Jump to content

Search the Community

Showing results for tags 'confused'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes for Windows Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • Malwarebytes Privacy
    • Malwarebytes Browser Guard
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Endpoint Protection
    • Malwarebytes Incident Response (includes Breach Remediation)
    • Malwarebytes Endpoint Security
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Location


Interests

Found 4 results

  1. Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30.01.2019 Ran by dponee (31-01-2019 15:29:23) Running from C:\Users\dponee\Downloads Windows 7 Home Premium Service Pack 1 (X64) (2013-12-26 18:50:10) Boot Mode: Normal Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 30.01.2019 Ran by dponee (administrator) on DPONEE-PC (31-01-2019 15:24:41) Running from C:\Users\dponee\Downloads Loaded Profiles: dponee (Available Profiles: dponee) Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: English (United States) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30.01.2019 Ran by dponee (31-01-2019 15:29:23) Running from C:\Users\dponee\Downloads Windows 7 Home Premium Service Pack 1 (X64) (2013-12-26 18:50:10) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-739513242-2784876513-1096833554-500 - Administrator - Disabled) dponee (S-1-5-21-739513242-2784876513-1096833554-1001 - Administrator - Enabled) => C:\Users\dponee Guest (S-1-5-21-739513242-2784876513-1096833554-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-739513242-2784876513-1096833554-1002 - Limited - Enabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Microsoft Security Essentials (Enabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189} AS: Microsoft Security Essentials (Enabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden 6500_E709_eDocs (HKLM-x32\...\{AA787E05-E835-4812-AA3D-4048C8A46587}) (Version: 1.00.0000 - Hewlett-Packard) Hidden 6500_E709_Help (HKLM-x32\...\{F53B432E-BD19-4400-BFA0-2BBD16410F8F}) (Version: 1.00.0000 - Hewlett-Packard) Hidden 6500_E709a (HKLM-x32\...\{C607265F-86AA-4B42-9F9B-D0ED2E4AACA6}) (Version: 140.0.000.000 - Hewlett-Packard) Hidden Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 19.010.20069 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 21.0.0.198 - Adobe Systems Incorporated) Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.114 - Adobe Systems Incorporated) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.114 - Adobe Systems Incorporated) Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.114 - Adobe Systems Incorporated) Amazon Kindle (HKU\S-1-5-21-739513242-2784876513-1096833554-1001\...\Amazon Kindle) (Version: 1.24.3.51068 - Amazon) Apple Application Support (HKLM-x32\...\{A922C4B7-50E0-4787-A94C-59DBF3C65DBE}) (Version: 3.0 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{FE86CB0C-FCB3-4358-B4B0-B0A41E33B3DD}) (Version: 7.1.0.32 - Apple Inc.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) AVSDK5 (HKLM\...\{D5A6E342-907C-4CEF-96CC-FC2F4990DC9C}) (Version: 5.4.11 - CYREN Inc.) Hidden Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) bpd_scan (HKLM-x32\...\{0E52A52C-E120-461C-AA1B-21B045BEE842}) (Version: 3.00.0000 - Hewlett-Packard) Hidden BPDSoftware (HKLM-x32\...\{3BE02281-FCCF-44BB-8413-AC4A633059EB}) (Version: 140.0.000.000 - Hewlett-Packard) Hidden BPDSoftware_Ini (HKLM-x32\...\{99F67894-9486-413F-94E1-8B12B1606EAB}) (Version: 1.00.0000 - Hewlett-Packard) Hidden BufferChm (HKLM-x32\...\{FA0FF682-CC70-4C57-93CD-E276F3E7537E}) (Version: 140.0.213.000 - Hewlett-Packard) Hidden Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.) Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: 1.5.3.3 - Canon Inc.) Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.6.0 - Canon Inc.) Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.15.23 - Canon Inc.) Canon MX490 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX490_series) (Version: 1.02 - Canon Inc.) Canon MX490 series On-screen Manual (HKLM-x32\...\Canon MX490 series On-screen Manual) (Version: 7.7.1 - Canon Inc.) Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.6.1 - Canon Inc.) Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.6.0 - Canon Inc.) Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.) Canon PowerShot SX50 HS Camera User Guide (HKLM-x32\...\CameraUserGuide-PSSX50HS) (Version: 1.0.0.1 - Canon Inc.) Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.) Canon Speed Dial Utility (HKLM-x32\...\Speed Dial Utility) (Version: 1.6.0 - Canon Inc.) Connect (HKLM-x32\...\Connect) (Version: 1.4.13206.0 - Cisco Consumer Products LLC) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden Dell Custom Help (HKLM\...\{8BA70862-9756-4FC2-A563-0A1DC0E8F2DB}) (Version: 15.08.0000.0172 - Intel Corporation) Hidden Dell DataSafe Local Backup - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 9.4.67 - Dell Inc.) Dell DataSafe Local Backup (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.4.67 - Dell Inc.) Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc) Dell SupportAssist (HKLM\...\{E98E94E2-12D1-48E5-AC69-2C312F466136}) (Version: 3.1.0.142 - Dell Inc.) Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 18.0.1.0 - Synaptics Incorporated) Dell Update (HKLM-x32\...\{5EBBC1DA-975F-44A0-B438-F325BCD45577}) (Version: 3.0.1 - Dell Inc.) Destinations (HKLM-x32\...\{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}) (Version: 130.0.0.0 - Hewlett-Packard) Hidden DeviceDiscovery (HKLM-x32\...\{1458BB78-1DC5-4BC0-B9A3-2B644F5A8105}) (Version: 140.0.213.000 - Hewlett-Packard) Hidden DocMgr (HKLM-x32\...\{92A51949-EE4C-466D-AAF0-99E74A49A63F}) (Version: 140.0.65.000 - Hewlett-Packard) Hidden DocProc (HKLM-x32\...\{9B362566-EC1B-4700-BB9C-EC661BDE2175}) (Version: 140.0.100.000 - Hewlett-Packard) Hidden ExpressVPN (HKLM-x32\...\{a4820fe0-3216-4bad-9504-466b04026125}) (Version: 6.8.5.5936 - ExpressVPN) ExpressVPN (HKLM-x32\...\{E5B9C3E5-889C-4F22-A959-F4B8364DCF61}) (Version: 6.8.5.5936 - ExpressVPN) Hidden Fax (HKLM-x32\...\{9294F169-72EE-4D74-AE92-CA25F64B4FF8}) (Version: 140.0.213.000 - Hewlett-Packard) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.) Google Drive (HKLM-x32\...\{A8DC81F2-D365-4248-892A-FA3B5951F731}) (Version: 2.34.9392.7803 - Google, Inc.) Google Earth Plug-in (HKLM-x32\...\{ADA8583A-C20B-414B-8CB7-3AA7A89F7952}) (Version: 7.1.4.1529 - Google) Google Earth Pro (HKLM\...\{F914BC59-918A-498F-B2E3-B274C9CB48A8}) (Version: 7.3.2.5491 - Google) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden GPBaseService2 (HKLM-x32\...\{BB3447F6-9553-4AA9-960E-0DB5310C5779}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP) HP Document Manager 2.0 (HKLM\...\HP Document Manager) (Version: 2.0 - HP) HP Dropbox Plugin (HKLM-x32\...\{D12BC084-97D6-438A-AA7C-5962608D17A0}) (Version: 36.0.41.58587 - HP) HP ENVY 7640 series Basic Device Software (HKLM\...\{B81E425D-39FF-4846-B4BB-7AD61909A0EF}) (Version: 40.11.1135.17143 - HP Inc.) HP ENVY 7640 series Help (HKLM-x32\...\{5845A5C9-AA03-4D91-9793-1A2563CE0129}) (Version: 34.0.0 - Hewlett Packard) HP FWUpdateEDO2 (HKLM-x32\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard) HP Google Drive Plugin (HKLM-x32\...\{BFA42100-DB54-467A-BB87-CF70732B4065}) (Version: 36.0.41.58587 - HP) HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP) HP Officejet 6500 E709 Series (HKLM\...\{58D79E62-CFC8-4331-8469-3A1B16E1769C}) (Version: 14.0 - HP) HP Officejet 6500 E710a-f Basic Device Software (HKLM\...\{22FCD3B0-CAA7-444A-84AC-75716545EAB9}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) HP Officejet 6500 E710a-f Help (HKLM-x32\...