Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-02-2023 Ran by maxxy (17-02-2023 16:59:46) Running from C:\Users\maxxy\Desktop Microsoft Windows 11 Home Version 22H2 22621.963 (X64) (2022-10-09 18:46:59) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= (If an entry is included in the fixlist, it will be removed.) Administrator (S-1-5-21-589984618-1337359365-324211944-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-589984618-1337359365-324211944-503 - Limited - Disabled) Guest (S-1-5-21-589984618-1337359365-324211944-501 - Limited - Disabled) maxxy (S-1-5-21-589984618-1337359365-324211944-1001 - Administrator - Enabled) => C:\Users\maxxy WDAGUtilityAccount (S-1-5-21-589984618-1337359365-324211944-504 - Limited - Disabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-589984618-1337359365-324211944-1001\...\uTorrent) (Version: 3.6.0.46590 - BitTorrent Inc.) AutoHotkey 1.1.34.04 (HKLM\...\AutoHotkey) (Version: 1.1.34.04 - Lexikos) blender (HKLM\...\{8E411BEA-E05E-4E73-B9D3-A89A3084D67D}) (Version: 3.0.0 - Blender Foundation) CORSAIR iCUE 4 Software (HKLM\...\{97E0262E-4B0A-4DD1-B432-8BE71A8BDC0A}) (Version: 4.18.209 - Corsair) Discord (HKU\S-1-5-21-589984618-1337359365-324211944-1001\...\Discord) (Version: 1.0.9003 - Discord Inc.) Documentation Manager (HKLM\...\{EC7D2299-EAEC-498A-947B-ADC4495AA6D6}) (Version: 22.20.0.6 - Intel Corporation) Hidden Epic Games Launcher (HKLM-x32\...\{209F4B4B-3DF2-4825-9906-D4D6A80EC09E}) (Version: 1.3.0.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Epic Online Services (HKLM-x32\...\{32C68D93-D32F-4B01-8250-61642BFC22F8}) (Version: 2.0.28.0 - Epic Games, Inc.) EPSON Universal Print Driver Printer Uninstall (HKLM\...\EPSON Universal Print Driver) (Version: - SEIKO EPSON Corporation) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 110.0.5481.97 - Google LLC) Intel® Software Installer (HKLM-x32\...\{76cc8e2a-8308-43d3-a3c3-423d2a1ca435}) (Version: 22.20.0.6 - Intel Corporation) Hidden JJSploit 6.4.0 (HKU\S-1-5-21-589984618-1337359365-324211944-1001\...\b1e3a7e5-766b-5910-bd89-4bbe7200c627) (Version: 6.4.0 - ) JJS-UI 6.4.12 (HKU\S-1-5-21-589984618-1337359365-324211944-1001\...\08d3cffc-d9a7-55a8-82d8-201f042a4e89) (Version: 6.4.12 - ) Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Mediatek RT2870 Wireless LAN Card (HKLM-x32\...\{28DA7D8B-F9A4-4F18-8AA0-551B1E084D0D}) (Version: 1.5.39.173 - MediatekWiFi) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 110.0.1587.41 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 109.0.1518.78 - Microsoft Corporation) Microsoft GameInput (HKLM-x32\...\{6BBE9278-659F-FA16-E4B8-C2D60DE0DCC7}) (Version: 10.1.22621.1863 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-589984618-1337359365-324211944-1001\...\OneDriveSetup.exe) (Version: 22.227.1030.0001 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{6A2A8076-135F-4F55-BB02-DED67C8C6934}) (Version: 4.67.0.0 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.31.31103 (HKLM-x32\...\{2aaf1df0-eb13-4099-9992-962bb4e596d1}) (Version: 14.31.31103.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.31.31103 (HKLM-x32\...\{41d7b770-418a-43b7-95a5-f925fff05789}) (Version: 14.31.31103.0 - Microsoft Corporation) Microsoft Visual C++ 2022 X64 Additional Runtime - 14.31.31103 (HKLM\...\{A977984B-9244-49E3-BD24-43F0A8009667}) (Version: 14.31.31103 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.31.31103 (HKLM\...\{A181A302-3F6D-4BAD-97A8-A426A6499D78}) (Version: 14.31.31103 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Additional Runtime - 14.31.31103 (HKLM-x32\...\{5720EC03-F26F-40B7-980C-50B5D420B5DE}) (Version: 14.31.31103 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.31.31103 (HKLM-x32\...\{799E3FFF-705C-461F-B400-6DE27398B3E5}) (Version: 14.31.31103 - Microsoft Corporation) Hidden Npcap (HKLM-x32\...\NpcapInst) (Version: 1.55 - Nmap Project) NVIDIA FrameView SDK 1.2.7321.30900954 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.7321.30900954 - NVIDIA Corporation) NVIDIA GeForce Experience 3.25.0.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.25.0.84 - NVIDIA Corporation) NVIDIA Graphics Driver 497.29 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 497.29 - NVIDIA Corporation) NVIDIA HD Audio Driver 1.3.38.