Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24-10-2020 Ran by dojik (29-10-2020 14:19:16) Running from C:\Users\dojik\Desktop Windows 10 Education Version 2004 19041.388 (X64) (2020-07-22 16:20:59) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= DefaultAccount (S-1-5-21-913620400-203814966-1364314930-503 - Limited - Disabled) dojik (S-1-5-21-913620400-203814966-1364314930-1001 - Administrator - Enabled) => C:\Users\dojik WDAGUtilityAccount (S-1-5-21-913620400-203814966-1364314930-504 - Limited - Disabled) Администратор (S-1-5-21-913620400-203814966-1364314930-500 - Administrator - Disabled) Гость (S-1-5-21-913620400-203814966-1364314930-501 - Limited - Disabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-913620400-203814966-1364314930-1001\...\uTorrent) (Version: 3.5.5.45790 - BitTorrent Inc.) 7-Zip 15.14 (x64) (HKLM\...\7-Zip) (Version: 15.14 - Igor Pavlov) Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_2_1) (Version: 21.2.1.265 - Adobe Systems Incorporated) AIDA64 (HKLM-x32\...\AIDA64) (Version: 6.30.5500 - FinalWire Ltd.) AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 2.05.04.352 - Advanced Micro Devices, Inc.) AMD Ryzen Master (HKLM\...\AMD Ryzen Master) (Version: 2.3.0.1591 - Advanced Micro Devices, Inc.) AMD_Chipset_Drivers (HKLM-x32\...\{810a2b63-212d-4a59-bfb5-f2d575cd44f0}) (Version: 2.05.04.352 - Advanced Micro Devices, Inc.) Hidden AORUS ENGINE (HKLM-x32\...\AORUS ENGINE_is1) (Version: 1.8.5.0 - GIGABYTE Technology Co.,Inc.) Arma 3 v.1.94.145903 (HKLM-x32\...\Arma 3_is1) (Version: - ) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Bethesda.net Launcher (HKLM-x32\...\{3448917E-E4FE-4E30-9502-9FD52EABB6F5}_is1) (Version: 1.66.0 - Bethesda Softworks) Bloody6 (HKLM-x32\...\Bloody3) (Version: 19.04.0008 - Bloody) Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment) CrystalDiskInfo 6.6.1 (HKLM\...\CrystalDiskInfo) (Version: 6.6.1 - Crystal Dew World) Discord (HKU\S-1-5-21-913620400-203814966-1364314930-1001\...\Discord) (Version: 0.0.308 - Discord Inc.) ENE IO Driver (HKLM-x32\...\{D0512FFD-6194-4D2E-967E-25B82A3322FF}) (Version: 3.3.0 - ENE TECHNOLOGY INC.) Hidden ENE RGB HAL (HKLM\...\{8DA1B230-D82E-4A24-9237-363E2E1E2695}) (Version: 1.0.21.0 - Ene Tech.) Hidden ENE RGB HAL (HKLM-x32\...\{bb670f8d-3d66-4f36-8e60-02b71bb0a4e9}) (Version: 1.0.21.0 - Ene Tech.) Hidden ENE_DRAM_RGB_AURA42 (HKLM\...\{BC5E0A82-C638-44CB-8129-20C8ED70DE7A}) (Version: 1.00.02 - Ene Tech.) Hidden ENE_DRAM_RGB_AURA42 (HKLM-x32\...\{f3d7fb09-b93f-4c01-a765-0b0adc5bc746}) (Version: 1.00.02 - Ene Tech.) Hidden ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.00.04 - ENE TECHNOLOGY INC.) Hidden ENE_EHD_M2_HAL (HKLM-x32\...\{26b207d1-1f37-4df9-8b3f-aeebbca6bb85}) (Version: 1.00.04 - ENE TECHNOLOGY INC.) Hidden ENE_EHD_SSS_HAL (HKLM\...\{CF703694-01C6-4062-B797-84DB215662BC}) (Version: 1.0.2.0 - ENE TECHNOLOGY INC.) Hidden ENE_EHD_SSS_HAL (HKLM-x32\...\{9eeadf99-713b-4ab5-9ccd-bf9c1c4d9daf}) (Version: 1.0.2.0 - ENE TECHNOLOGY INC.) Hidden Epic Games Launcher (HKLM-x32\...\{12B43B01-EE3D-4A95-900F-DCFC2832C34B}) (Version: 1.1.279.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden FACEIT (HKU\S-1-5-21-913620400-203814966-1364314930-1001\...\FACEITApp) (Version: 1.25.1 - FACEIT Ltd.) FACEIT Anti-Cheat (HKLM\...\{1419E44C-0EF4-4822-9194-9F1A4D43973D}_is1) (Version: 2.0 - FACEIT LTD) FastStone Image Viewer 7.5 (HKLM-x32\...\FastStone Image Viewer) (Version: 7.5 - FastStone Soft) GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 86.0.4240.111 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.31 - Google LLC) Hidden HD Tune Pro 5.75 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software) Java 8 Update 66 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418066F0}) (Version: 8.0.660.17 - Oracle Corporation) Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.17 - Oracle Corporation) K-Lite Mega Codec Pack 15.6.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.6.0 - KLCP) Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden LogMeIn Hamachi (HKLM-x32\...\{ECC0FA07-863E-44BC-8B1D-DA22F96E5FB7}) (Version: 2.2.0.633 - LogMeIn, Inc.) Hidden LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.633 - LogMeIn, Inc.) Microsoft Office профессиональный плюс 2016 (HKLM-x32\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-913620400-203814966-1364314930-1001\...\OneDriveSetup.exe) (Version: 19.043.0304.0013 - Microsoft Corporation) Microsoft Visual Basic/C++ Runtime (x86) (HKLM-x32\...\{C5E3A69D-D391-45A6-A8FB-00B01E2B010D}) (Version: 1.1.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable - x64 8.0.61000 (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 - Корпорация Майкрософт) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{49e969a1-2990-464d-92b5-25f6f34573c6}) (Version: 12.0.40664.0 - Корпорация Майкрософт) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{d2c8df0e-f15d-4426-9e51-f13f329f9cb4}) (Version: 12.0.40664.0 - Корпорация Майкрософт) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.27.29016 (HKLM-x32\...\{40d3fee2-b257-46c2-bdc0-cb1088d97327}) (Version: 14.27.29016.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.27.29016 (HKLM-x32\...\{1aaa01ad-3069-4288-9c6f-37a140a8f6c7}) (Version: 14.27.29016.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{47C2CCDB-7A04-3797-992B-A84D3E90258F}) (Version: 10.0.60833 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation) MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD) NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.27 - NVIDIA Corporation) Hidden NVIDIA GeForce Experience 3.20.4.