If I use a number key this happens: 12xc3v456m7,8.9 All I did was type out the numbers 1-9. So if I have to type a password I'm using the onscreen keyboard.
Also programs or things I'm looking at on my computer, such as the control panel, will sometimes close on their own accord. I first noticed troubles when I was on YouTube. I was trying to watch a video and it kept scrolling down.
I don't know if this is a virus or software problem.Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15.09.2018
Ran by Penny (administrator) on JOANNE (23-09-2018 02:19:40)
Running from C:\Users\Penny\Desktop
Loaded Profiles: Penny (Available Profiles: Penny)
Platform: Windows 8.1 Pro (Update) (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Spotify Ltd) C:\Users\Penny\AppData\Roaming\Spotify\SpotifyWebHelper.exe
() C:\Windows\Samsung\PanelMgr\SSMMgr.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
() C:\Windows\Samsung\PanelMgr\caller64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\AtBroker.exe
(Microsoft Corporation) C:\Windows\System32\osk.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-05] (Adobe Systems Incorporated)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3030256 2013-05-17] (Synaptics Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [301880 2018-08-23] (Apple Inc.)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-20] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-10] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [68920 2018-08-22] (Apple Inc.)
HKLM-x32\...\Run: [Samsung PanelMgr] => C:\Windows\Samsung\PanelMgr\ssmmgr.exe [614400 2009-08-28] ()
HKLM-x32\...\Run: [Cloud PC Defender] => C:\Program Files (x86)\Cloud PC Defender\CloudPCDefender.exe
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766688 2014-07-05] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle Corporation)
HKU\S-1-5-21-2773827278-2290244439-3328751544-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3207968 2018-09-09] (Valve Corporation)
HKU\S-1-5-21-2773827278-2290244439-3328751544-1001\...\Run: [Spotify Web Helper] => C:\Users\Penny\AppData\Roaming\Spotify\SpotifyWebHelper.exe [782736 2018-03-29] (Spotify Ltd)
HKU\S-1-5-21-2773827278-2290244439-3328751544-1001\...\Run: [Spotify] => C:\Users\Penny\AppData\Roaming\Spotify\Spotify.exe [22454160 2018-03-29] (Spotify Ltd)
HKU\S-1-5-21-2773827278-2290244439-3328751544-1001\...\MountPoints2: {5dccc5be-b9a2-11e5-bed7-d89d67826b56} - "F:\HTC_Sync_Manager_PC.exe"
GroupPolicy: Restriction - Chrome <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{CA75DB3E-B76F-4227-9875-4841EABC77B3}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2773827278-2290244439-3328751544-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> {8CDE19E6-71C2-4B46-89B7-35F6A18C571A} URL =
SearchScopes: HKU\S-1-5-21-2773827278-2290244439-3328751544-1001 -> {8CDE19E6-71C2-4B46-89B7-35F6A18C571A} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2018-02-14] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2018-05-15] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2017-08-24] (Microsoft Corporation)
BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll [2018-07-22] (Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2018-05-15] (Microsoft Corporation)
BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-07-22] (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2017-08-15] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: 229kxr0t.default-1501484411418
FF ProfilePath: C:\Users\Penny\AppData\Roaming\Mozilla\Firefox\Profiles\229kxr0t.default-1501484411418 [2018-09-22]
FF Extension: (Flash Video Downloader) - C:\Users\Penny\AppData\Roaming\Mozilla\Firefox\Profiles\229kxr0t.default-1501484411418\Extensions\
[email protected] [2018-08-18]
FF Extension: (Enhancer for YouTube™) - C:\Users\Penny\AppData\Roaming\Mozilla\Firefox\Profiles\229kxr0t.default-1501484411418\Extensions\
[email protected] [2018-07-30]
FF Extension: (Awesome Screenshot - Capture, Annotate & More) - C:\Users\Penny\AppData\Roaming\Mozilla\Firefox\Profiles\229kxr0t.default-1501484411418\Extensions\
[email protected] [2017-07-31]
