018-09-29]
CHR Extension: (YouTube) - C:\Users\Hp DV6\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-02-03]
CHR Extension: (Adblock for Youtube™) - C:\Users\Hp DV6\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2018-09-29]
CHR Extension: (OfferUp) - C:\Users\Hp DV6\AppData\Local\Google\Chrome\User Data\Default\Extensions\doeobddbjanlolglliphmmnffbloffop [2018-09-29]
CHR Extension: (Adobe Acrobat) - C:\Users\Hp DV6\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2018-09-30]
CHR Extension: (Box) - C:\Users\Hp DV6\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejnkaeblpdcamcioiiabclakabcbjmbl [2018-09-29]
CHR Extension: (Web Store) - C:\Users\Hp DV6\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcmhlciplkdngpmnaholobffnkkfpkgm [2018-09-29]
CHR Extension: (Sheets) - C:\Users\Hp DV6\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-02-03]
CHR Extension: (Stupeflix Video Maker) - C:\Users\Hp DV6\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkdmcfnoimoilncpjchamnenebopocem [2018-09-29]
CHR Extension: (Google Docs Offline) - C:\Users\Hp DV6\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-09-29]
CHR Extension: (Video Adblocker for Youtube™ Extension) - C:\Users\Hp DV6\AppData\Local\Google\Chrome\User Data\Default\Extensions\hflefjhkfeiaignkclmphmokmmbhbhik [2018-09-29]
CHR Extension: (Comedy Radio) - C:\Users\Hp DV6\AppData\Local\Google\Chrome\User Data\Default\Extensions\icpmejdihoeonnkamggabbkibfgfdecj [2018-09-29]
CHR Extension: (Kami - PDF and Document Annotation) - C:\Users\Hp DV6\AppData\Local\Google\Chrome\User Data\Default\Extensions\iljojpiodmlhoehoecppliohmplbgeij [2018-09-29]
CHR Extension: (iPiccy Photo Editor) - C:\Users\Hp DV6\AppData\Local\Google\Chrome\User Data\Default\Extensions\imokeandodnlammaoenbgcnbhigjbpjh [2018-09-29]
CHR Extension: (Dropbox) - C:\Users\Hp DV6\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2018-09-29]
CHR Extension: (Google Forms) - C:\Users\Hp DV6\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhknlonaankphkkbnmjdlpehkinifeeg [2018-09-29]
CHR Extension: (Pholody Slideshow) - C:\Users\Hp DV6\AppData\Local\Google\Chrome\User Data\Default\Extensions\kacblojlkodlpoiknfljhamkegibpgfi [2018-09-29]
CHR Extension: (Fireplace) - C:\Users\Hp DV6\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljjnhkmdlhpjalapikmdocokkigmhimo [2018-09-29]
CHR Extension: (Google Classroom) - C:\Users\Hp DV6\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfhehppjhmmnlfbbopchdfldgimhfhfk [2018-09-29]
CHR Extension: (Google Drawings) - C:\Users\Hp DV6\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkaakpdehdafacodkgkpghoibnmamcme [2018-09-29]
CHR Extension: (4k Wallpaper) - C:\Users\Hp DV6\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpibmjcgbgjdccdkpekfjbmccbbbeenm [2018-09-29]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Hp DV6\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-09-29]
CHR Extension: (Gmail) - C:\Users\Hp DV6\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-02-03]
CHR Extension: (Chrome Media Router) - C:\Users\Hp DV6\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-09-29]
CHR HKU\S-1-5-21-1350837343-389437000-2571130527-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
 
==================== Services (Whitelisted) ====================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [365568 2011-07-05] (Advanced Micro Devices, Inc.) [File not signed]
S2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9658664 2018-09-08] (Microsoft Corporation)
S2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2375168 2011-03-07] (Realsil Microelectronics Inc.) [File not signed]
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation)
S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation)
S2 valWBFPolicyService; C:\Windows\system32\valWBFPolicyService.exe [35328 2013-10-30] (Validity Sensors, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-26] (Microsoft Corporation)
 
