(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) C:\Windows\System32\CorsairGamingAudioCfgService64.exe 2022-09-21 08:34 - 2021-06-05 22:01 - 000032768 _____ C:\windows\system32\config\ELAM A 404 page is a webpage displayed when a particular requested page can't be found. Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.13.5310.0_x64__8wekyb3d8bbwe [2022-06-13] (Microsoft Studios) [MS Ad] ==================== Restore Points ========================= Error: (09/18/2022 11:28:16 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) 2022-09-19 00:28 - 2022-09-19 00:31 - 000000000 ____D C:\Users\Tyson\AppData\Roaming\Oculus 2022-08-27 00:56 - 2022-05-13 18:58 - 000000000 ____D C:\windows\system32\appmgmt Error: (09/20/2022 03:10:47 AM) (Source: Bonjour Service) (EventID: 100) (User: ) R3 logi_joy_bus_enum; C:\windows\system32\drivers\logi_joy_bus_enum.sys [33528 2022-05-13] (WDKTestCert builder,132743893872553407 -> Logitech) Acrobat Notification Client -> C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2022-08-19] (Adobe Systems Incorporated) IFEO\EOSnotify.exe: [Debugger] / R1 IDSVia64; C:\ProgramData\Symantec\Symantec Endpoint Protection\14.3.7393.4000.105\Data\Definitions\IPSDefs\20220920.081\IDSvia64.sys [1515512 2022-05-13] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) ContextMenuHandlers2: [LDVPMenu] -> {8BEEE74D-455E-4616-A97A-F6E86C317F32} => C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.3.7393.4000.105\Bin64\vpshell2.dll [2022-02-25] (Symantec Corporation -> Broadcom) R1 BHDrvx64; C:\ProgramData\Symantec\Symantec Endpoint Protection\14.3.7393.4000.105\Data\Definitions\BASHDefs\20220915.011\BHDrvx64.sys [1672672 2022-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) 2022-09-13 06:56 - 2021-06-05 22:10 - 000000000 ____D C:\windows\SysWOW64\Dism R3 iaLPSS2_GPIO2_ADL; C:\windows\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_e11257f05c0c2f89\iaLPSS2_GPIO2_ADL.sys [139928 2021-07-29] (Intel Corporation -> Intel Corporation) Here's how you can deactivate this feature and increase your privacy while gaming. Snakes Game using Python. (explorer.exe ->) (Firebit OU -> Rainmeter) C:\Program Files\Rainmeter\Rainmeter.exe Here are the spawning limitations: 1. R1 SYMNETS; C:\windows\System32\Drivers\SEP\0E031CE1\0FA0.105\x64\symnets.sys [480192 2022-02-25] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.) iTunes (HKLM\\{0AED1CCB-84DA-42B6-B70C-2C4A11BA0666}) (Version: 12.12.4.1 - Apple Inc.) "HKU\S-1-5-21-479614032-2295716511-2174497491-1002\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\HideSCAMeetNow" => removed successfully Then, click on the board containing a green snake illustration in the bottom-right corner. 2022-08-28 00:46 - 2022-08-28 00:46 - 000000000 ____D C:\Users\Tyson\.ms-ad ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-07-28] (Malwarebytes Inc. -> Malwarebytes) I've read online that those specific things have to do with OneDrive but I uninstalled it. cmd: netsh winsock reset catalog 2022-09-01 04:02 - 2022-05-13 20:38 - 000000000 ____D C:\Program Files\Riot Vanguard S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2575624 2022-06-27] (Electronic Arts, Inc. -> Electronic Arts) Description: The server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} did not register with DCOM within the required timeout. Malwarebytes version 4.5.14.210 (HKLM\\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.14.210 - Malwarebytes) Can you beat it? Fault offset: 0x000000000001d7d1 Error: (09/18/2022 11:28:17 PM) (Source: Bonjour Service) (EventID: 100) (User: ) AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder 2022.lnk:E84E23EE24 [3442] (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_0797c0ea8580ae89\IntelCpHDCPSvc.exe S3 logi_joy_hid_filter; C:\windows\system32\drivers\logi_joy_hid_filter.sys [53640 2022-05-13] (WDKTestCert builder,132743893872553407 -> Logitech) Practice makes perfect! 