Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Latest News:    NSA shares zero-trust guidance to limit adversaries on the network

Featured Deal: Enjoy quick, compatible data transfers with this $59.99 portable SSD

Latest Buyer's Guide:    Hotspot Shield VPN review

Generic User Avatar

Serial and continuous problems after (KB5034441) Error (0x80070643)

Started by FNActivity , Feb 07 2024 06:25 AM

  • Please log in to reply
15 replies to this topic

#1 FNActivity

FNActivity

  • Avatar image
  • Members
  • 165 posts
  • OFFLINE
    •  
  • Gender:Male
  • Local time:08:26 AM

Posted 07 February 2024 - 06:25 AM

Since 2 weeks ago, when I encountered this defective update, every few days a problem is added to my system. I am not sure if it is because of this defective update or because of another issue
that's why I made this page so that someone can help me and tell me whether these problems are due to this defective update or because of something else. 
If the cause of these problems is this defective update, I will wait for Microsoft to fix the problem
 
The first problem that occurred:
the disappearance of the battery settings
 
 
Second problem:
When I right-click on a connection and click properties, it gives this error
 
 
The third problem:
when I hit Netword reset, then Wi-Fi driver is removed from the entire system, which means you can't even find WLAN Configuration in services! (After this problem occurred, I went back using the restore point)
 
Now I am afraid that my system will not be usable in a few days
 
Note: I don't know if these problems happened over time or if they happened at the same time and I realized it too late
 
Not: The cause of the problem is not the custom theme, I have been using this theme for a year without any problems

Edited by Chris Cosgrove, 07 February 2024 - 06:38 AM.
Moved from Win 10 Discussio to Win 10 support.

Model of your computer 

Dell Precision M6700
 

Windows specifications 

Edition Windows 10 Pro

Version 22H2
Installed on ‎2020-‎11-‎16

OS build 19045.3996

Experience Windows Feature Experience Pack 1000.19053.1000.0

 

BC AdBot (Login to Remove)

 

#2 MoxieMomma

MoxieMomma

  • Avatar image
  • BC Advisor
  • 2,346 posts
  • OFFLINE
    •  
  • Gender:Not Telling
  • Local time:10:56 PM

Posted 07 February 2024 - 06:32 AM

Hi:

These new issues most likely have nothing to do with KB5034441 (which was pulled by MS weeks ago).

We need more information in order to better assist you. For starters....

FIRST:

1. Please download, install and run the Free version of Speccy from here: https://www.ccleaner.com/speccy.
2. Then, go to File > Publish Snapshot
3. Click YES > Copy to Clipboard
4. Then please post the LINK to the report by pasting it into your next reply.

NEXT:

1. Please download and install MiniToolBox from here: https://www.bleepingcomputer.com/download/minitoolbox/
2. Place a checkmark in the following boxes:

List Last 10 Event Viewer Errors
List Installed Programs
List Problematic Devices
List Users, Partitions and Memory size

3. Click “GO”
4. Please post the text results here by pasting them in your next reply in this thread.

Thanks

#3 FNActivity

FNActivity
  • Topic Starter

  • Avatar image
  • Members
  • 165 posts
  • OFFLINE
    •  
  • Gender:Male
  • Local time:08:26 AM

Posted 07 February 2024 - 07:03 AM

Thanks for reply

 

First :

http://speccy.piriform.com/results/EoOO1TwDnhkzoC0DsNCRwiJ

 

Second :

I didn't see the "list problematic devices" error, that's why I clicked the "list devices - only problems" option

https://i.imgur.com/8NlglFO.png

 

MiniToolBox by Farbar  Version: 13-05-2022
Ran by FNGeek (administrator) on 07-02-2024 at 15:33:05
Running from "C:\Users\FNGeek\Downloads"
Microsoft Windows 10 Pro  (X64)
Model: Precision M6700 Manufacturer: Dell Inc.
Boot Mode: Normal
***************************************************************************
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (02/07/2024 01:44:56 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: The storage optimizer couldn't complete retrim on Local Disk (F:) because: The operation requested is not supported by the hardware backing the volume. (0x8900002A)
 
Error: (02/07/2024 01:44:52 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: The storage optimizer couldn't complete retrim on Local Disk (D:) because: The operation requested is not supported by the hardware backing the volume. (0x8900002A)
 
Error: (02/07/2024 01:44:51 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: The storage optimizer couldn't complete retrim on Local Disk (G:) because: The operation requested is not supported by the hardware backing the volume. (0x8900002A)
 
Error: (02/07/2024 04:27:42 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4160,R,98) SRUJet: Error -1811 (0xfffff8ed) occurred while opening logfile C:\Windows\system32\SRU\SRU00031.log.
 
Error: (02/07/2024 04:21:40 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance.  hr = 0x8007045b, A system shutdown is in progress.
 
Error: (02/07/2024 04:21:39 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
 
Error: (02/07/2024 03:50:19 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance.  hr = 0x8007045b, A system shutdown is in progress.
 
Error: (02/07/2024 03:50:19 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
 
Error: (02/07/2024 03:50:19 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance.  hr = 0x8007045b, A system shutdown is in progress.
 
Error: (02/07/2024 03:50:19 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
 
System errors:
=============
Error: (02/07/2024 03:30:47 PM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created. Use the string "%2" to identify the interface for which initialization failed. It represents the MAC address of the failed interface or the Globally Unique Interface Identifier (GUID) if NetBT was unable to map from GUID to MAC address. If neither the MAC address nor the GUID were available, the string represents a cluster device name.
 
