[ad_1]
So recently, I ran a FRST scan out of curiosity and to check for malware, upon checking, I found some weird stuff such as Windows Installation Errors; Update Errors; and other fatal errors located in my additional txt of the scan.
Is it possible that my pc is hit with malware, the only antivirus I have on my pc is Malwarebytes and Tinywall for a firewall.
Thank you and have a nice day!
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-10-2021
Ran by Galaxy (administrator) on DESKTOP-BRGNPDA (HP HP Pavilion Gaming Desktop TG01-1xxx) (19-10-2021 17:06:10)
Running from C:UsersGalaxyDownloads
Loaded Profiles: Galaxy
Platform: Microsoft Windows 10 Home Version 21H1 19043.1288 (X64) Language: English (United States)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Comodo Security Solutions, Inc. -> Comodo) C:Program Files (x86)ComodoDragondragon_updater.exe
(Discord Inc. -> Discord Inc.) C:UsersGalaxyAppDataLocalDiscordapp-1.0.9003Discord.exe <6>
(Google LLC -> Google LLC) C:Program Files (x86)GoogleUpdate1.3.36.112GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:Program Files (x86)GoogleUpdate1.3.36.112GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:Program FilesGoogleChromeApplicationchrome.exe <21>
(HP Inc. -> HP Inc.) C:WindowsSystem32DriverStoreFileRepositoryhpanalyticscomp.inf_amd64_87bd97ebe57d6f93x64TouchpointAnalyticsClientService.exe
(HP Inc. -> HP Inc.) C:WindowsSystem32DriverStoreFileRepositoryhpcustomcapcomp.inf_amd64_fac814d252ae9e85x64AppHelperCap.exe
(HP Inc. -> HP Inc.) C:WindowsSystem32DriverStoreFileRepositoryhpcustomcapcomp.inf_amd64_fac814d252ae9e85x64DiagsCap.exe
(HP Inc. -> HP Inc.) C:WindowsSystem32DriverStoreFileRepositoryhpcustomcapcomp.inf_amd64_fac814d252ae9e85x64NetworkCap.exe
(HP Inc. -> HP Inc.) C:WindowsSystem32DriverStoreFileRepositoryhpcustomcapcomp.inf_amd64_fac814d252ae9e85x64SysInfoCap.exe
(HP Inc. -> HP Inc.) C:WindowsSystem32DriverStoreFileRepositoryhpomencustomcapcomp.inf_amd64_f70676215ebef294x64OmenCap.exe
(Intel Corporation -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositorydptf_cpu.inf_amd64_2ca0a47853f51398esif_uf.exe
(Intel Corporation -> Intel® Corporation) C:WindowsSysWOW64XtuService.exe
(Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositorydal.inf_amd64_ffc75848a6342fdfjhi_service.exe
(Intel® Rapid Storage Technology -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositoryiastorac.inf_amd64_78a6016d246f965aRstMwService.exe
(Károly Pados -> Károly Pados) C:Program Files (x86)TinyWallTinyWall.exe <2>
(Kilonova LLC -> Skillbrains) C:Program Files (x86)Skillbrainslightshot5.5.0.7Lightshot.exe
(Malwarebytes Inc -> Malwarebytes) C:Program FilesMalwarebytesAnti-MalwareMbamBgNativeMsg.exe
(Malwarebytes Inc -> Malwarebytes) C:Program FilesMalwarebytesAnti-MalwareMBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:Program FilesMalwarebytesAnti-Malwarembamtray.exe
(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2109.6-0MsMpEng.exe
(Nvidia Corporation -> NVIDIA Corporation) C:WindowsSystem32DriverStoreFileRepositorynvhdc.inf_amd64_75e4d75cf672cb89Display.NvContainerNVDisplay.Container.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:WindowsRtkBtAudioServ.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:WindowsRtkBtManServ.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:WindowsSystem32DriverStoreFileRepositoryrealtekservice.inf_amd64_c3f6cdb5c1120dadRtkAudUService64.exe <2>
(Sound Research Corporation -> Sound Research, Corp.) C:WindowsSystem32SECOCL64.exe
(Sound Research Corporation -> Sound Research, Corp.) C:WindowsSystem32SECOMN64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM…Run: [Logitech Download Assistant] => C:WindowsSystem32LogiLDA.dll [3952096 2020-03-11] (Logitech -> Logitech, Inc.)
HKLM-x32…Run: [Lightshot] => C:Program Files (x86)SkillbrainslightshotLightshot.exe [226728 2019-07-21] (Kilonova LLC -> )
HKUS-1-5-21-2253346569-2864322778-1640557660-1001…Run: [Discord] => C:UsersGalaxyAppDataLocalDiscordUpdate.exe [1512608 2021-09-21] (Discord Inc. -> GitHub)
HKLMSoftwareMicrosoftActive SetupInstalled Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:Program FilesGoogleChromeApplication94.0.4606.81Installerchrmstp.exe [2021-10-16] (Google LLC -> Google LLC)
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {22A087A6-5681-4107-87A9-02CBFEC5A111} – System32TasksGoogleUpdateTaskMachineUA => C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [156232 2021-10-16] (Google LLC -> Google LLC)
Task: {340CFC8F-8B4D-4AFB-A241-3F360D318543} – System32Tasksupdate-S-1-5-21-2253346569-2864322778-1640557660-1001 => C:Program Files (x86)SkillbrainsUpdaterUpdater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {7B753F93-48B6-4732-B74D-41AC32F45DD2} – System32Tasksupdate-sys => C:Program Files (x86)SkillbrainsUpdaterUpdater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {9CFD8FC9-AEBA-418F-8559-EC20F786F6AF} – System32TasksMicrosoftWindowsWindows DefenderWindows Defender Cache Maintenance => C:ProgramDataMicrosoftWindows Defenderplatform4.18.2109.6-0MpCmdRun.exe [884544 2021-10-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A1D42AA2-CBDD-4EAA-988D-A6892592615A} – System32TasksTinyWall Controller => C:Program Files (x86)TinyWallTinyWall.exe [858328 2021-10-11] (Károly Pados -> Károly Pados)
Task: {A376F3E1-A508-4691-B8DE-E0D22FFF6427} – System32TasksMicrosoftWindowsWindows DefenderWindows Defender Scheduled Scan => C:ProgramDataMicrosoftWindows Defenderplatform4.18.2109.6-0MpCmdRun.exe [884544 2021-10-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AD11D725-CFA3-44A7-91D8-7EF6465C20F8} – System32TasksMicrosoftWindowsWindows DefenderWindows Defender Verification => C:ProgramDataMicrosoftWindows Defenderplatform4.18.2109.6-0MpCmdRun.exe [884544 2021-10-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BFE11B71-BDF8-46A3-8B33-89FB76905A37} – System32TasksRtkAudUService64_BG => C:WindowsSystem32DriverStoreFileRepositoryrealtekservice.inf_amd64_c3f6cdb5c1120dadRtkAudUService64.exe [1258568 2021-06-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {C2F6709D-79A0-4856-8EEC-5A72DADBE5A2} – System32TasksGoogleUpdateTaskMachineCore => C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [156232 2021-10-16] (Google LLC -> Google LLC)
Task: {E1EBFBD0-D77D-47EB-80AD-C5CEF88F2D39} – System32TasksMozillaFirefox Default Browser Agent 308046B0AF4A39CB => C:Program FilesMozilla Firefoxdefault-browser-agent.exe [680888 2021-09-27] (Mozilla Corporation -> Mozilla Foundation)
Task: {E50F4B8D-5507-4C35-867B-01910D3DCEB9} – System32TasksMicrosoftVisualStudioUpdatesBackgroundDownload => C:Program Files (x86)Microsoft Visual StudioInstallerresourcesappServiceHubServicesMicrosoft.VisualStudio.Setup.ServiceBackgroundDownload.exe [65432 2021-10-17] (Microsoft Corporation -> Microsoft)
Task: {ED2145AE-1D14-425E-B742-AE79C1BEF8D3} – System32TasksMicrosoftWindowsWindows DefenderWindows Defender Cleanup => C:ProgramDataMicrosoftWindows Defenderplatform4.18.2109.6-0MpCmdRun.exe [884544 2021-10-16] (Microsoft Windows Publisher -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:WindowsTasksupdate-S-1-5-21-2253346569-2864322778-1640557660-1001.job => C:Program Files (x86)SkillbrainsUpdaterUpdater.exe
Task: C:WindowsTasksupdate-sys.job => C:Program Files (x86)SkillbrainsUpdaterUpdater.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
TcpipParameters: [DhcpNameServer] 192.168.0.1
Tcpip..Interfaces{56a824a8-1861-41dd-81e5-09c88e984bc1}: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:UsersGalaxyAppDataLocalMicrosoftEdgeUser DataDefault [2021-10-19]
Edge Extension: (uBlock Origin) – C:UsersGalaxyAppDataLocalMicrosoftEdgeUser DataDefaultExtensionscjpalhdlnbpafiamejdnhcphjbkeiagm [2021-10-16]
Edge Extension: (Malwarebytes Browser Guard) – C:UsersGalaxyAppDataLocalMicrosoftEdgeUser DataDefaultExtensionsihcjicgdanjaechkgeegckofjjedodee [2021-10-16]
Edge HKLM-x32…EdgeExtension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: ze929aor.default
FF ProfilePath: C:UsersGalaxyAppDataRoamingMozillaFirefoxProfilesze929aor.default [2021-10-17]
FF ProfilePath: C:UsersGalaxyAppDataRoamingMozillaFirefoxProfiles50oqc8wq.default-release [2021-10-19]
Chrome:
=======
CHR Profile: C:UsersGalaxyAppDataLocalGoogleChromeUser DataDefault [2021-10-19]
CHR Extension: (Slides) – C:UsersGalaxyAppDataLocalGoogleChromeUser DataDefaultExtensionsaapocclcgogkmnckokdopfmhonfmgoek [2021-10-16]
CHR Extension: (Docs) – C:UsersGalaxyAppDataLocalGoogleChromeUser DataDefaultExtensionsaohghmighlieiainnegkcijnfilokake [2021-10-16]
CHR Extension: (Google Drive) – C:UsersGalaxyAppDataLocalGoogleChromeUser DataDefaultExtensionsapdfllckaahabafndbhieahigkjlhalf [2021-10-16]
CHR Extension: (YouTube) – C:UsersGalaxyAppDataLocalGoogleChromeUser DataDefaultExtensionsblpcfgokakmgnkcojhhkbfbldkacnbeo [2021-10-16]
CHR Extension: (uBlock Origin) – C:UsersGalaxyAppDataLocalGoogleChromeUser DataDefaultExtensionscjpalhdlnbpafiamejdnhcphjbkeiagm [2021-10-16]
CHR Extension: (Sheets) – C:UsersGalaxyAppDataLocalGoogleChromeUser DataDefaultExtensionsfelcaaldnbdncclmgdcncolpebgiejap [2021-10-16]
CHR Extension: (Google Docs Offline) – C:UsersGalaxyAppDataLocalGoogleChromeUser DataDefaultExtensionsghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-16]
CHR Extension: (Malwarebytes Browser Guard) – C:UsersGalaxyAppDataLocalGoogleChromeUser DataDefaultExtensionsihcjicgdanjaechkgeegckofjjedodee [2021-10-16]
CHR Extension: (Chrome Web Store Payments) – C:UsersGalaxyAppDataLocalGoogleChromeUser DataDefaultExtensionsnmmhkkegccagdldgiimedpiccmgmieda [2021-10-16]
CHR Extension: (Gmail) – C:UsersGalaxyAppDataLocalGoogleChromeUser DataDefaultExtensionspjkljhegncpnkpknbcohdijeoejaedia [2021-10-16]
CHR HKLM-x32…ChromeExtension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 DragonUpdater; C:Program Files (x86)ComodoDragondragon_updater.exe [2253776 2019-06-20] (Comodo Security Solutions, Inc. -> Comodo)
R2 HPAppHelperCap; C:WindowsSystem32DriverStoreFileRepositoryhpcustomcapcomp.inf_amd64_fac814d252ae9e85x64AppHelperCap.exe [755704 2021-09-24] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:WindowsSystem32DriverStoreFileRepositoryhpcustomcapcomp.inf_amd64_fac814d252ae9e85x64DiagsCap.exe [754184 2021-09-24] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:WindowsSystem32DriverStoreFileRepositoryhpcustomcapcomp.inf_amd64_fac814d252ae9e85x64NetworkCap.exe [751104 2021-09-24] (HP Inc. -> HP Inc.)