2022-09-09 23:18 - 2022-05-16 15:19 - 000000000 ____D C:\Users\Tyson\AppData\Roaming\Rainmeter 2022-09-13 06:35 - 2022-01-10 22:19 - 000004562 _____ C:\windows\system32\Tasks\Adobe Acrobat Update Task FirewallRules: [{5666DD8B-75B6-4588-AD29-5652B686DDE9}] => (Allow) D:\Steam\SteamApps\common\FPSAimTrainer\FPSAimTrainer.exe (Int3 Software AB -> Int3 Software AB) Make sure that your device volume is turned on. 2022-09-13 06:56 - 2021-06-05 22:10 - 000000000 ____D C:\windows\SysWOW64\oobe Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Resetting , OK! Intel Serial IO (HKLM\\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.2131.26 - Intel Corporation) The FRST report is missing the header information. (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <11> discord snake high score. 2022-09-21 08:33 - 2022-05-13 18:22 - 000000000 ____D C:\ProgramData\NVIDIA Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-04-05] (Microsoft Corporation -> Microsoft Corporation) ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe (Firebit OU -> Rainmeter) FirewallRules: [{D9AD2616-687D-4831-809B-DADF4BDF4447}] => (Allow) D:\Steam\SteamApps\common\Half-Life 2\hl2.exe (Valve Corp. -> ) FirewallRules: [UDP Query User{914C4A18-5B84-4DE9-8364-1C2976ABD489}D:\epic games\fortnite\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\epic games\fortnite\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) Task: {490C8863-947E-474E-AF1E-F90A6843FD98} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22865832 2022-03-30] (Microsoft Corporation -> Microsoft Corporation) The file will not be moved unless listed separately.) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-04-05] (Microsoft Corporation -> Microsoft Corporation) Office 16 Click-to-Run Extensibility Component (HKLM\\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.15028.20050 - Microsoft Corporation) Hidden The file will not be moved unless listed separately.) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <11> #80. R1 SRTSP; C:\ProgramData\Symantec\Symantec Endpoint Protection\14.3.7393.4000.105\Data\SymPlatform\SRTSP64.SYS [967632 2022-02-25] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) 2022-09-18 23:35 - 2022-01-03 19:51 - 000848788 _____ C:\windows\system32\PerfStringBackup.INI R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [8746536 2022-08-17] (Riot Games, Inc. -> Riot Games, Inc.) HKU\S-1-5-21-479614032-2295716511-2174497491-1002\\StartupApproved\Run: => "Medal" Who knows, maybe you could be the one to achieve the next world record score! S2 CorsairUniwillService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueUniwillService.exe [107568 2022-08-05] (Corsair Memory, Inc. -> Corsair Memory, Inc.) CHR Extension: (AdBlock best ad blocker) - C:\Users\Tyson\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-09-04] S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8885112 2022-07-15] (BattlEye Innovations e.K. R0 SymEFASI; C:\windows\System32\drivers\symefasi\0704030.013\symefasi64.sys [2080248 2022-04-05] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) FirewallRules: [{9D9E79F6-C32F-4465-9E1C-AB5522309206}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe => No File Running from D:\Tyson\Desktop\FRST Task: {658C5A85-0FD8-4A07-B8D2-05DD4D62B7DA} - System32\Tasks\GoogleUpdateTaskMachineUA{52819A4A-6F97-4F51-A9DF-F8722C17E431} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-05-25] (Google LLC -> Google LLC) FF Extension: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2021-02-01] S0 MbamElam; C:\windows\System32\DRIVERS\MbamElam.sys [21480 2022-07-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11666384 2022-03-29] (Microsoft Corporation -> Microsoft Corporation) 2022-06-27 00:22 - 2022-06-27 00:22 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll HKU\S-1-5-21-479614032-2295716511-2174497491-1002\\StartupApproved\Run: => "Spotify" 2022-09-13 06:56 - 2021-06-05 22:10 - 000000000 ____D C:\windows\SysWOW64\vi-VN The file will not be moved unless listed separately.) 2022-09-13 06:35 - 2022-08-18 23:47 - 000002079 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk FirewallRules: [{8138C9F8-52B0-4B43-BF6D-4D36DF0DF15D}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [File not signed] Intel Chipset Device Software (HKLM\\{C6A1126A-6ED6-4231-BA48-4DA77986FA1C}) (Version: 10.1.18950.8298 - Intel Corporation) Hidden 2022-08-22 04:13 - 2022-07-08 17:37 - 000610352 _____ (Corsair Memory, Inc.) C:\windows\system32\CorsairGamingAudioCfgService64.exe 2022-09-13 06:48 - 2022-09-13 06:48 - 000557056 _____ (Microsoft Corporation) C:\windows\system32\PhotoScreensaver.scr (services.exe ->) (Symantec Corporation -> Broadcom) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.3.7393.4000.105\Bin64\ccSvcHst.exe RealNacho1! 2022-09-04 01:01 - 2022-09-18 22:50 - 000000000 ____D C:\Users\Tyson\AppData\Roaming\slobs-client 2022-09-19 00:28 - 2022-09-19 00:28 - 000948056 _____ (Windows Win 7 DDK provider) C:\windows\system32\oculusvadapo.dll The file will not be moved.) Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.) R3 iCUEDevicePluginHost; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUEDevicePluginHost.exe [456752 2022-08-05] (Corsair Memory, Inc. -> Corsair) 2022-08-19 00:58 - 2022-01-04 13:44 - 000000000 ____D C:\ProgramData\Packages Task: {AD08948F-02D4-47E5-AF41-BB31D4F341AD} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-05-05] (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [TCP Query User{648940F9-C15C-4C43-9D0A-9811D09E9D84}C:\users\tyson\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\tyson\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe => No File Task: {3E63459F-454B-4380-9128-A078BD56ABF3} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-05-05] (Nvidia Corporation -> NVIDIA Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-04-05] (Microsoft Corporation -> Microsoft Corporation) (explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2> HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-04-05] (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{493C7631-78AE-446E-BC42-32FCBB31C477}D:\steam\steamapps\common\battlefield 2042\bf2042.exe] => (Allow) D:\steam\steamapps\common\battlefield 2042\bf2042.exe => No File DefaultAccount (S-1-5-21-479614032-2295716511-2174497491-503 - Limited - Disabled) FF Extension: (Privacy Badger) - C:\Users\Tyson\AppData\Roaming\Mozilla\Firefox\Profiles\xnc3cpuf.default-release\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2022-05-13] -> ) 2022-09-13 06:48 - 2022-09-13 06:48 - 000530944 _____ (curl, hxxps://curl.se/) C:\windows\system32\curl.exe R3 iFiHDUSBAudio; C:\windows\System32\drivers\iFiHDUSBAudio_x64.sys [286456 2016-02-04] (Abbingdon Global Limited -> ) Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31326 (HKLM-x32\\{A250E750-DB3F-40C1-8460-8EF77C7582DA}) (Version: 14.32.31326 - Microsoft Corporation) Hidden Oct 15, 2022. 