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.94 - NVIDIA Corporation) NVIDIA PhysX System Software 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation) NVIDIA Quadro View 200.93 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 200.93 - NVIDIA Corporation) Opera Stable 95.0.4635.46 (HKU\S-1-5-21-589984618-1337359365-324211944-1001\...\Opera 95.0.4635.46) (Version: 95.0.4635.46 - Opera Software) Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.) Roblox Player for maxxy (HKU\S-1-5-21-589984618-1337359365-324211944-1001\...\roblox-player) (Version: - Roblox Corporation) Roblox Studio for maxxy (HKU\S-1-5-21-589984618-1337359365-324211944-1001\...\roblox-studio) (Version: - Roblox Corporation) Save Wizard for PS4 MAX (HKLM-x32\...\{D0DDCFB5-446F-423A-8C72-6CFE537AF959}) (Version: 1.1.0.0 - DataPower) Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) System Mechanic (HKLM-x32\...\{95129D61-FF52-4FA8-A403-3E31FC5D9696}) (Version: 17.5.0.116 - iolo technologies, LLC) VALORANT (HKU\S-1-5-21-589984618-1337359365-324211944-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc) Virtual Desktop Service (HKLM\...\{12B28B16-C77A-4D19-A5E2-B3648C6EE134}) (Version: 1.18.31 - Virtual Desktop, Inc.) Virtual Desktop Streamer (HKLM\...\{C441ED60-E5A5-4A9D-BC8B-3D7769C0B937}) (Version: 1.25.10 - Virtual Desktop, Inc.) Voicemod (HKLM\...\{8435A407-F778-4647-9CDB-46E5EC50BAD0}_is1) (Version: 2.30.1.0 - Voicemod S.L.) Windows PC Health Check (HKLM\...\{6798C408-2636-448C-8AC6-F4E341102D27}) (Version: 3.6.2204.08001 - Microsoft Corporation) Windows PC Health Check (HKLM\...\{BCA59500-933F-4608-A295-104635925BE0}) (Version: 3.5.2204.04001 - Microsoft Corporation) WinRAR 6.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.11.0 - win.rar GmbH) Wireshark 3.6.3 64-bit (HKLM-x32\...\Wireshark) (Version: 3.6.3 - The Wireshark developer community, hxxps://www.wireshark.org) Packages: ========= Clipchamp -> C:\Program Files\WindowsApps\Clipchamp.Clipchamp_2.5.15.0_neutral__yxz26nhyzhsrt [2023-02-12] (Microsoft Corp.) Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_1.45.5.0_x64__6rarf9sa4v8jt [2023-02-14] (Disney) iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12127.1.57051.0_x64__nzyj5cx40ttqa [2023-02-12] (Apple Inc.) [Startup Task] Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.39.0_x64__8wekyb3d8bbwe [2023-02-14] (Microsoft Corp.) Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_1.1.28.0_x64__8wekyb3d8bbwe [2022-08-26] (Microsoft Studios) ms-resource:APP_WINDOW_NAME -> C:\Program Files\WindowsApps\MicrosoftCorporationII.QuickAssist_2.0.9.0_x64__8wekyb3d8bbwe [2023-02-12] (Microsoft Corp.) ms-resource:AppStoreName -> C:\Program Files\WindowsApps\Microsoft.RawImageExtension_2.1.40041.0_x64__8wekyb3d8bbwe [2023-02-14] (Microsoft Corporation) ms-resource:AppxManifest_DisplayName -> C:\Windows\SystemApps\Microsoft.Windows.PrintQueueActionCenter_cw5n1h2txyewy [2023-02-12] (Microsoft Corporation) ms-resource:ProductPkgDisplayName -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.Core_cw5n1h2txyewy [2023-02-12] (ms-resource:ProductPublisherDisplayName) NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.963.0_x64__56jybvy8sckqj [2023-02-12] (NVIDIA Corp.) Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.11.217.0_x64__dt26b99r8h8gj [2023-02-12] (Realtek Semiconductor Corp) Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.15.12020.0_x64__8wekyb3d8bbwe [2023-02-12] (Microsoft Studios) [MS Ad] Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0 [2023-02-14] (Spotify AB) [Startup Task] WindowsAppRuntime.1.2 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.2_2000.747.1945.0_x64__8wekyb3d8bbwe [2023-02-14] (Microsoft Corporation) WindowsAppRuntime.1.2 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.2_2000.747.1945.0_x86__8wekyb3d8bbwe [2023-02-14] (Microsoft Corporation) WinRAR -> C:\Program Files\WinRAR [2022-06-17] (0) ==================== Custom CLSID (Whitelisted): ============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-589984618-1337359365-324211944-1001_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> "C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe" -ToastActivated => No File CustomCLSID: HKU\S-1-5-21-589984618-1337359365-324211944-1001_Classes\CLSID\{89b2b650-c4dd-d68b-46e7-3176f1973c8b}\localserver32 -> C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe (Voicemod Sociedad Limitada -> Voicemod) ContextMenuHandlers1: [Incinerator] -> {E8215BEA-3290-4C73-964B-75502B9B41B2} => C:\Program Files (x86)\Phoenix360\System Mechanic\Incinerator.dll [2017-12-08] (iolo technologies, LLC -> iolo technologies, LLC) ContextMenuHandlers4: [Incinerator] -> {E8215BEA-3290-4C73-964B-75502B9B41B2} => C:\Program Files (x86)\Phoenix360\System Mechanic\Incinerator.dll [2017-12-08] (iolo technologies, LLC -> iolo technologies, LLC) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_0bc9105c62ca22fb\nvshext.dll [2021-12-15] (Nvidia Corporation -> NVIDIA Corporation) ContextMenuHandlers5: [NvQuadroView] -> {1E9B04FB-F9E5-4718-997B-B8DA88302A48} => C:\Program Files\NVIDIA Corporation\nview\nvshell.dll [2020-10-05] (NVIDIA Corporation -> NVIDIA Corporation) ==================== Codecs (Whitelisted) ==================== ==================== Shortcuts & WMI ======================== ==================== Loaded Modules (Whitelisted) ============= 2022-12-03 11:14 - 2022-12-03 11:14 - 000113152 _____ () [File not signed] C:\Program Files\Virtual Desktop\VirtualDesktop.Shell.Native.dll 2022-02-14 18:01 - 2022-02-14 18:01 - 068403712 _____ (FFmpeg Project) [File not signed] C:\Program Files\Virtual Desktop Streamer\avcodec-58.dll 2022-02-14 18:01 - 2022-02-14 18:01 - 001340416 _____ (FFmpeg Project) [File not signed] C:\Program Files\Virtual Desktop Streamer\avutil-56.dll 2022-02-14 18:01 - 2022-02-14 18:01 - 000614912 _____ (FFmpeg Project) [File not signed] C:\Program Files\Virtual Desktop Streamer\swresample-3.dll 2021-10-11 16:41 - 2021-10-11 16:41 - 000090112 _____ (Silicon Laboratories, Inc.) [File not signed] C:\Program Files\Corsair\CORSAIR iCUE 4 Software\SiUSBXp.dll ==================== Alternate Data Streams (Whitelisted) ======== (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [10470] ==================== Safe Mode (Whitelisted) ================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HidSpiCx.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TextInputManagementService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{5099944A-F6B9-4057-A056-8C550228544C} => ""="Memory" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{5099944A-F6B9-4057-A056-8C550228544C} => "SafeBootDrivers"="1" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\HidSpiCx.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TextInputManagementService => ""="Service" ==================== Association (Whitelisted) ================= ==================== Internet Explorer (Whitelisted) ========== ==================== Hosts content: ========================= (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2019-12-07 09:14 - 2019-12-07 09:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Other Areas =========================== (Currently there is no automatic fix for this section.) HKU\S-1-5-21-589984618-1337359365-324211944-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\maxxy\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img0.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Windows Firewall is enabled. Network Binding: ============= WiFi 2: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled) Ethernet: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled) ==================== MSCONFIG/TASK MANAGER disabled items == (If an entry is included in the fixlist, it will be removed.) HKLM\...\StartupApproved\Run: => "SecurityHealth" HKLM\...\StartupApproved\Run: => "CORSAIR iCUE 4 Software" HKU\S-1-5-21-589984618-1337359365-324211944-1001\...\StartupApproved\Run: => "EpicGamesLauncher" HKU\S-1-5-21-589984618-1337359365-324211944-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_EA410C61FB31D73AFA3C71DD38F22C9A" HKU\S-1-5-21-589984618-1337359365-324211944-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-589984618-1337359365-324211944-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-589984618-1337359365-324211944-1001\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-589984618-1337359365-324211944-1001\...