سلام ،
بنابراین من در رایانه خود در حال تماشای یوتیوب بودم که متوجه شدم در مانیتور دوم من سوسو می زند. به مرور نگاه می کردم و هر از گاهی خیلی سریع پنجره ای باز می شود که یک نوار پیشرفت پر می شود. سعی کردم روی پنجره کلیک کنم اما روی صفحه باقی نمی ماند و در حالی که این اتفاق می افتاد نمی توانم متنی را مشخص کنم. من مدیر وظیفه را باز کردم و نمی توانستم هیچ برنامه ای را مشاهده کنم که غیرمعمول به نظر برسد بنابراین دقیقاً مطمئن نیستم که چیست. من نگران هستم که این ممکن است نوعی ویروس باشد. نکته دیگری که باید بدانید قسم می خورم روز دیگر وقتی از کامپیوتر دور بودم وقتی برگشتم فکر کردم مکان نما را روی صفحه خود حرکت می دهد اما چند متر با صفحه فاصله داشتم و خیلی دقیق نگاه نمی کردم بنابراین ممکن است داشته باشم فقط چیزها را دیده ام لطفاً گزارش های من را ضمیمه کنید.
نتیجه اسکن Farbar Recovery Scan Tool (FRST) (x64) نسخه: 09-06-2021
توسط igugl (سرپرست) در DESKTOP-NMH6TJ5 (نام محصول سیستم ASUS) اجرا شد (10 -06-2021 02:15:54)
در حال اجرا از C: Users igugl Desktop
Profiles Loaded: igugl
بستر های نرم افزاری: Windows 10 Pro Version 20H2 19042.1052 (X64) زبان: انگلیسی (ایالات متحده) )
مرورگر پیش فرض: FF
حالت بوت: عادی
====================== فرایندها (در لیست سفید) ========= =========
(اگر مدخلی در لیست اصلاحات موجود باشد ، روند بسته خواهد شد. پرونده منتقل نخواهد شد.)
(ASUSTeK Computer Inc. ->) C: Program Files (x86) ASUS ArmouryDevice dll SwAgent ArmourySwAgent.exe
(ASUSTeK Computer Inc. -> ASUS) C: Program Files (x86) ASUS ArmouryDevice dll ArmourySocketServer ArmourySocketServer.exe
(ASUSTeK Computer Inc. -> ASUS) C: Program Files (x86) ASUS ArmouryDevice dll MBLedSDK NoiseCancelingEngine.exe
(ASUSTeK Computer Inc. -> ASUSTek Compputer Inc.) C: Program Files ASUS AacMB Aac3572MbHal_x86.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C: Program Files (x86) ASUS ArmouryDevice asus_framework.exe <2>
(ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) C: Program Files (x86) ASUS AsusCertService AsusCertService.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc .) C: Program Files (x86) ASUS AXSP 4.00.45 atkexComSvc.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C: Program Files (x86) LightingService LightingService. exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C: Program Files ASUS ARMORY CRATE Lite Service ArmouryCrate.Service.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C : Program Files ASUS ARMORY CRATE Lite Service ArmouryCrate.UserSessionHelper.exe
(ASUSTEK COMPUTER INCORPORATION -> ASUSTek COMPUTER INC.) C: Program Files (x86) ASUS ROG Live Service ROGLiveService.exe
(A-Volute -> Nahimic) C: Windows System32 NahimicService.exe
(A-Volute -> Nahimic) C: Windows System32 NahimicSvc64.exe <2>
(A-Volute -> Nahimic) C: Windows SysWOW64 NahimicSvc32.exe <2>
(A-Volute SAS -> A-Volute) C: Users igugl AppData Local NhNotifSys sonicstudio asusns.exe
(Discord Inc. -> Discord Inc.) C : Users igugl AppData Local Discord app-1.0.9002 Discord.exe <6>
(راهکارهای اتصال بی سیم Intel® -> Intel Corporation) C: Windows System32 DriverStore FileRepository piecomponent.inf_amd64_6ea7dc275260560 Intel_PIE_Service.exe
(JetBrains sro -> JetBrains sro) C: Program Files JetBrains IntelliJ IDEA Community Edition 2021.1.1 bin fsnotifier64.exe
(JetBrains sro -> JetBrains sro) C: Program Files JetBrains IntelliJ IDEA Community Edition 2021 .1 bin idea64.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C: Program Files (x86) Kaspersky Lab Kaspersky Total Security 21.3 avp.exe
(Kaspersky Lab JSC -> آزمایشگاه Kaspersky AO: C: Program Files (x86) Kaspersky Lab Kaspersky Total Security 21.3 avpui.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C: Program Files (x86) Kaspersky Lab Kaspersky VPN 5.3 ksde.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C: Program Files (x86) Kaspersky Lab Kaspersky VPN 5.3 ksdeui.exe
(Logitech Inc -> Logitech، Inc. ) C: Program Files LGHUB lghub.exe <3>
(Logitech Inc -> Logitech، Inc.) C: Program Files LGHUB lghub_agent.exe
(Logitech Inc -> Logitech، Inc.) C : Program Files LGHUB lghub_updater.exe
(MariaDB Corporation Ab ->) C: Program Files MariaDB 10.5 bin mysqld.exe
(Microsoft Corporation -> Microsoft Corporation) C: Program Files Common Files microsoft shared ClickToRun OfficeClickToRun.exe
(شرکت مایکروسافت -> شرکت مایکروسافت) C: Users igugl AppData Local Microsoft OneDrive OneDrive.exe
(شرکت مایکروسافت) C: Program Files WindowsApps Microsoft.GamingApp_2106.1001.4.0_x64__8wekyb3d8bbwe XboxAppServices.exe [1945900Corporation] [Microsoft]
) C: Program Files WindowsApps Microsoft.GamingApp_2106.1001.4.0_x64__8wekyb3d8bbwe XboxPcApp.exe
(شرکت مایکروسافت) C: Program Files WindowsApps Microsoft.GamingServices_2.53.17003.0_x64__8wb4w004b004b400xxxxxxxx4xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx deri] x4__4w4wwx4__4wwwwxyxxxx4w4w4x4w4w4x4w4w4x4w4e4w4wx4exe4w4w4w4e4w8w4w8w4v0v]> [ویرایش] شرکت مایکروسافت) C: برنامه فایلها WindowsApps Microsoft.GamingServices_2.53.17003.0_x64__8wekyb3d8bbwe GamingServicesNet.exe
(شرکت مایکروسافت) C: برنامه فایلها WindowsApps Microsoft.WindowsStore_12104.1001.1.0_x64__8wekyb3d8bbwe WinStore.App.exe
(مایکروسافت کور poration) C: Program Files WindowsApps Microsoft.XboxGamingOverlay_5.621.4222.0_x64__8wekyb3d8bbwe GameBar.exe