R2 HPOmenCap; C:WindowsSystem32DriverStoreFileRepositoryhpomencustomcapcomp.inf_amd64_f70676215ebef294x64OmenCap.exe [688160 2021-05-10] (HP Inc. -> HP Inc.)
R2 HPSysInfoCap; C:WindowsSystem32DriverStoreFileRepositoryhpcustomcapcomp.inf_amd64_fac814d252ae9e85x64SysInfoCap.exe [754688 2021-09-24] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:WindowsSystem32DriverStoreFileRepositoryhpanalyticscomp.inf_amd64_87bd97ebe57d6f93x64TouchpointAnalyticsClientService.exe [494688 2021-09-24] (HP Inc. -> HP Inc.)
R2 MBAMService; C:Program FilesMalwarebytesAnti-MalwareMBAMService.exe [7801016 2021-10-16] (Malwarebytes Inc -> Malwarebytes)
R2 RtkBtAudioServ; C:WindowsRtkBtAudioServ.exe [234064 2020-12-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
R2 TinyWall; C:Program Files (x86)TinyWallTinyWall.exe [858328 2021-10-11] (Károly Pados -> Károly Pados)
S3 VSStandardCollectorService150; C:Program Files (x86)Microsoft Visual StudioSharedCommonDiagnosticsHub.Collection.ServiceStandardCollector.Service.exe [147392 2019-04-30] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:ProgramDataMicrosoftWindows Defenderplatform4.18.2109.6-0NisSrv.exe [2855512 2021-10-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:ProgramDataMicrosoftWindows Defenderplatform4.18.2109.6-0MsMpEng.exe [128392 2021-10-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:WindowsSystem32DriverStoreFileRepositorynvhdc.inf_amd64_75e4d75cf672cb89Display.NvContainerNVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%NVIDIANVDisplay.ContainerLocalSystem.log -l 3 -d C:WindowsSystem32DriverStoreFileRepositorynvhdc.inf_amd64_75e4d75cf672cb89Display.NvContainerpluginsLocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystemLocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BthA2dp; C:WindowsSystem32driversBthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
R1 ESProtectionDriver; C:Windowssystem32driversmbae64.sys [160176 2021-10-16] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 HPCustomCapDriver; C:WindowsSystem32DriverStoreFileRepositoryhpcustomcapdriver.inf_amd64_1f5602eb8a12ac4cx64hpcustomcapdriver.sys [33352 2018-12-19] (HP Inc. -> HP Inc.)
R3 HPOmenCustomCapDriver; C:WindowsSystem32DriverStoreFileRepositoryhpomencustomcapdriver.inf_amd64_326f2e1d16385dafx64hpomencustomcapdriver.sys [33464 2018-12-19] (HP Inc. -> HP Inc.)
R2 MBAMChameleon; C:WindowsSystem32DriversMbamChameleon.sys [210344 2021-10-16] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:WindowsSystem32DRIVERSMbamElam.sys [19912 2021-10-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:WindowsSystem32DRIVERSfarflt.sys [193448 2021-10-18] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:Windowssystem32DRIVERSmbam.sys [69040 2021-10-18] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:WindowsSystem32Driversmbamswissarmy.sys [248992 2021-10-16] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:Windowssystem32DRIVERSmwac.sys [149424 2021-10-18] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 ViGEmBus; C:WindowsSystem32DriverStoreFileRepositoryvigembus.inf_amd64_e84845c70c38fbe7x64ViGEmBus.sys [74648 2018-08-01] (HP Inc. -> Benjamin Höglinger-Stelzer)
S0 WdBoot; C:WindowsSystem32driverswdWdBoot.sys [48520 2021-10-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:WindowsSystem32driverswdWdFilter.sys [434424 2021-10-16] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:WindowsSystem32driverswdWdNisDrv.sys [86264 2021-10-16] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-10-19 17:06 – 2021-10-19 17:06 – 000016517 _____ C:UsersGalaxyDownloadsFRST.txt
2021-10-19 17:05 – 2021-10-19 17:06 – 000000000 ____D C:FRST
2021-10-19 17:05 – 2021-10-19 17:05 – 002310656 _____ (Farbar) C:UsersGalaxyDownloadsFRST64.exe
2021-10-19 14:37 – 2021-10-19 14:37 – 000001095 _____ C:UsersGalaxyDesktopEclipse.lnk
2021-10-19 14:37 – 2021-10-19 14:37 – 000000000 ____D C:UsersGalaxyAppDataRoamingMicrosoftWindowsStart MenuProgramsEclipse
2021-10-19 14:36 – 2021-10-19 14:37 – 000000000 ____D C:UsersGalaxy.p2
2021-10-19 14:36 – 2021-10-19 14:36 – 000000000 ____D C:UsersGalaxyeclipse
2021-10-19 14:36 – 2021-10-19 14:36 – 000000000 ____D C:UsersGalaxy.eclipse
2021-10-19 14:30 – 2021-10-19 14:30 – 000000000 ____D C:UsersGalaxyAppDataLocalOneDrive
2021-10-19 14:29 – 2021-10-19 14:29 – 000068936 _____ (Oracle Corporation) C:Windowssystem32WindowsAccessBridge-64.dll
2021-10-19 14:29 – 2021-10-19 14:29 – 000000000 ____D C:Program FilesJava
2021-10-19 14:29 – 2021-10-19 14:29 – 000000000 ____D C:Program FilesCommon FilesOracle
2021-10-19 14:23 – 2021-10-19 14:29 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsJava Development Kit
2021-10-19 09:19 – 2021-10-19 09:19 – 000001426 _____ C:UsersGalaxyDesktopRoblox Player.lnk
2021-10-19 09:01 – 2021-10-19 09:01 – 000000000 ____D C:UsersGalaxyAppDataLocalcache
2021-10-19 09:00 – 2021-10-19 09:19 – 000001249 _____ C:UsersGalaxyDesktopRoblox Studio.lnk
2021-10-19 09:00 – 2021-10-19 09:19 – 000000000 ____D C:UsersGalaxyAppDataRoamingMicrosoftWindowsStart MenuProgramsRoblox
2021-10-18 19:01 – 2021-10-19 17:05 – 000000323 _____ C:UsersGalaxyDocumentsFirewalllog.txt
2021-10-18 13:31 – 2021-10-18 13:31 – 000000000 ____D C:UsersGalaxyAppDataLocalIsolatedStorage
2021-10-18 13:23 – 2021-10-18 13:23 – 000000000 ____D C:UsersGalaxyAppDataRoamingNuGet
2021-10-18 13:21 – 2021-10-18 13:21 – 000000000 ____D C:UsersGalaxysource
2021-10-18 13:20 – 2021-10-18 13:20 – 000000000 ____D C:UsersGalaxyAppDataLocalServiceHub
2021-10-18 13:20 – 2021-10-18 13:20 – 000000000 ____D C:UsersGalaxyAppDataLocalIdentityNexusIntegration
2021-10-18 12:04 – 2021-10-18 12:04 – 000193448 _____ (Malwarebytes) C:Windowssystem32Driversfarflt.sys
2021-10-18 12:04 – 2021-10-18 12:04 – 000149424 _____ (Malwarebytes) C:Windowssystem32Driversmwac.sys
2021-10-18 12:04 – 2021-10-18 12:04 – 000069040 _____ (Malwarebytes) C:Windowssystem32Driversmbam.sys
2021-10-18 11:48 – 2021-10-18 11:48 – 000000000 ____D C:ProgramDataEmsisoft
2021-10-17 17:46 – 2021-10-18 13:21 – 000000000 ____D C:UsersGalaxyDocumentsVisual Studio 2019
2021-10-17 17:45 – 2021-10-18 13:24 – 000000000 ____D C:UsersGalaxyAppDataLocal.IdentityService
2021-10-17 17:43 – 2021-10-17 17:43 – 000001800 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsBlend for Visual Studio 2019.lnk
2021-10-17 17:42 – 2021-10-19 17:06 – 000000000 ____D C:UsersGalaxyAppDataLocalLowMozilla
2021-10-17 17:42 – 2021-10-19 17:06 – 000000000 ____D C:ProgramDataMozilla
2021-10-17 17:42 – 2021-10-17 17:42 – 000001005 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsFirefox.lnk
2021-10-17 17:42 – 2021-10-17 17:42 – 000000993 _____ C:UsersPublicDesktopFirefox.lnk
2021-10-17 17:42 – 2021-10-17 17:42 – 000000000 ____D C:Windowssystem32TasksMozilla
2021-10-17 17:42 – 2021-10-17 17:42 – 000000000 ____D C:UsersGalaxyAppDataRoamingMozilla
2021-10-17 17:42 – 2021-10-17 17:42 – 000000000 ____D C:UsersGalaxyAppDataLocalMozilla
