API tools faq
paste
Guest User

Untitled

a guest
Feb 17th, 2019
6,502
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 60.81 KB | None | 0 0
raw download clone embed print report
  1. Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17.02.2019
  2. Ran by jeste (17-02-2019 13:01:36)
  3. Running from C:\Users\jeste\Desktop
  4. Windows 10 Pro Version 1809 17763.316 (X64) (2018-11-23 20:30:15)
  5. Boot Mode: Normal
  6. ==========================================================
  7.  
  8.  
  9. ==================== Accounts: =============================
  10.  
  11. Administrator (S-1-5-21-2038839032-3399155231-434175092-500 - Administrator - Disabled)
  12. DefaultAccount (S-1-5-21-2038839032-3399155231-434175092-503 - Limited - Disabled)
  13. Guest (S-1-5-21-2038839032-3399155231-434175092-501 - Limited - Disabled)
  14. jeste (S-1-5-21-2038839032-3399155231-434175092-1001 - Administrator - Enabled) => C:\Users\jeste
  15. John (S-1-5-21-2038839032-3399155231-434175092-1002 - Limited - Enabled)
  16. WDAGUtilityAccount (S-1-5-21-2038839032-3399155231-434175092-504 - Limited - Disabled)
  17.  
  18. ==================== Security Center ========================
  19.  
  20. (If an entry is included in the fixlist, it will be removed.)
  21.  
  22. AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
  23. AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
  24. AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
  25. AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
  26. AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
  27. AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
  28. FW: ESET Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}
  29.  
  30. ==================== Installed Programs ======================
  31.  
  32. (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
  33.  
  34. Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.257 - Adobe Systems Incorporated)
  35. Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.0.2 - Electronic Arts, Inc.)
  36. Battlefield™ V (HKLM-x32\...\{e26b382f-e945-4f70-9318-121b683f1d61}) (Version: 1.0.59.63793 - Electronic Arts)
  37. CAM (HKLM-x32\...\{A733CAE6-2B9A-4A7A-97D7-E7C55E8554C1}) (Version: 3.7.5 - NZXT)
  38. CCleaner (HKLM\...\CCleaner) (Version: 5.52 - Piriform)
  39. CodeLite (HKLM-x32\...\CodeLite_is1) (Version: 12.0.10 - Eran Ifrah)
  40. CPUID HWMonitor 1.37 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.37 - CPUID, Inc.)
  41. Discord (HKU\S-1-5-21-2038839032-3399155231-434175092-1001\...\Discord) (Version: 0.0.304 - Discord Inc.)
  42. DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 418.91 - NVIDIA Corporation) Hidden
  43. Epic Games Launcher (HKLM-x32\...\{0E63B233-DC24-442C-BD38-0B91D90FEC5B}) (Version: 1.1.167.0 - Epic Games, Inc.)
  44. Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
  45. ESEA Client (HKU\S-1-5-21-2038839032-3399155231-434175092-1001\...\ESEA) (Version: 6.0.0.0 - Turtle Entertainment Online, Inc.)
  46. ESET Security (HKLM\...\{F1544F11-BFCC-43CC-9D0C-169A7E99369E}) (Version: 12.0.31.0 - ESET, spol. s r.o.)
  47. FACEIT (HKU\S-1-5-21-2038839032-3399155231-434175092-1001\...\FACEITApp) (Version: 1.20.0 - FACEIT Ltd.)
  48. Google Chrome (HKLM-x32\...\Google Chrome) (Version: 72.0.3626.109 - Google Inc.)
  49. Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
  50. Gyazo 3.5.1.0 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: - Nota Inc.)
  51. Havij 1.12 Free (HKLM-x32\...\Havij_is1) (Version: - ITSecTeam)
  52. Intel(R) Chipset Device Software (HKLM-x32\...\{eb0d4a41-3065-42b0-a868-c60d42d3ea98}) (Version: 10.1.17695.8086 - Intel(R) Corporation) Hidden
  53. Java 8 Update 201 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
  54. Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
  55. Malwarebytes version 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
  56. Microsoft OneDrive (HKU\S-1-5-21-2038839032-3399155231-434175092-1001\...\OneDriveSetup.exe) (Version: 19.002.0107.0008 - Microsoft Corporation)
  57. Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
  58. Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
  59. Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
  60. Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
  61. Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
  62. Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
  63. Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
  64. Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
  65. Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
  66. Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
  67. Mozilla Firefox 65.0 (x64 en-US) (HKLM\...\Mozilla Firefox 65.0 (x64 en-US)) (Version: 65.0 - Mozilla)
  68. Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 65.0 - Mozilla)
  69. MSI Afterburner 4.5.0 (HKLM-x32\...\Afterburner) (Version: 4.5.0 - MSI Co., LTD)
  70. NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.13 - NVIDIA Corporation) Hidden
  71. NVIDIA 3D Vision Controller Driver 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
  72. NVIDIA 3D Vision Driver 418.91 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 418.91 - NVIDIA Corporation)
  73. NVIDIA GeForce Experience 3.17.0.126 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.17.0.126 - NVIDIA Corporation)
  74. NVIDIA Graphics Driver 418.91 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 418.91 - NVIDIA Corporation)
  75. NVIDIA HD Audio Driver 1.3.38.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.13 - NVIDIA Corporation)
  76. NVIDIA PhysX System Software 9.18.0907 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 - NVIDIA Corporation)
  77. OpenVPN 2.4.5-I601 (HKLM\...\OpenVPN) (Version: 2.4.5-I601 - OpenVPN Technologies, Inc.)
  78. Origin (HKLM-x32\...\Origin) (Version: 10.5.34.21025 - Electronic Arts, Inc.)
  79. Progress Telerik Fiddler (HKU\S-1-5-21-2038839032-3399155231-434175092-1001\...\Fiddler2) (Version: 5.0.20182.28034 - Telerik)
  80. Razer Chroma SDK (HKLM-x32\...\Razer Chroma SDK) (Version: 2.22.3 - Razer Inc.)
  81. Razer Synapse (HKLM-x32\...\Razer Synapse) (Version: 3.4.0216.021216 - Razer Inc.)
  82. Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8480 - Realtek Semiconductor Corp.)
  83. Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
  84. TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
  85. UE4 Prerequisites (x64) (HKLM-x32\...\{4e242cc8-5e3c-4b08-9d55-dbc62ddd1208}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
  86. WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
  87. WinRAR 5.61 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH)
  88. Wireshark 2.6.6 64-bit (HKLM-x32\...\Wireshark) (Version: 2.6.6 - The Wireshark developer community, hxxps://www.wireshark.org)
  89.  
  90. ==================== Custom CLSID (Whitelisted): ==========================
  91.  
  92. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  93.  
  94. ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
  95. ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
  96. ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
  97. ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2018-11-29] (ESET, spol. s r.o. -> ESET)
  98. ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
  99. ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
  100. ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2018-11-29] (ESET, spol. s r.o. -> ESET)
  101. ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
  102. ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
  103. ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
  104. ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-02-06] (NVIDIA Corporation -> NVIDIA Corporation)
  105. ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
  106. ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2018-11-29] (ESET, spol. s r.o. -> ESET)
  107. ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
  108. ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
  109. ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
  110.  