(شرکت مایکروسافت) C: Program Files WindowsApps Microsoft.XboxGamingOverlay_5.62x4w4b44244_4244.04244.04244.04×4242.0.0] Xbox4242.0.0] Xbox4242.0.0] Xbox_4242.0.0] Xbox4242.0.0] Xbox4242.0.0] Xbox4242.0.0] Xbox_4242.0.0] Xbox_4244.0] Xbox_4242.0] Xbox_4242.0.0. (Microsoft Windows -> Microsoft Corporation) C: Windows System32 dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C: Windows System32 oobe UserOOBEBroker.exe
(Microsoft Windows -> Microsoft شرکت) C: Windows System32 rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C: Windows System32 smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C: Windows System32 wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C: Windows SysWOW64 wbem WmiPrvSE.exe
(ناشر سازگاری سخت افزار Microsoft Windows -> DTS Inc.) C: Windows System32 DTS PC APO4x DtsApo4Service.exe
(Mozilla Corporation -> Mozilla Corporation) C: Program Files Mozilla Fi refox firefox.exe <10>
(Nota ، شرکت. -> Nota Inc.) C: Program Files (x86) Gyazo GyStation.exe
(NVIDIA Corporation -> Node.js) C: Program Files (x86) NVIDIA Corporation NvNode NVIDIA Web Helper. exe
(NVIDIA Corporation -> NVIDIA Corporation) C: Program Files NVIDIA Corporation NvContainer nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C: Program Files NVIDIA Corporation NVIDIA GeFor NVIDIA Share.exe <3>
(شرکت NVIDIA -> شرکت NVIDIA) C: Program Files NVIDIA Corporation ShadowPlay nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C: Windows System32 DriverStore FileR nv_dispi.inf_amd64_1108979a670abe46 Display.NvContainer NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C: Windows System32 RtkAudUService64.exe <2>
(Kristo) Program Files (x86) Steam steamapps common wallpaper_engine wallpaper32.exe
(Slack Technologies، Inc. -> Slack Technologies Inc.) C: استفاده rs igugl AppData Local slack app-4.17.1 slack.exe <6>
(Spotify AB) C: Program Files WindowsApps SpotifyAB.SpotifyMusic_1.160.672.0_x86__zpdnekdrzrea0 Spotify.exe T <6>
<6>
SA -> TEFINCOM SA) C: Program Files NordVPN NordVPN.exe
(TEFINCOM SA -> TEFINCOM SA) C: Program Files NordVPN nordvpn-service.exe
(TODO:
(Valve -> Valve Corporation) C: Program Files (x86) Common Files Steam steamservice. exe
(Valve -> Valve Corporation) C: Program Files (x86) Steam bin cef cef.win7x64 steamwebhelper.exe <7>
(Valve -> Valve Corporation) C: Program Files (x86 ) Steam steam.exe
===================== رجیستری (در لیست سفید) =================== ===
(اگر ورودی در لیست اصلاحات موجود باشد ، مورد رجیستری به حالت پیش فرض بازیابی می شود یا حذف می شود. پرونده منتقل نخواهد شد.)
HKLM … Run: [RtkAudUService] => C: Windows System32 RtkAudUService64.exe [1084704 2020-05-28] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32 … Run: [TeamsMachineInstaller] => C: Program Files (x86) Teams Installer Teams.exe [114671912 2021-02-10] (Microsoft Corporation -> Microsoft Corporation)
HKU S-1- 5-21-2675421376-3833927843-2164136087-1001 … Run: [Discord] => C: Users igugl AppData Local Discord Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU S-1-5-21-2675421376-3833927843-2164136087-1001 … Run: [LGHUB] => C: Program Files LGHUB lghub.exe [123792288 2021-05-28] (Logitech Inc – > Logitech، Inc.)
HKU S-1-5-21-2675421376-3833927843-2164136087-1001 … اجرا: [NZXT.CAM] => C: Program Files NZXT CAM NZXT CAM. exe –startup
HKU S-1-5-21-2675421376-3833927843-2164136087-1001 … Run: [NordVPN] => C: Program Files NordVPN NordVPN.exe [277688 2021-04-21] (TEFINCOM SA -> TEFINCOM SA)
HKU S-1-5-21-2675421376-3833927843-2164136087 -1001 … Run: [Steam] => C: Program Files (x86) Steam steam.exe [4109032 2021-06-09] (Valve -> Valve Corporation)
HKU S-1-5-21 -2675421376-3833927843-2164136087-1001 … Run: [Gyazo] => C: Program Files (x86) Gyazo GyStation.exe [935048 2021-05-24] (Nota، Inc. -> Nota Inc.)
HKU S-1-5-21-2675421376-3833927843-2164136087-1001 … اجرا: [WallpaperEngine] => C: Program Files (x86) Steam steamapps common wallpaper_engine wallpaper32.exe [2769000 2021-06-02] (Skutta، Kristjan ->)
HKU S-1-5-21-2675421376-3833927843-2164136087-1001 … اجرا: [com.squirrel.slack.slack] => C: Users igugl AppData Local slack slack.exe [308368 2021-06-05] (Slack Technologies، Inc. -> Slack Technologies Inc.)
HKU S-1-5-18 … اجرا : [Synapse3] => C: Program Files (x86) Razer Synapse3 WPFUI Framework Razer Synapse 3 Host Razer Synapse 3.exe / StartMinimized
============= ======== وظایف برنامه ریزی شده (در لیست سفید) =============
(اگر ورودی در لیست رفع اشکال باشد ، از رجیستری حذف می شود. پرونده انجام نمی شود انتقال داده شود مگر اینکه جداگانه ذکر شود.)
وظیفه: {08D1A6C9-B368-4A82-97C4-8290A907F5BA} – System32 Tasks NvTmRep_CrashReport2_ {B2FE1952-0186-46C3-BAEC-A80AAA CACA = CACA = CACA = CACA = CACA = CACA = CACA = CACA = CACA = CACA = CACA = CACA = CACA = CACA = CACA = CACA = CACA = CACAA = CACAA = C NvBackend NvTmRep.exe [1260400 2021-04-07] (شرکت NVIDIA -> NVIDIA Corporation)
وظیفه: {101C4D92-3746-4177-A6E1-12E327D0DEEA} – System32 Tasks NvTmRep_CrashReport3_ {B2FE1952-0186-46C3-BAEC-A80AA35ACV NV CV BV} B = B = AECAA + AACA CV + V = B = .exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
وظیفه: {114A1DC8-B77F-4B1E-8390-62EBCBC5E485} – System32 Tasks Mozilla Firefox پیش فرض مرورگر عامل 308046B0AF4A C4A39C = برنامه = Mozilla: F = MozillaA = C: Firefox default-browser-agent.exe [690616 2021-06-04] (شرکت موزیلا -> بنیاد موزیلا)
وظیفه: {1640BA31-640F-4FC1-ABD1-7F6C674B0F12} – System32 Tasks GyazoUpdateTaskMachineD Daily => C: Program Files x86) Gyazo GyazoUpdate.exe [6899232 2021-05-24] (Nota، Inc. -> Nota Inc.)
