Publicité
Publicité
Format du document : text/plain
Prévisualisation
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-09-2024
Ran by Admin (24-09-2024 19:13:13)
Running from D:\
Microsoft Windows 11 Pro Version 23H2 22631.4169 (X64) (2024-02-24 05:28:40)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Admin (S-1-5-21-2246425733-1572341141-2263144653-1001 - Administrator - Enabled) => C:\Users\Admin
Administrator (S-1-5-21-2246425733-1572341141-2263144653-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2246425733-1572341141-2263144653-503 - Limited - Disabled)
Guest (S-1-5-21-2246425733-1572341141-2263144653-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2246425733-1572341141-2263144653-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Malwarebytes (Enabled - Up to date) {0D452135-A081-B000-D6B6-132E52638543}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Ableton Live 12 Suite (HKLM\...\{E107EAC0-8655-4161-8582-8494EC0590A6}) (Version: 12.0.0.0 - Ableton) Hidden
Ableton Live 12 Suite (HKLM-x32\...\{14a63b0f-986f-479c-98b3-725e24892b0c}) (Version: 12.0.0.0 - Ableton)
Ableton Push Driver v5.57.0 (HKLM\...\{2143CAA3-2BA4-4073-93D1-E440A65F42CD}) (Version: 5.57.0 - Ableton) Hidden
Acid V 1.1.1 (HKLM-x32\...\Acid V_is1) (Version: 1.1.1 - Arturia)
Amazon.com Fire_Devices (HKLM\...\Fire_Devices Drivers) (Version: 2 - Amazon.com)
Analog Lab V 5.10.1 (HKLM-x32\...\Analog Lab V_is1) (Version: 5.10.1 - Arturia)
Ankama Launcher 3.12.10 (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\410fcd79-1be8-5bf1-986e-ea09c55f7edf) (Version: 3.12.10 - Ankama)
Antares Auto-Tune Pro (HKLM\...\Antares Auto-Tune Pro_is1) (Version: 10.3.1 - Antares & Team V.R)
AOMEI Partition Assistant 10.4.0 (HKLM-x32\...\{04F850ED-FD0F-4ED1-AE1B-4498165BF3D2}_is1) (Version: 10.4.0 - AOMEI International Network Limited.)
ARP 2600 V3 3.13.0 (HKLM-x32\...\ARP 2600 V3_is1) (Version: 3.13.0 - Arturia)
Arturia MiniFuse Audio Driver v1.1.1 (HKLM-x32\...\Software_Arturia_arturiaminifuseusbaudio_Setup) (Version: 1.1.1 - Arturia)
Arturia Software Center 2.7.2 (HKLM-x32\...\Arturia Software Center_is1) (Version: 2.7.2 - Arturia)
AudioFuse Control Center 2.2.1 (HKLM\...\AudioFuse Control Center_is1) (Version: 2.2.1 - Arturia)
AudioFuse USB Audio Driver v2.0.0 (HKLM\...\{EF081BD3-4190-426A-8459-6132085AE14F}) (Version: 2.0.0 - Arturia)
Augmented BRASS 1.1.0 (HKLM-x32\...\Augmented BRASS_is1) (Version: 1.1.0 - Arturia)
Augmented GRAND PIANO 1.6.0 (HKLM-x32\...\Augmented GRAND PIANO_is1) (Version: 1.6.0 - Arturia)
Augmented STRINGS 1.6.0 (HKLM-x32\...\Augmented STRINGS_is1) (Version: 1.6.0 - Arturia)
Augmented VOICES 1.6.0 (HKLM-x32\...\Augmented VOICES_is1) (Version: 1.6.0 - Arturia)
Augmented WOODWINDS 1.0.0 (HKLM-x32\...\Augmented WOODWINDS_is1) (Version: 1.0.0 - Arturia)
AutoHotkey (HKLM\...\AutoHotkey) (Version: 2.0.11 - AutoHotkey Foundation LLC)
B-3 V2 2.9.1 (HKLM-x32\...\B-3 V2_is1) (Version: 2.9.1 - Arturia)
Battery Calibration (HKLM-x32\...\InstallShield_{634AC01E-49DB-4AD2-B87C-90D4DCC6AFA1}) (Version: 1.0.1609.1901 - Micro-Star International Co., Ltd.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield⢠V (HKLM-x32\...\{e26b382f-e945-4f70-9318-121b683f1d61}) (Version: 1.0.77.34058 - Electronic Arts)
Buchla Easel V 1.13.0 (HKLM-x32\...\Buchla Easel V_is1) (Version: 1.13.0 - Arturia)
Bus FORCE 1.3.0 (HKLM-x32\...\Bus FORCE_is1) (Version: 1.3.0 - Arturia)
CapCut (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\CapCut) (Version: 3.8.0.1431 - Bytedance Pte. Ltd.)
Cheat Engine 7.5 (HKLM\...\Cheat Engine_is1) (Version: - Cheat Engine)
Chorus DIMENSION-D 1.4.0 (HKLM-x32\...\Chorus DIMENSION-D_is1) (Version: 1.4.0 - Arturia)
Chorus JUN-6 1.4.0 (HKLM-x32\...\Chorus JUN-6_is1) (Version: 1.4.0 - Arturia)
Clavinet V 1.13.0 (HKLM-x32\...\Clavinet V_is1) (Version: 1.13.0 - Arturia)
CMI V 1.13.0 (HKLM-x32\...\CMI V_is1) (Version: 1.13.0 - Arturia)
Comp DIODE-609 1.3.0 (HKLM-x32\...\Comp DIODE-609_is1) (Version: 1.3.0 - Arturia)
Comp FET-76 1.6.0 (HKLM-x32\...\Comp FET-76_is1) (Version: 1.6.0 - Arturia)
Comp TUBE-STA 1.6.0 (HKLM-x32\...\Comp TUBE-STA_is1) (Version: 1.6.0 - Arturia)
Comp VCA-65 1.6.0 (HKLM-x32\...\Comp VCA-65_is1) (Version: 1.6.0 - Arturia)
CP-70 V 1.0.0 (HKLM-x32\...\CP-70 V_is1) (Version: 1.0.0 - Arturia)
CS-80 V4 4.3.0 (HKLM-x32\...\CS-80 V4_is1) (Version: 4.3.0 - Arturia)
CyberLink PowerDirector 365 (HKLM-x32\...\{678184FC-3343-4125-8098-01B6032F8BB2}) (Version: 22.3.2808.0 - CyberLink Corp.)
CZ V 1.9.0 (HKLM-x32\...\CZ V_is1) (Version: 1.9.0 - Arturia)
Delay BRIGADE 1.6.0 (HKLM-x32\...\Delay BRIGADE_is1) (Version: 1.6.0 - Arturia)
Delay ETERNITY 1.6.0 (HKLM-x32\...\Delay ETERNITY_is1) (Version: 1.6.0 - Arturia)
Delay TAPE-201 1.6.0 (HKLM-x32\...\Delay TAPE-201_is1) (Version: 1.6.0 - Arturia)
Discord (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\Discord) (Version: 1.0.9034 - Discord Inc.)
Disk Drill 5.5.900.0 (HKLM-x32\...\{bf17c798-887e-4516-8036-35d6e0649a36}) (Version: 5.5.900.0 - CleverFiles)
Disk Drill 5.5.900.0 (x64) (HKLM\...\{4E4DB27B-ACF9-4F10-8D53-9A0463612025}) (Version: 5.5.900.0 - CleverFiles) Hidden
Dist COLDFIRE 1.1.0 (HKLM-x32\...\Dist COLDFIRE_is1) (Version: 1.1.0 - Arturia)
Dist OPAMP-21 1.1.0 (HKLM-x32\...\Dist OPAMP-21_is1) (Version: 1.1.0 - Arturia)
Dist TUBE-CULTURE 1.1.1 (HKLM-x32\...\Dist TUBE-CULTURE_is1) (Version: 1.1.1 - Arturia)
Dokan Library 1.5.1.1000 (x64) (HKLM\...\{65A3A964-3DC3-0105-0001-211126123627}) (Version: 1.5.1.1000 - Dokany Project) Hidden
Dokan Library 1.5.1.1000 Bundle (HKLM-x32\...\{05c046de-f751-48c8-b8d3-77259ea88eb7}) (Version: 1.5.1.1000 - Dokany Project)
DownloadHelper CoApp (HKLM-x32\...\DownloadHelper CoApp) (Version: 2.0.19.0 - ACLAP)
Dragon Center (HKLM-x32\...\InstallShield_{C65B26BC-5A6F-4135-9678-55A877655471}) (Version: 2.6.2005.0601 - Micro-Star International Co., Ltd.)
DX7 V 1.13.0 (HKLM-x32\...\DX7 V_is1) (Version: 1.13.0 - Arturia)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.297.0.5810 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{c91d427c-5fb4-4c67-be46-7168c5b05eec}) (Version: 13.297.0.5810 - Electronic Arts)
Efx FRAGMENTS 1.2.0 (HKLM-x32\...\Efx FRAGMENTS_is1) (Version: 1.2.0 - Arturia)
Efx REFRACT 1.0.0 (HKLM-x32\...\Efx REFRACT_is1) (Version: 1.0.0 - Arturia)
Emulator II V 1.6.0 (HKLM-x32\...\Emulator II V_is1) (Version: 1.6.0 - Arturia)
Epic Games Launcher (HKLM-x32\...\{B85FAA6E-A9AA-4655-9029-E1A4EDC05E1A}) (Version: 1.3.93.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{57A956AB-4BCC-45C6-9B40-957E4E125568}) (Version: 2.0.44.0 - Epic Games, Inc.)
EQ SITRAL-295 1.3.0 (HKLM-x32\...\EQ SITRAL-295_is1) (Version: 1.3.0 - Arturia)
Eraser 6.2.0.2993 (HKLM\...\{82602EDA-27BE-4358-AB3A-BD09EA51A1E6}) (Version: 6.2.2993 - The Eraser Project)
f.lux (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\Flux) (Version: 4.134 - f.lux Software LLC)
FabFilter Total Bundle (HKLM\...\FabFilter Total Bundle_is1) (Version: 2024.02.05 - FabFilter)
Farfisa V 1.13.0 (HKLM-x32\...\Farfisa V_is1) (Version: 1.13.0 - Arturia)
Filter M12 1.7.0 (HKLM-x32\...\Filter M12_is1) (Version: 1.7.0 - Arturia)
Filter MINI 1.8.0 (HKLM-x32\...\Filter MINI_is1) (Version: 1.8.0 - Arturia)
Filter MS-20 1.1.0 (HKLM-x32\...\Filter MS-20_is1) (Version: 1.1.0 - Arturia)
Filter SEM 1.7.0 (HKLM-x32\...\Filter SEM_is1) (Version: 1.7.0 - Arturia)
Fire Toolbox V33.1 version � (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\{A6CD7E8F-BACC-42D5-A36D-D40D6EAC5E87}_is1) (Version: � - Datastream)
Flanger BL-20 1.4.0 (HKLM-x32\...\Flanger BL-20_is1) (Version: 1.4.0 - Arturia)
Folder Size (64-bit) (HKLM\...\{F24FF688-7138-4CCF-A83F-71E9FB01170E}) (Version: 2.6 - Brio)
FormatFactory 5.17.0.0 (HKLM-x32\...\FormatFactory) (Version: 5.17.0.0 - Free Time)
GIMP 2.10.38 (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\GIMP-2_is1) (Version: 2.10.38 - The GIMP Team)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Help Desk (HKLM-x32\...\InstallShield_{7E8181AF-9679-49B3-B133-C265709B6927}) (Version: 1.0.1802.0501 - Micro-Star International Co., Ltd.)