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.4.14 - NVIDIA Corporation) NVIDIA Аудиодрайвер HD 1.3.38.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.35 - NVIDIA Corporation) NVIDIA Графический драйвер 456.71 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 456.71 - NVIDIA Corporation) NVIDIA Системное программное обеспечение PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation) NvModuleTracker (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver) (Version: 6.14.24033.38719 - NVIDIA Corporation) Hidden OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Opera GX Stable 71.0.3770.302 (HKU\S-1-5-21-913620400-203814966-1364314930-1001\...\Opera GX 71.0.3770.302) (Version: 71.0.3770.302 - Opera Software) Origin (HKLM-x32\...\Origin) (Version: 10.5.85.44831 - Electronic Arts, Inc.) Patriot Viper M2 SSD RGB (HKLM\...\{0886A906-0625-4A43-930D-AA92F6665AF4}) (Version: 1.00.04 - Patriot Memory) Hidden Patriot Viper M2 SSD RGB (HKLM-x32\...\{ebb7013c-0b03-497c-bed1-1e48e806a593}) (Version: 1.00.04 - Patriot Memory) Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 2.0.1.0 - Advanced Micro Devices, Inc.) Hidden Rainmeter (HKLM-x32\...\Rainmeter) (Version: 4.3.1 r3321 - Rainmeter) Rayman Legends (HKLM-x32\...\Uplay Install 410) (Version: - Ubisoft) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.38.1118.2019 - Realtek) Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform) RGB Fusion (HKLM-x32\...\{FFA8F1FA-3C2C-4A94-AC0B-0DF47272C25F}) (Version: 3.20.0708.1 - GIGABYTE) Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.) RivaTuner Statistics Server 7.2.3 (HKLM-x32\...\RTSS) (Version: 7.2.3 - Unwinder) Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.27.272 - Rockstar Games) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.6.5 - Rockstar Games) SaveFrom.net helper 0.16 (HKLM-x32\...\{998eb3a4-0d03-41cc-b431-d4db6a725ed9}_is1) (Version: 0.16 - ) SIGame (HKLM-x32\...\{E87C13A4-2748-42C0-9A8D-AAD351F0FB7A}) (Version: 7.4.1.0 - Свояк-софт) Hidden SIGame (HKU\S-1-5-21-913620400-203814966-1364314930-1001\...\{868ba004-5f11-489e-af53-76de235bfae8}) (Version: 7.4.1.0 - Svoyak-soft) Skype, версия 8.65 (HKLM-x32\...\Skype_is1) (Version: 8.65 - Skype Technologies S.A.) Spider-Man(R) - Web of Shadows(TM) 1.1 Patch (HKLM-x32\...\InstallShield_{9208F706-6528-4591-A997-F41395FBD8A7}) (Version: - ) Hidden Spider-Man(TM) - Web of Shadows 1.1 Patch (HKLM-x32\...\{9208F706-6528-4591-A997-F41395FBD8A7}) (Version: 1.1 - Activision) Hidden Splinter Cell - Pandora Tomorrow 1.0 (HKLM-x32\...\Splinter Cell - Pandora Tomorrow_is1) (Version: 1.0 - Ubisoft Entertainment) Spotify (HKU\S-1-5-21-913620400-203814966-1364314930-1001\...\Spotify) (Version: 1.1.44.538.g8057de92 - Spotify AB) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.7.7 - TeamViewer) Telegram Desktop version 2.3.1 (HKU\S-1-5-21-913620400-203814966-1364314930-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 2.3.1 - Telegram FZ-LLC) Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 112.2 - Ubisoft) UltraISO Premium V9.73 (HKLM-x32\...\UltraISO_is1) (Version: 9.73 - EZB Systems, Inc.) Untitled Goose Game [v1.1.2] (HKLM-x32\...\{188CE843-2CDE-4ED8-BFDC-8DA81DCAADED}_RePack_Un~37493DC9_is1) (Version: - House House) VALORANT (HKU\S-1-5-21-913620400-203814966-1364314930-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc) Vegas Pro 13.0 (64-bit) (HKLM\...\{D264BD11-6A9B-11E4-A4F7-F04DA23A5C58}) (Version: 13.0.428 - Sony) VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN) Vortex (HKLM\...\57979c68-f490-55b8-8fed-8b017a5af2fe) (Version: 1.2.19 - Black Tree Gaming Ltd.) WATCH_DOGS2 (HKLM-x32\...\Uplay Install 2688) (Version: - Ubisoft) WinDjView 2.1 (HKLM\...\WinDjView) (Version: 2.1 - Andrew Zhezherun) WinRAR 5.91 (64-разрядная) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH) Засоби перевірки правопису Microsoft Office 2016 – українська (HKLM-x32\...\{90160000-001F-0422-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Обновления NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden Средства проверки правописания Microsoft Office 2016 — русский (HKLM-x32\...\{90160000-001F-0419-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Packages: ========= Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-07-23] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-07-23] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2020-10-24] (Microsoft Studios) [MS Ad] NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.958.0_x64__56jybvy8sckqj [2020-07-22] (NVIDIA Corp.) Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.11.217.0_x64__dt26b99r8h8gj [2020-07-22] (Realtek Semiconductor Corp) Яндекс.