Jump to content

MJT

Members
  • Posts

    9
  • Joined

  • Last visited

Reputation

0 Neutral
  1. I've never activated the guest profile so that is kind of strange! I did disable it.
  2. Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-06-2021 Ran by ME (administrator) on DESKTOP-73EV5MM (Hewlett-Packard HP Compaq Pro 6300 Small Form Factor PC) (24-06-2021 16:52:03) Running from C:\Users\ME\Downloads Loaded Profiles: ME Platform: Windows 10 Pro Version 20H2 19042.631 (X64) Language: English (United States) Default browser: Edge Boot Mode: Normal ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (APKPure Inc.) [File not signed] C:\Program Files (x86)\Pure APK Install\pureapkinstall.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MbamBgNativeMsg.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <37> (Microsoft Corporation -> Microsoft Corporation) C:\Users\ME\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxTsr.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11910.1002.5.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\NisSrv.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <13> ==================== Registry (Whitelisted) =================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe" ==================== Scheduled Tasks (Whitelisted) ============ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {1D0F4144-0763-4A29-A8FA-8B3FFC7E9B2A} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\ME\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe Task: {29CDE3AF-EAE5-433D-847D-C4CA183CA6E1} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [637368 2021-06-24] (Mozilla Corporation -> Mozilla Foundation) Task: {7445D17B-89AB-43F3-B904-4DD68B19A6F2} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask => "C:\Users\ME\Downloads\Firefox Setup 89.0.1.exe" 0 Task: {9A05E067-371B-44F3-9670-34DD82BE2987} - System32\Tasks\Event Viewer Tasks\Microsoft-Windows-Kernel-PnP_Configuration_Microsoft-Windows-Kernel-PnP_410 => C:\Users\ME\Downloads\esetonlinescanner(2).exe [11697056 2021-06-22] (ESET, spol. s r.o. -> ESET) Task: {BBED0EBA-0342-4BE0-9A03-6A3C6AC2E0E3} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\ME\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 192.168.254.254 207.91.5.20 Tcpip\..\Interfaces\{01daa49b-d6ef-44d7-9c77-9daf9cad552d}: [DhcpNameServer] 192.168.254.254 207.91.5.20 Tcpip\..\Interfaces\{dc960286-31b2-4b1e-8225-ccaf424aae1b}: [NameServer] 1.0.0.1 Tcpip\..\Interfaces\{dc960286-31b2-4b1e-8225-ccaf424aae1b}: [DhcpNameServer] 172.20.10.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\ME\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-24] Edge Notifications: Default -> hxxps://www.quora.com Edge Extension: (Malwarebytes Browser Guard) - C:\Users\ME\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-06-24] Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] FireFox: ======== FF DefaultProfile: d33dltwt.default FF ProfilePath: C:\Users\ME\AppData\Roaming\Mozilla\Firefox\Profiles\d33dltwt.default [2021-06-24] FF ProfilePath: C:\Users\ME\AppData\Roaming\Mozilla\Firefox\Profiles\qa8loi9v.default-release [2021-06-24] FF Notifications: Mozilla\Firefox\Profiles\qa8loi9v.default-release -> hxxps://mail.google.com; hxxps://alfred.camera FF Extension: (HTTPS Everywhere) - C:\Users\ME\AppData\Roaming\Mozilla\Firefox\Profiles\qa8loi9v.default-release\Extensions\https-everywhere@eff.org.xpi [2021-06-24] FF Extension: (Privacy Possum) - C:\Users\ME\AppData\Roaming\Mozilla\Firefox\Profiles\qa8loi9v.default-release\Extensions\woop-NoopscooPsnSXQ@jetpack.xpi [2021-06-24] FF Extension: (openHAB Controller) - C:\Users\ME\AppData\Roaming\Mozilla\Firefox\Profiles\qa8loi9v.default-release\Extensions\{0151cf35-6e3e-40a9-9d36-6225b649954f}.xpi [2021-06-24] Chrome: ======= CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] ==================== Services (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7391408 2021-06-17] (Malwarebytes Inc -> Malwarebytes) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5101992 2020-11-18] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2105.5-0\NisSrv.exe [2644776 2021-06-17] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2105.5-0\MsMpEng.exe [136656 2021-06-17] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [199128 2021-06-17] (Malwarebytes Inc -> Malwarebytes) R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [220752 2021-06-24] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [19912 2021-06-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [198888 2021-06-24] (Malwarebytes Inc -> Malwarebytes) R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [69016 2021-06-24] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-06-24] (Malwarebytes Inc -> Malwarebytes) R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [156880 2021-06-24] (Malwarebytes Inc -> Malwarebytes) S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [49568 2021-06-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [425184 2021-06-17] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [76000 2021-06-17] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One month (created) (Whitelisted) ========= (If an entry is included in the fixlist, the file/folder will be moved.) 2021-06-24 16:52 - 2021-06-24 16:52 - 002300416 _____ (Farbar) C:\Users\ME\Downloads\Unconfirmed 761340.crdownload 2021-06-24 16:52 - 2021-06-24 16:52 - 000156880 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys 2021-06-24 16:52 - 2021-06-24 16:52 - 000069016 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2021-06-24 16:52 - 2021-06-24 16:52 - 000000000 ____D C:\Users\ME\AppData\LocalLow\IGDump 2021-06-24 16:51 - 2021-06-24 16:51 - 002300416 _____ (Farbar) C:\Users\ME\Downloads\Unconfirmed 82532.crdownload 2021-06-24 16:51 - 2021-06-24 16:51 - 002300416 _____ (Farbar) C:\Users\ME\Downloads\Unconfirmed 454109.crdownload 2021-06-24 16:47 - 2021-06-24 16:47 - 002300416 _____ (Farbar) C:\Users\ME\Downloads\Unconfirmed 783872.crdownload 2021-06-24 16:47 - 2021-06-24 16:47 - 002300416 _____ (Farbar) C:\Users\ME\Downloads\FRST64 (6).exe 2021-06-24 16:44 - 2021-06-24 16:45 - 002300416 _____ (Farbar) C:\Users\ME\Downloads\FRST64 (4).exe 2021-06-24 16:41 - 2021-06-24 16:42 - 002300416 _____ (Farbar) C:\Users\ME\Downloads\FRST64 (3).exe 2021-06-24 16:00 - 2021-06-24 16:00 - 002529772 _____ C:\Users\ME\Downloads\Downloader by AFTVnews_v1.4.2_apkpure.com.apk 2021-06-24 16:00 - 2021-06-24 16:00 - 002529772 _____ C:\Users\ME\Downloads\Downloader by AFTVnews_v1.4.2_apkpure.com (1).apk 2021-06-24 15:56 - 2021-06-24 15:56 - 000001162 _____ C:\Users\Public\Desktop\Pure APK Install.lnk 2021-06-24 15:56 - 2021-06-24 15:56 - 000001162 _____ C:\ProgramData\Desktop\Pure APK Install.lnk 2021-06-24 15:56 - 2021-06-24 15:56 - 000000000 ____D C:\Users\ME\AppData\Roaming\apkpure 2021-06-24 15:56 - 2021-06-24 15:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pure APK Install 2021-06-24 15:56 - 2021-06-24 15:56 - 000000000 ____D C:\Program Files (x86)\Pure APK Install 2021-06-24 15:55 - 2021-06-24 15:55 - 016004588 _____ C:\Users\ME\Downloads\APKPure_v3.17.22_apkpure.com(2).apk 2021-06-24 15:55 - 2021-06-24 15:55 - 008445080 _____ (APKPure Inc.) C:\Users\ME\Downloads\Pure_APK_Install_setup.exe 2021-06-24 15:54 - 2021-06-24 15:54 - 015696971 _____ C:\Users\ME\Downloads\APKPure_v3.17.22_apkpure.com(1).apk 2021-06-24 15:53 - 2021-06-24 15:53 - 015696963 _____ C:\Users\ME\Downloads\APKPure_v3.17.22_apkpure.com.apk 2021-06-24 15:50 - 2021-06-24 15:50 - 002300416 _____ (Farbar) C:\Users\ME\Downloads\FRST64(2).exe 2021-06-24 08:39 - 2021-06-24 08:39 - 000000000 ___HD C:\$WinREAgent 2021-06-24 08:36 - 2021-06-24 08:36 - 000198888 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys 2021-06-24 08:33 - 2021-06-24 08:33 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2021-06-24 08:32 - 2021-06-24 08:32 - 000220752 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys 2021-06-24 07:26 - 2021-06-24 07:26 - 000125945 _____ C:\Users\ME\Downloads\swagger.json 2021-06-24 07:06 - 2021-06-24 07:06 - 000000000 ____D C:\Users\ME\Documents\git-https-push-action-master 2021-06-24 06:48 - 2021-06-24 06:48 - 000000206 _____ C:\Users\ME\Downloads\github-recovery-codes.txt 2021-06-24 05:25 - 2021-06-24 08:32 - 000248992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2021-06-24 05:09 - 2021-06-24 05:09 - 000010670 _____ C:\Users\ME\Downloads\Malwarebytes1.txt 2021-06-24 04:18 - 2021-06-24 04:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Metal Developer Tools 2021-06-24 04:18 - 