===================== Drivers (Whitelisted) ======================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 cpuz138; C:\Users\HPDV6~1\AppData\Local\Temp\cpuz138\cpuz138_x64.sys [27320 2018-09-30] (CPUID) <==== ATTENTION
S0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation)
R3 netr28x; C:\Windows\System32\DRIVERS\netr28x.sys [2473616 2014-12-10] (MediaTek Inc.)
S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation)
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2018-10-02 00:04 - 2018-10-02 00:04 - 000013940 _____ C:\Users\Hp DV6\Downloads\FRST.txt
2018-10-02 00:03 - 2018-10-02 00:04 - 000000000 ____D C:\FRST
2018-10-02 00:03 - 2018-10-02 00:03 - 002414080 _____ (Farbar) C:\Users\Hp DV6\Downloads\FRST64.exe
2018-10-01 21:40 - 2018-10-01 23:55 - 000303270 _____ C:\Windows\ntbtlog.txt
2018-09-30 18:54 - 2018-09-30 18:54 - 000000000 ____D C:\Windows\SysWOW64\sda
2018-09-30 18:53 - 2011-05-04 16:44 - 009888360 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RtsPStorIcon.dll
2018-09-30 18:53 - 2011-05-04 16:44 - 000338536 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsPStor.sys
2018-09-30 18:52 - 2018-09-30 18:52 - 007270712 _____ (Lenovo Group Limited ) C:\Users\Hp DV6\Downloads\8gx107ww.exe
2018-09-30 18:50 - 2018-09-30 18:50 - 000306120 _____ (Dell Inc.) C:\Users\Hp DV6\Downloads\SupportAssistLauncher.exe
2018-09-30 16:01 - 2018-09-30 16:01 - 000623122 _____ C:\Users\Hp DV6\Downloads\sun reg 1.pdf
2018-09-30 16:00 - 2018-09-30 16:00 - 000556879 _____ C:\Users\Hp DV6\Downloads\sun reg 2.pdf
2018-09-30 15:59 - 2018-09-30 15:59 - 000139736 _____ C:\Users\Hp DV6\Documents\contract.pdf
2018-09-30 14:36 - 2018-09-30 14:38 - 000290290 _____ C:\Users\Hp DV6\Documents\thursday friday cast schedule.pdf
2018-09-30 14:30 - 2018-09-30 14:36 - 000029917 ____H C:\Users\Hp DV6\Documents\~WRL3573.tmp
2018-09-30 14:13 - 2018-09-30 14:37 - 000326580 _____ C:\Users\Hp DV6\Documents\monday wednesday cast schedule.pdf
2018-09-30 14:13 - 2018-09-30 14:13 - 000000000 ____D C:\Users\Hp DV6\AppData\LocalLow\Adobe
2018-09-30 14:13 - 2018-09-30 14:13 - 000000000 ____D C:\Users\Hp DV6\AppData\Local\CEF
2018-09-30 14:13 - 2018-09-30 14:13 - 000000000 ____D C:\Users\Hp DV6\AppData\Local\Adobe
2018-09-30 09:34 - 2018-09-30 09:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2018-09-30 09:32 - 2018-09-30 09:32 - 000000000 ____D C:\Program Files\Microsoft Silverlight
2018-09-30 09:32 - 2018-09-30 09:32 - 000000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2018-09-30 05:06 - 2018-09-30 05:06 - 000000000 ____D C:\Users\Hp DV6\AppData\Roaming\Synaptics
2018-09-30 05:06 - 2018-09-30 05:06 - 000000000 ____D C:\ProgramData\Synaptics
2018-09-30 04:43 - 2018-09-30 05:03 - 000000000 ___HD C:\$WINDOWS.~BT
2018-09-30 04:05 - 2013-10-01 18:10 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2018-09-30 04:04 - 2013-10-01 19:22 - 000056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2018-09-30 04:04 - 2013-10-01 19:11 - 000013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2018-09-30 04:04 - 2013-10-01 19:08 - 000012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2018-09-30 04:04 - 2013-10-01 18:48 - 000056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2018-09-30 04:04 - 2013-10-01 18:48 - 000018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2018-09-30 04:04 - 2013-10-01 18:29 - 000062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2018-09-30 04:04 - 2013-10-01 17:15 - 001057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2018-09-30 04:04 - 2013-10-01 17:14 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2018-09-30 04:04 - 2013-10-01 17:14 - 000017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2018-09-30 04:04 - 2013-10-01 17:08 - 000083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2018-09-30 04:04 - 2013-10-01 17:01 - 000420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2018-09-30 04:04 - 2013-10-01 16:58 - 000053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2018-09-30 04:04 - 2013-10-01 16:31 - 001147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2018-09-30 04:04 - 2013-10-01 16:08 - 000855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2018-09-30 04:04 - 2013-10-01 15:34 - 001068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2018-09-30 04:04 - 2013-10-01 13:57 - 006578176 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2018-09-30 04:04 - 2013-10-01 13:55 - 005698048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2018-09-30 04:02 - 2012-08-23 07:13 - 000243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2018-09-30 04:02 - 2012-08-23 07:10 - 000019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2018-09-30 04:02 - 2012-08-23 07:08 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2018-09-30 04:02 - 2012-08-23 06:24 - 000015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2018-09-30 04:02 - 2012-08-23 04:12 - 000192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2018-09-30 04:02 - 2012-08-23 03:51 - 000228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2018-09-30 04:02 - 2012-08-23 02:51 - 003174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2018-09-30 04:00 - 2018-09-30 04:00 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2018-09-30 04:00 - 2018-09-30 04:00 - 000000000 ____D C:\Program Files\Synaptics
