API tools faq
paste
Guest User

Untitled

a guest
Apr 19th, 2019
140
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 37.98 KB | None | 0 0
raw download clone embed print report
  1. Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18.04.2019
  2. Ran by Me (19-04-2019 03:04:37)
  3. Running from C:\Users\Me\Downloads
  4. Windows 10 Home Version 1809 17763.437 (X64) (2018-12-21 13:56:58)
  5. Boot Mode: Normal
  6. ==========================================================
  7.  
  8.  
  9. ==================== Accounts: =============================
  10.  
  11. Administrator (S-1-5-21-2761173780-3720148126-3182294003-500 - Administrator - Disabled)
  12. DefaultAccount (S-1-5-21-2761173780-3720148126-3182294003-503 - Limited - Disabled)
  13. defaultuser0 (S-1-5-21-2761173780-3720148126-3182294003-1000 - Limited - Disabled)
  14. Guest (S-1-5-21-2761173780-3720148126-3182294003-501 - Limited - Disabled)
  15. Me (S-1-5-21-2761173780-3720148126-3182294003-1001 - Administrator - Enabled) => C:\Users\Me
  16. WDAGUtilityAccount (S-1-5-21-2761173780-3720148126-3182294003-504 - Limited - Disabled)
  17.  
  18. ==================== Security Center ========================
  19.  
  20. (If an entry is included in the fixlist, it will be removed.)
  21.  
  22. AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
  23. AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
  24. AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
  25. AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
  26.  
  27. ==================== Installed Programs ======================
  28.  
  29. (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
  30.  
  31. AMD Settings (HKLM\...\WUCCCApp) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.)
  32. Ant Video downloader (Native messaging host) (HKLM-x32\...\{5DC7FA9A-CBBB-4FBD-B3A0-898076A454FD}) (Version: 4.1.24 - Ant.com)
  33. Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.4.2374 - AVAST Software)
  34. Catalyst Control Center Next Localization BR (HKLM\...\{A16E186C-58C4-3BDC-5CCE-714EFEF5F27F}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
  35. Catalyst Control Center Next Localization BR (HKLM\...\{E7AA1A02-575C-14C6-FBEF-4BE6D46A5B74}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  36. Catalyst Control Center Next Localization CHS (HKLM\...\{E42911E5-48F8-8557-ED20-D72AD1907D25}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
  37. Catalyst Control Center Next Localization CHS (HKLM\...\{EB6C44F1-0F78-FE10-BC63-90BA50AB0CE9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  38. Catalyst Control Center Next Localization CHT (HKLM\...\{B26D75B8-FAB7-6F8B-767F-BAF975383D91}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  39. Catalyst Control Center Next Localization CHT (HKLM\...\{B4C30EF4-B2C5-1395-B534-7B63BCB6E8E4}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
  40. Catalyst Control Center Next Localization CS (HKLM\...\{36EDC500-E4C0-371C-9865-08450415C1E9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  41. Catalyst Control Center Next Localization CS (HKLM\...\{62098A5F-E03B-31A3-5F9C-51A7F7D25744}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
  42. Catalyst Control Center Next Localization DA (HKLM\...\{1757AD9B-0E3C-05F9-FE43-4343BED7DA85}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
  43. Catalyst Control Center Next Localization DA (HKLM\...\{4C2FB7FD-89FD-BA5C-585A-3811F326AD34}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  44. Catalyst Control Center Next Localization DE (HKLM\...\{66B06F29-EE4F-9130-D96A-754826093FEA}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
  45. Catalyst Control Center Next Localization DE (HKLM\...\{D74218A3-C503-57EF-AC9F-2220082E7ADE}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  46. Catalyst Control Center Next Localization EL (HKLM\...\{821D0A0E-F246-BE40-0D68-93883C14C410}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
  47. Catalyst Control Center Next Localization EL (HKLM\...\{DA433FCF-90A1-19A5-65A7-FDF82DE4826D}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  48. Catalyst Control Center Next Localization ES (HKLM\...\{88BD74C4-23AB-4554-915C-6E1F0C81F6CD}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