Error: (02/07/2024 03:30:47 PM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created. Use the string "%2" to identify the interface for which initialization failed. It represents the MAC address of the failed interface or the Globally Unique Interface Identifier (GUID) if NetBT was unable to map from GUID to MAC address. If neither the MAC address nor the GUID were available, the string represents a cluster device name.
 
Error: (02/07/2024 03:26:46 PM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created. Use the string "%2" to identify the interface for which initializationfailed. It represents the MAC address of the failed interface or the Globally Unique Interface Identifier (GUID) if NetBT was unable to map from GUID to MAC address. If neither the MAC address nor the GUID were available, the string represents a cluster device name.
 
Error: (02/07/2024 03:26:46 PM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created. Use the string "%2" to identify the interface for which initialization failed. It represents the MAC address of the failed interface or the Globally Unique Interface Identifier (GUID) if NetBT was unable to map from GUID to MAC address. If neither the MAC address nor the GUID were available, the string represents a cluster device name.
 
Error: (02/07/2024 03:12:34 PM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created. Use the string "%2" to identify the interface for which initialization failed. It represents the MAC address of the failed interface or the Globally Unique Interface Identifier (GUID) if NetBT was unable to map from GUID to MAC address. If neither the MAC address nor the GUID were available, the string represents a cluster device name.
 
Error: (02/07/2024 03:12:34 PM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created. Use the string "%2" to identify the interface for which initializationfailed. It represents the MAC address of the failed interface or the Globally Unique Interface Identifier (GUID) if NetBT was unable to map from GUID to MAC address. If neither the MAC address nor the GUID were available, the string represents a cluster device name.
 
Error: (02/07/2024 02:29:07 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x8024200b: 2024-01 Security Update for Windows 10 Version 22H2 for x64-based Systems (KB5034441).
 
Error: (02/07/2024 12:50:13 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x8024200b: 2024-01 Security Update for Windows 10 Version 22H2 for x64-based Systems (KB5034441).
 
Error: (02/07/2024 12:47:09 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The GameInput Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 1000 milliseconds: Restart the service.
 
Error: (02/07/2024 12:47:09 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The GameInput Service service terminated with the following error: %%2147680517 = The compound file %1 was produced with a newer version of storage.
 
 
Windows Defender:
================
Date: 2024-02-06 12:38:11
Description: 
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
 
Date: 2024-02-06 04:51:29
Description: 
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
 
Date: 2024-02-01 00:53:17
Description: 
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
Name: PUA:Win32/Keygen
Severity: Low
Category: Potentially Unwanted Software
Path: file:_C:\Users\FNGeek\Downloads\Stardock Groupy\Stardock.Groupy.2.12.x64\Patch\Stardock Products Patch.exe
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: Unknown
Security intelligence Version: AV: 1.403.3000.0, AS: 1.403.3000.0, NIS: 1.403.3000.0
Engine Version: AM: 1.1.23110.2, NIS: 1.1.23110.2
 
Date: 2024-01-31 04:01:37
Description: 
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
Name: Behavior:Win32/Ransomware!ShadowCopy.E
Severity: Severe
Category: Suspicious Behavior
Path: behavior:_process: C:\Windows\System32\rundll32.exe, pid:1356:72238830050985; process:_pid:1356,ProcessStart:133511341622358162
Detection Origin: Unknown
Detection Type: Concrete
Detection Source: Unknown
Process Name: C:\Windows\System32\rundll32.exe
Security intelligence Version: AV: 1.403.2959.0, AS: 1.403.2959.0, NIS: 1.403.2959.0
Engine Version: AM: 1.1.23110.2, NIS: 1.1.23110.2
 
Date: 2024-01-31 04:01:37
Description: 
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
Name: Behavior:Win32/Ransomware!ShadowCopy.E
Severity: Severe
Category: Suspicious Behavior
Path: behavior:_process: C:\Windows\System32\rundll32.exe, pid:1356:72238830050985; process:_pid:1356,ProcessStart:133511341622358162
Detection Origin: Unknown
Detection Type: Concrete
Detection Source: Unknown
Process Name: Unknown
Security intelligence Version: AV: 1.403.2959.0, AS: 1.403.2959.0, NIS: 1.403.2959.0
Engine Version: AM: 1.1.23110.2, NIS: 1.1.23110.2
Event[0]:
 
Date: 2024-02-07 03:11:37
Description: 
Microsoft Defender Antivirus has encountered an error trying to update security intelligence and will attempt to revert to a previous version.
Security intelligence Attempted: Current
Error Code: 0x80070003
Error description: The system cannot find the path specified. 
Security intelligence Version: 0.0.0.0;0.0.0.0
Engine Version: 0.0.0.0
 
Date: 2024-01-24 04:03:16
Description: 
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 
Previous security intelligence Version: 1.403.2590.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.23110.2
Error code: 0x8024402c
Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. 
 
Date: 2024-01-20 11:42:56
Description: 
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 
Previous security intelligence Version: 1.403.2398.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.23110.2
Error code: 0x80240438
Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. 
 
Date: 2024-01-13 05:53:10
Description: 
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 
Previous security intelligence Version: 1.403.2058.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.23110.2
Error code: 0x8024402c
Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. 
 
Date: 2024-01-05 12:50:05
Description: 
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 
Previous security intelligence Version: 1.403.1643.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.23110.2
Error code: 0x80240438
Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. 
 
