Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17.02.2019
- Ran by jeste (17-02-2019 13:01:36)
- Running from C:\Users\jeste\Desktop
- Windows 10 Pro Version 1809 17763.316 (X64) (2018-11-23 20:30:15)
- Boot Mode: Normal
- ==========================================================
- ==================== Accounts: =============================
- Administrator (S-1-5-21-2038839032-3399155231-434175092-500 - Administrator - Disabled)
- DefaultAccount (S-1-5-21-2038839032-3399155231-434175092-503 - Limited - Disabled)
- Guest (S-1-5-21-2038839032-3399155231-434175092-501 - Limited - Disabled)
- jeste (S-1-5-21-2038839032-3399155231-434175092-1001 - Administrator - Enabled) => C:\Users\jeste
- John (S-1-5-21-2038839032-3399155231-434175092-1002 - Limited - Enabled)
- WDAGUtilityAccount (S-1-5-21-2038839032-3399155231-434175092-504 - Limited - Disabled)
- ==================== Security Center ========================
- (If an entry is included in the fixlist, it will be removed.)
- AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
- AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
- AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
- AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
- AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- FW: ESET Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}
- ==================== Installed Programs ======================
- (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
- Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.257 - Adobe Systems Incorporated)
- Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.0.2 - Electronic Arts, Inc.)
- Battlefield™ V (HKLM-x32\...\{e26b382f-e945-4f70-9318-121b683f1d61}) (Version: 1.0.59.63793 - Electronic Arts)
- CAM (HKLM-x32\...\{A733CAE6-2B9A-4A7A-97D7-E7C55E8554C1}) (Version: 3.7.5 - NZXT)
- CCleaner (HKLM\...\CCleaner) (Version: 5.52 - Piriform)
- CodeLite (HKLM-x32\...\CodeLite_is1) (Version: 12.0.10 - Eran Ifrah)
- CPUID HWMonitor 1.37 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.37 - CPUID, Inc.)
- Discord (HKU\S-1-5-21-2038839032-3399155231-434175092-1001\...\Discord) (Version: 0.0.304 - Discord Inc.)
- DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 418.91 - NVIDIA Corporation) Hidden
- Epic Games Launcher (HKLM-x32\...\{0E63B233-DC24-442C-BD38-0B91D90FEC5B}) (Version: 1.1.167.0 - Epic Games, Inc.)
- Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
- ESEA Client (HKU\S-1-5-21-2038839032-3399155231-434175092-1001\...\ESEA) (Version: 6.0.0.0 - Turtle Entertainment Online, Inc.)
- ESET Security (HKLM\...\{F1544F11-BFCC-43CC-9D0C-169A7E99369E}) (Version: 12.0.31.0 - ESET, spol. s r.o.)
- FACEIT (HKU\S-1-5-21-2038839032-3399155231-434175092-1001\...\FACEITApp) (Version: 1.20.0 - FACEIT Ltd.)
- Google Chrome (HKLM-x32\...\Google Chrome) (Version: 72.0.3626.109 - Google Inc.)
- Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
- Gyazo 3.5.1.0 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: - Nota Inc.)
- Havij 1.12 Free (HKLM-x32\...\Havij_is1) (Version: - ITSecTeam)
- Intel(R) Chipset Device Software (HKLM-x32\...\{eb0d4a41-3065-42b0-a868-c60d42d3ea98}) (Version: 10.1.17695.8086 - Intel(R) Corporation) Hidden
- Java 8 Update 201 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
- Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
- Malwarebytes version 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
- Microsoft OneDrive (HKU\S-1-5-21-2038839032-3399155231-434175092-1001\...\OneDriveSetup.exe) (Version: 19.002.0107.0008 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
- Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
- Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
- Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
- Mozilla Firefox 65.0 (x64 en-US) (HKLM\...\Mozilla Firefox 65.0 (x64 en-US)) (Version: 65.0 - Mozilla)
- Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 65.0 - Mozilla)
- MSI Afterburner 4.5.0 (HKLM-x32\...\Afterburner) (Version: 4.5.0 - MSI Co., LTD)
- NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.13 - NVIDIA Corporation) Hidden
- NVIDIA 3D Vision Controller Driver 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
- NVIDIA 3D Vision Driver 418.91 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 418.91 - NVIDIA Corporation)
- NVIDIA GeForce Experience 3.17.0.126 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.17.0.126 - NVIDIA Corporation)
- NVIDIA Graphics Driver 418.91 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 418.91 - NVIDIA Corporation)
- NVIDIA HD Audio Driver 1.3.38.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.13 - NVIDIA Corporation)
- NVIDIA PhysX System Software 9.18.0907 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 - NVIDIA Corporation)
- OpenVPN 2.4.5-I601 (HKLM\...\OpenVPN) (Version: 2.4.5-I601 - OpenVPN Technologies, Inc.)
- Origin (HKLM-x32\...\Origin) (Version: 10.5.34.21025 - Electronic Arts, Inc.)
- Progress Telerik Fiddler (HKU\S-1-5-21-2038839032-3399155231-434175092-1001\...\Fiddler2) (Version: 5.0.20182.28034 - Telerik)
- Razer Chroma SDK (HKLM-x32\...\Razer Chroma SDK) (Version: 2.22.3 - Razer Inc.)
- Razer Synapse (HKLM-x32\...\Razer Synapse) (Version: 3.4.0216.021216 - Razer Inc.)
- Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8480 - Realtek Semiconductor Corp.)
- Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
- TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
- UE4 Prerequisites (x64) (HKLM-x32\...\{4e242cc8-5e3c-4b08-9d55-dbc62ddd1208}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
- WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
- WinRAR 5.61 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH)
- Wireshark 2.6.6 64-bit (HKLM-x32\...\Wireshark) (Version: 2.6.6 - The Wireshark developer community, hxxps://www.wireshark.org)
- ==================== Custom CLSID (Whitelisted): ==========================
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
- ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
- ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
- ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2018-11-29] (ESET, spol. s r.o. -> ESET)
- ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
- ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
- ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2018-11-29] (ESET, spol. s r.o. -> ESET)
- ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
- ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
- ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
- ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-02-06] (NVIDIA Corporation -> NVIDIA Corporation)
- ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
- ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2018-11-29] (ESET, spol. s r.o. -> ESET)
- ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
- ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
- ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
- ==================== Scheduled Tasks (Whitelisted) =============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- Task: {17B4A3BB-56F6-4836-BE87-37769C85648D} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
- Task: {2025E669-E300-430C-8AC7-1C4E9CF1F8CB} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation -> NVIDIA Corporation)
- Task: {20F79B00-7C99-46D6-A7DB-D89B45C3D2DF} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
- Task: {3485C320-73F7-4834-9CD1-C7187B501661} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe (NVIDIA Corporation -> NVIDIA Corporation)
- Task: {3AC7304A-865A-42CD-BACA-B9BAA01AA88B} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
- Task: {46B42C3C-DEFC-45B7-A642-4E7C0005FBF6} - System32\Tasks\NahimicSvc32Run => C:\Windows\SysWOW64\NahimicSvc32.exe (A-Volute -> Nahimic)
- Task: {61DBEC9C-1386-4A68-936A-CFA06026BD30} - System32\Tasks\CAM.Desktop => C:\Program Files (x86)\NZXT\CAM\CAM.Desktop.exe (NZXT -> )
- Task: {6AF0E11D-0F69-44A4-BDD9-7646D535FF52} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
- Task: {79909CBE-84DD-4CB7-AB41-46BB085FABB8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
- Task: {8D074615-11DF-463A-8F0A-4C5A8E8185BE} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
- Task: {907A3CF5-A0B2-4E9E-9A66-16E04B982BA8} - System32\Tasks\CCleanerSkipUAC => D:\CCleaner64.exe (Piriform Software Ltd -> Piriform Software Ltd)
- Task: {98C38C4D-0829-4381-8CC4-33FBA8ED2615} - System32\Tasks\CCleaner Update => D:\CCUpdate.exe
- Task: {9C2F1B3C-E0DE-4316-B4EF-1C63D0A66022} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
- Task: {9C50FFAE-29A7-4BFD-9A88-571D4C22C799} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
- Task: {A6A5A409-48CA-4C98-91D4-237DE19EAEAC} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
- Task: {A9272A94-D549-4081-9DAD-7A69DF363AA7} - System32\Tasks\NahimicSvc64Run => C:\Windows\System32\NahimicSvc64.exe (A-Volute -> Nahimic)
- Task: {AD8D181E-A2E8-41B7-A3DD-FA9330EFA99A} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe (Nota Inc. -> Nota Inc.)
- Task: {B27D88C4-4988-4946-8A7C-FE8308ACC604} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
- Task: {C4E9025E-8E6F-4A78-95D4-9745CA797073} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
- Task: {D385844E-6084-4990-9269-7D752A4D87E7} - System32\Tasks\NahimicTask64 => C:\Windows\System32\.\NahimicSvc64.exe (A-Volute -> Nahimic)
- Task: {DE44E55C-6F41-4C56-A36B-0C6FD5BDE625} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe (AVAST Software s.r.o. -> AVAST Software)
- Task: {F2E5F4D6-140D-402A-8DC2-1210F1410B39} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe (Nota Inc. -> Nota Inc.)
- Task: {F3D3A304-749B-4259-818F-9958F743911D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe (NVIDIA Corporation -> NVIDIA Corporation)
- (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
- Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
- Task: C:\Windows\Tasks\NahimicTask32.job => C:\Windows\SysWOW64\NahimicSvc32.exe
- ==================== Shortcuts & WMI ========================
- (The entries could be listed to be restored or removed.)
- ==================== Loaded Modules (Whitelisted) ==============
- 2018-11-22 23:58 - 2019-01-30 15:17 - 001315208 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
- 2018-08-23 04:31 - 2018-08-23 04:31 - 000673104 _____ () C:\Windows\System32\NSConfiguratorDaemonModule.dll
- 2019-02-12 01:49 - 2019-02-12 01:49 - 000286960 _____ () D:\Synapse3\Service\Razer Synapse Service.exe
- 2018-09-15 02:28 - 2018-09-15 02:28 - 000834088 _____ () C:\Windows\SYSTEM32\inputhost.dll
- 2018-09-15 02:28 - 2018-09-15 02:28 - 000474624 _____ () C:\Windows\ShellExperiences\TileControl.dll
- 2019-01-29 19:52 - 2019-01-29 19:52 - 002801152 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
- 2019-01-29 19:52 - 2019-01-29 19:52 - 001740800 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
- 2019-02-12 01:49 - 2019-02-12 01:49 - 000303856 _____ () D:\Synapse3\Service\..\UserProcess\Razer Synapse Service Process.exe
- 2018-11-22 23:58 - 2019-01-30 15:17 - 101252488 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
- 2018-11-22 23:58 - 2019-01-30 15:17 - 004620168 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libglesv2.dll
- 2018-11-22 23:58 - 2019-01-30 15:17 - 000108936 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libegl.dll
- 2019-02-12 02:19 - 2019-02-12 02:19 - 003462384 _____ () D:\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe
- 2019-02-01 17:20 - 2018-11-19 19:56 - 102804768 _____ () D:\Steam\bin\cef\cef.win7x64\libcef.dll
- 2019-02-01 17:20 - 2018-12-05 18:47 - 001066784 _____ () D:\Steam\bin\cef\cef.win7x64\SDL2.dll
- 2019-02-01 17:20 - 2018-11-19 19:56 - 004866336 _____ () D:\Steam\bin\cef\cef.win7x64\libglesv2.dll
- 2019-02-01 17:20 - 2018-11-19 19:56 - 000116000 _____ () D:\Steam\bin\cef\cef.win7x64\libegl.dll