IK Multimedia AmpliTube 5 (HKLM\...\IK Multimedia AmpliTube 5_is1) (Version: 5.7.0 - IK Multimedia)
iZotope Meter Tap 3 (HKLM\...\Meter Tap 3_is1) (Version: 1.0.4 - iZotope)
iZotope Ozone Pro (HKLM\...\iZotope Ozone Pro_is1) (Version: 10.4.0 - iZotope)
Jun-6 V 1.6.1 (HKLM-x32\...\Jun-6 V_is1) (Version: 1.6.1 - Arturia)
Jup-8 V4 4.6.0 (HKLM-x32\...\Jup-8 V4_is1) (Version: 4.6.0 - Arturia)
KORG MS-20 V 1.3.0 (HKLM-x32\...\KORG MS-20 V_is1) (Version: 1.3.0 - Arturia)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LibreOffice 24.2.0.3 (HKLM\...\{5A433714-C509-4707-BF0C-410D3FBCE8B3}) (Version: 24.2.0.3 - The Document Foundation)
Malwarebytes version 5.1.7.121 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.1.7.121 - Malwarebytes)
Matrix-12 V2 2.13.0 (HKLM-x32\...\Matrix-12 V2_is1) (Version: 2.13.0 - Arturia)
Mellotron V 1.9.1 (HKLM-x32\...\Mellotron V_is1) (Version: 1.9.1 - Arturia)
Messenger (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\c1b3adcf-2068-5e8d-b25d-30ce588e3a4c) (Version: 215.3.624227262 - Facebook, Inc.)
Microsoft .NET Host - 6.0.32 (x64) (HKLM\...\{A09F8381-88C3-44C4-9DAB-AC44F4F4DB4B}) (Version: 48.128.16743 - Microsoft Corporation) Hidden
Microsoft .NET Host - 7.0.16 (x64) (HKLM\...\{9F51D16B-42E8-4A4A-8228-75045541A2AE}) (Version: 56.64.8781 - Microsoft Corporation) Hidden
Microsoft .NET Host - 8.0.7 (x64) (HKLM\...\{E424D6A6-FA28-41E2-8356-B59519A84BB0}) (Version: 64.28.16731 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.32 (x64) (HKLM\...\{667CB653-70E1-4E2B-9C8E-6A02A6CF88B9}) (Version: 48.128.16743 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 7.0.16 (x64) (HKLM\...\{1B690A4C-381A-40D4-BA4A-3F8ACD5CE797}) (Version: 56.64.8781 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.7 (x64) (HKLM\...\{3E3E3302-0CAD-4D0D-B6C0-206B30773468}) (Version: 64.28.16731 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.32 (x64) (HKLM\...\{3FDCF0A2-7C1F-41C7-9749-0D91EC216AED}) (Version: 48.128.16743 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 7.0.16 (x64) (HKLM\...\{CE4D7AE0-FCBA-486F-A58F-DBA3626FBE4B}) (Version: 56.64.8781 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.7 (x64) (HKLM\...\{CA4FE2DB-2E1C-453B-B8C9-960AB929E5B4}) (Version: 64.28.16731 - Microsoft Corporation) Hidden
Microsoft 365 Apps for enterprise - fr-fr (HKLM\...\O365ProPlusRetail - fr-fr) (Version: 16.0.17928.20156 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 128.0.2739.79 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 128.0.2739.79 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 24.166.0818.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.38.33135 (HKLM-x32\...\{c649ede4-f16a-4486-a117-dcc2f2a35165}) (Version: 14.38.33135.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.36.32532 (HKLM-x32\...\{410c0ee1-00bb-41b6-9772-e12c2828b02f}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.38.33135 (HKLM\...\{19AFE054-CA83-45D5-A9DB-4108EF4BD391}) (Version: 14.38.33135 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.38.33135 (HKLM\...\{AA0C8AB5-7297-4D46-A0D9-08096FE59E46}) (Version: 14.38.33135 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.36.32532 (HKLM-x32\...\{C2C59CAB-8766-4ABD-A8EF-1151A36C41E5}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.36.32532 (HKLM-x32\...\{73F77E4E-5A17-46E5-A5FC-8A061047725F}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.32 (x64) (HKLM\...\{885F1CFB-4EAC-4C60-97B8-394BD65ED91E}) (Version: 48.128.16742 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.32 (x64) (HKLM-x32\...\{1bb295e8-8251-4404-96f1-c437da87fce0}) (Version: 6.0.32.33814 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 7.0.16 (x64) (HKLM\...\{01B2627D-8443-41C0-97F0-9F72AC2FD6A0}) (Version: 56.64.8804 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 7.0.16 (x64) (HKLM-x32\...\{ef5af41f-d68c-48f7-bfb0-5055718601fc}) (Version: 7.0.16.33318 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 8.0.7 (x64) (HKLM\...\{F6FBF64F-D459-4F03-BF3B-C0A36A0596A2}) (Version: 64.28.16739 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.7 (x64) (HKLM-x32\...\{754bcfb5-42ac-4c12-8f12-b818943a1365}) (Version: 8.0.7.33814 - Microsoft Corporation)
Mini V3 3.12.0 (HKLM-x32\...\Mini V3_is1) (Version: 3.12.0 - Arturia)
Mini V4 4.0.0 (HKLM-x32\...\Mini V4_is1) (Version: 4.0.0 - Arturia)
MiniBrute V 1.0.0 (HKLM-x32\...\MiniBrute V_is1) (Version: 1.0.0 - Arturia)
MiniFreak V 2.0.0 (HKLM-x32\...\MiniFreak V_is1) (Version: 2.0.0 - Arturia)
MiniFuse Control Center 1.1.1 (HKLM\...\MiniFuse Control Center_is1) (Version: 1.1.1 - Arturia)
Modular V3 3.13.0 (HKLM-x32\...\Modular V3_is1) (Version: 3.13.0 - Arturia)
Mouse Controller version 1.11.3.0 (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\{558409e4-71ad-4b5f-9db7-15e987d0e3aa}_is1) (Version: 1.11.3.0 - MuGiRi Software Development)
Mozilla Firefox (x64 en-US) (HKLM\...\Mozilla Firefox 130.0 (x64 en-US)) (Version: 130.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 129.0.1 - Mozilla)
Mozilla Thunderbird (x64 fr) (HKLM\...\Mozilla Thunderbird 115.8.1 (x64 fr)) (Version: 115.8.1 - Mozilla)
Mozilla Thunderbird (x64 fr) (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\Mozilla Thunderbird 115.13.0 (x64 fr)) (Version: 115.13.0 - Mozilla)
Mozilla VPN (HKLM\...\{2F491215-D718-4713-9071-87C571248738}) (Version: 2.22.1.0 - Mozilla Corporation)
MSI Afterburner 4.6.5 (HKLM-x32\...\Afterburner) (Version: 4.6.5 - MSI Co., LTD)
Muramasa Electrum (HKLM\...\Muramasa Electrum_is1) (Version: 2.0 - Muramasa)
MuseScore 4 (HKLM\...\{649E6B31-1D3A-4D0C-935B-5CC90F29BEC3}) (Version: 4.2.1.240230937 - MuseScore BVBA and Others)
Native Instruments Kontakt 7 (HKLM-x32\...\Native Instruments Kontakt 7) (Version: 7.10.1.0 - Native Instruments)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.28.0.417 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.28.0.417 - NVIDIA Corporation)
NVIDIA Graphics Driver 551.76 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 551.76 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.17928.20156 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.17928.20156 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.17928.20156 - Microsoft Corporation) Hidden
OP Auto Clicker (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\OP Auto Clicker_is1) (Version: V4.0 - OP Auto Clicker)
OpenShot Video Editor 3.1.1 (HKLM\...\{4BB0DCDC-BC24-49EC-8937-72956C33A470}_is1) (Version: 3.1.1 - OpenShot Studios, LLC)
OP-Xa V 1.7.0 (HKLM-x32\...\OP-Xa V_is1) (Version: 1.7.0 - Arturia)
Phaser BI-TRON 1.4.0 (HKLM-x32\...\Phaser BI-TRON_is1) (Version: 1.4.0 - Arturia)
Piano V3 3.3.0 (HKLM-x32\...\Piano V3_is1) (Version: 3.3.0 - Arturia)
Pigments 5.0.2 (HKLM-x32\...\Pigments_is1) (Version: 5.0.2 - Arturia)
Pre 1973 1.7.0 (HKLM-x32\...\Pre 1973_is1) (Version: 1.7.0 - Arturia)
Pre TridA 1.7.0 (HKLM-x32\...\Pre TridA_is1) (Version: 1.7.0 - Arturia)
Pre V76 1.7.0 (HKLM-x32\...\Pre V76_is1) (Version: 1.7.0 - Arturia)
Prophet-5 V 1.3.0 (HKLM-x32\...\Prophet-5 V_is1) (Version: 1.3.0 - Arturia)
Prophet-VS V 1.3.0 (HKLM-x32\...\Prophet-VS V_is1) (Version: 1.3.0 - Arturia)
Proton Drive (HKLM\...\{EF09DE4F-015C-435F-B51D-E3FD62C70F8B}) (Version: 1.6.2 - Proton AG) Hidden
Proton Drive (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\{B6F53ED2-348F-4CF0-910F-A17E69E9ED97}) (Version: 1.6.2 - Proton AG)
Proton VPN (HKLM\...\Proton VPN_is1) (Version: 3.2.12 - Proton AG)
qBittorrent (HKLM-x32\...\qBittorrent) (Version: 4.6.5 - The qBittorrent project)
Quick Photo Finder (HKLM\...\{3505B943-A3D0-4374-8D36-DD91A3CACD4A}_is1) (Version: 1.0.0.4 - Digital Protection Services S.R.L)
REAPER (x64) (HKLM\...\REAPER) (Version: 7.18 - Cockos Incorporated)
Rev INTENSITY 1.5.0 (HKLM-x32\...\Rev INTENSITY_is1) (Version: 1.5.0 - Arturia)
Rev PLATE-140 1.6.0 (HKLM-x32\...\Rev PLATE-140_is1) (Version: 1.6.0 - Arturia)
Rev SPRING-636 1.5.0 (HKLM-x32\...\Rev SPRING-636_is1) (Version: 1.5.0 - Arturia)
RivaTuner Statistics Server 7.3.4 (HKLM-x32\...\RTSS) (Version: 7.3.4 - Unwinder)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.85.1858 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.2.7.3 - Rockstar Games)
SEM V2 2.13.0 (HKLM-x32\...\SEM V2_is1) (Version: 2.13.0 - Arturia)
Shotcut (HKLM\...\Shotcut_is1) (Version: 24.02.29 - Meltytech)
Signal 7.24.1 (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\7d96caee-06e6-597c-9f2f-c7bb2e0948b4) (Version: 7.24.1 - Signal Messenger, LLC)
Solina V2 2.13.0 (HKLM-x32\...\Solina V2_is1) (Version: 2.13.0 - Arturia)
Spitfire Audio version 3.4.10 (HKLM-x32\...\{ABC5F486-25BD-4BAA-9FA1-A84152CBB563}_is1) (Version: 3.4.10 - Spitfire Audio Holdings Ltd)
SQ80 V 1.6.0 (HKLM-x32\...\SQ80 V_is1) (Version: 1.6.0 - Arturia)
Stage-73 V2 2.6.1 (HKLM-x32\...\Stage-73 V2_is1) (Version: 2.6.1 - Arturia)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stremio (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\Stremio) (Version: 4.4.168 - Smart Code Ltd)
Synclavier V 2.13.0 (HKLM-x32\...\Synclavier V_is1) (Version: 2.13.0 - Arturia)
Synthi V 1.9.0 (HKLM-x32\...\Synthi V_is1) (Version: 1.9.0 - Arturia)
Tape MELLO-FI 1.3.0 (HKLM-x32\...\Tape MELLO-FI_is1) (Version: 1.3.0 - Arturia)
VeraCrypt (HKLM-x32\...\VeraCrypt) (Version: 1.26.7 - IDRIX)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.20 - VideoLAN)
Vocoder V 1.6.0 (HKLM-x32\...\Vocoder V_is1) (Version: 1.6.0 - Arturia)
Vortex (HKLM\...\57979c68-f490-55b8-8fed-8b017a5af2fe) (Version: 1.12.0 - Black Tree Gaming Ltd.)