2021-06-24 04:18 - 000000000 ____D C:\Program Files\Metal Developer Tools 2021-06-24 04:17 - 2021-06-24 05:29 - 4217849010 _____ C:\Users\ME\Downloads\Xcode_13_beta.xip 2021-06-24 04:14 - 2021-06-24 04:16 - 115508896 _____ C:\Users\ME\Downloads\Metal_Developer_Tools2.0betaWindows.exe 2021-06-24 03:35 - 2021-06-24 03:36 - 199511513 _____ C:\Users\ME\Downloads\openhab-addons-2.5.12(1).kar 2021-06-24 03:33 - 2021-06-24 03:34 - 199511513 _____ C:\Users\ME\Downloads\openhab-addons-2.5.12.kar 2021-06-24 03:24 - 2021-06-24 08:33 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2021-06-24 02:38 - 2021-06-24 02:38 - 000043435 _____ C:\Users\ME\Downloads\MTB.txt 2021-06-24 02:11 - 2021-06-24 07:06 - 000121604 _____ C:\Windows\ntbtlog.txt 2021-06-24 02:11 - 2021-06-24 02:11 - 000000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job 2021-06-24 01:50 - 2021-06-24 01:50 - 000892416 _____ (Farbar) C:\Users\ME\Downloads\MiniToolBox(2).exe 2021-06-24 01:03 - 2021-06-24 01:03 - 000892416 _____ (Farbar) C:\Users\ME\Downloads\MiniToolBox(1).exe 2021-06-24 00:39 - 2021-06-24 00:39 - 000892416 _____ (Farbar) C:\Users\ME\Downloads\MiniToolBox.exe 2021-06-23 20:50 - 2021-06-23 20:50 - 000000266 _____ C:\Users\ME\Desktop\eset.txt 2021-06-22 22:11 - 2021-06-22 22:11 - 000000000 ____D C:\Users\ME\Documents\Onboarding Docs - AMGEN 2021-06-22 21:56 - 2021-06-22 21:57 - 064215722 _____ C:\Users\ME\Downloads\PowerShell-7.1.3-win-arm64 (1).zip 2021-06-22 21:51 - 2021-06-22 21:52 - 000000000 ____D C:\Users\ME\Downloads\PowerShell-7.1.3-win-arm64 2021-06-22 21:51 - 2021-06-22 21:51 - 067749060 _____ C:\Users\ME\Downloads\powershell-7.1.3-1.centos.8.x86_64.rpm 2021-06-22 21:51 - 2021-06-22 21:51 - 064215722 _____ C:\Users\ME\Downloads\PowerShell-7.1.3-win-arm64.zip 2021-06-22 21:11 - 2021-06-22 21:11 - 000000000 ____D C:\Users\ME\AppData\Local\OneDrive 2021-06-22 21:03 - 2021-06-24 14:41 - 000004160 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{32376F03-DB95-4CEE-95C7-E802E6BAB3B9} 2021-06-22 20:59 - 2021-06-22 20:59 - 000000000 ____D C:\Users\ME\AppData\Roaming\Macromedia 2021-06-22 20:46 - 2021-06-23 20:50 - 000003846 _____ C:\Windows\system32\Tasks\EOSv3 Scheduler onLogOn 2021-06-22 20:46 - 2021-06-23 20:50 - 000003404 _____ C:\Windows\system32\Tasks\EOSv3 Scheduler onTime 2021-06-22 19:55 - 2021-06-22 19:56 - 000000000 ____D C:\Windows\system32\Tasks\Event Viewer Tasks 2021-06-22 19:00 - 2021-06-22 19:00 - 000003480 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-06-22 19:00 - 2021-06-22 19:00 - 000003356 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-06-22 18:13 - 2021-06-22 18:13 - 011697056 _____ (ESET) C:\Users\ME\Downloads\esetonlinescanner(2).exe 2021-06-22 18:10 - 2021-06-22 19:34 - 000000000 ____D C:\Users\ME\AppData\Local\CrashDumps 2021-06-22 18:03 - 2021-06-22 20:47 - 000001269 _____ C:\Users\ME\Desktop\ESET Online Scanner.lnk 2021-06-22 18:02 - 2021-06-22 20:47 - 000001375 _____ C:\Users\ME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk 2021-06-22 18:02 - 2021-06-22 18:02 - 000000000 ____D C:\Users\ME\AppData\Local\ESET 2021-06-22 18:00 - 2021-06-22 18:01 - 011697056 _____ (ESET) C:\Users\ME\Downloads\esetonlinescanner.exe 2021-06-22 18:00 - 2021-06-22 18:00 - 000003372 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-831043243-3806337707-2552470396-1001 2021-06-22 17:59 - 2021-06-22 18:01 - 011697056 _____ (ESET) C:\Users\ME\Downloads\esetonlinescanner(1).exe 2021-06-19 21:11 - 2021-06-19 21:11 - 000000112 ___SH C:\bootTel.dat 2021-06-19 19:42 - 2021-06-19 19:57 - 000022596 _____ C:\Users\ME\Downloads\Fixlog.txt 2021-06-19 19:41 - 2021-06-19 19:40 - 000001228 _____ C:\Users\ME\Desktop\fixlist.txt 2021-06-19 19:29 - 2021-06-19 19:35 - 002300416 _____ (Farbar) C:\Users\ME\Downloads\FRST64 (2).exe 2021-06-19 19:27 - 2021-06-19 19:27 - 000000000 ____D C:\Windows\system32\appmgmt 2021-06-18 21:15 - 2021-06-18 21:15 - 002300416 _____ (Farbar) C:\Users\ME\Downloads\FRST64(1).exe 2021-06-18 20:44 - 2021-06-18 20:44 - 011096992 _____ (McAfee, LLC.) C:\Users\ME\Downloads\MCPR.exe 2021-06-18 20:35 - 2021-06-18 20:35 - 000000000 ____D C:\Users\ME\AppData\Local\ElevatedDiagnostics 2021-06-18 14:23 - 2021-06-18 14:23 - 000766219 _____ C:\Users\ME\Desktop\download.jfif 2021-06-18 11:08 - 2021-06-19 19:57 - 000000000 ____D C:\Users\ME\AppData\LocalLow\Temp 2021-06-17 21:43 - 2021-06-24 08:34 - 000000000 ____D C:\ProgramData\Mozilla 2021-06-17 21:43 - 2021-06-24 08:33 - 000001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2021-06-17 21:43 - 2021-06-24 08:33 - 000000000 ____D C:\Users\ME\AppData\LocalLow\Mozilla 2021-06-17 21:43 - 2021-06-24 08:33 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2021-06-17 21:43 - 2021-06-24 02:30 - 000001216 _____ C:\Users\Public\Desktop\Firefox.lnk 2021-06-17 21:43 - 2021-06-24 02:30 - 000001216 _____ C:\ProgramData\Desktop\Firefox.lnk 2021-06-17 21:43 - 2021-06-17 21:43 - 000000000 ____D C:\Users\ME\AppData\Roaming\Mozilla 2021-06-17 21:43 - 2021-06-17 21:43 - 000000000 ____D C:\Users\ME\AppData\Local\Mozilla 2021-06-17 21:39 - 2021-06-17 21:41 - 054161336 _____ (Mozilla) C:\Users\ME\Downloads\Firefox Setup 89.0.1.exe 2021-06-17 21:26 - 2021-06-17 21:26 - 000333000 _____ (Mozilla) C:\Users\ME\Downloads\Firefox Installer.exe 2021-06-17 20:34 - 2021-06-17 20:34 - 000001227 _____ C:\Users\ME\Desktop\Malwarebytes scan log.txt 2021-06-17 20:28 - 2021-06-18 21:20 - 000022512 _____ C:\Users\ME\Downloads\Addition.txt 2021-06-17 20:27 - 2021-06-24 16:53 - 000009018 _____ C:\Users\ME\Downloads\FRST.txt 2021-06-17 20:25 - 2021-06-17 20:25 - 002300416 _____ (Farbar) C:\Users\ME\Downloads\FRST64 (1).exe 2021-06-17 20:20 - 2021-06-24 16:52 - 000000000 ____D C:\FRST 2021-06-17 20:19 - 2021-06-17 20:19 - 002424832 _____ (Farbar) C:\Users\ME\Downloads\FRST64.exe 2021-06-17 19:57 - 2021-06-17 19:57 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2021-06-17 19:57 - 2021-06-17 19:57 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2021-06-17 19:57 - 2021-06-17 19:57 - 000002021 _____ C:\ProgramData\Desktop\Malwarebytes.lnk 2021-06-17 19:57 - 2021-06-17 19:57 - 000000000 ____D C:\Users\ME\AppData\Local\mbam 2021-06-17 19:57 - 2021-06-17 19:56 - 000199128 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys 2021-06-17 19:57 - 2021-06-17 19:56 - 000019912 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys 2021-06-17 19:55 - 2021-06-17 19:55 - 002094168 _____ (Malwarebytes) C:\Users\ME\Downloads\MBSetup (1).exe 2021-06-17 19:54 - 2021-06-17 19:55 - 002094168 _____ (Malwarebytes) C:\Users\ME\Downloads\MBSetup.exe 2021-06-17 19:46 - 2021-06-19 19:28 - 000000000 ____D C:\ProgramData\Malwarebytes 2021-06-17 19:45 - 2021-06-19 21:12 - 000000000 ____D C:\Program Files\Malwarebytes 2021-06-17 19:44 - 2021-06-17 19:45 - 001218696 _____ (Malwarebytes) C:\Users\ME\Downloads\MBPrivacySetup.exe 2021-06-17 19:33 - 2021-06-17 19:33 - 000000000 ____D C:\Users\ME\AppData\Local\CEF 2021-06-17 19:31 - 2021-06-17 19:31 - 071159400 _____ (McAfee, LLC) C:\Users\ME\Downloads\McAfee_Installer_serial_S8WLyPkCwdD2MFD30g3Mbg2_key_affid_1383_akey.exe 2021-06-17 19:15 - 2021-06-17 19:15 - 000000000 ____D C:\Users\ME\AppData\Local\PeerDistRepub 2021-06-17 18:32 - 2021-06-17 19:36 - 000000000 ____D C:\Users\ME\AppData\Local\Google 2021-06-17 18:32 - 2021-06-17 19:36 - 000000000 ____D C:\Program Files (x86)\Google 2021-06-17 18:30 - 2021-06-17 18:31 - 001310832 _____ (Google LLC) C:\Users\ME\Downloads\ChromeSetup (1).exe 2021-06-17 18:27 - 2021-06-17 18:28 - 001310832 _____ (Google LLC) C:\Users\ME\Downloads\ChromeSetup.exe 2021-06-17 16:20 - 2021-06-19 13:12 - 000000000 ____D C:\Windows\Panther 2021-06-17 15:27 - 2021-06-17 15:27 - 000000000 _SHDL C:\Documents and Settings 2021-06-17 15:21 - 2021-06-24 08:31 - 000008192 ___SH C:\DumpStack.log.tmp 2021-06-17 13:01 - 2021-06-17 13:01 - 000000000 ____D C:\Users\ME\AppData\Local\Comms 2021-06-17 12:47 - 2021-06-22 19:51 - 000000000 ____D C:\Users\ME\AppData\Local\PlaceholderTileLogoFolder 2021-06-17 12:45 - 2021-06-22 18:00 - 000000000 ___RD C:\Users\ME\OneDrive 2021-06-17 12:43 - 2021-06-17 12:43 - 000000000 ____D C:\Users\ME\AppData\Local\Publishers 2021-06-17 12:42 - 2021-06-24 00:57 - 000000000 ____D C:\Users\ME\AppData\Local\Packages 2021-06-17 12:42 - 2021-06-22 21:19 - 000000000 ____D C:\Users\ME\AppData\Local\D3DSCache 2021-06-17 12:42 - 2021-06-17 12:43 - 000000000 ____D C:\Users\ME\AppData\Local\ConnectedDevicesPlatform 2021-06-17 12:42 - 2021-06-17 12:42 - 000000000 ___RD C:\Users\ME\3D Objects 2021-06-17 12:42 - 2021-06-17 12:42 - 000000000 ____D C:\Users\ME\AppData\Roaming\Adobe 2021-06-17 12:42 - 2021-06-17 12:42 - 000000000 ____D C:\Users\ME\AppData\Local\VirtualStore 2021-06-17 12:34 - 2021-06-22 18:00 - 000002354 _____ C:\Users\ME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-06-17 12:34 - 2021-06-18 20:35 - 000000000 ____D C:\Users\ME 2021-06-17 12:34 - 2021-06-17 12:34 - 000000020 ___SH C:\Users\ME\ntuser.ini 2021-06-17 12:29 - 2021-06-17 12:29 - 000000000 ____D C:\Windows\CSC ==================== One month (modified) ================== (If an entry is included in the fixlist, the file/folder will be moved.) 