Музыка -> C:\Program Files\WindowsApps\A025C540.Yandex.Music_4.30.7577.0_x64__vfvw9svesycw6 [2020-09-29] (Yandex) [Startup Task] ==================== Custom CLSID (Whitelisted): ============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2015-12-31] (Igor Pavlov) [File not signed] ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-25] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-25] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2020-06-25] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2015-12-31] (Igor Pavlov) [File not signed] ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers4: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2020-06-25] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvgbdi.inf_amd64_4df27ee1e2afee02\nvshext.dll [2020-10-02] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2015-12-31] (Igor Pavlov) [File not signed] ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers6: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2020-06-25] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-25] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-25] (win.rar GmbH -> Alexander Roshal) FolderExtensions: [] -> {27DD0F8B-3E0E-4ADC-A78A-66047E71ADC5} => C:\Program Files (x86)\Old New Explorer\OldNewExplorer64.dll [2019-09-23] (www.startisback.com) [File not signed] ==================== Codecs (Whitelisted) ==================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\system32\x264vfw64.dll [3799552 2017-07-30] (x264vfw project) [File not signed] HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\system32\lagarith.dll [148992 2011-12-07] () [File not signed] HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\system32\xvidvfw.dll [310784 2019-12-28] () [File not signed] HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\system32\ac3acm.acm [180736 2012-07-21] (fccHandler) [File not signed] HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed] HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\SysWOW64\x264vfw.dll [3850240 2017-07-30] (x264vfw project) [File not signed] HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\SysWOW64\lagarith.dll [216064 2011-12-07] () [File not signed] HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [284160 2019-12-28] () [File not signed] HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\SysWOW64\ac3acm.acm [122880 2012-07-21] (fccHandler) [File not signed] HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\SysWOW64\ff_vfw.dll [112128 2015-10-24] () [File not signed] HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed] ==================== Shortcuts & WMI ======================== (The entries could be listed to be restored or removed.) Shortcut: C:\Users\dojik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Браузер Opera GX.lnk -> C:\Users\dojik\AppData\Local\Programs\Opera GX\launcher.exe (Opera Software) <==== Cyrillic Shortcut: C:\Users\dojik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Новости в последней версии.lnk -> C:\Program Files\WinRAR\WhatsNew.txt () <==== Cyrillic Shortcut: C:\Users\dojik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Руководство по консольной версии RAR.lnk -> C:\Program Files\WinRAR\Rar.txt () <==== Cyrillic Shortcut: C:\Users\dojik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Справка WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.chm () <==== Cyrillic Shortcut: C:\Users\dojik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop\Деинсталлировать Telegram.lnk -> C:\Users\dojik\AppData\Roaming\Telegram Desktop\unins000.exe () <==== Cyrillic Shortcut: C:\Users\dojik\AppData\Roaming\Microsoft\Windows\SendTo\Передача файлов через Bluetooth.LNK -> C:\Windows\System32\fsquirt.exe (Microsoft Corporation) <==== Cyrillic Shortcut: C:\Users\dojik\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Браузер Opera GX.lnk -> C:\Users\dojik\AppData\Local\Programs\Opera GX\launcher.exe (Opera Software) <==== Cyrillic ShortcutWithArgument: C:\Users\dojik\AppData\Roaming\Microsoft\Word\Тест%20Островский308454033998786785\Тест%20Островский.docx.lnk -> C:\Users\dojik\Downloads\Тест Островский.docx () -> 0 <==== Cyrillic ShortcutWithArgument: C:\Users\dojik\AppData\Roaming\Microsoft\Word\Документ%20Microsoft%20Word%20(2)308458964208944051\Документ%20Microsoft%20Word%20(2).docx.lnk -> C:\Users\dojik\Desktop\Документ Microsoft Word (2).docx () -> 0 <==== Cyrillic ShortcutWithArgument: C:\Users\dojik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Активация MS Office.lnk -> C:\Windows\Activator.exe () -> -p12345 <==== Cyrillic ShortcutWithArgument: C:\Users\dojik\AppData\Roaming\Microsoft\Windows\SendTo\Получатель факса.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo <==== Cyrillic ==================== Loaded Modules (Whitelisted) ============= 2020-10-21 08:51 - 2020-10-09 22:45 - 002072064 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\ffmpeg.dll 2020-10-21 08:51 - 2020-10-09 22:45 - 000310784 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\libegl.dll 2020-10-21 08:51 - 2020-10-09 22:45 - 006903808 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\libglesv2.dll 2020-07-22 17:51 - 2015-12-31 17:15 - 000077312 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll 2020-07-22 18:11 - 2020-07-22 18:11 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll 2020-07-22 18:11 - 2020-07-22 18:11 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll 2020-07-22 18:11 - 2020-07-22 18:11 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll 2020-10-20 22:48 - 2020-07-22 18:11 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll 2020-10-20 22:48 - 2020-07-22 18:11 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll 2020-10-20 22:48 - 2020-07-22 18:11 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll 2020-10-20 22:48 - 2020-07-22 18:11 - 000146432 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebSockets.dll 2020-10-20 22:48 - 2020-07-22 18:11 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll 2020-10-20 22:48 - 2020-07-22 18:11 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll 2020-10-12 18:35 - 2019-09-23 23:51 - 000255488 _____ (www.startisback.com) [File not signed] C:\Program Files (x86)\Old New Explorer\OldNewExplorer32.dll 2020-10-12 