\{037CD593-D760-4A00-B030-7BBAFA1123FE}) (Version: 140.0.2.2 - Hewlett Packard) HP Officejet 6500 E710a-f Product Improvement Study (HKLM\...\{8F3591D0-074B-4F7B-A269-39FE61C9CB5C}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP) HP Photo Creations (HKU\S-1-5-21-739513242-2784876513-1096833554-1001\...\HP Photo Creations) (Version: 1.0.0.22192 - HP) HP Smart Web Printing 4.60 (HKLM\...\HP Smart Web Printing) (Version: 4.60 - HP) HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP) HP Support Assistant (HKLM-x32\...\{78E2C850-ADA6-420D-BA35-2F4A9BE733CC}) (Version: 8.7.50.3 - HP) HP Support Solutions Framework (HKLM-x32\...\{CE7447C2-EF12-4EF3-BE51-BFC3B049C0F6}) (Version: 12.10.49.21 - HP) HP Touchpoint Analytics Client (HKLM\...\{E5FB98E0-0784-44F0-8CEC-95CD4690C43F}) (Version: 4.0.2.1439 - HP Inc.) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) HPDiagnosticAlert (HKLM-x32\...\{B6465A32-8BE9-4B38-ADC5-4B4BDDC10B0D}) (Version: 1.00.0001 - Microsoft) Hidden HPDiagnosticCoreDll (HKLM-x32\...\{9262B08F-E183-4FED-A2BD-23FF1A84EB79}) (Version: 1.0.15.0 - Hewlett Packard) HPProductAssistant (HKLM-x32\...\{150B6201-E9E6-4DFB-960E-CCBD53FBDDED}) (Version: 140.0.213.000 - Hewlett-Packard) Hidden HPSSupply (HKLM-x32\...\{AC35A885-0F8F-4857-B7DA-6E8DFB43E6B3}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP) Intel(R) Driver Update Utility 2.0 (HKLM-x32\...\{59DB38EB-F864-4E10-841D-38CFBCF864B0}) (Version: 2.0.0.29 - Intel) Hidden Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2867 - Intel Corporation) Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{B9EE2364-A67C-40DD-8413-495E2C7FBCD0}) (Version: 2.1.2.0206 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.2.1000 - Intel Corporation) Intel(R) Turbo Boost Technology Monitor 2.6 (HKLM\...\{6C9365EB-1F9E-4893-9196-3EC77C88D0C5}) (Version: 2.6.2.0 - Intel) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.8.251 - Intel Corporation) Intel(R) WiDi (HKLM\...\{6097158B-0184-4140-BEC3-7885794D2571}) (Version: 3.5.40.0 - Intel Corporation) Intel® Driver Update Utility (HKLM-x32\...\{8409c4f7-2340-4933-a304-5d37db4fb48b}) (Version: 2.0.0.29 - Intel) Intel® PROSet/Wireless Software (HKLM-x32\...\{deff5bea-aa8c-46fb-b17d-1cc69b242494}) (Version: 15.8.0 - Intel Corporation) iTunes (HKLM\...\{0D924CB2-2EA4-4044-BAF7-770202D6BD0D}) (Version: 11.1.4.62 - Apple Inc.) Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation) Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Malwarebytes version 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes) MarketResearch (HKLM-x32\...\{D360FA88-17C8-4F14-B67F-13AAF9607B12}) (Version: 140.0.214.000 - Hewlett-Packard) Hidden Marketsplash Shortcuts (HKLM-x32\...\{16FCDD97-AE09-476B-88CD-261D852BD34C}) (Version: 1.0.1.7 - Hewlett-Packard) Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation) Microsoft Office Home and Student 2013 - en-us (HKLM\...\HomeStudentRetail - en-us) (Version: 15.0.5101.1002 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-739513242-2784876513-1096833554-1001\...\OneDriveSetup.exe) (Version: 17.0.4035.0328 - Microsoft Corporation) Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Works 6-9 Converter (HKLM-x32\...\{95140000-0137-0409-0000-0000000FF1CE}) (Version: 14.0.6120.5002 - Microsoft Corporation) Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Network64 (HKLM\...\{48C0866E-57EB-444C-8371-8E4321066BC3}) (Version: 140.0.215.000 - Hewlett-Packard) Hidden NTI Backup Now EZ (HKLM-x32\...\{B9ECA41B-55CC-4654-B6B5-6731D009EC69}) (Version: 3.0.2.67 - NTI Corporation) Hidden NTI Backup Now EZ (HKLM-x32\...\InstallShield_{B9ECA41B-55CC-4654-B6B5-6731D009EC69}) (Version: 3.0.2.67 - NTI Corporation) OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP) Office 15 Click-to-Run Extensibility Component (HKLM-x32\...\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.5101.1002 - Microsoft Corporation) Hidden Office 15 Click-to-Run Licensing Component (HKLM\...\{90150000-008F-0000-1000-0000000FF1CE}) (Version: 15.0.5101.1002 - Microsoft Corporation) Hidden Office 15 Click-to-Run Localization Component (HKLM-x32\...\{90150000-008C-0409-0000-0000000FF1CE}) (Version: 15.0.5101.1002 - Microsoft Corporation) Hidden Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM-x32\...\{90150000-001F-040C-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.) Product Improvement Study for HP ENVY 7640 series (HKLM\...\{C15C2D78-89D2-4EC1-850D-4D9BFADA758A}) (Version: 40.11.1135.17143 - HP Inc.) ProductContext (HKLM-x32\...\{68654483-9629-4CF5-88FF-9FB70B3BECDE}) (Version: 140.0.000.000 - Hewlett-Packard) Hidden Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 10.15.018 - Dell Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6959 - Realtek Semiconductor Corp.) Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.8400.39030 - Realtek Semiconductor Corp.) Rogers Security Advisor 3.7.0 (HKLM-x32\...\Radialpoint_37_Sas_is1) (Version: 3.7.0 - Rogers) Hidden Rogers TechXpert 5.8.32 (HKLM-x32\...\Radialpoint_37_Spd_is1) (Version: 5.8.32 - Rogers) Rogers TechXpert Extension 4.8.8 (HKLM-x32\...\Radialpoint_37_Psd_is1) (Version: 4.8.8 - Rogers) Hidden Scan (HKLM-x32\...\{06A1D88C-E102-4527-AF70-29FFD7AF215A}) (Version: 140.0.167.000 - Hewlett-Packard) Hidden Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP) Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation) Skype version 8.33 (HKLM-x32\...\Skype_is1) (Version: 8.33 - Skype Technologies S.A.) Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.) SmartWebPrinting (HKLM-x32\...\{8FF6F5CA-4E30-4E3B-B951-204CAAA2716A}) (Version: 140.0.213.000 - Hewlett-Packard) Hidden SolutionCenter (HKLM-x32\...\{BC5DD87B-0143-4D14-AAE6-97109614DC6B}) (Version: 140.0.214.000 - Hewlett-Packard) Hidden Status (HKLM-x32\...\{5B025634-7D5B-4B8D-BE2A-7943C1CF2D5D}) (Version: 140.0.256.000 - Hewlett-Packard) Hidden StudioTax 2013 (HKLM-x32\...\{3F525B18-4DA5-447A-97E5-8F00EA9DF4B1}) (Version: 9.1.8.1 - BHOK IT Consulting) StudioTax 2014 (HKLM-x32\...\{B66FF49A-22D0-40C2-9E64-00325689850D}) (Version: 10.0.10.3 - BHOK IT Consulting) StudioTax 2015 (HKLM-x32\...\{D4ED4657-36AF-443C-8274-AEA66D8A6317}) (Version: 11.0.8.5 - BHOK IT Consulting) System Mechanic 12 Professional (HKLM-x32\...\{1E5E7177-5156-4541-B8D5-B0C7E9064329}) (Version: 15.5.0 - ) Hidden TomTom HOME (HKLM-x32\...\{0E778C56-3A87-497E-BEF0-EF0D3EE4871C}) (Version: 2.10.2 - TomTom) TomTom HOME (HKLM-x32\...\{9F1953B3-B0EE-402C-A29F-A8AB775A6D1D}) (Version: 2.11.3 - TomTom) TomTom HOME Visual Studio Merge Modules (HKLM-x32\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.) TomTom MyDrive Connect 4.2.3.3625 (HKLM-x32\...\MyDriveConnect) (Version: 4.2.3.3625 - TomTom) Toolbox (HKLM-x32\...\{292F0F52-B62D-4E71-921B-89A682402201}) (Version: 140.0.428.000 - Hewlett-Packard) Hidden TrayApp (HKLM-x32\...\{CD31E63D-47FD-491C-8117-CF201D0AFAB5}) (Version: 140.0.213.000 - Hewlett-Packard) Hidden Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.) WebReg (HKLM-x32\...