﻿info.txt logfile of random's system information tool 1.10 2019-12-11 03:35:11

======MBR======

0x000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000057609DDA000000000200EEFEFF0001000000FFFFFFFF00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000055AA

======Uninstall list======

-->"C:\Program Files (x86)\InstallShield Installation Information\{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}\setup.exe" /z-uninstall
Adobe Acrobat Reader DC - Czech-->MsiExec.exe /I{AC76BA86-7AD7-1029-7B44-AC0F074E4100}
Adobe Refresh Manager-->MsiExec.exe /I{AC76BA86-0804-1033-1959-000182435289}
Canon IJ Network Tool-->C:\Program Files (x86)\Canon\Canon IJ Network Tool\CNMNUU.exe
Canon MP495 series MP Drivers-->"C:\WINDOWS\system32\CanonIJ Uninstaller Information\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP495_series\DELDRV64.exe" /U:{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP495_series /L0x0009
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
ControlCenter2.0 v1.0.23-->"C:\Program Files (x86)\InstallShield Installation Information\{2F385B5D-5F23-4513-B3CE-9F5E4F4B882A}\setup.exe" -runfromtemp -l0x0409  -removeonly
CyberLink PowerRecover-->"C:\Program Files (x86)\InstallShield Installation Information\{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}\setup.exe" /z-uninstall
CyberLink PowerRecover-->"C:\Program Files (x86)\InstallShield Installation Information\{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}\setup.exe" /z-uninstall
ESET Security-->MsiExec.exe /I{6D46484B-0BE2-4060-9CD3-FA87ED960ED9}
FormatFactory 4.9.5.0-->C:\Program Files (x86)\FormatFactory\uninst.exe
Google Chrome-->"C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.108\Installer\setup.exe" --uninstall --system-level --verbose-logging
Google Update Helper-->MsiExec.exe /I{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
Intel(R) Chipset Device Software-->"C:\ProgramData\Package Cache\{55d73ea7-6354-42db-8831-02d048ae57f8}\SetupChipset.exe"  /uninstall
Intel(R) Chipset Device Software-->MsiExec.exe /I{C844CC39-BC28-46CA-8239-3F37D8FE2A59}
Intel(R) HID Event Filter-->C:\Program Files (x86)\Intel\Intel(R) HID Event Filter\Uninstall\setup.exe -uninstall
Intel(R) Management Engine Components-->"C:\ProgramData\Intel\Package Cache\{1CEAC85D-2590-4760-800F-8DE5E91F3700}\Setup.exe" -uninstall
Intel(R) Management Engine Components-->MsiExec.exe /I{B4F59074-915E-4DFE-BFD6-1B415B37AE2F}
Intel(R) Management Engine Components-->MsiExec.exe /I{ED204DD8-2982-4B22-B077-0F70024D5FEB}
Intel(R) Management Engine Driver-->MsiExec.exe /I{4B1DEC5C-ED0A-4DD1-ADB2-FD1117FF94D7}
Intel(R) Processor Graphics-->"C:\Program Files (x86)\Intel\Intel(R) Processor Graphics\Uninstall\igxpin.exe" -uninstall
Intel(R) Rapid Storage Technology-->"C:\Program Files (x86)\Intel\Package Cache\{409CB30E-E457-4008-9B1A-ED1B9EA21140}\Setup.exe" -uninstall
Intel(R) Rapid Storage Technology-->MsiExec.exe /I{64A94A93-B0C4-4B16-8CDC-FDB06E8CC306}
Intel(R) Trusted Connect Service Client x64-->MsiExec.exe /I{C9552825-7BF2-4344-BA91-D3CD46F4C442}
Intel(R) Trusted Connect Service Client x86-->MsiExec.exe /I{C9552825-7BF2-4344-BA91-D3CD46F4C441}
Intel(R) Trusted Connect Services Client-->"C:\ProgramData\Package Cache\{66129f84-d3f0-4884-ac54-369ae6fc2cf6}\iclsClientInstaller.exe"  /uninstall
Intel(R) Wireless Bluetooth(R)-->MsiExec.exe /I{00000050-0200-1033-84C8-B8D95FA3C8C3}
Intel® PROSet/Wireless Software-->"C:\ProgramData\Package Cache\{8c595286-0f9e-42de-a0d4-969aba282637}\ISetup.exe"  /uninstall
Intel® PROSet/Wireless WiFi Software-->MsiExec.exe /I{E6F800A9-64D3-4E93-8E8E-AB53E21D4840}