- 2019-01-31 15:29 - 2019-01-31 15:29 - 000282624 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll
- 2018-11-23 00:32 - 2018-11-23 00:32 - 002538056 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
- 2019-01-31 15:29 - 2019-01-31 15:29 - 001757696 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.dll
- 2019-01-29 19:52 - 2019-01-29 19:52 - 001942528 _____ () C:\Windows\ShellExperiences\PeopleCommonControls.dll
- 2018-09-15 02:28 - 2018-09-15 02:28 - 001396224 _____ () C:\Windows\ShellExperiences\PeopleBarFlyout.dll
- 2018-12-11 17:09 - 2018-12-11 17:09 - 002877952 _____ () C:\Windows\ShellExperiences\WindowsInternal.People.PeoplePicker.dll
- 2018-09-15 02:28 - 2018-09-15 02:28 - 000551424 _____ () C:\Windows\ShellExperiences\WindowsInternal.People.Relevance.QueryClient.dll
- 2019-02-15 11:44 - 2019-02-13 00:14 - 005186032 _____ () C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.109\libglesv2.dll
- 2019-02-15 11:44 - 2019-02-13 00:14 - 000117232 _____ () C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.109\libegl.dll
- 2019-02-15 11:39 - 2019-02-12 01:45 - 000151280 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Common.ChromaSDKWrapper.dll
- 2019-02-15 11:39 - 2019-02-12 01:46 - 000181488 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Common.NativeDeviceDetectionWrapper.dll
- 2019-02-15 11:39 - 2019-01-22 22:40 - 000207088 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Common.NativePhilipsHueWrapper.dll
- 2019-02-15 11:39 - 2019-02-12 01:46 - 000202480 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Common.PowerPlan.dll
- 2019-02-15 11:39 - 2019-02-12 02:11 - 000081648 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\RSy3_AccelWinM.dll
- 2019-02-15 11:39 - 2019-02-12 01:44 - 000354544 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\RSy3_AudioPlayer.dll
- 2019-02-15 11:39 - 2019-02-12 01:44 - 000135408 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\RSy3_KeyboardKeysWrapper.dll
- 2019-02-15 11:39 - 2019-02-12 02:11 - 000086256 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\RSy3_ManagedCommon.dll
- 2019-02-15 11:39 - 2019-02-12 02:11 - 000351984 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\RSy3_ManagedMacros.dll
- 2019-02-15 11:39 - 2019-02-12 02:11 - 000260336 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\RSy3_MappingTypesM.dll
- 2019-02-15 11:39 - 2019-02-12 01:45 - 002278128 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\RSy3_PowerSwitchWrapper.dll
- 2019-02-15 11:39 - 2019-01-24 16:25 - 000640240 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Devices\DeathAdder Elite\Bin\RSy3_DeviceStatus.dll
- 2019-02-15 11:39 - 2019-01-24 16:25 - 000334576 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Devices\DeathAdder Elite\Bin\RSy3_DriverMode.dll
- 2019-02-15 11:39 - 2019-01-24 16:25 - 000386288 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Devices\DeathAdder Elite\Bin\RSy3_Lighting.dll
- 2019-02-15 11:39 - 2019-01-24 16:25 - 000150768 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Devices\DeathAdder Elite\Bin\RSy3_Mapping.dll
- 2019-02-15 11:39 - 2019-01-24 16:25 - 000728816 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Devices\DeathAdder Elite\Bin\RSy3_MappingBaseM.dll
- 2019-02-15 11:39 - 2019-01-24 16:25 - 000360176 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Devices\DeathAdder Elite\Bin\RSy3_PollingRate.dll
- 2019-02-15 11:39 - 2019-01-24 16:25 - 000383216 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Devices\DeathAdder Elite\Bin\RSy3_Sensitivity.dll
- 2019-02-15 11:39 - 2019-01-24 16:25 - 000462576 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Devices\DeathAdder Elite\Bin\RSy3_SurfaceCalBaseM.dll
- 2019-02-15 11:39 - 2019-01-24 16:25 - 000086768 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Devices\DeathAdder Elite\Bin\RSy3_SurfaceCalPixart.dll
- 2019-02-15 11:39 - 2019-01-22 16:24 - 000640240 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Devices\Philips Hue\Bin\RSy3_DeviceStatus.dll
- 2019-02-15 11:39 - 2019-01-22 16:24 - 000334576 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Devices\Philips Hue\Bin\RSy3_DriverMode.dll
- 2019-02-15 11:39 - 2019-01-24 16:25 - 000055536 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Devices\DeathAdder Elite\Bin\RSy3_KeyboardKeys.dll
- 2018-11-22 23:58 - 2019-01-30 15:17 - 001033096 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
- 2019-02-12 01:44 - 2019-02-12 01:44 - 000361712 _____ () D:\Synapse3\UserProcess\RSy3_AudioAppStreamsWrapper.dll
- 2019-01-17 04:23 - 2019-01-17 04:23 - 000098544 _____ () D:\Synapse3\WPFUI\Framework\Common.Dependencies\RSy3_AudioMicPeakMeter.dll
- 2019-02-12 02:17 - 2019-02-12 02:17 - 000135408 _____ () D:\Synapse3\WPFUI\Framework\Common.Dependencies\RSy3_KeyboardKeysWrapper.dll
- 2019-02-01 17:20 - 2018-12-05 18:47 - 000885536 _____ () D:\Steam\SDL2.dll
- 2019-02-02 13:33 - 2019-02-02 12:33 - 002667296 _____ () D:\Steam\video.dll
- 2018-11-23 23:52 - 2016-08-31 20:02 - 004969248 _____ () D:\Steam\v8.dll
- 2019-02-01 17:20 - 2018-11-05 13:53 - 000351520 _____ () D:\Steam\libavresample-3.dll
- 2019-02-01 17:20 - 2018-11-05 13:53 - 000810784 _____ () D:\Steam\libavformat-57.dll
- 2019-02-01 17:20 - 2018-11-05 13:53 - 000847136 _____ () D:\Steam\libavutil-55.dll
- 2019-02-01 17:20 - 2018-11-05 13:53 - 000783648 _____ () D:\Steam\libswscale-4.dll
- 2018-11-23 23:52 - 2016-08-31 20:02 - 001195296 _____ () D:\Steam\icuuc.dll
- 2019-02-01 17:20 - 2018-11-05 13:53 - 005137696 _____ () D:\Steam\libavcodec-57.dll
- 2018-11-23 23:52 - 2016-08-31 20:02 - 001563936 _____ () D:\Steam\icui18n.dll
- 2019-02-02 13:33 - 2019-02-02 12:33 - 001031456 _____ () D:\Steam\bin\chromehtml.DLL
- 2018-11-23 23:52 - 2016-07-04 17:17 - 000266560 _____ () D:\Steam\openvr_api.dll
- 2019-01-28 16:56 - 2019-01-28 16:57 - 001005408 _____ () C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.Core.dll
- 2019-01-28 16:56 - 2019-01-28 16:57 - 053444984 _____ () C:\Program Files (x86)\Razer\Razer Services\Razer Central\libcef.dll
- 2019-01-28 16:56 - 2019-01-28 16:57 - 000691056 _____ () C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.BrowserSubprocess.Core.dll
- 2019-01-28 16:56 - 2019-01-28 16:57 - 001984392 _____ () C:\Program Files (x86)\Razer\Razer Services\Razer Central\libglesv2.dll
- 2019-01-28 16:56 - 2019-01-28 16:57 - 000082824 _____ () C:\Program Files (x86)\Razer\Razer Services\Razer Central\libegl.dll
- ==================== Alternate Data Streams (Whitelisted) =========
- (If an entry is included in the fixlist, only the ADS will be removed.)