2018-09-30 03:53 - 2018-09-30 03:53 - 019119064 _____ (Microsoft Corporation) C:\Users\Hp DV6\Downloads\MediaCreationTool1803 (7).exe
2018-09-30 03:51 - 2015-12-16 11:53 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll
2018-09-30 03:51 - 2015-12-16 11:53 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL
2018-09-30 03:51 - 2015-12-16 11:53 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL
2018-09-30 03:51 - 2015-12-16 11:48 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZE.DLL
2018-09-30 03:51 - 2015-12-16 11:48 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdgeoqw.dll
2018-09-30 03:51 - 2015-12-16 11:48 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZEL.DLL
2018-09-30 03:45 - 2018-09-30 03:45 - 019119064 _____ (Microsoft Corporation) C:\Users\Hp DV6\Downloads\MediaCreationTool1803 (6).exe
2018-09-30 03:45 - 2018-09-30 03:45 - 000000000 ___HD C:\$Windows.~WS
2018-09-30 03:39 - 2018-09-30 14:38 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2018-09-30 03:22 - 2018-09-30 03:22 - 000000000 ____D C:\Users\Hp DV6\Documents\Custom Office Templates
2018-09-30 02:50 - 2018-09-30 02:50 - 019119064 _____ (Microsoft Corporation) C:\Users\Hp DV6\Downloads\MediaCreationTool1803 (5).exe
2018-09-30 01:06 - 2018-09-30 01:06 - 000027418 _____ C:\Users\Hp DV6\Downloads\table.zip
2018-09-30 01:06 - 2018-09-30 01:06 - 000000000 ____D C:\Users\Hp DV6\Downloads\table
2018-09-30 00:10 - 2018-09-30 14:37 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-09-30 00:10 - 2018-09-30 00:10 - 000002047 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2018-09-30 00:10 - 2018-09-30 00:10 - 000000000 ____D C:\Program Files (x86)\Adobe
2018-09-30 00:09 - 2018-09-30 03:37 - 000000000 ____D C:\ProgramData\Adobe
2018-09-30 00:08 - 2018-09-30 21:46 - 000000000 ____D C:\Users\Hp DV6\AppData\Local\ElevatedDiagnostics
2018-09-30 00:07 - 2018-09-30 00:07 - 000002117 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
2018-09-30 00:07 - 2018-09-30 00:07 - 000001945 _____ C:\Windows\epplauncher.mif
2018-09-30 00:07 - 2018-09-30 00:07 - 000001927 _____ C:\Users\Hp DV6\Desktop\MSE.lnk
2018-09-30 00:07 - 2018-09-30 00:07 - 000000000 ____D C:\Program Files\Microsoft Security Client
2018-09-30 00:07 - 2018-09-30 00:07 - 000000000 ____D C:\Program Files (x86)\Microsoft Security Client
2018-09-30 00:06 - 2018-09-30 00:08 - 000000000 ____D C:\Users\Hp DV6\AppData\Local\Deployment
2018-09-29 23:26 - 2018-09-30 00:06 - 000000000 ____D C:\Users\Hp DV6\AppData\Local\Apps\2.0
2018-09-29 23:24 - 2018-09-29 23:24 - 000003172 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1350837343-389437000-2571130527-1000
2018-09-29 22:37 - 2018-09-29 22:37 - 000000000 ____D C:\Users\Hp DV6\AppData\Roaming\Google
2018-09-29 22:20 - 2018-09-29 23:24 - 000002158 _____ C:\Users\Hp DV6\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2018-09-29 22:20 - 2018-09-29 23:24 - 000000000 ___RD C:\Users\Hp DV6\OneDrive
2018-09-29 22:20 - 2018-09-29 22:20 - 000002100 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2018-09-29 22:20 - 2018-09-29 22:20 - 000002100 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2018-09-29 22:20 - 2018-09-29 22:20 - 000000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2018-09-29 22:19 - 2018-09-29 22:19 - 019119064 _____ (Microsoft Corporation) C:\Users\Hp DV6\Downloads\MediaCreationTool1803 (4).exe
2018-09-29 22:19 - 2018-09-29 22:19 - 000000000 ____D C:\Users\Hp DV6\AppData\Roaming\Skype
2018-09-29 22:19 - 2018-09-29 22:19 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2018-09-29 22:13 - 2018-09-29 22:13 - 000002374 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2018-09-29 22:13 - 2018-09-29 22:13 - 000002373 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2018-09-29 22:13 - 2018-09-29 22:13 - 000002337 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2018-09-29 22:13 - 2018-09-29 22:13 - 000002336 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2018-09-29 22:13 - 2018-09-29 22:13 - 000002330 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2018-09-29 22:13 - 2018-09-29 22:13 - 000002324 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2018-09-29 22:13 - 2018-09-29 22:13 - 000002316 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2018-09-29 22:13 - 2018-09-29 22:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2018-09-29 22:12 - 2018-09-29 22:12 - 000000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2018-09-29 22:11 - 2018-09-29 22:12 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-09-29 22:11 - 2018-09-29 22:11 - 002721168 _____ (Microsoft Corporation) C:\Users\Hp DV6\Downloads\Windows7-USB-DVD-Download-Tool-Installer-en-US.exe