2021-06-24 16:44 - 2019-12-07 05:03 - 000032768 _____ C:\Windows\system32\config\ELAM 2021-06-24 15:16 - 2020-11-19 03:43 - 000000000 ____D C:\Windows\system32\SleepStudy 2021-06-24 11:02 - 2019-12-07 05:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-06-24 08:42 - 2019-12-07 05:14 - 000000000 ____D C:\Windows\AppReadiness 2021-06-24 08:36 - 2020-11-19 03:54 - 000795738 _____ C:\Windows\system32\PerfStringBackup.INI 2021-06-24 08:36 - 2019-12-07 05:13 - 000000000 ____D C:\Windows\INF 2021-06-24 08:31 - 2020-11-19 03:43 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2021-06-24 08:31 - 2019-12-07 05:03 - 000524288 _____ C:\Windows\system32\config\BBI 2021-06-24 01:02 - 2020-11-19 03:48 - 000000000 ____D C:\ProgramData\Packages 2021-06-24 01:02 - 2019-12-07 05:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-06-22 21:17 - 2019-12-07 05:14 - 000000000 ____D C:\Windows\system32\NDF 2021-06-22 19:52 - 2020-11-19 03:46 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-06-22 19:52 - 2020-11-19 03:46 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2021-06-22 19:52 - 2020-11-19 03:46 - 000002276 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk 2021-06-19 19:58 - 2019-12-07 05:03 - 000000000 ____D C:\Windows\CbsTemp 2021-06-17 19:57 - 2019-12-07 05:14 - 000000000 ___HD C:\Windows\ELAMBKUP 2021-06-17 16:20 - 2019-12-07 05:14 - 000028672 _____ C:\Windows\system32\config\BCD-Template 2021-06-17 15:23 - 2019-12-07 05:14 - 000000000 ___RD C:\Windows\PrintDialog 2021-06-17 15:23 - 2019-12-07 05:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2021-06-17 15:22 - 2020-11-19 03:43 - 000257824 _____ C:\Windows\system32\FNTCACHE.DAT 2021-06-17 14:47 - 2020-11-19 03:43 - 000000000 ____D C:\Windows\system32\Drivers\wd 2021-06-17 14:47 - 2019-12-07 05:14 - 000000000 ____D C:\Program Files\Windows Defender 2021-06-17 12:42 - 2020-11-19 03:48 - 000000000 __RHD C:\Users\Public\AccountPictures 2021-06-17 12:33 - 2019-12-07 05:14 - 000000000 ____D C:\ProgramData\USOPrivate 2021-06-17 12:30 - 2019-12-07 05:51 - 000000000 ____D C:\Windows\system32\FxsTmp 2021-06-17 12:29 - 2019-12-07 05:14 - 000000000 ____D C:\Windows\ServiceState ==================== SigCheck ============================ (There is no automatic fix for files that do not pass verification.) ==================== End of FRST.txt ======================== FRST.txt Addition.txt
  3. So there are a lot of devices listed that I do not use, nor added them to my computer. I believe someone still is accessing my computer remotely, if you are able to determine this to be true, could you please advise how to disable the network adapters created (if any) and how to disable Remote Desktop. I constantly change it and no sooner than I change it does it go back to the previous settings.Ive updated firewall, disabled UPnP and WPS off of the modem Admin settings and it just goes back to being enabled. When I try to log into my modem interface, AFTER Ive created a new password, it says that my password is incorrect and I have to reset the password. Question--If someone has the default admin password that is located on the side of the modem, how can I change that password altogether? Because anyone could reset the password easily if they have the default admin password, its just a revolving door
  4. MiniToolBox by Farbar Version: 17-06-2016 Ran by ME (administrator) on 24-06-2021 at 02:37:50 Running from "C:\Users\ME\Downloads" Microsoft Windows 10 Pro (X64) Model: HP Compaq Pro 6300 Small Form Factor PC Manufacturer: Hewlett-Packard Boot Mode: Network *************************************************************************** ========================= Flush DNS: =================================== Windows IP Configuration Successfully flushed the DNS Resolver Cache. ========================= IE Proxy Settings: ============================== Proxy is not enabled. No Proxy Server is set. "Reset IE Proxy Settings": IE Proxy Settings were reset. ========================= FF Proxy Settings: ============================== "Reset FF Proxy Settings": Firefox Proxy settings were reset. ========================= Hosts content: ================================= ========================= IP Configuration: ================================ Intel(R) 82579LM Gigabit Network Connection = Ethernet (Connected) # ---------------------------------- # IPv4 Configuration # ---------------------------------- pushd interface ipv4 reset set global icmpredirects=enabled set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled set interface interface="Local Area Connection* 9" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled set interface interface="Local Area Connection* 10" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled popd # End of IPv4 configuration Windows IP Configuration Host Name . . . . . . . . . . . . : DESKTOP-73EV5MM Primary Dns Suffix . . . . . . . : Node Type . . . . . . . . . . . . : Hybrid IP Routing Enabled. . . . . . . . : No WINS Proxy Enabled. . . . . . . . : No DNS Suffix Search List. . . . . . : Home Ethernet adapter Ethernet: Connection-specific DNS Suffix . : Home Description . . . . . . . . . . . : Intel(R) 82579LM Gigabit Network Connection Physical Address. . . . . . . . . : 6C-3B-E5-19-60-28 DHCP Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes IPv4 Address. . . . . . . . . . . : 192.168.254.64(Preferred) Subnet Mask . . . . . . . . . . . : 255.255.255.0 Lease Obtained. . . . . . . . . . : Thursday, June 24, 2021 2:11:29 AM Lease Expires . . . . . . . . . . : Friday, June 25, 2021 2:11:29 AM Default Gateway . . . . . . . . . : 192.168.254.254 DHCP Server . . . . . . . . . . . : 192.168.254.254 DNS Servers . . . . . . . . . . . : 192.168.254.254 207.91.5.20 NetBIOS over Tcpip. . . . . . . . : Enabled Server: UnKnown Address: 192.168.254.254 Name: google.com Addresses: 2607:f8b0:4002:c10::8a 2607:f8b0:4002:c10::8b 2607:f8b0:4002:c10::64 2607:f8b0:4002:c10::71 172.253.124.139 172.253.124.102 172.253.124.101 172.253.124.100 172.253.124.138 172.253.124.113 Pinging google.com [172.253.124.102] with 32 bytes of data: Reply from 172.253.124.102: bytes=32 time=32ms TTL=105 Reply from 172.253.124.102: bytes=32 time=32ms TTL=105 Ping statistics for 172.253.124.102: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 32ms, Maximum = 32ms, Average = 32ms Server: UnKnown Address: 192.168.254.254 Name: yahoo.com Addresses: 2001:4998:24:120d::1:0 2001:4998:124:1507::f000 2001:4998:124:1507::f001 2001:4998:44:3507::8000 2001:4998:24:120d::1:1 2001:4998:44:3507::8001 74.6.143.26 74.6.143.25 98.137.11.164 74.6.231.21 98.137.11.163 74.6.231.20 Pinging yahoo.com [74.6.143.25] with 32 bytes of data: Reply from 74.6.143.25: bytes=32 time=48ms TTL=49 Reply from 74.6.143.25: bytes=32 time=49ms TTL=49 Ping statistics for 74.6.143.25: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 48ms, Maximum = 49ms, Average = 48ms Pinging 127.0.0.1 with 32 bytes of data: Reply from 127.0.0.1: bytes=32 time<1ms TTL=128 Reply from 127.0.0.1: bytes=32 time<1ms TTL=128 Ping statistics for 127.0.0.1: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 0ms, Maximum = 0ms, Average = 0ms =========================================================================== Interface List 2...6c 3b e5 19 60 28 ......Intel(R) 82579LM Gigabit Network Connection 1...........................Software Loopback Interface 1 =========================================================================== IPv4 Route Table =========================================================================== Active Routes: Network Destination Netmask Gateway Interface Metric 0.0.0.0 0.0.0.0 192.168.254.254 192.168.254.64 25 127.0.0.0 255.0.0.0 On-link 127.0.0.1 331 127.0.0.1 255.255.255.255 On-link 127.0.0.1 331 127.255.255.255 255.255.255.255 On-link 127.0.0.1 331 192.168.254.0 255.255.255.0 On-link 192.168.254.64 281 192.168.254.64 255.255.255.255 On-link 192.168.254.64 281 192.168.254.255 255.255.255.255 On-link 192.168.254.64 281 224.0.0.0 240.0.0.0 On-link 