CodeIntegrity Errors:
====================
Date: 2024-02-07 13:48:57
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\ExplorerPatcher\ExplorerPatcher.amd64.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
Date: 2024-02-07 13:48:57
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Users\FNGeek\Local\Theme\Windows 10\File\Program\OldNewExplorer\OldNewExplorer\OldNewExplorer64.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
 
=========================== Installed Programs ============================
7-Zip 23.01 (x64) (HKLM\...\7-Zip) (Version: 23.01 - Igor Pavlov)
Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.5.1 - Sereby Corporation)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Auto Mouse Click v86.1 (HKLM-x32\...\{F5E3859D-0720-41F0-BAF5-4CBCDFD8F406}_is1) (Version: 86.1 - MurGee.com)
AutoHotkey (HKLM\...\AutoHotkey) (Version: 2.0.11 - AutoHotkey Foundation LLC)
Cloudflare WARP (HKLM\...\{0E8072F2-77F5-4FD7-9774-0DA85609CEF9}) (Version: 24.1.159.0 - Cloudflare, Inc.)
Converseen (HKLM-x32\...\{B35C58D3-FBD2-4A81-8371-588F51EC180F}_is1) (Version: 0.12.0.2 - Francesco Mondello)
Dell ControlVault Host Components Installer 64 bit (HKLM\...\{74117219-F4F7-4CB7-98A2-AAF9D6D9928C}) (Version: 3.4.8.14 - Broadcom Corporation)
Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 10.3201.101.212 - ALPS ELECTRIC CO., LTD.)
Directory Opus (HKLM\...\{6CFA061F-1A4C-4569-963F-2ACFC60F5CAD}_is1) (Version: 12.33 - GPSoftware)
DirectX 9.0c Extra Files (x86, x64) (HKLM\...\{8729E65B-8C12-4A42-B1FE-E4DA7ED52855}_is1) (Version: 1.10.06.0 - Sereby Corporation)
DirectX10 NCT Release 2 (HKLM-x32\...\{F4F7F393-A8E8-42CC-8C2E-7A999B48B2AE}_is1) (Version: 1.5 - KM-Software)
Eclipse Temurin JDK with Hotspot 21.0.1+12 (x64) (HKLM\...\{CB5F7F9C-C87C-4DA7-ADE3-71CBC7EE8E24}) (Version: 21.0.1.12 - Eclipse Adoptium)
Everything 1.5.0.1363a (x64) (HKLM\...\Everything 1.5a) (Version: 1.5.0.1363 - voidtools)
ExplorerPatcher (HKLM\...\{D17F1E1A-5919-4427-8F89-A1A8503CA3EB}_ExplorerPatcher) (Version: 22621.2861.62.2 - VALINET Solutions SRL)
EyePro3 (HKLM-x32\...\{91F09C30-F841-44A0-B37F-AE274E6FFC51}) (Version: 3.1.0 - ClassleSoft) Hidden
EyePro3 (HKLM-x32\...\EyePro3 3.1.0) (Version: 3.1.0 - ClassleSoft)
Freelang (HKLM-x32\...\{A09E2D66-B931-415C-A9DE-FF030AB5AD77}_is1) (Version:  - Freelang)
FxSound (HKLM\...\{14600665-0165-49E8-8017-D1BD6A290335}) (Version: 1.1.20.0 - FxSound LLC) Hidden
FxSound (HKLM\...\FxSound 1.1.20.0) (Version: 1.1.20.0 - FxSound LLC)
Geph version v4.10.1 (HKLM-x32\...\{09220679-1AE0-43B6-A263-AAE2CC36B9E3}_is1) (Version: v4.10.1 - Gephyra OÜ)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 121.0.6167.140 - Google LLC)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 85.0.26.0 - Google LLC)
HakuNeko Desktop (HKLM\...\HakuNeko Desktop_is1) (Version: 6.1.7 - Ronny Wegener <wegener.ronny@gmail.com>)
HWiNFO64 (HKLM\...\HWiNFO64_is1) (Version: 7.68 - Martin Malik, REALiX s.r.o.)
ImageGlass (HKLM\...\{35D2E54D-F51D-4BCE-B499-67EB30062C5C}) (Version: 9.0.10.201 - Duong Dieu Phap)
Intel® Chipset Device Software (HKLM-x32\...\{4e75a24b-6cc4-4a46-accf-525f8a08c533}) (Version: 10.1.1.18 - Intel® Corporation) Hidden
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.6.1194 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.5059 - Intel Corporation)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: 6.41.20 - Tonec Inc.)
JvD Calendar (HKLM-x32\...\JvD Calendar8.2) (Version: 8.2 - JvD Soft)
K-Lite Mega Codec Pack 18.0.1 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 18.0.1 - KLCP)
Macro Recorder 5.0.4.8 (HKLM-x32\...\{12B143E5-72C6-45AA-9D59-F00C3B2B8D29}_is1) (Version:  - MacroClicker, Inc.)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61135 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61135 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation)
Microsoft Visual J# 2.0 Redistributable Package - SE (x64) (HKLM\...\Microsoft Visual J# 2.0 Redistributable Package - SE (x64)) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{47C2CCDB-7A04-3797-992B-A84D3E90258F}) (Version: 10.0.60833 - Microsoft Corporation)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 102.7.1 - Mozilla)
Mozilla Thunderbird (x64 en-US) (HKLM\...\Mozilla Thunderbird 115.7.0 (x64 en-US)) (Version: 115.7.0 - Mozilla)
NetLimiter (HKLM\...\{0A88B24E-778A-4D6C-AEEE-0406A8209E91}) (Version: 5.3.6.0 - Locktime Software) Hidden
NetLimiter (HKLM-x32\...\NetLimiter 5.3.6.0) (Version: 5.3.6.0 - Locktime Software)
Node.js (HKLM\...\{C9581A3B-99C4-474C-9592-DA64BA42A02D}) (Version: 21.3.0 - Node.js Foundation)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 8.6.2 - Notepad++ Team)
NVIDIA 3D Vision Controller Driver 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 426.78 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 426.78 - NVIDIA Corporation)