2018-09-29 22:11 - 2018-09-29 22:11 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2018-09-29 21:59 - 2018-09-29 22:12 - 000000000 ____D C:\Program Files\Microsoft Office
2018-09-29 21:59 - 2018-09-29 21:59 - 000000000 ____D C:\Program Files\Microsoft Office 15
2018-09-29 21:58 - 2018-09-29 21:58 - 007661456 _____ (Microsoft Corporation) C:\Users\Hp DV6\Downloads\Setup.X64.en-us_O365ProPlusRetail_0e5def12-aec5-49c0-aa29-8a86c079b989_TX_PR_b_32_.exe
2018-09-29 19:46 - 2018-09-29 20:23 - 000000000 ____D C:\Users\WindowsImageBackup\hp-rehm
2018-09-29 19:46 - 2018-09-29 19:46 - 000000000 ____D C:\Users\WindowsImageBackup
2018-09-29 19:44 - 2018-09-29 19:44 - 000000000 ____D C:\Users\HP-REHM\Backup Set 2018-09-29 194102
2018-09-29 19:42 - 2018-09-29 19:44 - 000000000 ___RD C:\Users\HP-REHM
2018-09-29 19:42 - 2018-09-29 19:42 - 000000528 ____R C:\Users\MediaID.bin
2018-09-29 19:42 - 2018-09-29 19:42 - 000000528 ____R C:\Users\HP-REHM\MediaID.bin
2018-09-29 19:39 - 2018-09-29 19:39 - 015065792 _____ (Microsoft Corporation) C:\Users\Hp DV6\Downloads\mseinstall.exe
2018-09-29 18:48 - 2018-09-29 18:49 - 019119064 _____ (Microsoft Corporation) C:\Users\Hp DV6\Downloads\MediaCreationTool1803 (3).exe
2018-09-29 16:56 - 2018-06-13 09:23 - 000140992 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2018-09-29 16:56 - 2018-06-13 09:18 - 000680960 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2018-09-29 16:56 - 2018-06-08 06:05 - 002860032 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2018-09-29 16:56 - 2018-06-08 06:05 - 001602048 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2018-09-29 16:56 - 2018-06-08 06:05 - 000783872 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2018-09-29 16:56 - 2018-06-08 06:05 - 000612352 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2018-09-29 16:56 - 2018-06-08 06:05 - 000470016 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2018-09-29 16:56 - 2018-06-08 06:05 - 000443392 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2018-09-29 16:56 - 2018-06-08 06:05 - 000301056 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2018-09-29 16:56 - 2018-06-08 06:05 - 000246272 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2018-09-29 16:56 - 2016-09-01 12:26 - 000394440 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2018-09-29 16:56 - 2016-09-01 11:41 - 000346320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2018-09-29 16:56 - 2016-08-31 20:18 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2018-09-29 16:56 - 2016-08-31 20:08 - 020312064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-09-29 16:56 - 2016-08-31 19:48 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2018-09-29 16:56 - 2016-08-31 19:46 - 000498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2018-09-29 16:56 - 2016-08-31 19:46 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2018-09-29 16:56 - 2016-08-31 19:46 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2018-09-29 16:56 - 2016-08-31 19:44 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2018-09-29 16:56 - 2016-08-31 19:34 - 002286592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2018-09-29 16:56 - 2016-08-31 19:31 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2018-09-29 16:56 - 2016-08-31 19:31 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2018-09-29 16:56 - 2016-08-31 19:26 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2018-09-29 16:56 - 2016-08-31 19:24 - 000663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2018-09-29 16:56 - 2016-08-31 19:24 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2018-09-29 16:56 - 2016-08-31 19:23 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2018-09-29 16:56 - 2016-08-31 19:08 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2018-09-29 16:56 - 2016-08-31 18:59 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2018-09-29 16:56 - 2016-08-31 18:57 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2018-09-29 16:56 - 2016-08-31 18:53 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2018-09-29 16:56 - 2016-08-31 18:52 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2018-09-29 16:56 - 2016-08-31 18:48 