وظیفه: {2652EB93-DE2F-4EE5-8A60-5523909C86E0} – System32 Tasks Microsoft Office Office Automatic Updates 2.0 => C: Program Files Common Files Microsoft Shared ClickToRun OfficeC2RClient.exe [23124336 2021-05-21] (شرکت مایکروسافت -> شرکت مایکروسافت)
وظیفه: {2A4C0984-012B-47E5-995E-7A31BF107BDA} – System32 Tasks Microsoft Office OfficeTelemetryAgentLogOn2016 => C: Microsoft Office root Office16 msoia.exe [5275568 2021-05-28] (شرکت مایکروسافت -> شرکت مایکروسافت)
وظیفه: {2B6FCE9E-C6CC-438C-BE09-900C28086C62} – System32 Tasks ASUS Framework Service => C: File Files (x86) ASUS ArmouryDevice asus_framework.exe [45540760 2021-01-13] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
وظیفه: {34039D84-1190-4C33-ACAA-C1B5D6D621C5} – SystemD TasksD NV System32 Tasks NV {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C: Program Files NVIDIA Corporation NvContainer nvcontainer.exe [874472 2020-09-29] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C: Progr am Files NVIDIA Corporation NvDriverUpdateCheck "-l 3 -f C: ProgramData NVIDIA NvContainerDriverUpdateCheck.log
وظیفه: {35BFEEF6-1A4A-4125-960B-31A77066910D}: Ah7070ic9V => Windows system32 NahimicSvc64.exe [1066416 2020-11-04] (A-Volute -> Nahimic)
وظیفه: {3AC5B585-BC6A-4CB7-BEFC-7D796B1377AC} – System32 Tasks ASUS P508PowerAgent_sdk Files => C: x86) ASUS ArmouryDevice dll ShareFromArmouryIII Mouse ROG STRIX CARRY P508PowerAgent.exe
وظیفه: {3DEA4717-5662-4ADB-BBFC-F9CC9D1C9D8A} – System32 Tasks ASUSM ASUS Taste ASUS C ASUS Task ASUS C ASUS " Files (x86) ASUS Update AsusUpdate.exe [168520 2021-03-13] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
وظیفه: {5357B73F-0681-4146-8837-562CB88CFD37} – System32 Tasksher NvNodeLaunc B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C: Program Files (x86) NVIDIA Corporation NvNode nvnodejslauncher.exe [645488 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation) [1945900B72] Task: 469A-86E9-ACF6BF3D5A0E} – Sy stem32 Tasks Kaspersky_Upgrade_Launcher_ {278ADC42-419D-4547-A6CA-5B74BE0AD901} => C: Program Files Common Files AV Kaspersky Lab upgrade_launcher.exe [743488 2021-06-10] (آزمایشگاه Kaspersky JSC -> AO Kaspersky Lab4>> 19O Kaspersky4) ] وظیفه: {5E3EEEFE-112F-4BFC-8BAE-BAFB97B55B1D} – System32 Tasks NvProfileUpdaterD Daily_ {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C: Program File NV70 Cile NV70 N70 ] (NVIDIA شرکت -> NVIDIA شرکت)
وظیفه: {61A7C583-B08E-4198-BAD7-0CAC1A9ACF6F} – آدرس system32 وظایف NvProfileUpdaterOnLogon_ {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C: برنامه فایلها NVIDIA Corporation Update Core NvProfileUpdater64.exe [905584 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
وظیفه: {667154B3-7B34-4F6E-97A2-AAEC750C817B} – System32 Tasks ASUS Files (x86) ASUS ArmouryDevice dll AcPowerNotification AcPowerNotification.exe
وظیفه: {68AA1F4A-8A1C-4C78-BC23-7B85240B1F32} – System32 Tasks ASUS ArmouryAIOFa nServer => C: Program Files (x86) ASUS ArmouryDevice dll AIOFanSDK ArmouryAIOFanServer.exe [1039360 2020-11-10] (TODO:
وظیفه: {69E07801-C62A-45DA-9900B – 998E – System32 Tasks NahimicTask32 => C: Windows system32 .. SysWOW64 NahimicSvc32.exe [822704 2020-11-04] (A-Volute -> Nahimic)
وظیفه: {74F987FE-03D1-4D9A-B214-F48EC860C553} System32 Tasks NVIDIA GeForce Experience SelfUpdate_ {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C: Program Files NVIDIA Corporation NVIDIA GeForce Experience NVIDIA GeForce Experience.exe [N45ID5] NVIDIA [Corporation N452]
وظیفه: {79D7933D-8DAF-4FEE-BFC8-16664C24F908} – System32 Tasks Microsoft Office Office Feature Updates Logon => C: Program Files Microsoft Office root Office16 sdxhelper.exe [147288 2021-05-28] (شرکت مایکروسافت -> شرکت مایکروسافت)
وظیفه: {92BF2E54-3A60-4E1B-9DC8-5C7F926F82CD} – System32 Tasks GyazoUpdateTaskMachine => C: Program Files (x86) Gyazo GyazoUpdate. [45] نوتا ، وارز -> Nota Inc.)