Intel® Software Guard Extensions Platform Software-->"C:\ProgramData\Intel\installer\SGX_SPW\cache\{BD477BCD-D6E2-408A-B371-845655984392}\setup.exe" --product="SGX_1.9.100.41172"
Intel® Software Guard Extensions Platform Software-->MsiExec.exe /X{24DAC3F9-B4BF-437E-BB30-8BCBAAB2DFA6}
Microsoft Office 365 - en-us-->"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" scenario=install scenariosubtype=ARP sourcetype=None productstoremove=O365HomePremRetail.16_en-us_x-none culture=en-us version.16=16.0
Microsoft VC++ redistributables repacked.-->MsiExec.exe /I{9F513024-FFAD-4466-8CF0-5348389196B8}
Microsoft VC++ redistributables repacked.-->MsiExec.exe /I{C521A8D8-511F-43DF-B789-7DD0B3F7363B}
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005-->"C:\ProgramData\Package Cache\{7f51bdb9-ee21-49ee-94d6-90afc321780e}\vcredist_x64.exe"  /uninstall
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005-->"C:\ProgramData\Package Cache\{ce085a78-074e-4823-8dc1-8a721b94b76d}\vcredist_x86.exe"  /uninstall
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005-->MsiExec.exe /X{929FBD26-9020-399B-9A7A-751D61F0B942}
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005-->MsiExec.exe /X{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005-->MsiExec.exe /X{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005-->MsiExec.exe /X{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}
Mozilla Firefox 71.0 (x64 en-GB)-->"C:\Program Files\Mozilla Firefox\uninstall\helper.exe"
Mozilla Maintenance Service-->"C:\Program Files (x86)\Mozilla Maintenance Service\uninstall.exe"
NVIDIA 3D Vision Driver 389.27-->"C:\WINDOWS\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.3DVision
NVIDIA GeForce Experience 3.13.1.30-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.GFExperience
NVIDIA Graphics Driver 389.27-->"C:\WINDOWS\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.Driver
NVIDIA HD Audio Driver 1.3.37.1-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage HDAudio.Driver
NVIDIA PhysX System Software 9.17.0524-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.PhysX
NVIDIA Stereoscopic 3D Driver-->"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvStInst.exe" /uninstall /ask
Office 16 Click-to-Run Extensibility Component-->MsiExec.exe /X{90160000-008C-0000-1000-0000000FF1CE}
Office 16 Click-to-Run Licensing Component-->MsiExec.exe /I{90160000-007E-0000-1000-0000000FF1CE}
Office 16 Click-to-Run Localization Component-->MsiExec.exe /X{90160000-008C-0409-1000-0000000FF1CE}
OpenOffice 4.1.7-->MsiExec.exe /I{E3E3C1D4-6886-4EDB-9F12-335641465055}
Pushbullet version 338-->"C:\Program Files (x86)\Pushbullet\unins000.exe"
Realtek Card Reader-->"C:\Program Files (x86)\InstallShield Installation Information\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}\setup.exe" -runfromtemp  -removeonly
Realtek Ethernet Controller Driver-->"C:\Program Files (x86)\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\setup.exe" -runfromtemp -removeonly
Realtek High Definition Audio Driver-->"C:\Program Files (x86)\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -runfromtemp  -removeonly
Steam-->C:\Program Files (x86)\Steam\uninstall.exe
SupportAPP-->"C:\Program Files\Support\supportAPP.exe" /uninst
Total Commander 64+32-bit (Remove or Repair)-->c:\totalcmd\tcunin64.exe
VLC media player-->"C:\Program Files (x86)\VideoLAN\VLC\uninstall.exe"
Vulkan Run Time Libraries 1.0.61.0-->C:\Program Files (x86)\VulkanRT\1.0.61.0\UninstallVulkanRT.exe
Vulkan Run Time Libraries 1.1.70.0-->C:\Program Files (x86)\VulkanRT\1.1.70.0\UninstallVulkanRT.exe
WebDiscover Browser 4.27.2-->"C:\Program Files\WebDiscoverBrowser\unins000.exe"
WinRAR 5.71 (64-bit)-->C:\Program Files\WinRAR\uninstall.exe