2021-10-17 17:42 – 2021-10-17 17:42 – 000000000 ____D C:Program Files (x86)Mozilla Maintenance Service
2021-10-17 17:42 – 2019-12-06 16:35 – 000374784 _____ (Windows ® Win 7 DDK provider) C:Windowssystem32DXCpl.exe
2021-10-17 17:42 – 2019-12-06 16:34 – 000417792 _____ C:Windowssystem32d3dconfig.exe
2021-10-17 17:42 – 2019-12-06 16:27 – 000347136 _____ (Windows ® Win 7 DDK provider) C:WindowsSysWOW64DXCpl.exe
2021-10-17 17:42 – 2019-12-06 16:26 – 000365056 _____ C:WindowsSysWOW64d3dconfig.exe
2021-10-17 17:41 – 2021-10-17 17:42 – 000000000 ____D C:Program FilesMozilla Firefox
2021-10-17 17:41 – 2021-10-17 17:41 – 000000000 ____D C:ProgramDataWindows App Certification Kit
2021-10-17 17:41 – 2021-10-17 17:41 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsWindows Kits
2021-10-17 17:41 – 2021-10-17 17:41 – 000000000 ____D C:Program FilesApplication Verifier
2021-10-17 17:41 – 2021-10-17 17:41 – 000000000 ____D C:Program Files (x86)Application Verifier
2021-10-17 17:40 – 2021-10-17 17:40 – 000000000 ____D C:Program Files (x86)NuGet
2021-10-17 17:38 – 2021-10-17 17:44 – 000000000 ____D C:Program Files (x86)Microsoft SDKs
2021-10-17 17:38 – 2021-10-17 17:41 – 000000000 ____D C:Program Files (x86)Windows Kits
2021-10-17 17:38 – 2021-10-17 17:38 – 000000000 ____D C:UsersGalaxy.dotnet
2021-10-17 17:38 – 2021-10-17 17:38 – 000000000 ____D C:Program Files (x86)Reference Assemblies
2021-10-17 17:37 – 2021-10-17 17:38 – 000000000 ____D C:Program Filesdotnet
2021-10-17 17:37 – 2021-10-17 17:38 – 000000000 ____D C:Program Files (x86)dotnet
2021-10-17 17:37 – 2021-10-17 17:37 – 000001799 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsVisual Studio 2019.lnk
2021-10-17 17:37 – 2021-10-17 17:37 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsVisual Studio 2019
2021-10-17 17:37 – 2021-10-17 17:37 – 000000000 ____D C:Program Files (x86)MSBuild
2021-10-17 17:36 – 2021-10-17 17:37 – 000000000 ____D C:Program Files (x86)Microsoft Visual Studio
2021-10-17 17:36 – 2021-10-17 17:36 – 000001433 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsVisual Studio Installer.lnk
2021-10-17 17:36 – 2021-10-17 17:36 – 000000000 ____D C:UsersGalaxyAppDataRoamingVisual Studio Setup
2021-10-17 17:36 – 2021-10-17 17:36 – 000000000 ____D C:ProgramDataMicrosoft Visual Studio
2021-10-17 10:58 – 2021-10-17 10:58 – 000000000 ____D C:UsersGalaxyDocumentsLightshot
2021-10-17 10:49 – 2021-10-18 08:53 – 000000422 _____ C:WindowsTasksupdate-sys.job
2021-10-17 10:49 – 2021-10-18 08:53 – 000000422 _____ C:WindowsTasksupdate-S-1-5-21-2253346569-2864322778-1640557660-1001.job
2021-10-17 10:49 – 2021-10-17 10:49 – 000003414 _____ C:Windowssystem32Tasksupdate-S-1-5-21-2253346569-2864322778-1640557660-1001
2021-10-17 10:49 – 2021-10-17 10:49 – 000003348 _____ C:Windowssystem32Tasksupdate-sys
2021-10-17 10:49 – 2021-10-17 10:49 – 000000424 _____ C:UsersGalaxyAppDataLocalUserProducts.xml
2021-10-17 10:49 – 2021-10-17 10:49 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsLightshot
2021-10-17 10:49 – 2021-10-17 10:49 – 000000000 ____D C:Program Files (x86)Skillbrains
2021-10-17 10:14 – 2021-10-19 17:07 – 000000000 ____D C:UsersGalaxyAppDataRoamingdiscord
2021-10-17 10:14 – 2021-10-19 17:04 – 000000000 ____D C:UsersGalaxyAppDataLocalDiscord
2021-10-17 10:14 – 2021-10-17 10:15 – 000002236 _____ C:UsersGalaxyDesktopDiscord.lnk
2021-10-17 10:14 – 2021-10-17 10:15 – 000000000 ____D C:UsersGalaxyAppDataLocalSquirrelTemp
2021-10-17 10:14 – 2021-10-17 10:14 – 000000000 ____D C:UsersGalaxyAppDataRoamingMicrosoftWindowsStart MenuProgramsDiscord Inc
2021-10-17 09:39 – 2021-10-19 17:01 – 000000000 ____D C:ProgramDataTinyWall
2021-10-17 09:39 – 2021-10-18 19:04 – 000000000 ____D C:UsersGalaxyAppDataRoamingTinyWall
2021-10-17 09:39 – 2021-10-17 09:39 – 000002952 _____ C:Windowssystem32TasksTinyWall Controller
2021-10-17 09:39 – 2021-10-17 09:39 – 000000628 _____ C:Windowssystem32InstallUtil.InstallLog
2021-10-17 09:39 – 2021-10-17 09:39 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsTinyWall
2021-10-17 09:39 – 2021-10-17 09:39 – 000000000 ____D C:Program Files (x86)TinyWall
2021-10-16 17:31 – 2021-10-16 17:31 – 000002185 _____ C:UsersPublicDesktopComodo Dragon.lnk
2021-10-16 17:31 – 2021-10-16 17:31 – 000000000 ____D C:UsersGalaxyAppDataLocalComodo
2021-10-16 17:31 – 2021-10-16 17:31 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsComodo
2021-10-16 17:30 – 2021-10-18 11:50 – 000000000 ____D C:UsersGalaxyAppDataLocalCrashDumps
2021-10-16 17:30 – 2021-10-16 17:30 – 000000000 ____D C:ProgramDataShared Space
2021-10-16 17:30 – 2021-10-16 17:30 – 000000000 ____D C:ProgramDataComodo
2021-10-16 17:30 – 2021-10-16 17:30 – 000000000 ____D C:Program Files (x86)Comodo
2021-10-16 17:22 – 2021-10-17 10:43 – 000000000 ____D C:vol0
2021-10-16 17:22 – 2021-10-16 17:22 – 000000000 ____D C:UsersPublicDocumentsBlackmagic Design
2021-10-16 17:22 – 2021-10-16 17:22 – 000000000 ____D C:UsersGalaxyDocumentsBlackmagic Design
2021-10-16 17:22 – 2021-10-16 17:22 – 000000000 ____D C:UsersGalaxyAppDataRoamingNVIDIA
2021-10-16 17:20 – 2021-10-16 17:20 – 000000000 ____D C:UsersGalaxyAppDataRoamingBlackmagic Design
2021-10-16 17:17 – 2021-10-16 17:17 – 000001998 _____ C:UsersGalaxyDesktopDaVinci Resolve.lnk
2021-10-16 17:17 – 2021-10-16 17:17 – 000000000 ____D C:UsersGalaxyAppDataRoamingMicrosoftWindowsStart MenuProgramsBlackmagic Design
2021-10-16 17:17 – 2021-10-16 17:17 – 000000000 ____D C:ProgramDataBlackmagic Design
2021-10-16 17:17 – 2021-10-16 17:17 – 000000000 ____D C:Program FilesBlackmagic Design
2021-10-16 17:16 – 2021-10-16 17:16 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsBlackmagic Design
2021-10-16 17:16 – 2021-10-16 17:16 – 000000000 ____D C:Program Files (x86)Blackmagic Design
2021-10-16 17:15 – 2021-10-16 17:15 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuPrograms7-Zip
2021-10-16 17:15 – 2021-10-16 17:15 – 000000000 ____D C:Program Files7-Zip
2021-10-16 17:05 – 2021-10-17 17:41 – 000000000 ____D C:ProgramDataPackage Cache
2021-10-16 17:05 – 2021-10-17 13:10 – 000000000 ____D C:UsersGalaxyAppDataRoamingobs-studio
2021-10-16 17:05 – 2021-10-16 17:05 – 000001052 _____ C:UsersPublicDesktopOBS Studio.lnk
2021-10-16 17:05 – 2021-10-16 17:05 – 000000000 ____D C:ProgramDataobs-studio-hook
2021-10-16 17:05 – 2021-10-16 17:05 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsOBS Studio
2021-10-16 17:05 – 2021-10-16 17:05 – 000000000 ____D C:Program Filesobs-studio
2021-10-16 16:04 – 2021-10-16 16:04 – 000000000 ___HD C:$SysReset
2021-10-16 15:43 – 2021-10-16 15:43 – 000001103 _____ C:UsersPublicDesktopMinecraft Launcher.lnk
2021-10-16 15:43 – 2021-10-16 15:43 – 000000000 ____D C:UsersGalaxyAppDataRoaming.minecraft
2021-10-16 15:43 – 2021-10-16 15:43 – 000000000 ____D C:UsersGalaxyAppDataLocalCEF
2021-10-16 15:43 – 2021-10-16 15:43 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsMinecraft Launcher