FF Extension: (Adblock Plus) - C:\Users\Penny\AppData\Roaming\Mozilla\Firefox\Profiles\229kxr0t.default-1501484411418\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-09-01]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_31_0_0_108.dll [2018-09-12] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-26] (Wacom)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-26] (Wacom)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_31_0_0_108.dll [2018-09-12] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1207148.dll [2013-12-05] (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2018-07-22] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-07-22] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-07-11] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-20] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-20] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-26] (Wacom)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-26] (Wacom)
FF Plugin HKU\S-1-5-21-2773827278-2290244439-3328751544-1001: jpl.nasa.gov/NASAEyes -> C:\Users\Penny\AppData\Roaming\JPL-NASA-Caltech\NASA's Eyes\npNASAEyes.dll [2016-06-30] (Jet Propulsion Laboratory)
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\Penny\AppData\Local\Google\Chrome\User Data\Default [2017-08-22]
CHR Extension: (Google Slides) - C:\Users\Penny\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-07]
CHR Extension: (Google Docs) - C:\Users\Penny\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-07]
CHR Extension: (Google Drive) - C:\Users\Penny\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-07]
CHR Extension: (YouTube) - C:\Users\Penny\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-07]
CHR Extension: (Google Sheets) - C:\Users\Penny\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-07]
CHR Extension: (Google Docs Offline) - C:\Users\Penny\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-17]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Penny\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
CHR Extension: (Gmail) - C:\Users\Penny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-07]
CHR Extension: (Chrome Media Router) - C:\Users\Penny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-22]
CHR Profile: C:\Users\Penny\AppData\Local\Google\Chrome\User Data\Profile 1 [2018-09-23]
CHR Extension: (Slides) - C:\Users\Penny\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-08-20]
CHR Extension: (Docs) - C:\Users\Penny\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2018-08-20]
CHR Extension: (Google Drive) - C:\Users\Penny\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-08-22]
CHR Extension: (Video Downloader Plus) - C:\Users\Penny\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\baejfnndpekpkaaancgpakjaengfpopk [2018-09-01]
CHR Extension: (YouTube) - C:\Users\Penny\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-08-22]
CHR Extension: (Video Downloader for Chrome) - C:\Users\Penny\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dcfofgiombegngbaofkeebiipcdgpnga [2018-08-21]
CHR Extension: (Sheets) - C:\Users\Penny\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-08-20]
CHR Extension: (Google Docs Offline) - C:\Users\Penny\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-20]
CHR Extension: (Fair AdBlocker) - C:\Users\Penny\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lgblnfidahcdcjddiepkckcfdhpknnjh [2018-08-20]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Penny\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-08-20]
CHR Extension: (Gmail) - C:\Users\Penny\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-08-22]
CHR Extension: (Chrome Media Router) - C:\Users\Penny\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-09-22]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-07-05] (Advanced Micro Devices, Inc.) [File not signed]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-08-23] (Apple Inc.)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [245832 2013-06-07] (Realtek Semiconductor)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-20] (Adobe Systems Incorporated) [File not signed]
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2016-02-21] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2016-02-21] (Microsoft Corporation)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [652240 2016-07-15] (Wacom Technology, Corp.)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 MpKslfc52b3ff; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{726B8B6F-E096-4FC6-B110-BA96CD87CFF9}\MpKslfc52b3ff.sys [58120 2018-09-23] (Microsoft Corporation)
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [273040 2013-02-02] (Realtek Semiconductor Corp.)