NVIDIA Graphics Driver 426.78 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 426.78 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.38.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.13 - NVIDIA Corporation)
NVIDIA nView 149.77 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 149.77 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NVIDIA WMI 2.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVWMI) (Version: 2.33.0 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 231220 - Kakao Corp.)
PowerToys (Preview) (HKLM\...\{CD764F6E-D151-45D1-9EF8-4D858CE1B272}) (Version: 0.78.0 - Microsoft Corporation) Hidden
PrivadoVPN (HKLM-x32\...\{481735FF-B88B-4E1E-8818-7B282DBCE1EC}) (Version: 3.8.0.0 - Privado Networks AG) Hidden
PrivadoVPN (HKLM-x32\...\{c9f4ac92-f35b-427f-95a6-e856677bae63}) (Version: 3.8.0.0 - Privado Networks AG)
PureVPN (HKLM-x32\...\{98d73c9c-b1bd-4959-b309-51ef997962a0}) (Version: 11.18.0.7 - ) Hidden
Python 3.12.1 Add to Path (64-bit) (HKLM\...\{946DC818-F8CA-463A-BE16-946EB508BD48}) (Version: 3.12.1150.0 - Python Software Foundation) Hidden
Python 3.12.1 Core Interpreter (64-bit) (HKLM\...\{AC82C1A3-9597-40F2-893D-F02F778FBA4D}) (Version: 3.12.1150.0 - Python Software Foundation) Hidden
Python 3.12.1 Development Libraries (64-bit) (HKLM\...\{8C53CBDD-4DAF-426F-9478-6C7C2920CDDA}) (Version: 3.12.1150.0 - Python Software Foundation) Hidden
Python 3.12.1 Documentation (64-bit) (HKLM\...\{62667662-A580-409C-8044-55B06F774AE2}) (Version: 3.12.1150.0 - Python Software Foundation) Hidden
Python 3.12.1 Executables (64-bit) (HKLM\...\{44BC9F9C-15C2-46C1-B88D-3135A9DA555F}) (Version: 3.12.1150.0 - Python Software Foundation) Hidden
Python 3.12.1 pip Bootstrap (64-bit) (HKLM\...\{1662F43B-2337-4FD8-8CE6-BEA38FC94DD4}) (Version: 3.12.1150.0 - Python Software Foundation) Hidden
Python 3.12.1 Standard Library (64-bit) (HKLM\...\{47957EE3-0E23-4075-B825-F202E913670F}) (Version: 3.12.1150.0 - Python Software Foundation) Hidden
Python 3.12.1 Tcl/Tk Support (64-bit) (HKLM\...\{926CDC62-3AE2-422B-9858-D6EC3BAD473F}) (Version: 3.12.1150.0 - Python Software Foundation) Hidden
Python 3.12.1 Test Suite (64-bit) (HKLM\...\{E309AE00-4FB1-4817-9172-7E198668375D}) (Version: 3.12.1150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{4C8D4EC3-F620-4CEE-8BAD-B59A3C6815F3}) (Version: 3.12.1150.0 - Python Software Foundation)
qBittorrent (HKLM-x32\...\qBittorrent) (Version: 4.6.3 - The qBittorrent project)
Quick Access Popup v11.6.3.2 (HKLM\...\{BE9D760B-0D64-40BD-9F24-B5B8AB90131B}_is1) (Version: v11.6.3.2 - Jean Lalonde)
RGSS-RTP Standard (HKLM-x32\...\RGSS-RTP Standard_is1) (Version: 1.04 - Enterbrain)
RPG MAKER VX Ace RTP (HKLM-x32\...\RPGVXAce_RTP_is1) (Version: 1.00 - Enterbrain)
SharePoint Client Components (HKLM\...\{95150004-1163-0409-1000-0000000FF1CE}) (Version: 15.0.4711.1001 - Microsoft Corporation)
ShareX (HKLM\...\82E6AC09-0FEF-4390-AD9F-0DD3F5561EFC_is1) (Version: 15.0.0 - ShareX Team)
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
ST Microelectronics 3 Axis Digital Accelerometer Solution (HKLM-x32\...\{9C24F411-9CA7-4A8A-91F3-F08A4A38EB31}) (Version: 4.10.0067 - ST Microelectronics)
Suwayomi Server (HKLM\...\{1AD11230-496B-46B4-8685-DD36C76391B0}) (Version: 0.7.0 - Suwayomi)
Suwayomi Server (HKLM\...\{7516AE2F-C10D-4EFC-B4E5-B4E64787DCB0}) (Version: 0.7.0 - Suwayomi)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
UE4 Prerequisites (x64) (HKLM\...\{F9EC45F9-074A-48BF-92E9-A8CADD56F693}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{0d995f46-317b-4b5f-bf3e-9f98bae9d339}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{4e242cc8-5e3c-4b08-9d55-dbc62ddd1208}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x86) (HKLM-x32\...\{162863d7-4b83-429c-baa7-fcedd09f331f}) (Version: 1.0.8.0 - Epic Games, Inc.)
UE4 Prerequisites (x86) (HKLM-x32\...\{AC4F797F-F4E3-49BB-B4F7-31560EAE1CFE}) (Version: 1.0.8.0 - Epic Games, Inc.) Hidden
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
VirusTotalUploader (HKLM-x32\...\{A7163FDD-C032-4D5B-9027-3C1C2D5CFAF9}) (Version: 0.2.1 - Samuel Tulach) Hidden
VirusTotalUploader (HKLM-x32\...\VirusTotalUploader 0.2.1) (Version: 0.2.1 - Samuel Tulach)
VPN Unlimited 9.1.0 (HKLM-x32\...\{DC24521E-872B-41AF-93EA-FE477902D6FB}_is1) (Version: 9.1.0 - KeepSolid Inc.)
vs2015_redist x86 (HKLM-x32\...\{BD46163A-0331-4A61-B65A-7B66D7C93F8E}) (Version: 1.0.0.0 - Realnetworks) Hidden
Winaero Tweaker (HKLM\...\Winaero Tweaker_is1) (Version: 1.60.1.0 - Winaero)
WinRAR 6.23 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.23.0 - win.rar GmbH)
X-Mouse Button Control 2.20.5 (HKLM-x32\...\X-Mouse Button Control) (Version: 2.20.5 - Highresolution Enterprises)
XYplorer 25.40 (HKLM-x32\...\XYplorer) (Version: 25.40.0000 - Donald Lessau, Cologne Code Company)
 