وظیفه: {9FD44162-6F03-4CB2-889D-81074B73B824} – System32 Tasks NahimicSvc32Run => C: Windows SysWOW64 NahimicSvc32.exe [822704 2020-11-04] (A-Volimute – 19459055) )
وظیفه: {A8DFB9B7-8882-4610-992E-D596C736B876} – System32 Tasks Microsoft VisualStudio Updates BackgroundDownload => C: Program Files (x86) Microsoft Visual Studio Installer منابع app ServiceHub Services Microsoft.VisualStudio.Setup.Service BackgroundDownload.exe [64936 2021-05-18] (شرکت مایکروسافت -> مایکروسافت)
وظیفه: {AF3EEBE4-8F67-4EE3-A8EA-6285E106038F} – System32 Tasks ASUSC7Acusted = ASUSU77 = 7 > C: Program Files (x86) ASUS Update AsusUpdate.exe [168520 2021-03-13] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
وظیفه: {C0334D8E-FA8C-4F18-BC29-E680E01577A1} – System32 Tasks ASUS NoiseCancelingEngine.exe => C: Program Files (x86) ASUS ArmouryDevice dll MBLedSDK NoiseCancelingEngine.exe [1238328 2021-01-21] (ASUSTeK Computer Inc. -> ASUS)
وظیفه: {C3693761- 0C85-4062-8CA6-78298A 246C32} – System32 Tasks Microsoft Office Office ClickToRun Service Monitor => C: Program Files Common Files Microsoft Shared ClickToRun OfficeC2RClient.exe [23124336 2021-05-21] (Microsoft Corporation -> Microsoft Corporation)
وظیفه: {C8F2CE62-9D9A-4B42-A6DE-31A7EA55C73A} – System32 Tasks Microsoft Office OfficeTelemetryAgentFallBack2016 => C: Program Files Microsoft Office root Office16 msoia.exe [5275568 2021-05-28] (شرکت مایکروسافت -> شرکت مایکروسافت)
وظیفه: {D8D298D8-AAA0-4B70-BCCD-049DD5FE4014} – System32 Tasks Microsoft Office Office Updates Feature => C: Program Files Microsoft Office root Office16 sdxhelper.exe [147288 2021-05-28] ( شرکت مایکروسافت -> شرکت مایکروسافت)
کار: {DA76506D-4DDE-4B1D-9A02-A0D768EE8AFF} – System32 Tasks NahimicTask64 => C: Windows system32 . NahimicSvc64.exe [1066416 2020-11-04] (A-Volume) -> ناهیمیچ)
وظیفه: {E26F4350-1006-417E-9B57-7D6541DB6DD5} – System32 Tasks NvTmRep_CrashReport4_ {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} Files NVIDIA Corporation NvBackend NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
وظیفه: {E434C8A1-D9CD-40CC-A203-AFAC253F5B5D} – System32 Task Files = AMDAuto AMD AutoUpdate AMDAutoUpdate.exe [677624 2019-11-21] (Advanced Micro Devices INC. ->)
وظیفه: {E6A78EF1-8E5F-45CD-A317-28F2D8118226} – System32 Tasks ASUS ArmourySocketServer => فایل (های x86) ASUS ArmouryDevice ال ال ArmourySocketServer ArmourySocketServer.exe [2025488 2021-01-22] (ایسوس شرکت -> ASUS)
وظیفه: {EB5B7525-249B-4CEC-8267-832E51B956CC} – آدرس system32 وظایف NvBatteryBoostCheckOnLogon_ {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C: Program Files NVIDIA Corporation NvContainer nvcontainer.exe [874472 2020-09-29] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C: Program Files N Corporation NvBackend NvBatteryBoostCheck "-l 3 -f C: ProgramData NVIDIA NvContainerBatteryBoostCheck.log
وظیفه: {FE08EC73-E576-49D4-A07A-C01367F8AERor_S32 N # سیستم NVIDIA } t1_ {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C: Program Files NVIDIA Corporation NvBackend NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation) [19659002موجوداست] لیست ثابت ، فایل task (.job) منتقل می شود. فایلی که توسط این کار اجرا می شود ، جابجا نخواهد شد.)
وظیفه: C: Windows Tasks CreateExplorerShellUnelevatedTask.job => C: Windows explorer.exe
========= ============ اینترنت (در لیست سفید) =====================
(اگر موردی در لیست اصلاحات موجود باشد ، اگر این یک مورد رجیستری است که به طور پیش فرض حذف یا بازیابی می شود.]
Tcpip Parameters: [DhcpNameServer] 192.168.0.1
Tcpip .. Interfaces {eb434384-21b0-4072-b44e-96b27b792814} [DhcpNameServer] 192.168.0.1
Tcpip .. Interfaces {ec12935b-ae8b-45b4-859f-b3d2124e8c01}: [DhcpNameServer] 192.168.0.1
Edge:
=====
Edge DefaultProfile: Default
Edge Profile: C: Users igugl AppData Local Microsoft Edge User Data Default [2021-06-08]
Edge Extension: (AdBlock – بهترین مسدود کننده تبلیغات) – C: Users igugl AppData Local Microsoft Edge User Data Default Extensions ndcileolkflehcjpmjnfbnaibdcgglog [2021-05-17]
Edge HKU S-1-5-21-2675421376-3833927843-2164136087-1001 SOFTWARE Microsoft Edge Edge. .. Edge Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]
FireFox:
=========
FF DefaultProfile: qv7hwwsh.default
FF ProfilePath: C: Users igugl AppData رومینگ Mozilla Firefox Profiles qv7hwwsh.default [2021-05-18]
FF ProfilePath: C: Users igugl AppData Roaming Mozilla Firefox Profiles pzrg730n.default-release [2021-06-10]
FF Extension: (AdBlocker Ultimate) – C: Users igugl AppData Roaming Mozilla Firefox Profiles pzrg730n.default-release Extensions [email protected] [2021-05-18]
FF Extension: (BetterTTV) – C: Users igugl AppData Roaming Mozilla Firefox Profiles pzrg730n.default-release Extensions [email protected] [2021-05-27]
FF Extension: (Ghostery – Privacy Ad Blocker) – C: Users igugl AppData Roaming Mozilla Firefox Profiles pzrg730n.default-release Extensions [email protected] [2021-05-19]
FF Extension: (Dashlane) – C: Users igugl AppData Roaming Mozilla Firefox Profiles pzrg730n.default -انتشار Extensions [email protected] [2021-05-26] [UpdateUrl:hxxps://ws1.dashlane.com/5/binaries/query?logins=&platform=firefox&target=ff_web_extension&format=json&version=]
FF HKLM … Firefox Extensions: [[email protected]] – C: Program Files (x86) Kaspersky Lab Kaspersky Total Security 21.3 FFExt light_plugin_firefox addon.xpi => یافت نشد
FF HKLM-x32 … Firefox Extensions: [[email protected]] – C: Program Files (x86) Kaspersky Lab Kaspersky Total Security 21.3 FFExt light_plugin_firefox addon.xpi => یافت نشد
افزونه FF:microsoft. com / SharePoint، version = 14.0 -> C: Program Files Microsoft Office root Office16 NPSPWRAP.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
افزونه FF: @ videolan.org / vlc ، نسخه = 3.0.12 -> C: Program Files VideoLAN VLC npvlc.dll [2021-05-11] (VideoLAN -> VideoLAN)
افزونه FF: @ videolan.org / vlc ، نسخه = 3.0.14 -> C: Program Files VideoLAN VLC npvlc.dll [2021-05-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @ microsoft.com / Lync، version = 15.0 -> C: Program Files Microsoft Office root VFS ProgramFilesX86 Mozilla Firefox plugins npmeetingjoinpluginoc.dll [2021-05-28] (شرکت مایکروسافت -> شرکت مایکروسافت oration)
FF Plugin-x32: @ microsoft.com / SharePoint، version = 14.0 -> C: Program Files Microsoft Office root VFS ProgramFilesX86 Microsoft Office Office16 NPSPWRAP.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
FF ExtraCheck: C: Program Files mozilla firefox defaults pref kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2021-06-10] <==== ATTENTION [19] : C: Program Files mozilla firefox kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2021-06-10] <==== ATTENTION
Chrome:
======== CH
: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] – hxxps: //chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32 … Chrome Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] // chx google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdmcepts19659002 برگزیده =============================================== =========
(اگر مطلبی در لیست اصلاحات موجود باشد ، آن را وارد کنید از رجیستری حذف خواهد شد. پرونده منتقل نخواهد شد مگر اینکه جداگانه ذکر شود.)