S3 WacHidRouterPro; C:\WINDOWS\System32\drivers\wachidrouter.sys [102864 2016-03-03] (Wacom Technology)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44560 2016-02-21] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [270168 2016-02-21] (Microsoft Corporation)
R2 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [114520 2016-02-21] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [20800 2012-09-01] (Hewlett-Packard Development Company, L.P.)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-09-23 02:19 - 2018-09-23 02:21 - 000018907 _____ C:\Users\Penny\Desktop\FRST.txt
2018-09-23 02:19 - 2018-09-23 02:19 - 000000000 ____D C:\FRST
2018-09-23 02:17 - 2018-09-23 02:18 - 002413568 _____ (Farbar) C:\Users\Penny\Desktop\FRST64.exe
2018-09-23 02:13 - 2018-09-23 02:13 - 002413568 _____ (Farbar) C:\Users\Penny\Downloads\FRST64 (1).exe
2018-09-23 02:10 - 2018-09-23 02:10 - 002413568 _____ (Farbar) C:\Users\Penny\Downloads\FRST64.exe
2018-09-23 00:50 - 2018-09-23 00:51 - 000000000 ____D C:\Users\Penny\AppData\Local\ElevatedDiagnostics
2018-09-15 01:29 - 2018-09-15 01:29 - 000001759 _____ C:\Users\Public\Desktop\iTunes.lnk
2018-09-15 01:29 - 2018-09-15 01:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2018-09-15 01:29 - 2018-09-15 01:29 - 000000000 ____D C:\Program Files\iPod
2018-09-15 01:27 - 2018-09-15 01:29 - 000000000 ____D C:\Program Files\iTunes
2018-09-13 00:50 - 2018-09-13 00:50 - 000075426 _____ C:\Users\Penny\Documents\2092.jpeg
2018-09-07 01:34 - 2018-09-07 01:35 - 000034064 _____ C:\Users\Penny\Documents\2089.jpeg
2018-08-26 04:36 - 2018-09-18 18:31 - 000000000 ____D C:\Users\Penny\Documents\Kirkwood
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-09-23 00:49 - 2012-07-26 19:59 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-09-23 00:39 - 2018-04-27 15:29 - 000017814 _____ C:\Users\Penny\Documents\WordPress.ods
2018-09-22 19:18 - 2018-05-19 14:41 - 000000000 ____D C:\Users\Penny\Documents\Durn
2018-09-22 17:24 - 2014-01-18 15:59 - 000003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2773827278-2290244439-3328751544-1001
2018-09-22 17:20 - 2014-01-20 11:23 - 000000000 ____D C:\Users\Penny\AppData\Roaming\Spotify
2018-09-22 17:16 - 2016-11-12 19:04 - 000000000 ____D C:\Program Files (x86)\Steam
2018-09-22 05:59 - 2016-02-21 14:02 - 000000000 ____D C:\Users\Penny
2018-09-22 05:56 - 2016-12-03 20:18 - 000000000 ____D C:\Users\Penny\AppData\LocalLow\Mozilla
2018-09-22 05:13 - 2017-07-14 21:12 - 000000000 ____D C:\Users\Penny\AppData\Roaming\vlc
2018-09-22 04:50 - 2017-07-10 15:42 - 000290304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\subinacl.exe
2018-09-22 04:38 - 2013-08-23 02:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-09-22 03:47 - 2016-12-01 14:53 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-09-21 01:50 - 2016-11-07 12:46 - 000002244 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-09-21 01:50 - 2016-11-07 12:46 - 000002203 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-09-21 01:42 - 2015-01-11 17:07 - 000004476 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2018-09-19 21:09 - 2014-01-19 13:33 - 000001163 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-09-19 21:09 - 2014-01-19 13:33 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-09-18 18:42 - 2014-01-18 15:51 - 000000000 ____D C:\Users\Penny\AppData\Local\Packages
2018-09-15 18:34 - 2018-01-21 16:43 - 000000000 ____D C:\Users\Penny\Documents\Poems
2018-09-15 16:03 - 2018-08-18 17:26 - 000000000 ____D C:\Users\Penny\Documents\Stories
2018-09-15 01:32 - 2013-08-23 01:25 - 000262144 ___SH C:\WINDOWS\system32\config\BBI
2018-09-14 17:26 - 2014-01-20 08:07 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2018-09-14 16:33 - 2014-01-18 17:20 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-09-14 16:14 - 2014-01-18 17:20 - 139184408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-09-12 18:30 - 2018-03-14 14:21 - 000004458 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-09-12 18:30 - 2014-01-19 13:49 - 000004288 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2018-09-12 18:30 - 2013-08-23 03:36 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-09-12 18:30 - 2013-08-23 03:36 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-09-05 10:06 - 2016-11-17 12:04 - 000835144 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-09-05 10:06 - 2016-11-17 12:04 - 000179808 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-09-04 04:56 - 2017-07-14 21:12 - 000001086 _____ C:\Users\Public\Desktop\VLC media player.lnk
==================== Files in the root of some directories =======
2017-07-10 03:32 - 2017-08-22 05:56 - 000104726 _____ () C:\Users\Penny\AppData\Local\ars.cache