18:35 - 2019-09-23 23:51 - 000261632 _____ (www.startisback.com) [File not signed] C:\Program Files (x86)\Old New Explorer\OldNewExplorer64.dll ==================== Alternate Data Streams (Whitelisted) ======== ==================== Safe Mode (Whitelisted) ================== ==================== Association (Whitelisted) ================= ==================== Internet Explorer (Whitelisted) ========== HKU\S-1-5-21-913620400-203814966-1364314930-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=625119&clocalename=ru-RU SearchScopes: HKU\S-1-5-21-913620400-203814966-1364314930-1001 -> DefaultScope {8C3078A0-9AAB-4371-85D1-656CA8E46EE8} URL = hxxps://yandex.ru/search/?text={searchTerms}&clid=2233627 SearchScopes: HKU\S-1-5-21-913620400-203814966-1364314930-1001 -> {8C3078A0-9AAB-4371-85D1-656CA8E46EE8} URL = hxxps://yandex.ru/search/?text={searchTerms}&clid=2233627 BHO: No Name -> {27DD0F8B-3E0E-4ADC-A78A-66047E71ADC5} -> C:\Program Files (x86)\Old New Explorer\OldNewExplorer64.dll [2019-09-23] (www.startisback.com) [File not signed] BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll [2020-07-22] (Oracle America, Inc. -> Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll [2020-07-22] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: No Name -> {27DD0F8B-3E0E-4ADC-A78A-66047E71ADC5} -> C:\Program Files (x86)\Old New Explorer\OldNewExplorer32.dll [2019-09-23] (www.startisback.com) [File not signed] BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2020-07-22] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2020-07-22] (Oracle America, Inc. -> Oracle Corporation) Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts content: ========================= (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2019-03-19 07:49 - 2020-10-29 14:05 - 000000849 _____ C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 localhost ==================== Other Areas =========================== (Currently there is no automatic fix for this section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\7-Zip;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common HKU\S-1-5-21-913620400-203814966-1364314930-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Windows Firewall is disabled. ==================== MSCONFIG/TASK MANAGER disabled items == ==================== FirewallRules (Whitelisted) ================ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{BCE691DA-C4E0-46F5-AE8B-E735E9CEFB24}] => (Allow) E:\Games\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe => No File FirewallRules: [{998BE327-DD30-484B-9F7B-4FC9DBFE7C13}] => (Allow) E:\Games\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe => No File FirewallRules: [{02F11D55-C832-4D75-A6B3-EC8D915B9093}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File FirewallRules: [{672CD9D1-2B48-4E38-929E-2BB325A48136}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File FirewallRules: [{D725D38E-8A09-4BD2-8D31-7D15E1A120FE}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{BEB5F8A4-512D-48F4-A220-A16AC32E5023}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{FEE8A11A-8B86-482A-B794-90EE6266217F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{6BAD466C-F8F2-41FF-BD3F-59AD2E452C13}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{FB43EE58-DDED-4C62-928D-D1E085FA94FF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{37546106-3BF6-4141-92D3-7723F9CEB71E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{C6AE8B4F-1E3B-47A6-BF20-12A0466D7D49}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{7AA28DC9-F48B-49DF-80AC-8CAA89045B84}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{C2F18224-FB07-4273-B1A9-60F45C359DF3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{25F81658-0AFA-47AD-B447-E6A498B3B8CF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{CA71B9E5-BB22-4BEC-9A49-2075F7AD9ADA}] => (Allow) C:\Users\dojik\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{9C518191-FDFE-4D33-A956-9F230FE7CDE9}] => (Allow) C:\Users\dojik\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{F034B55B-E24C-404A-BBFD-621DB22BFFE5}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{4557B2C8-4BD9-4FE7-93C3-2A62E5E266E0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [UDP Query User{3AE1CAD6-EC00-4D2C-AEB4-25EC6B733511}C:\users\dojik\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\dojik\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [TCP Query User{1F92B1A0-B0BE-4A7D-831F-5B56B7C907B1}C:\users\dojik\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\dojik\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [UDP Query User{28C06D35-9BCC-4B13-8FAA-464072F78EA8}C:\users\dojik\appdata\local\programs\opera gx\68.0.3618.197\opera.exe] => (Allow) C:\users\dojik\appdata\local\programs\opera gx\68.0.3618.197\opera.exe => No File FirewallRules: [TCP Query User{20729E4E-18B7-4979-A023-6582CB9D0611}C:\users\dojik\appdata\local\programs\opera gx\68.0.3618.197\opera.exe] => (Allow) C:\users\dojik\appdata\local\programs\opera gx\68.0.3618.197\opera.exe => No File FirewallRules: [Block Cortana SearchUI.exe] => (Block) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe => No File FirewallRules: [Block Cortana RemindersShareTargetApp.exe] => (Block) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersShareTargetApp.exe => No File FirewallRules: [Block Cortana RemindersServer.exe] => (Block) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe => No File FirewallRules: [Block Cortana