- AlternateDataStreams: C:\Users\jeste:Heroes & Generals [38]
- AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [482]
- ==================== Safe Mode (Whitelisted) ===================
- (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
- ==================== Association (Whitelisted) ===============
- (If an entry is included in the fixlist, the registry item will be restored to default or removed.)
- ==================== Internet Explorer trusted/restricted ===============
- (If an entry is included in the fixlist, it will be removed from the registry.)
- ==================== Hosts content: ===============================
- (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
- 2018-09-15 02:31 - 2018-09-15 02:31 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
- ==================== Other Areas ============================
- (Currently there is no automatic fix for this section.)
- HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;D:\MinGW\bin;
- HKU\S-1-5-21-2038839032-3399155231-434175092-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
- DNS Servers: 75.75.75.75 - 75.75.76.76
- HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
- HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
- Windows Firewall is enabled.
- ==================== MSCONFIG/TASK MANAGER disabled items ==
- If an entry is included in the fixlist, it will be removed.
- HKU\S-1-5-21-2038839032-3399155231-434175092-1001\...\StartupApproved\Run: => "Discord"
- HKU\S-1-5-21-2038839032-3399155231-434175092-1001\...\StartupApproved\Run: => "CAM"
- HKU\S-1-5-21-2038839032-3399155231-434175092-1001\...\StartupApproved\Run: => "Gyazo"
- HKU\S-1-5-21-2038839032-3399155231-434175092-1001\...\StartupApproved\Run: => "FACEIT"
- HKU\S-1-5-21-2038839032-3399155231-434175092-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
- HKU\S-1-5-21-2038839032-3399155231-434175092-1001\...\StartupApproved\Run: => "NordVPN"
- HKU\S-1-5-21-2038839032-3399155231-434175092-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
- HKU\S-1-5-21-2038839032-3399155231-434175092-1001\...\StartupApproved\Run: => "OPENVPN-GUI"
- ==================== FirewallRules (Whitelisted) ===============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- FirewallRules: [{927D419F-B43D-4774-A03F-4BA0C787EB57}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
- FirewallRules: [{2B2AA111-F0BC-4CAB-9B20-B1DB2406605A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
- FirewallRules: [{9C0F54E6-093C-4B21-896A-4EC7EB4AC65F}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
- FirewallRules: [{E0CCB9B3-1476-42CD-BEFF-C74A7BB1F1CA}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
- FirewallRules: [{383F01E7-A5E3-4BA6-AC1B-1C3390645E70}] => (Allow) D:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (Bluehole, Inc. -> PUBG Corporation )
- FirewallRules: [{A1C3948E-A97B-4499-BF38-D639517D2DE5}] => (Allow) D:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (Bluehole, Inc. -> PUBG Corporation )
- FirewallRules: [TCP Query User{B448B88F-47D4-47B3-8033-89F30C64216A}D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
- FirewallRules: [UDP Query User{C27DDD76-7BCE-44E8-9E7C-3C7AA988433D}D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
- FirewallRules: [{E7747C28-82EC-4714-80B5-22CACC9EF2F9}] => (Allow) D:\Steam\steamapps\common\insurgency2\insurgency_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
- FirewallRules: [{854AB554-E92E-449B-9342-CF06757986F1}] => (Allow) D:\Steam\steamapps\common\insurgency2\insurgency_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
- FirewallRules: [{9EA4526A-876D-4F85-9564-97F2F2098F75}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
- FirewallRules: [{A2944142-04AB-4EA7-A571-966EBCDA7CA0}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
- FirewallRules: [TCP Query User{F45D9228-F37E-45EB-8D0A-8E2F350FD55E}D:\steam\steamapps\common\insurgency2\insurgency_x64.exe] => (Allow) D:\steam\steamapps\common\insurgency2\insurgency_x64.exe (New World Interactive LLC -> New World Interactive LLC)
- FirewallRules: [UDP Query User{623F4605-298B-491A-952F-6E863C34C5DF}D:\steam\steamapps\common\insurgency2\insurgency_x64.exe] => (Allow) D:\steam\steamapps\common\insurgency2\insurgency_x64.exe (New World Interactive LLC -> New World Interactive LLC)
- FirewallRules: [{9B5D0C0E-BBF4-41D3-BFFE-826F3BB09466}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
- FirewallRules: [{804C5C66-EA3B-44D2-9C4D-4C1429B81386}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
- FirewallRules: [{DF77494E-09E8-4792-A226-D8A0C7629822}] => (Allow) D:\Steam\steamapps\common\Hacknet\Hacknet.exe ()
- FirewallRules: [{0986FCC8-0DE2-4688-BCA0-4E2F51CA5E0E}] => (Allow) D:\Steam\steamapps\common\Hacknet\Hacknet.exe ()
- FirewallRules: [TCP Query User{6476EE96-7AF8-4535-BBCB-2E6A6792C5FF}D:\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
- FirewallRules: [UDP Query User{CDD74CD9-A690-4A21-8670-7C7B591F2830}D:\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
- FirewallRules: [{0807406D-92A1-4252-95F2-4690D197A7CE}] => (Allow) D:\Steam\steamapps\common\H1Z1\H1Z1_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
- FirewallRules: [{C6773185-EEE3-4E0B-B6EC-8E0486BAD503}] => (Allow) D:\Steam\steamapps\common\H1Z1\H1Z1_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
- FirewallRules: [{2D932236-9CD7-4ED6-A78A-F3A36C4B869A}] => (Allow) D:\Steam\steamapps\common\sandstorm\InsurgencyEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
- FirewallRules: [{84608717-5133-4525-898F-064CA66320DB}] => (Allow) D:\Steam\steamapps\common\sandstorm\InsurgencyEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
- FirewallRules: [TCP Query User{FF9BB75F-69D1-46C0-B886-BF644A41C87B}D:\steam\steamapps\common\h1z1\h1z1.exe] => (Allow) D:\steam\steamapps\common\h1z1\h1z1.exe (Daybreak Game Company LLC -> Daybreak Game Company)
- FirewallRules: [UDP Query User{AAAD5DFB-A6AA-4BB1-814B-4C2EB61D51B9}D:\steam\steamapps\common\h1z1\h1z1.exe] => (Allow) D:\steam\steamapps\common\h1z1\h1z1.exe (Daybreak Game Company LLC -> Daybreak Game Company)
- FirewallRules: [{E8DA6219-BD28-4E42-A72E-DCF6C69B4B98}] => (Allow) D:\Steam\steamapps\common\Black Squad\binaries\win32\SteamLauncher.exe (NSSTUDIO INC. -> NS Studio)
- FirewallRules: [{ACB211E1-5263-452B-A98E-EF7C9F19A4B3}] => (Allow) D:\Steam\steamapps\common\Black Squad\binaries\win32\SteamLauncher.exe (NSSTUDIO INC. -> NS Studio)
- FirewallRules: [{ABE31B00-2896-47C6-9510-002B14B50745}] => (Allow) D:\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe (Reto-Moto ApS -> Reto-Moto ApS)
- FirewallRules: [{98619593-F5C8-4D1B-A651-AA7BF9A102DA}] => (Allow) D:\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe (Reto-Moto ApS -> Reto-Moto ApS)
- FirewallRules: [{3A8871CE-6C5E-4043-BED3-636440BD9B1E}] => (Allow) D:\Steam\steamapps\common\Rust\Rust.exe (Facepunch Studios Ltd -> EasyAntiCheat Ltd)
- FirewallRules: [{0BEBDDEA-D4DD-49B8-AE37-1DC7B7C95F45}] => (Allow) D:\Steam\steamapps\common\Rust\Rust.exe (Facepunch Studios Ltd -> EasyAntiCheat Ltd)
- FirewallRules: [{8F04E62D-BF00-4AC2-9117-73FF095AC7C5}] => (Allow) D:\Steam\steamapps\common\Black Squad\binaries\win32\BlackSquadGame.exe (NSSTUDIO INC. -> NS Studio, Inc.)