2022-06-10 13:06 - 2022-06-09 19:06 - 000151040 _____ () [File not signed] \\?\C:\Program Files\LGHUB\resources\app.asar.unpacked\node_modules\keytar\build\Release\keytar.node HKU\S-1-5-21-479614032-2295716511-2174497491-1002\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION Good luck! ========= End of CMD: ========= The welcome screen then shows up, including some super cute and amazing artwork! ==================== Memory info =========================== Highlight the below information then hit the. 2022-09-13 06:48 - 2022-09-13 06:48 - 000069632 _____ (Adobe Systems) C:\windows\system32\atmlib.dll 2022-09-18 23:08 - 2022-04-05 09:34 - 000000000 ____D C:\Program Files\Mozilla Firefox HKLM-x32\\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1067528 2022-08-02] (Adobe Inc. -> Adobe Inc.) FirewallRules: [{CC108489-5B49-420B-A9CB-CDF3F6140B5F}] => (Allow) D:\Steam\SteamApps\common\Half-Life 2\hl2.exe (Valve Corp. -> ) 2022-09-21 08:33 - 2022-05-13 20:36 - 000000000 ____D C:\Users\Tyson\AppData\Roaming\LGHUB 2022-06-10 13:06 - 2022-06-09 19:06 - 000151040 _____ () [File not signed] \\?\C:\Program Files\LGHUB\resources\app.asar.unpacked\node_modules\keytar\build\Release\keytar.node FirewallRules: [TCP - Installer for ACDSee Commander Ultimate 2022] => (Allow) C:\Program Files\ACD Systems\ACDSee Ultimate\15.0\ACDSeeCommanderUltimate15.exe => No File FirewallRules: [{87B5C6F1-FF42-4487-89E7-75F21A994C91}] => (Allow) D:\Steam\SteamApps\common\assettocorsa\AssettoCorsa.exe (Kunos Simulazioni) [File not signed] HKU\S-1-5-21-479614032-2295716511-2174497491-1002\\StartupApproved\Run: => "EpicGamesLauncher" Error: (09/18/2022 11:21:01 PM) (Source: Bonjour Service) (EventID: 100) (User: ) C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe Can you beat it? FF ProfilePath: C:\Users\Tyson\AppData\Roaming\Mozilla\Firefox\Profiles\9c4tsxuk.default [2022-01-10] FirewallRules: [{3EB112F3-D1E8-45BA-B0F2-0DAF7DD6538B}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) (If an entry is included in the fixlist, it will be removed from the registry. 2022-09-13 06:56 - 2021-06-05 22:10 - 000000000 ____D C:\windows\system32\et-EE CHR Extension: (AdBlock best ad blocker) - C:\Users\Tyson\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-09-04] Task: {956730DE-648B-4051-97C2-DC4FAA7BAE57} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-05-05] (Nvidia Corporation -> NVIDIA Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 FirewallRules: [{8759CEB2-A113-4D4B-A8CF-81DD7FDA83E6}] => (Block) C:\Program Files\StartAllBack\UpdateCheck.exe (Stanislav Zinukhov -> www.startisback.com) Epic Games Launcher (HKLM-x32\\{FAC47927-1A6A-4C6E-AD7D-E9756794A4BC}) (Version: 1.3.23.0 - Epic Games, Inc.) 2022-09-18 23:28 - 2022-08-02 16:27 - 000091304 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\windows\system32\GigabyteDownloadAssistant.exe Description: Event-ID 0 2022-09-21 08:33 - 2022-08-02 16:27 - 000091304 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\windows\system32\GigabyteDownloadAssistant.exe FirewallRules: [{BCA7A946-F51A-4015-ACB0-502C2D5DB19C}] => (Allow) C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe (Voicemod Sociedad Limitada -> Voicemod) 2022-09-13 07:02 - 2022-09-13 07:02 - 000001136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro 2022.lnk AV: Symantec Endpoint Protection (Enabled - Up to date) {FC90FA28-5CE6-9068-FC99-1C67339C0047} Error: (09/18/2022 11:21:01 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Tcpip\..