Packages:
=========
Microsoft Advertising SDK for JavaScript -> C:\Program Files\WindowsApps\Microsoft.Advertising.JavaScript_10.1805.2.0_x64__8wekyb3d8bbwe [2024-02-07] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for JavaScript -> C:\Program Files\WindowsApps\Microsoft.Advertising.JavaScript_10.1805.2.0_x86__8wekyb3d8bbwe [2024-02-07] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2024-02-07] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2024-02-07] (Microsoft Corporation) [MS Ad]
TradingView -> C:\Program Files\WindowsApps\TradingView.Desktop_2.7.2.5501_x64__n534cwy3pjxzj [2024-02-07] (TradingView, Inc.) [Startup Task]
VirusTotalUploader -> C:\Program Files (x86)\Samuel Tulach\VirusTotalUploader [2024-02-04] (0)
Windows Package Manager Source (winget) -> C:\Program Files\WindowsApps\Microsoft.Winget.Source_2023.923.2244.978_neutral__8wekyb3d8bbwe [2024-02-07] (Microsoft Corporation)
 
========================= Devices: ================================
 
 
========================= Memory info: ===================================
Percentage of memory in use: 45%
Total physical RAM: 16322.89 MB
Available physical RAM: 8946.99 MB
Total Virtual: 16322.89 MB
Available Virtual: 6234.26 MB
 
========================= Partitions: =====================================
1 Drive c: (Local Disk) (Fixed) (Total:118.7 GB) (Free:19.43 GB) NTFS
2 Drive d: (Local Disk) (Fixed) (Total:310.5 GB) (Free:261.45 GB) NTFS
3 Drive f: (Local Disk) (Fixed) (Total:310.51 GB) (Free:98.73 GB) NTFS
4 Drive g: (Local Disk) (Fixed) (Total:310.5 GB) (Free:49.19 GB) NTFS
 
========================= Users: ========================================
User accounts for \\FNACTIVITY
 
Administrator            DefaultAccount           FNGeek                   
Guest                    WDAGUtilityAccount       
 
 
**** End of log ****

Edited by hamluis, 07 February 2024 - 09:08 AM.

Model of your computer 

Dell Precision M6700
 

Windows specifications 

Edition Windows 10 Pro

Version 22H2
Installed on ‎2020-‎11-‎16

OS build 19045.3996

Experience Windows Feature Experience Pack 1000.19053.1000.0

 

#4 MoxieMomma

MoxieMomma

  • Avatar image
  • BC Advisor
  • 2,346 posts
  • OFFLINE
    •  
  • Gender:Not Telling
  • Local time:10:56 PM

Posted 07 February 2024 - 07:29 AM

Thanks for those reports. There is a LOT going on with this system. Just a few examples of problems that my untrained eyes have spotted -

 

Evidence of possible cracked/pirated software (use of which violates the BC Forum Rules):

Date: 2024-02-01 00:53:17

Description: 

Microsoft Defender Antivirus has detected malware or other potentially unwanted software.

For more information please see the following:

https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/Keygen&threatid=225063&enterprise=0

Name: PUA:Win32/Keygen

Severity: Low

Category: Potentially Unwanted Software

Path: file:_C:\Users\FNGeek\Downloads\Stardock Groupy\Stardock.Groupy.2.12.x64\Patch\Stardock Products Patch.exe

Detection Origin: Local machine

Detection Type: Concrete

Detection Source: Real-Time Protection

Process Name: Unknown

Security intelligence Version: AV: 1.403.3000.0, AS: 1.403.3000.0, NIS: 1.403.3000.0

Engine Version: AM: 1.1.23110.2, NIS: 1.1.23110.2

 

 

Evidence of possible malware:

Date: 2024-01-31 04:01:37

Description: 

Microsoft Defender Antivirus has detected malware or other potentially unwanted software.