PlacesServer.exe] => (Block) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\PlacesServer.exe => No File FirewallRules: [Block Cortana ActionUriServer.exe] => (Block) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionUriServer.exe => No File FirewallRules: [{15DD9FD2-6F36-46A4-A518-6270CCD3A506}] => (Allow) E:\Games\SteamLibrary\steamapps\common\GarrysMod\hl2.exe => No File FirewallRules: [{90A1224E-F8B8-47F4-9618-68198FA33196}] => (Allow) E:\Games\SteamLibrary\steamapps\common\GarrysMod\hl2.exe => No File FirewallRules: [{86AE7917-CC7D-4AF9-8B62-86E421A298C6}] => (Allow) E:\Games\SteamLibrary\steamapps\common\wallpaper_engine\launcher.exe => No File FirewallRules: [{2477891B-832D-4BD2-90C1-1FD430D4AD41}] => (Allow) E:\Games\SteamLibrary\steamapps\common\wallpaper_engine\launcher.exe => No File FirewallRules: [TCP Query User{54EC3A9A-8EF0-4E52-A067-F257E95DB9F7}C:\program files\java\jre1.8.0_66\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_66\bin\javaw.exe FirewallRules: [UDP Query User{32EB8C64-49CD-49E6-BA6B-AC435359AEB6}C:\program files\java\jre1.8.0_66\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_66\bin\javaw.exe FirewallRules: [TCP Query User{EB3B9265-5A8A-435D-9F01-5FC8D90F2745}D:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe => No File FirewallRules: [UDP Query User{E4D8ADFD-3EBB-4BCC-83C9-0304F0875CC1}D:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe => No File FirewallRules: [{28E50E5F-FE3A-4CD7-9EA7-5F1B89B0E608}] => (Allow) E:\Games\WATCH_DOGS2\bin\WatchDogs2.exe => No File FirewallRules: [{A75E807F-2270-4DDF-9319-54D25CAC4037}] => (Allow) E:\Games\WATCH_DOGS2\bin\WatchDogs2.exe => No File FirewallRules: [{13ED8299-FDF1-410F-82AA-7790E367257C}] => (Allow) E:\Games\WATCH_DOGS2\bin_plus\WatchDogs2.exe => No File FirewallRules: [{C90EBCFD-17C9-4839-B6AB-519B92E41264}] => (Allow) E:\Games\WATCH_DOGS2\bin_plus\WatchDogs2.exe => No File FirewallRules: [{09AD3751-86B7-4BC6-A615-2A78C0863CF0}] => (Allow) E:\Games\WATCH_DOGS2\EAC.exe => No File FirewallRules: [{28161E2D-1039-4630-BAE8-6ADBA5D798D8}] => (Allow) E:\Games\WATCH_DOGS2\EAC.exe => No File FirewallRules: [TCP Query User{5D5FCF58-E75D-42EB-A965-CA779F6D38CA}E:\games\epic games\kingdomcomedeliverance\bin\win64mastermasterepicpgo\kingdomcome.exe] => (Allow) E:\games\epic games\kingdomcomedeliverance\bin\win64mastermasterepicpgo\kingdomcome.exe => No File FirewallRules: [UDP Query User{52DC150A-E112-4ADE-A36D-FE49DA87891F}E:\games\epic games\kingdomcomedeliverance\bin\win64mastermasterepicpgo\kingdomcome.exe] => (Allow) E:\games\epic games\kingdomcomedeliverance\bin\win64mastermasterepicpgo\kingdomcome.exe => No File FirewallRules: [{79121440-D907-4F87-AF0D-D4E0A842FD1A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{7233DFD4-60D7-48D7-A68D-E0A4EFA3A901}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{76F722E6-3DCA-4E4B-8C8E-23261C6A5127}] => (Allow) LPort=80 FirewallRules: [{5704477F-C3E9-4E02-BDC1-A0398F9E14E1}] => (Allow) LPort=80 FirewallRules: [TCP Query User{8CA3F3DA-AA14-43D6-8573-474F9D8198BE}E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Allow) E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe => No File FirewallRules: [UDP Query User{B677F159-41AF-4243-90C3-729088CF303E}E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Allow) E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe => No File FirewallRules: [{DF9C57F1-D919-4AE9-847B-01DF14B3A1F8}] => (Block) LPort=445 FirewallRules: [{91F27148-2FF5-4531-8E99-7369EA2CF8B1}] => (Block) LPort=445 FirewallRules: [{7015376D-5432-4034-9790-569C216FAB18}] => (Block) LPort=139 FirewallRules: [{E9ADDE66-76BD-4EF4-B029-875B01237ECC}] => (Block) LPort=139 FirewallRules: [{571A9F2E-4837-46FF-BC1B-515A6C870DD5}] => (Allow) LPort=3389 FirewallRules: [{362F0154-F4D5-4893-8507-988EC39E3912}] => (Allow) C:\ProgramData\Windows\rutserv.exe => No File FirewallRules: [{AD9A992B-9158-4D6E-998D-5E14F0121310}] => (Allow) E:\Games\SteamLibrary\steamapps\common\Terraria\Terraria.exe => No File FirewallRules: [{5A4C9CD6-1F97-40D9-B163-46C94D7A639D}] => (Allow) E:\Games\SteamLibrary\steamapps\common\Terraria\Terraria.exe => No File FirewallRules: [TCP Query User{FAE0BF4A-3029-46D2-B040-E90651FC8A67}C:\users\dojik\appdata\local\programs\opera gx\68.0.3618.206\opera.exe] => (Allow) C:\users\dojik\appdata\local\programs\opera gx\68.0.3618.206\opera.exe => No File FirewallRules: [UDP Query User{6A2CF43E-784E-4EB4-8C22-43FE7F993749}C:\users\dojik\appdata\local\programs\opera gx\68.0.3618.206\opera.exe] => (Allow) C:\users\dojik\appdata\local\programs\opera gx\68.0.3618.206\opera.exe => No File FirewallRules: [{2223209D-33F5-469D-9B5A-87DA61F5079A}] => (Allow) C:\Users\dojik\MediaGet2\mediaget.exe => No File FirewallRules: [{43591741-27E9-4A6F-B5F1-F3F43412979D}] => (Allow) C:\Users\dojik\MediaGet2\mediaget.exe => No File FirewallRules: [{0B6B519E-D8EA-4FEA-B3DA-F175C9AED64F}] => (Allow) E:\Games\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe => No File FirewallRules: [{8C70843D-B15A-4718-A073-3297CF6FC7A7}] => (Allow) E:\Games\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe => No File FirewallRules: [{614FAD33-4D77-410C-9255-959783ED486B}] => (Allow) E:\Games\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_Vulkan.exe => No File FirewallRules: [{97A67651-8555-472D-AB3B-B793892F41FB}] => (Allow) E:\Games\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_Vulkan.exe => No File FirewallRules: [{DB0AEF67-82FB-4F2D-8595-9832ADBE31B3}] => (Allow) E:\Games\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe => No File FirewallRules: [{395DC478-4DD2-4665-AEDF-746E0E136B4B}] => (Allow) E:\Games\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe => No File FirewallRules: [{BB274C22-02AC-4E70-9294-47803A5EBA86}] => (Allow) D:\SteamLibrary\steamapps\common\Factorio\bin\x64\factorio.exe (Wube Software) [File not signed] FirewallRules: [{3D9697F9-4B68-43C8-B0F3-932E3CBADE85}] => (Allow) D:\SteamLibrary\steamapps\common\Factorio\bin\x64\factorio.exe (Wube Software) [File not signed] FirewallRules: [{C17D42B4-D031-4262-8B50-EDD1BE821BD3}] => (Allow) E:\Games\SteamLibrary\steamapps\common\PAYDAY 2\payday2_win32_release.exe => No File FirewallRules: [{1DA94EEB-4794-4C31-85F1-542301F6FBB7}] => (Allow) E:\Games\SteamLibrary\steamapps\common\PAYDAY 2\payday2_win32_release.exe => No File FirewallRules: [{A86D3583-F588-464E-8AFF-B3AE6DCE3D48}] => (Allow) E:\Games\Spider-Man - Web of Shadows\image\pc\Spider-Man Web of Shadows.exe => No File FirewallRules: [{F4B80468-6854-471A-B095-8CBB0CE80D00}] => (Allow) E:\Games\Spider-Man - Web of Shadows\image\pc\Spider-Man Web of Shadows.exe => No File FirewallRules: [{D7AE5CFF-F872-4EBA-A48F-2CC701F1DA27}] => (Allow) E:\Games\SteamLibrary\steamapps\common\Terrorhedron\terrorhedron.exe => No File FirewallRules: [{40A51061-E686-4CEE-8A16-E47A7F371130}] => (Allow) E:\Games\SteamLibrary\steamapps\common\Terrorhedron\terrorhedron.exe => No File FirewallRules: [TCP Query User{DA63E6F3-1082-4DEA-874B-9701877FAC3F}E:\games\steamlibrary\steamapps\common\counter-strike source\hl2.exe] => (Block) E:\games\steamlibrary\steamapps\common\counter-strike source\hl2.exe => No File FirewallRules: [UDP Query User{0C600C59-332A-4A43-AC54-C113F5BF59B6}E:\games\steamlibrary\steamapps\common\counter-strike source\hl2.exe] => (Block) E:\games\steamlibrary\steamapps\common\counter-strike source\hl2.exe => No File FirewallRules: [TCP Query User{531A2961-7380-483A-A7F4-09879B1C70EB}D:\games kot3ika\arma 3\arma3_x64.exe] => (Block) D:\games kot3ika\arma 3\arma3_x64.exe => No File FirewallRules: [UDP Query User{2905094C-5873-4FB4-B865-47D8AF6AC623}D:\games kot3ika\arma 3\arma3_x64.exe] => (Block) D:\games kot3ika\arma 3\arma3_x64.exe => No File FirewallRules: [TCP Query User{904AC4D9-EE0D-49ED-81D5-E177E09A3110}E:\games\call of duty modern warfare\modernwarfare.exe] => (Allow) E:\games\call of duty modern warfare\modernwarfare.exe => No File FirewallRules: [UDP Query User{A3892903-0502-4A7F-AE2B-17271E4CD2EF}E:\games\call of duty modern warfare\modernwarfare.exe] => (Allow) E:\games\call of duty modern warfare\modernwarfare.exe => No File FirewallRules: [{86C1CF77-C671-4FF0-80D7-55EE5B4E6312}] => (Allow) D:\SteamLibrary\steamapps\common\Mindustry\Mindustry.exe () [File not signed] FirewallRules: [{6F9D73DD-3ECD-4E42-AB71-0E6B7004E947}] => (Allow) D:\SteamLibrary\steamapps\common\Mindustry\Mindustry.exe () [File not signed] FirewallRules: [TCP Query User{B7780063-C286-4FD0-952B-28566291D847}E:\games\satisfactory\factorygame\binaries\win64\factorygame-win64-shipping.exe] => (Allow) E:\games\satisfactory\factorygame\binaries\win64\factorygame-win64-shipping.exe => No File FirewallRules: [UDP Query User{CD70C3CA-E4F4-466A-A3A4-5F5974D02E61}E:\games\satisfactory\factorygame\binaries\win64\factorygame-win64-shipping.exe] => (Allow) E:\games\satisfactory\factorygame\binaries\win64\factorygame-win64-shipping.exe => No File FirewallRules: [{8C316052-91D6-4FAE-A14F-0B21C02B38AB}] => (Allow) D:\SteamLibrary\steamapps\common\Among Us\Among Us.exe () [File not signed] FirewallRules: [{E61390C5-3E36-4C9E-81D7-297AA0347D32}] => (Allow) D:\SteamLibrary\steamapps\common\Among Us\Among Us.exe () [File not signed] FirewallRules: [{91B29054-B4A0-4A98-9CBF-77A95EDBC877}] => (Allow) E:\Games\SteamLibrary\steamapps\common\wallpaper_engine\bin\diagnostics32.exe => No File FirewallRules: [{A1E96312-8D63-4341-BB16-EB600A79F6F2}] => (Allow) E:\Games\SteamLibrary\steamapps\common\wallpaper_engine\bin\diagnostics32.exe => No File FirewallRules: [TCP Query User{A231B07B-A5F8-4AFC-8DF8-7DF79262089D}C:\users\dojik\appdata\local\programs\opera gx\71.0.3770.138\opera.exe] => (Allow) C:\users\dojik\appdata\local\programs\opera gx\71.0.3770.138\opera.exe => No File FirewallRules: [UDP Query User{F85DE04C-FDC6-4623-B0D0-2B8824B51031}C:\users\dojik\appdata\local\programs\opera gx\71.0.3770.138\opera.exe] => (Allow) C:\users\dojik\appdata\local\programs\opera gx\71.0.3770.138\opera.exe => No File FirewallRules: [{63A4BA06-88FD-4D33-804D-B63D6DD3F5EE}] => (Allow) E:\Games\SteamLibrary\steamapps\common\Left 4 Dead 2\left4dead2.exe => No File FirewallRules: [{6FB9D53B-EC81-4C93-BF2A-2BF471A8D654}] => (Allow) E:\Games\SteamLibrary\steamapps\common\Left 4 Dead 2\left4dead2.exe => No File FirewallRules: [{297560D4-43EB-4D13-AB18-EB6E3B74F066}] => (Allow) E:\Games\SteamLibrary\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe => No File FirewallRules: [{F2C0A48E-7004-4E47-827D-65221E9FF5F1}] => (Allow) E:\Games\SteamLibrary\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe => No File FirewallRules: [{0EB81279-C6AE-4A04-9B30-D7229D77E482}] => (Allow) D:\SteamLibrary\steamapps\common\wallpaper_engine\launcher.exe (Kristjan Skutta -> ) FirewallRules: [{DDE2CE1A-AF47-4633-8D31-1C38F853D186}] => (Allow) D:\SteamLibrary\steamapps\common\wallpaper_engine\launcher.exe (Kristjan Skutta -> ) FirewallRules: [{FC0878B6-BFBD-47E9-AF4B-160C1B908240}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> ) FirewallRules: [{0CE2D7AA-2197-4246-8890-6382D11C20EF}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> ) FirewallRules: [{7F4FAA65-D5A1-45BE-9D34-E9FC7D3822EF}] => (Allow) D:\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{F578E577-E696-4615-ADC4-BBAD018FF0DD}] => (Allow) D:\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{D753B025-F8B2-48AD-BBC1-59F72C544A27}] => (Allow) D:\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_Vulkan.