2017-07-10 03:33 - 2017-08-22 05:56 - 000487311 _____ () C:\Users\Penny\AppData\Local\census.cache
2017-07-10 02:19 - 2017-07-10 02:19 - 000000036 _____ () C:\Users\Penny\AppData\Local\housecall.guid.cache
Some files in TEMP:
====================
2018-07-22 01:24 - 2018-07-22 01:24 - 001906040 _____ (Oracle Corporation) C:\Users\Penny\AppData\Local\Temp\jre-8u181-windows-au.exe
2018-09-04 04:54 - 2018-09-04 04:55 - 040210008 _____ () C:\Users\Penny\AppData\Local\Temp\vlc-3.0.4-win32.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2018-09-22 23:25
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15.09.2018
Ran by Penny (23-09-2018 02:23:32)
Running from C:\Users\Penny\Desktop
Windows 8.1 Pro (Update) (X64) (2016-02-21 05:51:35)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2773827278-2290244439-3328751544-500 - Administrator - Disabled)
Guest (S-1-5-21-2773827278-2290244439-3328751544-501 - Limited - Disabled)
joann_000 (S-1-5-21-2773827278-2290244439-3328751544-1005 - Limited - Enabled)
Penny (S-1-5-21-2773827278-2290244439-3328751544-1001 - Administrator - Enabled) => C:\Users\Penny
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 18.00 beta (HKLM-x32\...\7-Zip) (Version: 18.00 beta - Igor Pavlov)
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.020.20039 - Adobe Systems Incorporated)
Adobe Flash Player 31 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 31.0.0.108 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.7.148 - Adobe Systems, Inc.)
Apple Application Support (32-bit) (HKLM-x32\...\{308F2F8C-9D33-4B22-8A6C-D9C13DBEF8C6}) (Version: 7.0.2 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{0CB84A7D-9697-4526-A819-60FB050E8F05}) (Version: 7.0.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{77F8C879-88CD-4145-945A-541C35285285}) (Version: 12.0.0.1039 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
CleanUp! (HKLM-x32\...\CleanUp!) (Version: - )
EverQuest (HKU\S-1-5-21-2773827278-2290244439-3328751544-1001\...\DG0-EverQuest) (Version: - Sony Online Entertainment)
EverQuest (HKU\S-1-5-21-2773827278-2290244439-3328751544-1001\...\DGC-EverQuest) (Version: 1.0.3.195 - Daybreak Game Company)
Free Video Editor 7.4.0 (HKLM-x32\...\{c23a3d87-c9c5-49cd-9632-42d7491c17a2}_is1) (Version: 7.4.0 - ThunderSoft International LLC.)
FVD Downloader Module (HKLM-x32\...\{A3F74A3C-6824-4878-AB46-21280389D09F}) (Version: 1.0.8 - Nimbus)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 69.0.3497.100 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
HP Wireless Button Driver (HKLM-x32\...\{941DE69D-6CEE-4171-8F1F-3D7E352AA498}) (Version: 1.0.6.1 - Hewlett-Packard Company)
iTunes (HKLM\...\{645877C4-2AB6-46B6-BD32-B251B0666F63}) (Version: 12.9.0.167 - Apple Inc.)
Java 8 Update 181 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
Maintenance Samsung ML-2525W Series (HKLM-x32\...\Samsung ML-2525W Series) (Version: - Samsung Electronics CO.,LTD)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 62.0 (x64 en-US) (HKLM\...\Mozilla Firefox 62.0 (x64 en-US)) (Version: 62.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 62.0.0.6816 - Mozilla)
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
Open Deployment (HKLM-x32\...\Open Deployment11.041.44) (Version: 11.041.44 - Media Codecs Interactive LLC)
OpenOffice 4.1.5 (HKLM-x32\...\{ABCAD346-4F4B-49E9-9AA1-28EF8C26059D}) (Version: 4.15.9789 - Apache Software Foundation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6937 - Realtek Semiconductor Corp.)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
Software Technical Support (HKLM-x32\...\Software Technical Support) (Version: - DOM)
Spotify (HKU\S-1-5-21-2773827278-2290244439-3328751544-1001\...\Spotify) (Version: 1.0.77.338.g758ebd78 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.6.1.3 - Synaptics Incorporated)
Update for Skype for Business 2015 (KB4092457) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{E37AFD2E-770B-4C2B-B82F-CE405CB26945}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4092457) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{E37AFD2E-770B-4C2B-B82F-CE405CB26945}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4092457) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{E37AFD2E-770B-4C2B-B82F-CE405CB26945}) (Version: - Microsoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.4 - VideoLAN)
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.3.17-3 - Wacom Technology Corp.)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2018-01-11] (Igor Pavlov)
ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2018-01-11] (Igor Pavlov)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2014-07-05] (Advanced Micro Devices, Inc.)
ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2018-01-11] (Igor Pavlov)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0AB24320-EC31-46CD-8C0E-301646BE55D6} - \AutoKMS -> No File <==== ATTENTION
Task: {0F4543E6-AEF0-4CDB-851E-7862B95CC069} - System32\Tasks\HDNINSTSCHD => C:\Windows\PCBHDNW\hdnInstaller.exe <==== ATTENTION
Task: {1F7881E2-15FF-4842-A0EA-DC146B6405EE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-07] (Google Inc.)
Task: {23971522-B7F1-4B7F-A13D-AC19285982E8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {266F1F9E-D4F7-49F6-B0E3-4BE073656A03} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_108_Plugin.exe [2018-09-12] (Adobe Systems Incorporated)
Task: {2AF3ACB9-9F82-41C0-B50B-6B3B57AB39DE} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2018-01-08] (Apple Inc.)
Task: {43E400A8-FDD9-4EAA-84CC-3F5240FB0C00} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-14] (Adobe Systems Incorporated)
Task: {590F62E2-D0D1-48FD-AC83-2BB6127BA642} - System32\Tasks\UPDTEXE4_WDR => C:\Program Files (x86)\Portable WeatherApp\updater.exe <==== ATTENTION
Task: {60BB8FC9-6AB0-4E70-ABEF-206A1DBBFF91} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {764C8D37-DAB4-430E-BCB3-7291B7DF60D1} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-05-17] (Synaptics Incorporated)
Task: {8800E1E0-BFA7-47C9-B1D7-7845C463CECE} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-06-07] (Realtek Semiconductor)
Task: {993E9F91-A662-4152-B8EC-014BF677AA3A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-09-12] (Adobe Systems Incorporated)
Task: {A86BB548-31EA-44F2-8E60-C829E07BB825} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-07] (Google Inc.)
Task: {B8F35A16-63CE-4C28-BCC4-1D4ECB910CCD} - System32\Tasks\IE_ERR4WDR => C:\Program Files (x86)\Portable WeatherApp\IEError.exe <==== ATTENTION
Task: {E8286099-F72C-4FFD-BD86-522494F2DB32} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2014-01-29 12:57 - 2009-07-17 20:40 - 000027648 _____ () C:\WINDOWS\System32\ssp6ml6.dll
2014-01-29 12:57 - 2009-09-09 17:57 - 000743936 _____ () C:\WINDOWS\system32\spool\DRIVERS\x64\3\ssp6mdu.dll
2014-07-05 16:33 - 2014-07-05 16:33 - 000127488 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2017-11-30 17:54 - 2017-11-30 17:54 - 000088888 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2018-08-22 22:18 - 2018-08-22 22:18 - 001356088 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-01-21 15:18 - 2016-07-15 08:45 - 001661392 _____ () C:\Program Files\Tablet\Wacom\libxml2.dll
2017-02-23 08:29 - 2017-02-23 08:29 - 008909512 _____ () C:\Program Files\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2018-08-28 10:46 - 2018-08-28 10:46 - 000088888 _____ () C:\Program Files\iTunes\zlib1.dll
2018-08-28 10:46 - 2018-08-28 10:46 - 001356088 _____ () C:\Program Files\iTunes\libxml2.dll
2014-01-29 12:55 - 2009-08-28 23:37 - 000614400 _____ () C:\Windows\Samsung\PanelMgr\SSMMgr.exe
2014-01-29 12:56 - 2009-07-16 18:24 - 000306688 _____ () C:\Windows\Samsung\PanelMgr\caller64.exe
2014-07-05 16:33 - 2014-07-05 16:33 - 000102400 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2018-09-21 01:50 - 2018-09-15 20:26 - 005110616 _____ () C:\Program Files (x86)\Google\Chrome\Application\69.0.3497.100\libglesv2.dll
2018-09-21 01:50 - 2018-09-15 20:26 - 000116056 _____ () C:\Program Files (x86)\Google\Chrome\Application\69.0.3497.100\libegl.dll
2016-11-12 19:08 - 2018-09-06 08:14 - 000876320 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2016-11-12 19:07 - 2016-09-01 13:02 - 004969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2016-11-12 19:07 - 2018-09-09 08:31 - 002646304 _____ () C:\Program Files (x86)\Steam\video.dll
2016-11-12 19:07 - 2016-09-01 13:02 - 001563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2016-11-12 19:07 - 2016-09-01 13:02 - 001195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2017-12-14 22:33 - 2017-12-20 13:43 - 005137696 _____ () C:\Program Files (x86)\Steam\libavcodec-57.dll
2017-12-14 22:33 - 2017-12-20 13:43 - 000695584 _____ () C:\Program Files (x86)\Steam\libavformat-57.dll
2017-12-14 22:33 - 2017-12-20 13:43 - 000351520 _____ () C:\Program Files (x86)\Steam\libavresample-3.dll