127.0.0.1 331 224.0.0.0 240.0.0.0 On-link 192.168.254.64 281 255.255.255.255 255.255.255.255 On-link 127.0.0.1 331 255.255.255.255 255.255.255.255 On-link 192.168.254.64 281 =========================================================================== Persistent Routes: None IPv6 Route Table =========================================================================== Active Routes: If Metric Network Destination Gateway 1 331 ::1/128 On-link 1 331 ff00::/8 On-link =========================================================================== Persistent Routes: None ========================= Winsock entries ===================================== Catalog5 01 C:\Windows\SysWOW64\napinsp.dll [54784] (Microsoft Corporation) Catalog5 02 C:\Windows\SysWOW64\pnrpnsp.dll [70656] (Microsoft Corporation) Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [70656] (Microsoft Corporation) Catalog5 04 C:\Windows\SysWOW64\wshbth.dll [50688] (Microsoft Corporation) Catalog5 05 C:\Windows\SysWOW64\NLAapi.dll [71168] (Microsoft Corporation) Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [324416] (Microsoft Corporation) Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [34304] (Microsoft Corporation) Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [324416] (Microsoft Corporation) Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [324416] (Microsoft Corporation) Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [324416] (Microsoft Corporation) Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [324416] (Microsoft Corporation) Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [324416] (Microsoft Corporation) Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [324416] (Microsoft Corporation) Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [324416] (Microsoft Corporation) Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [324416] (Microsoft Corporation) Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [324416] (Microsoft Corporation) Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [324416] (Microsoft Corporation) Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [324416] (Microsoft Corporation) Catalog9 12 C:\Windows\SysWOW64\mswsock.dll [324416] (Microsoft Corporation) Catalog9 13 C:\Windows\SysWOW64\mswsock.dll [324416] (Microsoft Corporation) Catalog9 14 C:\Windows\SysWOW64\mswsock.dll [324416] (Microsoft Corporation) x64-Catalog5 01 C:\Windows\System32\napinsp.dll [70144] (Microsoft Corporation) x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [89088] (Microsoft Corporation) x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [89088] (Microsoft Corporation) x64-Catalog5 04 C:\Windows\System32\wshbth.dll [64000] (Microsoft Corporation) x64-Catalog5 05 C:\Windows\System32\NLAapi.dll [97280] (Microsoft Corporation) x64-Catalog5 06 C:\Windows\System32\mswsock.dll [418416] (Microsoft Corporation) x64-Catalog5 07 C:\Windows\System32\winrnr.dll [49152] (Microsoft Corporation) x64-Catalog9 01 C:\Windows\System32\mswsock.dll [418416] (Microsoft Corporation) x64-Catalog9 02 C:\Windows\System32\mswsock.dll [418416] (Microsoft Corporation) x64-Catalog9 03 C:\Windows\System32\mswsock.dll [418416] (Microsoft Corporation) x64-Catalog9 04 C:\Windows\System32\mswsock.dll [418416] (Microsoft Corporation) x64-Catalog9 05 C:\Windows\System32\mswsock.dll [418416] (Microsoft Corporation) x64-Catalog9 06 C:\Windows\System32\mswsock.dll [418416] (Microsoft Corporation) x64-Catalog9 07 C:\Windows\System32\mswsock.dll [418416] (Microsoft Corporation) x64-Catalog9 08 C:\Windows\System32\mswsock.dll [418416] (Microsoft Corporation) x64-Catalog9 09 C:\Windows\System32\mswsock.dll [418416] (Microsoft Corporation) x64-Catalog9 10 C:\Windows\System32\mswsock.dll [418416] (Microsoft Corporation) x64-Catalog9 11 C:\Windows\System32\mswsock.dll [418416] (Microsoft Corporation) x64-Catalog9 12 C:\Windows\System32\mswsock.dll [418416] (Microsoft Corporation) x64-Catalog9 13 C:\Windows\System32\mswsock.dll [418416] (Microsoft Corporation) x64-Catalog9 14 C:\Windows\System32\mswsock.dll [418416] (Microsoft Corporation) ========================= Event log errors: =============================== Application errors: ================== Error: (06/24/2021 12:37:08 AM) (Source: Software Protection Platform Service) (User: ) Description: License Activation (slui.exe) failed with the following error code: hr=0x800704CF Command-line arguments: RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=NetworkAvailable Error: (06/24/2021 12:37:07 AM) (Source: Software Protection Platform Service) (User: ) Description: License Activation (slui.exe) failed with the following error code: hr=0x800704CF Command-line arguments: RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=NetworkAvailable Error: (06/23/2021 09:42:03 PM) (Source: Firefox Default Browser Agent) (User: ) Description: 0x80072EE7 in IsAgentRemoteDisabledInternal:68 Error: (06/23/2021 09:42:03 PM) (Source: Firefox Default Browser Agent) (User: ) Description: ERROR - Error::WindowsError(12007) (HRESULT: 0x80072ee7) Error: (06/23/2021 09:25:12 PM) (Source: Software Protection Platform Service) (User: ) Description: License Activation (slui.exe) failed with the following error code: hr=0x800704CF Command-line arguments: RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=TimerEvent Error: (06/22/2021 11:55:34 PM) (Source: Application Hang) (User: ) Description: The program explorer.exe version 10.0.19041.610 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel. Process ID: 2e8c Start Time: 01d767cd6f3e7ea7 Termination Time: 0 Application Path: C:\Windows\explorer.exe Report Id: 396ab33d-b0eb-48f5-9822-bd18cc991f97 Faulting package full name: Faulting package-relative application ID: Hang type: explorer.exe0 Error: (06/22/2021 10:23:12 PM) (Source: Application Hang) (User: ) Description: The program msedge.exe version 91.0.864.54 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel. Process ID: 2d80 Start Time: 01d767d69993e384 Termination Time: 8 Application Path: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe Report Id: d606dbee-52a1-424f-a95c-2f3dc138da59 Faulting package full name: Faulting package-relative application ID: Hang type: msedge.exe0 Error: (06/22/2021 10:20:35 PM) (Source: Application Hang) (User: ) Description: The program msedge.exe version 91.0.864.54 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel. Process ID: 26b4 Start Time: 01d767d56d60167d Termination Time: 8 Application Path: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe Report Id: 1aa4385f-7876-43e8-9556-5b58a0d8f84c Faulting package full name: Faulting package-relative application ID: Hang type: msedge.exe0 Error: (06/22/2021 09:25:36 PM) (Source: Software Protection Platform Service) (User: ) Description: License Activation (slui.exe) failed with the following error code: hr=0x80072EE7 Command-line arguments: RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=NetworkAvailable Error: (06/22/2021 09:25:09 PM) (Source: Software Protection Platform Service) (User: ) Description: License Activation (slui.exe) failed with the following error code: hr=0x80072EE7 Command-line arguments: RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=NetworkAvailable System errors: ============= Error: (06/24/2021 02:38:32 AM) (Source: DCOM) (User: DESKTOP-73EV5MM) Description: 1084ShellHWDetectionUnavailable{DD522ACC-F821-461A-A407-50B198B896DC} Error: (06/24/2021 02:30:20 AM) (Source: DCOM) (User: DESKTOP-73EV5MM) Description: 1084ShellHWDetectionUnavailable{DD522ACC-F821-461A-A407-50B198B896DC} Error: (06/24/2021 02:30:17 AM) (Source: DCOM) (User: DESKTOP-73EV5MM) Description: 1084WSearchUnavailable{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} Error: (06/24/2021 02:30:14 AM) (Source: DCOM) (User: DESKTOP-73EV5MM) Description: 1084WSearchUnavailable{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} Error: (06/24/2021 02:30:14 AM) (Source: DCOM) (User: DESKTOP-73EV5MM) Description: 1084ShellHWDetectionUnavailable{DD522ACC-F821-461A-A407-50B198B896DC} Error: (06/24/2021 02:29:29 AM) (Source: DCOM) (User: DESKTOP-73EV5MM) Description: 1084ShellHWDetectionUnavailable{DD522ACC-F821-461A-A407-50B198B896DC} Error: (06/24/2021 02:29:23 AM) (Source: DCOM) (User: DESKTOP-73EV5MM) Description: 1084WSearchUnavailable{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} Error: (06/24/2021 02:29:23 AM) (Source: DCOM) (User: DESKTOP-73EV5MM) Description: 1084ShellHWDetectionUnavailable{DD522ACC-F821-461A-A407-50B198B896DC} Error: (06/24/2021 02:29:18 AM) (Source: DCOM) (User: DESKTOP-73EV5MM) Description: 