  111. ==================== Scheduled Tasks (Whitelisted) =============
  112.  
  113. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  114.  
  115. Task: {17B4A3BB-56F6-4836-BE87-37769C85648D} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
  116. Task: {2025E669-E300-430C-8AC7-1C4E9CF1F8CB} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation -> NVIDIA Corporation)
  117. Task: {20F79B00-7C99-46D6-A7DB-D89B45C3D2DF} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
  118. Task: {3485C320-73F7-4834-9CD1-C7187B501661} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe (NVIDIA Corporation -> NVIDIA Corporation)
  119. Task: {3AC7304A-865A-42CD-BACA-B9BAA01AA88B} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
  120. Task: {46B42C3C-DEFC-45B7-A642-4E7C0005FBF6} - System32\Tasks\NahimicSvc32Run => C:\Windows\SysWOW64\NahimicSvc32.exe (A-Volute -> Nahimic)
  121. Task: {61DBEC9C-1386-4A68-936A-CFA06026BD30} - System32\Tasks\CAM.Desktop => C:\Program Files (x86)\NZXT\CAM\CAM.Desktop.exe (NZXT -> )
  122. Task: {6AF0E11D-0F69-44A4-BDD9-7646D535FF52} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
  123. Task: {79909CBE-84DD-4CB7-AB41-46BB085FABB8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
  124. Task: {8D074615-11DF-463A-8F0A-4C5A8E8185BE} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
  125. Task: {907A3CF5-A0B2-4E9E-9A66-16E04B982BA8} - System32\Tasks\CCleanerSkipUAC => D:\CCleaner64.exe (Piriform Software Ltd -> Piriform Software Ltd)
  126. Task: {98C38C4D-0829-4381-8CC4-33FBA8ED2615} - System32\Tasks\CCleaner Update => D:\CCUpdate.exe
  127. Task: {9C2F1B3C-E0DE-4316-B4EF-1C63D0A66022} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
  128. Task: {9C50FFAE-29A7-4BFD-9A88-571D4C22C799} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
  129. Task: {A6A5A409-48CA-4C98-91D4-237DE19EAEAC} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
  130. Task: {A9272A94-D549-4081-9DAD-7A69DF363AA7} - System32\Tasks\NahimicSvc64Run => C:\Windows\System32\NahimicSvc64.exe (A-Volute -> Nahimic)
  131. Task: {AD8D181E-A2E8-41B7-A3DD-FA9330EFA99A} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe (Nota Inc. -> Nota Inc.)
  132. Task: {B27D88C4-4988-4946-8A7C-FE8308ACC604} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
  133. Task: {C4E9025E-8E6F-4A78-95D4-9745CA797073} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
  134. Task: {D385844E-6084-4990-9269-7D752A4D87E7} - System32\Tasks\NahimicTask64 => C:\Windows\System32\.\NahimicSvc64.exe (A-Volute -> Nahimic)
  135. Task: {DE44E55C-6F41-4C56-A36B-0C6FD5BDE625} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe (AVAST Software s.r.o. -> AVAST Software)
  136. Task: {F2E5F4D6-140D-402A-8DC2-1210F1410B39} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe (Nota Inc. -> Nota Inc.)
  137. Task: {F3D3A304-749B-4259-818F-9958F743911D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe (NVIDIA Corporation -> NVIDIA Corporation)
  138.  
  139. (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
  140.  
  141. Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
  142. Task: C:\Windows\Tasks\NahimicTask32.job => C:\Windows\SysWOW64\NahimicSvc32.exe
  143.  
  144. ==================== Shortcuts & WMI ========================
  145.  
  146. (The entries could be listed to be restored or removed.)
  147.  
  148.  
  149. ==================== Loaded Modules (Whitelisted) ==============
  150.  
  151. 2018-11-22 23:58 - 2019-01-30 15:17 - 001315208 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
  152. 2018-08-23 04:31 - 2018-08-23 04:31 - 000673104 _____ () C:\Windows\System32\NSConfiguratorDaemonModule.dll
  153. 2019-02-12 01:49 - 2019-02-12 01:49 - 000286960 _____ () D:\Synapse3\Service\Razer Synapse Service.exe
  154. 2018-09-15 02:28 - 2018-09-15 02:28 - 000834088 _____ () C:\Windows\SYSTEM32\inputhost.dll
  155. 2018-09-15 02:28 - 2018-09-15 02:28 - 000474624 _____ () C:\Windows\ShellExperiences\TileControl.dll
  156. 2019-01-29 19:52 - 2019-01-29 19:52 - 002801152 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
  157. 2019-01-29 19:52 - 2019-01-29 19:52 - 001740800 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
  158. 2019-02-12 01:49 - 2019-02-12 01:49 - 000303856 _____ () D:\Synapse3\Service\..\UserProcess\Razer Synapse Service Process.exe
  159. 2018-11-22 23:58 - 2019-01-30 15:17 - 101252488 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
  160. 2018-11-22 23:58 - 2019-01-30 15:17 - 004620168 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libglesv2.dll
  161. 2018-11-22 23:58 - 2019-01-30 15:17 - 000108936 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libegl.dll
  162. 2019-02-12 02:19 - 2019-02-12 02:19 - 003462384 _____ () D:\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe
  163. 2019-02-01 17:20 - 2018-11-19 19:56 - 102804768 _____ () D:\Steam\bin\cef\cef.win7x64\libcef.dll
  164. 2019-02-01 17:20 - 2018-12-05 18:47 - 001066784 _____ () D:\Steam\bin\cef\cef.win7x64\SDL2.dll
  165. 2019-02-01 17:20 - 2018-11-19 19:56 - 004866336 _____ () D:\Steam\bin\cef\cef.win7x64\libglesv2.dll
  166. 2019-02-01 17:20 - 2018-11-19 19:56 - 000116000 _____ () D:\Steam\bin\cef\cef.win7x64\libegl.dll
  167. 2019-01-31 15:29 - 2019-01-31 15:29 - 000282624 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll
  168. 2018-11-23 00:32 - 2018-11-23 00:32 - 002538056 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
  169. 2019-01-31 15:29 - 2019-01-31 15:29 - 001757696 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.dll
  170. 2019-01-29 19:52 - 2019-01-29 19:52 - 001942528 _____ () C:\Windows\ShellExperiences\PeopleCommonControls.dll
  171. 2018-09-15 02:28 - 2018-09-15 02:28 - 001396224 _____ () C:\Windows\ShellExperiences\PeopleBarFlyout.dll
  172. 2018-12-11 17:09 - 2018-12-11 17:09 - 002877952 _____ () C:\Windows\ShellExperiences\WindowsInternal.People.PeoplePicker.dll
  173. 2018-09-15 02:28 - 2018-09-15 02:28 - 000551424 _____ () C:\Windows\ShellExperiences\WindowsInternal.People.Relevance.QueryClient.dll
  174. 2019-02-15 11:44 - 2019-02-13 00:14 - 005186032 _____ () C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.109\libglesv2.dll