  49. Catalyst Control Center Next Localization ES (HKLM\...\{949F125B-A6CC-5A5E-EEE7-4AC50305C1FA}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  50. Catalyst Control Center Next Localization FI (HKLM\...\{20D46801-147B-30AD-7C5A-AC4560A79096}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  51. Catalyst Control Center Next Localization FI (HKLM\...\{A48E2AB0-0866-7783-9657-E1709EB18D02}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
  52. Catalyst Control Center Next Localization FR (HKLM\...\{22C39711-2747-D264-319A-1550BEEAAEC6}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  53. Catalyst Control Center Next Localization FR (HKLM\...\{E61CEF9A-BAC3-EAEE-F735-E257D2354DF2}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
  54. Catalyst Control Center Next Localization HU (HKLM\...\{1DBACFDB-5E43-7882-36BD-53526D34BD22}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  55. Catalyst Control Center Next Localization HU (HKLM\...\{DA0326BB-657D-AAFC-752C-363E8FA33755}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
  56. Catalyst Control Center Next Localization IT (HKLM\...\{A91FC4BF-C1EC-ADCA-79D1-F4F0671F1D60}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  57. Catalyst Control Center Next Localization IT (HKLM\...\{B873A1FB-5EA0-EE5F-A861-1E38880AD08E}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
  58. Catalyst Control Center Next Localization JA (HKLM\...\{EC9DF9FF-9D75-4CDD-1D58-A2E887B0A42E}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
  59. Catalyst Control Center Next Localization JA (HKLM\...\{ED75A775-03A7-F214-868D-497748707968}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  60. Catalyst Control Center Next Localization KO (HKLM\...\{07BFBD5C-2F63-6828-1B61-B41A44113F3B}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  61. Catalyst Control Center Next Localization KO (HKLM\...\{7ABACA7E-6E59-0EF9-8FA3-6B32E5F58127}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
  62. Catalyst Control Center Next Localization NL (HKLM\...\{3E196AAF-F81C-B384-E2AB-28EE2398FE5F}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
  63. Catalyst Control Center Next Localization NL (HKLM\...\{E6038D3E-5D87-8DF7-6D05-BE7532C3E73E}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  64. Catalyst Control Center Next Localization NO (HKLM\...\{DAEFFE0C-CD05-1355-6AFC-7B3D4106A820}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
  65. Catalyst Control Center Next Localization NO (HKLM\...\{DFAD9DAC-4768-C8BB-4E0E-5239605A9BEA}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  66. Catalyst Control Center Next Localization PL (HKLM\...\{E392A425-53A7-DF90-96A0-E287A75DD3B2}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
  67. Catalyst Control Center Next Localization PL (HKLM\...\{FFBFBD1F-B160-A119-7C43-8584FA2E5665}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  68. Catalyst Control Center Next Localization RU (HKLM\...\{4D1D5407-9B69-6422-629C-8518A26004A4}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  69. Catalyst Control Center Next Localization RU (HKLM\...\{D6F47BB4-700A-F612-0671-5F69EA311BB7}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
  70. Catalyst Control Center Next Localization SV (HKLM\...\{01FD9A26-3F61-9236-B360-BE5D043D82C0}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
  71. Catalyst Control Center Next Localization SV (HKLM\...\{A8379BAB-59A9-C0A3-8BCC-4852EA403692}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  72. Catalyst Control Center Next Localization TH (HKLM\...\{24DF617A-CD23-6E6A-126B-23630D2781CE}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  73. Catalyst Control Center Next Localization TH (HKLM\...\{64D4CCC3-63DF-252D-D29D-03491670225D}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
  74. Catalyst Control Center Next Localization TR (HKLM\...\{83DDDFD8-AD42-72F9-E4F1-5456FDB304C9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  75. Catalyst Control Center Next Localization TR (HKLM\...\{8DF90937-B869-9F76-5D45-5A8BDA0A33B6}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