2021-10-16 15:43 – 2021-10-16 15:43 – 000000000 ____D C:Program Files (x86)Minecraft Launcher
2021-10-16 14:18 – 2021-10-19 09:31 – 000000000 ____D C:UsersGalaxyAppDataLocalRoblox
2021-10-16 14:18 – 2021-10-19 09:19 – 000000256 _____ C:UsersGalaxyAppDataLocalLowrbxcsettings.rbx
2021-10-16 14:07 – 2021-10-16 14:07 – 000248992 _____ (Malwarebytes) C:Windowssystem32Driversmbamswissarmy.sys
2021-10-16 14:07 – 2021-10-16 14:07 – 000210344 _____ (Malwarebytes) C:Windowssystem32DriversMbamChameleon.sys
2021-10-16 14:07 – 2021-10-16 14:07 – 000160176 _____ (Malwarebytes) C:Windowssystem32Driversmbae64.sys
2021-10-16 14:07 – 2021-10-16 14:07 – 000019912 _____ (Malwarebytes) C:Windowssystem32DriversMbamElam.sys
2021-10-16 14:07 – 2021-10-16 14:07 – 000002033 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsMalwarebytes.lnk
2021-10-16 14:07 – 2021-10-16 14:07 – 000002021 _____ C:UsersPublicDesktopMalwarebytes.lnk
2021-10-16 14:07 – 2021-10-16 14:07 – 000000000 ____D C:UsersGalaxyAppDataLocalmbam
2021-10-16 14:07 – 2021-10-16 14:07 – 000000000 ____D C:ProgramDataMalwarebytes
2021-10-16 14:06 – 2021-10-16 14:06 – 000000000 ____D C:Program FilesMalwarebytes
2021-10-16 14:05 – 2021-10-16 14:05 – 000000000 ____D C:ProgramDataIntel
2021-10-16 14:03 – 2021-10-16 14:03 – 000000000 ____D C:WindowsFirmware
2021-10-16 14:03 – 2018-10-16 22:57 – 000131744 _____ (Intel Corporation) C:Windowssystem32DriversiaLPSS2_GPIO2.sys
2021-10-16 14:01 – 2021-10-16 14:01 – 002755584 _____ (Microsoft Corporation) C:WindowsSysWOW64mshtml.tlb
2021-10-16 14:01 – 2021-10-16 14:01 – 002755584 _____ (Microsoft Corporation) C:Windowssystem32mshtml.tlb
2021-10-16 14:01 – 2021-10-16 14:01 – 002371072 _____ C:Windowssystem32rdpnano.dll
2021-10-16 14:01 – 2021-10-16 14:01 – 002111488 _____ (Digimarc) C:WindowsSysWOW64DMRCDecoder.dll
2021-10-16 14:01 – 2021-10-16 14:01 – 001864192 _____ (The ICU Project) C:WindowsSysWOW64icu.dll
2021-10-16 14:01 – 2021-10-16 14:01 – 001687040 _____ C:Windowssystem32libcrypto.dll
2021-10-16 14:01 – 2021-10-16 14:01 – 001333760 _____ C:WindowsSysWOW64TextInputMethodFormatter.dll
2021-10-16 14:01 – 2021-10-16 14:01 – 001313608 _____ (Microsoft Corporation) C:Windowssystem32SecConfig.efi
2021-10-16 14:01 – 2021-10-16 14:01 – 001164288 _____ C:Windowssystem32MBR2GPT.EXE
2021-10-16 14:01 – 2021-10-16 14:01 – 000672768 _____ C:Windowssystem32FsNVSDeviceSource.dll
2021-10-16 14:01 – 2021-10-16 14:01 – 000611960 _____ C:WindowsSysWOW64TextShaping.dll
2021-10-16 14:01 – 2021-10-16 14:01 – 000570368 _____ (Microsoft Corporation) C:Windowssystem32inetcpl.cpl
2021-10-16 14:01 – 2021-10-16 14:01 – 000468440 _____ C:WindowsSysWOW64WindowManagementAPI.dll
2021-10-16 14:01 – 2021-10-16 14:01 – 000452096 _____ (Microsoft Corporation) C:WindowsSysWOW64inetcpl.cpl
2021-10-16 14:01 – 2021-10-16 14:01 – 000449024 _____ (Microsoft Corporation) C:WindowsSysWOW64winspool.drv
2021-10-16 14:01 – 2021-10-16 14:01 – 000223744 _____ C:WindowsSysWOW64TpmTool.exe
2021-10-16 14:01 – 2021-10-16 14:01 – 000147456 _____ (Microsoft Corporation) C:Windowssystem32wshom.ocx
2021-10-16 14:01 – 2021-10-16 14:01 – 000122880 _____ (Microsoft Corporation) C:WindowsSysWOW64wshom.ocx
2021-10-16 14:01 – 2021-10-16 14:01 – 000084992 _____ (Microsoft Corporation) C:Windowssystem32wscui.cpl
2021-10-16 14:01 – 2021-10-16 14:01 – 000067584 _____ (Microsoft Corporation) C:WindowsSysWOW64wscui.cpl
2021-10-16 14:01 – 2021-10-16 14:01 – 000011495 _____ C:Windowssystem32DrtmAuthTxt.wim
2021-10-16 14:01 – 2021-10-16 14:01 – 000007680 _____ (Microsoft Corporation) C:WindowsSysWOW64MsraLegacy.tlb
2021-10-16 14:01 – 2021-10-16 14:01 – 000007680 _____ (Microsoft Corporation) C:Windowssystem32MsraLegacy.tlb
2021-10-16 14:01 – 2021-10-16 14:01 – 000007168 _____ (Microsoft Corporation) C:Windowssystem32msdxm.ocx
2021-10-16 14:01 – 2021-10-16 14:01 – 000006656 _____ (Microsoft Corporation) C:WindowsSysWOW64rendezvousSession.tlb
2021-10-16 14:01 – 2021-10-16 14:01 – 000006656 _____ (Microsoft Corporation) C:Windowssystem32rendezvousSession.tlb
2021-10-16 14:01 – 2021-10-16 14:01 – 000005632 _____ (Microsoft Corporation) C:WindowsSysWOW64msdxm.ocx
2021-10-16 14:00 – 2021-10-19 17:05 – 000000000 ____D C:Program Files (x86)Google
2021-10-16 14:00 – 2021-10-16 14:07 – 000000000 ____D C:UsersGalaxyAppDataLocalGoogle
2021-10-16 14:00 – 2021-10-16 14:00 – 002295296 _____ (Digimarc) C:Windowssystem32DMRCDecoder.dll
2021-10-16 14:00 – 2021-10-16 14:00 – 002260992 _____ C:Windowssystem32TextInputMethodFormatter.dll
2021-10-16 14:00 – 2021-10-16 14:00 – 002260480 _____ (The ICU Project) C:Windowssystem32icu.dll
2021-10-16 14:00 – 2021-10-16 14:00 – 001823296 _____ (Microsoft Corporation) C:Windowssystem32winload.efi
2021-10-16 14:00 – 2021-10-16 14:00 – 001393504 _____ (Microsoft Corporation) C:Windowssystem32winresume.efi
2021-10-16 14:00 – 2021-10-16 14:00 – 000706536 _____ C:Windowssystem32TextShaping.dll
2021-10-16 14:00 – 2021-10-16 14:00 – 000657464 _____ C:Windowssystem32WindowManagementAPI.dll
2021-10-16 14:00 – 2021-10-16 14:00 – 000593920 _____ (Microsoft Corporation) C:Windowssystem32winspool.drv
2021-10-16 14:00 – 2021-10-16 14:00 – 000288768 _____ C:Windowssystem32Windows.Management.InprocObjects.dll
2021-10-16 14:00 – 2021-10-16 14:00 – 000287232 _____ C:Windowssystem32CoreMas.dll
2021-10-16 14:00 – 2021-10-16 14:00 – 000272384 _____ C:Windowssystem32TpmTool.exe
2021-10-16 14:00 – 2021-10-16 14:00 – 000162816 _____ C:Windowssystem32DataStoreCacheDumpTool.exe
2021-10-16 14:00 – 2021-10-16 14:00 – 000098304 _____ C:Windowssystem32Driverscimfs.sys
2021-10-16 14:00 – 2021-10-16 14:00 – 000060928 _____ C:Windowssystem32runexehelper.exe
2021-10-16 14:00 – 2021-10-16 14:00 – 000013312 _____ C:Windowssystem32agentactivationruntimestarter.exe
2021-10-16 14:00 – 2021-10-16 14:00 – 000003420 _____ C:Windowssystem32TasksGoogleUpdateTaskMachineUA
2021-10-16 14:00 – 2021-10-16 14:00 – 000003296 _____ C:Windowssystem32TasksGoogleUpdateTaskMachineCore
2021-10-16 14:00 – 2021-10-16 14:00 – 000002323 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsGoogle Chrome.lnk
2021-10-16 14:00 – 2021-10-16 14:00 – 000002282 _____ C:UsersPublicDesktopGoogle Chrome.lnk
2021-10-16 14:00 – 2021-10-16 14:00 – 000000000 ____D C:Program FilesGoogle
2021-10-16 13:56 – 2021-10-16 13:56 – 000000000 ___HD C:$WinREAgent
2021-10-16 13:55 – 2021-10-16 13:55 – 000000000 ____D C:Windowssystem32TasksIntel
2021-10-16 13:55 – 2021-10-16 13:55 – 000000000 ____D C:Intel
2021-10-16 13:51 – 2021-10-16 17:22 – 000000000 ____D C:UsersGalaxyAppDataLocalNVIDIA
2021-10-16 13:50 – 2021-10-16 13:55 – 000000000 ____D C:ProgramDataHP
2021-10-16 13:50 – 2021-10-16 13:50 – 000003366 _____ C:Windowssystem32TasksRtkAudUService64_BG
2021-10-16 13:50 – 2021-10-16 13:50 – 000000000 ____D C:UsersGalaxyAppDataRoamingHP
2021-10-16 13:49 – 2021-10-16 13:49 – 000000000 ____D C:UsersGalaxyAppDataLocalSoundResearch
2021-10-16 13:49 – 2021-10-16 13:49 – 000000000 ____D C:Program FilesMicrosoft Update Health Tools