  175. 2019-02-15 11:44 - 2019-02-13 00:14 - 000117232 _____ () C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.109\libegl.dll
  176. 2019-02-15 11:39 - 2019-02-12 01:45 - 000151280 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Common.ChromaSDKWrapper.dll
  177. 2019-02-15 11:39 - 2019-02-12 01:46 - 000181488 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Common.NativeDeviceDetectionWrapper.dll
  178. 2019-02-15 11:39 - 2019-01-22 22:40 - 000207088 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Common.NativePhilipsHueWrapper.dll
  179. 2019-02-15 11:39 - 2019-02-12 01:46 - 000202480 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Common.PowerPlan.dll
  180. 2019-02-15 11:39 - 2019-02-12 02:11 - 000081648 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\RSy3_AccelWinM.dll
  181. 2019-02-15 11:39 - 2019-02-12 01:44 - 000354544 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\RSy3_AudioPlayer.dll
  182. 2019-02-15 11:39 - 2019-02-12 01:44 - 000135408 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\RSy3_KeyboardKeysWrapper.dll
  183. 2019-02-15 11:39 - 2019-02-12 02:11 - 000086256 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\RSy3_ManagedCommon.dll
  184. 2019-02-15 11:39 - 2019-02-12 02:11 - 000351984 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\RSy3_ManagedMacros.dll
  185. 2019-02-15 11:39 - 2019-02-12 02:11 - 000260336 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\RSy3_MappingTypesM.dll
  186. 2019-02-15 11:39 - 2019-02-12 01:45 - 002278128 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\RSy3_PowerSwitchWrapper.dll
  187. 2019-02-15 11:39 - 2019-01-24 16:25 - 000640240 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Devices\DeathAdder Elite\Bin\RSy3_DeviceStatus.dll
  188. 2019-02-15 11:39 - 2019-01-24 16:25 - 000334576 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Devices\DeathAdder Elite\Bin\RSy3_DriverMode.dll
  189. 2019-02-15 11:39 - 2019-01-24 16:25 - 000386288 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Devices\DeathAdder Elite\Bin\RSy3_Lighting.dll
  190. 2019-02-15 11:39 - 2019-01-24 16:25 - 000150768 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Devices\DeathAdder Elite\Bin\RSy3_Mapping.dll
  191. 2019-02-15 11:39 - 2019-01-24 16:25 - 000728816 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Devices\DeathAdder Elite\Bin\RSy3_MappingBaseM.dll
  192. 2019-02-15 11:39 - 2019-01-24 16:25 - 000360176 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Devices\DeathAdder Elite\Bin\RSy3_PollingRate.dll
  193. 2019-02-15 11:39 - 2019-01-24 16:25 - 000383216 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Devices\DeathAdder Elite\Bin\RSy3_Sensitivity.dll
  194. 2019-02-15 11:39 - 2019-01-24 16:25 - 000462576 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Devices\DeathAdder Elite\Bin\RSy3_SurfaceCalBaseM.dll
  195. 2019-02-15 11:39 - 2019-01-24 16:25 - 000086768 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Devices\DeathAdder Elite\Bin\RSy3_SurfaceCalPixart.dll
  196. 2019-02-15 11:39 - 2019-01-22 16:24 - 000640240 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Devices\Philips Hue\Bin\RSy3_DeviceStatus.dll
  197. 2019-02-15 11:39 - 2019-01-22 16:24 - 000334576 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Devices\Philips Hue\Bin\RSy3_DriverMode.dll
  198. 2019-02-15 11:39 - 2019-01-24 16:25 - 000055536 _____ () C:\ProgramData\Razer\Synapse3\Service\Bin\Devices\DeathAdder Elite\Bin\RSy3_KeyboardKeys.dll
  199. 2018-11-22 23:58 - 2019-01-30 15:17 - 001033096 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
  200. 2019-02-12 01:44 - 2019-02-12 01:44 - 000361712 _____ () D:\Synapse3\UserProcess\RSy3_AudioAppStreamsWrapper.dll
  201. 2019-01-17 04:23 - 2019-01-17 04:23 - 000098544 _____ () D:\Synapse3\WPFUI\Framework\Common.Dependencies\RSy3_AudioMicPeakMeter.dll
  202. 2019-02-12 02:17 - 2019-02-12 02:17 - 000135408 _____ () D:\Synapse3\WPFUI\Framework\Common.Dependencies\RSy3_KeyboardKeysWrapper.dll
  203. 2019-02-01 17:20 - 2018-12-05 18:47 - 000885536 _____ () D:\Steam\SDL2.dll
  204. 2019-02-02 13:33 - 2019-02-02 12:33 - 002667296 _____ () D:\Steam\video.dll
  205. 2018-11-23 23:52 - 2016-08-31 20:02 - 004969248 _____ () D:\Steam\v8.dll
  206. 2019-02-01 17:20 - 2018-11-05 13:53 - 000351520 _____ () D:\Steam\libavresample-3.dll
  207. 2019-02-01 17:20 - 2018-11-05 13:53 - 000810784 _____ () D:\Steam\libavformat-57.dll
  208. 2019-02-01 17:20 - 2018-11-05 13:53 - 000847136 _____ () D:\Steam\libavutil-55.dll
  209. 2019-02-01 17:20 - 2018-11-05 13:53 - 000783648 _____ () D:\Steam\libswscale-4.dll
  210. 2018-11-23 23:52 - 2016-08-31 20:02 - 001195296 _____ () D:\Steam\icuuc.dll
  211. 2019-02-01 17:20 - 2018-11-05 13:53 - 005137696 _____ () D:\Steam\libavcodec-57.dll
  212. 2018-11-23 23:52 - 2016-08-31 20:02 - 001563936 _____ () D:\Steam\icui18n.dll
  213. 2019-02-02 13:33 - 2019-02-02 12:33 - 001031456 _____ () D:\Steam\bin\chromehtml.DLL
  214. 2018-11-23 23:52 - 2016-07-04 17:17 - 000266560 _____ () D:\Steam\openvr_api.dll
  215. 2019-01-28 16:56 - 2019-01-28 16:57 - 001005408 _____ () C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.Core.dll
  216. 2019-01-28 16:56 - 2019-01-28 16:57 - 053444984 _____ () C:\Program Files (x86)\Razer\Razer Services\Razer Central\libcef.dll
  217. 2019-01-28 16:56 - 2019-01-28 16:57 - 000691056 _____ () C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.BrowserSubprocess.Core.dll
  218. 2019-01-28 16:56 - 2019-01-28 16:57 - 001984392 _____ () C:\Program Files (x86)\Razer\Razer Services\Razer Central\libglesv2.dll
  219. 2019-01-28 16:56 - 2019-01-28 16:57 - 000082824 _____ () C:\Program Files (x86)\Razer\Razer Services\Razer Central\libegl.dll
  220.  
  221. ==================== Alternate Data Streams (Whitelisted) =========
  222.  
  223. (If an entry is included in the fixlist, only the ADS will be removed.)
  224.  
  225. AlternateDataStreams: C:\Users\jeste:Heroes & Generals [38]
  226. AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [482]
  227.  
  228. ==================== Safe Mode (Whitelisted) ===================
  229.  
  230. (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
  231.  
  232. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
  233. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
  234.  