\StartupApproved\Run: => "Voicemod" ==================== FirewallRules (Whitelisted) ================ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{4A178632-653C-4EB5-AB49-74ECAB874E26}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.194.874.0_x86__zpdnekdrzrea0\Spotify.exe => No File FirewallRules: [{A025DCD7-791B-4FF2-90F0-53B5639ECDFB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.194.874.0_x86__zpdnekdrzrea0\Spotify.exe => No File FirewallRules: [{E93CBCFF-D0FA-487D-BFEF-BE1B46356A83}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.194.874.0_x86__zpdnekdrzrea0\Spotify.exe => No File FirewallRules: [{D709A2A2-4AF0-4396-B450-FD03933435ED}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.194.874.0_x86__zpdnekdrzrea0\Spotify.exe => No File FirewallRules: [{F34DBE26-9B81-42CD-99A7-39802E28C6FB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.194.874.0_x86__zpdnekdrzrea0\Spotify.exe => No File FirewallRules: [{81A71A95-1CFA-4895-A0FE-8F5E36D33606}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.194.874.0_x86__zpdnekdrzrea0\Spotify.exe => No File FirewallRules: [{5715D549-E0C7-481C-925C-49A9B3120F81}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.194.874.0_x86__zpdnekdrzrea0\Spotify.exe => No File FirewallRules: [{6BDEF31A-12B9-4096-88F4-24CDF6B7D057}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.194.874.0_x86__zpdnekdrzrea0\Spotify.exe => No File FirewallRules: [UDP Query User{FE8B4F8C-B683-4ABA-A75A-2552B81E9C07}C:\users\maxxy\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\maxxy\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe FirewallRules: [TCP Query User{F93E33E5-45D6-4358-8B7D-42F377F28FC9}C:\users\maxxy\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\maxxy\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe FirewallRules: [{619749B8-82D5-45B4-AFF2-6CA753C17024}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\VRChat\launch.exe () [File not signed] FirewallRules: [{A2A54FBE-CE43-4FA4-9713-CB5D78000A89}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\VRChat\launch.exe () [File not signed] FirewallRules: [{F1D5DA29-2ED8-49D4-8EF1-25FB253D7B2D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta, Kristjan -> ) FirewallRules: [{A6AE7A4E-8BC0-426A-A488-348378E9F30B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta, Kristjan -> ) FirewallRules: [{0FFCF6DF-D27C-4240-8ADC-2E4AD256ADD8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{185FDA5A-E0B4-43B9-B8F4-387B84BC475A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{4653FA05-A4C0-4AC5-97E7-CEA98629172A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{BAAC3112-3C6F-4665-AB26-98628F07F89D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{735A2AB9-8707-480D-AD24-7AAD6278D3A8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe () [File not signed] FirewallRules: [{5DCF850E-59BC-4A4F-A0FD-708861458E3B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe () [File not signed] FirewallRules: [{CDB5AF47-C937-47F7-BD96-1F2F86787094}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{9A0E102F-D554-469C-8FF5-DA6C9A50CFB5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{DF8F7084-AE2A-4F57-9F76-04591DD2DEFB}] => (Allow) D:\Driver Tool\DriverTalent.exe => No File FirewallRules: [{139E3148-8778-4673-8159-96CF633676CE}] => (Allow) D:\Driver Tool\DTLService.exe => No File FirewallRules: [{CCF3E7C8-3BB8-4ABB-A4AD-4457A8EDAAD6}] => (Allow) D:\Driver Tool\download\MiniThunderPlatform.exe => No File FirewallRules: [{57F76B62-75A4-4A0D-A58E-9AED332D9CF9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DyingLightGame.exe (Techland S.A. -> Techland) FirewallRules: [{189C20B9-0A93-45C3-9763-4EEADDA7CCB5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DyingLightGame.exe (Techland S.A. -> Techland) FirewallRules: [{3A380407-4752-4D5A-A4A6-BC9789422866}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crab Game\Crab Game.exe () [File not signed] FirewallRules: [{FA9B54B7-7F91-45FB-A579-85604C313E48}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crab Game\Crab Game.exe () [File not signed] FirewallRules: [{57A82355-B769-4024-B766-B4B5180E0BC7}] => (Allow) C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe (Voicemod Sociedad Limitada -> Voicemod) FirewallRules: [{45319983-04B2-459C-87C5-A9481E7B9EE3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\People Playground\People