For more information please see the following:

https://go.microsoft.com/fwlink/?linkid=37020&name=Behavior:Win32/Ransomware!ShadowCopy.E&threatid=2147829652&enterprise=0

Name: Behavior:Win32/Ransomware!ShadowCopy.E

Severity: Severe

Category: Suspicious Behavior

Path: behavior:_process: C:\Windows\System32\rundll32.exe, pid:1356:72238830050985; process:_pid:1356,ProcessStart:133511341622358162

Detection Origin: Unknown

Detection Type: Concrete

Detection Source: Unknown

Process Name: C:\Windows\System32\rundll32.exe

Security intelligence Version: AV: 1.403.2959.0, AS: 1.403.2959.0, NIS: 1.403.2959.0

Engine Version: AM: 1.1.23110.2, NIS: 1.1.23110.2

 

 

Tweaking software that can break Windows:

ExplorerPatcher (HKLM\...\{D17F1E1A-5919-4427-8F89-A1A8503CA3EB}_ExplorerPatcher) (Version: 22621.2861.62.2 - VALINET Solutions SRL)

Winaero Tweaker (HKLM\...\Winaero Tweaker_is1) (Version: 1.60.1.0 - Winaero)

 

Use of torrents that are one of the most common ways to get infected:

qBittorrent (HKLM-x32\...\qBittorrent) (Version: 4.6.3 - The qBittorrent project)

 

Borderline low disk space on the OS boot drive (C:\) – 20% is the bare minimum required for proper Windows operation:

1 Drive c: (Local Disk) (Fixed) (Total:118.7 GB) (Free:19.43 GB) NTFS

 

 

If I were you, I would backup my data, wipe the drive, and perform a clean install of Windows 10

              >Given the age of the system, it might be advisable to run  hardware diagnostics first

 

Otherwise, it’s likely advisable to head over to the malware removal section for a deeper diagnosis and cleanup. If you proceed, please start with the Preparation Guide HERE (follow as many of the instructions as you can).

THEN, please post the requested FRST & Addition logs in a new, separate topic HERE.

A trained malware expert will assist with scanning and (if needed) cleaning your computer.

After the system is clean (which will include removing all pirated/cracked software) you can return here for additional troubleshooting.

 

 

Other helpers may have other/better suggestions.

 


#5 hamluis

hamluis

    Moderator


  • Avatar image
  • Moderator
  • 63,699 posts
  • OFFLINE
    •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:10:56 PM

Posted 07 February 2024 - 09:11 AM

Agree with MM, her suggestion to initiate a topic in the Malware Forum seems the logical way to proceed.

 

Louis


BC Malware Forum

#6 FNActivity

FNActivity
  • Topic Starter

  • Avatar image
  • Members
  • 165 posts
  • OFFLINE
    •  
  • Gender:Male
  • Local time:08:26 AM

Posted 08 February 2024 - 01:39 PM

Thanks for those reports. There is a LOT going on with this system. Just a few examples of problems that my untrained eyes have spotted -

 

Evidence of possible cracked/pirated software (use of which violates the BC Forum Rules):

Date: 2024-02-01 00:53:17

Description: 

Microsoft Defender Antivirus has detected malware or other potentially unwanted software.

For more information please see the following:

https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/Keygen&threatid=225063&enterprise=0

Name: PUA:Win32/Keygen

Severity: Low

Category: Potentially Unwanted Software

Path: file:_C:\Users\FNGeek\Downloads\Stardock Groupy\Stardock.Groupy.2.12.x64\Patch\Stardock Products Patch.exe

Detection Origin: Local machine

Detection Type: Concrete

Detection Source: Real-Time Protection

Process Name: Unknown

Security intelligence Version: AV: 1.403.3000.0, AS: 1.403.3000.0, NIS: 1.403.3000.0

Engine Version: AM: 1.1.23110.2, NIS: 1.1.23110.2

 

 

Evidence of possible malware:

Date: 2024-01-31 04:01:37

Description: 

Microsoft Defender Antivirus has detected malware or other potentially unwanted software.

For more information please see the following:

https://go.microsoft.com/fwlink/?linkid=37020&name=Behavior:Win32/Ransomware!ShadowCopy.E&threatid=2147829652&enterprise=0

Name: Behavior:Win32/Ransomware!ShadowCopy.E

Severity: Severe

Category: Suspicious Behavior

Path: behavior:_process: C:\Windows\System32\rundll32.exe, pid:1356:72238830050985; process:_pid:1356,ProcessStart:133511341622358162

Detection Origin: Unknown

Detection Type: Concrete

Detection Source: Unknown

Process Name: C:\Windows\System32\rundll32.exe

Security intelligence Version: AV: 1.403.2959.0, AS: 1.403.2959.0, NIS: 1.403.2959.0

Engine Version: AM: 1.1.23110.2, NIS: 1.1.23110.2

 

 

Tweaking software that can break Windows:

ExplorerPatcher (HKLM\...\{D17F1E1A-5919-4427-8F89-A1A8503CA3EB}_ExplorerPatcher) (Version: 22621.2861.62.2 - VALINET Solutions SRL)

Winaero Tweaker (HKLM\...\Winaero Tweaker_is1) (Version: 1.60.1.0 - Winaero)

 

Use of torrents that are one of the most common ways to get infected:

qBittorrent (HKLM-x32\...\qBittorrent) (Version: 4.6.3 - The qBittorrent project)

 

Borderline low disk space on the OS boot drive (C:\) – 20% is the bare minimum required for proper Windows operation:

1 Drive c: (Local Disk) (Fixed) (Total:118.7 GB) (Free:19.43 GB) NTFS

 

 

If I were you, I would backup my data, wipe the drive, and perform a clean install of Windows 10

              >Given the age of the system, it might be advisable to run  hardware diagnostics first

 

Otherwise, it’s likely advisable to head over to the malware removal section for a deeper diagnosis and cleanup. If you proceed, please start with the Preparation Guide HERE (follow as many of the instructions as you can).