  235. ==================== Association (Whitelisted) ===============
  236.  
  237. (If an entry is included in the fixlist, the registry item will be restored to default or removed.)
  238.  
  239.  
  240. ==================== Internet Explorer trusted/restricted ===============
  241.  
  242. (If an entry is included in the fixlist, it will be removed from the registry.)
  243.  
  244.  
  245. ==================== Hosts content: ===============================
  246.  
  247. (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
  248.  
  249. 2018-09-15 02:31 - 2018-09-15 02:31 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
  250.  
  251.  
  252. ==================== Other Areas ============================
  253.  
  254. (Currently there is no automatic fix for this section.)
  255.  
  256. HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;D:\MinGW\bin;
  257. HKU\S-1-5-21-2038839032-3399155231-434175092-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
  258. DNS Servers: 75.75.75.75 - 75.75.76.76
  259. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
  260. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
  261. Windows Firewall is enabled.
  262.  
  263. ==================== MSCONFIG/TASK MANAGER disabled items ==
  264.  
  265. If an entry is included in the fixlist, it will be removed.
  266.  
  267. HKU\S-1-5-21-2038839032-3399155231-434175092-1001\...\StartupApproved\Run: => "Discord"
  268. HKU\S-1-5-21-2038839032-3399155231-434175092-1001\...\StartupApproved\Run: => "CAM"
  269. HKU\S-1-5-21-2038839032-3399155231-434175092-1001\...\StartupApproved\Run: => "Gyazo"
  270. HKU\S-1-5-21-2038839032-3399155231-434175092-1001\...\StartupApproved\Run: => "FACEIT"
  271. HKU\S-1-5-21-2038839032-3399155231-434175092-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
  272. HKU\S-1-5-21-2038839032-3399155231-434175092-1001\...\StartupApproved\Run: => "NordVPN"
  273. HKU\S-1-5-21-2038839032-3399155231-434175092-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
  274. HKU\S-1-5-21-2038839032-3399155231-434175092-1001\...\StartupApproved\Run: => "OPENVPN-GUI"
  275.  
  276. ==================== FirewallRules (Whitelisted) ===============
  277.  
  278. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  279.  
  280. FirewallRules: [{927D419F-B43D-4774-A03F-4BA0C787EB57}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
  281. FirewallRules: [{2B2AA111-F0BC-4CAB-9B20-B1DB2406605A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
  282. FirewallRules: [{9C0F54E6-093C-4B21-896A-4EC7EB4AC65F}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
  283. FirewallRules: [{E0CCB9B3-1476-42CD-BEFF-C74A7BB1F1CA}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
  284. FirewallRules: [{383F01E7-A5E3-4BA6-AC1B-1C3390645E70}] => (Allow) D:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (Bluehole, Inc. -> PUBG Corporation )
  285. FirewallRules: [{A1C3948E-A97B-4499-BF38-D639517D2DE5}] => (Allow) D:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (Bluehole, Inc. -> PUBG Corporation )
  286. FirewallRules: [TCP Query User{B448B88F-47D4-47B3-8033-89F30C64216A}D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
  287. FirewallRules: [UDP Query User{C27DDD76-7BCE-44E8-9E7C-3C7AA988433D}D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
  288. FirewallRules: [{E7747C28-82EC-4714-80B5-22CACC9EF2F9}] => (Allow) D:\Steam\steamapps\common\insurgency2\insurgency_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
  289. FirewallRules: [{854AB554-E92E-449B-9342-CF06757986F1}] => (Allow) D:\Steam\steamapps\common\insurgency2\insurgency_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
  290. FirewallRules: [{9EA4526A-876D-4F85-9564-97F2F2098F75}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
  291. FirewallRules: [{A2944142-04AB-4EA7-A571-966EBCDA7CA0}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
  292. FirewallRules: [TCP Query User{F45D9228-F37E-45EB-8D0A-8E2F350FD55E}D:\steam\steamapps\common\insurgency2\insurgency_x64.exe] => (Allow) D:\steam\steamapps\common\insurgency2\insurgency_x64.exe (New World Interactive LLC -> New World Interactive LLC)
  293. FirewallRules: [UDP Query User{623F4605-298B-491A-952F-6E863C34C5DF}D:\steam\steamapps\common\insurgency2\insurgency_x64.exe] => (Allow) D:\steam\steamapps\common\insurgency2\insurgency_x64.exe (New World Interactive LLC -> New World Interactive LLC)
  294. FirewallRules: [{9B5D0C0E-BBF4-41D3-BFFE-826F3BB09466}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
  295. FirewallRules: [{804C5C66-EA3B-44D2-9C4D-4C1429B81386}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
  296. FirewallRules: [{DF77494E-09E8-4792-A226-D8A0C7629822}] => (Allow) D:\Steam\steamapps\common\Hacknet\Hacknet.exe ()
  297. FirewallRules: [{0986FCC8-0DE2-4688-BCA0-4E2F51CA5E0E}] => (Allow) D:\Steam\steamapps\common\Hacknet\Hacknet.exe ()
  298. FirewallRules: [TCP Query User{6476EE96-7AF8-4535-BBCB-2E6A6792C5FF}D:\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
  299. FirewallRules: [UDP Query User{CDD74CD9-A690-4A21-8670-7C7B591F2830}D:\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
  300. FirewallRules: [{0807406D-92A1-4252-95F2-4690D197A7CE}] => (Allow) D:\Steam\steamapps\common\H1Z1\H1Z1_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
  301. FirewallRules: [{C6773185-EEE3-4E0B-B6EC-8E0486BAD503}] => (Allow) D:\Steam\steamapps\common\H1Z1\H1Z1_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
  302. FirewallRules: [{2D932236-9CD7-4ED6-A78A-F3A36C4B869A}] => (Allow) D:\Steam\steamapps\common\sandstorm\InsurgencyEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
  303. FirewallRules: [{84608717-5133-4525-898F-064CA66320DB}] => (Allow) D:\Steam\steamapps\common\sandstorm\InsurgencyEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
  304. FirewallRules: [TCP Query User{FF9BB75F-69D1-46C0-B886-BF644A41C87B}D:\steam\steamapps\common\h1z1\h1z1.exe] => (Allow) D:\steam\steamapps\common\h1z1\h1z1.exe (Daybreak Game Company LLC -> Daybreak Game Company)
  305. FirewallRules: [UDP Query User{AAAD5DFB-A6AA-4BB1-814B-4C2EB61D51B9}D:\steam\steamapps\common\h1z1\h1z1.exe] => (Allow) D:\steam\steamapps\common\h1z1\h1z1.exe (Daybreak Game Company LLC -> Daybreak Game Company)
  306. FirewallRules: [{E8DA6219-BD28-4E42-A72E-DCF6C69B4B98}] => (Allow) D:\Steam\steamapps\common\Black Squad\binaries\win32\SteamLauncher.exe (NSSTUDIO INC. -> NS Studio)
  307. FirewallRules: [{ACB211E1-5263-452B-A98E-EF7C9F19A4B3}] => (Allow) D:\Steam\steamapps\common\Black Squad\binaries\win32\SteamLauncher.exe (NSSTUDIO INC. -> NS Studio)
  308. FirewallRules: [{ABE31B00-2896-47C6-9510-002B14B50745}] => (Allow) D:\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe (Reto-Moto ApS -> Reto-Moto ApS)
  309. FirewallRules: [{98619593-F5C8-4D1B-A651-AA7BF9A102DA}] => (Allow) D:\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe (Reto-Moto ApS -> Reto-Moto ApS)
  310. FirewallRules: [{3A8871CE-6C5E-4043-BED3-636440BD9B1E}] => (Allow) D:\Steam\steamapps\common\Rust\Rust.exe (Facepunch Studios Ltd -> EasyAntiCheat Ltd)
  311. FirewallRules: [{0BEBDDEA-D4DD-49B8-AE37-1DC7B7C95F45}] => (Allow) D:\Steam\steamapps\common\Rust\Rust.exe (Facepunch Studios Ltd -> EasyAntiCheat Ltd)
  312. FirewallRules: [{8F04E62D-BF00-4AC2-9117-73FF095AC7C5}] => (Allow) D:\Steam\steamapps\common\Black Squad\binaries\win32\BlackSquadGame.exe (NSSTUDIO INC. -> NS Studio, Inc.)