2017-12-14 22:33 - 2017-12-20 13:43 - 000847136 _____ () C:\Program Files (x86)\Steam\libavutil-55.dll
2017-12-14 22:33 - 2017-12-20 13:43 - 000783648 _____ () C:\Program Files (x86)\Steam\libswscale-4.dll
2016-11-12 19:07 - 2018-09-09 08:31 - 001015584 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-11-12 19:06 - 2016-07-05 10:17 - 000266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2017-07-08 15:34 - 2018-09-06 08:14 - 000876320 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\SDL2.dll
2017-01-01 14:04 - 2018-08-28 08:52 - 083524896 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
2017-07-11 15:10 - 2018-08-28 08:52 - 002253600 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\swiftshader\libglesv2.dll
2017-07-11 15:09 - 2018-08-28 08:52 - 000109856 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\swiftshader\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\Penny\Documents\Adware Removal Tool by TSA(1).exe:BDU [0]
AlternateDataStreams: C:\Users\Penny\Documents\Adware Removal Tool by TSA.exe:BDU [0]
AlternateDataStreams: C:\Users\Penny\Documents\HousecallLauncher.exe:BDU [0]
AlternateDataStreams: C:\Users\Penny\Documents\HousecallLauncher64.exe:BDU [0]
AlternateDataStreams: C:\Users\Penny\Documents\Mozilla-Firefox_54.0.1.exe:AGC [0]
AlternateDataStreams: C:\Users\Penny\Documents\Mozilla-Firefox_54.0.1.exe:BDU [0]
AlternateDataStreams: C:\Users\Penny\Documents\NASA%u2019s-Eyes_1.0.exe:BDU [0]
AlternateDataStreams: C:\Users\Penny\Documents\vlc-2.2.6-win32.exe:BDU [0]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-23 01:25 - 2013-08-23 01:25 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2773827278-2290244439-3328751544-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Penny\Documents\8d62fdde3291f05219e3f8cf71baeb94.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
HKLM\...\StartupApproved\Run32: => "Cloud PC Defender"
HKU\S-1-5-21-2773827278-2290244439-3328751544-1001\...\StartupApproved\Run: => "Diagnostics"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{BBC9BA4E-3033-455C-B062-EC21C9BC795E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{31C430C2-F0A7-4AAD-B5EF-5DF58FEEB969}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{1DE700BD-7CE8-4AE1-8162-0071701A9EF8}] => (Allow) C:\Program Files (x86)\Cloud PC Defender\AntivirusUpdater.exe
FirewallRules: [{713DEF9A-DB88-4525-9350-5A92C5DA7B86}] => (Allow) C:\Program Files (x86)\Cloud PC Defender\AntivirusUpdater.exe
FirewallRules: [{77649E7A-403C-49A8-A0C5-42F65A808994}] => (Allow) C:\Program Files (x86)\Cloud PC Defender\CloudPCDefender.exe
FirewallRules: [{9E8E79DA-73E5-4105-8546-2E6A2224420A}] => (Allow) C:\Program Files (x86)\Cloud PC Defender\CloudPCDefender.exe
FirewallRules: [UDP Query User{06A7C962-FE04-40FF-82D6-018D893DF4E4}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{81E065F5-FCCD-44D5-B39B-3D04E54F8AE3}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{54724411-84B1-40FB-9E14-54311D6D6790}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{DC3FB69D-8E41-4E8E-AC21-01221A18D8FB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [UDP Query User{E162CE3A-57D1-4A79-998A-CF3B0AF032A0}C:\users\penny\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\penny\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{4B29880A-79D4-461E-8EC6-40E242E15FD4}C:\users\penny\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\penny\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{B57694DC-1E1A-476F-8D2D-1745119B9550}C:\users\penny\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\penny\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{C22C3E8F-F6B9-491F-8FD7-DFED5DC84AEC}C:\users\penny\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\penny\appdata\roaming\spotify\spotify.exe