THEN, please post the requested FRST & Addition logs in a new, separate topic HERE.

A trained malware expert will assist with scanning and (if needed) cleaning your computer.

After the system is clean (which will include removing all pirated/cracked software) you can return here for additional troubleshooting.

 

 

Other helpers may have other/better suggestions.

 

 

Cracks and keygens are safe, I am sure of that
Over 30 years old, Iranians have been using the site that provides these cracks (because in Iran, it is either not possible to buy a license, or because the Iranian currency is worthless, the price of the licenses dramaticly increases) and there have been no problems, even Iranian computer experts accept this site
 
You know better than me that even if a crack is healthy, antiviruses say it is infected
 
Windows Tweaking
I use powertoys and winaero, I searched both in the answers.microsoft forum, they say that both are safe


I forgot to say :
The reason why I said that it might be because of this faulty update is that there are about 4 typewriters built into Microsoft's answer, in which some people say that this update (which gives an error during installation) has caused problems in their operating system.
 
 

ETC


Model of your computer 

Dell Precision M6700
 

Windows specifications 

Edition Windows 10 Pro

Version 22H2
Installed on ‎2020-‎11-‎16

OS build 19045.3996

Experience Windows Feature Experience Pack 1000.19053.1000.0

 

#7 MoxieMomma

MoxieMomma

  • Avatar image
  • BC Advisor
  • 2,346 posts
  • OFFLINE
    •  
  • Gender:Not Telling
  • Local time:10:56 PM

Posted 08 February 2024 - 02:23 PM

Under the circumstances & given the forum rules, I have no additional advice.
Sorry.
Good luck.

#8 aldfort

aldfort

  • Avatar image
  • Members
  • 1,945 posts
  • OFFLINE
    •  
  • Gender:Male
  • Location:Cardiff, Wales, UK
  • Local time:04:56 AM

Posted 09 February 2024 - 07:47 AM

All I can say is I agree with MM.

You should raise a ticket in the Malware forum.

If you have not done so already then disable Windows Update from trying to install KB 5034441 but I am fairly certain this is not your problem.


#9 FNActivity

FNActivity
  • Topic Starter

  • Avatar image
  • Members
  • 165 posts
  • OFFLINE
    •  
  • Gender:Male
  • Local time:08:26 AM

Posted 09 February 2024 - 08:14 AM

All I can say is I agree with MM.

You should raise a ticket in the Malware forum.

If you have not done so already then disable Windows Update from trying to install KB 5034441 but I am fairly certain this is not your problem.

He said that the cracked programs in your system will be deleted, this creates a problem for me
 
Last night, I scanned the entire system with several antiviruses, including malwarebytes, and not even a single malware was found

Model of your computer 

Dell Precision M6700
 

Windows specifications 

Edition Windows 10 Pro

Version 22H2
Installed on ‎2020-‎11-‎16

OS build 19045.3996

Experience Windows Feature Experience Pack 1000.19053.1000.0

 

#10 Shplad

Shplad

  • Avatar image
  • Members
  • 6,473 posts
  • OFFLINE
    •  
  • Gender:Not Telling
  • Location:Canada
  • Local time:11:56 PM

Posted 21 February 2024 - 05:49 PM

For the network interfaces error, I'd start by uninstalling your VPN software. I can't even count the number of times I've seen installation of a VPN client interfere with network interfaces applets.

 

And I too think you should check for malware. I'd bet there is at least some as part of the problem. If not, what have you got to lose except a little of your time.


- Use this to collect and post information about your PC hardware, software and configuration (Whether or not you have crashing).

 

Blue Screen of Death (BSOD) Posting Instructions - Windows 10, 8.1, 8, 7 & Vista

https://www.bleepingcomputer.com/forums/t/576314/blue-screen-of-death-bsod-posting-instructions-windows-10-81-8-7-vista/

 

 

#11 Pkshadow

Pkshadow

  • Avatar image
  • BC Advisor
  • 12,306 posts
  • OFFLINE
    •  
  • Gender:Not Telling
  • Location:On the Brow of the Hill, West Coast, Canada
  • Local time:08:56 PM

Posted 21 February 2024 - 08:35 PM

Interestingly still screwed - KB5034441 - 8 days ago - https://www.windowslatest.com/2024/02/14/windows-10-kb5034441-is-still-broken-with-0x80070643-error/ revealed the security update would not install with an error message titled “0x80070643 – ERROR_INSTALL_FAILURE”.


" mosquitoes really wake up everyday and choose violence "   — dalia (@_dalia7)
www.cnn.com/2020/07/23/health/mosquitoes-attraction-humans-future-wellness-scn/index.html
 

I-7 ASUS ROG Rampage II Extreme  / ASUS TUF Gaming F17 / I-7 4770K ASUS ROG Maximus VI Extreme

#12 Shplad

Shplad

  • Avatar image
  • Members
  • 6,473 posts
  • OFFLINE
    •  
  • Gender:Not Telling
  • Location:Canada
  • Local time:11:56 PM

Posted 21 February 2024 - 10:30 PM

 

All I can say is I agree with MM.