======System event log======

Computer Name: DESKTOP-U5VTCKT
Event Code: 17
Message: A corrected hardware error has occurred.

Component: PCI Express Root Port
Error Source: Advanced Error Reporting (PCI Express)

Primary Bus:Device:Function: 0x0:0x1D:0x0
Secondary Bus:Device:Function: 0x0:0x0:0x0
Primary Device Name:PCI\VEN_8086&DEV_A336&SUBSYS_852B1558&REV_F0
Secondary Device Name:
Record Number: 120
Source Name: Microsoft-Windows-WHEA-Logger
Time Written: 20191202170353.375923-000
Event Type: Warning
User: NT AUTHORITY\LOCAL SERVICE

Computer Name: DESKTOP-U5VTCKT
Event Code: 7023
Message: The Network List Service service terminated with the following error: 
The device is not ready.
Record Number: 119
Source Name: Service Control Manager
Time Written: 20191202170351.585229-000
Event Type: Error
User: 

Computer Name: DESKTOP-U5VTCKT
Event Code: 7030
Message: The SynTPEnhService service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
Record Number: 116
Source Name: Service Control Manager
Time Written: 20191202170351.252954-000
Event Type: Error
User: 

Computer Name: DESKTOP-U5VTCKT
Event Code: 17
Message: A corrected hardware error has occurred.

Component: PCI Express Root Port
Error Source: Advanced Error Reporting (PCI Express)

Primary Bus:Device:Function: 0x0:0x1D:0x0
Secondary Bus:Device:Function: 0x0:0x0:0x0
Primary Device Name:PCI\VEN_8086&DEV_A336&SUBSYS_852B1558&REV_F0
Secondary Device Name:
Record Number: 95
Source Name: Microsoft-Windows-WHEA-Logger
Time Written: 20191202170349.807650-000
Event Type: Warning
User: NT AUTHORITY\LOCAL SERVICE

Computer Name: DESKTOP-U5VTCKT
Event Code: 7023
Message: The iphlpsvc service terminated with the following error: 
The device is not ready.
Record Number: 51
Source Name: Service Control Manager
Time Written: 20191202170341.535623-000
Event Type: Error
User: 

=====Application event log=====

Computer Name: DESKTOP-U5VTCKT
Event Code: 1534
Message: Profile notification of event Create for component {D63AA156-D534-4BAC-9BF1-55359CF5EC30} failed, error code is See Tracelogging for error details. 