\Interfaces\{203ebb61-a8f5-49d4-9bc1-32351b715ebe}: [DhcpNameServer] 192.168.0.1 S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2575624 2022-06-27] (Electronic Arts, Inc. -> Electronic Arts) 2022-09-07 20:44 - 2022-09-07 20:44 - 000000497 _____ C:\Users\Public\Desktop\Spider-man Remastered.lnk Team Snake is a bot that lets you play Snake with your friends. (services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe ===================== Drivers (Whitelisted) =================== Error: (09/18/2022 11:28:17 PM) (Source: Bonjour Service) (EventID: 100) (User: ) 2022-09-13 06:48 - 2022-09-13 06:48 - 000057344 _____ C:\windows\system32\uwfservicingapi.dll R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8765464 2022-09-07] (Malwarebytes Inc. -> Malwarebytes) (If an entry is included in the fixlist, it will be removed.) 2022-09-09 23:18 - 2022-05-16 15:19 - 000001753 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainmeter.lnk (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) C:\Windows\System32\CorsairGamingAudioCfgService64.exe Microsoft Visual C++ 2005 Redistributable (HKLM-x32\\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) 2022-09-13 06:48 - 2022-09-13 06:48 - 000614400 _____ C:\windows\system32\TextInputMethodFormatter.dll FirewallRules: [UDP Query User{CFFD12EB-329C-4BD6-BE1F-205E9C4B6BD9}C:\users\tyson\appdata\local\fivem\fivem.exe] => (Allow) C:\users\tyson\appdata\local\fivem\fivem.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re) Resetting , OK! 2022-09-18 23:31 - 2022-05-13 18:02 - 000000000 ____D C:\Users\Tyson\AppData\LocalLow\Mozilla Username: ForCheffy or Alternate-Cheffy. S0 iaStorVD; C:\windows\System32\drivers\iaStorVD.sys [1544912 2021-08-30] (Intel Corporation -> Intel Corporation) HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\MusNotification.exe => removed successfully Apple Mobile Device Support (HKLM\\{2B3CA448-5266-480F-85FA-2FCCB3C8712C}) (Version: 15.6.0.32 - Apple Inc.) FirewallRules: [{74F78123-96A8-45EF-9B82-28854C6723CA}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [UDP Query User{5D70848B-E249-43E2-B2CB-5B94F3189EE9}C:\users\tyson\appdata\local\medal\app-4.1712.0\medal.exe] => (Allow) C:\users\tyson\appdata\local\medal\app-4.1712.0\medal.exe (Ferox Games B.V. -> Medal B.V.) 2022-08-31 01:24 - 2022-05-25 01:10 - 000003372 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore{A6531C16-C0AF-4456-87D5-BD1A9B087920} 2022-01-10 20:28 - 2022-04-07 19:15 - 000693888 _____ (Stanislav Zinukhov -> www.startisback.com) [File not signed] C:\Program Files\StartAllBack\StartAllBackX64.dll ***************** The file which is running by the task will not be moved.) ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2022-09-07] (Adobe Inc. -> ) Description: Local Hostname InWin809.local already in use; will try InWin809-2.local instead Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.22.240.0_x64__dt26b99r8h8gj [2022-06-13] (Realtek Semiconductor Corp) (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe HKLM\\Policies\Explorer: [HideSCAMeetNow] 1 2022-09-13 06:48 - 2022-09-13 06:48 - 000327680 _____ C:\windows\system32\pnpdiag.dll ==================== Association (Whitelisted) ================= 2022-08-24 16:24 - 2022-08-24 16:24 - 000000000 ____D C:\Users\Tyson\AppData\Local\Battlestate Games FirewallRules: [{AEDEA38F-D316-4885-83E5-DC6351F555FD}] => (Allow) D:\Steam\SteamApps\common\Half-Life\hl.exe (Valve -> Valve) Percentage of memory in