FirewallRules: [{DA5A35A9-4C60-46F2-827D-BBF2B97FDA6F}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{C53CE279-A71A-482D-A293-3537CFF55FB7}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{7A4EEF2E-938D-4F40-9F8E-54FBF160CA88}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{083284ED-E780-4509-9912-B3F596A0CFA4}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [UDP Query User{F2CB3D41-361D-46A4-870C-657B3637CF43}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [TCP Query User{81DF02EE-7F85-4C8A-ABAA-0499058DF701}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [{5393EC3B-6023-4D76-BF67-8F11155613AE}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{64FDD0D7-E18F-4D4A-8A52-2056A241E635}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{17EB07EA-D149-4F90-AA60-EDC7EDE7C236}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{35E1ED5B-5984-4D19-8465-E3AF8EC9D871}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{63DF724D-8DA7-44AA-8E02-018422E656EA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{0623499C-5E46-4610-AD82-4F05CADC568A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{4E6A3A93-D596-4B3A-B8B5-DED142332E2A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{EFEA6EA4-62EF-4964-9A49-A5900E243A26}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{351C6B9C-B5C3-466C-8F4C-1D04112C4D61}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Magic Duels\MagicDuels.exe
FirewallRules: [{0025080F-8995-4D6B-9E86-A30BABF1DB32}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Magic Duels\MagicDuels.exe
FirewallRules: [{9816B1D5-4663-4D77-8B37-2B9F340103CE}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{F41A381F-CC29-4D8C-A790-4D1D966654C9}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{199DC97A-73DE-42A4-9651-D02C2259E987}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{E4ADB67D-73F1-454A-82E9-F430C1B0B51A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{D39281F6-2910-498F-9721-725188524CE6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Deadlock\deadlock.exe
FirewallRules: [{3B32E0DE-C96C-48B0-B874-EB7CC3D29903}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Deadlock\deadlock.exe
FirewallRules: [{ACCF3177-1EDC-4E15-85EC-BCD64A324C86}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{4F834759-2E95-41E7-9ACE-6D0ACC93D46D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{65864EBA-305C-4B07-BDDD-9CB90B97BCED}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Magic Duels\MagicDuels.exe
FirewallRules: [{6F5CCE00-C74D-4F36-AC17-8EC248C3BC1D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Magic Duels\MagicDuels.exe
FirewallRules: [{CCC0834C-2B03-4811-9CCF-D9836F93878B}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
FirewallRules: [TCP Query User{31766F5C-F7D0-487D-81CE-3B77C5187FCA}C:\program files (x86)\java\jre1.8.0_151\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_151\bin\javaw.exe
FirewallRules: [UDP Query User{45F39B8B-F3AF-4CFC-827D-21ACF19704F9}C:\program files (x86)\java\jre1.8.0_151\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_151\bin\javaw.exe
FirewallRules: [{383568D1-2D4A-47C0-827A-10E3C24895AA}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{665FD4B8-E138-4A34-A235-07DC4CECFDB7}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Restore Points =========================
01-09-2018 18:21:16 Scheduled Checkpoint
09-09-2018 03:28:34 Windows Update
14-09-2018 16:08:17 Windows Update
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (09/23/2018 02:06:58 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0
Error: (09/23/2018 01:57:28 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0x8007007B
Command-line arguments:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (09/23/2018 01:56:49 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3593062
Error: (09/23/2018 01:56:49 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3593062
Error: (09/23/2018 01:56:49 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (09/22/2018 11:07:29 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0x8007007B
Command-line arguments:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (09/22/2018 11:07:28 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0x8007007B
Command-line arguments:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (09/22/2018 10:19:34 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 17563
System errors:
=============
Error: (09/23/2018 12:50:16 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x8024001e: Definition Update for Windows Defender Antivirus - KB2267602 (Definition 1.275.1668.0).