2021-10-16 13:48 – 2021-10-16 13:48 – 000000000 ____D C:ProgramDataRealtek
2021-10-16 13:47 – 2021-10-19 16:39 – 000000000 ____D C:ProgramDataNVIDIA
2021-10-16 13:47 – 2021-10-16 16:05 – 000000000 ____D C:ProgramDataNVIDIA Corporation
2021-10-16 13:47 – 2021-10-16 13:47 – 000000000 ____D C:Windowssystem32lxss
2021-10-16 13:47 – 2021-10-16 13:47 – 000000000 ____D C:Windowssystem32DriversNVIDIA Corporation
2021-10-16 13:47 – 2021-10-16 13:47 – 000000000 ____D C:Program FilesNVIDIA Corporation
2021-10-16 13:47 – 2021-08-19 21:30 – 001858672 _____ C:Windowssystem32vulkaninfo-1-999-0-0-0.exe
2021-10-16 13:47 – 2021-08-19 21:30 – 001858672 _____ C:Windowssystem32vulkaninfo.exe
2021-10-16 13:47 – 2021-08-19 21:30 – 001474688 _____ (Khronos Group) C:Windowssystem32OpenCL.dll
2021-10-16 13:47 – 2021-08-19 21:30 – 001438824 _____ C:WindowsSysWOW64vulkaninfo-1-999-0-0-0.exe
2021-10-16 13:47 – 2021-08-19 21:30 – 001438824 _____ C:WindowsSysWOW64vulkaninfo.exe
2021-10-16 13:47 – 2021-08-19 21:30 – 001212544 _____ (Khronos Group) C:WindowsSysWOW64OpenCL.dll
2021-10-16 13:47 – 2021-08-19 21:30 – 001097840 _____ C:Windowssystem32vulkan-1-999-0-0-0.dll
2021-10-16 13:47 – 2021-08-19 21:30 – 001097840 _____ C:Windowssystem32vulkan-1.dll
2021-10-16 13:47 – 2021-08-19 21:30 – 000951920 _____ C:WindowsSysWOW64vulkan-1-999-0-0-0.dll
2021-10-16 13:47 – 2021-08-19 21:30 – 000951920 _____ C:WindowsSysWOW64vulkan-1.dll
2021-10-16 13:47 – 2021-08-19 21:27 – 037420664 _____ (NVIDIA Corporation) C:Windowssystem32Driversnvlddmkm.sys
2021-10-16 13:47 – 2021-08-19 21:27 – 000716928 _____ C:Windowssystem32nvofapi64.dll
2021-10-16 13:47 – 2021-08-19 21:27 – 000645264 _____ (NVIDIA Corporation) C:Windowssystem32nvml.dll
2021-10-16 13:47 – 2021-08-19 21:27 – 000577152 _____ C:WindowsSysWOW64nvofapi.dll
2021-10-16 13:47 – 2021-08-19 21:26 – 002112144 _____ (NVIDIA Corporation) C:Windowssystem32NvFBC64.dll
2021-10-16 13:47 – 2021-08-19 21:26 – 001595512 _____ (NVIDIA Corporation) C:WindowsSysWOW64NvFBC.dll
2021-10-16 13:47 – 2021-08-19 21:26 – 001520760 _____ (NVIDIA Corporation) C:Windowssystem32NvIFR64.dll
2021-10-16 13:47 – 2021-08-19 21:26 – 001171088 _____ (NVIDIA Corporation) C:WindowsSysWOW64NvIFR.dll
2021-10-16 13:47 – 2021-08-19 21:26 – 000919160 _____ (NVIDIA Corporation) C:Windowssystem32nvEncodeAPI64.dll
2021-10-16 13:47 – 2021-08-19 21:26 – 000750224 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvEncodeAPI.dll
2021-10-16 13:47 – 2021-08-19 21:26 – 000706192 _____ (NVIDIA Corporation) C:Windowssystem32nvidia-smi.exe
2021-10-16 13:47 – 2021-08-19 21:26 – 000676472 _____ (NVIDIA Corporation) C:Windowssystem32NvIFROpenGL.dll
2021-10-16 13:47 – 2021-08-19 21:26 – 000564344 _____ (NVIDIA Corporation) C:WindowsSysWOW64NvIFROpenGL.dll
2021-10-16 13:47 – 2021-08-19 21:26 – 000145064 _____ (NVIDIA Corporation) C:Windowssystem32Driversnvhda64v.sys
2021-10-16 13:47 – 2021-08-19 21:26 – 000046264 _____ (NVIDIA Corporation) C:Windowssystem32Driversnvhdap64.dll
2021-10-16 13:47 – 2021-08-19 21:25 – 008854128 _____ (NVIDIA Corporation) C:Windowssystem32nvcuvid.dll
2021-10-16 13:47 – 2021-08-19 21:25 – 007920760 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvcuvid.dll
2021-10-16 13:47 – 2021-08-19 21:25 – 005680760 _____ (NVIDIA Corporation) C:Windowssystem32nvcpl.dll
2021-10-16 13:47 – 2021-08-19 21:25 – 004987536 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvcuda.dll
2021-10-16 13:47 – 2021-08-19 21:25 – 002925688 _____ (NVIDIA Corporation) C:Windowssystem32nvcuda.dll
2021-10-16 13:47 – 2021-08-19 21:25 – 000447096 _____ (NVIDIA Corporation) C:Windowssystem32nvdebugdump.exe
2021-10-16 13:47 – 2021-08-19 21:24 – 000849024 _____ (NVIDIA Corporation) C:Windowssystem32MCU.exe
2021-10-16 13:47 – 2021-08-19 21:23 – 007280312 _____ (NVIDIA Corporation) C:Windowssystem32nvapi64.dll
2021-10-16 13:47 – 2021-08-19 21:23 – 006215800 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvapi.dll
2021-10-16 13:47 – 2021-08-19 20:56 – 000083062 _____ C:Windowssystem32nvinfo.pb
2021-10-16 13:47 – 2021-06-30 00:25 – 006471168 _____ (Realtek Semiconductor Corp.) C:Windowssystem32DriversRTKVHD64.sys
2021-10-16 13:47 – 2021-06-30 00:15 – 045915128 _____ C:Windowssystem32DriversRTAIODAT.DAT
2021-10-16 13:46 – 2021-10-16 13:47 – 000000000 ____D C:Windowssystem32MRT
2021-10-16 13:45 – 2021-10-16 14:01 – 000000000 ____D C:UsersGalaxyAppDataLocalPlaceholderTileLogoFolder
2021-10-16 13:44 – 2021-10-16 13:44 – 000000000 ____H C:Windowssystem32DriversMsft_Kernel_LifeCamTrueColor_01011.Wdf
2021-10-16 13:44 – 2021-10-16 13:44 – 000000000 ____D C:WindowsSysWOW64LifeCamTrueColor
2021-10-16 13:44 – 2021-10-16 13:44 – 000000000 ____D C:Windowssystem32LifeCamTrueColor
2021-10-16 13:36 – 2021-10-18 12:03 – 000001607 _____ C:Windowssystem32configVSMIDK
2021-10-16 13:34 – 2021-10-16 13:34 – 000007606 _____ C:UsersGalaxyAppDataLocalResmon.ResmonCfg
2021-10-16 13:33 – 2021-10-19 12:46 – 000000000 ____D C:UsersGalaxyAppDataLocalD3DSCache
2021-10-14 19:31 – 2021-10-17 10:33 – 000000000 ____D C:WindowsPanther
2021-10-14 19:31 – 2021-10-14 19:31 – 000000000 _____ C:Recovery.txt
2021-10-14 19:24 – 2021-10-14 19:24 – 000000000 ____D C:UsersGalaxyAppDataLocalComms
2021-10-14 18:38 – 2021-10-16 13:44 – 000003382 _____ C:Windowssystem32TasksOneDrive Standalone Update Task-S-1-5-21-2253346569-2864322778-1640557660-1001
2021-10-14 18:38 – 2021-10-14 18:38 – 000000000 ___RD C:UsersGalaxyOneDrive
2021-10-14 18:37 – 2021-10-18 12:09 – 000795738 _____ C:Windowssystem32PerfStringBackup.INI
2021-10-14 18:37 – 2021-10-14 18:37 – 000000000 ____D C:ProgramDataMicrosoft OneDrive
2021-10-14 18:36 – 2021-10-19 14:36 – 000000000 ____D C:UsersGalaxy
2021-10-14 18:36 – 2021-10-19 12:47 – 000000000 ____D C:ProgramDataPackages
2021-10-14 18:36 – 2021-10-19 12:45 – 000000000 ____D C:UsersGalaxyAppDataLocalPackages
2021-10-14 18:36 – 2021-10-16 13:44 – 000002370 _____ C:UsersGalaxyAppDataRoamingMicrosoftWindowsStart MenuProgramsOneDrive.lnk
2021-10-14 18:36 – 2021-10-14 18:36 – 000000020 ___SH C:UsersGalaxyntuser.ini
2021-10-14 18:36 – 2021-10-14 18:36 – 000000000 __RHD C:UsersPublicAccountPictures
2021-10-14 18:36 – 2021-10-14 18:36 – 000000000 ___RD C:UsersGalaxy3D Objects
2021-10-14 18:36 – 2021-10-14 18:36 – 000000000 ____D C:UsersGalaxyAppDataRoamingAdobe
2021-10-14 18:36 – 2021-10-14 18:36 – 000000000 ____D C:UsersGalaxyAppDataLocalVirtualStore
2021-10-14 18:36 – 2021-10-14 18:36 – 000000000 ____D C:UsersGalaxyAppDataLocalPublishers
2021-10-14 18:36 – 2021-10-14 18:36 – 000000000 ____D C:UsersGalaxyAppDataLocalConnectedDevicesPlatform
2021-10-14 18:33 – 2021-10-14 18:33 – 000000000 _SHDL C:Documents and Settings
2021-10-14 18:31 – 2021-10-19 15:45 – 000000000 ____D C:Windowssystem32SleepStudy
2021-10-14 18:31 – 2021-10-18 12:04 – 000008192 ___SH C:DumpStack.log.tmp
2021-10-14 18:31 – 2021-10-18 12:04 – 000000006 ____H C:WindowsTasksSA.DAT