Playground.exe () [File not signed] FirewallRules: [{201E8315-E9E9-4970-AE56-31EB32884F46}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\People Playground\People Playground.exe () [File not signed] FirewallRules: [{A1D450B4-1F19-4F04-83B3-9DD1E17329E8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{80BEDA79-42FD-408C-BA7D-D984ECD92006}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{640B0180-444E-48BC-B734-2BB0E3C88587}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{18A87070-7AE0-4BB3-96B1-BB8C91289654}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{D7173273-5CA8-4E00-871A-3D3C3FB2EDE9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RecRoom\Recroom_Release.exe (Epic Games, Inc) [File not signed] FirewallRules: [{CE3C9902-8AEF-4E2C-96FD-E392D1D09C8B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RecRoom\Recroom_Release.exe (Epic Games, Inc) [File not signed] FirewallRules: [{7F8CA51F-5289-4FFF-9B80-26503204B633}] => (Allow) C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe (Voicemod Sociedad Limitada -> Voicemod) FirewallRules: [{15C875D1-6145-4520-9348-F201E5EC8E5D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\VRChat\VRChat.exe () [File not signed] FirewallRules: [{B267731D-1ED8-4BCB-8727-5566106DE5C1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\VRChat\VRChat.exe () [File not signed] FirewallRules: [{F3CF7546-9099-4FA0-86C5-0F625418AD7C}] => (Allow) C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe (Voicemod Sociedad Limitada -> Voicemod) FirewallRules: [{4BCA4DDE-57FA-49C4-A039-5B7C73867321}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland S.A. -> Techland) FirewallRules: [{2A8C3C15-E282-4358-B0F1-10501F039472}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland S.A. -> Techland) FirewallRules: [{2BBA5860-F31B-4299-85E5-014E540A8B3E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> ) FirewallRules: [{7C5B0CE6-635B-475E-A4DA-ADCF2E9E610B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> ) FirewallRules: [{B3A616D8-809C-4FE1-9069-3D6EF9B91E5A}] => (Allow) C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe (Voicemod Sociedad Limitada -> Voicemod) FirewallRules: [{7EA67384-F17B-4BD1-9091-D8317EA4FB91}] => (Allow) C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe (Voicemod Sociedad Limitada -> Voicemod) FirewallRules: [TCP Query User{FB617EEB-BA27-4B8B-AE33-C5E804A974D6}C:\program files\windowsapps\spotifyab.spotifymusic_1.195.893.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.195.893.0_x86__zpdnekdrzrea0\spotify.exe => No File FirewallRules: [UDP Query User{6748B19D-4663-47BC-B54B-992FEEC400B7}C:\program files\windowsapps\spotifyab.spotifymusic_1.195.893.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.195.893.0_x86__zpdnekdrzrea0\spotify.exe => No File FirewallRules: [{8CE7CE0E-1DB3-40CF-93E4-D76AD8A5367D}] => (Allow) C:\Users\maxxy\AppData\Local\Temp\utorrent\utorrent.exe => No File FirewallRules: [{0FFD7AD6-8539-4EDE-9B39-CAD48F5230A2}] => (Allow) C:\Users\maxxy\AppData\Local\Temp\utorrent\utorrent.exe => No File FirewallRules: [{EF765D15-9E03-400F-9E86-A300741DB970}] => (Allow) C:\Users\maxxy\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{425084C0-1556-443D-9BDE-71D628459DD7}] => (Allow) C:\Users\maxxy\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{8E8C60DE-D81B-4B65-AE48-C92559B20BF1}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12127.1.57051.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{A1F8C7F4-C4F1-4981-9890-0FEEAE0D6FD8}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12127.1.57051.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{44A8485C-21C1-411F-B447-2023D9F1EAC4}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12127.1.57051.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{2E5DB4DF-C7FF-4224-A718-96E1005E7645}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12127.1.57051.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{E372E386-21C9-4DA9-A7A9-879E9682E421}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12127.1.57051.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{4D2646CC-4480-4448-9536-7AF58C51E887}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12127.1.57051.