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2018-09-29 16:56 - 2016-08-31 18:45 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2018-09-29 16:56 - 2016-08-31 18:34 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2018-09-29 16:56 - 2016-08-31 18:30 - 000692736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2018-09-29 16:56 - 2016-08-31 18:29 - 002055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2018-09-29 16:56 - 2016-08-31 18:29 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2018-09-29 16:56 - 2016-08-31 18:27 - 013808128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2018-09-29 16:56 - 2016-08-31 18:24 - 004607488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-09-29 16:56 - 2016-08-31 17:43 - 002445824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-09-29 16:56 - 2016-08-31 17:42 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2018-09-29 16:56 - 2016-08-31 17:40 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2018-09-29 16:56 - 2016-08-31 17:40 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2018-09-29 16:56 - 2016-08-31 17:38 - 001316352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2018-09-29 16:56 - 2016-08-31 17:25 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2018-09-29 16:56 - 2016-08-31 17:24 - 002894336 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-09-29 16:56 - 2016-08-31 17:24 - 000576000 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-09-29 16:56 - 2016-08-31 17:24 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2018-09-29 16:56 - 2016-08-31 17:16 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2018-09-29 16:56 - 2016-08-31 17:15 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2018-09-29 16:56 - 2016-08-31 17:12 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2018-09-29 16:56 - 2016-08-31 17:11 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2018-09-29 16:56 - 2016-08-31 17:03 - 000968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2018-09-29 16:56 - 2016-08-31 16:59 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2018-09-29 16:56 - 2016-08-31 16:51 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-09-29 16:56 - 2016-08-31 16:50 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2018-09-29 16:56 - 2016-08-31 16:44 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2018-09-29 16:56 - 2016-08-31 16:42 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2018-09-29 16:56 - 2016-08-31 16:29 - 000724992 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2018-09-29 16:56 - 2016-08-31 16:28 - 000806400 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2018-09-29 16:56 - 2016-08-31 16:26 - 002131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2018-09-29 16:56 - 2016-08-31 16:15 - 015411712 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-09-29 16:56 - 2016-08-31 15:58 - 001550848 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-09-29 16:56 - 2016-08-31 15:47 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2018-09-29 16:55 - 2016-08-31 17:45 - 025770496 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-09-29 16:55 - 2016-08-31 17:24 - 000417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2018-09-29 16:55 - 2016-08-31 17:24 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2018-09-29 16:55 - 2016-08-31 17:11 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2018-09-29 16:55 - 2016-08-31 17:10 - 000817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-09-29 16:55 - 2016-08-31 17:10 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2018-09-29 16:55 - 2016-08-31 17:06 - 006047232 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-09-29 16:55 - 2016-08-31 16:47 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2018-09-29 16:55 - 2016-08-31 16:46 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2018-09-29 16:55 - 2016-08-31 16:31 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2018-09-29 16:55 - 2016-08-31 16:27 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2018-09-29 16:55 - 2016-08-31 16:10 - 002921472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-09-29 16:55 - 2016-05-12 08:18 - 000090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2018-09-29 16:55 - 2014-07-08 19:03 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2018-09-29 16:55 - 2014-07-08 19:03 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2018-09-29 16:55 - 2014-07-08 19:03 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2018-09-29 16:55 - 2014-07-08 19:03 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2018-09-29 16:55 - 2014-07-08 19:03 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2018-09-29 16:55 - 2014-07-08 18:31 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2018-09-29 16:55 - 2014-07-08 18:31 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2018-09-29 16:55 - 2014-07-08 18:31 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2018-09-29 16:55 - 2014-07-08 18:31 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2018-09-29 16:55 - 2014-07-08 18:31 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2018-09-29 16:55 - 2013-11-26 01:16 - 003419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2018-09-29 16:55 - 2013-11-22 15:48 - 003928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2018-09-29 16:53 - 2018-09-29 16:53 - 019119064 _____ (Microsoft Corporation) C:\Users\Hp DV6\Downloads\MediaCreationTool1803 (2).exe