  313. FirewallRules: [{40CCB9FC-967D-4D76-B45F-7D153C1B50E9}] => (Allow) D:\Steam\steamapps\common\Black Squad\binaries\win32\BlackSquadGame.exe (NSSTUDIO INC. -> NS Studio, Inc.)
  314. FirewallRules: [{993C0C43-197F-43FF-A7EB-71FB52A96873}] => (Allow) D:\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe ()
  315. FirewallRules: [{B6CF0E6A-CEA4-455D-B15E-3883A4CF713B}] => (Allow) D:\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe ()
  316. FirewallRules: [{7AD1C06C-0CCE-4EAD-BFAD-689995B3FEF9}] => (Allow) D:\Steam\steamapps\common\Combat Arms Reloaded\Engine.exe (Error3: CryptCATAdminCalcHashFromFileHandle failed to return cbHash, #2 -> VALOFE)
  317. FirewallRules: [{BC860D8C-C870-4711-84D7-CED7E6720577}] => (Allow) D:\Steam\steamapps\common\Combat Arms Reloaded\Engine.exe (Error3: CryptCATAdminCalcHashFromFileHandle failed to return cbHash, #2 -> VALOFE)
  318. FirewallRules: [{4A4907CE-0DB3-4E33-885E-81DA65259CC3}] => (Allow) D:\Steam\steamapps\common\Combat Arms Reloaded\NMService.exe (valofe Co.,Ltd. -> Nexon Corp.)
  319. FirewallRules: [{2509FFA7-BFFF-4AAA-8B04-7A2574D916FF}] => (Allow) D:\Steam\steamapps\common\Combat Arms Reloaded\NMService.exe (valofe Co.,Ltd. -> Nexon Corp.)
  320. FirewallRules: [{8B65B219-47E7-47C6-94B1-0A027C7F0CED}] => (Allow) D:\Steam\steamapps\common\Realm Royale\Binaries\Win64\RealmEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
  321. FirewallRules: [{4CBC5727-A2AF-4950-BB29-5848BAE6D3CA}] => (Allow) D:\Steam\steamapps\common\Realm Royale\Binaries\Win64\RealmEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
  322. FirewallRules: [TCP Query User{722DE0BA-A768-44D4-BFC1-8F63890B433A}D:\steam\steamapps\common\realm royale\binaries\win64\realm.exe] => (Allow) D:\steam\steamapps\common\realm royale\binaries\win64\realm.exe (Hirez Studios, Inc.)
  323. FirewallRules: [UDP Query User{8F9244C8-01F3-41D0-8E78-5A87643D9EAA}D:\steam\steamapps\common\realm royale\binaries\win64\realm.exe] => (Allow) D:\steam\steamapps\common\realm royale\binaries\win64\realm.exe (Hirez Studios, Inc.)
  324. FirewallRules: [{7733C13C-AE16-4CD4-9179-9064A7BCD301}] => (Allow) D:\Steam\steamapps\common\Ring of Elysium\SLauncher.exe (Tencent Technology(Shenzhen) Company Limited -> )
  325. FirewallRules: [{0F8A0758-E1A5-44BB-9C54-5EC550E20688}] => (Allow) D:\Steam\steamapps\common\Ring of Elysium\SLauncher.exe (Tencent Technology(Shenzhen) Company Limited -> )
  326. FirewallRules: [{31FB13A5-E311-4434-9D8E-B05B10FD044A}] => (Allow) D:\Steam\steamapps\common\Black Squad\binaries\win64\SteamLauncher.exe (NSSTUDIO INC. -> NS Studio)
  327. FirewallRules: [{2A0F9B91-E3C8-41CC-B05F-229A1B46F780}] => (Allow) D:\Steam\steamapps\common\Black Squad\binaries\win64\SteamLauncher.exe (NSSTUDIO INC. -> NS Studio)
  328. FirewallRules: [TCP Query User{18756CF3-B63A-4D50-84DC-439E90F71843}D:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
  329. FirewallRules: [UDP Query User{61006F36-4537-4CC4-AB0D-50CA6CFC87B9}D:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
  330. FirewallRules: [TCP Query User{D8453BB0-74A7-4BC0-A9DB-F663F526790F}D:\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
  331. FirewallRules: [UDP Query User{F0CEE543-A201-4696-8568-80DDA2EF49C6}D:\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
  332. FirewallRules: [TCP Query User{C005F2A0-B184-4488-8FFC-AD62B13E4D7A}D:\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe] => (Allow) D:\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe (New World Interactive LLC -> New World Interactive)
  333. FirewallRules: [UDP Query User{3058EB53-A079-4729-AFCC-7DA9678DE64B}D:\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe] => (Allow) D:\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe (New World Interactive LLC -> New World Interactive)
  334. FirewallRules: [{DF7CFAB8-AED2-4008-99A8-B497451303F7}] => (Allow) D:\Steam\steamapps\common\Half-Life\hl.exe (Valve -> Valve)
  335. FirewallRules: [{4E26A492-657E-4853-88B0-9B334086EE20}] => (Allow) D:\Steam\steamapps\common\Half-Life\hl.exe (Valve -> Valve)
  336. FirewallRules: [{97E6E597-3DDC-4CDD-B3C3-388B04BFC7A9}] => (Allow) D:\Steam\steamapps\common\Black Squad\binaries\win64\BlackSquadGame.exe (NSSTUDIO INC. -> NS Studio, Inc.)
  337. FirewallRules: [{DF859154-CC8A-4668-92EF-B344865A6B44}] => (Allow) D:\Steam\steamapps\common\Black Squad\binaries\win64\BlackSquadGame.exe (NSSTUDIO INC. -> NS Studio, Inc.)