1084ShellHWDetectionUnavailable{DD522ACC-F821-461A-A407-50B198B896DC} Error: (06/24/2021 02:29:00 AM) (Source: DCOM) (User: DESKTOP-73EV5MM) Description: 1084ShellHWDetectionUnavailable{DD522ACC-F821-461A-A407-50B198B896DC} Microsoft Office Sessions: ========================= Error: (06/24/2021 12:37:08 AM) (Source: Software Protection Platform Service)(User: ) Description: hr=0x800704CFRuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=NetworkAvailable Error: (06/24/2021 12:37:07 AM) (Source: Software Protection Platform Service)(User: ) Description: hr=0x800704CFRuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=NetworkAvailable Error: (06/23/2021 09:42:03 PM) (Source: Firefox Default Browser Agent)(User: ) Description: 0x80072EE7 in IsAgentRemoteDisabledInternal:68 Error: (06/23/2021 09:42:03 PM) (Source: Firefox Default Browser Agent)(User: ) Description: ERROR - Error::WindowsError(12007) (HRESULT: 0x80072ee7) Error: (06/23/2021 09:25:12 PM) (Source: Software Protection Platform Service)(User: ) Description: hr=0x800704CFRuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=TimerEvent Error: (06/22/2021 11:55:34 PM) (Source: Application Hang)(User: ) Description: explorer.exe10.0.19041.6102e8c01d767cd6f3e7ea70C:\Windows\explorer.exe396ab33d-b0eb-48f5-9822-bd18cc991f97Unknown Error: (06/22/2021 10:23:12 PM) (Source: Application Hang)(User: ) Description: msedge.exe91.0.864.542d8001d767d69993e3848C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exed606dbee-52a1-424f-a95c-2f3dc138da59Cross-thread Error: (06/22/2021 10:20:35 PM) (Source: Application Hang)(User: ) Description: msedge.exe91.0.864.5426b401d767d56d60167d8C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe1aa4385f-7876-43e8-9556-5b58a0d8f84cCross-thread Error: (06/22/2021 09:25:36 PM) (Source: Software Protection Platform Service)(User: ) Description: hr=0x80072EE7RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=NetworkAvailable Error: (06/22/2021 09:25:09 PM) (Source: Software Protection Platform Service)(User: ) Description: hr=0x80072EE7RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=NetworkAvailable CodeIntegrity Errors: =================================== Date: 2021-06-19 21:14:20.1500000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2021-06-19 21:14:20.1310000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2021-06-18 20:38:41.2200000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2021-06-18 20:38:41.2020000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2021-06-18 01:09:17.2420000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2021-06-18 01:09:17.2240000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. =========================== Installed Programs ============================ Malwarebytes version 4.4.0.117 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.0.117 - Malwarebytes) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 91.0.864.54 - Microsoft Corporation) Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.143.57 - ) Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 21.109.0530.0001 - Microsoft Corporation) Mozilla Firefox 89.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 89.0.1 (x86 en-US)) (Version: 89.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 89.0.1 - Mozilla) ========================= Devices: ================================ Name: Motherboard resources Description: Motherboard resources Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\INT3F0D\4&3B9AC3D4&0 Name: USB Input Device Description: USB Input Device Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da} Manufacturer: (Standard system devices) Service: HidUsb Device ID: USB\VID_1A81&PID_1015\5&17BDE8D1&0&1 Name: Speakers (2- High Definition Audio Device) Description: Audio Endpoint Class Guid: {c166523c-fe0c-4a94-a586-f1a80cfbbf3e} Manufacturer: Microsoft Service: Device ID: SWD\MMDEVAPI\{0.0.0.00000000}.{9EC4CBC4-1907-4859-85BB-B72FA750267B} Name: System board Description: System board Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0C01\1 Name: System board Description: System board Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0C01\2 Name: Motherboard resources Description: Motherboard resources Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0C02\1 Name: Motherboard resources Description: Motherboard resources Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0C02\2 Name: Motherboard resources Description: Motherboard resources Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0C02\5 Name: SM Bus Controller Description: SM Bus Controller Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Service: Device ID: PCI\VEN_8086&DEV_1E22&SUBSYS_339A103C&REV_04\3&11583659&0&FB Name: USB Input Device Description: USB Input Device Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da} Manufacturer: (Standard system devices) Service: HidUsb Device ID: USB\VID_1C4F&PID_0002&MI_00\7&335498DD&0&0000 Name: ACPI Fan Description: ACPI Fan Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0C0B\0 Name: ACPI Fan Description: ACPI Fan Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0C0B\1 Name: ACPI Fan Description: ACPI Fan Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0C0B\2 Name: ACPI Fan Description: ACPI Fan Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0C0B\3 Name: ACPI Fan Description: ACPI Fan Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0C0B\4 Name: Direct memory access controller Description: Direct memory access controller Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0200\4&3B9AC3D4&0 Name: USB Root Hub Description: USB Root Hub Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: (Standard USB Host Controller) Service: usbhub Device ID: USB\ROOT_HUB20\4&29EEA675&0 Name: Generic PnP Monitor Description: Generic PnP Monitor Class Guid: {4d36e96e-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard monitor types) Service: monitor Device ID: DISPLAY\SPT099D\1&8713BCA&0&UID0 Name: PCI-to-PCI Bridge Description: PCI-to-PCI Bridge Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: pci Device ID: PCI\VEN_8086&DEV_244E&SUBSYS_339A103C&REV_A4\3&11583659&0&F0 Name: hp CDDVDW SH-216ALN Description: CD-ROM Drive Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard CD-ROM drives) Service: cdrom Device ID: SCSI\CDROM&VEN_HP&PROD_CDDVDW_SH-216ALN\4&181AA5B9&0&000000 Name: HID-compliant vendor-defined device Description: HID-compliant vendor-defined device Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da} Manufacturer: (Standard system devices) Service: Device ID: HID\VID_1A81&PID_1015&COL06\6&15199A2&0&0005 Name: Speakers (2- High Definition Audio Device) Description: Audio Endpoint Class Guid: {c166523c-fe0c-4a94-a586-f1a80cfbbf3e} Manufacturer: Microsoft Service: Device ID: SWD\MMDEVAPI\{0.0.0.00000000}.{0D3EDBA7-B7BB-429E-B8D7-23F3098755E5} Name: Volume Manager Description: Volume Manager Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: volmgr Device ID: ROOT\VOLMGR\0000 Name: HID-compliant vendor-defined device Description: HID-compliant vendor-defined device Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da} Manufacturer: (Standard system devices) Service: Device ID: HID\VID_1A81&PID_1015&COL05\6&15199A2&0&0004 Name: USB Root Hub (USB 3.0) Description: USB Root Hub (USB 3.0) Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: (Standard USB HUBs) Service: USBHUB3 Device ID: USB\ROOT_HUB30\4&7A756BC&0&0 Name: HID-compliant system controller Description: HID-compliant system controller Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da} Manufacturer: (Standard system devices) Service: Device ID: HID\VID_1A81&PID_1015&COL04\6&15199A2&0&0003 Name: HID-compliant consumer control device Description: HID-compliant consumer control device Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da} Manufacturer: Microsoft Service: Device ID: HID\VID_1A81&PID_1015&COL03\6&15199A2&0&0002 Name: Microsoft Basic Display Driver Description: Microsoft Basic Display Driver Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard display types) Service: BasicDisplay Device ID: ROOT\BASICDISPLAY\0000 Name: HID-compliant vendor-defined device Description: HID-compliant vendor-defined device Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da} Manufacturer: (Standard system devices) Service: Device ID: HID\VID_1A81&PID_1015&COL02\6&15199A2&0&0001 Name: Volume Description: Volume Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f} Manufacturer: Microsoft Service: volume Device ID: STORAGE\VOLUME\{31B5B9CF-CFA1-11EB-BA71-806E6F6E6963}#0000000000100000 