\{8EE94FD8-5F52-4463-A340-185D16328158}) (Version: 140.0.213.017 - Hewlett-Packard) Hidden Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-739513242-2784876513-1096833554-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\dponee\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-739513242-2784876513-1096833554-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\dponee\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-739513242-2784876513-1096833554-1001_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\dponee\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-739513242-2784876513-1096833554-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\dponee\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-739513242-2784876513-1096833554-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\dponee\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\FileSyncApi64.dll (Microsoft Corporation) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google) ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation) ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google) ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes) ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation) ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2012-10-16] (Intel Corporation) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes) ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {002129DE-4DA5-466A-B74D-56A686EE317B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2017-09-20] (HP Inc.) Task: {03144453-BABE-4A49-B014-702FFBDB0D1F} - System32\Tasks\HpWebReg.exe => C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\HpWebReg.exe Task: {07247DEB-CC3D-43A4-8E4E-47F71C2C46EF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2019-01-08] (Adobe Systems Incorporated) Task: {0D41B208-3291-4E1B-8B08-33ED1FCF1830} - System32\Tasks\HP AR Program Upload - 585f4392d2c34846a7678f7b66ded03b385197decbad4e6dae8d2c6688dfc2ae => C:\Program Files\HP\HP Officejet 6600\bin\HPRewards.exe Task: {10B168E6-5476-47AB-9AF0-4CD6515D7B7F} - System32\Tasks\HP Officejet 6600.exe_{27BF983E-869F-4F91-B2B4-0511DA151A9E} => C:\Program Files\HP\HP Officejet 6600\Bin\HP Officejet 6600.exe Task: {23DD78E8-98A0-406B-9948-3EA9CD2D95D9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2019-01-17] (HP Inc.) Task: {26277F2D-89BC-4E52-82B4-228EDE1E0EB8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant printer driver installation => C:\Windows\TEMP\EN7640_Full_WebPack_40.11.1135.exe [2017-06-23] () <==== ATTENTION Task: {28716F19-96F6-4829-8AFC-C9586675A474} - System32\Tasks\HP AR Program Upload - d708eb1102834a2d9d0795ede145065ed56a5e4e59a54e5b963c737716d2b08b => C:\Program Files\HP\HP Officejet 6600\bin\HPRewards.exe Task: {2B004400-75FC-49B5-ABAC-C32711084063} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-12-12] (Microsoft Corporation) Task: {2B6AF5CE-5CBB-45A5-9239-4BCC02D10AA5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated) Task: {330583E5-7EA2-4DA0-A45A-5066BD300B7E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2018-12-10] (HP Inc.) Task: {4049578A-B052-4D70-BEF2-514B8700AFF2} - System32\Tasks\HP AR Program Upload - 66bc5357465e453995070607048d836e33258e4bf1e941a782dd595d71585e98 => C:\Program Files\HP\HP Officejet 6600\bin\HPRewards.exe Task: {4274DF22-640E-4E6B-9D33-FE340EFBE610} - System32\Tasks\Games\UpdateCheck_S-1-5-21-739513242-2784876513-1096833554-1001 Task: {48246BB2-AFAC-4CFA-84D5-EE5FB102DE6C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2018-12-24] (HP Inc.) Task: {483A676C-DC27-4ACE-A07A-811D4B93894E} - System32\Tasks\HP AR Program Upload - bec1d18310d64358b6ff64ddda433e1466062dd4e1d441c8b39e7b8ef4891b56 => C:\Program Files\HP\HP Officejet 6600\bin\HPRewards.exe Task: {489F1654-E86D-4ABC-B552-2662DDC2B619} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2017-11-15] () Task: {4A5159DA-E178-42F8-988E-83D54EE9285A} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-12-12] (Microsoft Corporation) Task: {4A632EB3-3148-4CD7-AA91-E7BB6129B746} - System32\Tasks\HPCeeScheduleFordponee => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2016-01-22] (Hewlett-Packard) Task: {4BD267E1-A85D-4FC2-BACA-88295892AA20} - System32\Tasks\HPCustParticipation HP Officejet 6500 E710a-f => C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.) Task: {658C8E10-5BDD-4235-8A3D-1E7002166AE8} - System32\Tasks\ScanToPCActivationApp.exe_{BA39A65C-43C5-4433-9BB2-845CDFFD0259} => C:\Program Files\HP\HP Officejet 6600\Bin\ScanToPCActivationApp.exe Task: {87B0489A-62FA-427D-81B2-875AE0854406} - System32\Tasks\{4E673F0E-C63B-44B9-91C1-6328FADE5712} => "c:\program files\internet explorer\iexplore.exe" hxxp://ui.skype.com/ui/0/7.26.0.101/en/abandoninstall?source=lightinstaller&page=tsMain Task: {892C9839-F3EB-4D6C-B0EB-F7F0D93829E5} - System32\Tasks\{A7D430A7-17DC-481F-B838-AF014E393E55} => C:\Program Files (x86)\Dell Update\DellUpTray.exe Task: {8C1BB7FA-2997-4E6D-A8D6-1169C9C573CF} - System32\Tasks\HP AR Program Upload - 9327056b896441d598d370f867beb2cd4bef9b0c0dbc45b6a13f23e0a38ed08e => C:\Program Files\HP\HP Officejet 6600\bin\HPRewards.exe Task: {949EF355-A530-4BDD-B852-EF5805311626} - System32\Tasks\HPCustParticipation HP ENVY 7640 series => C:\Program Files\HP\HP ENVY 7640 series\Bin\HPCustPartic.exe [2017-05-23] (HP Inc.) Task: {9AC0E5BF-FC76-4E4A-A575-D043C715D4F4} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_114_Plugin.exe [2019-01-08] (Adobe Systems Incorporated) Task: {9B2F77E4-794B-45CA-8015-73151BF530D9} - System32\Tasks\HP AR Program Upload - b5e7b81e6c8b43ada11b4a4cd69ec2d3ce7a87238bd140b5afea8d58b5ab4a7b => C:\Program Files\HP\HP Officejet 6600\bin\HPRewards.exe Task: {9C1BB991-6F89-4B1F-9A1E-2304D47D9EDF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-09] (Google Inc.) Task: {A3FA2DCC-79CE-481F-9D2A-C5F37202CA9C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-09] (Google Inc.) Task: {A42D6F0D-6B4A-4708-8C39-86AE58BD5934} - System32\Tasks\HP AR Program Upload - 7b20b54b7cfe47038916f831ae12dcae7ea8d1f9cd0249c2aebff33cda971fe8 => C:\Program Files\HP\HP Officejet 6600\bin\HPRewards.exe Task: {AADB73A7-0EC4-4A6B-92B8-21EA751FF8D9} - System32\Tasks\{CBEB886E-CF97-466B-98E9-1C76CC149C9E} => C:\Program Files (x86)\Dell Update\DellUpTray.exe Task: {ABA431D9-4C30-44D2-B5CF-E7AFBB075F34} - System32\Tasks\iolo DelOnReboot => cmd.exe /c del /f C:\ProgramData\iolo\ops\smrr.dll Task: {BA5DC056-550C-4F78-8C5D-8B94564C9C60} - System32\Tasks\HP AR Program Upload - ee854b24e5e245aaad06054eee8b5615687780f98b6d49f68ab0675bd58b8eff => C:\Program Files\HP\HP Officejet 6600\bin\HPRewards.exe Task: {BDAE92F3-0C12-442A-B289-43B21BBBD9CE} - System32\Tasks\HP AR Program Upload - 7fbd2eaf172649b5a8e2fc9ad4c012abadd9be161dd44f1da9922794291a52e6 => C:\Program Files\HP\HP Officejet 6600\bin\HPRewards.exe Task: {C14D0437-6EA6-4D6A-B35D-DF761121D063} - System32\Tasks\{8529E630-670F-42F5-B74B-036E57808D7C} => C:\Program Files (x86)\Dell Update\DellUpTray.exe Task: {C1BF6354-A559-427A-BC71-95C6401B5DF6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2019-01-02] (HP Inc.) Task: {D5F39867-BB23-4CEB-8E37-885E9ACF9571} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistInstaller.exe [2018-12-12] (Dell Inc.) Task: {D8C9C8FD-4B44-49E9-99AD-F37ADD45118B} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_114_pepper.exe [2019-01-08] (Adobe Systems Incorporated) Task: {D96A3510-83E9-414A-8BD4-BD02E44CDCAB} - System32\Tasks\{E2EB9B60-CA9C-4ED7-A59B-359951B3A93D} => C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe [2018-10-12] (TomTom) Task: {E62AC08F-96D9-4A3E-9832-90948C2069CC} - System32\Tasks\HP AR Program Upload - c28bc1c72fc74433a933ea0e9d0215c2f03f2ec6163c4ee8b0bc57ad011be768 => C:\Program Files\HP\HP Officejet 6600\bin\HPRewards.exe Task: {E68B74E5-5814-43F8-8D06-B753571F446D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2018-12-10] (HP Inc.) Task: {E80624B8-9C1B-4A7C-8478-1408AFAEA110} - System32\Tasks\HP Officejet 6600.exe_{90D4813C-3BE9-49F8-A6AB-1BBA438353B4} => C:\Program Files\HP\HP Officejet 6600\Bin\HP Officejet 6600.exe Task: {F2994B45-7340-4885-816D-1D373B4430C4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2017-09-20] (HP Inc.) Task: {F5A88661-FBFB-4286-9736-99258AF298AD} - System32\Tasks\HP AR Program Upload - 46b00efca05c432a875fa67c7dea5551bd27bcc662284852bffc6902b8cbd0a0 => C:\Program Files\HP\HP Officejet 6600\bin\HPRewards.exe Task: {FB1FC94C-10C4-4087-BB0B-F4C166742D64} - System32\Tasks\HP AR Program Upload - 98f311e9d97443ef8d16a64adb995ed7d2bb2bc9f07a46c38e36794d878e5665 => C:\Program Files\HP\HP Officejet 6600\bin\HPRewards.exe Task: {FF5A658F-E525-4C58-9284-9D4DF2D2BFE6} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\HPCeeScheduleFordponee.