- FirewallRules: [{40CCB9FC-967D-4D76-B45F-7D153C1B50E9}] => (Allow) D:\Steam\steamapps\common\Black Squad\binaries\win32\BlackSquadGame.exe (NSSTUDIO INC. -> NS Studio, Inc.)
- FirewallRules: [{993C0C43-197F-43FF-A7EB-71FB52A96873}] => (Allow) D:\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe ()
- FirewallRules: [{B6CF0E6A-CEA4-455D-B15E-3883A4CF713B}] => (Allow) D:\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe ()
- FirewallRules: [{7AD1C06C-0CCE-4EAD-BFAD-689995B3FEF9}] => (Allow) D:\Steam\steamapps\common\Combat Arms Reloaded\Engine.exe (Error3: CryptCATAdminCalcHashFromFileHandle failed to return cbHash, #2 -> VALOFE)
- FirewallRules: [{BC860D8C-C870-4711-84D7-CED7E6720577}] => (Allow) D:\Steam\steamapps\common\Combat Arms Reloaded\Engine.exe (Error3: CryptCATAdminCalcHashFromFileHandle failed to return cbHash, #2 -> VALOFE)
- FirewallRules: [{4A4907CE-0DB3-4E33-885E-81DA65259CC3}] => (Allow) D:\Steam\steamapps\common\Combat Arms Reloaded\NMService.exe (valofe Co.,Ltd. -> Nexon Corp.)
- FirewallRules: [{2509FFA7-BFFF-4AAA-8B04-7A2574D916FF}] => (Allow) D:\Steam\steamapps\common\Combat Arms Reloaded\NMService.exe (valofe Co.,Ltd. -> Nexon Corp.)
- FirewallRules: [{8B65B219-47E7-47C6-94B1-0A027C7F0CED}] => (Allow) D:\Steam\steamapps\common\Realm Royale\Binaries\Win64\RealmEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
- FirewallRules: [{4CBC5727-A2AF-4950-BB29-5848BAE6D3CA}] => (Allow) D:\Steam\steamapps\common\Realm Royale\Binaries\Win64\RealmEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
- FirewallRules: [TCP Query User{722DE0BA-A768-44D4-BFC1-8F63890B433A}D:\steam\steamapps\common\realm royale\binaries\win64\realm.exe] => (Allow) D:\steam\steamapps\common\realm royale\binaries\win64\realm.exe (Hirez Studios, Inc.)
- FirewallRules: [UDP Query User{8F9244C8-01F3-41D0-8E78-5A87643D9EAA}D:\steam\steamapps\common\realm royale\binaries\win64\realm.exe] => (Allow) D:\steam\steamapps\common\realm royale\binaries\win64\realm.exe (Hirez Studios, Inc.)
- FirewallRules: [{7733C13C-AE16-4CD4-9179-9064A7BCD301}] => (Allow) D:\Steam\steamapps\common\Ring of Elysium\SLauncher.exe (Tencent Technology(Shenzhen) Company Limited -> )
- FirewallRules: [{0F8A0758-E1A5-44BB-9C54-5EC550E20688}] => (Allow) D:\Steam\steamapps\common\Ring of Elysium\SLauncher.exe (Tencent Technology(Shenzhen) Company Limited -> )
- FirewallRules: [{31FB13A5-E311-4434-9D8E-B05B10FD044A}] => (Allow) D:\Steam\steamapps\common\Black Squad\binaries\win64\SteamLauncher.exe (NSSTUDIO INC. -> NS Studio)
- FirewallRules: [{2A0F9B91-E3C8-41CC-B05F-229A1B46F780}] => (Allow) D:\Steam\steamapps\common\Black Squad\binaries\win64\SteamLauncher.exe (NSSTUDIO INC. -> NS Studio)
- FirewallRules: [TCP Query User{18756CF3-B63A-4D50-84DC-439E90F71843}D:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
- FirewallRules: [UDP Query User{61006F36-4537-4CC4-AB0D-50CA6CFC87B9}D:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
- FirewallRules: [TCP Query User{D8453BB0-74A7-4BC0-A9DB-F663F526790F}D:\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
- FirewallRules: [UDP Query User{F0CEE543-A201-4696-8568-80DDA2EF49C6}D:\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
- FirewallRules: [TCP Query User{C005F2A0-B184-4488-8FFC-AD62B13E4D7A}D:\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe] => (Allow) D:\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe (New World Interactive LLC -> New World Interactive)
- FirewallRules: [UDP Query User{3058EB53-A079-4729-AFCC-7DA9678DE64B}D:\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe] => (Allow) D:\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe (New World Interactive LLC -> New World Interactive)
- FirewallRules: [{DF7CFAB8-AED2-4008-99A8-B497451303F7}] => (Allow) D:\Steam\steamapps\common\Half-Life\hl.exe (Valve -> Valve)
- FirewallRules: [{4E26A492-657E-4853-88B0-9B334086EE20}] => (Allow) D:\Steam\steamapps\common\Half-Life\hl.exe (Valve -> Valve)
- FirewallRules: [{97E6E597-3DDC-4CDD-B3C3-388B04BFC7A9}] => (Allow) D:\Steam\steamapps\common\Black Squad\binaries\win64\BlackSquadGame.exe (NSSTUDIO INC. -> NS Studio, Inc.)