  76. CCleaner (HKLM\...\CCleaner) (Version: 5.56 - Piriform)
  77. GlassWire 2.1 (remove only) (HKLM-x32\...\GlassWire 2.1) (Version: 2.1.152 - SecureMix LLC)
  78. Google Chrome (HKLM-x32\...\Google Chrome) (Version: 73.0.3683.103 - Google Inc.)
  79. Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.7 - Google LLC) Hidden
  80. KeyScrambler (HKLM-x32\...\KeyScrambler) (Version: 3.12.0.1 - QFX Software Corporation)
  81. Lenovo Utility (HKLM\...\{12ABAC82-7D83-4CB8-9DD2-434DC9AF2942}_is1) (Version: 3.0.0.17 - Lenovo)
  82. LibreOffice 6.2.2.2 (HKLM\...\{7B486711-D8E3-41F4-A518-D709CD62C3D1}) (Version: 6.2.2.2 - The Document Foundation)
  83. Malwarebytes Windows Firewall Control (HKLM\...\Windows Firewall Control) (Version: 6.0.2.0 - BiniSoft.org)
  84. Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
  85. Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
  86. Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
  87. Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
  88. Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
  89. Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
  90. Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
  91. Mozilla Firefox 66.0.3 (x64 en-US) (HKLM\...\Mozilla Firefox 66.0.3 (x64 en-US)) (Version: 66.0.3 - Mozilla)
  92. Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 59.0.2 - Mozilla)
  93. Npcap 0.99-r9 (HKLM-x32\...\NpcapInst) (Version: 0.99-r9 - Nmap Project)
  94. Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
  95. RogueKiller version 12.12.33.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12.12.33.0 - Adlice Software)
  96. Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
  97. Windows 10 Update Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22589 - Microsoft Corporation)
  98. WinPatrol (HKLM-x32\...\{6A206A04-6BC1-411B-AA04-4E52EDEEADF2}) (Version: 35.5.2017.8 - Ruiware)
  99. WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
  100. Wireshark 3.0.0 64-bit (HKLM-x32\...\Wireshark) (Version: 3.0.0 - The Wireshark developer community, hxxps://www.wireshark.org)
  101.  
  102. ==================== Custom CLSID (Whitelisted): ==========================
  103.  
  104. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  105.  
  106. ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
  107. ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
  108. ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
  109. ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
  110. ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
  111. ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
  112. ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
  113. ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-04-13] (AVAST Software s.r.o. -> AVAST Software)
  114. ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
  115. ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
  116. ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
  117. ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
  118. ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
  119. ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
  120. ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
  121. ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-04-13] (AVAST Software s.r.o. -> AVAST Software)
  122. ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-04-13] (AVAST Software s.r.o. -> AVAST Software)
  123. ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> No File
  124. ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
  125. ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2017-09-22] (Advanced Micro Devices, Inc.) [File not signed]
  126. ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-04-13] (AVAST Software s.r.o. -> AVAST Software)
  127. ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> No File
  128. ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
  129.  
  130. ==================== Scheduled Tasks (Whitelisted) =============
  131.  
  132. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  133.  
  134. Task: {1336609D-1CA1-46B1-BD94-BEFBD9283A55} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
  135. Task: {3F657B33-DA16-4BEB-88C2-C5A6F4B03BC7} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
  136. Task: {47699C62-A3B4-404E-8458-06731ACA9228} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
  137. Task: {8389F3F6-5883-4589-B6D9-048C8D53AB91} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe (AVAST Software s.r.o. -> AVAST Software)
  138. Task: {A0BD8F45-4DBD-4DEB-A96C-7317D207A965} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
  139. Task: {ACAB287A-D68E-44B5-8FB5-499A5FB3C14A} - System32\Tasks\npcapwatchdog => C:\Program [Argument = Files\Npcap\CheckStatus.bat] <==== ATTENTION
  140. Task: {C6C07EBE-490D-4B4D-99B7-CE31A0E11CFA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe (Piriform Software Ltd -> Piriform Software Ltd)
  141. Task: {CE18D9A7-D040-4622-A589-A7F99A2E8980} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
  142.  