Record Number: 18
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20191202170547.078918-000
Event Type: Warning
User: NT AUTHORITY\SYSTEM

Computer Name: DESKTOP-U5VTCKT
Event Code: 256
Message: The Cryptographic Services service failed to initialise the Catalogue Database. The error was: -2147418113 (0x8000ffff) : Catastrophic failure
.
Record Number: 16
Source Name: Microsoft-Windows-CAPI2
Time Written: 20191202170444.624735-000
Event Type: Error
User: 

Computer Name: DESKTOP-U5VTCKT
Event Code: 256
Message: The Cryptographic Services service failed to initialise the Catalogue Database. The error was: -2147418113 (0x8000ffff) : Catastrophic failure
.
Record Number: 15
Source Name: Microsoft-Windows-CAPI2
Time Written: 20191202170441.451278-000
Event Type: Error
User: 

Computer Name: DESKTOP-U5VTCKT
Event Code: 256
Message: The Cryptographic Services service failed to initialise the Catalogue Database. The error was: -2147418113 (0x8000ffff) : Catastrophic failure
.
Record Number: 14
Source Name: Microsoft-Windows-CAPI2
Time Written: 20191202170437.322131-000
Event Type: Error
User: 

Computer Name: DESKTOP-U5VTCKT
Event Code: 256
Message: The Cryptographic Services service failed to initialise the Catalogue Database. The error was: -2147418113 (0x8000ffff) : Catastrophic failure
.
Record Number: 13
Source Name: Microsoft-Windows-CAPI2
Time Written: 20191202170408.114381-000
Event Type: Error
User: 

=====Security event log=====

Computer Name: Erazer
Event Code: 5379
Message: Credential Manager credentials were read.

Subject:
	Security ID:		S-1-5-21-3105727912-594040118-960013747-1008
	Account Name:		volko
	Account Domain:		ERAZER
	Logon ID:		0x43B740
	Read Operation:		Enumerate Credentials

This event occurs when a user performs a read operation on stored credentials in Credential Manager.
Record Number: 22226
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20191204232634.191810-000
Event Type: Audit Success
User: 

Computer Name: Erazer
Event Code: 5379
Message: Credential Manager credentials were read.

Subject:
	Security ID:		S-1-5-21-3105727912-594040118-960013747-1008
	Account Name:		volko
	Account Domain:		ERAZER
	Logon ID:		0x43B740
	Read Operation:		Enumerate Credentials

This event occurs when a user performs a read operation on stored credentials in Credential Manager.
Record Number: 22225
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20191204232634.191621-000
Event Type: Audit Success
User: 

Computer Name: Erazer
Event Code: 5379
Message: Credential Manager credentials were read.

Subject:
	Security ID:		S-1-5-21-3105727912-594040118-960013747-1008
	Account Name:		volko
	Account Domain:		ERAZER
	Logon ID:		0x43B740
	Read Operation:		Enumerate Credentials

This event occurs when a user performs a read operation on stored credentials in Credential Manager.
Record Number: 22224
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20191204232634.191430-000
Event Type: Audit Success
User: 

Computer Name: Erazer
Event Code: 5379
Message: Credential Manager credentials were read.

Subject:
	Security ID:		S-1-5-21-3105727912-594040118-960013747-1008
	Account Name:		volko
	Account Domain:		ERAZER
	Logon ID:		0x43B740
	Read Operation:		Enumerate Credentials

This event occurs when a user performs a read operation on stored credentials in Credential Manager.
Record Number: 22223
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20191204232634.191227-000
Event Type: Audit Success
User: 

Computer Name: Erazer
Event Code: 5379
Message: Credential Manager credentials were read.

Subject:
	Security ID:		S-1-5-21-3105727912-594040118-960013747-1008
	Account Name:		volko
	Account Domain:		ERAZER
	Logon ID:		0x43B740
	Read Operation:		Enumerate Credentials

This event occurs when a user performs a read operation on stored credentials in Credential Manager.
Record Number: 22222
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20191204232634.191015-000
Event Type: Audit Success
User: 

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"DriverData"=C:\Windows\System32\Drivers\DriverData
"OS"=Windows_NT
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=AMD64
"PSModulePath"=%ProgramFiles%\WindowsPowerShell\Modules;%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
"NUMBER_OF_PROCESSORS"=12
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=Intel64 Family 6 Model 158 Stepping 10, GenuineIntel
"PROCESSOR_REVISION"=9e0a

-----------------EOF-----------------