VOX Continental V2 2.13.0 (HKLM-x32\...\VOX Continental V2_is1) (Version: 2.13.0 - Arturia)
Vysor (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\vysor) (Version: 5.0.7 - Vysor Inc.)
WeMod (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\WeMod) (Version: 9.8.0 - WeMod)
Wildlander Launcher 2.19.0 (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\fac0cdda-b581-5a1a-ac45-70ba9218df05) (Version: 2.19.0 - Wildlander)
Windows Driver Package - Amazon.com (WinUSB) FireDevicesUsbDeviceClass (10/27/2014 1.4.0000.00000) (HKLM\...\34134A59F616767F2CEC57DC0849834538166E22) (Version: 10/27/2014 1.4.0000.00000 - Amazon.com)
WinRAR 6.24 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.24.0 - win.rar GmbH)
Wise Duplicate Finder (HKLM-x32\...\Wise Duplicate Finder_is1) (Version: 2.1.1 - Lespeed Technology Co., Ltd.)
Wondershare Filmora 13(Build 13.0.25.4414) (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\Wondershare Filmora 13_is1) (Version: - Wondershare Software)
Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare)
Wondershare NativePush(Build 1.0.1.0) (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\Wondershare NativePush_is1) (Version: - Wondershare Software)
Wurli V2 2.12.0 (HKLM-x32\...\Wurli V2_is1) (Version: 2.12.0 - Arturia)
Wurli V3 3.0.0 (HKLM-x32\...\Wurli V3_is1) (Version: 3.0.0 - Arturia)
Xfer Records Serum 1.35b1 (HKLM\...\Xfer Records Serum 1.35b1-r4e_is1) (Version: 1.35b1 - Xfer Records)
XLN Audio Addictive Drums 2 (HKLM\...\Addictive Drums 2_is1) (Version: 2.2.5.6 - XLN Audio)
Packages:
=========
Alarm Clock HD -> C:\Program Files\WindowsApps\AntaraSoftware.AlarmClockHD_7.0.0.0_x64__7jhd16s0b93qm [2024-08-31] (ANTARA SOFTWARE and CONSULTING PRIVATE LIMITED)
AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5635.0_x64__8j3eq9eme6ctt [2024-09-17] (INTEL CORP) [Startup Task]
Microsoft Teams (work or school) -> C:\Program Files\WindowsApps\MSTeams_24004.1309.2689.2246_x64__8wekyb3d8bbwe [2024-03-12] (Microsoft) [Startup Task]
Microsoft.BingSearch -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.0.95.0_x64__8wekyb3d8bbwe [2024-07-23] (Microsoft Corporation)
Microsoft.StartExperiencesApp -> C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.144.0_x64__8wekyb3d8bbwe [2024-09-10] (Microsoft Corporation) [Startup Task]
MicrosoftWindows.CrossDevice -> C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24081.55.0_x64__cw5n1h2txyewy [2024-09-05] (Microsoft Windows) [Startup Task]
Move Mouse -> C:\Program Files\WindowsApps\1258EllAbi.MoveMouse_4.18.2.0_x64__hjfwaxvfbwh7t [2024-06-18] (ellabi) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.966.0_x64__56jybvy8sckqj [2024-04-28] (NVIDIA Corp.)
Photos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2024.11070.31001.0_x64__8wekyb3d8bbwe [2024-08-02] (Microsoft Corporation) [Startup Task]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.51.327.0_x64__dt26b99r8h8gj [2024-09-17] (Realtek Semiconductor Corp)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2435.4.0_x64__cv1g1gvanyjgm [2024-09-10] (WhatsApp Inc.) [Startup Task]
Widgets Platform Runtime -> C:\Program Files\WindowsApps\Microsoft.WidgetsPlatformRuntime_1.4.0.0_x64__8wekyb3d8bbwe [2024-09-06] (Microsoft Corporation)
WinAppRuntime.Main.1.5 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.5_5001.214.1843.0_x64__8wekyb3d8bbwe [2024-08-18] (Microsoft Corp.)
WinAppRuntime.Singleton -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton_6000.242.101.0_x64__8wekyb3d8bbwe [2024-09-06] (Microsoft Corp.)
Windows Feature Experience Pack -> C:\Windows\SystemApps\LKG\MicrosoftWindows.LKG.AccountsService_cw5n1h2txyewy [2024-09-11] (Microsoft Windows)
Windows Feature Experience Pack -> C:\Windows\SystemApps\LKG\MicrosoftWindows.LKG.DesktopSpotlight_cw5n1h2txyewy [2024-09-11] (Microsoft Windows)
Windows Feature Experience Pack -> C:\Windows\SystemApps\LKG\MicrosoftWindows.LKG.IrisService_cw5n1h2txyewy [2024-09-11] (Microsoft Windows)
WinRAR -> C:\Program Files\WinRAR [2024-03-15] (win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2246425733-1572341141-2263144653-1001_Classes\CLSID\{04271989-C4D2-F93F-6589-6297B5AF6FEB} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-2246425733-1572341141-2263144653-1001_Classes\CLSID\{14100442-9664-1407-2647-000000000000}\localserver32 -> C:\Users\Admin\AppData\Local\Wondershare\Wondershare NativePush\WsToastNotification.exe (Wondershare Technology Group Co.,Ltd -> Wondershare)
CustomCLSID: HKU\S-1-5-21-2246425733-1572341141-2263144653-1001_Classes\CLSID\{1dcb280c-9699-aefe-803c-2007c35cbb5a}\localserver32 -> C:\Users\Admin\AppData\Local\Programs\Proton\Drive\ProtonDrive.exe (Proton AG -> Proton AG)
CustomCLSID: HKU\S-1-5-21-2246425733-1572341141-2263144653-1001_Classes\CLSID\{50726f74-6f6e-2e56-504e-000000000000}\localserver32 -> C:\Program Files\Proton\VPN\v3.2.12\ProtonVPN.exe (Proton AG -> )
CustomCLSID: HKU\S-1-5-21-2246425733-1572341141-2263144653-1001_Classes\CLSID\{6b4aeb40-3ff6-4d02-9571-8caac87567ac}\InprocServer32 -> D:\Programmes\Thunderbird\notificationserver.dll => No File
CustomCLSID: HKU\S-1-5-21-2246425733-1572341141-2263144653-1001_Classes\CLSID\{C4DB226C-69DA-41D4-BA44-EA2454B7F66E} -> [Proton Drive] => C:\Users\Admin\Proton Drive\alexandre.bonin [2024-07-29 19:07]
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2021-09-25] (Heidi Computers Ltd -> The Eraser Project)
ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => D:\Programmes\Format Factory\ShellEx_108.dll -> No File
ContextMenuHandlers2: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2021-09-25] (Heidi Computers Ltd -> The Eraser Project)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\Programmes\Malwarebytes\mbshlext.dll -> No File
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2021-09-25] (Heidi Computers Ltd -> The Eraser Project)
ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => D:\Programmes\Format Factory\ShellEx_108.dll -> No File
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2021-09-25] (Heidi Computers Ltd -> The Eraser Project)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_3594fcc1d16e3924\nvshext.dll [2024-03-02] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2021-09-25] (Heidi Computers Ltd -> The Eraser Project)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\Programmes\Malwarebytes\mbshlext.dll -> No File
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2018-11-23 05:01 - 2018-11-23 05:01 - 000438784 _____ (A-Volute) [File not signed] C:\Program Files (x86)\MSI\Dragon Center\YooMixCOM.dll
2016-08-10 18:34 - 2016-08-10 18:34 - 000047816 _____ (MICRO-STAR INTERNATIONAL CO., LTD -> www.internals.com) [File not signed] C:\Program Files (x86)\MSI\Dragon Center\MSIAPP_Service\WinIo64.dll
2015-06-11 17:35 - 2015-06-11 17:35 - 000047816 _____ (MICRO-STAR INTERNATIONAL CO., LTD -> www.internals.com) [File not signed] C:\Program Files (x86)\MSI\Dragon Center\WinIo64.dll
2018-08-01 07:54 - 2018-08-01 07:54 - 000014632 _____ (Micro-Star International CO., LTD. -> ) [File not signed] C:\Program Files (x86)\MSI\Dragon Center\UEFIVaribleDll.dll
2024-09-13 09:53 - 2024-09-13 09:53 - 002849280 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\libcrypto-1_1-x64.dll
2024-09-13 09:53 - 2024-09-13 09:53 - 000685056 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\libssl-1_1-x64.dll
2024-09-13 09:53 - 2024-09-13 09:53 - 000046592 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\bearer\qgenericbearer.dll
2024-09-13 09:53 - 2024-09-13 09:53 - 006270976 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5Core.dll
2024-09-13 09:53 - 2024-09-13 09:53 - 001389568 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5Network.dll
2024-09-13 09:53 - 2024-09-13 09:53 - 000157184 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5WebSockets.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\Admin\Downloads\MozillaVPN.msi:MBAM.Zone.Identifier [148]
AlternateDataStreams: C:\Users\Admin\Downloads\qbittorrent_4.6.3_x64_setup.exe:MBAM.Zone.Identifier [345]
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2024-08-07] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2024-08-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-08-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-08-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-08-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-08-31] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\sharepoint.com -> hxxps://univtoursfr-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2024-05-31 20:53 - 2024-08-16 12:55 - 000000768 _____ C:\Windows\system32\drivers\etc\hosts
0.0.0.0 www.aomeitech.com
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\Control Panel\Desktop\\Wallpaper -> D:\Documents\maxresdefault.jpg
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
Network Binding:
=============
Wi-Fi: Intel(R) Wireless-AC 9560 160MHz -> Netwtw08.sys
Ethernet: Realtek PCIe GbE Family Controller -> rtcx21x64.sys
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_5EFC0ECB77A7585FE9DCDD0B2E946A2B"
HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\StartupApproved\Run: => "Steam"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [TCP Query User{49C761E0-F886-4606-B7E2-9258A31F0519}C:\users\admin\appdata\local\wondershare\wondershare nativepush\wstoastnotification.exe] => (Block) C:\users\admin\appdata\local\wondershare\wondershare nativepush\wstoastnotification.exe (Wondershare Technology Group Co.,Ltd -> Wondershare)
FirewallRules: [UDP Query User{71A5A942-0169-4321-BC0E-513E6B0235E3}C:\users\admin\appdata\local\wondershare\wondershare nativepush\wstoastnotification.exe] => (Block) C:\users\admin\appdata\local\wondershare\wondershare nativepush\wstoastnotification.exe (Wondershare Technology Group Co.,Ltd -> Wondershare)