Name: HID-compliant mouse Description: HID-compliant mouse Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: mouhid Device ID: HID\VID_1A81&PID_1015&COL01\6&15199A2&0&0000 Name: ACPI Thermal Zone Description: ACPI Thermal Zone Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\THERMALZONE\TZ00 Name: ACPI Thermal Zone Description: ACPI Thermal Zone Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\THERMALZONE\TZ01 Name: Microsoft Windows Management Interface for ACPI Description: Microsoft Windows Management Interface for ACPI Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: WmiAcpi Device ID: ACPI\PNP0C14\0 Name: Standard SATA AHCI Controller Description: Standard SATA AHCI Controller Class Guid: {4d36e96a-e325-11ce-bfc1-08002be10318} Manufacturer: Standard SATA AHCI Controller Service: storahci Device ID: PCI\VEN_8086&DEV_1E02&SUBSYS_339A103C&REV_04\3&11583659&0&FA Name: Generic USB Hub Description: Generic USB Hub Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: (Generic USB Hub) Service: usbhub Device ID: USB\VID_8087&PID_0024\5&9FEB08A&0&1 Name: ST500DM002-1BD142 Description: Disk drive Class Guid: {4d36e967-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard disk drives) Service: disk Device ID: SCSI\DISK&VEN_&PROD_ST500DM002-1BD14\4&181AA5B9&0&010000 Name: Microsoft Hyper-V Virtualization Infrastructure Driver Description: Microsoft Hyper-V Virtualization Infrastructure Driver Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: Vid Device ID: ROOT\VID\0000 Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31) Resolution: Update the driver Name: USB Input Device Description: USB Input Device Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da} Manufacturer: (Standard system devices) Service: HidUsb Device ID: USB\VID_1C4F&PID_0002&MI_01\7&335498DD&0&0001 Name: High precision event timer Description: High precision event timer Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0103\0 Name: Numeric data processor Description: Numeric data processor Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0C04\4&3B9AC3D4&0 Name: Composite Bus Enumerator Description: Composite Bus Enumerator Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: CompositeBus Device ID: ROOT\COMPOSITEBUS\0000 Name: Microsoft Virtual Drive Enumerator Description: Microsoft Virtual Drive Enumerator Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: vdrvroot Device ID: ROOT\VDRVROOT\0000 Name: Microsoft Storage Spaces Controller Description: Microsoft Storage Spaces Controller Class Guid: {4d36e97b-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: spaceport Device ID: ROOT\SPACEPORT\0000 Name: Communications Port (COM1) Description: Communications Port Class Guid: {4d36e978-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard port types) Service: Serial Device ID: ACPI\PNP0501\1 Name: Generic volume shadow copy Description: Generic volume shadow copy Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf} Manufacturer: Microsoft Service: Device ID: STORAGE\VOLUMESNAPSHOT\HARDDISKVOLUMESNAPSHOT1 Name: Generic volume shadow copy Description: Generic volume shadow copy Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf} Manufacturer: Microsoft Service: Device ID: STORAGE\VOLUMESNAPSHOT\HARDDISKVOLUMESNAPSHOT2 Name: Generic volume shadow copy Description: Generic volume shadow copy Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf} Manufacturer: Microsoft Service: Device ID: STORAGE\VOLUMESNAPSHOT\HARDDISKVOLUMESNAPSHOT3 Name: Intel(R) 7 Series/C216 Chipset Family USB Enhanced Host Controller - 1E2D Description: Intel(R) 7 Series/C216 Chipset Family USB Enhanced Host Controller - 1E2D Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: Intel Service: usbehci Device ID: PCI\VEN_8086&DEV_1E2D&SUBSYS_339A103C&REV_04\3&11583659&0&D0 Name: Legacy device Description: Legacy device Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Service: Device ID: ACPI\INT0800\4&3B9AC3D4&0 Name: UMBus Root Bus Enumerator Description: UMBus Root Bus Enumerator Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: umbus Device ID: ROOT\UMBUS\0000 Name: HID-compliant consumer control device Description: HID-compliant consumer control device Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da} Manufacturer: Microsoft Service: Device ID: HID\VID_1C4F&PID_0002&MI_01&COL01\8&2948BF4D&0&0000 Name: Microsoft PS/2 Mouse Description: Microsoft PS/2 Mouse Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: i8042prt Device ID: ACPI\PNP0F03\4&3B9AC3D4&0 Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: ACPI x64-based PC Description: ACPI x64-based PC Class Guid: {4d36e966-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard computers) Service: \Driver\ACPI_HAL Device ID: ROOT\ACPI_HAL\0000 Name: System timer Description: System timer Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0100\4&3B9AC3D4&0 Name: PCI Express Root Complex Description: PCI Express Root Complex Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: pci Device ID: ACPI\PNP0A08\0 Name: USB Composite Device Description: USB Composite Device Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: (Standard USB Host Controller) Service: usbccgp Device ID: USB\VID_1C4F&PID_0002\6&27C7CE02&0&6 Name: Microsoft ACPI-Compliant System Description: Microsoft ACPI-Compliant System Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: ACPI Device ID: ACPI_HAL\PNP0C08\0 Name: Description: Class Guid: Manufacturer: Service: Device ID: HTREE\ROOT\0 Name: Intel(R) 7 Series/C216 Chipset Family USB Enhanced Host Controller - 1E26 Description: Intel(R) 7 Series/C216 Chipset Family USB Enhanced Host Controller - 1E26 Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: Intel Service: usbehci Device ID: PCI\VEN_8086&DEV_1E26&SUBSYS_339A103C&REV_04\3&11583659&0&E8 Name: Microsoft Basic Render Driver Description: Microsoft Basic Render Driver Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: BasicRender Device ID: ROOT\BASICRENDER\0000 Name: Memory Controller Description: Memory Controller Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Service: Device ID: PCI\VEN_8086&DEV_0150&SUBSYS_339A103C&REV_09\3&11583659&0&00 Name: ACPI Fixed Feature Button Description: ACPI Fixed Feature Button Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\FIXEDBUTTON\2&DABA3FF&1 Name: LPC Controller Description: LPC Controller Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Service: msisadrv Device ID: PCI\VEN_8086&DEV_1E48&SUBSYS_339A103C&REV_04\3&11583659&0&F8 Name: USB Root Hub Description: USB Root Hub Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: (Standard USB Host Controller) Service: usbhub Device ID: USB\ROOT_HUB20\4&24E2292F&0 Name: HID-compliant system controller Description: HID-compliant system controller Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da} Manufacturer: (Standard system devices) Service: Device ID: HID\VID_1C4F&PID_0002&MI_01&COL02\8&2948BF4D&0&0001 Name: Motherboard resources Description: Motherboard resources Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0C02\10 Name: High Definition Audio Device Description: High Definition Audio Device Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: HdAudAddService Device ID: HDAUDIO\FUNC_01&VEN_8086&DEV_2806&SUBSYS_80860101&REV_1000\4&395DCBF0&0&0301 Name: Volume Description: Volume Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f} Manufacturer: Microsoft Service: volume Device ID: STORAGE\VOLUME\{31B5B9CF-CFA1-11EB-BA71-806E6F6E6963}#0000007431D00000 Name: High Definition Audio Device Description: High Definition Audio Device Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: HdAudAddService Device ID: HDAUDIO\FUNC_01&VEN_10EC&DEV_0221&SUBSYS_103C339A&REV_1000\4&395DCBF0&0&0001 Name: Intel(R) Core(TM) i5-3570 CPU @ 3.40GHz Description: Intel Processor Class Guid: {50127dc3-0f36-415e-a6cc-4cb3be910b65} Manufacturer: Intel Service: intelppm Device ID: ACPI\GENUINEINTEL_-_INTEL64_FAMILY_6_MODEL_58_-_________INTEL(R)_CORE(TM)_I5-3570_CPU_@_3.40GHZ\_1 Name: Intel(R) Core(TM) i5-3570 CPU @ 3.40GHz Description: Intel Processor Class Guid: {50127dc3-0f36-415e-a6cc-4cb3be910b65} Manufacturer: Intel Service: intelppm Device ID: ACPI\GENUINEINTEL_-_INTEL64_FAMILY_6_MODEL_58_-_________INTEL(R)_CORE(TM)_I5-3570_CPU_@_3.40GHZ\_2 Name: Intel(R) Core(TM) i5-3570 CPU @ 3.40GHz Description: Intel Processor Class Guid: {50127dc3-0f36-415e-a6cc-4cb3be910b65} Manufacturer: Intel Service: intelppm Device ID: ACPI\GENUINEINTEL_-_INTEL64_FAMILY_6_MODEL_58_-_________INTEL(R)_CORE(TM)_I5-3570_CPU_@_3.40GHZ\_3 