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{62B6E8F1-C03F-4794-A031-0772F3F281E5}] => (Allow) D:\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_Vulkan.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{8FD31C67-776A-44FF-B742-0D5F6496113B}] => (Allow) D:\SteamLibrary\steamapps\common\Aimtastic\Aimtastic.exe () [File not signed] FirewallRules: [{BF47558D-BB8E-4CBB-9F98-19A7B85AF6F9}] => (Allow) D:\SteamLibrary\steamapps\common\Aimtastic\Aimtastic.exe () [File not signed] FirewallRules: [{7D420A72-F86F-40CC-90E0-C39CBC6BA62C}] => (Allow) D:\SteamLibrary\steamapps\common\Total War WARHAMMER II\launcher\launcher.exe => No File FirewallRules: [{EB8FD3FE-8A6C-478B-9062-61300DCADC1D}] => (Allow) D:\SteamLibrary\steamapps\common\Total War WARHAMMER II\launcher\launcher.exe => No File FirewallRules: [{92213A9D-25A0-4898-B7A1-0F159B4560E9}] => (Allow) D:\SteamLibrary\steamapps\common\Half-Life\hl.exe (Valve -> Valve) FirewallRules: [{9A03E89E-795B-4913-B8C7-180CCA6A3D16}] => (Allow) D:\SteamLibrary\steamapps\common\Half-Life\hl.exe (Valve -> Valve) FirewallRules: [{F080D301-C669-4AB9-874F-7FB772A642DB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{88EDEE9B-7DAF-43F7-8973-2CF3E6818E0B}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{E91FFD2C-2963-46CC-96DC-7A111592D238}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{E2B7B2A2-9F1F-4931-AB20-99802A3094C5}] => (Allow) D:\SteamLibrary\steamapps\common\Pummel Party\PummelParty.exe () [File not signed] FirewallRules: [{78EA779E-4B67-4E68-9421-77D03FFC0C0C}] => (Allow) D:\SteamLibrary\steamapps\common\Pummel Party\PummelParty.exe () [File not signed] FirewallRules: [{1368E9C6-5740-4B0A-901E-E48D21D1163C}] => (Allow) D:\SteamLibrary\steamapps\common\hotline_miami\HotlineMiami.exe (Devolver) [File not signed] FirewallRules: [{0444AFF7-7163-439E-865D-72F8A7D4C08D}] => (Allow) D:\SteamLibrary\steamapps\common\hotline_miami\HotlineMiami.exe (Devolver) [File not signed] FirewallRules: [{4721AE37-F280-4DEB-A004-0B60A1530925}] => (Allow) D:\SteamLibrary\steamapps\common\Hotline Miami 2\HotlineMiami2.exe () [File not signed] FirewallRules: [{106C5D63-B05B-45D4-9E7B-87DD6F365EA6}] => (Allow) D:\SteamLibrary\steamapps\common\Hotline Miami 2\HotlineMiami2.exe () [File not signed] FirewallRules: [{B95684F0-42CA-4937-8CA3-C994CD275B8C}] => (Allow) D:\SteamLibrary\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [File not signed] FirewallRules: [{BDE9EB18-8171-4B4C-BA0C-AFB313279E62}] => (Allow) D:\SteamLibrary\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [File not signed] FirewallRules: [TCP Query User{97198A95-3E62-42D7-B7B4-F82313C43262}C:\users\dojik\appdata\local\programs\opera gx\71.0.3770.302\opera.exe] => (Allow) C:\users\dojik\appdata\local\programs\opera gx\71.0.3770.302\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [UDP Query User{2808D7CA-1E6C-4D0E-A44E-7A3C8DC3CD79}C:\users\dojik\appdata\local\programs\opera gx\71.0.3770.302\opera.exe] => (Allow) C:\users\dojik\appdata\local\programs\opera gx\71.0.3770.302\opera.exe (Opera Software AS -> Opera Software) ==================== Restore Points ========================= ==================== Faulty Device Manager Devices ============ Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Event log errors: ======================== Application errors: ================== Error: (10/29/2020 02:06:43 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Сбой активации лицензий (slui.exe) со следующим кодом ошибки: hr=0xC004F074 Аргументы командной строки: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=e0c42288-980c-4788-a014-c080d2e1926e;NotificationInterval=1440;Trigger=NetworkAvailable Error: (10/29/2020 02:06:40 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Сбой активации лицензий (slui.exe) со следующим кодом ошибки: hr=0xC004F074 Аргументы командной строки: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=e0c42288-980c-4788-a014-c080d2e1926e;NotificationInterval=1440;Trigger=UserLogon;SessionId=1 Error: (10/29/2020 01:15:53 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Сбой активации лицензий (slui.exe) со следующим кодом ошибки: hr=0xC004F074 Аргументы командной строки: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=e0c42288-980c-4788-a014-c080d2e1926e;NotificationInterval=1440;Trigger=NetworkAvailable Error: (10/29/2020 01:15:27 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Сбой активации лицензий (slui.exe) со следующим кодом ошибки: hr=0xC004F074 Аргументы командной строки: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=e0c42288-980c-4788-a014-c080d2e1926e;NotificationInterval=1440;Trigger=NetworkAvailable Error: (10/29/2020 01:15:21 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Сбой активации лицензий (slui.exe) со следующим кодом ошибки: hr=0xC004F074 Аргументы командной строки: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=e0c42288-980c-4788-a014-c080d2e1926e;NotificationInterval=1440;Trigger=NetworkAvailable Error: (10/29/2020 01:15:03 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Сбой активации лицензий (slui.exe) со следующим кодом ошибки: hr=0xC004F074 Аргументы