FirewallRules: [TCP Query User{F78BCBE9-BB62-44FD-B3D0-F93B56776DD5}D:\programmes\ea\battlefield v\bfv.exe] => (Allow) D:\programmes\ea\battlefield v\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [UDP Query User{00C641B0-11C4-4CA7-BAA4-6083B9449B0E}D:\programmes\ea\battlefield v\bfv.exe] => (Allow) D:\programmes\ea\battlefield v\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [TCP Query User{80FF300F-15F9-4DDF-94E3-FBD62793E8FD}D:\platform-tools-latest-windows\platform-tools\adb.exe] => (Allow) D:\platform-tools-latest-windows\platform-tools\adb.exe (Google LLC -> )
FirewallRules: [UDP Query User{F2A584D9-0F65-4E2C-A1F2-CD36B344DA46}D:\platform-tools-latest-windows\platform-tools\adb.exe] => (Allow) D:\platform-tools-latest-windows\platform-tools\adb.exe (Google LLC -> )
FirewallRules: [{F5CCB806-1FE6-4B18-8B61-92E716768B1A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F0E2CF03-2936-4EA7-B563-EFD0C9DC5F44}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C87789A2-B50F-450A-9165-5C3A8485CD8D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{72810D74-E669-4059-975C-A84B1FFC1ECD}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{345BEF79-9143-4A64-B674-6B92501C4751}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3E8A95CF-B756-4588-A834-79297566A8FE}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{E1437917-D703-4353-9635-DF15420AD0CE}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{2B5FABFD-4BD5-4EA9-A006-99E14B704D32}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{474DEECA-AFB1-4000-A968-4EF2E7DAFA66}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{8509F184-0B75-4F0F-A82C-8499085A1F55}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{314C4627-6718-4E4D-A836-F0D433A56277}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{AF2326F6-C258-470F-A00C-2DE46E9FE99B}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{8053831D-22B2-4D06-BC2B-7B8D6241B08A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{D0F64FC1-B119-430B-ACBA-FABC2DE2E488}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{B65875FC-0C13-4090-A6CB-B08D1AEB5144}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{D77E764F-9B93-4E18-85A4-FFAFF1BB3805}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{D788964D-542C-4186-9155-7C6460C967C7}] => (Allow) D:\Programmes\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{9AB4A86B-7534-43E7-856D-99C6871DDB07}] => (Allow) D:\Programmes\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{2C915F78-8AD8-4045-9C56-113FA94DC677}] => (Allow) D:\Programmes\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{5E0A6CBB-1DAD-40DB-A5D6-A3C160489B69}] => (Allow) D:\Programmes\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{E6518E27-B1CC-4EC9-B736-9CC81B4B861F}] => (Allow) D:\Programmes\Steam\steamapps\common\AoE2DE\AoE2DE_s.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{419AE51A-9526-4C51-A7CD-1AEA8A135A68}] => (Allow) D:\Programmes\Steam\steamapps\common\AoE2DE\AoE2DE_s.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BF1D2270-291E-4E0E-9749-D55DD7791E5C}] => (Allow) D:\Programmes\Steam\steamapps\common\AoE2DE\BattleServer\BattleServer.exe (Microsoft Corporation -> )
FirewallRules: [{B4537D8B-6463-48A9-BBB8-B4241A505FC2}] => (Allow) D:\Programmes\Steam\steamapps\common\AoE2DE\BattleServer\BattleServer.exe (Microsoft Corporation -> )
FirewallRules: [{D64A5540-6280-424F-97B2-15D579639364}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\129.0.2792.52\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:118.38 GB) (Free:11.65 GB) (10%)
==================== Faulty Device Manager Devices ============
Name: Android ADB Interface
Description: Android ADB Interface
Class Guid: {3f966bd9-fa04-4ec5-991c-d326973b5128}
Manufacturer: Google, Inc.
Service: WinUSB
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: PCI Device
Description: PCI Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: PCI Data Acquisition and Signal Processing Controller
Description: PCI Data Acquisition and Signal Processing Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: SM Bus Controller
Description: SM Bus Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: ========================
Application errors:
==================
Error: (09/17/2024 09:18:14 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT AUTHORITY)
Description: Windows cannot load the extensible counter DLL "C:\Windows\system32\sysmain.dll" (Win32 error code 126).
Error: (09/11/2024 07:15:12 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT AUTHORITY)
Description: Windows cannot load the extensible counter DLL "C:\Windows\system32\sysmain.dll" (Win32 error code 126).
Error: (09/10/2024 09:10:24 PM) (Source: Firefox Default Browser Agent) (EventID: 5) (User: )
Description: Event-ID 5
Error: (09/06/2024 09:08:54 AM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT AUTHORITY)
Description: Windows cannot load the extensible counter DLL "C:\Windows\system32\sysmain.dll" (Win32 error code 126).
Error: (09/03/2024 10:14:36 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT AUTHORITY)
Description: Windows cannot load the extensible counter DLL "C:\Windows\system32\sysmain.dll" (Win32 error code 126).
Error: (08/31/2024 11:26:00 AM) (Source: Firefox Default Browser Agent) (EventID: 5) (User: )
Description: Event-ID 5
Error: (08/21/2024 09:34:34 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT AUTHORITY)
Description: Windows cannot load the extensible counter DLL "C:\Windows\system32\sysmain.dll" (Win32 error code 126).
Error: (08/19/2024 05:08:38 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress..
System errors:
=============
Error: (09/24/2024 07:13:58 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80073d02: 9MSSGKG348SP-MicrosoftWindows.Client.WebExperience.
Error: (09/24/2024 07:13:05 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80073d02: 9NTXGKQ8P7N0-MicrosoftWindows.CrossDevice.
Error: (09/24/2024 07:11:39 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error -2147020471. For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (09/18/2024 06:00:01 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error -2147020471. For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (09/18/2024 05:34:23 PM) (Source: Netwtw08) (EventID: 5005) (User: )
Description: Intel(R) Wireless-AC 9560 160MHz : Has encountered an internal error and has failed.
5005 - Driver internal error
Error: (09/18/2024 05:34:23 PM) (Source: Netwtw08) (EventID: 5055) (User: )
Description: 5055 - HW error
Error: (09/18/2024 05:34:22 PM) (Source: Netwtw08) (EventID: 5005) (User: )
Description: Intel(R) Wireless-AC 9560 160MHz : Has encountered an internal error and has failed.
5005 - Driver internal error
Error: (09/18/2024 05:34:22 PM) (Source: Netwtw08) (EventID: 5007) (User: )
Description: 5007 - TX/CMD timeout (TfdQueue hanged)
Windows Defender:
================
Date: 2024-09-18 19:17:55
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2024-09-18 17:18:21
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2024-09-17 20:51:35
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2024-09-16 13:58:01
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2024-09-14 13:01:21
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Event[0]
Date: 2024-08-12 12:08:27
Description:
Microsoft Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: On Access
Error Code: 0x8007043c
Error description: This service cannot be started in Safe Mode
Reason: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.�
Date: 2024-08-10 20:50:35
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence and will attempt to revert to a previous version.
Security intelligence Attempted: Backup
Error Code: 0x80004004
Error description: Operation aborted
Security intelligence Version: 1.415.455.0;1.415.455.0
Engine Version: 1.1.24060.5�
Date: 2024-08-10 20:50:34
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence and will attempt to revert to a previous version.
Security intelligence Attempted: Current
Error Code: 0x80501102
Error description: An unexpected problem occurred. Install any available updates, and then try to start the program again. For information on installing updates, see Help and Support.
Security intelligence Version: 1.415.455.0;1.415.455.0
Engine Version: 1.1.24060.5�
Date: 2024-08-10 17:45:59
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.415.455.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.24060.5
Error code: 0x80240017
Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. �
Date: 2024-08-10 17:42:50
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence and will attempt to revert to a previous version.
Security intelligence Attempted: Backup
Error Code: 0x80004004
Error description: Operation aborted
Security intelligence Version: 1.415.455.0;1.415.455.0
Engine Version: 1.1.24060.5�
CodeIntegrity:
===============
Date: 2024-09-18 17:02:37
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\Admin\AppData\Local\Programs\signal-desktop\Signal.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\nvspcap64.dll that did not meet the Microsoft signing level requirements.�
==================== Memory info ===========================
BIOS: American Megatrends Inc. E16R3IMS.108 03/26/2020
Motherboard: Micro-Star International Co., Ltd. MS-16R3
Processor: Intel(R) Core(TM) i5-9300H CPU @ 2.40GHz
Percentage of memory in use: 56%
Total physical RAM: 16228.02 MB
Available physical RAM: 7061.01 MB
Total Virtual: 56228.02 MB
Available Virtual: 44919.91 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:118.38 GB) (Free:11.65 GB) (Model: SAMSUNG MZVLW128HEGR-00000) NTFS
Drive d: (New Volume) (Fixed) (Total:931.5 GB) (Free:647.41 GB) (Model: CT1000MX500SSD1) NTFS
\\?\Volume{fb64c188-eff3-4b18-b5de-8f930b6df035}\ () (Fixed) (Total:0.75 GB) (Free:0.06 GB) NTFS
\\?\Volume{9d93c5fc-4826-46a4-9ef6-5c969dcca456}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Size: 119.2 GB) (Disk ID: 0C95A92A)
Partition: GPT.