R2 ArmouryCrateService؛ C: Program Files ASUS ARMORY CRATE Lite Service ArmouryCrate.Service.exe [348280 2021-03-27] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 asComSvc؛ C: Program Files (x86) ASUS AXSP 4.00.45 atkexComSvc.exe [442416 2020-11-30] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S2 asus؛ C: Program Files (x86) ASUS Update AsusUpdate.exe [168520 2021-03-13] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsusCertService؛ C: Program Files (x86) ASUS AsusCertService AsusCertService.exe [313008 2020-11-19] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.)
S3 asusm؛ C: Program Files (x86) ASUS Update AsusUpdate.exe [168520 2021-03-13] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S2 AsusUpdateCheck؛ C: Windows System32 AsusUpdateCheck.exe [842128 2021-06-10] (ASUSTeK Computer Inc. ->)
R2 AVP21.3؛ C: Program Files (x86) Kaspersky Lab Kaspersky Total Security 21.3 avp.exe [384280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 ClickToRunSvc؛ C: Program Files Common Files Microsoft Shared ClickToRun OfficeClickToRun.exe [11279752 2021-05-21] (Microsoft Corporation -> Microsoft Corporation)
R2 DtsApo4Service؛ C: Windows System32 DTS PC APO4x DtsApo4Service.exe [185432 2020-06-02] (ناشر سازگاری سخت افزار مایکروسافت ویندوز -> DTS Inc.)
S3 EasyAntiCheat؛ C: Program Files (x86) EasyAntiCheat EasyAntiCheat.exe [803952 2021-04-11] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 klvssbridge64_21.3؛ C: Program Files (x86) Kaspersky Lab Kaspersky Total Security 21.3 x64 vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 KSDE5.3؛ C: Program Files (x86) Kaspersky Lab Kaspersky VPN 5.3 ksde.exe [646520 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 LGHUBUpdaterService؛ C: Program Files LGHUB lghub_updater.exe [10731424 2021-05-28] (Logitech Inc -> Logitech، Inc.)
R2 LightingService؛ C: Program Files (x86) LightingService LightingService.exe [3210232 2021-03-03] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R2 MariaDB؛ C: Program Files MariaDB 10.5 bin mysqld.exe [32232 2021-05-05] (MariaDB Corporation Ab ->)
R2 NahimicService؛ C: Windows system32 NahimicService.exe [2719664 2020-11-04] (A-Volute -> Nahimic)
R2 nordvpn-service؛ C: Program Files NordVPN nordvpn-service.exe [277688 2021-04-21] (TEFINCOM S.A. -> TEFINCOM S.A.)
R2 ROG Live Service؛ C: Program Files (x86) ASUS ROG Live Service ROGLiveService.exe [5557848 2021-03-24] (ASUSTEK COMPUTER INCORPORATION -> ASUSTek COMPUTER INC.)
S3 Sense؛ C: Program Files Windows Defender Advanced Threat Protection MsSense.exe [5393304 2021-06-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 VSStandardCollectorService150؛ C: Program Files (x86) Microsoft Visual Studio Shared Common DiagnosticsHub.Collection.Service StandardCollector.Service.exe [147392 2019-04-30] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc؛ C: ProgramData Microsoft Windows Defender Platform 4.18.2105.4-0 NisSrv.exe [2644760 2021-06-06] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend؛ C: ProgramData Microsoft Windows Defender Platform 4.18.2105.4-0 MsMpEng.exe [136656 2021-06-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem؛ C: Windows System32 DriverStore FileRepository nv_dispi.inf_amd64_1108979a670abe46 Display.NvContainer NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f٪ ProgramData٪ NVIDIA-NV_DLSL.Contall_Sdستم Windows System32 DriverStore FileRepository nv_dispi.inf_amd64_1108979a670abe46 Display.NvContainer plugins LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem LocalSystem [19659002============================================================================WindowsSystem32DriverStoreFileRepositorynv_dispiinf_amd64_1108979a670abe46DisplayNvContainerpluginsLocalSystem-r-p30000-cfgNVDisplayContainerLocalSystem[Local65}=====درایورها(بالیستسفید)====================
(اگر مطلبی در لیست اصلاحات موجود باشد ، از رجیستری حذف می شود. پرونده منتقل نخواهد شد مگر اینکه جداگانه ذکر شود.)
S3 AppleLowerFilter؛ C: Windows System32 Drivers AppleLowerFilter.sys [35976 2020-10-09] (ساخت WDKTestCert ، 132303256403278908 -> Apple Inc.)
R1 Asusgio2؛ C: Windows system32 Drivers AsIO2.sys [33832 2019-04-09] (ASUSTeK Computer Inc. ->)
R1 Asusgio3؛ C: Windows system32 Drivers AsIO3.sys [43920 2020-12-16] (ASUSTeK Computer Inc. ->)
R3 AVoluteSS3Vad؛ C: Windows System32 Drivers AVoluteSS3Vad.sys [85080 2019-08-15] (A-Volute -> Windows ® Win 7 DDK provider)
R0 cm_km؛ C: Windows System32 DRIVERS cm_km.sys [250032 2021-02-19] (آزمایشگاه Kaspersky JSC -> آزمایشگاه Kaspersky AO)
S3 cpuz150؛ C: Windows temp cpuz150 cpuz150_x64.sys [44832 2021-05-18] (CPUID S.A.R.L.U. -> CPUID)
R1 EneTechIo؛ C: Windows system32 drivers ene.sys [20992 2020-05-12] (ناشر سازگاری سخت افزار مایکروسافت ویندوز ->)
R1 GLCKIO2؛ C: Windows system32 Drivers GLCKIO2.sys [29368 2019-04-24] (ASUSTeK Computer Inc. ->)
R4 IOMap؛ C: Windows system32 Drivers IOMap64.sys [35344 2021-01-18] (ASUSTEK COMPUTER INC. -> ASUSTeK Computer Inc.)