You should raise a ticket in the Malware forum.

If you have not done so already then disable Windows Update from trying to install KB 5034441 but I am fairly certain this is not your problem.

He said that the cracked programs in your system will be deleted, this creates a problem for me
 
Last night, I scanned the entire system with several antiviruses, including malwarebytes, and not even a single malware was found

 

 

That doesn't necessarily mean you aren't infected. I suggest you follow our advice. We have dozens of years of IT experience here.


- Use this to collect and post information about your PC hardware, software and configuration (Whether or not you have crashing).

 

Blue Screen of Death (BSOD) Posting Instructions - Windows 10, 8.1, 8, 7 & Vista

https://www.bleepingcomputer.com/forums/t/576314/blue-screen-of-death-bsod-posting-instructions-windows-10-81-8-7-vista/

 

 

#13 Pkshadow

Pkshadow

  • Avatar image
  • BC Advisor
  • 12,306 posts
  • OFFLINE
    •  
  • Gender:Not Telling
  • Location:On the Brow of the Hill, West Coast, Canada
  • Local time:08:56 PM

Posted 21 February 2024 - 11:06 PM

@FNActivity I thought the same thing that is years old and does not matter.

 

Well years later and better scanning when I uninstalled the program the crack .ini file turned out to be something much worse.

 

My blocking in a great Firewall is the only reason I was safe.

 

It still can effect you, your friends and family and all on the internet.

 

With that thought it is best to find a alternative that is freeware or pay for the program.

 

You mention Iran.  Some of the best hackers in the world may be using you.


" mosquitoes really wake up everyday and choose violence "   — dalia (@_dalia7)
www.cnn.com/2020/07/23/health/mosquitoes-attraction-humans-future-wellness-scn/index.html
 

I-7 ASUS ROG Rampage II Extreme  / ASUS TUF Gaming F17 / I-7 4770K ASUS ROG Maximus VI Extreme

#14 FNActivity

FNActivity
  • Topic Starter

  • Avatar image
  • Members
  • 165 posts
  • OFFLINE
    •  
  • Gender:Male
  • Local time:08:26 AM

Posted 22 February 2024 - 05:21 AM

Pkshadow
Shplad

Thanks guys, I'll listen to your advice and try not to use cracked programs from now on, I wanted to announce that my problem was solved globally with one change!


All the problems that happened to my operating system were solved by the following change in the registry
(There were a series of other software problems that I just found out, such as the inability to turn off Windows Security or the inability to use the exclude section of Windows Security, etc.)

 

1) Run regedit.exe

2) Navigate to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\MUI

3) In this folder create a new key named StringCacheSettings

4) Under this add a new DWORD (32-bit) named StringCacheGeneration

5) Set the value of this new DWORD to 38b (hexdecimal)

6) Close regedit and reboot windows.

https://answers.microsoft.com/en-us/windows/forum/all/error-message-when-i-try-to-change-any-setting-or/d1147af8-f98b-4f8c-999c-dfd4ba212877?page=4

https://www.reddit.com/r/techsupport/comments/17jkxal/windows_security_cant_manage_exclusions/

https://www.thewindowsclub.com/failed-to-read-description-error-code-2


All problems are solved and that's great

But I have a few questions.

1: Are these registry changes that I applied safe?2: Was the cause of these problems the faulty kb5034441 update or is it caused by something else?
3: Should I update Windows regularly or wait until the defective kb5034441 update is fixed?
4: Are the regedit changes I applied above sufficient or incomplete?

Thank you very muchs

 

Model of your computer 

Dell Precision M6700
 

Windows specifications 

Edition Windows 10 Pro

Version 22H2
Installed on ‎2020-‎11-‎16

OS build 19045.3996

Experience Windows Feature Experience Pack 1000.19053.1000.0

 

#15 Shplad

Shplad

  • Avatar image
  • Members
  • 6,473 posts
  • OFFLINE
    •  
  • Gender:Not Telling
  • Location:Canada
  • Local time:11:56 PM

Posted 22 February 2024 - 11:37 AM

That's good news, but I"m not sure you noticed/cleaned out this:
 
 
Date: 2024-01-31 04:01:37
Description: 
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
Name: Behavior:Win32/Ransomware!ShadowCopy.E
Severity: Severe
Category: Suspicious Behavior
Path: behavior:_process: C:\Windows\System32\rundll32.exe, pid:1356:72238830050985; process:_pid:1356,ProcessStart:133511341622358162
 
 
I don't know whether it's actually pointing at the Microsoft rundll32.exe file, or some file that that file spawns (starts and controls), but I'd be running another A/V check to see if this issue was resolved. It's listed as possible ransomware.

- Use this to collect and post information about your PC hardware, software and configuration (Whether or not you have crashing).

 

Blue Screen of Death (BSOD) Posting Instructions - Windows 10, 8.1, 8, 7 & Vista

https://www.bleepingcomputer.com/forums/t/576314/blue-screen-of-death-bsod-posting-instructions-windows-10-81-8-7-vista/

 

 

Back to Windows 10 Support


1 user(s) are reading this topic

0 members, 1 guests, 0 anonymous users


  1. BleepingComputer.com
  2. Microsoft Windows Support
  3. Windows 10 Support
  4. Privacy Policy
  5. Rules ·