==================== End of Addition.txt =======================
Ran by Admin (24-09-2024 19:13:13)
Running from D:\
Microsoft Windows 11 Pro Version 23H2 22631.4169 (X64) (2024-02-24 05:28:40)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Admin (S-1-5-21-2246425733-1572341141-2263144653-1001 - Administrator - Enabled) => C:\Users\Admin
Administrator (S-1-5-21-2246425733-1572341141-2263144653-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2246425733-1572341141-2263144653-503 - Limited - Disabled)
Guest (S-1-5-21-2246425733-1572341141-2263144653-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2246425733-1572341141-2263144653-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Malwarebytes (Enabled - Up to date) {0D452135-A081-B000-D6B6-132E52638543}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Ableton Live 12 Suite (HKLM\...\{E107EAC0-8655-4161-8582-8494EC0590A6}) (Version: 12.0.0.0 - Ableton) Hidden
Ableton Live 12 Suite (HKLM-x32\...\{14a63b0f-986f-479c-98b3-725e24892b0c}) (Version: 12.0.0.0 - Ableton)
Ableton Push Driver v5.57.0 (HKLM\...\{2143CAA3-2BA4-4073-93D1-E440A65F42CD}) (Version: 5.57.0 - Ableton) Hidden
Acid V 1.1.1 (HKLM-x32\...\Acid V_is1) (Version: 1.1.1 - Arturia)
Amazon.com Fire_Devices (HKLM\...\Fire_Devices Drivers) (Version: 2 - Amazon.com)
Analog Lab V 5.10.1 (HKLM-x32\...\Analog Lab V_is1) (Version: 5.10.1 - Arturia)
Ankama Launcher 3.12.10 (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\410fcd79-1be8-5bf1-986e-ea09c55f7edf) (Version: 3.12.10 - Ankama)
Antares Auto-Tune Pro (HKLM\...\Antares Auto-Tune Pro_is1) (Version: 10.3.1 - Antares & Team V.R)
AOMEI Partition Assistant 10.4.0 (HKLM-x32\...\{04F850ED-FD0F-4ED1-AE1B-4498165BF3D2}_is1) (Version: 10.4.0 - AOMEI International Network Limited.)
ARP 2600 V3 3.13.0 (HKLM-x32\...\ARP 2600 V3_is1) (Version: 3.13.0 - Arturia)
Arturia MiniFuse Audio Driver v1.1.1 (HKLM-x32\...\Software_Arturia_arturiaminifuseusbaudio_Setup) (Version: 1.1.1 - Arturia)
Arturia Software Center 2.7.2 (HKLM-x32\...\Arturia Software Center_is1) (Version: 2.7.2 - Arturia)
AudioFuse Control Center 2.2.1 (HKLM\...\AudioFuse Control Center_is1) (Version: 2.2.1 - Arturia)
AudioFuse USB Audio Driver v2.0.0 (HKLM\...\{EF081BD3-4190-426A-8459-6132085AE14F}) (Version: 2.0.0 - Arturia)
Augmented BRASS 1.1.0 (HKLM-x32\...\Augmented BRASS_is1) (Version: 1.1.0 - Arturia)
Augmented GRAND PIANO 1.6.0 (HKLM-x32\...\Augmented GRAND PIANO_is1) (Version: 1.6.0 - Arturia)
Augmented STRINGS 1.6.0 (HKLM-x32\...\Augmented STRINGS_is1) (Version: 1.6.0 - Arturia)
Augmented VOICES 1.6.0 (HKLM-x32\...\Augmented VOICES_is1) (Version: 1.6.0 - Arturia)
Augmented WOODWINDS 1.0.0 (HKLM-x32\...\Augmented WOODWINDS_is1) (Version: 1.0.0 - Arturia)
AutoHotkey (HKLM\...\AutoHotkey) (Version: 2.0.11 - AutoHotkey Foundation LLC)
B-3 V2 2.9.1 (HKLM-x32\...\B-3 V2_is1) (Version: 2.9.1 - Arturia)
Battery Calibration (HKLM-x32\...\InstallShield_{634AC01E-49DB-4AD2-B87C-90D4DCC6AFA1}) (Version: 1.0.1609.1901 - Micro-Star International Co., Ltd.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield⢠V (HKLM-x32\...\{e26b382f-e945-4f70-9318-121b683f1d61}) (Version: 1.0.77.34058 - Electronic Arts)
Buchla Easel V 1.13.0 (HKLM-x32\...\Buchla Easel V_is1) (Version: 1.13.0 - Arturia)
Bus FORCE 1.3.0 (HKLM-x32\...\Bus FORCE_is1) (Version: 1.3.0 - Arturia)
CapCut (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\CapCut) (Version: 3.8.0.1431 - Bytedance Pte. Ltd.)
Cheat Engine 7.5 (HKLM\...\Cheat Engine_is1) (Version: - Cheat Engine)
Chorus DIMENSION-D 1.4.0 (HKLM-x32\...\Chorus DIMENSION-D_is1) (Version: 1.4.0 - Arturia)
Chorus JUN-6 1.4.0 (HKLM-x32\...\Chorus JUN-6_is1) (Version: 1.4.0 - Arturia)
Clavinet V 1.13.0 (HKLM-x32\...\Clavinet V_is1) (Version: 1.13.0 - Arturia)
CMI V 1.13.0 (HKLM-x32\...\CMI V_is1) (Version: 1.13.0 - Arturia)
Comp DIODE-609 1.3.0 (HKLM-x32\...\Comp DIODE-609_is1) (Version: 1.3.0 - Arturia)
Comp FET-76 1.6.0 (HKLM-x32\...\Comp FET-76_is1) (Version: 1.6.0 - Arturia)
Comp TUBE-STA 1.6.0 (HKLM-x32\...\Comp TUBE-STA_is1) (Version: 1.6.0 - Arturia)
Comp VCA-65 1.6.0 (HKLM-x32\...\Comp VCA-65_is1) (Version: 1.6.0 - Arturia)
CP-70 V 1.0.0 (HKLM-x32\...\CP-70 V_is1) (Version: 1.0.0 - Arturia)
CS-80 V4 4.3.0 (HKLM-x32\...\CS-80 V4_is1) (Version: 4.3.0 - Arturia)
CyberLink PowerDirector 365 (HKLM-x32\...\{678184FC-3343-4125-8098-01B6032F8BB2}) (Version: 22.3.2808.0 - CyberLink Corp.)
CZ V 1.9.0 (HKLM-x32\...\CZ V_is1) (Version: 1.9.0 - Arturia)
Delay BRIGADE 1.6.0 (HKLM-x32\...\Delay BRIGADE_is1) (Version: 1.6.0 - Arturia)
Delay ETERNITY 1.6.0 (HKLM-x32\...\Delay ETERNITY_is1) (Version: 1.6.0 - Arturia)
Delay TAPE-201 1.6.0 (HKLM-x32\...\Delay TAPE-201_is1) (Version: 1.6.0 - Arturia)
Discord (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\Discord) (Version: 1.0.9034 - Discord Inc.)
Disk Drill 5.5.900.0 (HKLM-x32\...\{bf17c798-887e-4516-8036-35d6e0649a36}) (Version: 5.5.900.0 - CleverFiles)
Disk Drill 5.5.900.0 (x64) (HKLM\...\{4E4DB27B-ACF9-4F10-8D53-9A0463612025}) (Version: 5.5.900.0 - CleverFiles) Hidden
Dist COLDFIRE 1.1.0 (HKLM-x32\...\Dist COLDFIRE_is1) (Version: 1.1.0 - Arturia)
Dist OPAMP-21 1.1.0 (HKLM-x32\...\Dist OPAMP-21_is1) (Version: 1.1.0 - Arturia)
Dist TUBE-CULTURE 1.1.1 (HKLM-x32\...\Dist TUBE-CULTURE_is1) (Version: 1.1.1 - Arturia)
Dokan Library 1.5.1.1000 (x64) (HKLM\...\{65A3A964-3DC3-0105-0001-211126123627}) (Version: 1.5.1.1000 - Dokany Project) Hidden
Dokan Library 1.5.1.1000 Bundle (HKLM-x32\...\{05c046de-f751-48c8-b8d3-77259ea88eb7}) (Version: 1.5.1.1000 - Dokany Project)
DownloadHelper CoApp (HKLM-x32\...\DownloadHelper CoApp) (Version: 2.0.19.0 - ACLAP)
Dragon Center (HKLM-x32\...\InstallShield_{C65B26BC-5A6F-4135-9678-55A877655471}) (Version: 2.6.2005.0601 - Micro-Star International Co., Ltd.)
DX7 V 1.13.0 (HKLM-x32\...\DX7 V_is1) (Version: 1.13.0 - Arturia)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.297.0.5810 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{c91d427c-5fb4-4c67-be46-7168c5b05eec}) (Version: 13.297.0.5810 - Electronic Arts)
Efx FRAGMENTS 1.2.0 (HKLM-x32\...\Efx FRAGMENTS_is1) (Version: 1.2.0 - Arturia)
Efx REFRACT 1.0.0 (HKLM-x32\...\Efx REFRACT_is1) (Version: 1.0.0 - Arturia)
Emulator II V 1.6.0 (HKLM-x32\...\Emulator II V_is1) (Version: 1.6.0 - Arturia)
Epic Games Launcher (HKLM-x32\...\{B85FAA6E-A9AA-4655-9029-E1A4EDC05E1A}) (Version: 1.3.93.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{57A956AB-4BCC-45C6-9B40-957E4E125568}) (Version: 2.0.44.0 - Epic Games, Inc.)
EQ SITRAL-295 1.3.0 (HKLM-x32\...\EQ SITRAL-295_is1) (Version: 1.3.0 - Arturia)
Eraser 6.2.0.2993 (HKLM\...\{82602EDA-27BE-4358-AB3A-BD09EA51A1E6}) (Version: 6.2.2993 - The Eraser Project)
f.lux (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\Flux) (Version: 4.134 - f.lux Software LLC)
FabFilter Total Bundle (HKLM\...\FabFilter Total Bundle_is1) (Version: 2024.02.05 - FabFilter)
Farfisa V 1.13.0 (HKLM-x32\...\Farfisa V_is1) (Version: 1.13.0 - Arturia)
Filter M12 1.7.0 (HKLM-x32\...\Filter M12_is1) (Version: 1.7.0 - Arturia)
Filter MINI 1.8.0 (HKLM-x32\...\Filter MINI_is1) (Version: 1.8.0 - Arturia)
Filter MS-20 1.1.0 (HKLM-x32\...\Filter MS-20_is1) (Version: 1.1.0 - Arturia)
Filter SEM 1.7.0 (HKLM-x32\...\Filter SEM_is1) (Version: 1.7.0 - Arturia)
Fire Toolbox V33.1 version � (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\{A6CD7E8F-BACC-42D5-A36D-D40D6EAC5E87}_is1) (Version: � - Datastream)
Flanger BL-20 1.4.0 (HKLM-x32\...\Flanger BL-20_is1) (Version: 1.4.0 - Arturia)
Folder Size (64-bit) (HKLM\...\{F24FF688-7138-4CCF-A83F-71E9FB01170E}) (Version: 2.6 - Brio)
FormatFactory 5.17.0.0 (HKLM-x32\...\FormatFactory) (Version: 5.17.0.0 - Free Time)
GIMP 2.10.38 (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\GIMP-2_is1) (Version: 2.10.38 - The GIMP Team)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Help Desk (HKLM-x32\...\InstallShield_{7E8181AF-9679-49B3-B133-C265709B6927}) (Version: 1.0.1802.0501 - Micro-Star International Co., Ltd.)