R1 klbackupdisk؛ C: Windows system32 DRIVERS klbackupdisk.sys [110336 2021-02-19] (آزمایشگاه Kaspersky JSC -> آزمایشگاه Kaspersky AO)
R1 klbackupflt؛ C: Windows System32 DRIVERS klbackupflt.sys [211704 2021-02-19] (آزمایشگاه کسپرسکی -> آزمایشگاه کسپرسکی AO)
R1 kldisk؛ C: Windows system32 DRIVERS kldisk.sys [126216 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S0 klelam؛ C: Windows System32 DRIVERS klelam.sys [41656 2021-02-19] (ناشر ضد بدافزار راه اندازی زود هنگام مایکروسافت ویندوز -> آزمایشگاه AO Kaspersky)
R1 klflt؛ C: Windows system32 DRIVERS klflt.sys [514840 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klgse؛ C: Windows System32 DRIVERS klgse.sys [657696 2021-05-08] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klhk؛ C: Windows system32 DRIVERS klhk.sys [1439456 2021-05-08] (ناشر سازگاری سخت افزار Microsoft Windows -> AO Kaspersky Lab)
R3 klids؛ C: ProgramData آزمایشگاه Kaspersky AVP21.3 Bases klids.sys [253736 2021-06-10] (ناشر سازگاری سخت افزار Microsoft Windows -> AO Kaspersky Lab)
R1 KLIF؛ C: Windows System32 DRIVERS klif.sys [1042712 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klim6؛ C: Windows system32 DRIVERS klim6.sys [98040 2021-02-19] (آزمایشگاه کسپرسکی -> آزمایشگاه کسپرسکی AO)
R3 klkbdflt؛ C: Windows system32 DRIVERS klkbdflt.sys [112392 2021-02-19] (آزمایشگاه Kaspersky JSC -> AO Kaspersky Lab)
R3 klmouflt؛ C: Windows system32 DRIVERS klmouflt.sys [112904 2021-02-19] (آزمایشگاه Kaspersky JSC -> AO Kaspersky Lab)
R1 klpd؛ C: Windows System32 DRIVERS klpd.sys [85256 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpnpflt؛ C: Windows system32 DRIVERS klpnpflt.sys [96008 2021-02-19] (آزمایشگاه Kaspersky JSC -> AO Kaspersky Lab)
R3 kltap؛ C: Windows System32 driver kltap.sys [55592 2021-02-19] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon؛ C: Windows System32 Drivers klupd_klif_arkmon.sys [263888 2021-06-10] (Kaspersky Lab JSC -> AO Kaspersky Lab)
U3 klupd_klif_klark؛ C: Windows System32 Drivers klupd_klif_klark.sys [309104 2021-06-10] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R0 klupd_klif_klbg؛ C: Windows System32 Drivers klupd_klif_klbg.sys [115744 2021-06-10] (آزمایشگاه Kaspersky JSC -> AO آزمایشگاه Kaspersky)
R3 klupd_klif_mark؛ C: Windows System32 Drivers klupd_klif_mark.sys [224880 2021-06-10] (آزمایشگاه Kaspersky JSC -> AO Kaspersky Lab)
R1 klwfp؛ C: Windows system32 DRIVERS klwfp.sys [155912 2021-02-19] (آزمایشگاه Kaspersky JSC -> AO Kaspersky Lab)
R1 klwtp؛ C: Windows system32 DRIVERS klwtp.sys [327936 2021-02-19] (آزمایشگاه Kaspersky JSC -> آزمایشگاه Kaspersky AO)
R1 دست می زند. C: Windows system32 DRIVERS kneps.sys [300808 2021-02-19] (آزمایشگاه کسپرسکی -> آزمایشگاه کسپرسکی AO)
R2 LGHUBTemperatureService؛ C: Program Files LGHUB logi_core_temp.sys [22864 2021-05-28] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum؛ C: Windows system32 Drivers logi_joy_bus_enum.sys [37200 2021-03-22] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid؛ C: Windows system32 Drivers logi_joy_vir_hid.sys [25928 2021-03-22] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore؛ C: Windows system32 Drivers logi_joy_xlcore.sys [66896 2021-03-22] (Logitech Inc -> Logitech)
R1 MSIO؛ C: Windows system32 drivers MsIo64.sys [17424 2020-01-19] (ناشر سازگاری سخت افزار مایکروسافت ویندوز -> MICSYS Technology Co.، LTd)
R2 NDivert؛ C:WindowsSystem32driversNDivert.sys [105184 2021-02-22] (TEFINCOM S.A. -> )
R3 nlwt; C:Windowssystem32DRIVERSnlwt.sys [39360 2021-03-28] (TEFINCOM S.A. -> WireGuard LLC)
R1 nordlwf; C:Windowssystem32DRIVERSnordlwf.sys [38608 2020-12-14] (TEFINCOM S.A. -> TEFINCOM S.A.)
S3 RzCommon; C:WindowsSystem32driversRzCommon.sys [53656 2020-11-16] (Razer USA Ltd. -> Razer Inc)
S3 RzDev_0228; C:WindowsSystem32driversRzDev_0228.sys [54160 2020-08-24] (Razer USA Ltd. -> Razer Inc)
R3 tapnordvpn; C:WindowsSystem32driverstapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project)
S3 WdBoot; C:Windowssystem32driverswdWdBoot.sys [49560 2021-06-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:Windowssystem32driverswdWdFilter.sys [425208 2021-06-06] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:WindowsSystem32driverswdWdNisDrv.sys [76008 2021-06-06] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-06-10 01:44 – 2021-06-10 02:16 – 000030914 _____ C:UsersiguglDesktopFRST.txt
2021-06-10 01:43 – 2021-06-10 02:16 – 000000000 ____D C:FRST
2021-06-10 01:42 – 2021-06-10 01:42 – 002300416 _____ (Farbar) C:UsersiguglDesktopFRST64.exe
2021-06-10 01:39 – 2021-06-10 01:39 – 000309104 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklupd_klif_klark.sys
2021-06-10 01:33 – 2021-06-10 01:33 – 000263888 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklupd_klif_arkmon .sys
2021-06-10 01:33 – 2021-06-10 01:33 – 000224880 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklupd_klif_mark.sys
2021-06-10 01:33 – 2021-06-10 01:33 – 000115744 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklupd_klif_klbg.sys
2021-06-10 01:33 – 2021-06-10 01:33 – 000003392 _____ C:Windowssystem32TasksKaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901}
2021-06-10 01:33 – 2021-06-10 01:33 – 000002170 _____ C:UsersPublicDesktopKaspersky Total Security.lnk