2021-10-14 18:31 – 2021-10-16 14:05 – 000257824 _____ C:Windowssystem32FNTCACHE.DAT
2021-10-14 18:31 – 2021-10-16 13:59 – 000002438 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Edge.lnk
2021-10-14 18:31 – 2021-10-16 13:59 – 000002276 _____ C:UsersPublicDesktopMicrosoft Edge.lnk
2021-10-14 18:31 – 2021-10-16 13:49 – 000003480 _____ C:Windowssystem32TasksMicrosoftEdgeUpdateTaskMachineUA
2021-10-14 18:31 – 2021-10-16 13:49 – 000003356 _____ C:Windowssystem32TasksMicrosoftEdgeUpdateTaskMachineCore
2021-10-14 18:31 – 2021-10-16 13:47 – 000000000 ____D C:Windowssystem32Driverswd
2021-10-14 18:31 – 2021-10-14 18:31 – 000000000 ____D C:WindowsServiceProfiles
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-10-19 15:31 – 2019-12-07 02:13 – 000000000 ____D C:WindowsINF
2021-10-19 15:31 – 2019-12-07 02:03 – 000000000 ____D C:WindowsCbsTemp
2021-10-19 12:47 – 2019-12-07 02:14 – 000000000 ___HD C:Program FilesWindowsApps
2021-10-19 12:47 – 2019-12-07 02:14 – 000000000 ____D C:WindowsAppReadiness
2021-10-19 12:43 – 2019-12-07 02:14 – 000000000 ____D C:ProgramDataregid.1991-06.com.microsoft
2021-10-18 17:54 – 2019-12-07 02:03 – 000032768 _____ C:Windowssystem32configELAM
2021-10-18 12:04 – 2019-12-07 02:14 – 000000000 ____D C:WindowsServiceState
2021-10-18 12:03 – 2019-12-07 02:03 – 000524288 _____ C:Windowssystem32configBBI
2021-10-17 08:27 – 2019-12-07 02:14 – 000000000 ____D C:Windowsappcompat
2021-10-16 14:07 – 2019-12-07 02:14 – 000000000 ___HD C:WindowsELAMBKUP
2021-10-16 14:06 – 2019-12-07 02:14 – 000000000 ___RD C:WindowsImmersiveControlPanel
2021-10-16 14:04 – 2019-12-07 02:50 – 000000000 ____D C:Windowssystem32OpenSSH
2021-10-16 14:04 – 2019-12-07 02:14 – 000000000 ___SD C:Windowssystem32UNP
2021-10-16 14:04 – 2019-12-07 02:14 – 000000000 ___RD C:WindowsPrintDialog
2021-10-16 14:04 – 2019-12-07 02:14 – 000000000 ____D C:WindowsSysWOW64WinMetadata
2021-10-16 14:04 – 2019-12-07 02:14 – 000000000 ____D C:WindowsSysWOW64setup
2021-10-16 14:04 – 2019-12-07 02:14 – 000000000 ____D C:WindowsSysWOW64oobe
2021-10-16 14:04 – 2019-12-07 02:14 – 000000000 ____D C:WindowsSysWOW64lv-LV
2021-10-16 14:04 – 2019-12-07 02:14 – 000000000 ____D C:WindowsSysWOW64lt-LT
2021-10-16 14:04 – 2019-12-07 02:14 – 000000000 ____D C:WindowsSysWOW64et-EE
2021-10-16 14:04 – 2019-12-07 02:14 – 000000000 ____D C:WindowsSysWOW64Dism
2021-10-16 14:04 – 2019-12-07 02:14 – 000000000 ____D C:WindowsSystemResources
2021-10-16 14:04 – 2019-12-07 02:14 – 000000000 ____D C:Windowssystem32WinMetadata
2021-10-16 14:04 – 2019-12-07 02:14 – 000000000 ____D C:Windowssystem32WinBioPlugIns
2021-10-16 14:04 – 2019-12-07 02:14 – 000000000 ____D C:Windowssystem32SystemResetPlatform
2021-10-16 14:04 – 2019-12-07 02:14 – 000000000 ____D C:Windowssystem32setup
2021-10-16 14:04 – 2019-12-07 02:14 – 000000000 ____D C:Windowssystem32oobe
2021-10-16 14:04 – 2019-12-07 02:14 – 000000000 ____D C:Windowssystem32migwiz
2021-10-16 14:04 – 2019-12-07 02:14 – 000000000 ____D C:Windowssystem32lv-LV
2021-10-16 14:04 – 2019-12-07 02:14 – 000000000 ____D C:Windowssystem32lt-LT
2021-10-16 14:04 – 2019-12-07 02:14 – 000000000 ____D C:Windowssystem32et-EE
2021-10-16 14:04 – 2019-12-07 02:14 – 000000000 ____D C:Windowssystem32Dism
2021-10-16 14:04 – 2019-12-07 02:14 – 000000000 ____D C:Windowssystem32DDFs
2021-10-16 14:04 – 2019-12-07 02:14 – 000000000 ____D C:Windowssystem32appraiser
2021-10-16 14:04 – 2019-12-07 02:14 – 000000000 ____D C:WindowsShellComponents
2021-10-16 14:04 – 2019-12-07 02:14 – 000000000 ____D C:WindowsProvisioning
2021-10-16 14:04 – 2019-12-07 02:14 – 000000000 ____D C:WindowsPolicyDefinitions
2021-10-16 14:04 – 2019-12-07 02:14 – 000000000 ____D C:WindowsDiagTrack
2021-10-16 14:04 – 2019-12-07 02:14 – 000000000 ____D C:Windowsbcastdvr
2021-10-16 14:04 – 2019-12-07 02:14 – 000000000 ____D C:Program FilesCommon FilesSystem
2021-10-16 14:04 – 2019-12-07 02:03 – 000000000 ____D C:Windowsservicing
2021-10-16 14:03 – 2019-12-07 02:52 – 000023552 _____ (Microsoft Corporation) C:Windowssystem32OEMDefaultAssociations.dll
2021-10-16 13:49 – 2019-12-07 02:14 – 000000000 ____D C:Windowssystem32DriversDriverData
2021-10-16 13:46 – 2019-12-07 02:14 – 000000000 ____D C:Program FilesWindows Defender
2021-10-16 13:32 – 2019-12-07 02:14 – 000000000 ____D C:ProgramDataUSOPrivate
2021-10-14 19:30 – 2019-12-07 02:14 – 000028672 _____ C:Windowssystem32configBCD-Template
2021-10-14 18:36 – 2019-12-07 02:14 – 000000000 ____D C:Windowssystem32WinBioDatabase
2021-10-14 18:35 – 2019-12-07 02:50 – 000000000 ____D C:Windowssystem32FxsTmp
2021-10-14 18:35 – 2019-12-07 02:14 – 000000000 ____D C:Windowssystem32spool
==================== Files in the root of some directories ========
2021-10-16 13:34 – 2021-10-16 13:34 – 000007606 _____ () C:UsersGalaxyAppDataLocalResmon.ResmonCfg
2021-10-17 10:49 – 2021-10-17 10:49 – 000000003 _____ () C:UsersGalaxyAppDataLocalupdater.log
2021-10-17 10:49 – 2021-10-17 10:49 – 000000424 _____ () C:UsersGalaxyAppDataLocalUserProducts.xml
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-10-2021
Ran by Galaxy (19-10-2021 17:07:25)
Running from C:UsersGalaxyDownloads
Microsoft Windows 10 Home Version 21H1 19043.1288 (X64) (2021-10-15 01:33:16)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-2253346569-2864322778-1640557660-500 – Administrator – Disabled)
DefaultAccount (S-1-5-21-2253346569-2864322778-1640557660-503 – Limited – Disabled)
Galaxy (S-1-5-21-2253346569-2864322778-1640557660-1001 – Administrator – Enabled) => C:UsersGalaxy
Guest (S-1-5-21-2253346569-2864322778-1640557660-501 – Limited – Disabled)
WDAGUtilityAccount (S-1-5-21-2253346569-2864322778-1640557660-504 – Limited – Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled – Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled – Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
==================== Installed Programs ======================
(Only the adware programs with “Hidden” flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 19.00 (x64) (HKLM…7-Zip) (Version: 19.00 – Igor Pavlov)
Application Verifier x64 External Package (HKLM…{8A4CD158-E6B3-6D91-D7DE-10098BC980E2}) (Version: 10.1.19041.685 – Microsoft) Hidden
Blackmagic RAW Common Components (HKLM…{94C42023-ECF5-46E6-ACB4-2AED536B205D}) (Version: 2.2 – Blackmagic Design)
ClickOnce Bootstrapper Package for Microsoft .NET Framework (HKLM-x32…{5A260D5A-95D3-4956-8E0A-E182CC4144ED}) (Version: 4.8.04162 – Microsoft Corporation) Hidden
Comodo Dragon (HKLM-x32…Comodo Dragon) (Version: 75.0.3770.100 – Comodo)
DaVinci Resolve (HKLM…{2B31CC55-2FF6-4E9F-AA31-8219F56E0680}) (Version: 17.3.20008 – Blackmagic Design)
DaVinci Resolve Control Panels (HKLM…{FB1E6849-EE02-49DB-952C-6DD093D74DB0}) (Version: 2.0.0.0 – Blackmagic Design)
DiagnosticsHub_CollectionService (HKLM…{1F3C3AAC-9F7A-47DA-A082-0ACE770041BE}) (Version: 16.1.28901 – Microsoft Corporation) Hidden
Discord (HKUS-1-5-21-2253346569-2864322778-1640557660-1001…Discord) (Version: 1.0.9003 – Discord Inc.)