2018-09-29 16:53 - 2018-09-29 16:53 - 019119064 _____ (Microsoft Corporation) C:\Users\Hp DV6\Downloads\MediaCreationTool1803 (1).exe
2018-09-29 16:41 - 2018-09-30 05:03 - 000001908 _____ C:\Windows\diagwrn.xml
2018-09-29 16:41 - 2018-09-30 05:03 - 000001908 _____ C:\Windows\diagerr.xml
2018-09-29 16:32 - 2016-04-14 06:49 - 000603648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2018-09-29 16:32 - 2016-04-14 06:21 - 000647680 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2018-09-29 16:32 - 2015-12-08 14:54 - 002285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2018-09-29 16:32 - 2015-12-08 12:07 - 002777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2018-09-29 16:32 - 2015-07-30 11:06 - 002565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2018-09-29 16:32 - 2015-07-30 11:06 - 001648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2018-09-29 16:32 - 2015-07-30 11:06 - 001180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2018-09-29 16:32 - 2015-07-30 10:57 - 001987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2018-09-29 16:32 - 2015-07-30 10:57 - 001251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2018-09-29 16:26 - 2015-02-03 20:16 - 000465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2018-09-29 16:26 - 2015-02-03 19:54 - 000417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2018-09-29 16:18 - 2018-09-30 04:43 - 000000000 ____D C:\ESD
2018-09-29 16:13 - 2018-09-29 16:13 - 019119064 _____ (Microsoft Corporation) C:\Users\Hp DV6\Downloads\MediaCreationTool1803.exe
2018-09-26 05:37 - 2018-09-30 14:13 - 000000000 ____D C:\Users\Hp DV6\AppData\Roaming\Adobe
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2018-10-01 05:25 - 2009-07-13 21:45 - 000022576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-10-01 05:25 - 2009-07-13 21:45 - 000022576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-10-01 05:22 - 2009-07-13 22:13 - 000781298 _____ C:\Windows\system32\PerfStringBackup.INI
2018-10-01 05:22 - 2009-07-13 20:20 - 000000000 ____D C:\Windows\inf
2018-10-01 05:17 - 2018-02-03 20:32 - 000000000 ____D C:\Users\Hp DV6
2018-10-01 05:17 - 2009-07-13 22:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-10-01 05:16 - 2009-07-13 20:20 - 000000000 ____D C:\Windows\registration
2018-09-30 18:53 - 2018-02-03 20:58 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2018-09-30 18:53 - 2018-02-03 20:58 - 000000000 ____D C:\Program Files (x86)\Realtek
2018-09-30 17:08 - 2009-07-13 21:45 - 000511656 _____ C:\Windows\system32\FNTCACHE.DAT
2018-09-30 16:43 - 2018-05-25 17:22 - 000774004 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2018-09-30 05:03 - 2009-07-13 20:20 - 000000000 ____D C:\Windows\PolicyDefinitions
2018-09-30 04:45 - 2018-02-03 20:18 - 000000000 ____D C:\Windows\Panther
2018-09-30 03:28 - 2009-07-13 20:20 - 000000000 ____D C:\Windows\AppCompat
2018-09-30 01:46 - 2009-07-13 20:20 - 000000000 ____D C:\Windows\rescache
2018-09-30 01:06 - 2018-02-03 21:46 - 000131368 _____ C:\Users\Hp DV6\AppData\Local\GDIPFONTCACHEV1.DAT
2018-09-29 22:12 - 2009-07-13 20:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2018-09-29 21:19 - 2018-05-25 19:03 - 000000000 ____D C:\Windows\system32\appraiser
2018-09-29 20:58 - 2018-05-25 19:16 - 000000000 ____D C:\Windows\system32\MRT
2018-09-29 20:17 - 2018-05-25 19:15 - 139184408 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-09-29 18:59 - 2018-02-03 21:17 - 000000000 ____D C:\Users\Hp DV6\AppData\Local\Google
2018-09-29 18:47 - 2009-07-13 20:20 - 000000000 __RHD C:\Users\Public\Libraries
2018-09-29 16:51 - 2009-07-13 22:32 - 000000000 ____D C:\Windows\system32\WinBioDatabase
2018-09-29 16:22 - 2018-02-03 21:21 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-09-29 16:22 - 2018-02-03 21:21 - 000002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-09-26 05:37 - 2018-02-03 20:32 - 000001413 _____ C:\Users\Hp DV6\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2018-09-26 05:34 - 2009-07-13 20:20 - 000000000 ____D C:\Program Files\Common Files\System
 