use: 18% AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [7410] FirewallRules: [TCP Query User{55220E27-0456-4932-B4B9-3AE3BAFBFC01}C:\users\tyson\appdata\local\medal\app-4.1000.0\medal.exe] => (Block) C:\users\tyson\appdata\local\medal\app-4.1000.0\medal.exe (Ferox Games B.V. -> Medal B.V.) ========= netsh winsock reset catalog ========= R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11666384 2022-03-29] (Microsoft Corporation -> Microsoft Corporation) 2022-09-07 02:09 - 2022-09-07 02:09 - 000000000 ____D C:\Users\Tyson\AppData\Roaming\IGCS 2022-08-24 16:24 - 2022-08-24 16:24 - 000000613 _____ C:\Users\Public\Desktop\Battlestate Games Launcher.lnk I've written a guide on ten Discord Easter eggs, which you can take a look at if you'd like to discover others! S0 iaStorVD; C:\windows\System32\drivers\iaStorVD.sys [1544912 2021-08-30] (Intel Corporation -> Intel Corporation) The current highest score on Google Snake is held by Florian Wehner, with a score of533,360. (C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe . FirewallRules: [{08376A4D-B3D8-4451-97F1-79D35FE62F5A}] => (Allow) D:\Steam\SteamApps\common\Blade & Sorcery\BladeAndSorcery.exe () [File not signed] 2022-09-15 02:39 - 2022-04-05 14:01 - 000000000 ____D C:\windows\system32\Tasks\Mozilla WinRAR 6.11 (64-bit) (HKLM\\WinRAR archiver) (Version: 6.11.0 - win.rar GmbH) tr6060 gearbox. Task: {56640CC7-1B14-4DE5-A992-AEE87C843206} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-05-05] (Nvidia Corporation -> NVIDIA Corporation) 2022-09-19 00:28 - 2022-01-04 13:42 - 000000000 ____D C:\windows\ServiceProfiles FirewallRules: [{08376A4D-B3D8-4451-97F1-79D35FE62F5A}] => (Allow) D:\Steam\SteamApps\common\Blade & Sorcery\BladeAndSorcery.exe () [File not signed] 2022-09-21 08:33 - 2022-05-16 15:19 - 000000000 ____D C:\Users\Tyson\AppData\Roaming\Rainmeter HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\SihClient.exe => removed successfully FirewallRules: [{ED945FD2-D281-4946-9D2B-FC738F5DF249}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) Addr 192.168.0.238 HubPages is a registered trademark of The Arena Platform, Inc. Other product and company names shown may be trademarks of their respective owners. Description: The iCUE device plugin host service service terminated unexpectedly. Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 4 InWin809.local. 2022-08-24 15:03 - 2022-08-24 15:03 - 000000000 ____D C:\Users\Tyson\AppData\Local\GameAnalytics 2022-08-31 20:09 - 2022-09-01 04:04 - 000001148 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder 2022.lnk Access is denied. (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe Oculus (HKLM\\Oculus) (Version: <3 - Facebook Technologies, LLC) 2022-09-13 06:51 - 2022-01-03 20:17 - 144534560 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2022-08-02] (Adobe Inc. -> Adobe Systems) FirewallRules: [{633B0085-9A80-4E60-BFD6-BD3739789698}] => (Allow) D:\Steam\SteamApps\common\ELDEN RING\Game\start_protected_game.exe (EasyAntiCheat Oy -> Epic Games, Inc.) 2022-09-20 22:29 - 2022-05-15 21:37 - 000000000 ____D C:\Users\Tyson\AppData\Local\Spotify ACDSee Photo Studio Ultimate 2022 (HKLM\\{AA1FA917-93AD-42D5-B171-D7237AC47CBE}) (Version: 15.1.0.2910 - ACD Systems International Inc.) Sucessfully reset the Winsock Catalog. Just type --deathbattle @username to start a battle with someone, and Yggdrasil will do the rest! ==================== Internet Explorer (Whitelisted) ========== CodeIntegrity: Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden 2022-09-16 04:26 - 2022-08-17 23:25 - 