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe ==================== Shortcuts & WMI ======================== (The entries could be listed to be restored or removed.) WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\":: WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99] WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate] ShortcutWithArgument: C:\Users\dponee\Desktop\Google Calendar.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=ejjicmeblgpmajnghnpcppodonldlgfn ShortcutWithArgument: C:\Users\dponee\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_ejjicmeblgpmajnghnpcppodonldlgfn\Google Calendar.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=ejjicmeblgpmajnghnpcppodonldlgfn ShortcutWithArgument: C:\Users\dponee\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Calendar.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=ejjicmeblgpmajnghnpcppodonldlgfn ShortcutWithArgument: C:\Users\dponee\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Calendar.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=ejjicmeblgpmajnghnpcppodonldlgfn ShortcutWithArgument: C:\Users\dponee\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Calendar.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=ejjicmeblgpmajnghnpcppodonldlgfn ==================== Loaded Modules (Whitelisted) ============== 2014-03-24 17:15 - 2017-01-17 03:25 - 000117440 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll 2018-11-12 13:46 - 2018-11-12 13:46 - 000035976 _____ () C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe 2018-11-06 11:06 - 2018-11-06 11:06 - 000339168 _____ () C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe 2018-11-06 11:07 - 2018-11-06 11:07 - 010026624 _____ () C:\Program Files (x86)\ExpressVPN\xvpnd\xvpnd.exe 2018-10-12 18:07 - 2018-12-15 21:13 - 002712432 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll 2018-10-12 18:07 - 2018-12-15 21:13 - 002842608 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll 2019-01-08 19:22 - 2019-01-08 19:22 - 002587968 _____ () C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.6992.1466\libprotobuf.dll 2017-03-23 11:40 - 2017-01-31 07:34 - 008909512 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll 2013-12-06 22:38 - 2012-01-26 22:49 - 002751808 ____N () C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE 2013-12-06 23:43 - 2012-10-16 05:38 - 000094208 _____ () C:\Windows\System32\IccLibDll_x64.dll 2018-12-12 17:48 - 2018-12-12 00:11 - 005237216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\libglesv2.dll 2018-12-12 17:48 - 2018-12-12 00:11 - 000117216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\libegl.dll 2018-11-06 11:07 - 2018-11-06 11:07 - 006846080 _____ () C:\Program Files (x86)\ExpressVPN\xvpnd\expressvpn-browser-helper.exe 2014-01-20 13:17 - 2014-01-20 13:17 - 000073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll 2014-01-20 13:16 - 2014-01-20 13:16 - 001044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll 2018-11-06 11:07 - 2018-11-06 11:07 - 009534928 _____ () C:\Program Files (x86)\ExpressVPN\xvpnd\libxvclient.dll 2018-11-06 11:08 - 2018-11-06 11:08 - 000014976 _____ () C:\Program Files (x86)\ExpressVPN\xvpnd\windows\ExpressVPN.NetworkUtils.dll 2018-11-06 11:06 - 2018-11-06 11:06 - 000303104 _____ () C:\Program Files (x86)\ExpressVPN\xvpnd\windows\ExpressVPN.SplitTunnel.dll 2018-11-06 11:08 - 2018-11-06 11:08 - 000444032 _____ () C:\Program Files (x86)\ExpressVPN\xvpnd\windows\ExpressVPN.FilterManager.dll 2014-11-11 15:05 - 2014-11-11 15:05 - 000466032 _____ () C:\Program Files (x86)\NTI\NTI Backup Now EZ\sqlite3.dll 2013-12-06 22:23 - 2012-06-25 00:11 - 001198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll 2016-06-14 08:08 - 2016-06-14 08:08 - 015995904 _____ () C:\Program Files (x86)\MyDrive Connect\opengl32sw.dll 2014-09-11 10:14 - 2014-09-11 10:14 - 000032256 _____ () C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qdds.dll 2014-09-11 10:14 - 2014-09-11 10:14 - 000218112 _____ () C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qmng.dll 2017-06-19 18:59 - 2017-06-19 18:59 - 000325824 _____ () C:\Program Files\Microsoft Office 15\root\office15\AppVIsvStream32.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AMP => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AMPSE => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BITS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EventSystem => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HsdService37 => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mbamchameleon => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SasUpdaterService37 => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ServicepointService37 => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vseamps => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vsedsps => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vseqrts => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AMP => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AMPSE => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BITS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\EventSystem => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\HsdService37 => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mbamchameleon => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SasUpdaterService37 => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ServicepointService37 => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vseamps => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vsedsps => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vseqrts => ""="Service" ==================== Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) IE trusted site: HKU\.DEFAULT\...\dell.com -> dell.com ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-13 21:34 - 2018-07-05 10:24 - 000000889 _____ C:\Windows\system32\drivers\etc\hosts 127.0.0.1 d3oxij66pru1i3.cloudfront.net ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\ProgramData\Oracle\Java\javapath;C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files (x86)\Skype\Phone\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\Common Files\HP\Digital Imaging\bin;C:\Program Files (x86)\HP\Digital Imaging\bin\;C:\Program Files (x86)\HP\Digital Imaging\bin\Qt\Qt 4.3.3; HKU\S-1-5-21-739513242-2784876513-1096833554-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\dponee\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == If an entry is included in the fixlist, it will be removed. ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{49BF37BE-68CF-43A2-8F63-C48526154EC0}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiApp.exe (Intel Corporation) FirewallRules: [{1543F5DD-64B0-44FD-9F47-04B93508A43B}] => (Allow) C:\Users\dponee\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe (Microsoft Corporation) FirewallRules: [{96C08C26-E28E-432A-8FF4-1FF72B2058F8}] => (Allow) C:\Program Files (x86)\iolo\System Mechanic Professional\SysMech.exe No File FirewallRules: [{CB984E00-E7BC-4E83-820C-225FC4B478F8}] => (Allow) C:\Program Files (x86)\iolo\System Mechanic Professional\SysMech.exe No File FirewallRules: [{0DC3CDCA-4603-4FF2-B9C4-062C36481990}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe () FirewallRules: [{215FE074-FCAE-4CB4-A0E2-99F077B91AF4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.) FirewallRules: [{D3BEAD8D-15D8-48ED-B632-324AD5B1FA5E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.) FirewallRules: [{6277EB22-B8B4-41AB-A2B5-2F95B04BF9FF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc.) FirewallRules: [{E1FC4ED0-309D-4BC7-82BD-6BDD3E87231C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc.) FirewallRules: [{CAD08AB5-EE37-48DE-94C7-AC5E4DA7E1AA}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe (Apple Inc.) FirewallRules: [{0D5182B7-88EE-4F29-95BB-7D204C3696E0}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Technologies S.A.) FirewallRules: [{834CD169-2C7E-4B48-80C2-DFCBBF1BFFD5}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS69BB\HPDiagnosticCoreUI.exe No File FirewallRules: [{9F1D0F14-B5AB-432B-AC87-82B7F3F7D1E5}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS69BB\HPDiagnosticCoreUI.exe No File FirewallRules: [{05893115-3FDE-416D-AA17-E585DE50DA0E}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe (Hewlett-Packard Co.) FirewallRules: [{B82D7E6D-D924-4228-A34D-183817F1589A}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe (Hewlett-Packard Co.) FirewallRules: [{8CE31582-EE26-4DC8-9B8E-BE2D146D5A71}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe (Hewlett-Packard Co.) FirewallRules: [{71563C89-E5AF-4996-AFC6-7AD16AF2F454}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe (Hewlett-Packard) FirewallRules: [{28ECEDEC-FD35-4941-9434-F98ABCA721E8}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710a-f\bin\FaxApplications.exe (Hewlett-Packard Co.) FirewallRules: [{950A8BE8-7B22-4AA2-BC7A-7FD21A07E475}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710a-f\bin\DigitalWizards.exe (Hewlett-Packard Co.) FirewallRules: [{AF8AF743-4ADB-4DB7-BF02-742526E13801}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710a-f\bin\SendAFax.exe (Hewlett-Packard Co.) FirewallRules: [{8DD59CCF-F045-44E1-B9C1-84BE03BBB543}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\DeviceSetup.exe (Hewlett-Packard Co.) FirewallRules: [{414AA5FF-2D85-468C-8460-B33E94BB77EB}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\HPNetworkCommunicator.exe (Hewlett-Packard Co.) FirewallRules: [{06AF5E0A-53DE-45C3-AF71-E72CB80EA28C}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\HPNetworkCommunicatorCom.exe (Hewlett-Packard Co.) FirewallRules: [{A6758F08-BC79-4955-97FE-41A02EB82A69}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS4227\HPDiagnosticCoreUI.exe No File FirewallRules: [{302DA59A-4DC6-41E3-8331-93A943E98FF4}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS4227\HPDiagnosticCoreUI.exe No File FirewallRules: [{F2B357F4-1819-4CDD-81E2-812F9C218191}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS42F4\HPDiagnosticCoreUI.exe No File FirewallRules: [{2A896553-3969-459E-B12D-C014697C45DB}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS42F4\HPDiagnosticCoreUI.exe No File FirewallRules: [{09F1E430-542B-40FF-9E24-500ACD9EF769}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS1C50\HPDiagnosticCoreUI.exe No File FirewallRules: [{AA696734-0008-4101-BA18-B7CC6EA860A7}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS1C50\HPDiagnosticCoreUI.exe No File FirewallRules: [TCP Query User{0AD94E6F-5A16-4D62-8831-6DE6DE30D8C8}C:\users\dponee\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe] => (Allow) C:\users\dponee\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe (LogMeIn, Inc.) FirewallRules: [UDP Query User{65698D5F-81DB-4DF8-8238-9D6FFD602EEF}C:\users\dponee\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe] => (Allow) C:\users\dponee\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe (LogMeIn, Inc.) FirewallRules: [{C80251DD-95F6-4671-95F5-C8913ABC8899}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS724F\HPDiagnosticCoreUI.exe No File FirewallRules: [{94D5A75C-4F8C-408A-BD0B-67C5AAC4FBD8}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS724F\HPDiagnosticCoreUI.exe No File FirewallRules: [{37E73F7D-2CFD-47DB-B2F3-B12D96675153}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS7331\HPDiagnosticCoreUI.exe No File FirewallRules: [{21E21F74-4421-4B05-B2E8-F443094F0EB8}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS7331\HPDiagnosticCoreUI.exe No File FirewallRules: [TCP Query User{93111679-20B4-4CF7-B0C2-F301D9B905F1}C:\users\dponee\appdata\local\temp\7zs01fd\enterprisedu.exe] => (Allow) C:\users\dponee\appdata\local\temp\7zs01fd\enterprisedu.exe No File FirewallRules: [UDP Query User{F5398000-DDD9-4E4A-88A5-F1C4053466EB}C:\users\dponee\appdata\local\temp\7zs01fd\enterprisedu.exe] => (Allow) C:\users\dponee\appdata\local\temp\7zs01fd\enterprisedu.exe No File FirewallRules: [{0A8CD7D1-4C0F-456F-962F-DF7145B3186A}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS4033\HPDiagnosticCoreUI.exe No File FirewallRules: [{F7D2A48F-A98D-4793-982F-6E00802ABA9F}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS4033\HPDiagnosticCoreUI.exe No File FirewallRules: [{05D4CE78-2855-4FA9-A991-477139692C50}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS7BB7\HPDiagnosticCoreUI.exe No File FirewallRules: [{65B7F2FA-264F-440C-8CF2-1F758B3B4279}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS7BB7\HPDiagnosticCoreUI.exe No File FirewallRules: [{E3DA8519-CEAA-4510-BB41-599AB0BA0156}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS207A\HPDiagnosticCoreUI.exe No File FirewallRules: [{20BC6D69-A73D-46B9-896F-0D3EA2D6E448}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS207A\HPDiagnosticCoreUI.exe No File FirewallRules: [{C9127FFD-CDF6-43C8-92A3-92EF7D3CA083}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS658B\HPDiagnosticCoreUI.exe No File FirewallRules: [{62CAD4FC-1FBD-4E7B-BEA4-F0D5EE686EA2}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS658B\HPDiagnosticCoreUI.exe No File FirewallRules: [{FF5F1949-9B21-4BC2-B689-55370E12D696}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS1F70\HPDiagnosticCoreUI.exe No File FirewallRules: [{5FD1150F-BAFE-4653-8315-CFEC4CD0F898}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS1F70\HPDiagnosticCoreUI.exe No File FirewallRules: [{DCA62023-06EB-443B-9D34-60F2FEA02366}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS51BB\HPDiagnosticCoreUI.exe No File FirewallRules: [{DC145346-9343-49C1-89D3-A79BDF631869}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS51BB\HPDiagnosticCoreUI.exe No File FirewallRules: [{5560E6E5-4C91-4007-ACCC-E62FA30E263C}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS0791\HPDiagnosticCoreUI.exe No File FirewallRules: [{603AD6F5-60ED-48E2-8E92-2BC61D4064A2}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS0791\HPDiagnosticCoreUI.exe No File FirewallRules: [{7E5935D4-02C4-4FAC-9F89-CD6369FF93FE}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS28DC\HPDiagnosticCoreUI.exe No File FirewallRules: [{7F0A380B-CEDC-4F3C-8D65-45AEB2FEA002}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS28DC\HPDiagnosticCoreUI.exe No File FirewallRules: [{0769B2C4-78E0-4C5C-A225-3C1C3BCFBAE3}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS2990\HPDiagnosticCoreUI.exe No File FirewallRules: [{E853959B-2010-4EC4-8F02-D615EE36760F}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS2990\HPDiagnosticCoreUI.exe No File