IK Multimedia AmpliTube 5 (HKLM\...\IK Multimedia AmpliTube 5_is1) (Version: 5.7.0 - IK Multimedia)
iZotope Meter Tap 3 (HKLM\...\Meter Tap 3_is1) (Version: 1.0.4 - iZotope)
iZotope Ozone Pro (HKLM\...\iZotope Ozone Pro_is1) (Version: 10.4.0 - iZotope)
Jun-6 V 1.6.1 (HKLM-x32\...\Jun-6 V_is1) (Version: 1.6.1 - Arturia)
Jup-8 V4 4.6.0 (HKLM-x32\...\Jup-8 V4_is1) (Version: 4.6.0 - Arturia)
KORG MS-20 V 1.3.0 (HKLM-x32\...\KORG MS-20 V_is1) (Version: 1.3.0 - Arturia)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LibreOffice 24.2.0.3 (HKLM\...\{5A433714-C509-4707-BF0C-410D3FBCE8B3}) (Version: 24.2.0.3 - The Document Foundation)
Malwarebytes version 5.1.7.121 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.1.7.121 - Malwarebytes)
Matrix-12 V2 2.13.0 (HKLM-x32\...\Matrix-12 V2_is1) (Version: 2.13.0 - Arturia)
Mellotron V 1.9.1 (HKLM-x32\...\Mellotron V_is1) (Version: 1.9.1 - Arturia)
Messenger (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\c1b3adcf-2068-5e8d-b25d-30ce588e3a4c) (Version: 215.3.624227262 - Facebook, Inc.)
Microsoft .NET Host - 6.0.32 (x64) (HKLM\...\{A09F8381-88C3-44C4-9DAB-AC44F4F4DB4B}) (Version: 48.128.16743 - Microsoft Corporation) Hidden
Microsoft .NET Host - 7.0.16 (x64) (HKLM\...\{9F51D16B-42E8-4A4A-8228-75045541A2AE}) (Version: 56.64.8781 - Microsoft Corporation) Hidden
Microsoft .NET Host - 8.0.7 (x64) (HKLM\...\{E424D6A6-FA28-41E2-8356-B59519A84BB0}) (Version: 64.28.16731 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.32 (x64) (HKLM\...\{667CB653-70E1-4E2B-9C8E-6A02A6CF88B9}) (Version: 48.128.16743 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 7.0.16 (x64) (HKLM\...\{1B690A4C-381A-40D4-BA4A-3F8ACD5CE797}) (Version: 56.64.8781 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.7 (x64) (HKLM\...\{3E3E3302-0CAD-4D0D-B6C0-206B30773468}) (Version: 64.28.16731 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.32 (x64) (HKLM\...\{3FDCF0A2-7C1F-41C7-9749-0D91EC216AED}) (Version: 48.128.16743 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 7.0.16 (x64) (HKLM\...\{CE4D7AE0-FCBA-486F-A58F-DBA3626FBE4B}) (Version: 56.64.8781 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.7 (x64) (HKLM\...\{CA4FE2DB-2E1C-453B-B8C9-960AB929E5B4}) (Version: 64.28.16731 - Microsoft Corporation) Hidden
Microsoft 365 Apps for enterprise - fr-fr (HKLM\...\O365ProPlusRetail - fr-fr) (Version: 16.0.17928.20156 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 128.0.2739.79 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 128.0.2739.79 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 24.166.0818.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.38.33135 (HKLM-x32\...\{c649ede4-f16a-4486-a117-dcc2f2a35165}) (Version: 14.38.33135.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.36.32532 (HKLM-x32\...\{410c0ee1-00bb-41b6-9772-e12c2828b02f}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.38.33135 (HKLM\...\{19AFE054-CA83-45D5-A9DB-4108EF4BD391}) (Version: 14.38.33135 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.38.33135 (HKLM\...\{AA0C8AB5-7297-4D46-A0D9-08096FE59E46}) (Version: 14.38.33135 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.36.32532 (HKLM-x32\...\{C2C59CAB-8766-4ABD-A8EF-1151A36C41E5}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.36.32532 (HKLM-x32\...\{73F77E4E-5A17-46E5-A5FC-8A061047725F}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.32 (x64) (HKLM\...\{885F1CFB-4EAC-4C60-97B8-394BD65ED91E}) (Version: 48.128.16742 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.32 (x64) (HKLM-x32\...\{1bb295e8-8251-4404-96f1-c437da87fce0}) (Version: 6.0.32.33814 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 7.0.16 (x64) (HKLM\...\{01B2627D-8443-41C0-97F0-9F72AC2FD6A0}) (Version: 56.64.8804 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 7.0.16 (x64) (HKLM-x32\...\{ef5af41f-d68c-48f7-bfb0-5055718601fc}) (Version: 7.0.16.33318 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 8.0.7 (x64) (HKLM\...\{F6FBF64F-D459-4F03-BF3B-C0A36A0596A2}) (Version: 64.28.16739 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.7 (x64) (HKLM-x32\...\{754bcfb5-42ac-4c12-8f12-b818943a1365}) (Version: 8.0.7.33814 - Microsoft Corporation)
Mini V3 3.12.0 (HKLM-x32\...\Mini V3_is1) (Version: 3.12.0 - Arturia)
Mini V4 4.0.0 (HKLM-x32\...\Mini V4_is1) (Version: 4.0.0 - Arturia)
MiniBrute V 1.0.0 (HKLM-x32\...\MiniBrute V_is1) (Version: 1.0.0 - Arturia)
MiniFreak V 2.0.0 (HKLM-x32\...\MiniFreak V_is1) (Version: 2.0.0 - Arturia)
MiniFuse Control Center 1.1.1 (HKLM\...\MiniFuse Control Center_is1) (Version: 1.1.1 - Arturia)
Modular V3 3.13.0 (HKLM-x32\...\Modular V3_is1) (Version: 3.13.0 - Arturia)
Mouse Controller version 1.11.3.0 (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\{558409e4-71ad-4b5f-9db7-15e987d0e3aa}_is1) (Version: 1.11.3.0 - MuGiRi Software Development)
Mozilla Firefox (x64 en-US) (HKLM\...\Mozilla Firefox 130.0 (x64 en-US)) (Version: 130.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 129.0.1 - Mozilla)
Mozilla Thunderbird (x64 fr) (HKLM\...\Mozilla Thunderbird 115.8.1 (x64 fr)) (Version: 115.8.1 - Mozilla)
Mozilla Thunderbird (x64 fr) (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\Mozilla Thunderbird 115.13.0 (x64 fr)) (Version: 115.13.0 - Mozilla)
Mozilla VPN (HKLM\...\{2F491215-D718-4713-9071-87C571248738}) (Version: 2.22.1.0 - Mozilla Corporation)
MSI Afterburner 4.6.5 (HKLM-x32\...\Afterburner) (Version: 4.6.5 - MSI Co., LTD)
Muramasa Electrum (HKLM\...\Muramasa Electrum_is1) (Version: 2.0 - Muramasa)
MuseScore 4 (HKLM\...\{649E6B31-1D3A-4D0C-935B-5CC90F29BEC3}) (Version: 4.2.1.240230937 - MuseScore BVBA and Others)
Native Instruments Kontakt 7 (HKLM-x32\...\Native Instruments Kontakt 7) (Version: 7.10.1.0 - Native Instruments)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.28.0.417 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.28.0.417 - NVIDIA Corporation)
NVIDIA Graphics Driver 551.76 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 551.76 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.17928.20156 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.17928.20156 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.17928.20156 - Microsoft Corporation) Hidden
OP Auto Clicker (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\OP Auto Clicker_is1) (Version: V4.0 - OP Auto Clicker)
OpenShot Video Editor 3.1.1 (HKLM\...\{4BB0DCDC-BC24-49EC-8937-72956C33A470}_is1) (Version: 3.1.1 - OpenShot Studios, LLC)
OP-Xa V 1.7.0 (HKLM-x32\...\OP-Xa V_is1) (Version: 1.7.0 - Arturia)
Phaser BI-TRON 1.4.0 (HKLM-x32\...\Phaser BI-TRON_is1) (Version: 1.4.0 - Arturia)
Piano V3 3.3.0 (HKLM-x32\...\Piano V3_is1) (Version: 3.3.0 - Arturia)
Pigments 5.0.2 (HKLM-x32\...\Pigments_is1) (Version: 5.0.2 - Arturia)
Pre 1973 1.7.0 (HKLM-x32\...\Pre 1973_is1) (Version: 1.7.0 - Arturia)
Pre TridA 1.7.0 (HKLM-x32\...\Pre TridA_is1) (Version: 1.7.0 - Arturia)
Pre V76 1.7.0 (HKLM-x32\...\Pre V76_is1) (Version: 1.7.0 - Arturia)
Prophet-5 V 1.3.0 (HKLM-x32\...\Prophet-5 V_is1) (Version: 1.3.0 - Arturia)
Prophet-VS V 1.3.0 (HKLM-x32\...\Prophet-VS V_is1) (Version: 1.3.0 - Arturia)
Proton Drive (HKLM\...\{EF09DE4F-015C-435F-B51D-E3FD62C70F8B}) (Version: 1.6.2 - Proton AG) Hidden
Proton Drive (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\{B6F53ED2-348F-4CF0-910F-A17E69E9ED97}) (Version: 1.6.2 - Proton AG)
Proton VPN (HKLM\...\Proton VPN_is1) (Version: 3.2.12 - Proton AG)
qBittorrent (HKLM-x32\...\qBittorrent) (Version: 4.6.5 - The qBittorrent project)
Quick Photo Finder (HKLM\...\{3505B943-A3D0-4374-8D36-DD91A3CACD4A}_is1) (Version: 1.0.0.4 - Digital Protection Services S.R.L)
REAPER (x64) (HKLM\...\REAPER) (Version: 7.18 - Cockos Incorporated)
Rev INTENSITY 1.5.0 (HKLM-x32\...\Rev INTENSITY_is1) (Version: 1.5.0 - Arturia)
Rev PLATE-140 1.6.0 (HKLM-x32\...\Rev PLATE-140_is1) (Version: 1.6.0 - Arturia)
Rev SPRING-636 1.5.0 (HKLM-x32\...\Rev SPRING-636_is1) (Version: 1.5.0 - Arturia)
RivaTuner Statistics Server 7.3.4 (HKLM-x32\...\RTSS) (Version: 7.3.4 - Unwinder)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.85.1858 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.2.7.3 - Rockstar Games)
SEM V2 2.13.0 (HKLM-x32\...\SEM V2_is1) (Version: 2.13.0 - Arturia)
Shotcut (HKLM\...\Shotcut_is1) (Version: 24.02.29 - Meltytech)
Signal 7.24.1 (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\7d96caee-06e6-597c-9f2f-c7bb2e0948b4) (Version: 7.24.1 - Signal Messenger, LLC)
Solina V2 2.13.0 (HKLM-x32\...\Solina V2_is1) (Version: 2.13.0 - Arturia)
Spitfire Audio version 3.4.10 (HKLM-x32\...\{ABC5F486-25BD-4BAA-9FA1-A84152CBB563}_is1) (Version: 3.4.10 - Spitfire Audio Holdings Ltd)
SQ80 V 1.6.0 (HKLM-x32\...\SQ80 V_is1) (Version: 1.6.0 - Arturia)
Stage-73 V2 2.6.1 (HKLM-x32\...\Stage-73 V2_is1) (Version: 2.6.1 - Arturia)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stremio (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\Stremio) (Version: 4.4.168 - Smart Code Ltd)
Synclavier V 2.13.0 (HKLM-x32\...\Synclavier V_is1) (Version: 2.13.0 - Arturia)
Synthi V 1.9.0 (HKLM-x32\...\Synthi V_is1) (Version: 1.9.0 - Arturia)
Tape MELLO-FI 1.3.0 (HKLM-x32\...\Tape MELLO-FI_is1) (Version: 1.3.0 - Arturia)
VeraCrypt (HKLM-x32\...\VeraCrypt) (Version: 1.26.7 - IDRIX)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.20 - VideoLAN)
Vocoder V 1.6.0 (HKLM-x32\...\Vocoder V_is1) (Version: 1.6.0 - Arturia)
Vortex (HKLM\...\57979c68-f490-55b8-8fed-8b017a5af2fe) (Version: 1.12.0 - Black Tree Gaming Ltd.)