  143. (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
  144.  
  145.  
  146. ==================== Shortcuts & WMI ========================
  147.  
  148. (The entries could be listed to be restored or removed.)
  149.  
  150.  
  151. ShortcutWithArgument: C:\Users\Me\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Instagram.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=maonlnecdeecdljpahhnnlmhbmalehlm
  152.  
  153. ==================== Loaded Modules (Whitelisted) ==============
  154.  
  155. 2016-09-13 03:00 - 2016-09-13 03:00 - 005496320 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
  156. 2016-09-13 03:00 - 2016-09-13 03:00 - 002924544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
  157. 2016-09-13 03:00 - 2016-09-13 03:00 - 000912384 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Charts.dll
  158. 2016-09-13 03:00 - 2016-09-13 03:00 - 005444608 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
  159. 2016-09-13 03:01 - 2016-09-13 03:01 - 000277504 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
  160. 2016-09-13 03:00 - 2016-09-13 03:00 - 005804544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
  161. 2016-09-13 03:00 - 2016-09-13 03:00 - 003187712 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
  162. 2016-09-13 03:01 - 2016-09-13 03:01 - 000193024 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
  163. 2016-09-13 03:00 - 2016-09-13 03:00 - 001061376 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
  164. 2016-09-13 03:01 - 2016-09-13 03:01 - 001212416 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll
  165. 2016-09-13 03:01 - 2016-09-13 03:01 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
  166. 2016-09-13 03:01 - 2016-09-13 03:01 - 000739840 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
  167. 2016-09-13 03:01 - 2016-09-13 03:01 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
  168. 2016-09-13 03:01 - 2016-09-13 03:01 - 000071168 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
  169. 2016-09-13 03:01 - 2016-09-13 03:01 - 000011776 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
  170. 2016-09-13 03:01 - 2016-09-13 03:01 - 002013696 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
  171. 2016-09-13 03:01 - 2016-09-13 03:01 - 000049664 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qdds.dll
  172. 2016-09-13 03:01 - 2016-09-13 03:01 - 000029696 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll
  173. 2016-09-13 03:01 - 2016-09-13 03:01 - 000037376 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll
  174. 2016-09-13 03:01 - 2016-09-13 03:01 - 000030208 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll
  175. 2016-09-13 03:01 - 2016-09-13 03:01 - 000459776 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjp2.dll
  176. 2016-09-13 03:01 - 2016-09-13 03:01 - 000236544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll
  177. 2016-09-13 03:01 - 2016-09-13 03:01 - 000275456 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qmng.dll
  178. 2016-09-13 03:01 - 2016-09-13 03:01 - 000023552 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll
  179. 2016-09-13 03:00 - 2016-09-13 03:00 - 000310784 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
  180. 2016-09-13 03:01 - 2016-09-13 03:01 - 000022528 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll
  181. 2016-09-13 03:01 - 2016-09-13 03:01 - 000351744 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtiff.dll
  182. 2016-09-13 03:01 - 2016-09-13 03:01 - 000021504 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll
  183. 2016-09-13 03:01 - 2016-09-13 03:01 - 000374784 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll
  184. 2016-09-13 03:01 - 2016-09-13 03:01 - 000191488 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
  185.  
  186. ==================== Alternate Data Streams (Whitelisted) =========
  187.  
  188. (If an entry is included in the fixlist, only the ADS will be removed.)
  189.  
  190.  
  191. ==================== Safe Mode (Whitelisted) ===================
  192.  
  193. (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
  194.  
  195.  
  196. ==================== Association (Whitelisted) ===============
  197.  
  198. (If an entry is included in the fixlist, the registry item will be restored to default or removed.)
  199.  
  200.  
  201. ==================== Internet Explorer trusted/restricted ===============
  202.  
  203. (If an entry is included in the fixlist, it will be removed from the registry.)
  204.  
  205.  