Name: Intel(R) Core(TM) i5-3570 CPU @ 3.40GHz Description: Intel Processor Class Guid: {50127dc3-0f36-415e-a6cc-4cb3be910b65} Manufacturer: Intel Service: intelppm Device ID: ACPI\GENUINEINTEL_-_INTEL64_FAMILY_6_MODEL_58_-_________INTEL(R)_CORE(TM)_I5-3570_CPU_@_3.40GHZ\_4 Name: Microsoft GS Wavetable Synth Description: Generic software device Class Guid: {62f9c741-b25a-46ce-b54c-9bccce08b6f2} Manufacturer: Microsoft Service: Device ID: SWD\MMDEVAPI\MICROSOFTGSWAVETABLESYNTH Name: ACPI Power Button Description: ACPI Power Button Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0C0C\AA Name: High Definition Audio Controller Description: High Definition Audio Controller Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: HDAudBus Device ID: PCI\VEN_8086&DEV_1E20&SUBSYS_339A103C&REV_04\3&11583659&0&D8 Name: NDIS Virtual Network Adapter Enumerator Description: NDIS Virtual Network Adapter Enumerator Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: NdisVirtualBus Device ID: ROOT\NDISVIRTUALBUS\0000 Name: Intel(R) 82579LM Gigabit Network Connection Description: Intel(R) 82579LM Gigabit Network Connection Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Corporation Service: e1i65x64 Device ID: PCI\VEN_8086&DEV_1502&SUBSYS_339A103C&REV_04\3&11583659&0&C8 Name: Intel(R) USB 3.0 eXtensible Host Controller - 1.0 (Microsoft) Description: USB xHCI Compliant Host Controller Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: Generic USB xHCI Host Controller Service: USBXHCI Device ID: PCI\VEN_8086&DEV_1E31&SUBSYS_339A103C&REV_04\3&11583659&0&A0 Name: Motherboard resources Description: Motherboard resources Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0C02\111 Name: Volume Description: Volume Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f} Manufacturer: Microsoft Service: volume Device ID: STORAGE\VOLUME\{31B5B9CF-CFA1-11EB-BA71-806E6F6E6963}#0000000003300000 Name: Microsoft Basic Display Adapter Description: Microsoft Basic Display Adapter Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard display types) Service: BasicDisplay Device ID: PCI\VEN_8086&DEV_0152&SUBSYS_339A103C&REV_09\3&11583659&0&10 Name: Volume Description: Volume Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f} Manufacturer: Microsoft Service: volume Device ID: STORAGE\VOLUME\{31B5B9CF-CFA1-11EB-BA71-806E6F6E6963}#0000007451700000 Name: Generic USB Hub Description: Generic USB Hub Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: (Generic USB Hub) Service: usbhub Device ID: USB\VID_8087&PID_0024\5&9D195A3&0&1 Name: Microsoft System Management BIOS Driver Description: Microsoft System Management BIOS Driver Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: mssmbios Device ID: ROOT\MSSMBIOS\0000 Name: System CMOS/real time clock Description: System CMOS/real time clock Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0B00\4&3B9AC3D4&0 Name: Plug and Play Software Device Enumerator Description: Plug and Play Software Device Enumerator Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: swenum Device ID: ROOT\SYSTEM\0000 Name: Programmable interrupt controller Description: Programmable interrupt controller Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: Device ID: ACPI\PNP0000\4&3B9AC3D4&0 Name: Standard PS/2 Keyboard Description: Standard PS/2 Keyboard Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard keyboards) Service: i8042prt Device ID: ACPI\PNP0303\4&3B9AC3D4&0 Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Remote Desktop Device Redirector Bus Description: Remote Desktop Device Redirector Bus Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: rdpbus Device ID: ROOT\RDPBUS\0000 Name: HID Keyboard Device Description: HID Keyboard Device Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard keyboards) Service: kbdhid Device ID: HID\VID_1C4F&PID_0002&MI_00\8&571818B&0&0000 ========================= Memory info: =================================== Percentage of memory in use: 30% Total physical RAM: 8066.14 MB Available physical RAM: 5578.58 MB Total Virtual: 9346.14 MB Available Virtual: 7021.43 MB ========================= Partitions: ===================================== 1 Drive c: () (Fixed) (Total:464.73 GB) (Free:438.15 GB) NTFS ========================= Users: ======================================== User accounts for \\ Administrator DefaultAccount Guest ME WDAGUtilityAccount ========================= Minidump Files ================================== No minidump file found **** End of log **** MTB.txt
  5. hello, After I click Full Scan, I keep getting an error message stating that it failed to update and that the scanner is outdated . Any suggestions to fixing this issue? THanks!
  6. Logs removed by AdvancedSetup - reviewing them now.
  7. Hello, No, I didn't edit the logs before posting, and yes I have a 360 subscription with McAfee and T-mobile (free antivirus when i purchased my phone with T-mobile) I've had it running on my computer for a couple months, and my computer has always seemed to have a virus or some type of malware on it. My computer can be pretty slow a times, there's different tabs opening, I try to change settings on my computer and they never change for me. Even trying to perform a factory reset, The computer will go through the motions of resetting, however when it boots back up, i still see a lot of my information still stored. Yesterday, my computer kept flashing stating that McAfee found 5 viruses and that I needed to clean my computer. It would only do this in Chrome, so I uninstalled Chrome and McAfee. Now, I'm unable to download McAfee back to my computer, it says that I don't have an internet connection when it is trying to install when clearly, i have a strong, wired connection to my computer.
  8. Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09-06-2021 Ran by ME (administrator) on DESKTOP-73EV5MM (Hewlett-Packard HP Compaq Pro 6300 Small Form Factor PC) (17-06-2021 20:27:25) Running from C:\Users\ME\Downloads Loaded Profiles: ME Platform: Windows 10 Pro Version 20H2 19042.631 (X64) Language: English (United States) Default browser: Edge Boot Mode: Normal ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Privacy\MBVPNService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Privacy\UI\MBPrivacy.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <34> (Microsoft Corporation -> Microsoft Corporation) C:\Users\ME\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11910.1002.5.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.53.77.0_x64__kzf8qxf38zg5c\SkypeApp.exe (Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.53.77.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe Failed to access process -> mbam.exe ==================== Registry (Whitelisted) =================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKU\S-1-5-21-831043243-3806337707-2552470396-1001\...\Run: [Malwarebytes Privacy] => C:\Program Files\Malwarebytes\Privacy\UI\mbprivacy.exe [355024 2021-06-17] (Malwarebytes Inc -> Malwarebytes) HKU\S-1-5-21-831043243-3806337707-2552470396-1001\...\RunOnce: [Delete Cached Update Binary] => C:\Windows\system32\cmd.exe /q /c del /q "C:\Users\ME\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" HKU\S-1-5-21-831043243-3806337707-2552470396-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\Windows\system32\cmd.exe /q /c del /q "C:\Users\ME\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" ==================== Scheduled Tasks (Whitelisted) ============ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 192.168.254.254 207.91.5.20 Tcpip\..