VOX Continental V2 2.13.0 (HKLM-x32\...\VOX Continental V2_is1) (Version: 2.13.0 - Arturia)
Vysor (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\vysor) (Version: 5.0.7 - Vysor Inc.)
WeMod (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\WeMod) (Version: 9.8.0 - WeMod)
Wildlander Launcher 2.19.0 (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\fac0cdda-b581-5a1a-ac45-70ba9218df05) (Version: 2.19.0 - Wildlander)
Windows Driver Package - Amazon.com (WinUSB) FireDevicesUsbDeviceClass (10/27/2014 1.4.0000.00000) (HKLM\...\34134A59F616767F2CEC57DC0849834538166E22) (Version: 10/27/2014 1.4.0000.00000 - Amazon.com)
WinRAR 6.24 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.24.0 - win.rar GmbH)
Wise Duplicate Finder (HKLM-x32\...\Wise Duplicate Finder_is1) (Version: 2.1.1 - Lespeed Technology Co., Ltd.)
Wondershare Filmora 13(Build 13.0.25.4414) (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\Wondershare Filmora 13_is1) (Version: - Wondershare Software)
Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare)
Wondershare NativePush(Build 1.0.1.0) (HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\Wondershare NativePush_is1) (Version: - Wondershare Software)
Wurli V2 2.12.0 (HKLM-x32\...\Wurli V2_is1) (Version: 2.12.0 - Arturia)
Wurli V3 3.0.0 (HKLM-x32\...\Wurli V3_is1) (Version: 3.0.0 - Arturia)
Xfer Records Serum 1.35b1 (HKLM\...\Xfer Records Serum 1.35b1-r4e_is1) (Version: 1.35b1 - Xfer Records)
XLN Audio Addictive Drums 2 (HKLM\...\Addictive Drums 2_is1) (Version: 2.2.5.6 - XLN Audio)
Packages:
=========
Alarm Clock HD -> C:\Program Files\WindowsApps\AntaraSoftware.AlarmClockHD_7.0.0.0_x64__7jhd16s0b93qm [2024-08-31] (ANTARA SOFTWARE and CONSULTING PRIVATE LIMITED)
AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5635.0_x64__8j3eq9eme6ctt [2024-09-17] (INTEL CORP) [Startup Task]
Microsoft Teams (work or school) -> C:\Program Files\WindowsApps\MSTeams_24004.1309.2689.2246_x64__8wekyb3d8bbwe [2024-03-12] (Microsoft) [Startup Task]
Microsoft.BingSearch -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.0.95.0_x64__8wekyb3d8bbwe [2024-07-23] (Microsoft Corporation)
Microsoft.StartExperiencesApp -> C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.144.0_x64__8wekyb3d8bbwe [2024-09-10] (Microsoft Corporation) [Startup Task]
MicrosoftWindows.CrossDevice -> C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24081.55.0_x64__cw5n1h2txyewy [2024-09-05] (Microsoft Windows) [Startup Task]
Move Mouse -> C:\Program Files\WindowsApps\1258EllAbi.MoveMouse_4.18.2.0_x64__hjfwaxvfbwh7t [2024-06-18] (ellabi) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.966.0_x64__56jybvy8sckqj [2024-04-28] (NVIDIA Corp.)
Photos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2024.11070.31001.0_x64__8wekyb3d8bbwe [2024-08-02] (Microsoft Corporation) [Startup Task]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.51.327.0_x64__dt26b99r8h8gj [2024-09-17] (Realtek Semiconductor Corp)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2435.4.0_x64__cv1g1gvanyjgm [2024-09-10] (WhatsApp Inc.) [Startup Task]
Widgets Platform Runtime -> C:\Program Files\WindowsApps\Microsoft.WidgetsPlatformRuntime_1.4.0.0_x64__8wekyb3d8bbwe [2024-09-06] (Microsoft Corporation)
WinAppRuntime.Main.1.5 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.5_5001.214.1843.0_x64__8wekyb3d8bbwe [2024-08-18] (Microsoft Corp.)
WinAppRuntime.Singleton -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton_6000.242.101.0_x64__8wekyb3d8bbwe [2024-09-06] (Microsoft Corp.)
Windows Feature Experience Pack -> C:\Windows\SystemApps\LKG\MicrosoftWindows.LKG.AccountsService_cw5n1h2txyewy [2024-09-11] (Microsoft Windows)
Windows Feature Experience Pack -> C:\Windows\SystemApps\LKG\MicrosoftWindows.LKG.DesktopSpotlight_cw5n1h2txyewy [2024-09-11] (Microsoft Windows)
Windows Feature Experience Pack -> C:\Windows\SystemApps\LKG\MicrosoftWindows.LKG.IrisService_cw5n1h2txyewy [2024-09-11] (Microsoft Windows)
WinRAR -> C:\Program Files\WinRAR [2024-03-15] (win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2246425733-1572341141-2263144653-1001_Classes\CLSID\{04271989-C4D2-F93F-6589-6297B5AF6FEB} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-2246425733-1572341141-2263144653-1001_Classes\CLSID\{14100442-9664-1407-2647-000000000000}\localserver32 -> C:\Users\Admin\AppData\Local\Wondershare\Wondershare NativePush\WsToastNotification.exe (Wondershare Technology Group Co.,Ltd -> Wondershare)
CustomCLSID: HKU\S-1-5-21-2246425733-1572341141-2263144653-1001_Classes\CLSID\{1dcb280c-9699-aefe-803c-2007c35cbb5a}\localserver32 -> C:\Users\Admin\AppData\Local\Programs\Proton\Drive\ProtonDrive.exe (Proton AG -> Proton AG)
CustomCLSID: HKU\S-1-5-21-2246425733-1572341141-2263144653-1001_Classes\CLSID\{50726f74-6f6e-2e56-504e-000000000000}\localserver32 -> C:\Program Files\Proton\VPN\v3.2.12\ProtonVPN.exe (Proton AG -> )
CustomCLSID: HKU\S-1-5-21-2246425733-1572341141-2263144653-1001_Classes\CLSID\{6b4aeb40-3ff6-4d02-9571-8caac87567ac}\InprocServer32 -> D:\Programmes\Thunderbird\notificationserver.dll => No File
CustomCLSID: HKU\S-1-5-21-2246425733-1572341141-2263144653-1001_Classes\CLSID\{C4DB226C-69DA-41D4-BA44-EA2454B7F66E} -> [Proton Drive] => C:\Users\Admin\Proton Drive\alexandre.bonin [2024-07-29 19:07]
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2021-09-25] (Heidi Computers Ltd -> The Eraser Project)
ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => D:\Programmes\Format Factory\ShellEx_108.dll -> No File
ContextMenuHandlers2: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2021-09-25] (Heidi Computers Ltd -> The Eraser Project)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\Programmes\Malwarebytes\mbshlext.dll -> No File
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2021-09-25] (Heidi Computers Ltd -> The Eraser Project)
ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => D:\Programmes\Format Factory\ShellEx_108.dll -> No File
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.166.0818.0003\FileSyncShell64.dll [2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2021-09-25] (Heidi Computers Ltd -> The Eraser Project)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_3594fcc1d16e3924\nvshext.dll [2024-03-02] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2021-09-25] (Heidi Computers Ltd -> The Eraser Project)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\Programmes\Malwarebytes\mbshlext.dll -> No File
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2018-11-23 05:01 - 2018-11-23 05:01 - 000438784 _____ (A-Volute) [File not signed] C:\Program Files (x86)\MSI\Dragon Center\YooMixCOM.dll
2016-08-10 18:34 - 2016-08-10 18:34 - 000047816 _____ (MICRO-STAR INTERNATIONAL CO., LTD -> www.internals.com) [File not signed] C:\Program Files (x86)\MSI\Dragon Center\MSIAPP_Service\WinIo64.dll
2015-06-11 17:35 - 2015-06-11 17:35 - 000047816 _____ (MICRO-STAR INTERNATIONAL CO., LTD -> www.internals.com) [File not signed] C:\Program Files (x86)\MSI\Dragon Center\WinIo64.dll
2018-08-01 07:54 - 2018-08-01 07:54 - 000014632 _____ (Micro-Star International CO., LTD. -> ) [File not signed] C:\Program Files (x86)\MSI\Dragon Center\UEFIVaribleDll.dll
2024-09-13 09:53 - 2024-09-13 09:53 - 002849280 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\libcrypto-1_1-x64.dll
2024-09-13 09:53 - 2024-09-13 09:53 - 000685056 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\libssl-1_1-x64.dll
2024-09-13 09:53 - 2024-09-13 09:53 - 000046592 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\bearer\qgenericbearer.dll
2024-09-13 09:53 - 2024-09-13 09:53 - 006270976 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5Core.dll
2024-09-13 09:53 - 2024-09-13 09:53 - 001389568 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5Network.dll
2024-09-13 09:53 - 2024-09-13 09:53 - 000157184 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5WebSockets.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\Admin\Downloads\MozillaVPN.msi:MBAM.Zone.Identifier [148]
AlternateDataStreams: C:\Users\Admin\Downloads\qbittorrent_4.6.3_x64_setup.exe:MBAM.Zone.Identifier [345]
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2024-08-07] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2024-08-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-08-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-08-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-08-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-08-31] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\sharepoint.com -> hxxps://univtoursfr-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2024-05-31 20:53 - 2024-08-16 12:55 - 000000768 _____ C:\Windows\system32\drivers\etc\hosts
0.0.0.0 www.aomeitech.com
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\Control Panel\Desktop\\Wallpaper -> D:\Documents\maxresdefault.jpg
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
Network Binding:
=============
Wi-Fi: Intel(R) Wireless-AC 9560 160MHz -> Netwtw08.sys
Ethernet: Realtek PCIe GbE Family Controller -> rtcx21x64.sys
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_5EFC0ECB77A7585FE9DCDD0B2E946A2B"
HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2246425733-1572341141-2263144653-1001\...\StartupApproved\Run: => "Steam"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [TCP Query User{49C761E0-F886-4606-B7E2-9258A31F0519}C:\users\admin\appdata\local\wondershare\wondershare nativepush\wstoastnotification.exe] => (Block) C:\users\admin\appdata\local\wondershare\wondershare nativepush\wstoastnotification.exe (Wondershare Technology Group Co.,Ltd -> Wondershare)
FirewallRules: [UDP Query User{71A5A942-0169-4321-BC0E-513E6B0235E3}C:\users\admin\appdata\local\wondershare\wondershare nativepush\wstoastnotification.exe] => (Block) C:\users\admin\appdata\local\wondershare\wondershare nativepush\wstoastnotification.exe (Wondershare Technology Group Co.,Ltd -> Wondershare)