  206. ==================== Hosts content: ===============================
  207.  
  208. (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
  209.  
  210. 2017-09-29 09:46 - 2019-01-04 19:32 - 000000834 _____ C:\WINDOWS\system32\drivers\etc\hosts
  211.  
  212.  
  213. 2019-01-08 19:12 - 2019-02-09 19:58 - 000000443 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
  214.  
  215.  
  216. ==================== Other Areas ============================
  217.  
  218. (Currently there is no automatic fix for this section.)
  219.  
  220. HKU\S-1-5-21-2761173780-3720148126-3182294003-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
  221. DNS Servers: Media is not connected to internet.
  222. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
  223. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
  224. Windows Firewall is enabled.
  225.  
  226. ==================== MSCONFIG/TASK MANAGER disabled items ==
  227.  
  228. If an entry is included in the fixlist, it will be removed.
  229.  
  230.  
  231. ==================== FirewallRules (Whitelisted) ===============
  232.  
  233. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  234.  
  235. FirewallRules: [{14F9FF5A-CCA2-4BC6-8105-2D60376BAA23}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
  236. FirewallRules: [{51E59259-F729-4286-9EF9-1AB6112778FC}] => (Allow) C:\Users\Me\Desktop\Programs\Tor Browser\Browser\TorBrowser\Tor\tor.exe () [File not signed]
  237. FirewallRules: [{ECC01F21-9B96-40EE-BACE-1807B0394F48}] => (Allow) C:\Users\Me\Desktop\Programs\Tor Browser\Browser\firefox.exe (Mozilla Corporation) [File not signed]
  238. FirewallRules: [{9039A5B9-AA04-42CB-9D85-4BE4733BD16A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
  239. FirewallRules: [{E6FBC05E-04B1-44E4-9524-449AFBB4FDC9}] => (Allow) C:\Program Files (x86)\GlassWire\GWCtlSrv.exe (GlassWire -> SecureMix LLC)
  240. FirewallRules: [{9EB01116-304A-4F72-9DA3-961A263C8AF8}] => (Allow) C:\Program Files (x86)\GlassWire\GWCtlSrv.exe (GlassWire -> SecureMix LLC)
  241. FirewallRules: [{C622B0A7-A8C9-45B9-964E-5F194BB4669A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
  242. FirewallRules: [{4485D049-67A6-4899-BB85-77B9273D556A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
  243.  
  244. ==================== Restore Points =========================
  245.  
  246. 07-03-2019 22:28:06 Windows Update
  247. 12-03-2019 18:15:11 Windows Update
  248. 30-03-2019 01:45:52 Installed LibreOffice 6.2.2.2
  249. 09-04-2019 18:51:16 Windows Update
  250.  
  251. ==================== Faulty Device Manager Devices =============
  252.  
  253.  
  254. ==================== Event log errors: =========================
  255.  
  256. Application errors:
  257. ==================
  258. Error: (04/18/2019 06:49:41 PM) (Source: Application Hang) (EventID: 1002) (User: )
  259. Description: The program SearchUI.exe version 10.0.17763.404 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
  260.  
  261. Process ID: 5500
  262.  
  263. Start Time: 01d4f638ef8ac87b
  264.  
  265. Termination Time: 4294967295
  266.  
  267. Application Path: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
  268.  
  269. Report Id: 89d5a3fc-e009-4892-906b-3263c5762fa5
  270.  
  271. Faulting package full name: Microsoft.Windows.Cortana_1.11.5.17763_neutral_neutral_cw5n1h2txyewy
  272.  
  273. Faulting package-relative application ID: CortanaUI
  274.  
  275. Hang type: Quiesce
  276.  
  277. Error: (04/17/2019 07:05:33 PM) (Source: Application Hang) (EventID: 1002) (User: )
  278. Description: The program SearchUI.exe version 10.0.17763.404 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
  279.  
  280. Process ID: 4694
  281.  
  282. Start Time: 01d4f571fcee17b9
  283.  
  284. Termination Time: 4294967295
  285.  
  286. Application Path: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
  287.  
  288. Report Id: c63f18ba-49f0-44d5-a6a3-5a8102c75f81
  289.  
  290. Faulting package full name: Microsoft.Windows.Cortana_1.11.5.17763_neutral_neutral_cw5n1h2txyewy
  291.  
  292. Faulting package-relative application ID: CortanaUI
  293.  
  294. Hang type: Quiesce
  295.  
  296. Error: (04/15/2019 05:38:34 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
  297. Description: Windows Search Service failed to process the list of included and excluded locations with the error <30, 0x80040d07, "iehistory://{S-1-5-21-2761173780-3720148126-3182294003-1001}/">.
  298.  
  299. Error: (04/15/2019 05:31:39 PM) (Source: Application Hang) (EventID: 1002) (User: )
  300. Description: The program SearchUI.exe version 10.0.17763.404 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
  301.  
  302. Process ID: 32b8
  303.  
  304. Start Time: 01d4f3d286dcfb89
  305.  
  306. Termination Time: 4294967295
  307.  
  308. Application Path: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
  309.  
  310. Report Id: c9e2953a-1e28-44eb-af17-74e80a8db0cb
  311.  
  312. Faulting package full name: Microsoft.Windows.Cortana_1.11.5.17763_neutral_neutral_cw5n1h2txyewy
  313.  
  314. Faulting package-relative application ID: CortanaUI
  315.  
  316. Hang type: Quiesce
  317.  
  318. Error: (04/10/2019 04:25:19 AM) (Source: Application Hang) (EventID: 1002) (User: )
  319. Description: The program SearchUI.exe version 10.0.17763.404 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
  320.  
  321. Process ID: 13bc
  322.  
  323. Start Time: 01d4ef76d9504f94
  324.  
  325. Termination Time: 4294967295
  326.  
  327. Application Path: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
  328.  
  329. Report Id: 93b8103d-cf3a-410a-b3d1-0e18fb33eecc
  330.  
  331. Faulting package full name: Microsoft.Windows.Cortana_1.11.5.17763_neutral_neutral_cw5n1h2txyewy
  332.  
  333. Faulting package-relative application ID: CortanaUI
  334.  
  335. Hang type: Quiesce
  336.  
  337. Error: (04/09/2019 06:51:38 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
  338. Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.
  339.  
  340. Details:
  341. AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
  342.  
  343. System Error:
  344. Access is denied.
  345. .
  346.  
  347. Error: (04/07/2019 02:53:18 AM) (Source: ATIeRecord) (EventID: 16387) (User: )
  348. Description:
  349.  
  350. Error: (04/07/2019 02:53:11 AM) (Source: ATIeRecord) (EventID: 16387) (User: )
  351. Description:
  352.  
  353.  
  354. System errors:
  355. =============
  356. Error: (04/19/2019 02:53:49 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-KU7I343)
  357. Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
  358. {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
  359. and APPID
  360. {15C20B67-12E7-4BB6-92BB-7AFF07997402}
  361. to the user DESKTOP-KU7I343\Me SID (S-1-5-21-2761173780-3720148126-3182294003-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
  362.  
  363. Error: (04/19/2019 02:50:21 AM) (Source: TPM) (EventID: 15) (User: )
  364. Description: The device driver for the Trusted Platform Module (TPM) encountered a non-recoverable error in the TPM hardware, which prevents TPM services (such as data encryption) from being used. For further help, please contact the computer manufacturer.
  365.  
  366. Error: (04/18/2019 08:51:25 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
  367. Description: 5
  368.  
  369. Error: (04/18/2019 07:05:45 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-KU7I343)
  370. Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
  371. {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
  372. and APPID
  373. {15C20B67-12E7-4BB6-92BB-7AFF07997402}
  374. to the user DESKTOP-KU7I343\Me SID (S-1-5-21-2761173780-3720148126-3182294003-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
  375.  
  376. Error: (04/18/2019 06:48:54 PM) (Source: TPM) (EventID: 15) (User: )
  377. Description: The device driver for the Trusted Platform Module (TPM) encountered a non-recoverable error in the TPM hardware, which prevents TPM services (such as data encryption) from being used. For further help, please contact the computer manufacturer.
  378.  
  379. Error: (04/17/2019 11:59:51 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
  380. Description: 5
  381.  
  382. Error: (04/17/2019 07:07:23 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-KU7I343)
  383. Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
  384. {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
  385. and APPID
  386. {15C20B67-12E7-4BB6-92BB-7AFF07997402}
  387. to the user DESKTOP-KU7I343\Me SID (S-1-5-21-2761173780-3720148126-3182294003-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
  388.  
  389. Error: (04/17/2019 07:04:47 PM) (Source: TPM) (EventID: 15) (User: )
  390. Description: The device driver for the Trusted Platform Module (TPM) encountered a non-recoverable error in the TPM hardware, which prevents TPM services (such as data encryption) from being used. For further help, please contact the computer manufacturer.
  391.  
  392.  
  393. Windows Defender:
  394. ===================================
  395. Date: 2019-01-06 09:54:02.814
  396. Description:
  397. Windows Defender Antivirus scan has been stopped before completion.
  398. Scan ID: {508DCC84-D17C-4A7E-AB86-3D004ACC1166}
  399. Scan Type: Antimalware
  400. Scan Parameters: Quick Scan
  401.  
  402. Date: 2019-01-05 17:51:53.982
  403. Description:
  404. Windows Defender Antivirus scan has been stopped before completion.
  405. Scan ID: {E8A7CA7C-8BEF-4946-8568-6BC043E68CD8}
  406. Scan Type: Antimalware
  407. Scan Parameters: Quick Scan
  408.  
  409. Date: 2019-01-05 17:43:00.704
  410. Description:
  411. Windows Defender Antivirus scan has been stopped before completion.
  412. Scan ID: {7855973C-FA1B-4733-B040-786FBA6F0114}
  413. Scan Type: Antimalware
  414. Scan Parameters: Quick Scan
  415.  
  416. Date: 2018-12-29 17:01:03.969
  417. Description:
  418. Windows Defender Antivirus scan has been stopped before completion.
  419. Scan ID: {E0EF5B37-D2EF-49CB-A3BF-478DC9644684}
  420. Scan Type: Antimalware
  421. Scan Parameters: Quick Scan
  422.  
  423. Date: 2018-12-24 15:17:55.870
  424. Description:
  425. Windows Defender Antivirus scan has been stopped before completion.
  426. Scan ID: {5F0F1551-C620-4C25-9C9F-441D46E636CD}
  427. Scan Type: Antimalware
  428. Scan Parameters: Quick Scan
  429.  
  430. Date: 2019-03-12 19:48:46.452
  431. Description:
  432. Windows Defender Antivirus has encountered an error trying to update signatures.
  433. New Signature Version:
  434. Previous Signature Version: 1.283.2481.0
  435. Update Source: Microsoft Malware Protection Center
  436. Signature Type: AntiVirus
  437. Update Type: Full
  438. Current Engine Version:
  439. Previous Engine Version: 1.1.15500.2
  440. Error code: 0x80072ee7
  441. Error description: The server name or address could not be resolved
  442.  
  443. Date: 2019-03-12 19:48:46.442
  444. Description:
  445. Windows Defender Antivirus has encountered an error trying to update signatures.
  446. New Signature Version:
  447. Previous Signature Version: 1.283.2481.0
  448. Update Source: Microsoft Malware Protection Center
  449. Signature Type: AntiSpyware
  450. Update Type: Full
  451. Current Engine Version:
  452. Previous Engine Version: 1.1.15500.2
  453. Error code: 0x80072ee7
  454. Error description: The server name or address could not be resolved
  455.  
  456. Date: 2019-03-12 19:48:46.442
  457. Description:
  458. Windows Defender Antivirus has encountered an error trying to update signatures.
  459. New Signature Version:
  460. Previous Signature Version: 1.283.2481.0
  461. Update Source: Microsoft Malware Protection Center
  462. Signature Type: AntiVirus
  463. Update Type: Full
  464. Current Engine Version:
  465. Previous Engine Version: 1.1.15500.2
  466. Error code: 0x80072ee7
  467. Error description: The server name or address could not be resolved
  468.  
  469. Date: 2019-03-12 19:48:46.333
  470. Description:
  471. Windows Defender Antivirus has encountered an error trying to update signatures.
  472. New Signature Version:
  473. Previous Signature Version: 1.283.2481.0
  474. Update Source: Microsoft Malware Protection Center
  475. Signature Type: AntiVirus
  476. Update Type: Full
  477. Current Engine Version:
  478. Previous Engine Version: 1.1.15500.2
  479. Error code: 0x80072ee7
  480. Error description: The server name or address could not be resolved
  481.  
  482. Date: 2019-03-12 19:48:46.332
  483. Description:
  484. Windows Defender Antivirus has encountered an error trying to update signatures.
  485. New Signature Version:
  486. Previous Signature Version: 1.283.2481.0
  487. Update Source: Microsoft Malware Protection Center
  488. Signature Type: AntiSpyware
  489. Update Type: Full
  490. Current Engine Version:
  491. Previous Engine Version: 1.1.15500.2
  492. Error code: 0x80072ee7
  493. Error description: The server name or address could not be resolved
  494.  
  495. CodeIntegrity:
  496. ===================================
  497.  
  498. Date: 2019-04-07 15:54:36.672
  499. Description:
  500. Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\KeyScrambler\x64\KeyScramblerIE.dll that did not meet the Microsoft signing level requirements.
  501.  
  502. Date: 2019-04-07 15:54:36.633
  503. Description:
  504. Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\KeyScrambler\x64\KeyScramblerIE.dll that did not meet the Microsoft signing level requirements.
  505.  
  506. Date: 2019-03-08 18:16:21.531
  507. Description:
  508. Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
  509.  
  510. Date: 2019-03-04 22:37:56.500
  511. Description:
  512. Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
  513.  
  514. Date: 2019-01-26 17:22:51.064
  515. Description:
  516. Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\KeyScrambler\x64\KeyScramblerIE.dll that did not meet the Microsoft signing level requirements.
  517.  
  518. Date: 2019-01-26 17:22:50.991
  519. Description:
  520. Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\KeyScrambler\x64\KeyScramblerIE.dll that did not meet the Microsoft signing level requirements.
  521.  
  522. Date: 2019-01-26 17:22:50.822
  523. Description:
  524. Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\KeyScrambler\x64\KeyScramblerIE.dll that did not meet the Microsoft signing level requirements.
  525.  
  526. Date: 2019-01-26 17:22:50.724
  527. Description:
  528. Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\KeyScrambler\x64\KeyScramblerIE.dll that did not meet the Microsoft signing level requirements.
  529.  
  530. ==================== Memory info ===========================
  531.  
  532. Processor: AMD A6-7310 APU with AMD Radeon R4 Graphics
  533. Percentage of memory in use: 88%
  534. Total physical RAM: 3490.6 MB
  535. Available physical RAM: 411.29 MB
  536. Total Virtual: 5831.83 MB
  537. Available Virtual: 992.33 MB
  538.  
  539. ==================== Drives ================================
  540.  
  541. Drive c: () (Fixed) (Total:434.41 GB) (Free:385.85 GB) NTFS
  542.  
  543. \\?\Volume{6f5f1803-0000-0000-0000-100000000000}\ (System Reserved) (Fixed) (Total:0.54 GB) (Free:0.5 GB) NTFS
  544. \\?\Volume{6f5f1803-0000-0000-0000-803c74000000}\ () (Fixed) (Total:0.81 GB) (Free:0.31 GB) NTFS
  545.  
  546. ==================== MBR & Partition Table ==================
  547.  
  548. ==================== End of Addition.txt ============================
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!