Error: (09/22/2018 11:26:14 PM) (Source: DCOM) (EventID: 10010) (User: JOANNE)
Description: The server {1B1F472E-3221-4826-97DB-2C2324D389AE} did not register with DCOM within the required timeout.
Error: (09/22/2018 11:25:44 PM) (Source: DCOM) (EventID: 10010) (User: JOANNE)
Description: The server {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} did not register with DCOM within the required timeout.
Error: (09/22/2018 05:25:48 PM) (Source: DCOM) (EventID: 10010) (User: JOANNE)
Description: The server {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} did not register with DCOM within the required timeout.
Error: (09/22/2018 05:25:23 PM) (Source: DCOM) (EventID: 10010) (User: JOANNE)
Description: The server {1B1F472E-3221-4826-97DB-2C2324D389AE} did not register with DCOM within the required timeout.
Error: (09/22/2018 04:38:01 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 3:52:31 AM on 9/22/2018 was unexpected.
Error: (09/22/2018 03:52:31 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 3:47:20 AM on 9/22/2018 was unexpected.
Error: (09/22/2018 03:47:20 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 3:39:42 AM on 9/22/2018 was unexpected.
Windows Defender:
===================================
Date: 2018-09-23 00:09:10.345
Description:
Windows Defender scan has been stopped before completion.
Scan ID: {F35D5059-6031-4BE6-AC9B-6F1267449A1B}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2018-09-22 17:25:28.652
Description:
Windows Defender scan has been stopped before completion.
Scan ID: {3622129E-5B27-4BD9-BFF3-B25E06836C04}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2018-09-21 04:28:45.990
Description:
Windows Defender scan has been stopped before completion.
Scan ID: {621F4008-1A8D-49FA-8A55-631AB96F1C33}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2018-09-20 03:16:08.254
Description:
Windows Defender scan has been stopped before completion.
Scan ID: {32F50630-0D03-4F63-AE06-AA4D75701E3D}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2018-09-20 01:36:19.068
Description:
Windows Defender scan has been stopped before completion.
Scan ID: {0AC8E369-29DC-44C9-9B98-1FAF2848B654}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2018-09-21 03:04:54.630
Description:
Windows Defender has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.275.1478.0
Update Source: Microsoft Malware Protection Center
Signature Type: AntiSpyware
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.15200.1
Error code: 0x80070652
Error description: Another installation is already in progress. Complete that installation before proceeding with this install.
Date: 2018-09-21 03:04:54.630
Description:
Windows Defender has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.275.1478.0
Update Source: Microsoft Malware Protection Center
Signature Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.15200.1
Error code: 0x80070652
Error description: Another installation is already in progress. Complete that installation before proceeding with this install.
Date: 2018-09-21 03:04:47.873
Description:
Windows Defender has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version:
Update Source: User
Signature Type:
Update Type:
Current Engine Version:
Previous Engine Version:
Error code: 0x80070652
Error description: Another installation is already in progress. Complete that installation before proceeding with this install.
Date: 2018-09-21 03:04:47.831
Description:
Windows Defender has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version:
Update Source: User
Signature Type:
Update Type:
Current Engine Version:
Previous Engine Version:
Error code: 0x80070652
Error description: Another installation is already in progress. Complete that installation before proceeding with this install.
Date: 2018-09-21 03:03:58.057
Description:
Windows Defender has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.275.1478.0
Update Source: Microsoft Update Server
Signature Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.15200.1
Error code: 0x80240016
Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.
CodeIntegrity:
===================================
Date: 2018-09-23 02:24:59.066
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2018-09-23 02:24:56.286
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2018-09-23 02:24:52.447
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2018-09-23 02:24:49.609
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2018-09-23 02:17:11.749
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2018-09-23 02:17:08.860
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2018-09-23 02:17:04.507
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2018-09-23 02:17:00.571
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
Processor: AMD E-300 APU with Radeon HD Graphics
Percentage of memory in use: 57%
Total physical RAM: 3688.36 MB
Available physical RAM: 1581.21 MB
Total Virtual: 4456.36 MB
Available Virtual: 1874.58 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:297.75 GB) (Free:10 GB) NTFS
\\?\Volume{4ec08d64-7ff7-11e3-be65-806e6f6e6963}\ (System Reserved) (Fixed) (Total:0.34 GB) (Free:0.05 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: 6EB956DF)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=297.7 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================