- FirewallRules: [{DF859154-CC8A-4668-92EF-B344865A6B44}] => (Allow) D:\Steam\steamapps\common\Black Squad\binaries\win64\BlackSquadGame.exe (NSSTUDIO INC. -> NS Studio, Inc.)
- FirewallRules: [{9D1732DA-C33D-43B4-9269-70EF4476547A}] => (Allow) D:\Steam\steamapps\common\Team Fortress 2\hl2.exe (Valve -> )
- FirewallRules: [{B79DC715-0007-4715-BAB0-5BA84F14ACDE}] => (Allow) D:\Steam\steamapps\common\Team Fortress 2\hl2.exe (Valve -> )
- FirewallRules: [{81CC386D-DA69-4D0C-A75C-16EA92183237}] => (Allow) D:\Steam\steamapps\common\Cuisine Royale\eac_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
- FirewallRules: [{AAD30B0B-AFF0-44A0-8A25-BECAF0A3B7DB}] => (Allow) D:\Steam\steamapps\common\Cuisine Royale\eac_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
- FirewallRules: [{E40384EE-C9EF-45CB-B8D4-FA6C1C656B6C}] => (Allow) D:\Steam\steamapps\common\Cuisine Royale\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
- FirewallRules: [{62515B0F-D53F-4FD5-9AF6-1E2D78C8A5C2}] => (Allow) D:\Steam\steamapps\common\Cuisine Royale\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
- FirewallRules: [{E43210C0-9B0D-4B9F-BD3A-6ED69482AC06}] => (Allow) D:\Steam\steamapps\common\Cuisine Royale\bpreport.exe ()
- FirewallRules: [{5DBC68ED-304B-4CB7-A906-0454863BD3E5}] => (Allow) D:\Steam\steamapps\common\Cuisine Royale\bpreport.exe ()
- FirewallRules: [{A9D8F619-A825-4730-B94B-D060CA83A6B9}] => (Allow) D:\Steam\steamapps\common\Cuisine Royale\win32\bpreport.exe ()
- FirewallRules: [{39D2B8E4-5BEA-4562-87A6-3D1C11C527F0}] => (Allow) D:\Steam\steamapps\common\Cuisine Royale\win32\bpreport.exe ()
- FirewallRules: [{CA0E4448-7DDC-43E1-9702-F1F5587CD8E4}] => (Allow) D:\Steam\steamapps\common\Cuisine Royale\gaijin_downloader.exe (Gaijin Network LTD -> Gaijin Entertainment)
- FirewallRules: [{09910ECB-E851-447E-9DB5-7323EBE196C8}] => (Allow) D:\Steam\steamapps\common\Cuisine Royale\gaijin_downloader.exe (Gaijin Network LTD -> Gaijin Entertainment)
- FirewallRules: [{1EE8B0BE-73D3-4758-99DE-D67A9649D7C9}] => (Allow) D:\Steam\steamapps\common\Cuisine Royale\win64\enlisted.exe (Gaijin Network LTD -> Gaijin Entertainment)
- FirewallRules: [{D0185F81-CF65-4C6C-8E83-94D0213597CB}] => (Allow) D:\Steam\steamapps\common\Cuisine Royale\win64\enlisted.exe (Gaijin Network LTD -> Gaijin Entertainment)
- FirewallRules: [{A4EBD64B-123D-4118-B049-695F5E721954}] => (Allow) D:\Steam\steamapps\common\Cuisine Royale\win32\enlisted.exe (Gaijin Network LTD -> Gaijin Entertainment)
- FirewallRules: [{1D0EEA31-D710-41EE-8324-DBE202A796D3}] => (Allow) D:\Steam\steamapps\common\Cuisine Royale\win32\enlisted.exe (Gaijin Network LTD -> Gaijin Entertainment)
- FirewallRules: [{B9984BD7-651F-4F3C-9BF7-6106E23BDC85}] => (Allow) D:\Steam\steamapps\common\Hurtworld\Hurtworld.exe (EasyAntiCheat Ltd)
- FirewallRules: [{4624BDA4-5C97-4033-AE8B-BDF830E98715}] => (Allow) D:\Steam\steamapps\common\Hurtworld\Hurtworld.exe (EasyAntiCheat Ltd)
- FirewallRules: [{65921534-7366-4DD7-A6F5-B4D3EDBDC24B}] => (Allow) D:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )
- FirewallRules: [{0DB733C3-5781-4DD7-8939-9DB1A8507B96}] => (Allow) D:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )
- FirewallRules: [{BDA0337C-3EBB-4545-B3B9-9E4302177072}] => (Allow) D:\CCUpdate.exe No File
- FirewallRules: [{DDF002CA-C0FE-4331-AD89-0278EEE665B1}] => (Allow) D:\CCUpdate.exe No File
- FirewallRules: [{9318ABC3-E317-46B0-9708-06413569F454}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
- FirewallRules: [{43C26310-0CF0-4694-BC90-26375C7B8E45}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
- FirewallRules: [{6BA42770-670D-4BB7-A99B-A0AA1E7FD981}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
- FirewallRules: [{002B9F82-F35A-4352-B7B3-005F31C76E75}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
- FirewallRules: [TCP Query User{8102CF3E-F6FB-4297-AA3F-B3E62F667B3A}D:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) D:\program files (x86)\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
- FirewallRules: [UDP Query User{4B48768D-548C-45F6-9080-073924977DE6}D:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) D:\program files (x86)\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
- FirewallRules: [{BF285525-A394-49DA-BD98-E2AE54763D0A}] => (Allow) LPort=38518
- FirewallRules: [{1B74E42E-A8DA-44B3-A9C6-3B2D7097C575}] => (Allow) LPort=9142
- FirewallRules: [TCP Query User{8BDCBE72-BADF-4C4C-9276-199FFD2506F4}C:\program files (x86)\nzxt\cam\cam.desktop.exe] => (Allow) C:\program files (x86)\nzxt\cam\cam.desktop.exe (NZXT -> )
- FirewallRules: [UDP Query User{47A31E3A-FDA1-4B5C-9D77-E9E0039CA861}C:\program files (x86)\nzxt\cam\cam.desktop.exe] => (Allow) C:\program files (x86)\nzxt\cam\cam.desktop.exe (NZXT -> )
- FirewallRules: [{7D01E2D7-C146-488C-A603-EE7D4D74516D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
- FirewallRules: [{68B0F838-C5CF-41C8-AAA9-4179BE09CF07}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
- FirewallRules: [{8ADE6939-C6A7-4CE2-936E-9493B6EF7F47}] => (Allow) D:\fiddler\Fiddler.exe (TELERIK EAD -> Telerik)
- FirewallRules: [{6CD96ACA-A2BC-4DD6-8A60-797FEFF36BF8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
- FirewallRules: [{BCCAC51A-7A11-4E10-AAF5-E4550D53EAC4}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
- FirewallRules: [{ACCBBF23-A8DF-4318-BF58-8C3114978418}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
- FirewallRules: [{F8316DB3-F355-4D68-9F34-E3C12B5F59CB}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield V\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
- FirewallRules: [{F8223D5D-3F76-4F51-BD09-3061D4C7A5DA}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield V\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
- FirewallRules: [{A805F470-B5C7-48F0-B2DA-3810E79905B6}] => (Allow) D:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
- FirewallRules: [{FCA54179-1ADA-42BA-9E17-5648C8156767}] => (Allow) D:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
- ==================== Restore Points =========================
- ATTENTION: System Restore is disabled
- ==================== Faulty Device Manager Devices =============
- ==================== Event log errors: =========================
- Application errors:
- ==================
- Error: (02/16/2019 09:49:22 PM) (Source: PerfNet) (EventID: 2004) (User: )
- Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.