000000000 ____D C:\Users\Tyson\AppData\Roaming\EasyAntiCheat Description: To disable, again, click on the Discord icon 15 times to . FirewallRules: [TCP Query User{B5E65EFE-5A2C-4ED9-B286-57FEF2B6E48B}C:\users\tyson\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\tyson\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) Home; FireFox: You can call this a coding game or game with coding. HKU\S-1-5-21-479614032-2295716511-2174497491-1002\\StartupApproved\Run: => "Voicemod" (If an entry is included in the fixlist, it will be removed from the registry. Error: (09/18/2022 11:28:16 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" . 2022-08-30 07:22 - 2022-08-30 07:23 - 000000000 ____D C:\Program Files (x86)\Microsoft DirectX SDK (June 2010) Description: mDNSCoreReceiveResponse: Received from 192.168.0.238:5353 16 InWin809.local. HKLM\\StartupApproved\Run32: => "Adobe Creative Cloud" 2022-09-13 06:56 - 2021-06-05 22:10 - 000000000 ____D C:\windows\system32\Sysprep (C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe ->) (Oculus VR, LLC -> Facebook Technologies, LLC) C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe Name: Intel Wi-Fi 6 AX201 160MHz ==================== MSCONFIG/TASK MANAGER disabled items == ======== (services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe (services.exe ->) (Corsair Memory, Inc. -> Corsair) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUEDevicePluginHost.exe <8> 2022-09-04 01:01 - 2022-09-20 19:17 - 000000000 ____D C:\Program Files\Streamlabs OBS 2022-09-13 06:56 - 2021-06-05 22:10 - 000000000 ____D C:\windows\SystemResources R3 SymEvent; C:\windows\system32\Drivers\SYMEVENT64x86.SYS [100344 2022-04-05] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) FF Extension: (vidIQ Vision for YouTube) - C:\Users\Tyson\AppData\Roaming\Mozilla\Firefox\Profiles\xnc3cpuf.default-release\Extensions\firefox@vid.io.xpi [2022-09-13] Task: {56640CC7-1B14-4DE5-A992-AEE87C843206} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-05-05] (Nvidia Corporation -> NVIDIA Corporation) R2 CorsairService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe [84016 2022-08-05] (Corsair Memory, Inc. -> Corsair Memory, Inc.) FirewallRules: [{B8C9D01F-F60F-4FAE-AB6F-04F962EF71DD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2022-08-03] (Adobe Inc. -> Adobe Systems Incorporated) (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe 2022-09-13 06:55 - 2021-06-05 22:10 - 000000000 ____D C:\windows\system32\SecurityHealth FirewallRules: [UDP Query User{1E34ABBF-D91B-4498-919D-9B94BF0430D0}C:\users\tyson\appdata\local\medal\app-4.1000.0\medal.exe] => (Block) C:\users\tyson\appdata\local\medal\app-4.1000.0\medal.exe (Ferox Games B.V. -> Medal B.V.) S3 SNAC; C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.3.7393.4000.105\Bin64\snac64.exe [215648 2022-02-25] (Symantec Corporation -> Broadcom) (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> Learn how to play the secret snake game on Discord!Visit my website:https://riverside.rocksSubscribe to Riverside Rocks!https://bit.ly/RiversideRocksDiscord:. Task: {1F3B577B-7A57-4672-9DF3-B1EA52E64662} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-05-05] (Nvidia Corporation -> NVIDIA Corporation)
St Neots Tidy Tip Booking, Poor Clare Monastery Of Our Lady Of Mercy, Fishing The Ferns Yeppoon, Simon Premium Outlets Locations, Queens Drive Crash Today, Articles D
St Neots Tidy Tip Booking, Poor Clare Monastery Of Our Lady Of Mercy, Fishing The Ferns Yeppoon, Simon Premium Outlets Locations, Queens Drive Crash Today, Articles D