Google Chrome (HKLM-x32…Google Chrome) (Version: 94.0.4606.81 – Google LLC)
icecap_collection_neutral (HKLM-x32…{1036893D-9917-4E70-B96C-8D72A2B224BC}) (Version: 16.10.31306 – Microsoft Corporation) Hidden
icecap_collection_x64 (HKLM…{289873DF-80D0-4D7D-8068-D25D342A26FA}) (Version: 16.10.31306 – Microsoft Corporation) Hidden
icecap_collectionresources (HKLM-x32…{D2B4539C-173B-4B8D-A021-E22E9566BC24}) (Version: 16.10.31306 – Microsoft Corporation) Hidden
icecap_collectionresourcesx64 (HKLM-x32…{38CE202D-7880-4101-9739-83619300EC58}) (Version: 16.10.31306 – Microsoft Corporation) Hidden
IntelliTraceProfilerProxy (HKLM-x32…{7D94CF67-6666-4111-B027-D7AB7F189F70}) (Version: 15.0.18198.01 – Microsoft Corporation) Hidden
Java SE Development Kit 17.0.1 (64-bit) (HKLM…{7ECAAC8F-FBBE-5265-BBF4-0AC48139FB26}) (Version: 17.0.1.0 – Oracle Corporation)
Kits Configuration Installer (HKLM-x32…{E75A9998-E979-760B-6AEB-49763F279EDD}) (Version: 10.1.19041.685 – Microsoft) Hidden
Lightshot-5.5.0.7 (HKLM-x32…{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.5.0.7 – Skillbrains)
Malwarebytes version 4.4.8.137 (HKLM…{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.8.137 – Malwarebytes)
Microsoft .NET SDK 5.0.402 (x64) from Visual Studio (HKLM…{A6889A2D-DA5E-4DED-B563-DAF5BE5252AA}) (Version: 5.4.221.47606 – Microsoft Corporation)
Microsoft Edge (HKLM-x32…Microsoft Edge) (Version: 94.0.992.50 – Microsoft Corporation)
Microsoft OneDrive (HKUS-1-5-21-2253346569-2864322778-1640557660-1001…OneDriveSetup.exe) (Version: 21.180.0905.0007 – Microsoft Corporation)
Microsoft Update Health Tools (HKLM…{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 – Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable – 10.0.40219 (HKLM-x32…{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 – Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) – 12.0.40664 (HKLM-x32…{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 – Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) – 12.0.40664 (HKLM-x32…{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 – Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) – 14.28.29913 (HKLM-x32…{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 – Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) – 14.28.29913 (HKLM-x32…{03d1453c-7d5c-479c-afea-8482f406e036}) (Version: 14.28.29913.0 – Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM…{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 2.11.40.25675 – Microsoft Corporation)
Minecraft Launcher (HKLM-x32…{733C3ACB-432D-4880-B0E1-660000D7974D}) (Version: 1.0.0.0 – Mojang)
Mozilla Firefox (x64 en-US) (HKLM…Mozilla Firefox 93.0 (x64 en-US)) (Version: 93.0 – Mozilla)
Mozilla Maintenance Service (HKLM…MozillaMaintenanceService) (Version: 93.0 – Mozilla)
MSI Development Tools (HKLM-x32…{7AAC93B0-F3D7-6B24-6B37-9E74980C1C81}) (Version: 10.1.19041.685 – Microsoft Corporation) Hidden
NVIDIA Graphics Driver 471.41 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 471.41 – NVIDIA Corporation)
OBS Studio (HKLM-x32…OBS Studio) (Version: 27.1.3 – OBS Project)
Roblox Player for Galaxy (HKUS-1-5-21-2253346569-2864322778-1640557660-1001…roblox-player) (Version: – Roblox Corporation)
Roblox Studio for Galaxy (HKUS-1-5-21-2253346569-2864322778-1640557660-1001…roblox-studio) (Version: – Roblox Corporation)
SDK ARM Additions (HKLM-x32…{FCF9D89E-6F79-64FB-B08D-B0E69FF54DEE}) (Version: 10.1.19041.685 – Microsoft Corporation) Hidden
SDK ARM Redistributables (HKLM-x32…{72DB07D6-E166-5A3F-B6E6-4664383781B8}) (Version: 10.1.19041.685 – Microsoft Corporation) Hidden
TinyWall (HKLM-x32…{8B786591-A6EC-4DCD-AC10-2B4386F38A5E}) (Version: 3.1.1.0 – Károly Pados)
Universal CRT Extension SDK (HKLM-x32…{4D69FB64-4443-F2DD-DE1C-F14FD98AAC59}) (Version: 10.1.19041.685 – Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (HKLM-x32…{6B56745A-F6A4-C51C-933A-AD96C00683EA}) (Version: 10.1.19041.685 – Microsoft Corporation) Hidden
Universal CRT Redistributable (HKLM-x32…{A57CD0A6-4297-FD30-34A4-34758B6F5F69}) (Version: 10.1.19041.685 – Microsoft Corporation) Hidden
Universal CRT Tools x64 (HKLM…{CD06199B-41C1-AE6D-7567-984CC68792C3}) (Version: 10.1.19041.685 – Microsoft Corporation) Hidden
Universal CRT Tools x86 (HKLM-x32…{BD75F257-50A4-E0CD-9942-C3550CA3E66A}) (Version: 10.1.19041.685 – Microsoft Corporation) Hidden
Universal General MIDI DLS Extension SDK (HKLM-x32…{A7E95C47-B5F4-110C-D27A-DECB03412B96}) (Version: 10.1.19041.685 – Microsoft Corporation) Hidden
vcpp_crt.redist.clickonce (HKLM-x32…{54109AAF-995B-4463-AE95-B9ED6B5631AA}) (Version: 14.29.30135 – Microsoft Corporation) Hidden
Visual Studio Community 2019 (HKLM-x32…e3998299) (Version: 16.11.5 – Microsoft Corporation)
VS Immersive Activate Helper (HKLM-x32…{A71406B5-E487-4B01-8E59-D466841350F5}) (Version: 16.0.102.0 – Microsoft Corporation) Hidden
vs_BlendMsi (HKLM-x32…{B5E3A3E1-1529-4D5A-9E95-34971FA07825}) (Version: 16.0.28329 – Microsoft Corporation) Hidden
vs_clickoncebootstrappermsi (HKLM-x32…{6F7948F9-8EED-4FA5-A1D9-7DD512A2CA26}) (Version: 16.10.31206 – Microsoft Corporation) Hidden
vs_clickoncebootstrappermsires (HKLM-x32…{271F1F42-B547-4498-825F-590DBB1774F7}) (Version: 16.0.28329 – Microsoft Corporation) Hidden
vs_clickoncesigntoolmsi (HKLM-x32…{30D97A69-3C0F-4552-9A72-60E591B210C7}) (Version: 16.0.28329 – Microsoft Corporation) Hidden
vs_communitymsi (HKLM-x32…{CE912A42-1D6A-4F54-A263-F54E7D3F8E09}) (Version: 16.11.31613 – Microsoft Corporation) Hidden
vs_communitymsires (HKLM-x32…{3751D1CF-9A44-43D2-B4BB-80FA6E7925A8}) (Version: 16.10.31213 – Microsoft Corporation) Hidden
vs_devenvmsi (HKLM-x32…{AD0C92A4-1514-4BC1-A723-A272A8343924}) (Version: 16.0.28329 – Microsoft Corporation) Hidden
vs_filehandler_amd64 (HKLM-x32…{102E83BD-B6A0-4C74-AD22-7D594A3435D3}) (Version: 16.11.31503 – Microsoft Corporation) Hidden
vs_filehandler_x86 (HKLM-x32…{6CBDE7BE-E956-4E0E-81FB-2CB79190C924}) (Version: 16.11.31503 – Microsoft Corporation) Hidden
vs_FileTracker_Singleton (HKLM-x32…{05CA3463-0B45-425D-9AF2-E1964AB85CBB}) (Version: 16.10.31303 – Microsoft Corporation) Hidden
vs_minshellinteropmsi (HKLM-x32…{883D29E5-9A41-4C45-A192-C10B8078BF0C}) (Version: 16.10.31306 – Microsoft Corporation) Hidden
vs_minshellmsi (HKLM-x32…{53D1C36A-E35A-45B3-801B-F49BDD425293}) (Version: 16.11.31503 – Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32…{0916C6E1-6A0A-4887-9E00-D96FD44AFACE}) (Version: 16.10.31303 – Microsoft Corporation) Hidden
vs_SQLClickOnceBootstrappermsi (HKLM-x32…{9A9E968E-1C75-4B85-BCBF-D1E26D6F7A6B}) (Version: 16.10.31205 – Microsoft Corporation) Hidden
vs_tipsmsi (HKLM-x32…{E208E682-50EE-4F2F-9860-C91B906B8A03}) (Version: 16.0.28329 – Microsoft Corporation) Hidden
WinAppDeploy (HKLM-x32…{2ADF1977-BF31-E127-B651-AC28A8658317}) (Version: 10.1.19041.685 – Microsoft Corporation) Hidden
Windows SDK AddOn (HKLM-x32…{E18618EC-D9DB-4BCE-B382-85ADA2CBB340}) (Version: 10.1.0.0 – Microsoft Corporation)
Windows Software Development Kit – Windows 10.0.19041.685 (HKLM-x32…{4591faf1-a2db-4a3d-bfda-aa5a4ebb1587}) (Version: 10.1.19041.685 – Microsoft Corporation)
WinRT Intellisense Desktop – en-us (HKLM-x32…{BCF7CA0F-E53C-2A4F-B128-A751EC9A1016}) (Version: 10.1.19041.685 – Microsoft Corporation) Hidden
WinRT Intellisense Desktop – Other Languages (HKLM-x32…{B42BF427-AFDB-C00F-DB60-6F51395D74A1}) (Version: 10.1.19041.685 – Microsoft Corporation) Hidden
WinRT Intellisense IoT – en-us (HKLM-x32…{3335615C-ABEB-960E-2226-4274CD28E046}) (Version: 10.1.19041.685 – Microsoft Corporation) Hidden
WinRT Intellisense IoT – Other Languages (HKLM-x32…{216D5F47-257D-6284-5849-B51037875EFA}) (Version: 10.1.19041.685 – Microsoft Corporation) Hidden
WinRT Intellisense Mobile – en-us (HKLM-x32…{443FF51E-16C3-F23B-18FC-0D1D66024B0B}) (Version: 10.1.19041.685 – Microsoft Corporation) Hidden
WinRT Intellisense PPI – en-us (HKLM-x32…{15E29AFF-CB19-A20B-9A81-B0765A63115F}) (Version: 10.1.19041.685 – Microsoft Corporation) Hidden
WinRT Intellisense PPI – Other Languages (HKLM-x32…{FF2B49B7-0254-3D6A-4BE0-EF4C59DBCC2B}) (Version: 10.1.19041.685 – Microsoft Corporation) Hidden
WinRT Intellisense UAP – en-us (HKLM-x32…{0AF3B821-474B-1885-473A-6E3FB4F1CF71}) (Version: 10.1.19041.685 – Microsoft Corporation) Hidden
WinRT Intellisense UAP – Other Languages (HKLM-x32…{8832F8ED-1035-9ABE-FD73-4E5ABAA84A5C}) (Version: 10.1.19041.685 – Microsoft Corporation) Hidden
Packages:
=========
Cortana -> C:Program FilesWindowsAppsMicrosoft.549981C3F5F10_1.1911.21713.0_x64__8wekyb3d8bbwe [2021-10-14] (Microsoft Corporation)
Disney+ -> C:Program FilesWindowsAppsDisney.37853FC22B2CE_1.19.10.0_x64__6rarf9sa4v8jt [2021-10-16] (Disney)
HP Audio Center -> C:Program FilesWindowsAppsAD2F1837.HPAudioCenter_1.26.249.0_x64__v10z8vjag6ke6 [2021-10-16] (HP Inc.)