- Error: (02/16/2019 03:20:38 PM) (Source: PerfNet) (EventID: 2004) (User: )
- Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.
- Error: (02/16/2019 03:19:30 PM) (Source: PerfNet) (EventID: 2004) (User: )
- Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.
- Error: (02/08/2019 06:56:20 PM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Faulting application name: QtWebEngineProcess.exe, version: 0.0.0.0, time stamp: 0x5aaa0345
- Faulting module name: Qt5WebEngineCore.dll, version: 5.8.0.0, time stamp: 0x5aa9fed8
- Exception code: 0xc0000005
- Fault offset: 0x025e3c61
- Faulting process id: 0x343c
- Faulting application start time: 0x01d4c0097ae739d6
- Faulting application path: D:\orgin\Origin\QtWebEngineProcess.exe
- Faulting module path: D:\orgin\Origin\Qt5WebEngineCore.dll
- Report Id: 0e7fa495-3a88-4f75-b5a2-5f6eb3d9d8f4
- Faulting package full name:
- Faulting package-relative application ID:
- Error: (01/31/2019 08:26:36 AM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Faulting application name: nvcontainer.exe, version: 1.13.2527.340, time stamp: 0x5bf14408
- Faulting module name: ntdll.dll, version: 10.0.17763.292, time stamp: 0x7ded7809
- Exception code: 0xc000070a
- Fault offset: 0x0000000000110309
- Faulting process id: 0x39dc
- Faulting application start time: 0x01d4b968952970aa
- Faulting application path: C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
- Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
- Report Id: e621aa74-d038-46a6-8a49-a0c24f77db6b
- Faulting package full name:
- Faulting package-relative application ID:
- Error: (01/30/2019 11:11:32 PM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Faulting application name: eseaclient.exe, version: 7.0.0.0, time stamp: 0x5c43d23f
- Faulting module name: ntdll.dll, version: 10.0.17763.292, time stamp: 0x7ded7809
- Exception code: 0xc0000005
- Fault offset: 0x000000000004df23
- Faulting process id: 0x1844
- Faulting application start time: 0x01d4b91293b3ce3a
- Faulting application path: D:\ESEA\eseaclient.exe
- Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
- Report Id: 8cee8fa6-0b00-4ae6-af0f-bc99d1b77d85
- Faulting package full name:
- Faulting package-relative application ID:
- Error: (01/27/2019 04:44:03 PM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Faulting application name: bad_module_info, version: 0.0.0.0, time stamp: 0x00000000
- Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
- Exception code: 0x00000000
- Fault offset: 0x0000000000000000
- Faulting process id: 0x38b0
- Faulting application start time: 0x01d4b6828bd4b8d1
- Faulting application path: bad_module_info
- Faulting module path: unknown
- Report Id: e4a232a9-844b-4cb0-b27b-f841641932a5
- Faulting package full name:
- Faulting package-relative application ID:
- Error: (01/25/2019 10:31:53 PM) (Source: Application Hang) (EventID: 1002) (User: )
- Description: The program hl2.exe version 0.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
- Process ID: 338c
- Start Time: 01d4b526a6549641
- Termination Time: 4294967295
- Application Path: D:\Steam\steamapps\common\Team Fortress 2\hl2.exe
- Report Id: a7ca2e7d-74c7-4e85-a337-7bcf5b70d19f
- Faulting package full name:
- Faulting package-relative application ID:
- Hang type: Top level window is idle
- System errors:
- =============
- Error: (02/17/2019 12:40:30 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-EB3CJ0L)
- Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
- {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
- and APPID
- {15C20B67-12E7-4BB6-92BB-7AFF07997402}
- to the user DESKTOP-EB3CJ0L\jeste SID (S-1-5-21-2038839032-3399155231-434175092-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
- Error: (02/17/2019 12:13:33 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
- Description: The ESET Service service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
- Error: (02/17/2019 11:31:05 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-EB3CJ0L)
- Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
- {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
- and APPID
- {15C20B67-12E7-4BB6-92BB-7AFF07997402}
- to the user DESKTOP-EB3CJ0L\jeste SID (S-1-5-21-2038839032-3399155231-434175092-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
- Error: (02/17/2019 11:23:35 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-EB3CJ0L)
- Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
- {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
- and APPID
- {15C20B67-12E7-4BB6-92BB-7AFF07997402}
- to the user DESKTOP-EB3CJ0L\jeste SID (S-1-5-21-2038839032-3399155231-434175092-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
- Error: (02/17/2019 11:21:31 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
- Windows.SecurityCenter.WscDataProtection
- and APPID
- Unavailable
- to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
- Error: (02/17/2019 11:21:31 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
- Windows.SecurityCenter.SecurityAppBroker
- and APPID
- Unavailable
- to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
- Error: (02/17/2019 11:21:31 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
- Windows.SecurityCenter.SecurityAppBroker
- and APPID
- Unavailable
- to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
- Error: (02/17/2019 11:21:31 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
- Windows.SecurityCenter.WscBrokerManager
- and APPID
- Unavailable
- to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
- Windows Defender:
- ===================================
- Date: 2019-02-17 11:51:37.910
- Description:
- Windows Defender Antivirus scan has been stopped before completion.