2021-06-10 01:33 – 2021-06-10 01:33 – 000002170 _____ C:ProgramDataDesktopKaspersky Total Security.lnk
2021-06-10 01:33 – 2021-06-10 01:33 – 000001155 _____ C:UsersPublicDesktopKaspersky VPN.lnk
2021-06-10 01:33 – 2021-06-10 01:33 – 000001155 _____ C:ProgramDataDesktopKaspersky VPN.lnk
2021-06-10 01:33 – 2021-06-10 01:33 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsKaspersky VPN
2 021-06-10 01:33 – 2021-06-10 01:33 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsKaspersky Total Security
2021-06-10 01:33 – 2021-06-10 01:33 – 000000000 ____D C:ProgramDataKaspersky Lab
2021-06-10 01:33 – 2021-06-10 01:33 – 000000000 ____D C:Program Files (x86)Kaspersky Lab
2021-06-10 01:33 – 2021-02-19 21:09 – 000110176 _____ (Kaspersky Lab ZAO) C:Windowssystem32klfphc.dll
2021-06-10 01:33 – 2021-02-19 21:08 – 001042712 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklif.sys
2021-06-10 01:33 – 2021-02-19 21:08 – 000514840 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklflt.sys
2021-06-10 01:27 – 2021-06-10 01:27 – 002755928 _____ (Kaspersky) C:UsersiguglDownloadsstartup.exe
2021-06-10 01:21 – 2021-06-10 01:21 – 000000000 ____D C:UsersiguglAppDataRoamingGyazo
2021-06-09 19:05 – 2021-06-09 19:05 – 002755584 _____ (Microsoft Corporation) C:WindowsSysWOW64mshtm l.tlb
2021-06-09 19:05 – 2021-06-09 19:05 – 002755584 _____ (Microsoft Corporation) C:Windowssystem32mshtml.tlb
2021-06-09 19:05 – 2021-06-09 19:05 – 002260480 _____ (The ICU Project) C:Windowssystem32icu.dll
2021-06-09 19:05 – 2021-06-09 19:05 – 001864192 _____ (The ICU Project) C:WindowsSysWOW64icu.dll
2021-06-09 19:05 – 2021-06-09 19:05 – 001823792 _____ (Microsoft Corporation) C:Windowssystem32winload.efi
2021-06-09 19:05 – 2021-06-09 19:05 – 001393496 _____ (Microsoft Corporation) C:Windowssystem32winresume.efi
2021-06-09 19:05 – 2021-06-09 19:05 – 001314120 _____ (Microsoft Corporation) C:Windowssystem32SecConfig.efi
2021-06-09 19:05 – 2021-06-09 19:05 – 000657464 _____ C:Windowssystem32WindowManagementAPI.dll
2021-06-09 19:05 – 2021-06-09 19:05 – 000568832 _____ (Microsoft Corporation) C:Windowssystem32inetcpl.cpl
2021-06-09 19:05 – 2021-06-09 19:05 – 000563712 _____ (Microso ft Corporation) C:Windowssystem32winspool.drv
2021-06-09 19:05 – 2021-06-09 19:05 – 000468440 _____ C:WindowsSysWOW64WindowManagementAPI.dll
2021-06-09 19:05 – 2021-06-09 19:05 – 000451072 _____ (Microsoft Corporation) C:WindowsSysWOW64inetcpl.cpl
2021-06-09 19:05 – 2021-06-09 19:05 – 000423936 _____ (Microsoft Corporation) C:WindowsSysWOW64winspool.drv
2021-06-09 19:05 – 2021-06-09 19:05 – 000287232 _____ C:Windowssystem32CoreMas.dll
2021-06-09 19:05 – 2021-06-09 19:05 – 000272384 _____ C:Windowssystem32TpmTool.exe
2021-06-09 19:05 – 2021-06-09 19:05 – 000223744 _____ C:WindowsSysWOW64TpmTool.exe
2021-06-09 19:05 – 2021-06-09 19:05 – 000097280 _____ C:Windowssystem32Driverscimfs.sys
2021-06-09 19:05 – 2021-06-09 19:05 – 000011353 _____ C:Windowssystem32DrtmAuthTxt.wim
2021-06-07 20:47 – 2021-06-07 20:47 – 008050676 _____ C:UsersiguglDownloadsjfreechart-1.0.19.zip
2 021-06-07 20:47 – 2021-06-07 20:47 – 000000000 ____D C:UsersiguglDownloadsjfreechart-1.0.19
2021-06-07 14:30 – 2021-06-07 14:30 – 006973240 _____ C:UsersiguglDownloadsGroup 42 Requirements Document.pdf
2021-06-07 13:40 – 2021-06-07 13:40 – 000000000 ____D C:UsersiguglDocumentsNew folder
2021-06-07 12:58 – 2021-06-07 14:42 – 000000000 ____D C:UsersiguglAppDataRoamingobs-studio
2021-06-07 12:58 – 2021-06-07 12:58 – 076720824 _____ (obsproject.com) C:UsersiguglDownloadsOBS-Studio-27.0-Full-Installer-x64.exe
2021-06-07 12:58 – 2021-06-07 12:58 – 000000000 ____D C:ProgramDataobs-studio-hook
2021-06-07 12:58 – 2021-06-07 12:58 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsOBS Studio
2021-06-07 12:58 – 2021-06-07 12:58 – 000000000 ____D C:Program Filesobs-studio
2021-06-06 21:10 – 2021-06-06 21:10 – 186429125 _____ C:UsersiguglDownloadsFinalSubmissionVideo_Scaffold.mov
2021-06-06 12:25 – 2021-06-07 11:49 – 000000000 ____D C:UsersiguglDocumentsAudio Clips
2021-06-06 12:25 – 2021-06-06 12:25 – 000000000 ____D C:UsersiguglDocumentsAudacity
2021-06-06 11:32 – 2021-06-06 11:32 – 000000000 ____D C:Usersigugl.cache
2021-06-06 11:30 – 2021-06-06 17:50 – 000000000 ____D C:UsersiguglAppDataRoamingyoutube-dlg
2021-06-06 11:30 – 2021-06-06 11:30 – 000000000 ____D C:UsersiguglDownloadsyoutube-dl-gui-0.4-win-setup
2021-06-06 11:30 – 2021-06-06 11:30 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsYoutube-DLG
2021-06-06 11:30 – 2021-06-06 11:30 – 000000000 ____D C:Program Files (x86)Youtube-DLG
2021-06-06 11:29 – 2021-06-06 11:29 – 028321056 _____ C:UsersiguglDownloadsyoutube-dl-gui-0.4-win-setup.zip
2021-06-06 11:26 – 2021-06-06 11:26 – 008173621 _____ C:UsersiguglDocumentsyoutube-dl.exe
2021-06-06 11:03 – 2021-06-07 22:22 – 000000000 ____D C:UsersiguglAppDataRoamingaudacity
2021-06-06 11:03 – 2021-06-06 11:03 – 000001092 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsAudacity.lnk
2021-06-06 11:03 – 2021-06-06 11:03 – 000000000 ____D C:UsersiguglAppDataLocalAudacity
2021-06-06 11:03 – 2021-06-06 11:03 – 000000000 ____D C:Program Files (x86)Audacity