FirewallRules: [{220CC786-17E6-49A2-A0E2-D53913A29D32}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS4677\HPDiagnosticCoreUI.exe No File FirewallRules: [{7BF46D33-D3DF-4802-8C03-F85C9365DA78}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS4677\HPDiagnosticCoreUI.exe No File FirewallRules: [TCP Query User{8D0B3FF9-D575-4422-93EC-5FEE6BE0C968}C:\users\dponee\appdata\local\temp\7zs4677\hpdiagnosticcoreui.exe] => (Block) C:\users\dponee\appdata\local\temp\7zs4677\hpdiagnosticcoreui.exe No File FirewallRules: [UDP Query User{647410DD-D880-496A-88F9-6A22021D8FA5}C:\users\dponee\appdata\local\temp\7zs4677\hpdiagnosticcoreui.exe] => (Block) C:\users\dponee\appdata\local\temp\7zs4677\hpdiagnosticcoreui.exe No File FirewallRules: [{32C3AE88-48AE-413F-9A11-ADAE33BCDA6F}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS0B76\HPDiagnosticCoreUI.exe No File FirewallRules: [{564C7211-0382-4A98-839A-D11171CA6662}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS0B76\HPDiagnosticCoreUI.exe No File FirewallRules: [{12A10010-C77C-4230-B085-158D633AE962}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS51A3\HPDiagnosticCoreUI.exe No File FirewallRules: [{DE79789C-6033-4964-92FE-BE512FC70412}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS51A3\HPDiagnosticCoreUI.exe No File FirewallRules: [{574D9F19-8C85-4F71-A23E-AE3DBBD1747D}] => (Allow) C:\Program Files (x86)\Rogers\TechXpert\5.8.32.5996\RogersP2_ServicepointService.exe (Radialpoint SafeCare Inc.) FirewallRules: [{6DEEB43E-3831-46DD-8850-197A0E42A4FE}] => (Allow) C:\Program Files (x86)\Rogers\TechXpert\5.8.32.5996\RogersP2_ServicepointService.exe (Radialpoint SafeCare Inc.) FirewallRules: [{A2806519-6BDA-4FC5-A77B-022AE1D277D3}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS43C0\HPDiagnosticCoreUI.exe No File FirewallRules: [{4F89A532-621C-4D83-A730-C1387A431771}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS43C0\HPDiagnosticCoreUI.exe No File FirewallRules: [{25205D4C-C8C1-4B6A-8C78-6D9B9CE4C18F}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS4A1E\HPDiagnosticCoreUI.exe No File FirewallRules: [{39DD4395-63E8-4F43-9C98-7977F57D3DD0}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS4A1E\HPDiagnosticCoreUI.exe No File FirewallRules: [{E3CE5AD8-C89D-4F94-A530-DC572D240AD7}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS6E75\HPDiagnosticCoreUI.exe No File FirewallRules: [{0A44929D-A99F-41F7-B886-06766D76E87D}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS6E75\HPDiagnosticCoreUI.exe No File FirewallRules: [{0B6BCA18-41B8-4FBB-B921-4074615E78F9}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS71C9\HPDiagnosticCoreUI.exe No File FirewallRules: [{3BF299A1-7587-4F2D-BBCA-191410590835}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS71C9\HPDiagnosticCoreUI.exe No File FirewallRules: [{26030213-B70C-4639-8B51-160D5912EFEA}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS2580\HPDiagnosticCoreUI.exe No File FirewallRules: [{A0A2FA0E-A42B-4386-AB6D-8EED4E766CDD}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS2580\HPDiagnosticCoreUI.exe No File FirewallRules: [{75CD08B6-E605-4223-AFF2-638A17FDE18D}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS2C39\HPDiagnosticCoreUI.exe No File FirewallRules: [{73297A7E-222F-4EF2-BDC3-ED5E01E2DA2E}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS2C39\HPDiagnosticCoreUI.exe No File FirewallRules: [{8C23325C-D515-4DAE-9F4F-C521201DF6C5}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS2C39\HPDiagnosticCoreUI.exe No File FirewallRules: [{F8A68CBD-2099-43B5-B632-CE31E8E5699B}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS2C39\HPDiagnosticCoreUI.exe No File FirewallRules: [{87BE46AD-A9EA-40B2-B1DC-21D2B42BD9F2}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS7EF3\HPDiagnosticCoreUI.exe No File FirewallRules: [{96DB8A75-52D3-4810-8562-645AE31430F7}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS7EF3\HPDiagnosticCoreUI.exe No File FirewallRules: [TCP Query User{CBD50908-FB41-4756-8BCE-1BA7C1541909}C:\users\dponee\appdata\local\temp\7zs7ef3\hpdiagnosticcoreui.exe] => (Allow) C:\users\dponee\appdata\local\temp\7zs7ef3\hpdiagnosticcoreui.exe No File FirewallRules: [UDP Query User{0B0CC8C1-5624-4CA5-BAC9-5370D0845E61}C:\users\dponee\appdata\local\temp\7zs7ef3\hpdiagnosticcoreui.exe] => (Allow) C:\users\dponee\appdata\local\temp\7zs7ef3\hpdiagnosticcoreui.exe No File FirewallRules: [{D8F4469D-3015-442C-B367-80E882D88D08}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS4A8C\HPDiagnosticCoreUI.exe No File FirewallRules: [{9BA97FAA-00C0-4A3F-A951-F34CC112EF07}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS4A8C\HPDiagnosticCoreUI.exe No File FirewallRules: [{D49A6140-56BF-4A70-AA12-14F4A74A478B}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS61A0\HPDiagnosticCoreUI.exe No File FirewallRules: [{C80B928D-4364-4886-8A1A-D4CD2C407B71}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS61A0\HPDiagnosticCoreUI.exe No File FirewallRules: [{33DF8DBD-4B94-45FB-95A3-E24BD5A6EEAA}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS1ECD\HPDiagnosticCoreUI.exe No File FirewallRules: [{2BC1CDED-61C6-4FBA-8D9C-096259ED5F53}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS1ECD\HPDiagnosticCoreUI.exe No File FirewallRules: [TCP Query User{EA10114D-8FAC-42EE-92F1-38662201DF97}C:\users\dponee\appdata\local\temp\7zs1ecd\hpdiagnosticcoreui.exe] => (Block) C:\users\dponee\appdata\local\temp\7zs1ecd\hpdiagnosticcoreui.exe No File FirewallRules: [UDP Query User{F43B5A32-82E0-4B69-A055-1845F67B15D0}C:\users\dponee\appdata\local\temp\7zs1ecd\hpdiagnosticcoreui.exe] => (Block) C:\users\dponee\appdata\local\temp\7zs1ecd\hpdiagnosticcoreui.exe No File FirewallRules: [{92E781E4-5979-406B-A8F8-E4792CC6F057}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS1986\HPDiagnosticCoreUI.exe No File FirewallRules: [{EB83146B-6A7C-4EC7-B8F0-A20B8CAC5B61}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS1986\HPDiagnosticCoreUI.exe No File FirewallRules: [{D043E476-67E3-472E-9487-4AAF9F2A25E0}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS18C3\HPDiagnosticCoreUI.exe No File FirewallRules: [{E433A31C-25FF-4D8C-999C-F1E60E5CFEA5}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS18C3\HPDiagnosticCoreUI.exe No File FirewallRules: [{AB8D6F5E-5E84-41C4-B0C6-A6D0EA15AA8F}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS6A8F\HPDiagnosticCoreUI.exe No File FirewallRules: [{DB30195C-72D2-4E57-9953-8BAED363A03F}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS6A8F\HPDiagnosticCoreUI.exe No File FirewallRules: [{ABCB31E0-9C67-48E5-B32D-8476C3615EF7}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation) FirewallRules: [{B2DAF67D-9245-435C-B637-A161C383D2C5}] => (Allow) LPort=2869 FirewallRules: [{D61827DE-9641-4FA6-81BB-C3D11846C76F}] => (Allow) LPort=1900 FirewallRules: [{05862A51-9045-4E41-90BD-02916DB53EED}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS329D\HPDiagnosticCoreUI.exe No File FirewallRules: [{89513DD2-E763-497E-8CF9-730521653B20}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS329D\HPDiagnosticCoreUI.exe No File FirewallRules: [{40ADC858-B159-45D3-84F2-B95524CE612E}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS7928\HPDiagnosticCoreUI.exe No File FirewallRules: [{6D140265-C0EB-4346-A9EB-8BEA20B1F5F8}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS7928\HPDiagnosticCoreUI.exe No File FirewallRules: [{9FF37AF4-4822-4111-B675-9958A8969774}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS5F3C\HPDiagnosticCoreUI.exe No File FirewallRules: [{2B40831B-E7C2-4D8F-BB03-B99CF7A889A6}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS5F3C\HPDiagnosticCoreUI.exe No File FirewallRules: [{55C9DB5B-5B6E-4DB2-A457-FD803A4D335D}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS1E97\HPDiagnosticCoreUI.exe No File FirewallRules: [{B0F1D8EB-361A-4D8F-A63E-D9B1FE7723ED}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS1E97\HPDiagnosticCoreUI.exe No File FirewallRules: [{9998025E-7AE1-48F2-8849-7DDFE5E828A7}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS358B\HPDiagnosticCoreUI.exe No File FirewallRules: [{6B3467B6-AE38-4730-8DEB-EF934C5563D2}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS358B\HPDiagnosticCoreUI.exe No File FirewallRules: [{5BD7CEAC-134E-41A1-A91A-8CBE00EA0DAB}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS3A98\HPDiagnosticCoreUI.exe No File FirewallRules: [{2857097C-BC61-4217-A5F1-74507D10E9F6}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS3A98\HPDiagnosticCoreUI.exe No File FirewallRules: [{EBB7F387-2A9C-4499-A2DD-2719B6503A20}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS787C\HP.EasyStart.exe No File FirewallRules: [{A4F5E109-BBEC-4B46-A0BC-9332E0DD5DAD}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS1F08\HPDiagnosticCoreUI.exe No File FirewallRules: [{6B8CAC9B-42E5-4FA6-8197-9EFC05769491}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS1F08\HPDiagnosticCoreUI.exe No File FirewallRules: [{DA653519-916F-4F55-82FA-E7AEDBF56FA9}] => (Allow) C:\Program Files\HP\HP ENVY 7640 series\bin\FaxApplications.exe (HP Inc.) FirewallRules: [{90768CD4-A2CC-4883-93C0-EFC8D5398A21}] => (Allow) C:\Program Files\HP\HP ENVY 7640 series\bin\DigitalWizards.exe (HP Inc.) FirewallRules: [{0402B163-8F14-464A-AA35-97F05EAAD4BC}] => (Allow) C:\Program Files\HP\HP ENVY 7640 series\bin\SendAFax.exe (HP Inc.) FirewallRules: [{44160E7E-A415-436C-9581-ED4C90D0A094}] => (Allow) C:\Program Files\HP\HP ENVY 7640 series\bin\FaxPrinterUtility.exe (HP Inc.) FirewallRules: [{6B6DC5CD-96A6-4052-A773-0AD5838FC4D0}] => (Allow) C:\Program Files\HP\HP ENVY 7640 series\Bin\DeviceSetup.exe (HP Inc.) FirewallRules: [{CBCCECE1-F787-4D05-9557-8A3B38E65188}] => (Allow) LPort=5357 FirewallRules: [{EA0D7636-4523-4F8E-A901-A267702C1689}] => (Allow) C:\Program Files\HP\HP ENVY 7640 series\Bin\HPNetworkCommunicatorCom.exe (HP Inc.) FirewallRules: [{B2927408-6AF5-44CA-85E4-37457A2F71DB}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.) FirewallRules: [{E3F19795-FE48-4E5F-9CAE-CCBB252F03C1}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe (Hewlett-Packard Co.) FirewallRules: [{ACADA298-AED9-4149-B8CF-A6C3A91124B2}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxm08.exe (Hewlett-Packard Co.) FirewallRules: [{ECA3A75D-F8F7-44CA-AD16-2A883776D2ED}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposfx08.exe (Hewlett-Packard Co.) FirewallRules: [{A636B477-73DC-4200-AC12-97755BF27E95}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe (Hewlett-Packard Co.) FirewallRules: [{8D4BA2C6-27E4-4E9C-AAAF-6B1C97B22A3F}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpzwiz01.exe (Hewlett-Packard Co.) FirewallRules: [{21FCF2AC-D3BB-4152-A853-F6CE14199E70}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe (Hewlett-Packard Co.) FirewallRules: [{78F62459-7546-42E5-A8D2-B09F5D07A73B}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxs08.exe (Hewlett-Packard Co.) FirewallRules: [{2F46871D-B1E5-4AD2-AC71-025F652D4444}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqfxt08.exe (Hewlett-Packard Co.) FirewallRules: [{B7DC60E0-AE30-41B1-BE4E-6E355601EA40}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe (Hewlett-Packard Co.) FirewallRules: [{A348A31D-3E68-4D79-855B-F94837B965E0}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe (Hewlett-Packard) FirewallRules: [{999CC51A-1BBA-44B2-BAAF-A116249D482A}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe (Hewlett-Packard Co.) FirewallRules: [{8E599027-B057-406B-8287-B0EF0CE12E89}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe (Hewlett-Packard Co.) FirewallRules: [{98DCFBA8-E060-4EAA-833E-853B27ECC5A3}] => (Allow) C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe (Hewlett-Packard Co.) FirewallRules: [{003D33EF-1D72-4947-9DFD-1F0341104715}] => (Allow) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe (TomTom) FirewallRules: [{32D0D376-3B74-4683-91A9-F97F54BAEA43}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS16B1\HPDiagnosticCoreUI.exe No File FirewallRules: [{0712151D-D520-4AE8-8071-62D3600D062F}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS16B1\HPDiagnosticCoreUI.exe No File FirewallRules: [{885CF218-5BB7-46BA-9ACC-1DD012443687}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS18F9\HPDiagnosticCoreUI.exe No File FirewallRules: [{A9FF2D3E-2B7E-4955-A7F6-5F117509FECD}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS18F9\HPDiagnosticCoreUI.exe No File FirewallRules: [{DCBEB5B8-9576-4AFB-925B-1C61D85339DE}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS610C\HPDiagnosticCoreUI.exe No File FirewallRules: [{235BBDD4-1E26-42FE-A92C-E55F38C6EFC6}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS610C\HPDiagnosticCoreUI.exe No File FirewallRules: [{95635766-9F23-45EA-AC9B-CEEEFA96C064}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS682C\HPDiagnosticCoreUI.exe No File FirewallRules: [{18685C1D-6484-466B-A505-9F26C8F08470}] => (Allow) C:\Users\dponee\AppData\Local\Temp\7zS682C\HPDiagnosticCoreUI.exe No File FirewallRules: [{08534630-64F9-407B-9F08-23B80AAD81C5}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Technologies S.A.) FirewallRules: [{92978CCD-BFCE-4E8C-9180-EF6454A31129}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Technologies S.A.) FirewallRules: [{5D12E4B3-78F3-4FD6-B9EB-F139E5457A7D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ==================== Restore Points ========================= 20-01-2019 16:46:06 ExpressVPN 20-01-2019 23:10:05 ExpressVPN 24-01-2019 11:28:30 Windows Update 27-01-2019 14:01:36 Windows Update 31-01-2019 11:14:19 Windows Update ==================== Faulty Device Manager Devices ============= Name: Microsoft Teredo Tunneling Adapter Description: Microsoft Teredo Tunneling Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Name: Microsoft Virtual WiFi Miniport Adapter Description: Microsoft Virtual WiFi Miniport Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: vwifimp Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31) Resolution: Update the driver ==================== Event log errors: ========================= Application errors: ================== Error: (01/31/2019 11:33:29 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: DDVDataCollector.exe, version: 5.2.7.93, time stamp: 0x5bce2506 Faulting module name: ole32.dll, version: 6.1.7601.24291, time stamp: 0x5be78530 Exception code: 0xc0000005 Fault offset: 0x0000000000023a80 Faulting process id: 0x13cc Faulting application start time: 0x01d4b97f651b7172 Faulting application path: C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe Faulting module path: C:\Windows\system32\ole32.dll Report Id: f0890cd6-2575-11e9-ae53-606c66da1ab4 Error: (01/31/2019 11:05:34 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 23 Rp\.SpaEndpointV1._rp-hsd._tcp.local. SRV 0 0 49179 dponee-PC.local. Error: (01/31/2019 11:05:34 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.1.4:5353 23 Rp\.SpaEndpointV1._rp-hsd._tcp.local. SRV 0 0 49167 dponee-PC.local. Error: (01/31/2019 11:02:59 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (01/30/2019 11:49:47 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: DDVDataCollector.exe, version: 