==================== Bamital & volsnap ======================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
 
LastRegBack: 2018-09-29 17:21
 
==================== End of FRST.txt ============================Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28.09.2018
Ran by Hp DV6 (02-10-2018 00:05:01)
Running from C:\Users\Hp DV6\Downloads
Windows 7 Professional Service Pack 1 (X64) (2018-02-04 03:32:13)
Boot Mode: Safe Mode (with Networking)
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-1350837343-389437000-2571130527-500 - Administrator - Disabled)
Guest (S-1-5-21-1350837343-389437000-2571130527-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1350837343-389437000-2571130527-1003 - Limited - Enabled)
Hp DV6 (S-1-5-21-1350837343-389437000-2571130527-1000 - Administrator - Enabled) => C:\Users\Hp DV6
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Microsoft Security Essentials (Enabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189}
AS: Microsoft Security Essentials (Enabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 18.011.20063 - Adobe Systems Incorporated)
ATI Catalyst Install Manager (HKLM\...\{F60D0C72-9FDA-1403-810E-497472730739}) (Version: 3.0.829.0 - ATI Technologies, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 69.0.3497.100 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Internet Explorer (Enable DEP) (HKLM\...\{a9264802-8a7a-40fe-a135-5c6d204aed7a}.sdb) (Version:  - )
LibreOffice 5.2.3.3 (HKLM\...\{CDBD2338-897B-432E-8424-EBC1290493DF}) (Version: 5.2.3.3 - The Document Foundation)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Office 365 ProPlus - en-us (HKLM\...\O365ProPlusRetail - en-us) (Version: 16.0.10730.20102 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1350837343-389437000-2571130527-1000\...\OneDriveSetup.exe) (Version: 18.151.0729.0012 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.10730.20102 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.10730.20102 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.10730.20102 - Microsoft Corporation) Hidden
Ralink RT5390 802.11b/g/n WiFi Adapter (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309B0}) (Version: 3.02.02.0 - Ralink)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.41.216.2011 - Realtek)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.82 - Realtek Semiconductor Corp.)
Speccy (HKLM\...\Speccy) (Version: 1.29 - Piriform)
Synaptics TouchPad Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.27.1 - Synaptics Incorporated)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.6 - VideoLAN)
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
CustomCLSID: HKU\S-1-5-21-1350837343-389437000-2571130527-1000_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\Hp DV6\AppData\Local\Microsoft\OneDrive\17.3.6743.1212\amd64\FileCoAuthLib64.dll => No File
ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation)
ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation)
ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2011-07-05] (Advanced Micro Devices, Inc.)
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {0E146B8A-13F2-40AD-A7E9-21F302B1B070} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-09-29] (Microsoft Corporation)
Task: {1B957EA9-1130-452D-AE1C-544B91F693F1} - System32\Tasks\Microsoft\Office\OfficeOsfInstaller => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\osfinstaller.exe [2018-09-29] (Microsoft Corporation)
Task: {1C3EFAC2-1AEA-4C5F-898E-D9C1A2A08F8B} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\\MpCmdRun.exe [2016-11-14] (Microsoft Corporation)
Task: {1FFB1C16-848C-49A5-8F45-143CBFB647CE} - System32\Tasks\{4983CA57-1378-4B30-9708-78FB0E136F99} => C:\Windows\system32\pcalua.exe -a E:\Drivers\sp53753.exe -d E:\Drivers
Task: {31D74F4B-3B85-40C2-9763-B0375F575B7E} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-09-29] (Microsoft Corporation)
Task: {3C9F7067-5526-4645-8F4A-B348A291ECDB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-02-03] (Google Inc.)
Task: {51369981-9C44-4A33-8BDA-5A68CEA7BD74} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2018-09-29] (Microsoft Corporation)
Task: {77566800-F0D3-4CE8-83E8-C931718414C0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2018-09-29] (Microsoft Corporation)
Task: {7F7A5B7F-D643-4674-BBD5-669EE1C97913} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-09-08] (Microsoft Corporation)
Task: {CDD5EA3E-C5AC-476E-924F-C49500228E46} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-02-03] (Google Inc.)
Task: {D36B366A-E985-4054-B968-C1890E8850CE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2018-09-29] (Microsoft Corporation)
Task: {D3AFA990-CBA5-473F-8E75-739675F9DB3A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-09-08] (Microsoft Corporation)
Task: {D479B0B2-9FB3-4BF9-953C-7647E1AA531E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-14] (Adobe Systems Incorporated)
Task: {EFF7172B-8E8B-41D1-BBB0-276A00DE0EC0} - System32\Tasks\Microsoft\Microsoft Antimalware\MpIdleTask => c:\Program Files\Microsoft Security Client\\MpCmdRun.exe [2016-11-14] (Microsoft Corporation)
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
 
==================== Shortcuts & WMI ========================
 
(The entries could be listed to be restored or removed.)
 