  338. FirewallRules: [{9D1732DA-C33D-43B4-9269-70EF4476547A}] => (Allow) D:\Steam\steamapps\common\Team Fortress 2\hl2.exe (Valve -> )
  339. FirewallRules: [{B79DC715-0007-4715-BAB0-5BA84F14ACDE}] => (Allow) D:\Steam\steamapps\common\Team Fortress 2\hl2.exe (Valve -> )
  340. FirewallRules: [{81CC386D-DA69-4D0C-A75C-16EA92183237}] => (Allow) D:\Steam\steamapps\common\Cuisine Royale\eac_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
  341. FirewallRules: [{AAD30B0B-AFF0-44A0-8A25-BECAF0A3B7DB}] => (Allow) D:\Steam\steamapps\common\Cuisine Royale\eac_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
  342. FirewallRules: [{E40384EE-C9EF-45CB-B8D4-FA6C1C656B6C}] => (Allow) D:\Steam\steamapps\common\Cuisine Royale\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
  343. FirewallRules: [{62515B0F-D53F-4FD5-9AF6-1E2D78C8A5C2}] => (Allow) D:\Steam\steamapps\common\Cuisine Royale\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
  344. FirewallRules: [{E43210C0-9B0D-4B9F-BD3A-6ED69482AC06}] => (Allow) D:\Steam\steamapps\common\Cuisine Royale\bpreport.exe ()
  345. FirewallRules: [{5DBC68ED-304B-4CB7-A906-0454863BD3E5}] => (Allow) D:\Steam\steamapps\common\Cuisine Royale\bpreport.exe ()
  346. FirewallRules: [{A9D8F619-A825-4730-B94B-D060CA83A6B9}] => (Allow) D:\Steam\steamapps\common\Cuisine Royale\win32\bpreport.exe ()
  347. FirewallRules: [{39D2B8E4-5BEA-4562-87A6-3D1C11C527F0}] => (Allow) D:\Steam\steamapps\common\Cuisine Royale\win32\bpreport.exe ()
  348. FirewallRules: [{CA0E4448-7DDC-43E1-9702-F1F5587CD8E4}] => (Allow) D:\Steam\steamapps\common\Cuisine Royale\gaijin_downloader.exe (Gaijin Network LTD -> Gaijin Entertainment)
  349. FirewallRules: [{09910ECB-E851-447E-9DB5-7323EBE196C8}] => (Allow) D:\Steam\steamapps\common\Cuisine Royale\gaijin_downloader.exe (Gaijin Network LTD -> Gaijin Entertainment)
  350. FirewallRules: [{1EE8B0BE-73D3-4758-99DE-D67A9649D7C9}] => (Allow) D:\Steam\steamapps\common\Cuisine Royale\win64\enlisted.exe (Gaijin Network LTD -> Gaijin Entertainment)
  351. FirewallRules: [{D0185F81-CF65-4C6C-8E83-94D0213597CB}] => (Allow) D:\Steam\steamapps\common\Cuisine Royale\win64\enlisted.exe (Gaijin Network LTD -> Gaijin Entertainment)
  352. FirewallRules: [{A4EBD64B-123D-4118-B049-695F5E721954}] => (Allow) D:\Steam\steamapps\common\Cuisine Royale\win32\enlisted.exe (Gaijin Network LTD -> Gaijin Entertainment)
  353. FirewallRules: [{1D0EEA31-D710-41EE-8324-DBE202A796D3}] => (Allow) D:\Steam\steamapps\common\Cuisine Royale\win32\enlisted.exe (Gaijin Network LTD -> Gaijin Entertainment)
  354. FirewallRules: [{B9984BD7-651F-4F3C-9BF7-6106E23BDC85}] => (Allow) D:\Steam\steamapps\common\Hurtworld\Hurtworld.exe (EasyAntiCheat Ltd)
  355. FirewallRules: [{4624BDA4-5C97-4033-AE8B-BDF830E98715}] => (Allow) D:\Steam\steamapps\common\Hurtworld\Hurtworld.exe (EasyAntiCheat Ltd)
  356. FirewallRules: [{65921534-7366-4DD7-A6F5-B4D3EDBDC24B}] => (Allow) D:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )
  357. FirewallRules: [{0DB733C3-5781-4DD7-8939-9DB1A8507B96}] => (Allow) D:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )
  358. FirewallRules: [{BDA0337C-3EBB-4545-B3B9-9E4302177072}] => (Allow) D:\CCUpdate.exe No File
  359. FirewallRules: [{DDF002CA-C0FE-4331-AD89-0278EEE665B1}] => (Allow) D:\CCUpdate.exe No File
  360. FirewallRules: [{9318ABC3-E317-46B0-9708-06413569F454}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
  361. FirewallRules: [{43C26310-0CF0-4694-BC90-26375C7B8E45}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
  362. FirewallRules: [{6BA42770-670D-4BB7-A99B-A0AA1E7FD981}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
  363. FirewallRules: [{002B9F82-F35A-4352-B7B3-005F31C76E75}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
  364. FirewallRules: [TCP Query User{8102CF3E-F6FB-4297-AA3F-B3E62F667B3A}D:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) D:\program files (x86)\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
  365. FirewallRules: [UDP Query User{4B48768D-548C-45F6-9080-073924977DE6}D:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) D:\program files (x86)\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
  366. FirewallRules: [{BF285525-A394-49DA-BD98-E2AE54763D0A}] => (Allow) LPort=38518
  367. FirewallRules: [{1B74E42E-A8DA-44B3-A9C6-3B2D7097C575}] => (Allow) LPort=9142
  368. FirewallRules: [TCP Query User{8BDCBE72-BADF-4C4C-9276-199FFD2506F4}C:\program files (x86)\nzxt\cam\cam.desktop.exe] => (Allow) C:\program files (x86)\nzxt\cam\cam.desktop.exe (NZXT -> )
  369. FirewallRules: [UDP Query User{47A31E3A-FDA1-4B5C-9D77-E9E0039CA861}C:\program files (x86)\nzxt\cam\cam.desktop.exe] => (Allow) C:\program files (x86)\nzxt\cam\cam.desktop.exe (NZXT -> )
  370. FirewallRules: [{7D01E2D7-C146-488C-A603-EE7D4D74516D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
  371. FirewallRules: [{68B0F838-C5CF-41C8-AAA9-4179BE09CF07}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
  372. FirewallRules: [{8ADE6939-C6A7-4CE2-936E-9493B6EF7F47}] => (Allow) D:\fiddler\Fiddler.exe (TELERIK EAD -> Telerik)
  373. FirewallRules: [{6CD96ACA-A2BC-4DD6-8A60-797FEFF36BF8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
  374. FirewallRules: [{BCCAC51A-7A11-4E10-AAF5-E4550D53EAC4}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
  375. FirewallRules: [{ACCBBF23-A8DF-4318-BF58-8C3114978418}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
  376. FirewallRules: [{F8316DB3-F355-4D68-9F34-E3C12B5F59CB}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield V\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
  377. FirewallRules: [{F8223D5D-3F76-4F51-BD09-3061D4C7A5DA}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield V\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
  378. FirewallRules: [{A805F470-B5C7-48F0-B2DA-3810E79905B6}] => (Allow) D:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
  379. FirewallRules: [{FCA54179-1ADA-42BA-9E17-5648C8156767}] => (Allow) D:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
  380.  
  381. ==================== Restore Points =========================
  382.  