Microsoft Solitaire Collection -> C:Program FilesWindowsAppsMicrosoft.MicrosoftSolitaireCollection_4.10.9220.0_x64__8wekyb3d8bbwe [2021-10-19] (Microsoft Studios) [MS Ad]
NVIDIA Control Panel -> C:Program FilesWindowsAppsNVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-10-16] (NVIDIA Corp.)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:WindowsSystem32DriverStoreFileRepositoryiastorpinningcomponent.inf_amd64_9ae4acbb135f923eOptaneShellExt.dll [2021-02-22] (Intel® Rapid Storage Technology -> )
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:Program Files7-Zip7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:Program FilesMalwarebytesAnti-Malwarembshlext.dll [2021-10-16] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:WindowsSystem32DriverStoreFileRepositoryiastorpinningcomponent.inf_amd64_9ae4acbb135f923eOptaneShellExt.dll [2021-02-22] (Intel® Rapid Storage Technology -> )
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:Program Files7-Zip7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:WindowsSystem32DriverStoreFileRepositorynvhdc.inf_amd64_75e4d75cf672cb89nvshext.dll [2021-08-19] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:Program Files7-Zip7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:Program FilesMalwarebytesAnti-Malwarembshlext.dll [2021-10-16] (Malwarebytes Corporation -> Malwarebytes)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2021-10-16 17:15 – 2019-02-21 09:00 – 000078336 _____ (Igor Pavlov) [File not signed] C:Program Files7-Zip7-zip.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The “AlternateShell” will be restored.)
HKLMSYSTEMCurrentControlSetControlSafeBootMinimalMBAMService => “”=”Service”
HKLMSYSTEMCurrentControlSetControlSafeBootNetworkMBAMService => “”=”Service”
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141
HKLMSoftwareWow6432NodeMicrosoftInternet ExplorerMain,Start Page = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141
HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKLMSoftwareWow6432NodeMicrosoftInternet ExplorerMain,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141
HKLMSoftwareWow6432NodeMicrosoftInternet ExplorerMain,Default_Page_URL = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141
HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKLMSoftwareWow6432NodeMicrosoftInternet ExplorerMain,Default_Search_URL = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKUS-1-5-19SoftwareMicrosoftInternet ExplorerMain,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKUS-1-5-20SoftwareMicrosoftInternet ExplorerMain,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKUS-1-5-21-2253346569-2864322778-1640557660-1001SoftwareMicrosoftInternet ExplorerMain,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKUS-1-5-21-2253346569-2864322778-1640557660-1001SoftwareMicrosoftInternet ExplorerMain,Start Page = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 02:14 – 2019-12-07 02:12 – 000000824 _____ C:Windowssystem32driversetchosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLMSystemCurrentControlSetControlSession ManagerEnvironmentPath -> %JAVA_HOME%bin;%SystemRoot%system32;%SystemRoot%;%SystemRoot%System32Wbem;%SYSTEMROOT%System32WindowsPowerShellv1.0;%SYSTEMROOT%System32OpenSSH;C:Program Filesdotnet;
HKUS-1-5-21-2253346569-2864322778-1640557660-1001Control PanelDesktopWallpaper -> C:UsersGalaxyDownloadswakkpaper.png
DNS Servers: 192.168.0.1
HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesSystem => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM…StartupApprovedRun: => “Logitech Download Assistant”
HKUS-1-5-21-2253346569-2864322778-1640557660-1001…StartupApprovedRun: => “OneDrive”
HKUS-1-5-21-2253346569-2864322778-1640557660-1001…StartupApprovedRun: => “Discord”
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [TCP Query User{3259A8FB-0CD6-45D3-9AC6-B49B293C5FEA}C:program filesblackmagic designdavinci resolvedpdecoder.exe] => (Allow) C:program filesblackmagic designdavinci resolvedpdecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [UDP Query User{04E67A59-7D48-4148-B010-1ABD698CE089}C:program filesblackmagic designdavinci resolvedpdecoder.exe] => (Allow) C:program filesblackmagic designdavinci resolvedpdecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [TCP Query User{F0867B94-2C07-48CB-8712-2BBA52DCECC6}C:program filesblackmagic designdavinci resolveresolve.exe] => (Allow) C:program filesblackmagic designdavinci resolveresolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [UDP Query User{0A8D63E1-1550-4B07-8F30-FB52929000F9}C:program filesblackmagic designdavinci resolveresolve.exe] => (Allow) C:program filesblackmagic designdavinci resolveresolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [TCP Query User{084C1705-7D64-4B52-AD5D-B4CBB8D1C410}C:program filesblackmagic designdavinci resolvefuscript.exe] => (Allow) C:program filesblackmagic designdavinci resolvefuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [UDP Query User{CD9A6E63-D8D6-444F-B380-96C674421809}C:program filesblackmagic designdavinci resolvefuscript.exe] => (Allow) C:program filesblackmagic designdavinci resolvefuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{EC37814E-9217-4FA0-9075-AC83920E5046}] => (Block) C:program filesblackmagic designdavinci resolvefuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{116E18B1-E79D-4932-A62B-0E1CB8A90CC1}] => (Block) C:program filesblackmagic designdavinci resolvefuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{2763D8A3-5E79-429E-A916-6F7E1F3A1207}] => (Block) C:program filesblackmagic designdavinci resolvedpdecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{1B394B8A-DA33-4DBA-AC60-DBD3895D6041}] => (Block) C:program filesblackmagic designdavinci resolvedpdecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{C037EE0D-D66F-402E-A58E-3496B92DD38C}] => (Block) C:program filesblackmagic designdavinci resolvefuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{653328FC-CD4F-403B-826F-8683DE9D6164}] => (Block) C:program filesblackmagic designdavinci resolvefuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{7171E4A4-A0AE-46F3-B474-E50001FD738B}] => (Allow) C:Program FilesMozilla Firefoxfirefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{0077F983-462C-4D0B-8315-677E95E3B853}] => (Allow) C:Program FilesMozilla Firefoxfirefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{EFF0A48C-26C8-4E1C-8555-64CF3328CEBA}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{1A4400A1-5672-4ECD-9E51-17083BA4799A}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7E9B8FF3-3AA7-463F-850B-78F5ACD5DCC4}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8F88CAED-744C-45F9-B071-CB7835BAF674}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)
==================== Restore Points =========================
18-10-2021 11:44:52 Removed Microsoft System CLR Types for SQL Server 2019 CTP2.2
19-10-2021 14:22:55 Installed Java SE Development Kit 17.0.1 (64-bit)
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (10/18/2021 05:41:20 PM) (Source: Firefox Default Browser Agent) (EventID: 12029) (User: )
Description: Event-ID 12029
Error: (10/18/2021 05:41:20 PM) (Source: Firefox Default Browser Agent) (EventID: 0) (User: )
Description: Event-ID 0
Error: (10/18/2021 12:03:40 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]
Error: (10/18/2021 12:03:40 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.
Error: (10/18/2021 12:03:40 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]
Error: (10/18/2021 11:50:34 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: a2emergencykit.exe, version: 2021.10.0.11201, time stamp: 0x61544016
Faulting module name: ntdll.dll, version: 10.0.19041.1288, time stamp: 0xa280d1d6
Exception code: 0xc0000374
Fault offset: 0x00000000000ff199
Faulting process id: 0x34b4
Faulting application start time: 0x01d7c450b3ad3ac4
Faulting application path: C:EEKbin64a2emergencykit.exe
Faulting module path: C:WindowsSYSTEM32ntdll.dll
Report Id: 099f32af-8ae1-46ca-b713-7a044a17b444
Faulting package full name:
Faulting package-relative application ID:
Error: (10/18/2021 11:44:53 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.
Details:
AddLegacyDriverFiles: Unable to back up image of binary SASKUTIL.
System Error:
The system cannot find the file specified.
.
Error: (10/17/2021 05:42:18 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine QueryFullProcessImageNameW. hr = 0x80070006, The handle is invalid.
.
Operation:
Executing Asynchronous Operation
Context:
Current State: DoSnapshotSet
System errors:
=============
Error: (10/18/2021 08:53:02 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 8:08:46 PM on 10/17/2021 was unexpected.
Error: (10/18/2021 08:52:53 AM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
Description: 3221225684A fatal error occurred processing the restoration data.
Error: (10/16/2021 01:55:50 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 1:48:46 PM on 10/16/2021 was unexpected.
Error: (10/16/2021 01:50:40 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80240016: Intel – SoftwareComponent – 1.38.2020.805.
Error: (10/16/2021 01:50:40 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x8024200b: Realtek – Net – 10.46.1231.2020.
Error: (10/16/2021 01:50:40 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070005: Intel – SoftwareComponent – 1.38.2020.805.
Error: (10/16/2021 01:49:50 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80240016: Realtek – SoftwareComponent – 1.0.0.371.
Error: (10/16/2021 01:49:49 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x8024200b: Realtek – Net – 10.46.1231.2020.
Windows Defender:
================
Date: 2021-10-19 15:02:05
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2021-10-19 14:10:13
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2021-10-19 11:31:35
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2021-10-19 08:15:30
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2021-10-16 13:36:22
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.303.25.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.16400.2
Error code: 0x80072ee7
Error description: The server name or address could not be resolved
Date: 2021-10-16 13:36:22
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.303.25.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiSpyware
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.16400.2
Error code: 0x80072ee7
Error description: The server name or address could not be resolved
Date: 2021-10-16 13:36:22
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.303.25.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.16400.2
Error code: 0x80072ee7
Error description: The server name or address could not be resolved
Date: 2021-10-16 13:36:22
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.303.25.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.16400.2
Error code: 0x80072ee7
Error description: The server name or address could not be resolved
Date: 2021-10-16 13:36:22
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.303.25.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiSpyware
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.16400.2
Error code: 0x80072ee7
Error description: The server name or address could not be resolved
==================== Memory info ===========================
BIOS: AMI F.40 07/29/2021
Motherboard: HP 8767
Processor: Intel® Core i5-10400F CPU @ 2.90GHz
Percentage of memory in use: 68%
Total physical RAM: 8059.37 MB
Available physical RAM: 2562.87 MB
Total Virtual: 9979.37 MB
Available Virtual: 1931.23 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:237.86 GB) (Free:175.58 GB) NTFS
?Volume{7b3462f6-0b52-4224-ad12-e32f8a0ef897} () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS
?Volume{4bc6f65b-eba8-4312-8b98-4b67fedf8bb9} () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: 17C96CFB)
Partition: GPT.
==================== End of Addition.txt =======================
Edited by Oh My!, Yesterday, 09:10 PM.
[ad_2]
Source link