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{8EAC4928-DCCF-4131-B6D8-94891C053797}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12127.1.57051.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{98EB3D6F-FC1F-4FB9-B52B-C29A90E2C480}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12127.1.57051.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{F5793512-BEAD-4E78-9DCE-E238528179A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta, Kristjan -> ) FirewallRules: [{B761E187-DAB0-4B15-B6BD-D5ED8BAA3C9D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta, Kristjan -> ) FirewallRules: [{7376A7C9-9C46-482E-A0A2-D6B5526297E8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland S.A. -> Techland) FirewallRules: [{EA74BF1A-E619-4435-A1FE-E718318F8A65}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland S.A. -> Techland) FirewallRules: [{c0ef4d58-c5fa-4d06-8df0-bc83d3c87d7b}] => (Allow) C:\Program Files\Virtual Desktop Streamer\VirtualDesktop.Streamer.exe (Virtual Desktop, Inc. -> Virtual Desktop, Inc.) FirewallRules: [{3180C962-66FF-4F94-985F-C1274566489E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{330BED93-E5F4-4B3F-9113-68FD757AE85E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{21A62B2B-1FA7-4407-B1EA-405A5F23696A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve -> ) FirewallRules: [{E303E827-BB81-458E-9F8E-36E7F9F45240}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve -> ) FirewallRules: [{1BF0468F-A69F-491E-8040-2ED04F54C208}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe (Valve -> ) FirewallRules: [{4B3693A3-9CAA-4BCF-B0C0-E62847EF29BE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe (Valve -> ) FirewallRules: [{ED8E3082-B323-41C8-9D96-B8A6DC469C62}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Gorilla Tag\Gorilla Tag.exe () [File not signed] FirewallRules: [{B79E2ABE-A3A0-421A-9B82-3EFC379FFB0F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Gorilla Tag\Gorilla Tag.exe () [File not signed] FirewallRules: [{9BF86E5F-4BBD-4718-9F22-8775837E1C71}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23002.403.1788.1930_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{5B02E3FE-EBF1-4080-9B92-3047ABA5A4E7}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23002.403.1788.1930_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{FE374781-900D-4255-B96D-D08DBFE4D69E}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\109.0.1518.78\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{F94CD45A-1C45-4FA1-BA9B-155AA1D14707}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{92256989-F95B-42B6-A3A9-7A3AC2AB0B4C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{F520D4D2-3DAF-4248-AF45-329B33222467}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{AA550F9A-38E1-4C93-B89C-502683CD787C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{DC4D4781-547E-4F92-B9EC-5D9862318DE4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{A35D25E8-5975-418D-8F01-EA6783FF87B7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{57DC4D0A-7503-4938-8CAF-E30776ABCA72}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{9F26ADE3-7109-44AD-9A4D-14C628DAC80E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{F4ED5E3F-55A0-4E1A-87E3-1BE82FE8243C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{7A2FC500-98D6-453C-B59A-F9521ECFBB1F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{326F5A24-EA6A-459A-8FE9-FA073883FD99}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{4872CB73-89D2-4125-A86D-06642C590C96}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{92D0D05C-BEAD-4493-AB36-19CA36A17B9B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) ==================== Restore Points ========================= 12-02-2023 10:52:17 Scheduled Checkpoint ==================== Faulty Device Manager Devices ============ Name: Virtual Desktop Monitor Description: Virtual Desktop Monitor Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318} Manufacturer: Virtual Desktop, Inc. Service: WUDFRd Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Voicemod Virtual Audio Device (WDM) Description: Voicemod Virtual Audio Device (WDM) Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318} Manufacturer: Voicemod S.L. Service: VOICEMOD_Driver Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39) Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded. Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver. ==================== Event log errors: ======================== Application errors: ================== Error: (02/17/2023 04:48:45 PM) (Source: Application Error) (EventID: 1000) (User: DESKTOP-JSB8L0E) Description: Faulting application name: ioloSSTray.exe, version: 17.5.0.116, time stamp: 0x5a2a4485 Faulting module name: KERNELBASE.dll, version: 10.0.22621.963, time stamp: 0x766ca8ae Exception code: 0xe0434352 Fault offset: 0x00000000000906bc Faulting process ID: 0x0x2314 Faulting application start time: 0x0x1d942ef84418611 Faulting application path: C:\Program Files (x86)\Phoenix360\System Mechanic\ioloSSTray.exe Faulting module path: C:\WINDOWS\System32\KERNELBASE.dll Report ID: 411d74f3-e57a-4614-8cdc-5780d33f62cd Faulting package full name: Faulting package-relative application ID: Error: (02/17/2023 04:48:44 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Application: ioloSSTray.exe Framework Version: v4.0.30319 Description: The process was terminated due to an unhandled exception. Exception Info: System.IO.FileNotFoundException at iolo.Controller.EntitlementController.get_IsServiceExpired() at iolo.SSTray.SSTrayApp..ctor() at iolo.SSTray.Program.Main() Error: (02/17/2023 04:46:34 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY) Description: SCEP Certificate enrollment initialization for WORKGROUP\DESKTOP-JSB8L0E$ via https://AMD-KeyId-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net/templates/Aik/scep failed: GetCACaps GetCACaps: Not Found {"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."} HTTP/1.1 404 Not Found Date: Fri, 17 Feb 2023 16:46:33 GMT Content-Length: 121 Content-Type: application/json; charset=utf-8 X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000;includeSubDomains x-ms-request-id: de8355d5-985f-49a0-90ad-f66353337bb9 Method: GET(500ms) Stage: GetCACaps Not found (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND) Error: (02/17/2023 04:46:33 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY) Description: SCEP Certificate enrollment initialization for Local system via https://AMD-KeyId-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net/templates/Aik/scep failed: GetCACaps GetCACaps: Not Found {"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."} HTTP/1.1 404 Not Found Date: Fri, 17 Feb 2023 16:46:33 GMT Content-Length: 121 Content-Type: application/json; charset=utf-8 X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000;includeSubDomains x-ms-request-id: acbeac4c-066d-4857-894f-9d2f65e7f3e0 Method: GET(734ms) Stage: GetCACaps Not found (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND) Error: (02/17/2023 04:27:04 PM) (Source: Application Error) (EventID: 1000) (User: DESKTOP-JSB8L0E) Description: Faulting application name: ioloSSTray.exe, version: 17.5.0.116, time stamp: 0x5a2a4485 Faulting module name: KERNELBASE.dll, version: 10.0.22621.963, time stamp: 0x766ca8ae Exception code: 0xe0434352 Fault offset: 0x00000000000906bc Faulting process ID: 0x0x80c Faulting application start time: 0x0x1d942ec7d08b428 Faulting application path: C:\Program Files (x86)\Phoenix360\System Mechanic\ioloSSTray.exe Faulting module path: C:\WINDOWS\System32\KERNELBASE.dll Report ID: 950219e8-e184-4bd2-b84d-4fa59d88bab7 Faulting package full name: Faulting package-relative application ID: Error: (02/17/2023 04:27:03 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Application: ioloSSTray.exe Framework Version: v4.0.30319 Description: The process was terminated due to an unhandled exception. Exception Info: System.IO.FileNotFoundException at iolo.Controller.EntitlementController.get_IsServiceExpired() at iolo.SSTray.SSTrayApp..ctor() at iolo.SSTray.Program.Main() Error: (02/14/2023 07:40:09 AM) (Source: Application Error) (EventID: 1000) (User: DESKTOP-JSB8L0E) Description: Faulting application name: ioloSSTray.exe, version: 17.5.0.116, time stamp: 0x5a2a4485 Faulting module name: KERNELBASE.dll, version: 10.0.22621.963, time stamp: 0x766ca8ae Exception code: 0xe0434352 Fault offset: 0x00000000000906bc Faulting process ID: 0x0x3478 Faulting application start time: 0x0x1d9404758303ad9 Faulting application path: C:\Program Files (x86)\Phoenix360\System Mechanic\ioloSSTray.exe Faulting module path: C:\WINDOWS\System32\KERNELBASE.dll Report ID: 268f4bed-3dc6-42dd-ae34-584e6ec42486 Faulting package full name: Faulting package-relative application ID: Error: (02/14/2023 07:40:06 AM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Application: ioloSSTray.exe Framework Version: v4.0.30319 Description: The process was terminated due to an unhandled exception. Exception Info: System.IO.FileNotFoundException at iolo.Controller.EntitlementController.get_IsServiceExpired() at iolo.SSTray.SSTrayApp..ctor() at iolo.SSTray.Program.Main() System errors: ============= Error: (02/17/2023 04:44:46 PM) (Source: volmgr) (EventID: 46) (User: ) Description: Crash dump initialization failed! Error: (02/17/2023 04:45:29 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: The previous system shutdown at 16:33:37 on ‎17/‎02/‎2023 was unexpected. Error: (02/17/2023 04:31:25 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-JSB8L0E) Description: The server {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} did not register with DCOM within the required timeout. Error: (02/14/2023 07:50:33 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY) Description: Installation Failure: Windows failed to install the following update with error 0x80073d02: 9NMPJ99VJBWV-Microsoft.YourPhone. Error: (02/14/2023 07:47:44 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY) Description: Installation Failure: Windows failed to install the following update with error 0x80073d02: 9MSSGKG348SP-MicrosoftWindows.Client.WebExperience. Error: (02/13/2023 07:29:24 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-JSB8L0E) Description: The server {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} did not register with DCOM within the required timeout. Error: (02/12/2023 08:59:51 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY) Description: Installation Failure: Windows failed to install the following update with error 0x80242016: 2023-01 Cumulative Update for Windows 11 Version 22H2 for x64-based Systems (KB5022303). Error: (02/12/2023 08:56:57 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The VirtualDesktop.Service.exe service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion. Windows Defender: ================ Date: 2023-02-14 07:56:49 Description: Microsoft Defender Antivirus scan has been stopped before completion. Scan Type: Antimalware Scan Parameters: Quick Scan  CodeIntegrity: =============== Date: 2023-02-17 16:45:11 Description: Code Integrity determined that a process (System) attempted to load \Device\HarddiskVolume2\WINDOWS\System32\drivers\vmdrv.sys that did not meet the Authenticode signing level requirements or violated code integrity policy (Policy ID:{d2bda982-ccf6-4344-ac5b-0b44427b6816}). Date: 2023-02-17 16:45:11 Description: The driver \Device\HarddiskVolume2\WINDOWS\System32\drivers\vmdrv.sys is blocked from loading as the driver has been revoked by Microsoft. ==================== Memory info =========================== BIOS: American Megatrends International, LLC. F14e 10/14/2021 Motherboard: Gigabyte Technology Co., Ltd. B550M DS3H Processor: AMD Ryzen 5 3600 6-Core Processor Percentage of memory in use: 28% Total physical RAM: 16289.46 MB Available physical RAM: 11707.66 MB Total Virtual: 17313.46 MB Available Virtual: 10889.54 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:930.21 GB) (Free:612.14 GB) (Model: ST1000DM010-2EP102) NTFS Drive d: (System Reserved) (Fixed) (Total:0.05 GB) (Free:0.04 GB) (Model: ST1000DM010-2EP102) NTFS \\?\Volume{bc608de8-b5c5-49c0-a6fd-f6f722dacc54}\ () (Fixed) (Total:0.65 GB) (Free:0.08 GB) NTFS \\?\Volume{c552ccf1-b8be-11ec-8486-18c04da8b499}\ () (Fixed) (Total:0.5 GB) (Free:0.49 GB) NTFS \\?\Volume{3a67c860-4f4a-07bf-1000-5763d3e2c1e4}\ () (Fixed) (Total:0.01 GB) (Free:0 GB) NTFS \\?\Volume{c552ccf0-b8be-11ec-8486-18c04da8b499}\ () (Fixed) (Total:0.09 GB) (Free:0.06 GB) FAT32 ==================== MBR & Partition Table ==================== ========================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 06FE7201) Partition: GPT. Attempted reading MBR returned 0 bytes. Could not read MBR for disk 1. ==================== End of Addition.txt =======================