  383. ATTENTION: System Restore is disabled
  384.  
  385. ==================== Faulty Device Manager Devices =============
  386.  
  387.  
  388. ==================== Event log errors: =========================
  389.  
  390. Application errors:
  391. ==================
  392. Error: (02/16/2019 09:49:22 PM) (Source: PerfNet) (EventID: 2004) (User: )
  393. Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.
  394.  
  395. Error: (02/16/2019 03:20:38 PM) (Source: PerfNet) (EventID: 2004) (User: )
  396. Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.
  397.  
  398. Error: (02/16/2019 03:19:30 PM) (Source: PerfNet) (EventID: 2004) (User: )
  399. Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.
  400.  
  401. Error: (02/08/2019 06:56:20 PM) (Source: Application Error) (EventID: 1000) (User: )
  402. Description: Faulting application name: QtWebEngineProcess.exe, version: 0.0.0.0, time stamp: 0x5aaa0345
  403. Faulting module name: Qt5WebEngineCore.dll, version: 5.8.0.0, time stamp: 0x5aa9fed8
  404. Exception code: 0xc0000005
  405. Fault offset: 0x025e3c61
  406. Faulting process id: 0x343c
  407. Faulting application start time: 0x01d4c0097ae739d6
  408. Faulting application path: D:\orgin\Origin\QtWebEngineProcess.exe
  409. Faulting module path: D:\orgin\Origin\Qt5WebEngineCore.dll
  410. Report Id: 0e7fa495-3a88-4f75-b5a2-5f6eb3d9d8f4
  411. Faulting package full name:
  412. Faulting package-relative application ID:
  413.  
  414. Error: (01/31/2019 08:26:36 AM) (Source: Application Error) (EventID: 1000) (User: )
  415. Description: Faulting application name: nvcontainer.exe, version: 1.13.2527.340, time stamp: 0x5bf14408
  416. Faulting module name: ntdll.dll, version: 10.0.17763.292, time stamp: 0x7ded7809
  417. Exception code: 0xc000070a
  418. Fault offset: 0x0000000000110309
  419. Faulting process id: 0x39dc
  420. Faulting application start time: 0x01d4b968952970aa
  421. Faulting application path: C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
  422. Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
  423. Report Id: e621aa74-d038-46a6-8a49-a0c24f77db6b
  424. Faulting package full name:
  425. Faulting package-relative application ID:
  426.  
  427. Error: (01/30/2019 11:11:32 PM) (Source: Application Error) (EventID: 1000) (User: )
  428. Description: Faulting application name: eseaclient.exe, version: 7.0.0.0, time stamp: 0x5c43d23f
  429. Faulting module name: ntdll.dll, version: 10.0.17763.292, time stamp: 0x7ded7809
  430. Exception code: 0xc0000005
  431. Fault offset: 0x000000000004df23
  432. Faulting process id: 0x1844
  433. Faulting application start time: 0x01d4b91293b3ce3a
  434. Faulting application path: D:\ESEA\eseaclient.exe
  435. Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
  436. Report Id: 8cee8fa6-0b00-4ae6-af0f-bc99d1b77d85
  437. Faulting package full name:
  438. Faulting package-relative application ID:
  439.  
  440. Error: (01/27/2019 04:44:03 PM) (Source: Application Error) (EventID: 1000) (User: )
  441. Description: Faulting application name: bad_module_info, version: 0.0.0.0, time stamp: 0x00000000
  442. Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
  443. Exception code: 0x00000000
  444. Fault offset: 0x0000000000000000
  445. Faulting process id: 0x38b0
  446. Faulting application start time: 0x01d4b6828bd4b8d1
  447. Faulting application path: bad_module_info
  448. Faulting module path: unknown
  449. Report Id: e4a232a9-844b-4cb0-b27b-f841641932a5
  450. Faulting package full name:
  451. Faulting package-relative application ID:
  452.  
  453. Error: (01/25/2019 10:31:53 PM) (Source: Application Hang) (EventID: 1002) (User: )
  454. Description: The program hl2.exe version 0.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
  455.  
  456. Process ID: 338c
  457.  
  458. Start Time: 01d4b526a6549641
  459.  
  460. Termination Time: 4294967295
  461.  
  462. Application Path: D:\Steam\steamapps\common\Team Fortress 2\hl2.exe
  463.  
  464. Report Id: a7ca2e7d-74c7-4e85-a337-7bcf5b70d19f
  465.  
  466. Faulting package full name:
  467.  
  468. Faulting package-relative application ID:
  469.  
  470. Hang type: Top level window is idle
  471.  
  472.  
  473. System errors:
  474. =============
  475. Error: (02/17/2019 12:40:30 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-EB3CJ0L)
  476. Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
  477. {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
  478. and APPID
  479. {15C20B67-12E7-4BB6-92BB-7AFF07997402}
  480. to the user DESKTOP-EB3CJ0L\jeste SID (S-1-5-21-2038839032-3399155231-434175092-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
  481.  
  482. Error: (02/17/2019 12:13:33 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
  483. Description: The ESET Service service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
  484.  
  485. Error: (02/17/2019 11:31:05 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-EB3CJ0L)
  486. Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
  487. {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
  488. and APPID
  489. {15C20B67-12E7-4BB6-92BB-7AFF07997402}
  490. to the user DESKTOP-EB3CJ0L\jeste SID (S-1-5-21-2038839032-3399155231-434175092-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
  491.  
  492. Error: (02/17/2019 11:23:35 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-EB3CJ0L)
  493. Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
  494. {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
  495. and APPID
  496. {15C20B67-12E7-4BB6-92BB-7AFF07997402}
  497. to the user DESKTOP-EB3CJ0L\jeste SID (S-1-5-21-2038839032-3399155231-434175092-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
  498.  
  499. Error: (02/17/2019 11:21:31 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
  500. Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
  501. Windows.SecurityCenter.WscDataProtection
  502. and APPID
  503. Unavailable
  504. to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
  505.  
  506. Error: (02/17/2019 11:21:31 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
  507. Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
  508. Windows.SecurityCenter.SecurityAppBroker
  509. and APPID
  510. Unavailable
  511. to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
  512.  
  513. Error: (02/17/2019 11:21:31 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
  514. Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
  515. Windows.SecurityCenter.SecurityAppBroker
  516. and APPID
  517. Unavailable
  518. to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
  519.  
  520. Error: (02/17/2019 11:21:31 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
  521. Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
  522. Windows.SecurityCenter.WscBrokerManager
  523. and APPID
  524. Unavailable
  525. to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
  526.  
  527.  
  528. Windows Defender:
  529. ===================================
  530. Date: 2019-02-17 11:51:37.910
  531. Description:
  532. Windows Defender Antivirus scan has been stopped before completion.
  533. Scan ID: {241FAC6B-FD13-4453-876D-E4C658C36583}
  534. Scan Type: Antimalware
  535. Scan Parameters: Full Scan
  536.  
  537. Date: 2019-02-17 11:44:49.852
  538. Description:
  539. Windows Defender Antivirus scan has been stopped before completion.
  540. Scan ID: {5F277C8A-667A-4DBD-9B8A-2DC000547B0D}
  541. Scan Type: Antimalware
  542. Scan Parameters: Full Scan
  543.  