- Scan ID: {241FAC6B-FD13-4453-876D-E4C658C36583}
- Scan Type: Antimalware
- Scan Parameters: Full Scan
- Date: 2019-02-17 11:44:49.852
- Description:
- Windows Defender Antivirus scan has been stopped before completion.
- Scan ID: {5F277C8A-667A-4DBD-9B8A-2DC000547B0D}
- Scan Type: Antimalware
- Scan Parameters: Full Scan
- Date: 2019-02-17 11:21:13.926
- Description:
- Windows Defender Antivirus scan has been stopped before completion.
- Scan ID: {A781BAC1-B896-43D2-89DC-1CF74273E7A6}
- Scan Type: Antimalware
- Scan Parameters: Quick Scan
- Date: 2019-02-17 11:18:42.820
- Description:
- Windows Defender Antivirus has detected malware or other potentially unwanted software.
- For more information please see the following:
- https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Occamy.C&threatid=2147726780&enterprise=0
- Name: Trojan:Win32/Occamy.C
- ID: 2147726780
- Severity: Severe
- Category: Trojan
- Path: containerfile:_C:\Users\jeste\AppData\Local\Mozilla\Firefox\Profiles\vcvet8v6.default\cache2\entries\73AFB51CFC57077FCC6F60405C4D9C4721555D82; file:_C:\Users\jeste\AppData\Local\Mozilla\Firefox\Profiles\vcvet8v6.default\cache2\entries\73AFB51CFC57077FCC6F60405C4D9C4721555D82->[lowcase_mzpe]
- Detection Origin: Local machine
- Detection Type: FastPath
- Detection Source: System
- Process Name: Unknown
- Signature Version: AV: 1.287.93.0, AS: 1.287.93.0, NIS: 1.287.93.0
- Engine Version: AM: 1.1.15700.8, NIS: 1.1.15700.8
- Date: 2019-02-17 11:18:28.012
- Description:
- Windows Defender Antivirus has detected malware or other potentially unwanted software.
- For more information please see the following:
- https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Occamy.C&threatid=2147726780&enterprise=0
- Name: Trojan:Win32/Occamy.C
- ID: 2147726780
- Severity: Severe
- Category: Trojan
- Path: containerfile:_C:\Users\jeste\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0024f9; containerfile:_C:\Users\jeste\AppData\Local\Mozilla\Firefox\Profiles\vcvet8v6.default\cache2\entries\73AFB51CFC57077FCC6F60405C4D9C4721555D82; containerfile:_E:\$RECYCLE.BIN\S-1-5-21-2038839032-3399155231-434175092-1001\$RL2M6S6.crdownload; containerfile:_E:\$RECYCLE.BIN\S-1-5-21-2038839032-3399155231-434175092-1001\$RSUAT2A.crdownload; file:_C:\Users\jeste\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0024f9->[lowcase_mzpe]; file:_C:\Users\jeste\AppData\Local\Mozilla\Firefox\Profiles\vcvet8v6.default\cache2\entries\73AFB51CFC57077FCC6F60405C4D9C4721555D82->[lowcase_mzpe]; file:_E:\$RECYCLE.BIN\S-1-5-21-2038839032-3399155231-434175092-1001\$RL2M6S6.crdownload->[lowcase_mzpe]; file:_E:\$RECYCLE.BIN\S-1-5-21-2038839032-3399155231-434175092-1001\$RSUAT2A.crdownload->[lowcase_mzpe]
- Detection Origin: Local machine
- Detection Type: FastPath
- Detection Source: System
- Process Name: Unknown
- Signature Version: AV: 1.287.93.0, AS: 1.287.93.0, NIS: 1.287.93.0
- Engine Version: AM: 1.1.15700.8, NIS: 1.1.15700.8
- Date: 2019-01-31 08:37:13.946
- Description:
- Windows Defender Antivirus has encountered an error trying to update signatures.
- New Signature Version:
- Previous Signature Version: 1.285.440.0
- Update Source: Microsoft Update Server
- Signature Type: AntiVirus
- Update Type: Full
- Current Engine Version:
- Previous Engine Version: 1.1.15600.4
- Error code: 0x80072f8f
- Error description: A security error occurred
- Date: 2019-01-30 12:09:53.894
- Description:
- Windows Defender Antivirus has encountered an error trying to update signatures.
- New Signature Version:
- Previous Signature Version: 1.285.440.0
- Update Source: Microsoft Update Server
- Signature Type: AntiVirus
- Update Type: Full
- Current Engine Version:
- Previous Engine Version: 1.1.15600.4
- Error code: 0x80072f8f
- Error description: A security error occurred
- CodeIntegrity:
- ===================================
- Date: 2019-02-17 12:15:22.895
- Description:
- Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2019-02-17 12:15:22.893
- Description:
- Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2019-02-17 12:15:22.887
- Description:
- Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2019-02-17 12:15:22.885
- Description:
- Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2019-02-17 12:15:22.865
- Description:
- Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2019-02-17 12:15:22.863
- Description:
- Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2019-02-17 12:14:42.128
- Description:
- Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2019-02-17 12:14:42.125
- Description:
- Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- ==================== Memory info ===========================
- Processor: Intel(R) Core(TM) i7-8086K CPU @ 4.00GHz
- Percentage of memory in use: 20%
- Total physical RAM: 32692.4 MB
- Available physical RAM: 25939.82 MB
- Total Virtual: 34740.4 MB
- Available Virtual: 25804.34 MB
- ==================== Drives ================================
- Drive c: () (Fixed) (Total:111.19 GB) (Free:57.99 GB) NTFS
- Drive d: (EVERYTHING) (Fixed) (Total:1863 GB) (Free:1489.96 GB) NTFS
- Drive e: (SAVE) (Fixed) (Total:2794.39 GB) (Free:2793.89 GB) NTFS
- \\?\Volume{f222267d-54e9-4cc7-902a-57d361abf3ff}\ (Recovery) (Fixed) (Total:0.49 GB) (Free:0.47 GB) NTFS
- \\?\Volume{933b17de-6839-4429-b0c5-a8c1b14ea08e}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
- ==================== MBR & Partition Table ==================
- ========================================================
- Disk: 0 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)
- Partition: GPT.
- ========================================================
- Disk: 1 (Protective MBR) (Size: 111.8 GB) (Disk ID: 00000000)
- Partition: GPT.
- ========================================================
- Disk: 2 (Protective MBR) (Size: 2794.5 GB) (Disk ID: 00000000)
- Partition: GPT.
- ==================== End of Addition.txt ============================
Add Comment
Please, Sign In to add comment