5.2.7.93, time stamp: 0x5bce2506 Faulting module name: ntdll.dll, version: 6.1.7601.24335, time stamp: 0x5c268115 Exception code: 0xc0000005 Fault offset: 0x000000000003be99 Faulting process id: 0x718 Faulting application start time: 0x01d4b8b89fc16b92 Faulting application path: C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe Faulting module path: C:\Windows\SYSTEM32\ntdll.dll Report Id: 0d125729-24af-11e9-a95a-606c66da1ab4 Error: (01/30/2019 11:22:54 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 23 Rp\.SpaEndpointV1._rp-hsd._tcp.local. SRV 0 0 49185 dponee-PC.local. Error: (01/30/2019 11:22:54 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.1.4:5353 23 Rp\.SpaEndpointV1._rp-hsd._tcp.local. SRV 0 0 49171 dponee-PC.local. Error: (01/30/2019 11:20:17 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. System errors: ============= Error: (01/31/2019 11:33:30 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The Dell Data Vault Collector service terminated unexpectedly. It has done this 1 time(s). Error: (01/31/2019 11:05:30 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: The following boot-start or system-start driver(s) failed to load: rccow Error: (01/31/2019 11:05:30 AM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: The Rogers Security Advisor Updater Service service hung on starting. Error: (01/31/2019 11:05:30 AM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: The Rogers TechXpert Extension Service service hung on starting. Error: (01/31/2019 11:05:30 AM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: The Dell Client Management Service service hung on starting. Error: (01/31/2019 11:04:39 AM) (Source: DCOM) (EventID: 10010) (User: ) Description: The server {2EAFA32A-01C0-4219-BF0A-D2F64CD48FAC} did not register with DCOM within the required timeout. Error: (01/31/2019 11:04:16 AM) (Source: DCOM) (EventID: 10010) (User: ) Description: The server {A576E3D2-8A54-4F6D-A46F-FE26AC369759} did not register with DCOM within the required timeout. Error: (01/31/2019 11:04:09 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: The Rogers TechXpert Service service terminated with the following error: Security must be initialized before any interfaces are marshalled or unmarshalled. It cannot be changed once initialized. Windows Defender: =================================== Date: 2014-09-30 21:14:06.426 Description: Windows Defender has detected spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/Goobzo&threatid=205544 Name:BrowserModifier:Win32/Goobzo ID:205544 Severity:High Category:Browser Modifier Path Found:file:C:\Users\dponee\AppData\Local\Temp\Install_17450\sm.exe Detection Type:Concrete Detection Source:Real-Time Protection Status:Unknown Process Name: Date: 2014-06-27 16:54:13.398 Description: Windows Defender has detected spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Adware:Win64/Adpeak&threatid=201310 Name:Adware:Win64/Adpeak ID:201310 Severity:Medium Category:Adware Path Found:file:C:\Program Files\002\yewimmxqbs64.exe;process:pid:4636,ProcessStart:130483508010812943;service:yewimmxqbs64 Detection Type:Concrete Detection Source:System Status:Unknown Process Name:C:\Windows\System32\svchost.exe Date: 2014-06-27 10:07:02.591 Description: Windows Defender has detected spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Adware:Win64/Adpeak&threatid=201310 Name:Adware:Win64/Adpeak ID:201310 Severity:Medium Category:Adware Path Found:file:C:\Program Files\002\yewimmxqbs64.exe;process:pid:4636,ProcessStart:130483508010812943 Detection Type:Concrete Detection Source:System Status:Unknown Process Name:C:\Windows\System32\svchost.exe Date: 2014-08-19 22:52:30.770 Description: Windows Defender has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures. Signatures Attempted:Current Error Code:0x80070002 Error description:The system cannot find the file specified. Signature version:0.0.0.0 Engine version:0.0.0.0 Date: 2014-08-19 21:44:25.874 Description: Windows Defender has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures. Signatures Attempted:Current Error Code:0x80070002 Error description:The system cannot find the file specified. Signature version:0.0.0.0 Engine version:0.0.0.0 Date: 2014-01-11 16:30:59.638 Description: Windows Defender has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures. Signatures Attempted:Current Error Code:0x80070002 Error description:The system cannot find the file specified. Signature version:0.0.0.0 Engine version:0.0.0.0 ==================== Memory info =========================== Processor: Intel(R) Core(TM) i7-3537U CPU @ 2.00GHz Percentage of memory in use: 63% Total physical RAM: 8079.35 MB Available physical RAM: 2956.94 MB Total Virtual: 11077.49 MB Available Virtual: 5088.21 MB ==================== Drives ================================ Drive c: (OS) (Fixed) (Total:916.29 GB) (Free:580.33 GB) NTFS \\?\Volume{0e8b64c4-5efd-11e3-85ef-806e6f6e6963}\ (RECOVERY) (Fixed) (Total:15.18 GB) (Free:7.55 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 931.5 GB) (Disk ID: 4652646E) Partition 1: (Not Active) - (Size=39 MB) - (Type=DE) Partition 2: (Active) - (Size=15.2 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=916.3 GB) - (Type=07 NTFS) ==================== End of Addition.txt ============================
  2. I scanned my computer with this program and it came up with at least 2000 files that are labeled as PUP. I am extremely confused and not savvy whatsoever with computers, I don't know what files to remove and which ones to leave. I don't want to end up deleting some essential file my computer needs to run. Please help my computer is so messed up from whatever is on it right now :/ The log for some reason says it didn't find any threats but on the window it says there are over 2000 things detected? And it won't let me upload the log to this either. Please help i'm so confused. Thank you
  3. The question I have is this; Should the automated scheduler remember my selections after shutdown? Let me explain... Every time I boot up the system I always have to go into Malwarebtyes, go into the automated scheduler tab, and place a check in the boxes next to the options I want Malwarebytes to follow (e.g. check for updates hourly). I just want to know if this is normal? I don't think its malware or anything since Bitdefender and Malwarebytes run fine. I did go through a recent bout of Adware on the machine but the expert here on the forums gave me a clean bill of health. I'd hate to think Malware is on here but I guess it could be possible. Thanks for any and all help.
  4. Help please - I have been running MB Pro for several years on my PC -and believed all this time it is a virus checker and remover - I thought it was there to keep viruses AND malware at bay by active scanning - BUT I think I have been wrong and I need some advice - on the general help in the forums it says to download MS Security Essentials a free virus scanner - so should I all this time have been running MBM and MS SE - I thought MB Pro covered the whole lot have I been wrong ? It looks like I may now have a virus - not malware (not sure of the difference) - MB finds no issues but if it doesn't look for viruses but only malware then no wonder it cannot detect them . I know you all must think I am stupid as the name gives it away but I really assumed MB Pro did it all - can anyone help clear this up and recommend a good virus remover/active checker - any help or comments (no too rude on the stupid front) welcome !! Chippy
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.