  544. Date: 2019-02-17 11:21:13.926
  545. Description:
  546. Windows Defender Antivirus scan has been stopped before completion.
  547. Scan ID: {A781BAC1-B896-43D2-89DC-1CF74273E7A6}
  548. Scan Type: Antimalware
  549. Scan Parameters: Quick Scan
  550.  
  551. Date: 2019-02-17 11:18:42.820
  552. Description:
  553. Windows Defender Antivirus has detected malware or other potentially unwanted software.
  554. For more information please see the following:
  555. https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Occamy.C&threatid=2147726780&enterprise=0
  556. Name: Trojan:Win32/Occamy.C
  557. ID: 2147726780
  558. Severity: Severe
  559. Category: Trojan
  560. Path: containerfile:_C:\Users\jeste\AppData\Local\Mozilla\Firefox\Profiles\vcvet8v6.default\cache2\entries\73AFB51CFC57077FCC6F60405C4D9C4721555D82; file:_C:\Users\jeste\AppData\Local\Mozilla\Firefox\Profiles\vcvet8v6.default\cache2\entries\73AFB51CFC57077FCC6F60405C4D9C4721555D82->[lowcase_mzpe]
  561. Detection Origin: Local machine
  562. Detection Type: FastPath
  563. Detection Source: System
  564. Process Name: Unknown
  565. Signature Version: AV: 1.287.93.0, AS: 1.287.93.0, NIS: 1.287.93.0
  566. Engine Version: AM: 1.1.15700.8, NIS: 1.1.15700.8
  567.  
  568. Date: 2019-02-17 11:18:28.012
  569. Description:
  570. Windows Defender Antivirus has detected malware or other potentially unwanted software.
  571. For more information please see the following:
  572. https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Occamy.C&threatid=2147726780&enterprise=0
  573. Name: Trojan:Win32/Occamy.C
  574. ID: 2147726780
  575. Severity: Severe
  576. Category: Trojan
  577. Path: containerfile:_C:\Users\jeste\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0024f9; containerfile:_C:\Users\jeste\AppData\Local\Mozilla\Firefox\Profiles\vcvet8v6.default\cache2\entries\73AFB51CFC57077FCC6F60405C4D9C4721555D82; containerfile:_E:\$RECYCLE.BIN\S-1-5-21-2038839032-3399155231-434175092-1001\$RL2M6S6.crdownload; containerfile:_E:\$RECYCLE.BIN\S-1-5-21-2038839032-3399155231-434175092-1001\$RSUAT2A.crdownload; file:_C:\Users\jeste\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0024f9->[lowcase_mzpe]; file:_C:\Users\jeste\AppData\Local\Mozilla\Firefox\Profiles\vcvet8v6.default\cache2\entries\73AFB51CFC57077FCC6F60405C4D9C4721555D82->[lowcase_mzpe]; file:_E:\$RECYCLE.BIN\S-1-5-21-2038839032-3399155231-434175092-1001\$RL2M6S6.crdownload->[lowcase_mzpe]; file:_E:\$RECYCLE.BIN\S-1-5-21-2038839032-3399155231-434175092-1001\$RSUAT2A.crdownload->[lowcase_mzpe]
  578. Detection Origin: Local machine
  579. Detection Type: FastPath
  580. Detection Source: System
  581. Process Name: Unknown
  582. Signature Version: AV: 1.287.93.0, AS: 1.287.93.0, NIS: 1.287.93.0
  583. Engine Version: AM: 1.1.15700.8, NIS: 1.1.15700.8
  584.  
  585. Date: 2019-01-31 08:37:13.946
  586. Description:
  587. Windows Defender Antivirus has encountered an error trying to update signatures.
  588. New Signature Version:
  589. Previous Signature Version: 1.285.440.0
  590. Update Source: Microsoft Update Server
  591. Signature Type: AntiVirus
  592. Update Type: Full
  593. Current Engine Version:
  594. Previous Engine Version: 1.1.15600.4
  595. Error code: 0x80072f8f
  596. Error description: A security error occurred
  597.  
  598. Date: 2019-01-30 12:09:53.894
  599. Description:
  600. Windows Defender Antivirus has encountered an error trying to update signatures.
  601. New Signature Version:
  602. Previous Signature Version: 1.285.440.0
  603. Update Source: Microsoft Update Server
  604. Signature Type: AntiVirus
  605. Update Type: Full
  606. Current Engine Version:
  607. Previous Engine Version: 1.1.15600.4
  608. Error code: 0x80072f8f
  609. Error description: A security error occurred
  610.  
  611. CodeIntegrity:
  612. ===================================
  613.  
  614. Date: 2019-02-17 12:15:22.895
  615. Description:
  616. Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
  617.  
  618. Date: 2019-02-17 12:15:22.893
  619. Description:
  620. Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
  621.  
  622. Date: 2019-02-17 12:15:22.887
  623. Description:
  624. Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
  625.  
  626. Date: 2019-02-17 12:15:22.885
  627. Description:
  628. Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
  629.  
  630. Date: 2019-02-17 12:15:22.865
  631. Description:
  632. Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
  633.  
  634. Date: 2019-02-17 12:15:22.863
  635. Description:
  636. Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
  637.  
  638. Date: 2019-02-17 12:14:42.128
  639. Description:
  640. Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
  641.  
  642. Date: 2019-02-17 12:14:42.125
  643. Description:
  644. Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
  645.  
  646. ==================== Memory info ===========================
  647.  
  648. Processor: Intel(R) Core(TM) i7-8086K CPU @ 4.00GHz
  649. Percentage of memory in use: 20%
  650. Total physical RAM: 32692.4 MB
  651. Available physical RAM: 25939.82 MB
  652. Total Virtual: 34740.4 MB
  653. Available Virtual: 25804.34 MB
  654.  
  655. ==================== Drives ================================
  656.  
  657. Drive c: () (Fixed) (Total:111.19 GB) (Free:57.99 GB) NTFS
  658. Drive d: (EVERYTHING) (Fixed) (Total:1863 GB) (Free:1489.96 GB) NTFS
  659. Drive e: (SAVE) (Fixed) (Total:2794.39 GB) (Free:2793.89 GB) NTFS
  660.  
  661. \\?\Volume{f222267d-54e9-4cc7-902a-57d361abf3ff}\ (Recovery) (Fixed) (Total:0.49 GB) (Free:0.47 GB) NTFS
  662. \\?\Volume{933b17de-6839-4429-b0c5-a8c1b14ea08e}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
  663.  
  664. ==================== MBR & Partition Table ==================
  665.  
  666. ========================================================
  667. Disk: 0 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)
  668.  
  669. Partition: GPT.
  670.  
  671. ========================================================
  672. Disk: 1 (Protective MBR) (Size: 111.8 GB) (Disk ID: 00000000)
  673.  
  674. Partition: GPT.
  675.  
  676. ========================================================
  677. Disk: 2 (Protective MBR) (Size: 2794.5 GB) (Disk ID: 00000000)
  678.  
  679. Partition: GPT.
  680.  
  681. ==================== End of Addition.txt ============================
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!