FirewallRules: [TCP Query User{F78BCBE9-BB62-44FD-B3D0-F93B56776DD5}D:\programmes\ea\battlefield v\bfv.exe] => (Allow) D:\programmes\ea\battlefield v\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [UDP Query User{00C641B0-11C4-4CA7-BAA4-6083B9449B0E}D:\programmes\ea\battlefield v\bfv.exe] => (Allow) D:\programmes\ea\battlefield v\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [TCP Query User{80FF300F-15F9-4DDF-94E3-FBD62793E8FD}D:\platform-tools-latest-windows\platform-tools\adb.exe] => (Allow) D:\platform-tools-latest-windows\platform-tools\adb.exe (Google LLC -> )
FirewallRules: [UDP Query User{F2A584D9-0F65-4E2C-A1F2-CD36B344DA46}D:\platform-tools-latest-windows\platform-tools\adb.exe] => (Allow) D:\platform-tools-latest-windows\platform-tools\adb.exe (Google LLC -> )
FirewallRules: [{F5CCB806-1FE6-4B18-8B61-92E716768B1A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F0E2CF03-2936-4EA7-B563-EFD0C9DC5F44}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C87789A2-B50F-450A-9165-5C3A8485CD8D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{72810D74-E669-4059-975C-A84B1FFC1ECD}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{345BEF79-9143-4A64-B674-6B92501C4751}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3E8A95CF-B756-4588-A834-79297566A8FE}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{E1437917-D703-4353-9635-DF15420AD0CE}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{2B5FABFD-4BD5-4EA9-A006-99E14B704D32}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{474DEECA-AFB1-4000-A968-4EF2E7DAFA66}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{8509F184-0B75-4F0F-A82C-8499085A1F55}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{314C4627-6718-4E4D-A836-F0D433A56277}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{AF2326F6-C258-470F-A00C-2DE46E9FE99B}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{8053831D-22B2-4D06-BC2B-7B8D6241B08A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{D0F64FC1-B119-430B-ACBA-FABC2DE2E488}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{B65875FC-0C13-4090-A6CB-B08D1AEB5144}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{D77E764F-9B93-4E18-85A4-FFAFF1BB3805}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{D788964D-542C-4186-9155-7C6460C967C7}] => (Allow) D:\Programmes\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{9AB4A86B-7534-43E7-856D-99C6871DDB07}] => (Allow) D:\Programmes\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{2C915F78-8AD8-4045-9C56-113FA94DC677}] => (Allow) D:\Programmes\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{5E0A6CBB-1DAD-40DB-A5D6-A3C160489B69}] => (Allow) D:\Programmes\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{E6518E27-B1CC-4EC9-B736-9CC81B4B861F}] => (Allow) D:\Programmes\Steam\steamapps\common\AoE2DE\AoE2DE_s.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{419AE51A-9526-4C51-A7CD-1AEA8A135A68}] => (Allow) D:\Programmes\Steam\steamapps\common\AoE2DE\AoE2DE_s.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BF1D2270-291E-4E0E-9749-D55DD7791E5C}] => (Allow) D:\Programmes\Steam\steamapps\common\AoE2DE\BattleServer\BattleServer.exe (Microsoft Corporation -> )
FirewallRules: [{B4537D8B-6463-48A9-BBB8-B4241A505FC2}] => (Allow) D:\Programmes\Steam\steamapps\common\AoE2DE\BattleServer\BattleServer.exe (Microsoft Corporation -> )
FirewallRules: [{D64A5540-6280-424F-97B2-15D579639364}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\129.0.2792.52\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:118.38 GB) (Free:11.65 GB) (10%)
==================== Faulty Device Manager Devices ============
Name: Android ADB Interface
Description: Android ADB Interface
Class Guid: {3f966bd9-fa04-4ec5-991c-d326973b5128}
Manufacturer: Google, Inc.
Service: WinUSB
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: PCI Device
Description: PCI Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: PCI Data Acquisition and Signal Processing Controller
Description: PCI Data Acquisition and Signal Processing Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: SM Bus Controller
Description: SM Bus Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: ========================
Application errors:
==================
Error: (09/17/2024 09:18:14 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT AUTHORITY)
Description: Windows cannot load the extensible counter DLL "C:\Windows\system32\sysmain.dll" (Win32 error code 126).
Error: (09/11/2024 07:15:12 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT AUTHORITY)
Description: Windows cannot load the extensible counter DLL "C:\Windows\system32\sysmain.dll" (Win32 error code 126).
Error: (09/10/2024 09:10:24 PM) (Source: Firefox Default Browser Agent) (EventID: 5) (User: )
Description: Event-ID 5
Error: (09/06/2024 09:08:54 AM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT AUTHORITY)
Description: Windows cannot load the extensible counter DLL "C:\Windows\system32\sysmain.dll" (Win32 error code 126).
Error: (09/03/2024 10:14:36 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT AUTHORITY)
Description: Windows cannot load the extensible counter DLL "C:\Windows\system32\sysmain.dll" (Win32 error code 126).
Error: (08/31/2024 11:26:00 AM) (Source: Firefox Default Browser Agent) (EventID: 5) (User: )
Description: Event-ID 5
Error: (08/21/2024 09:34:34 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT AUTHORITY)
Description: Windows cannot load the extensible counter DLL "C:\Windows\system32\sysmain.dll" (Win32 error code 126).
Error: (08/19/2024 05:08:38 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress..
System errors:
=============
Error: (09/24/2024 07:13:58 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80073d02: 9MSSGKG348SP-MicrosoftWindows.Client.WebExperience.
Error: (09/24/2024 07:13:05 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80073d02: 9NTXGKQ8P7N0-MicrosoftWindows.CrossDevice.
Error: (09/24/2024 07:11:39 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error -2147020471. For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (09/18/2024 06:00:01 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error -2147020471. For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (09/18/2024 05:34:23 PM) (Source: Netwtw08) (EventID: 5005) (User: )
Description: Intel(R) Wireless-AC 9560 160MHz : Has encountered an internal error and has failed.
5005 - Driver internal error
Error: (09/18/2024 05:34:23 PM) (Source: Netwtw08) (EventID: 5055) (User: )
Description: 5055 - HW error
Error: (09/18/2024 05:34:22 PM) (Source: Netwtw08) (EventID: 5005) (User: )
Description: Intel(R) Wireless-AC 9560 160MHz : Has encountered an internal error and has failed.
5005 - Driver internal error
Error: (09/18/2024 05:34:22 PM) (Source: Netwtw08) (EventID: 5007) (User: )
Description: 5007 - TX/CMD timeout (TfdQueue hanged)
Windows Defender:
================
Date: 2024-09-18 19:17:55
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2024-09-18 17:18:21
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2024-09-17 20:51:35
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2024-09-16 13:58:01
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2024-09-14 13:01:21
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Event[0]
Date: 2024-08-12 12:08:27
Description:
Microsoft Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: On Access
Error Code: 0x8007043c
Error description: This service cannot be started in Safe Mode
Reason: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.�
Date: 2024-08-10 20:50:35
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence and will attempt to revert to a previous version.
Security intelligence Attempted: Backup
Error Code: 0x80004004
Error description: Operation aborted
Security intelligence Version: 1.415.455.0;1.415.455.0
Engine Version: 1.1.24060.5�
Date: 2024-08-10 20:50:34
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence and will attempt to revert to a previous version.
Security intelligence Attempted: Current
Error Code: 0x80501102
Error description: An unexpected problem occurred. Install any available updates, and then try to start the program again. For information on installing updates, see Help and Support.
Security intelligence Version: 1.415.455.0;1.415.455.0
Engine Version: 1.1.24060.5�
Date: 2024-08-10 17:45:59
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.415.455.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.24060.5
Error code: 0x80240017
Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. �
Date: 2024-08-10 17:42:50
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence and will attempt to revert to a previous version.
Security intelligence Attempted: Backup
Error Code: 0x80004004
Error description: Operation aborted
Security intelligence Version: 1.415.455.0;1.415.455.0
Engine Version: 1.1.24060.5�
CodeIntegrity:
===============
Date: 2024-09-18 17:02:37
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\Admin\AppData\Local\Programs\signal-desktop\Signal.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\nvspcap64.dll that did not meet the Microsoft signing level requirements.�
==================== Memory info ===========================
BIOS: American Megatrends Inc. E16R3IMS.108 03/26/2020
Motherboard: Micro-Star International Co., Ltd. MS-16R3
Processor: Intel(R) Core(TM) i5-9300H CPU @ 2.40GHz
Percentage of memory in use: 56%
Total physical RAM: 16228.02 MB
Available physical RAM: 7061.01 MB
Total Virtual: 56228.02 MB
Available Virtual: 44919.91 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:118.38 GB) (Free:11.65 GB) (Model: SAMSUNG MZVLW128HEGR-00000) NTFS
Drive d: (New Volume) (Fixed) (Total:931.5 GB) (Free:647.41 GB) (Model: CT1000MX500SSD1) NTFS
\\?\Volume{fb64c188-eff3-4b18-b5de-8f930b6df035}\ () (Fixed) (Total:0.75 GB) (Free:0.06 GB) NTFS
\\?\Volume{9d93c5fc-4826-46a4-9ef6-5c969dcca456}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Size: 119.2 GB) (Disk ID: 0C95A92A)
Partition: GPT.
==================== End of Addition.txt =======================