\Interfaces\{c6a3a7ec-b6f3-4532-852e-8e85d1456427}: [DhcpNameServer] 192.168.254.254 207.91.5.20 Edge: ======= Edge Profile: C:\Users\ME\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-17] Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] Chrome: ======= CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] ==================== Services (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7391408 2021-06-17] (Malwarebytes Inc -> Malwarebytes) R2 MBVpnService; C:\Program Files\Malwarebytes\Privacy\MBVpnService.exe [3525856 2021-06-17] (Malwarebytes Inc -> Malwarebytes) S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Privacy\MBVpnTunnelService.exe [2239304 2021-06-17] (Malwarebytes Inc -> Malwarebytes) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5101992 2020-11-18] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2105.5-0\NisSrv.exe [2644776 2021-06-17] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2105.5-0\MsMpEng.exe [136656 2021-06-17] (Microsoft Windows Publisher -> Microsoft Corporation) S3 mfefire; "C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe" [X] S2 mfemms; "C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe" [X] S3 mfevtp; no ImagePath ===================== Drivers (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed] R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [199128 2021-06-17] (Malwarebytes Inc -> Malwarebytes) R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [220752 2021-06-17] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [19912 2021-06-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [198888 2021-06-17] (Malwarebytes Inc -> Malwarebytes) R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [77496 2021-06-17] (Malwarebytes Inc -> Malwarebytes) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-06-17] (Malwarebytes Inc -> Malwarebytes) R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [156880 2021-06-17] (Malwarebytes Inc -> Malwarebytes) S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [49568 2021-06-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [425184 2021-06-17] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [76000 2021-06-17] (Microsoft Windows -> Microsoft Corporation) S0 cfwids; system32\drivers\cfwids.sys [X] R0 mfeaack; system32\drivers\mfeaack.sys [X] R0 mfeavfk; system32\drivers\mfeavfk.sys [X] S0 mfeelamk; system32\drivers\mfeelamk.sys [X] S0 mfefirek; system32\drivers\mfefirek.sys [X] R0 mfehidk; system32\drivers\mfehidk.sys [X] R0 mfeplk; system32\drivers\mfeplk.sys [X] S4 mfewfpk; system32\drivers\mfewfpk.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One month (created) (Whitelisted) ========= (If an entry is included in the fixlist, the file/folder will be moved.) 2021-06-17 20:27 - 2021-06-17 20:28 - 000007090 _____ C:\Users\ME\Downloads\FRST.txt 2021-06-17 20:25 - 2021-06-17 20:25 - 002300416 _____ (Farbar) C:\Users\ME\Downloads\FRST64 (1).exe 2021-06-17 20:20 - 2021-06-17 20:27 - 000000000 ____D C:\FRST 2021-06-17 20:19 - 2021-06-17 20:19 - 002424832 _____ (Farbar) C:\Users\ME\Downloads\FRST64.exe 2021-06-17 20:02 - 2021-06-17 20:02 - 000077496 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2021-06-17 19:59 - 2021-06-17 19:59 - 000198888 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys 2021-06-17 19:59 - 2021-06-17 19:59 - 000156880 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys 2021-06-17 19:57 - 2021-06-17 19:57 - 000248992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2021-06-17 19:57 - 2021-06-17 19:57 - 000220752 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys 2021-06-17 19:57 - 2021-06-17 19:57 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2021-06-17 19:57 - 2021-06-17 19:57 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2021-06-17 19:57 - 2021-06-17 19:57 - 000002021 _____ C:\ProgramData\Desktop\Malwarebytes.lnk 2021-06-17 19:57 - 2021-06-17 19:57 - 000000000 ____D C:\Users\ME\AppData\Local\mbam 2021-06-17 19:57 - 2021-06-17 19:56 - 000199128 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys 2021-06-17 19:57 - 2021-06-17 19:56 - 000019912 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys 2021-06-17 19:55 - 2021-06-17 19:55 - 002094168 _____ (Malwarebytes) C:\Users\ME\Downloads\MBSetup (1).exe 2021-06-17 19:54 - 2021-06-17 19:55 - 002094168 _____ (Malwarebytes) C:\Users\ME\Downloads\MBSetup.exe 2021-06-17 19:47 - 2021-06-17 19:47 - 000000000 ____D C:\Program Files\MBTunnel 2021-06-17 19:46 - 2021-06-17 19:56 - 000000000 ____D C:\ProgramData\Malwarebytes 2021-06-17 19:46 - 2021-06-17 19:46 - 000002340 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Privacy (VPN).lnk 2021-06-17 19:46 - 2021-06-17 19:46 - 000002328 _____ C:\Users\Public\Desktop\Malwarebytes Privacy.lnk 2021-06-17 19:46 - 2021-06-17 19:46 - 000002328 _____ C:\ProgramData\Desktop\Malwarebytes Privacy.lnk 2021-06-17 19:45 - 2021-06-17 19:56 - 000000000 ____D C:\Program Files\Malwarebytes 2021-06-17 19:44 - 2021-06-17 19:45 - 001218696 _____ (Malwarebytes) C:\Users\ME\Downloads\MBPrivacySetup.exe 2021-06-17 19:37 - 2021-06-17 19:37 - 000000000 ____D C:\Program Files\Common Files\McAfee 2021-06-17 19:33 - 2021-06-17 19:33 - 000000000 ____D C:\Users\ME\AppData\Local\CEF 2021-06-17 19:32 - 2021-06-17 19:37 - 000000000 ____D C:\ProgramData\McAfee 2021-06-17 19:15 - 2021-06-17 19:15 - 000000000 ____D C:\Users\ME\AppData\Local\PeerDistRepub 2021-06-17 18:32 - 2021-06-17 19:36 - 000000000 ____D C:\Users\ME\AppData\Local\Google 2021-06-17 18:32 - 2021-06-17 19:36 - 000000000 ____D C:\Program Files (x86)\Google 2021-06-17 18:30 - 2021-06-17 18:31 - 001310832 _____ (Google LLC) C:\Users\ME\Downloads\ChromeSetup (1).exe 2021-06-17 18:27 - 2021-06-17 18:28 - 001310832 _____ (Google LLC) C:\Users\ME\Downloads\ChromeSetup.exe 2021-06-17 16:20 - 2021-06-17 15:26 - 000000000 ____D C:\Windows\Panther 2021-06-17 15:27 - 2021-06-17 15:27 - 000000000 _SHDL C:\Documents and Settings 2021-06-17 15:21 - 2021-06-17 15:27 - 000008192 ___SH C:\DumpStack.log.tmp 2021-06-17 13:01 - 2021-06-17 13:01 - 000000000 ____D C:\Users\ME\AppData\Local\Comms 2021-06-17 12:47 - 2021-06-17 12:47 - 000000000 ____D C:\Users\ME\AppData\Local\PlaceholderTileLogoFolder 2021-06-17 12:45 - 2021-06-17 12:49 - 000000000 ___RD C:\Users\ME\OneDrive 2021-06-17 12:43 - 2021-06-17 12:43 - 000000000 ____D C:\Users\ME\AppData\Local\Publishers 2021-06-17 12:42 - 2021-06-17 13:00 - 000000000 ____D C:\Users\ME\AppData\Local\Packages 2021-06-17 12:42 - 2021-06-17 12:44 - 000000000 ____D C:\Users\ME\AppData\Local\D3DSCache 2021-06-17 12:42 - 2021-06-17 12:43 - 000000000 ____D C:\Users\ME\AppData\Local\ConnectedDevicesPlatform 2021-06-17 12:42 - 2021-06-17 12:42 - 000000000 ___RD C:\Users\ME\3D Objects 2021-06-17 12:42 - 2021-06-17 12:42 - 000000000 ____D C:\Users\ME\AppData\Roaming\Adobe 2021-06-17 12:42 - 2021-06-17 12:42 - 000000000 ____D C:\Users\ME\AppData\Local\VirtualStore 2021-06-17 12:34 - 2021-06-17 12:49 - 000002354 _____ C:\Users\ME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-06-17 12:34 - 2021-06-17 12:45 - 000000000 ____D C:\Users\ME 2021-06-17 12:34 - 2021-06-17 12:34 - 000000020 ___SH C:\Users\ME\ntuser.ini 2021-06-17 12:29 - 2021-06-17 12:29 - 000000000 ____D C:\Windows\CSC ==================== One month (modified) ================== (If an entry is included in the fixlist, the file/folder will be moved.) 2021-06-17 20:26 - 2019-12-07 05:13 - 000000000 ____D C:\Windows\INF 2021-06-17 19:57 - 2019-12-07 05:14 - 000000000 ___HD C:\Windows\ELAMBKUP 2021-06-17 19:16 - 2019-12-07 05:14 - 000000000 ____D C:\Windows\system32\NDF 2021-06-17 19:13 - 2019-12-07 05:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-06-17 19:02 - 2020-11-19 03:43 - 000000000 ____D C:\Windows\system32\SleepStudy 2021-06-17 16:20 - 2019-12-07 05:14 - 000028672 _____ C:\Windows\system32\config\BCD-Template 2021-06-17 15:27 - 2020-11-19 03:43 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2021-06-17 15:26 - 2020-11-19 03:46 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-06-17 15:26 - 2020-11-19 03:46 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2021-06-17 15:26 - 2020-11-19 03:46 - 000002276 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk 2021-06-17 15:26 - 2019-12-07 05:03 - 000524288 _____ C:\Windows\system32\config\BBI 2021-06-17 15:23 - 2019-12-07 05:14 - 000000000 ___RD C:\Windows\PrintDialog 2021-06-17 15:23 - 2019-12-07 05:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2021-06-17 15:22 - 2020-11-19 03:43 - 000257824 _____ C:\Windows\system32\FNTCACHE.DAT 2021-06-17 14:47 - 2020-11-19 03:43 - 000000000 ____D C:\Windows\system32\Drivers\wd 2021-06-17 14:47 - 2019-12-07 05:14 - 000000000 ____D C:\Program Files\Windows Defender 2021-06-17 13:00 - 2019-12-07 05:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-06-17 13:00 - 2019-12-07 05:14 - 000000000 ____D C:\Windows\AppReadiness 2021-06-17 12:42 - 2020-11-19 03:48 - 000000000 __RHD C:\Users\Public\AccountPictures 2021-06-17 12:33 - 2019-12-07 05:14 - 000000000 ____D C:\ProgramData\USOPrivate 2021-06-17 12:32 - 2020-11-19 03:54 - 000795738 _____ C:\Windows\system32\PerfStringBackup.INI 2021-06-17 12:30 - 2019-12-07 05:51 - 000000000 ____D C:\Windows\system32\FxsTmp 2021-06-17 12:29 - 2019-12-07 05:14 - 000000000 ____D C:\Windows\ServiceState ==================== SigCheck ============================ (There is no automatic fix for files that do not pass verification.) ==================== End of FRST.txt ======================== Malwarebytes scan log.txt
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.