 
==================== Loaded Modules (Whitelisted) ==============
 
2018-09-29 16:22 - 2018-09-15 01:26 - 002677592 _____ () C:\Program Files (x86)\Google\Chrome\Application\69.0.3497.100\swiftshader\libglesv2.dll
2018-09-29 16:22 - 2018-09-15 01:26 - 000148824 _____ () C:\Program Files (x86)\Google\Chrome\Application\69.0.3497.100\swiftshader\libegl.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
 
==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="2"
 
==================== Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
IE trusted site: HKU\S-1-5-21-1350837343-389437000-2571130527-1000\...\sharepoint.com -> hxxps://ppsnet71745-files.sharepoint.com
 
==================== Hosts content: ===============================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2009-07-13 19:34 - 2009-06-10 14:00 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts
 
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-1350837343-389437000-2571130527-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Hp DV6\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 75.75.75.75 - 75.75.76.76
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
If an entry is included in the fixlist, it will be removed.
 
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{7377DFFD-92E1-41C1-B9E0-6BB87775D7BA}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{07CF4DC0-5C09-4660-9C5E-A9E201F941A5}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{B92A0931-049D-4215-83E3-4328DFEC70EC}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{784E8F4A-2575-4A23-A1D8-41CC54E93488}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{236CF107-8009-4363-945A-AF9A2EB7DB96}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{3B099E01-BA2F-420B-8E95-9539DB348503}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
 
==================== Restore Points =========================
 
30-09-2018 02:51:45 Windows Update
30-09-2018 03:29:52 Windows Update
30-09-2018 03:54:58 Windows Update
30-09-2018 09:28:53 Windows Update
30-09-2018 16:39:05 Windows Update
30-09-2018 18:17:12 Windows Update
30-09-2018 18:36:05 Windows Update
30-09-2018 18:53:27 Installed Realtek PCIE Card Reader
30-09-2018 18:54:49 Windows Update
30-09-2018 19:00:12 Windows Backup
 
==================== Faulty Device Manager Devices =============
 
Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: spldr
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (10/01/2018 11:57:26 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
 
Error: (10/01/2018 09:42:04 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
 
Error: (10/01/2018 05:18:57 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
 
Error: (10/01/2018 04:54:56 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
 
Error: (10/01/2018 04:25:23 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
 
Error: (09/30/2018 09:40:29 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
 
Error: (09/30/2018 09:28:37 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
 
Error: (09/30/2018 07:07:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
 
 
System errors:
=============
Error: (10/02/2018 12:03:02 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error: 
The dependency service or group failed to start.
 
Error: (10/02/2018 12:03:02 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error: 
The dependency service or group failed to start.
 
Error: (10/02/2018 12:03:02 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error: 
The dependency service or group failed to start.
 
Error: (10/02/2018 12:03:02 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error: 
The dependency service or group failed to start.
 
Error: (10/02/2018 12:03:02 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error: 
The dependency service or group failed to start.
 
Error: (10/02/2018 12:03:02 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error: 
The dependency service or group failed to start.
 
Error: (10/02/2018 12:02:19 AM) (Source: DCOM) (EventID: 10005) (User: )
Description: DCOM got error "1068" attempting to start the service BITS with arguments "" in order to run the server:
{4991D34B-80A1-4291-83B6-3328366B9097}
 
Error: (10/01/2018 11:56:15 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Provider Host service which failed to start because of the following error: 
The dependency service or group failed to start.
 
 
==================== Memory info =========================== 
 
Processor: AMD A6-3400M APU with Radeon™ HD Graphics
Percentage of memory in use: 18%
Total physical RAM: 5610.9 MB
Available physical RAM: 4554.03 MB
Total Virtual: 11219.97 MB
Available Virtual: 10206.44 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:698.54 GB) (Free:624.55 GB) NTFS
Drive d: (TIGHT_YOUNG_SNATCH) (CDROM) (Total:6.88 GB) (Free:0 GB) UDF
 
\\?\Volume{203dce9d-095a-11e8-afee-806e6f6e6963}\ (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.04 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 698.6 GB) (Disk ID: 07D19879)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=698.5 GB) - (Type=07 NTFS)
 
==================== End of Addition.txt ============================
 

  • 0

Advertisements







Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP