0 ratings0% found this document useful (0 votes)
6 viewsAddition
The document contains the scan results from the Farbar Recovery Scan Tool, detailing the system's accounts, security settings, and installed programs on a Windows 11 Pro machine. It lists various user accounts, their statuses, and installed antivirus software, including Dr.Web Security Space and Windows Defender. Additionally, it provides a comprehensive list of installed programs, including their versions and whether they are hidden or visible.
Uploaded by
davhay1010Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
0 ratings0% found this document useful (0 votes)
6 viewsAddition
The document contains the scan results from the Farbar Recovery Scan Tool, detailing the system's accounts, security settings, and installed programs on a Windows 11 Pro machine. It lists various user accounts, their statuses, and installed antivirus software, including Dr.Web Security Space and Windows Defender. Additionally, it provides a comprehensive list of installed programs, including their versions and whether they are hidden or visible.
Uploaded by
davhay1010Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 18
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-01-2025
Ran by User (18-01-2025 16:05:12)
Running from C:\Users\User\Desktop
Microsoft Windows 11 Pro Version 24H2 26100.2894 (X64) (2024-12-27 07:52:52)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-3703966402-4285444198-4034977268-500 - Administrator -
Disabled)
DefaultAccount (S-1-5-21-3703966402-4285444198-4034977268-503 - Limited - Disabled)
Guest (S-1-5-21-3703966402-4285444198-4034977268-501 - Limited - Disabled)
User (S-1-5-21-3703966402-4285444198-4034977268-1001 - Administrator - Enabled) =>
C:\Users\User
WDAGUtilityAccount (S-1-5-21-3703966402-4285444198-4034977268-504 - Limited -
Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Dr.Web Security Space (Enabled - Up to date) {250CDD7E-926B-AEFC-24F0-
E203A6F6D244}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Dr.Web Firewall (Enabled) {1D375C5B-D804-AFA4-0FAF-4B365825953F}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to
unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1033-1033-7760-BC15014EA700}) (Version:
24.005.20320 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601102})
(Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AMD Privacy View (HKLM\...\{D8E24EA6-807B-48D0-86D6-A9C5E74B8F2C}) (Version:
1.02.0001 - Eyeware Tech SA)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 24.12.1 - Advanced
Micro Devices, Inc.)
AnyDesk (HKLM-x32\...\AnyDesk) (Version: ad 8.0.10 - AnyDesk Software GmbH)
Armenian Phonetic Eastern Unicode Custom (HKLM\...\{A9C1BC6A-855B-4F57-B8AE-
E4D6A4D41CE9}) (Version: 1.0.3.40 - Network.am)
Branding64 (HKLM\...\{492AEFBE-1B81-4C20-A111-E6974BB98EC5}) (Version: 1.00.0009 -
Advanced Micro Devices, Inc.) Hidden
Canyon Nightfall Keyboard (HKLM-x32\...\{3E96E50A-A784-4D81-8DD9-1F2B3F4B1577}_is1)
(Version: 1.1 - CANYON)
Discord (HKU\S-1-5-21-3703966402-4285444198-4034977268-1001\...\Discord) (Version:
1.0.9153 - Discord Inc.)
Dr.Web Security Space (HKLM\...\{5352DB49-883D-4b64-8443-DA7B80C33ED5}) (Version:
12.0 - Doctor Web, Ltd.)
Dynamic Application Loader Host Interface Service (HKLM\...\{B8F67CAD-D16A-4AC8-
B4F1-3AE8A9FF22F5}) (Version: 1.0.0.0 - Intel Corporation) Hidden
EcoTrioz 2.10.4.671 (HKLM-x32\...\{daffbd76-a93e-49e1-b22a-ee0b4b3d5c19}) (Version:
2.10.4.671 - Fahey-Rau LLC) Hidden
Epic Games Launcher (HKLM-x32\...\{B85FAA6E-A9AA-4655-9029-E1A4EDC05E1A}) (Version:
1.3.93.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-
AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{57A956AB-4BCC-45C6-9B40-957E4E125568})
(Version: 2.0.44.0 - Epic Games, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 132.0.6834.83 - Google LLC)
HoYoPlay (HKLM\...\HYP_1_0_global) (Version: 1.3.3.182 - COGNOSPHERE PTE. LTD.)
HoYoPlay (HKLM\...\HYP_1_1_global) (Version: 1.4.2.199 - COGNOSPHERE PTE. LTD.)
InfiniteFusionApp (HKU\S-1-5-21-3703966402-4285444198-4034977268-1001\...\
d5dbc2b8a303e9f1) (Version: 2.9.8.7 - megaman)
Intel(R) Chipset Device Software (HKLM\...\{AC17BAC9-E923-4F62-AEC7-41522756AC74})
(Version: 10.1.19376.8374 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{aee542d0-b3fe-4f3e-97e8-
f91a1651e9cf}) (Version: 10.1.19376.8374 - Intel(R) Corporation)
Intel(R) Management Engine Components (HKLM\...\{1B2B12B8-AE77-4104-97FE-
904274D21B6C}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-
8DE5E91F3700}) (Version: 2230.3.19.0 - Intel Corporation)
Intel(R) Management Engine Driver (HKLM\...\{5F953BF8-C54E-4335-B7C9-873508D2CE1A})
(Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) ME WMI Provider (HKLM\...\{2D7D4B84-FDD2-42BC-9B5B-ADAB4E31AC5E})
(Version: 1.0.0.0 - Intel Corporation) Hidden
Java 8 Update 401 (64-bit) (HKLM\...\{71024AE4-039E-4CA4-87B4-2F64180401F0})
(Version: 8.0.4010.10 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63})
(Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft Edge (HKLM-x32\...\{C0D6FB17-30ED-3B65-AD08-FDB80123DA9C}) (Version:
131.0.2903.146 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version:
131.0.2903.146 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2021 - en-us (HKLM\...\ProPlus2021Retail - en-
us) (Version: 16.0.18324.20168 - Microsoft Corporation)
Microsoft Office профессиональный плюс 2021 - ru-ru (HKLM\...\ProPlus2021Retail -
ru-ru) (Version: 16.0.18324.20168 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3703966402-4285444198-4034977268-1001\...\
OneDriveSetup.exe) (Version: 24.232.1118.0003 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-
51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-
6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-
F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\
{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft
Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-
B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\
{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft
Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\
{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft
Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\
{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft
Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-
03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-
26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\
{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft
Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-
1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\
{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft
Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\
{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft
Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\
{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft
Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\
{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft
Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-
551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-
A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\
{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft
Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-
ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.42.34433 (HKLM-x32\...\
{804e7d66-ccc2-4c12-84ba-476da31d103d}) (Version: 14.42.34433.0 - Microsoft
Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.42.34433 (HKLM-x32\...\
{e7802eac-3305-4da0-9378-e55d1ed05518}) (Version: 14.42.34433.0 - Microsoft
Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.42.34433 (HKLM\...\{E1902FC6-
C423-4719-AB8A-AC7B2694B367}) (Version: 14.42.34433 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.42.34433 (HKLM\...\{382F1166-
A409-4C5B-9B1E-85ED538B8291}) (Version: 14.42.34433 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.42.34433 (HKLM-x32\...\
{84E3E712-6343-484B-8B6C-9F145F019A70}) (Version: 14.42.34433 - Microsoft
Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.42.34433 (HKLM-x32\...\
{C2BB95AA-90F3-4891-81C1-A7E565BB836C}) (Version: 14.42.34433 - Microsoft
Corporation) Hidden
MSI Center SDK (HKLM-x32\...\{15289038-41BE-48F8-B8B9-0B1021D3089E}}_is1) (Version:
3.2024.0919.01 - MSI)
NVIDIA GeForce NOW 2.0.64.124 (HKU\S-1-5-21-3703966402-4285444198-4034977268-
1001\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GeForceNOW) (Version: 2.0.64.124 -
NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-
0000000FF1CE}) (Version: 16.0.18324.20092 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-
0000000FF1CE}) (Version: 16.0.18324.20168 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0419-1000-
0000000FF1CE}) (Version: 16.0.18324.20092 - Microsoft Corporation) Hidden
Opera GX Stable 115.0.5322.142 (HKU\S-1-5-21-3703966402-4285444198-4034977268-
1001\...\Opera GX 115.0.5322.142) (Version: 115.0.5322.142 - Opera Software)
Riot Client (HKU\S-1-5-21-3703966402-4285444198-4034977268-1001\...\Riot Game
Riot_Client.) (Version: - Riot Games, Inc)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.)
Roblox Player for User (HKU\S-1-5-21-3703966402-4285444198-4034977268-1001\...\
roblox-player) (Version: - Roblox Corporation)
Russian Phonetic Custom (HKLM\...\{E5F64B90-05B5-42B6-A6FA-DD73F5103FC4}) (Version:
1.0.3.40 - Network.am)
shrimp recognise 3.1.8.752 (HKLM-x32\...\{e8a84707-679f-4505-bbc1-132c36617b61})
(Version: 3.1.8.752 - Caro, Marín y Galindo e Hija S. de H.) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Super Calendar 1.0.0.0 (HKU\S-1-5-21-3703966402-4285444198-4034977268-1001\...\
{000e763d-31f8-45bd-bc3f-5df099b0bdeb}) (Version: 1.0.0.0 - Super Calendar) Hidden
Taskbar icons of Yandex services (HKU\S-1-5-21-3703966402-4285444198-4034977268-
1001\...\YaPinLancher) (Version: 3.7.9.0 - Yandex)
TLauncher (HKLM-x32\...\TLauncher) (Version: 2.923 - TLauncher Inc.)
toc (HKU\S-1-5-21-3703966402-4285444198-4034977268-1001\...\toc) (Version: 1.55 -
NewGame Dest Corp)
VALORANT (HKU\S-1-5-21-3703966402-4285444198-4034977268-1001\...\Riot Game
valorant.live) (Version: - Riot Games, Inc)
VBS Prog Stations 7.27.3.33 (HKLM-x32\...\VBS Prog Stations_is1) (Version: - )
waist-tidings (HKLM-x32\...\sneak-wooden_is1) (Version: 1.2 - waist-tidings)
WinRAR 7.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 7.01.0 - win.rar GmbH)
Yandex (HKU\S-1-5-21-3703966402-4285444198-4034977268-1001\...\YandexBrowser)
(Version: 24.7.2.1100 - Yandex)
Zoom Workplace (HKU\S-1-5-21-3703966402-4285444198-4034977268-1001\...\ZoomUMX)
(Version: 6.2.11 (50939) - Zoom Video Communications, Inc.)
Packages:
=========
AMD Radeon Software -> C:\Program Files\AMD\CNext\CNext [2025-01-06] (Advanced
Micro Devices Inc.)
AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\
AppUp.IntelGraphicsExperience_1.100.5688.0_x64__8j3eq9eme6ctt [2024-12-15] (INTEL
CORP) [Startup Task]
Cooking Simulator Windows -> C:\Program Files\WindowsApps\
BigCheeseStudio.CookingSimulatorWindows_1.0.11.0_x64__j479vfd09vc9j [2024-12-31]
(Big Cheese Studio)
Mafia: Definitive Edition -> C:\Program Files\WindowsApps\
79ACB67D.132527212B564_1.0.9.0_x64__yn88nk35a38zw [2024-12-31] (2K)
MSI Center -> C:\Program Files\WindowsApps\9426MICRO-
STARINTERNATION.MSICenter_2.0.47.0_x64__kzh8wxbdkxb8p [2025-01-04] (MICRO-STAR
INTERNATIONAL CO., LTD) [Startup Task]
OP Auto Clicker - Auto Tap -> C:\Program Files\WindowsApps\
38458AutoClicker.OPAutoClicker-AutoTap_4.1.0.0_x64__5e1qkq7gw5abm [2024-11-12]
(Auto Clicker)
Persona 3 Reload -> C:\Program Files\WindowsApps\
SEGAofAmericaInc.L0cb6b3aea_1.0.185.0_x64__s751p9cej88mt [2025-01-07] (SEGA of
America, Inc.)
Realtek Audio Control -> C:\Program Files\WindowsApps\
RealtekSemiconductorCorp.RealtekAudioControl_1.51.347.0_x64__dt26b99r8h8gj [2024-
12-13] (Realtek Semiconductor Corp)
Totally Accurate Battle Simulator -> C:\Program Files\WindowsApps\
LandfallGames.TotallyAccurateBattleSimulator_1.0.7692.0_x64__r2vq7k2y0v9ct [2025-
01-04] (Landfall Games)
Turnip Boy Robs a Bank -> C:\Program Files\WindowsApps\
GraffitiGames.TurnipBoyRobsaBank_1.0.17.0_x64__zs4fqap7s3pxa [2024-12-31] (Graffiti
Games)
WinAppRuntime.Main.1.5 -> C:\Program Files\WindowsApps\
MicrosoftCorporationII.WinAppRuntime.Main.1.5_5001.311.2039.0_x64__8wekyb3d8bbwe
[2024-11-16] (Microsoft Corp.)
WinAppRuntime.Singleton -> C:\Program Files\WindowsApps\
MicrosoftCorporationII.WinAppRuntime.Singleton_6000.318.2304.0_x64__8wekyb3d8bbwe
[2024-11-22] (Microsoft Corp.)
WinRAR -> C:\Program Files\WinRAR [2024-05-24] (win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The
file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3703966402-4285444198-4034977268-1001_Classes\CLSID\
{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\
Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-3703966402-4285444198-4034977268-1001_Classes\CLSID\
{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\
Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
ContextMenuHandlers1-x32: [DrwMenuHandlers] -> {E7593602-124B-47C9-9F73-
A69308EDC973} => C:\Program Files\DrWeb\drwsxtn.dll [2025-01-08] (Doctor Web Ltd. -
> Doctor Web, Ltd.)
ContextMenuHandlers1: [DrwMenuHandlers64] -> {035B18F9-A217-44D5-91C9-B682C33C1078}
=> C:\Program Files\DrWeb\drwsxtn64.dll [2025-01-08] (Doctor Web Ltd. -> Doctor
Web, Ltd.)
ContextMenuHandlers6-x32: [DrwMenuHandlers] -> {E7593602-124B-47C9-9F73-
A69308EDC973} => C:\Program Files\DrWeb\drwsxtn.dll [2025-01-08] (Doctor Web Ltd. -
> Doctor Web, Ltd.)
ContextMenuHandlers6: [DrwMenuHandlers64] -> {035B18F9-A217-44D5-91C9-B682C33C1078}
=> C:\Program Files\DrWeb\drwsxtn64.dll [2025-01-08] (Doctor Web Ltd. -> Doctor
Web, Ltd.)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\User\Desktop\Person 1 - Chrome.lnk -> C:\Program
Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-
directory="Default"
ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\
Programs\Chrome Apps\Spelunky.lnk -> C:\Program Files\Google\Chrome\Application\
chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-
id=ogggnbbinagpdjpnmfihhgdlogfdmdko
ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\
Programs\Chrome Apps\Zoom.lnk -> C:\Program Files\Google\Chrome\Application\
chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-
id=hmbjbjdpkobdjplfobhljndfdfdipjhg
==================== Loaded Modules (Whitelisted) =============
2024-05-24 20:46 - 2024-01-27 01:04 - 007470592 _____ () [File not signed] C:\
Program Files (x86)\Steam\aom.dll
2024-05-24 20:46 - 2024-01-27 01:04 - 001066496 _____ () [File not signed] C:\
Program Files (x86)\Steam\dav1d.dll
2024-09-19 07:18 - 2024-07-11 05:46 - 000701952 _____ () [File not signed] C:\
Program Files (x86)\Steam\libavif-16.dll
2024-12-21 15:38 - 2024-12-21 15:38 - 000449536 _____ () [File not signed] D:\
SteamLibrary\steamapps\common\Leaf Blower Revolution\Steamworks_x64.dll
2023-04-07 15:49 - 2023-04-07 15:49 - 000061928 _____ (Eyeware Tech SA -> ) [File
not signed] C:\Program Files\AMD\AMD Privacy View\ewvcam\APV\x64\eyeware_vcam.dll
2024-11-06 17:07 - 2024-12-04 00:40 - 005378048 _____ (FFmpeg Project) [File not
signed] C:\Program Files (x86)\Steam\libavcodec-61.dll
2024-11-06 17:07 - 2024-12-04 00:40 - 000875008 _____ (FFmpeg Project) [File not
signed] C:\Program Files (x86)\Steam\libavfilter-10.dll
2024-11-06 17:07 - 2024-12-04 00:40 - 001674240 _____ (FFmpeg Project) [File not
signed] C:\Program Files (x86)\Steam\libavformat-61.dll
2024-11-06 17:07 - 2024-12-04 00:40 - 001640960 _____ (FFmpeg Project) [File not
signed] C:\Program Files (x86)\Steam\libavutil-59.dll
2024-11-06 17:07 - 2024-12-04 00:40 - 000630272 _____ (FFmpeg Project) [File not
signed] C:\Program Files (x86)\Steam\libswresample-5.dll
2024-11-06 17:07 - 2024-12-04 00:40 - 001092608 _____ (FFmpeg Project) [File not
signed] C:\Program Files (x86)\Steam\libswscale-8.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData\mntemp:8EAD8B3507 [3442]
AlternateDataStreams: C:\ProgramData\system.conf:0F57F3FDE6 [3442]
AlternateDataStreams: C:\ProgramData\system.conf:422D4106AB [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\
Access.lnk:A1B76439FE [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic
Games Launcher.lnk:BE32D07BC5 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\
Excel.lnk:B96E9B8455 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\
OneNote.lnk:60EC9648C0 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook
(classic).lnk:5465085A2F [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\
PowerPoint.lnk:1DC1525F34 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\
Publisher.lnk:104946E0EA [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sticky
Notes (new).lnk:954E53D7F9 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows
and Office activation (AAct).lnk:A1B9CC1D60 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\
Word.lnk:7AD7FA8AB1 [3442]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [5830]
AlternateDataStreams: C:\Users\Public\Desktop\system.conf:1206F2C482 [3442]
AlternateDataStreams: C:\Users\Public\Documents\system.conf:430CBAC4A2 [3442]
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The
"AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DrWebEngine => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\DrWebEngine => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
SearchScopes: HKU\S-1-5-21-3703966402-4285444198-4034977268-1001 -> DefaultScope
f2173dec-743e-11ef-97dc-d843ae4389ae URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\
Program Files\Java\jre-1.8\bin\ssv.dll [2023-12-19] (Oracle America, Inc. -> Oracle
Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\
Program Files\Java\jre-1.8\bin\jp2ssv.dll [2023-12-19] (Oracle America, Inc. ->
Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-
2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\
Microsoft Office\Office16\OCHelper.dll [2024-12-13] (Microsoft Corporation ->
Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program
Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-01-11] (Microsoft Corporation
-> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\
Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\
MSOSB.DLL [2025-01-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\
Microsoft Office\root\Office16\MSOSB.DLL [2025-01-11] (Microsoft Corporation ->
Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program
Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
[2025-01-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program
Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-01-11] (Microsoft Corporation
-> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program
Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
[2025-01-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\
Microsoft Office\root\Office16\MSOSB.DLL [2025-01-11] (Microsoft Corporation ->
Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\
Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
[2025-01-11] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2022-05-07 09:24 - 2022-05-07 09:22 - 000000824 _____ C:\WINDOWS\system32\drivers\
etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\
Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\
system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\
WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3703966402-4285444198-4034977268-1001\Control Panel\Desktop\\Wallpaper
-> C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\
DesktopSpotlight\Assets\Images\image_3.jpg
DNS Servers: 192.168.20.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System =>
(ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled:
Warn)
Windows Firewall is enabled.
Network Binding:
=============
Wi-Fi: Intel(R) Wi-Fi 6E AX211 160MHz -> Netwtw14.sys
Ethernet: Intel(R) Ethernet Controller (3) I225-V -> e2f.sys
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The
file will not be moved unless listed separately.)
FirewallRules: [{4042B043-7403-43AB-BF0F-D17F5A3AF1AC}] => (Allow) D:\SteamLibrary\
steamapps\common\Catto Pew Pew!\Catto Pew Pew!.exe () [File not signed]
FirewallRules: [{48145D9A-BFFD-473F-AA4F-EF6BA7C42FD4}] => (Allow) D:\SteamLibrary\
steamapps\common\Catto Pew Pew!\Catto Pew Pew!.exe () [File not signed]
FirewallRules: [{0D2FB392-77D7-498A-AE59-7CFB4942DB7E}] => (Allow) D:\SteamLibrary\
steamapps\common\FUCK HITLER\FH.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{87F6A1DF-99F9-4BCB-B42E-361E8723C2A3}] => (Allow) D:\SteamLibrary\
steamapps\common\FUCK HITLER\FH.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{E7462F0D-51E6-4008-B763-D6179C20357B}] => (Allow) D:\SteamLibrary\
steamapps\common\ULTRAKILL\ULTRAKILL.exe () [File not signed]
FirewallRules: [{C5608B37-1D49-4D6F-832B-92D0D784B6AC}] => (Allow) D:\SteamLibrary\
steamapps\common\ULTRAKILL\ULTRAKILL.exe () [File not signed]
FirewallRules: [{E8804340-70FD-4ECE-AC5E-01B811AE1164}] => (Allow) D:\SteamLibrary\
steamapps\common\Leaf Blower Revolution\game.exe (Humble North) [File not signed]
FirewallRules: [{4A409A73-88C7-4F48-AC75-6BE48D695E7F}] => (Allow) D:\SteamLibrary\
steamapps\common\Leaf Blower Revolution\game.exe (Humble North) [File not signed]
FirewallRules: [UDP Query User{D73F2B23-20C7-4110-8464-BACDC8326286}C:\programdata\
user\discord\app-1.0.9171\discord.exe] => (Allow) C:\programdata\user\discord\app-
1.0.9171\discord.exe => No File
FirewallRules: [TCP Query User{457970DD-500F-43A1-82E4-549F677A6C5C}C:\programdata\
user\discord\app-1.0.9171\discord.exe] => (Allow) C:\programdata\user\discord\app-
1.0.9171\discord.exe => No File
FirewallRules: [{4A5F4000-4BF4-4F42-9A88-2943B7058EF5}] => (Allow) D:\SteamLibrary\
steamapps\common\Legends of Idleon\LegendsOfIdleon.exe (Lava Flame Studios) [File
not signed]
FirewallRules: [{5C4B341A-BC7C-40F8-8C3B-CA9FA1B4C81F}] => (Allow) D:\SteamLibrary\
steamapps\common\Legends of Idleon\LegendsOfIdleon.exe (Lava Flame Studios) [File
not signed]
FirewallRules: [{283165BB-DED3-4557-9C72-C392F9FAB28D}] => (Allow) D:\SteamLibrary\
steamapps\common\BloonsTD6\BloonsTD6.exe () [File not signed]
FirewallRules: [{A0E1014D-F849-419C-AC75-7ECBFBDD789E}] => (Allow) D:\SteamLibrary\
steamapps\common\BloonsTD6\BloonsTD6.exe () [File not signed]
FirewallRules: [{BAF614BC-0C67-4A1E-9370-FFA6CC63AF97}] => (Allow) C:\Program
Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation ->
Microsoft Corporation)
FirewallRules: [UDP Query User{76737334-2C02-4154-A2EE-E9E553A63B0F}C:\program
files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Block)
C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe
(Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{47B262E0-8F2E-4DCA-BEFD-619FC124C57C}C:\program
files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Block)
C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe
(Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{8FF197B9-FE22-4E11-B0CD-BD20F18AB02D}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Ultimate Custom Night\Ultimate Custom Night.exe ()
[File not signed]
FirewallRules: [{6A729C82-A0CB-4081-899E-D5AE1E179854}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Ultimate Custom Night\Ultimate Custom Night.exe ()
[File not signed]
FirewallRules: [UDP Query User{E4C44356-3A35-44DA-BDA4-790E43BD9813}C:\users\user\
appdata\roaming\toc\chrome\application\chrome.exe] => (Allow) C:\users\user\
appdata\roaming\toc\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{7628E35E-BCF2-4E83-B3CF-8C449D7401CB}C:\users\user\
appdata\roaming\toc\chrome\application\chrome.exe] => (Allow) C:\users\user\
appdata\roaming\toc\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{8D63E0E0-B744-4C5A-A249-16DC03DF4759}C:\users\user\
appdata\local\yandex\yandexbrowser\application\browser.exe] => (Block) C:\users\
user\appdata\local\yandex\yandexbrowser\application\browser.exe => No File
FirewallRules: [TCP Query User{C15A18CC-71E1-4C09-BE9C-A0F962105EA0}C:\users\user\
appdata\local\yandex\yandexbrowser\application\browser.exe] => (Block) C:\users\
user\appdata\local\yandex\yandexbrowser\application\browser.exe => No File
FirewallRules: [{94478BA9-33F3-431A-83B1-0BE792688971}] => (Allow) 㩃啜敳獲啜敳屲灁䑰瑡屡潒浡湩屧潴
屣煅卂攮數 => No File
FirewallRules: [{D356113F-0006-4CA1-9BBF-B55BBBF5CA5C}] => (Allow) 㩃啜敳獲啜敳屲灁䑰瑡屡潒浡湩屧潴
屣桃潲敭䅜灰楬慣楴湯䍜牨浯硥 e => No File
FirewallRules: [{0CB5E1E9-3B08-4111-B805-5E92057A1A5B}] => (Allow) 㩃啜敳獲啜敳屲灁䑰瑡屡潒浡湩屧潴
屣档潲敭牤癩牥攮數 => No File
FirewallRules: [{D755BFF2-B66A-46D0-BC7E-C5EBF7342981}] => (Allow) 㩃啜敳獲啜敳屲灁䑰瑡屡潒浡湩屧潴
屣歈汦⹘硥 e => No File
FirewallRules: [{B68B84FB-4494-4724-957A-AA0C42EB93EA}] => (Allow) D:\SteamLibrary\
steamapps\common\wallpaper_engine\launcher.exe (Skutta Software GmbH -> )
FirewallRules: [{3755D6EF-E40D-483C-B258-E50DB6BAA235}] => (Allow) D:\SteamLibrary\
steamapps\common\wallpaper_engine\launcher.exe (Skutta Software GmbH -> )
FirewallRules: [{6EE699A6-914C-4CB5-B743-3237E99BAF5A}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Five Nights at Freddy's\FiveNightsatFreddys.exe ()
[File not signed]
FirewallRules: [{C23E6B8C-CA4D-4651-880A-E80F515ACC24}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Five Nights at Freddy's\FiveNightsatFreddys.exe ()
[File not signed]
FirewallRules: [{E032304C-D28B-4600-B69C-4E89DA039A85}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Cookie Clicker\Cookie Clicker.exe (Orteil) [File not
signed]
FirewallRules: [{22D1187C-DA9B-4567-9FF4-734BAFD306C2}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Cookie Clicker\Cookie Clicker.exe (Orteil) [File not
signed]
FirewallRules: [UDP Query User{3C4C9F6C-9CC7-4901-A908-BBFA20D5363C}C:\users\user\
appdata\roaming\.tlauncher\starter\jre_default\jre-17.0.10-windows-x64\bin\
java.exe] => (Allow) C:\users\user\appdata\roaming\.tlauncher\starter\jre_default\
jre-17.0.10-windows-x64\bin\java.exe
FirewallRules: [TCP Query User{714D8B20-1E93-4764-8DE6-4C8B8AF07C7D}C:\users\user\
appdata\roaming\.tlauncher\starter\jre_default\jre-17.0.10-windows-x64\bin\
java.exe] => (Allow) C:\users\user\appdata\roaming\.tlauncher\starter\jre_default\
jre-17.0.10-windows-x64\bin\java.exe
FirewallRules: [UDP Query User{C0601937-CBA2-4A97-B783-683CAA71372E}C:\program
files (x86)\steam\steamapps\common\don't starve together\bin64\
dontstarve_dedicated_server_nullrenderer_x64.exe] => (Allow) C:\program files
(x86)\steam\steamapps\common\don't starve together\bin64\
dontstarve_dedicated_server_nullrenderer_x64.exe () [File not signed]
FirewallRules: [TCP Query User{60E925A3-427C-4FB1-8CA5-88235C0147E5}C:\program
files (x86)\steam\steamapps\common\don't starve together\bin64\
dontstarve_dedicated_server_nullrenderer_x64.exe] => (Allow) C:\program files
(x86)\steam\steamapps\common\don't starve together\bin64\
dontstarve_dedicated_server_nullrenderer_x64.exe () [File not signed]
FirewallRules: [UDP Query User{FEF19F21-CB28-4E60-BC2B-A35C9C039248}D:\hoyoplay\
games\genshin impact game\genshinimpact_data\plugins\zfgamebrowser.exe] => (Allow)
D:\hoyoplay\games\genshin impact game\genshinimpact_data\plugins\zfgamebrowser.exe
(COGNOSPHERE PTE. LTD. -> )
FirewallRules: [TCP Query User{105D5BA4-5EA5-440F-968D-A0AE7CCDDF23}D:\hoyoplay\
games\genshin impact game\genshinimpact_data\plugins\zfgamebrowser.exe] => (Allow)
D:\hoyoplay\games\genshin impact game\genshinimpact_data\plugins\zfgamebrowser.exe
(COGNOSPHERE PTE. LTD. -> )
FirewallRules: [UDP Query User{B3C58CB2-B1C1-4079-AF58-339187995342}C:\programdata\
user\discord\app-1.0.9153\discord.exe] => (Allow) C:\programdata\user\discord\app-
1.0.9153\discord.exe => No File
FirewallRules: [TCP Query User{B31178C5-560A-43EF-86AD-03BEB8F98A0A}C:\programdata\
user\discord\app-1.0.9153\discord.exe] => (Allow) C:\programdata\user\discord\app-
1.0.9153\discord.exe => No File
FirewallRules: [{862DED5E-81D8-492A-B799-A74C26343ED8}] => (Allow) D:\SteamLibrary\
steamapps\common\One-armed cook\OAC.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{277A027E-A0DA-4A44-9537-8894345A9D70}] => (Allow) D:\SteamLibrary\
steamapps\common\One-armed cook\OAC.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{7FB67DBE-97D2-45AA-9C56-60BA9027A95C}] => (Allow) D:\SteamLibrary\
steamapps\common\GarrysMod\hl2.exe => No File
FirewallRules: [{06FB7A5F-D7F0-46D3-A9BF-AE98BDAA18F1}] => (Allow) D:\SteamLibrary\
steamapps\common\GarrysMod\hl2.exe => No File
FirewallRules: [{EF2F9052-BA68-4A06-B15F-382CE98D6B00}] => (Allow) D:\SteamLibrary\
steamapps\common\Bloons Monkey City\MonkeyCity-Win.exe (Ninja Kiwi Ltd.) [File not
signed]
FirewallRules: [{FDE66656-9B10-4F5D-895F-1954C23F6D4D}] => (Allow) D:\SteamLibrary\
steamapps\common\Bloons Monkey City\MonkeyCity-Win.exe (Ninja Kiwi Ltd.) [File not
signed]
FirewallRules: [{D0E8EDA9-B598-4ED6-A463-ED0234350917}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Soulstone Survivors\Soulstone Survivors.exe () [File
not signed]
FirewallRules: [{51AEFE55-14D5-4968-A92D-F5EB9FE7C0B5}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Soulstone Survivors\Soulstone Survivors.exe () [File
not signed]
FirewallRules: [{E6DDFF17-6CF7-43F1-A413-F7B377766AFE}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\hotline_miami\HotlineMiami.exe (Devolver) [File not
signed]
FirewallRules: [{8CF0C400-6EBB-4378-AC74-0E2B731027D6}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\hotline_miami\HotlineMiami.exe (Devolver) [File not
signed]
FirewallRules: [{B8D58D8B-E0E8-4720-9EA9-8A90624DEAA2}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Hotline Miami 2\HotlineMiami2.exe () [File not signed]
FirewallRules: [{493A140D-A8D6-4F4A-9BB9-750AE43E5996}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Hotline Miami 2\HotlineMiami2.exe () [File not signed]
FirewallRules: [{7672440D-1505-4380-B4AA-12CED747610A}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Brotato\Brotato.exe (Blobfish Games) [File not signed]
FirewallRules: [{D251DA40-4E93-44EA-8B69-43F7942DE9A2}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Brotato\Brotato.exe (Blobfish Games) [File not signed]
FirewallRules: [{D1A21B95-FE5D-4971-91E4-6CC61F7B15CB}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\People Playground\People Playground.exe () [File not
signed]
FirewallRules: [{2BDFC194-2DEB-4D5E-B792-BF72B614FADE}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\People Playground\People Playground.exe () [File not
signed]
FirewallRules: [{DAFCB6D7-6DB9-4B66-A5D5-76E8357BFC6D}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Redmatch 2\Redmatch 2.exe () [File not signed]
FirewallRules: [{2AFB34A8-7AB4-4441-9A60-61970A125349}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Redmatch 2\Redmatch 2.exe () [File not signed]
FirewallRules: [UDP Query User{B913F0EF-7871-466A-87DF-9E31F176C9BC}C:\users\user\
appdata\local\programs\opera gx\opera.exe] => (Allow) C:\users\user\appdata\local\
programs\opera gx\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [TCP Query User{3B79054B-7B9B-4B77-B6F0-7CD865B3F39E}C:\users\user\
appdata\local\programs\opera gx\opera.exe] => (Allow) C:\users\user\appdata\local\
programs\opera gx\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{05C10061-ED7E-4210-A118-63646FAADA47}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Voidigo\voidigo.exe (semiwork) [File not signed]
FirewallRules: [{C8538918-CED8-48C9-8683-4BB8AF75E81E}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Voidigo\voidigo.exe (semiwork) [File not signed]
FirewallRules: [{5E56A9BA-16E1-4FEE-A7DF-0D60EBF0AC70}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Risk of Rain 2\Risk of Rain 2.exe () [File not signed]
FirewallRules: [{304B1A39-45FD-4CAD-A413-F47B4674A1D6}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Risk of Rain 2\Risk of Rain 2.exe () [File not signed]
FirewallRules: [{2019C2E6-055C-44C9-9F63-61C3C5022BD7}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Paint the Town Red\PaintTheTownRed.exe (Unity
Technologies ApS) [File not signed]
FirewallRules: [{A79176DD-71ED-4BE0-9DF3-8A02717557FA}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Paint the Town Red\PaintTheTownRed.exe (Unity
Technologies ApS) [File not signed]
FirewallRules: [{500F66B3-6D92-46A4-B8EB-D48B61AFF0C3}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe ()
[File not signed]
FirewallRules: [{FFEAAA1C-EBBF-4A83-B320-4717A14F8D7D}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe ()
[File not signed]
FirewallRules: [{CD8DCF44-213C-4C98-9371-35721A2761F4}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Don't Starve Together\bin64\dontstarve_steam_x64.exe
() [File not signed]
FirewallRules: [{A1E5D972-DF17-4210-A492-3C5A9B8E5C8D}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Don't Starve Together\bin64\dontstarve_steam_x64.exe
() [File not signed]
FirewallRules: [{21856B13-0F00-421A-AC66-0B563B9B386B}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Dave the Diver\DaveTheDiver.exe (NEXON Korea
Corporation. -> )
FirewallRules: [{7E15B5A3-6C8F-497E-B2DF-29F9A612A2AF}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Dave the Diver\DaveTheDiver.exe (NEXON Korea
Corporation. -> )
FirewallRules: [{8F9477D4-5637-4C0C-AEEA-177CFBA5C1FF}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Supermarket Simulator\Supermarket Simulator.exe ()
[File not signed]
FirewallRules: [{A0901D00-0521-4560-B816-3FE9C47F7427}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Supermarket Simulator\Supermarket Simulator.exe ()
[File not signed]
FirewallRules: [{61DF8FF7-68BE-4514-AF80-362248BD00BE}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Slime Rancher\SlimeRancher.exe () [File not signed]
FirewallRules: [{EA7A6AD9-1411-4C21-B67E-139B31DE38FF}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Slime Rancher\SlimeRancher.exe () [File not signed]
FirewallRules: [{8F098CC4-4A15-4C69-BE08-C12E57C4D388}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\BeamNG.drive\BeamNG.drive.exe (BeamNG GmbH -> BeamNG
GmbH)
FirewallRules: [{DB60EC1D-7295-4893-BB69-B23899D24058}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\BeamNG.drive\BeamNG.drive.exe (BeamNG GmbH -> BeamNG
GmbH)
FirewallRules: [UDP Query User{4965CD67-3A46-415F-9C34-892CF3E2094E}C:\riot games\
riot client\riotclientelectron\riot client.exe] => (Allow) C:\riot games\riot
client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [TCP Query User{65420E09-8E8B-478D-8994-54125941995A}C:\riot games\
riot client\riotclientelectron\riot client.exe] => (Allow) C:\riot games\riot
client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{EEB5A011-5F0A-46D1-BC0D-363D810BEDAD}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Despotism 3k\Despotism3k.exe () [File not signed]
FirewallRules: [{68F06E82-02D2-41F3-A990-1B494B880353}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Despotism 3k\Despotism3k.exe () [File not signed]
FirewallRules: [{99A6109F-E147-45C4-AC52-0C42D9AE0471}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Outpath\Outpath.exe () [File not signed]
FirewallRules: [{40016192-B22B-4220-B765-F1768775AD8D}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Outpath\Outpath.exe () [File not signed]
FirewallRules: [{720C7E6E-8F60-484F-BFF2-35E6062F5383}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Portal\hl2.exe (Valve Corp. -> )
FirewallRules: [{EE6169BD-F531-4737-B4D8-F55883BB3326}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Portal\hl2.exe (Valve Corp. -> )
FirewallRules: [{7583B871-1D67-471C-AEEA-F2D5FC80990A}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Portal 2\portal2.exe () [File not signed]
FirewallRules: [{4EFA2508-443B-4E5D-9AD2-5094BCEA6307}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Portal 2\portal2.exe () [File not signed]
FirewallRules: [{46F90669-56D4-490A-92A2-A55146D391C5}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Thief Simulator\thief.exe () [File not signed]
FirewallRules: [{8ADA20DB-8FEE-4914-AAEF-4335FCE793EC}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Thief Simulator\thief.exe () [File not signed]
FirewallRules: [{5DF69748-39FE-422B-A75B-9A41102203C6}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\The Binding of Isaac Rebirth\isaac-ng.exe () [File not
signed]
FirewallRules: [{56A7BC86-23E6-4416-A45F-6B93742FC58A}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\The Binding of Isaac Rebirth\isaac-ng.exe () [File not
signed]
FirewallRules: [{D5178C6A-11EB-48E7-9986-CB305C3BCDCA}] => (Allow) C:\Users\User\
AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video
Communications, Inc.)
FirewallRules: [{779483B5-BB55-4087-ADC2-1616B5DE4D9D}] => (Allow) C:\Users\User\
AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video
Communications, Inc.)
FirewallRules: [{17888F76-E534-405B-BFB9-6118854B298A}] => (Allow) C:\Users\User\
AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom
Communications, Inc.)
FirewallRules: [UDP Query User{FECC7E8C-2036-48B5-A73F-B86AD3CD97AB}C:\program
files (x86)\steam\steamapps\common\vrchat\vrchat.exe] => (Allow) C:\program files
(x86)\steam\steamapps\common\vrchat\vrchat.exe => No File
FirewallRules: [TCP Query User{8084586D-F8F4-48D4-82CD-68F0FF8A4173}C:\program
files (x86)\steam\steamapps\common\vrchat\vrchat.exe] => (Allow) C:\program files
(x86)\steam\steamapps\common\vrchat\vrchat.exe => No File
FirewallRules: [{CDFA76D7-B0FC-4FA5-8563-A244078717EE}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Quarters\fnaf9.exe (Epic Games, Inc.) [File not
signed]
FirewallRules: [{F39E36E5-B04F-44D2-9972-13A9715D8B3C}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Quarters\fnaf9.exe (Epic Games, Inc.) [File not
signed]
FirewallRules: [{5788E6F1-CAFF-4AA6-A876-5AEA705F0544}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Scrap Mechanic\Release\ScrapMechanic.exe (Axolot
Games) [File not signed]
FirewallRules: [{167B468D-7DA2-4E44-AF4C-128239C9ABB1}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Scrap Mechanic\Release\ScrapMechanic.exe (Axolot
Games) [File not signed]
FirewallRules: [{4CCF156E-C7F2-403D-8E1D-66B9ECBC52A1}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\SuchArt Creative Space\SuchArt.exe () [File not
signed]
FirewallRules: [{41EEA51B-9900-4409-9362-8839B2D84E7C}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\SuchArt Creative Space\SuchArt.exe () [File not
signed]
FirewallRules: [{5E77F6E7-DEAE-4733-94AF-0479EBE1B751}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\SteamVR\bin\win64\vrserver.exe => No File
FirewallRules: [{2396C0D4-7028-4067-B7CC-524382266BB9}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\SteamVR\bin\win64\vrserver.exe => No File
FirewallRules: [{E78AB76B-B547-4745-A730-10F323385782}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\SUPERHOT VR\SUPERHOTVR.exe () [File not signed]
FirewallRules: [{9F417E4D-E8C8-4C9E-8C56-DF5A0ACF5AA4}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\SUPERHOT VR\SUPERHOTVR.exe () [File not signed]
FirewallRules: [{825C39C4-BFB3-4997-81E2-FC1984EAEF0B}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Prison Boss VR\PrisonBossVR64.exe () [File not signed]
FirewallRules: [{6E219C83-3997-48B0-9333-265DDB782A4B}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Prison Boss VR\PrisonBossVR64.exe () [File not signed]
FirewallRules: [{15F10D7A-1A69-4967-AED9-EC2E8225EC43}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Job Simulator\JobSimulator.exe () [File not signed]
FirewallRules: [{921B1EA5-2D35-4FB7-BBC8-15C8A06F5FF0}] => (Allow) C:\Program Files
(x86)\Steam\steamapps\common\Job Simulator\JobSimulator.exe () [File not signed]
FirewallRules: [{9A160A19-29C4-47C2-941D-B16144663A24}] => (Allow) C:\Program Files
(x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve
Corporation)
FirewallRules: [{DA603CD2-17DD-46CC-8EAA-36AD892C185C}] => (Allow) C:\Program Files
(x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve
Corporation)
FirewallRules: [{19F44CFD-B12C-47AC-B94A-ED0D3797A5FB}] => (Allow) C:\Program Files
(x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{129B10E0-D2F8-4B32-9111-8E5CD4BA8E09}] => (Allow) C:\Program Files
(x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{30480B52-0235-4322-9A14-70742C744C3B}] => (Allow) C:\Program
Files\WindowsApps\MSTeams_24295.605.3225.8804_x64__8wekyb3d8bbwe\ms-teams.exe
(Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{930BAB9A-4DA6-419E-A799-19C2BD6AD446}] => (Allow) C:\Program
Files\WindowsApps\MSTeams_24295.605.3225.8804_x64__8wekyb3d8bbwe\ms-teams.exe
(Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E6A65370-528D-4247-822B-3889874C063A}] => (Allow) D:\SteamLibrary\
steamapps\common\Inscryption\Inscryption.exe () [File not signed]
FirewallRules: [{73D498A3-9B5E-494B-9926-EF98EB2326D8}] => (Allow) D:\SteamLibrary\
steamapps\common\Inscryption\Inscryption.exe () [File not signed]
FirewallRules: [{73B8DC4A-DFBD-4184-968B-C24652BE91E0}] => (Allow) C:\Program
Files\DrWeb\dwservice.exe (DOCTOR WEB, LTD -> Doctor Web, Ltd.)
FirewallRules: [{13D45E15-B1DA-4DAD-A357-033987A3AB9D}] => (Allow) C:\Program
Files\DrWeb\spideragent.exe (DOCTOR WEB, LTD -> Doctor Web, Ltd.)
FirewallRules: [{7A576E17-A765-412C-B88D-8FA2EF301FCC}] => (Allow) C:\Program
Files\DrWeb\dwnetfilter.exe (DOCTOR WEB, LTD -> Doctor Web, Ltd.)
FirewallRules: [{1B813C20-AD89-43A0-9BB4-ADA3526ACDDA}] => (Allow) C:\Program Files
(x86)\Microsoft\EdgeWebView\Application\131.0.2903.146\msedgewebview2.exe
(Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7734CA89-9B31-4CA0-96A7-89B473B33822}] => (Allow) D:\SteamLibrary\
steamapps\common\EGG\Egg.exe () [File not signed]
FirewallRules: [{0AABA05E-3506-421F-B0FB-4426A8492DBD}] => (Allow) D:\SteamLibrary\
steamapps\common\EGG\Egg.exe () [File not signed]
FirewallRules: [{388538DD-FBF2-4587-9AB1-8FD82967266B}] => (Allow) C:\Program
Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{0FD23851-5D6C-4859-88F0-4D7ED7D349FE}] => (Allow) C:\Program Files
(x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{A4C2DF48-690A-4233-BFCB-CFB3435B931E}] => (Allow) C:\Program Files
(x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{53D5B028-3905-4592-9D2A-C4057195BFC9}] => (Allow) C:\Program Files
(x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{24E77ECA-B411-407E-8D5E-04D31C3B895D}] => (Allow) C:\Program Files
(x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{2E564976-E848-4FFB-BFA4-674A565D474E}] => (Allow) C:\Program Files
(x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{39BFB2A3-EDBF-41F5-8582-F8BB5203EE6A}] => (Allow) C:\Program Files
(x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{74D19CD1-B939-494E-ADAE-51B492942FFB}] => (Allow) LPort=32683
FirewallRules: [{C849E3AB-9698-49B7-896F-8822EEFDDD9D}] => (Allow) LPort=33683
FirewallRules: [{EED2AF4E-B4F9-4EEB-AF6F-711FA4F0A513}] => (Allow) LPort=26822
==================== Restore Points =========================
08-01-2025 14:52:34 Dr.Web Security Space installation
11-01-2025 23:43:24 Windows Update
14-01-2025 13:05:42 Dr.Web drivers update
18-01-2025 10:21:57 Windows Update
==================== Faulty Device Manager Devices ============
Name: Intel(R) Ethernet Controller (3) I225-V
Description: Intel(R) Ethernet Controller (3) I225-V
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: e2fexpress
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This
starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: ========================
Application errors:
==================
Error: (01/18/2025 10:21:38 AM) (Source: Software Protection Platform Service)
(EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0x80004005
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-
601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-
d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-
108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (01/18/2025 10:21:38 AM) (Source: Software Protection Platform Service)
(EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0x80004005
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-
601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-
d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-
108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (01/18/2025 10:21:38 AM) (Source: Software Protection Platform Service)
(EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0x80004005
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-
601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-
d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-
108dd189f588;NotificationInterval=1440;Trigger=NetworkQuarantineRetry
Error: (01/18/2025 10:21:37 AM) (Source: MsiInstaller) (EventID: 11720) (User: WIN-
50V81QFEUO2)
Description: Product: Super Calendar 1.0.0.0 -- Error 1720. There is a problem with
this Windows Installer package. A script required for this install to complete
could not be run. Contact your support personnel or package vendor. Custom action
RF2dyH script error -2147012894, JavaScript runtime error: The operation timed out
Line 9, Column 5,
Error: (01/17/2025 05:22:54 PM) (Source: Application Hang) (EventID: 1002) (User:
NT AUTHORITY)
Description: The program SystemSettings.exe version 10.0.26100.2454 stopped
interacting with Windows and was closed. To see if more information about the
problem is available, check the problem history in the Security and Maintenance
control panel.
Error: (01/17/2025 04:38:57 PM) (Source: Software Protection Platform Service)
(EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0x80004005
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-
601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-
d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-
108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (01/17/2025 04:38:37 PM) (Source: Software Protection Platform Service)
(EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0x80004005
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-
601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-
d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-
108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
Error: (01/17/2025 04:37:53 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine
CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress..
System errors:
=============
Error: (01/18/2025 08:52:45 AM) (Source: DCOM) (EventID: 10010) (User: NT
AUTHORITY)
Description: The server {4991D34B-80A1-4291-83B6-3328366B9097} did not register
with DCOM within the required timeout.
Error: (01/18/2025 08:43:40 AM) (Source: DCOM) (EventID: 10010) (User: NT
AUTHORITY)
Description: The server {4991D34B-80A1-4291-83B6-3328366B9097} did not register
with DCOM within the required timeout.
Error: (01/18/2025 07:43:53 AM) (Source: DCOM) (EventID: 10010) (User: WIN-
50V81QFEUO2)
Description: The server {4991D34B-80A1-4291-83B6-3328366B9097} did not register
with DCOM within the required timeout.
Error: (01/18/2025 07:41:53 AM) (Source: DCOM) (EventID: 10010) (User: WIN-
50V81QFEUO2)
Description: The server {4991D34B-80A1-4291-83B6-3328366B9097} did not register
with DCOM within the required timeout.
Error: (01/18/2025 07:31:50 AM) (Source: DCOM) (EventID: 10010) (User: NT
AUTHORITY)
Description: The server {4991D34B-80A1-4291-83B6-3328366B9097} did not register
with DCOM within the required timeout.
Error: (01/18/2025 06:56:34 AM) (Source: DCOM) (EventID: 10010) (User: NT
AUTHORITY)
Description: The server {4991D34B-80A1-4291-83B6-3328366B9097} did not register
with DCOM within the required timeout.
Error: (01/18/2025 06:10:59 AM) (Source: DCOM) (EventID: 10010) (User: NT
AUTHORITY)
Description: The server {4991D34B-80A1-4291-83B6-3328366B9097} did not register
with DCOM within the required timeout.
Error: (01/18/2025 04:51:00 AM) (Source: DCOM) (EventID: 10010) (User: NT
AUTHORITY)
Description: The server {4991D34B-80A1-4291-83B6-3328366B9097} did not register
with DCOM within the required timeout.
Windows Defender:
================
Date: 2025-01-08 12:32:35
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2025-01-06 13:26:56
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2025-01-05 12:25:34
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2025-01-03 12:27:57
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2025-01-02 13:10:22
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Event[0]
Date: 2024-12-29 14:34:30
Description:
Microsoft Defender Antivirus has encountered an error trying to update security
intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.421.1061.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.24090.11
Error code: 0x80070102
Error description: The wait operation timed out. #
Date: 2024-12-29 14:34:30
Description:
Microsoft Defender Antivirus has encountered an error trying to update security
intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.421.1061.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.24090.11
Error code: 0x80070102
Error description: The wait operation timed out. #
CodeIntegrity:
===============
Date: 2025-01-18 16:03:09
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\
SecurityHealthService.exe) attempted to load \Device\HarddiskVolume3\Program Files\
DrWeb\drwamsi64.dll that did not meet the Windows signing level requirements.#
==================== Memory info ===========================
BIOS: American Megatrends International, LLC. A.C0 04/16/2024
Motherboard: Micro-Star International Co., Ltd. PRO Z790-P WIFI (MS-7E06)
Processor: 13th Gen Intel(R) Core(TM) i5-13600K
Percentage of memory in use: 61%
Total physical RAM: 32535.09 MB
Available physical RAM: 12482.05 MB
Total Virtual: 39452.3 MB
Available Virtual: 643.9 MB
==================== Drives ================================
Drive c: (Windows 11) (Fixed) (Total:465.65 GB) (Free:96.68 GB) (Model: KINGSTON
SNV2S500G) NTFS
Drive d: (New Volume) (Fixed) (Total:1907.71 GB) (Free:1481.2 GB) (Model: TEAM
TM8FP6002T) NTFS
\\?\Volume{dc82b1c9-13df-4a6f-b85f-d35b4eff8d47}\ () (Fixed) (Total:0.09 GB)
(Free:0.06 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 1907.7 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
You might also like
- lecture 1-introduction to AutoCAD electrical100% (1)lecture 1-introduction to AutoCAD electrical32 pages
- Malware analysis Documentación-20241216.zip Malicious activity _ ANY.RUN - Malware Sandbox OnlineNo ratings yetMalware analysis Documentación-20241216.zip Malicious activity _ ANY.RUN - Malware Sandbox Online19 pages
- all.preinstalled-system-common.apps.on.vanillaOSafter.Windex0% (1)all.preinstalled-system-common.apps.on.vanillaOSafter.Windex4 pages
- Evaluation of Some Android Emulators and Installation of Android OS on Virtualbox and VMwareFrom EverandEvaluation of Some Android Emulators and Installation of Android OS on Virtualbox and VMwareNo ratings yet
- What Are The SysInternals Tools and How Do You Use ThemNo ratings yetWhat Are The SysInternals Tools and How Do You Use Them129 pages
- 5100332-01A00 Salwico Cargo User Guide ENo ratings yet5100332-01A00 Salwico Cargo User Guide E54 pages
- BASIC COMPUTER OPERATION & FILE MANAGEMENT GROUP 2No ratings yetBASIC COMPUTER OPERATION & FILE MANAGEMENT GROUP 216 pages
- Show Powerpoint Presentation With ShortcutsNo ratings yetShow Powerpoint Presentation With Shortcuts3 pages
- Hướng dẫn sử dụng điện thoại lập trình NEC PDFNo ratings yetHướng dẫn sử dụng điện thoại lập trình NEC PDF70 pages
- Microsoft Office and Windows Training Course OutlineNo ratings yetMicrosoft Office and Windows Training Course Outline14 pages
- A Program For Computations of Foundation Settlements: Setoff - User's ManualNo ratings yetA Program For Computations of Foundation Settlements: Setoff - User's Manual70 pages
- 121 Shortcuts For Microsoft PowerPoint 2016 (Windows)No ratings yet121 Shortcuts For Microsoft PowerPoint 2016 (Windows)7 pages