командной строки: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=e0c42288-980c-4788-a014-c080d2e1926e;NotificationInterval=1440;Trigger=NetworkAvailable Error: (10/29/2020 09:06:48 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Сбой активации лицензий (slui.exe) со следующим кодом ошибки: hr=0xC004F074 Аргументы командной строки: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=e0c42288-980c-4788-a014-c080d2e1926e;NotificationInterval=1440;Trigger=NetworkAvailable Error: (10/29/2020 09:06:22 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Сбой активации лицензий (slui.exe) со следующим кодом ошибки: hr=0xC004F074 Аргументы командной строки: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=e0c42288-980c-4788-a014-c080d2e1926e;NotificationInterval=1440;Trigger=UserLogon;SessionId=2 System errors: ============= Error: (10/29/2020 02:15:49 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY) Description: Регистрация сервера {F9A874B6-F8A8-4D73-B5A8-AB610816828B} DCOM не выполнена за отведенное время ожидания. Error: (10/29/2020 02:13:49 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Служба "Службы удаленных рабочих столов" завершена из-за ошибки Не удается найти указанный файл. Error: (10/29/2020 02:13:49 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY) Description: Регистрация сервера {F9A874B6-F8A8-4D73-B5A8-AB610816828B} DCOM не выполнена за отведенное время ожидания. Error: (10/29/2020 02:11:49 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Служба "Службы удаленных рабочих столов" завершена из-за ошибки Не удается найти указанный файл. Error: (10/29/2020 02:11:49 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY) Description: Регистрация сервера {F9A874B6-F8A8-4D73-B5A8-AB610816828B} DCOM не выполнена за отведенное время ожидания. Error: (10/29/2020 02:09:49 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Служба "Службы удаленных рабочих столов" завершена из-за ошибки Не удается найти указанный файл. Error: (10/29/2020 02:09:49 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY) Description: Регистрация сервера {F9A874B6-F8A8-4D73-B5A8-AB610816828B} DCOM не выполнена за отведенное время ожидания. Error: (10/29/2020 02:07:49 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Служба "Службы удаленных рабочих столов" завершена из-за ошибки Не удается найти указанный файл. CodeIntegrity: =================================== Date: 2020-10-29 14:12:40.3920000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SearchIndexer.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Old New Explorer\OldNewExplorer64.dll that did not meet the Microsoft signing level requirements. Date: 2020-10-28 22:24:29.2200000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SearchIndexer.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Old New Explorer\OldNewExplorer64.dll that did not meet the Microsoft signing level requirements. Date: 2020-10-28 12:05:38.7380000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SearchIndexer.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Old New Explorer\OldNewExplorer64.dll that did not meet the Microsoft signing level requirements. Date: 2020-10-28 11:39:07.5720000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SearchIndexer.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Old New Explorer\OldNewExplorer64.dll that did not meet the Microsoft signing level requirements. Date: 2020-10-28 11:22:29.6200000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SearchIndexer.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Old New Explorer\OldNewExplorer64.dll that did not meet the Microsoft signing level requirements. Date: 2020-10-28 11:18:08.6540000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SearchIndexer.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Old New Explorer\OldNewExplorer64.dll that did not meet the Microsoft signing level requirements. Date: 2020-10-28 11:02:15.1470000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SearchIndexer.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Old New Explorer\OldNewExplorer64.dll that did not meet the Microsoft signing level requirements. Date: 2020-10-27 14:50:42.5630000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SearchIndexer.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Old New Explorer\OldNewExplorer64.dll that did not meet the Microsoft signing level requirements. ==================== Memory info =========================== BIOS: American Megatrends Inc. B.70 06/10/2020 Motherboard: Micro-Star International Co., Ltd. B450M PRO-VDH MAX (MS-7A38) Processor: AMD Ryzen 5 2600 Six-Core Processor Percentage of memory in use: 24% Total physical RAM: 16335.12 MB Available physical RAM: 12253.78 MB Total Virtual: 18767.12 MB Available Virtual: 11867.48 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:147.78 GB) (Free:79.26 GB) NTFS Drive d: () (Fixed) (Total:316.83 GB) (Free:64.42 GB) NTFS Drive h: (Новый том) (Fixed) (Total:931.5 GB) (Free:931.37 GB) NTFS \\?\Volume{b3adb32c-eb4b-41b4-a2ad-19bb0eb1b062}\ (Восстановить) (Fixed) (Total:0.52 GB) (Free:0.11 GB) NTFS \\?\Volume{57a9680a-b74f-4b39-8f3d-7a1e8c83de49}\ () (Fixed) (Total:0.51 GB) (Free:0.08 GB) NTFS \\?\Volume{057b8f4f-c64c-4942-a2de-78f7cd0e82be}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Partition Table ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 1 (Size: 931.5 GB) (Disk ID: 0515BC1E) Partition: GPT. ==================== End of Addition.txt =======================