2021-06-06 11:02 – 2021-06-06 11:02 – 029534144 _____ (Audacity Team ) C:UsersiguglDownloadsaudacity-win-3.0.2.exe
2021-06-05 15:40 – 2021-06-05 15:42 – 000003898 _____ C:UsersiguglDocumentscab302project.sql
2021-06-05 12:17 – 2021-06-05 12:17 – 000048393 _____ C:UsersiguglDownloadsstudent.pdf
2021-06-05 11:59 – 2021-06-05 11:59 – 000217471 _____ C:UsersiguglDownloadsCV.pdf
2021-06-05 09:54 – 2021-06-05 09:54 – 000000000 ____D C:UsersiguglAppDataLocalNota_Inc
2021-06-04 19:51 – 2021-06-04 19:51 – 000000000 ____D C:Windowssystem32Tas ksMozilla
2021-06-04 19:08 – 2021-06-04 19:08 – 000338777 _____ C:UsersiguglDownloadsCAB203.pdf
2021-06-04 15:12 – 2021-06-04 15:12 – 000347618 _____ C:UsersiguglDownloadsCAB203_Project(1).pdf
2021-06-04 15:04 – 2021-06-04 15:04 – 000362972 _____ C:UsersiguglDownloadsCAB203_Project.pdf
2021-06-04 14:49 – 2021-06-01 02:15 – 001855184 _____ C:Windowssystem32vulkaninfo-1-999-0-0-0.exe
2021-06-04 14:49 – 2021-06-01 02:15 – 001855184 _____ C:Windowssystem32vulkaninfo.exe
2021-06-04 14:49 – 2021-06-01 02:15 – 001453360 _____ (Khronos Group) C:Windowssystem32OpenCL.dll
2021-06-04 14:49 – 2021-06-01 02:15 – 001435864 _____ C:WindowsSysWOW64vulkaninfo-1-999-0-0-0.exe
2021-06-04 14:49 – 2021-06-01 02:15 – 001435864 _____ C:WindowsSysWOW64vulkaninfo.exe
2021-06-04 14:49 – 2021-06-01 02:15 – 001192752 _____ (Khronos Group) C:WindowsSysWOW64OpenCL.dll
2021-06-04 14:49 – 2021-06-0 1 02:15 – 001094864 _____ C:Windowssystem32vulkan-1-999-0-0-0.dll
2021-06-04 14:49 – 2021-06-01 02:15 – 001094864 _____ C:Windowssystem32vulkan-1.dll
2021-06-04 14:49 – 2021-06-01 02:15 – 000948936 _____ C:WindowsSysWOW64vulkan-1-999-0-0-0.dll
2021-06-04 14:49 – 2021-06-01 02:15 – 000948936 _____ C:WindowsSysWOW64vulkan-1.dll
2021-06-04 14:49 – 2021-06-01 02:11 – 001514784 _____ (NVIDIA Corporation) C:Windowssystem32NvIFR64.dll
2021-06-04 14:49 – 2021-06-01 02:11 – 001166096 _____ (NVIDIA Corporation) C:WindowsSysWOW64NvIFR.dll
2021-06-04 14:49 – 2021-06-01 02:11 – 000715536 _____ C:Windowssystem32nvofapi64.dll
2021-06-04 14:49 – 2021-06-01 02:11 – 000689952 _____ (NVIDIA Corporation) C:Windowssystem32nvidia-smi.exe
2021-06-04 14:49 – 2021-06-01 02:11 – 000675104 _____ (NVIDIA Corporation) C:Windowssystem32NvIFROpenGL.dll
2021-06-04 14:49 – 2021-06-01 02:11 – 000626960 _____ (NVI DIA Corporation) C:Windowssystem32nvml.dll
2021-06-04 14:49 – 2021-06-01 02:11 – 000575760 _____ C:WindowsSysWOW64nvofapi.dll
2021-06-04 14:49 – 2021-06-01 02:11 – 000563984 _____ (NVIDIA Corporation) C:WindowsSysWOW64NvIFROpenGL.dll
2021-06-04 14:49 – 2021-06-01 02:10 – 008317200 _____ (NVIDIA Corporation) C:Windowssystem32nvcuvid.dll
2021-06-04 14:49 – 2021-06-01 02:10 – 007434032 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvcuvid.dll
2021-06-04 14:49 – 2021-06-01 02:10 – 002823472 _____ (NVIDIA Corporation) C:Windowssystem32nvcuda.dll
2021-06-04 14:49 – 2021-06-01 02:10 – 002106160 _____ (NVIDIA Corporation) C:Windowssystem32NvFBC64.dll
2021-06-04 14:49 – 2021-06-01 02:10 – 001590576 _____ (NVIDIA Corporation) C:WindowsSysWOW64NvFBC.dll
2021-06-04 14:49 – 2021-06-01 02:10 – 000811808 _____ (NVIDIA Corporation) C:Windowssystem32nvEncodeAPI64.dll
2021-06-04 14:49 – 2021-06-01 0 2:10 – 000445744 _____ (NVIDIA Corporation) C:Windowssystem32nvdebugdump.exe
2021-06-04 14:49 – 2021-06-01 02:09 – 004795152 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvcuda.dll
2021-06-04 14:49 – 2021-06-01 02:09 – 000848688 _____ (NVIDIA Corporation) C:Windowssystem32MCU.exe
2021-06-04 14:49 – 2021-05-28 09:01 – 000087164 _____ C:Windowssystem32nvinfo.pb
2021-06-04 08:11 – 2021-06-10 01:35 – 000000000 ____D C:Program FilesMozilla Firefox
2021-06-03 22:22 – 2021-06-03 22:22 – 002190455 _____ C:UsersiguglDownloadsCAB203_Semester_1__2021___Project.pdf
2021-06-03 10:09 – 2021-06-03 18:41 – 000005340 _____ C:UsersiguglDocumentsbfu2e1fjewql.py
2021-06-02 20:17 – 2021-06-02 20:17 – 000001919 _____ C:UsersiguglDownloadsprojectexample(3).py
2021-06-02 18:25 – 2021-06-02 18:25 – 000001919 _____ C:UsersiguglDownloadsprojectexample(2).py
2021-06-02 15:41 – 2021-06-02 16:38 – 000009735 _____ C:UsersiguglDownloadsgraphs(1).py
2021-06-02 15:40 – 2021-06-02 18:34 – 000004423 _____ C:UsersiguglDownloadsprojectexample(1).py
2021-06-01 22:42 – 2021-06-01 23:12 – 000001448 _____ C:UsersiguglDocumentshehehehehehe.py
2021-06-01 11:37 – 2021-06-01 11:38 – 000000000 ____D C:UsersiguglAppDataRoamingHeidiSQL
2021-06-01 11:37 – 2021-06-01 11:37 – 000000000 ____D C:UsersiguglDocumentsHeidiSQL
2021-06-01 11:10 – 2021-06-01 11:10 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsMariaDB 10.5 (x64)
2021-06-01 11:10 – 2021-06-01 11:10 – 000000000 ____D C:Program FilesMariaDB 10.5
2021-06-01 11:09 – 2021-06-01 11:09 – 051822592 _____ C:UsersiguglDownloadsmariadb-10.5.10-winx64.msi
2021-06-01 09:31 – 2021-06-01 09:31 – 016089872 _____ (Zoom Video Communications, Inc.) C:UsersiguglDownloadsZoomInstaller.exe
2021-06-01 09:31 – 2021-06-01 09:31 – 000000000 __ __D C:UsersiguglAppDataRoamingMicrosoftWindowsStart MenuProgramsZoom
2021-06-01 00:05 – 2021-06-01 00:05 – 000000000 ____D C:UsersiguglDocumentshahahahaha
2021-05-31 23:42 – 2021-05-31 23:42 – 000000000 ____D C:UsersiguglDocumentsOh god
2021-05-31 23:16 – 2021-05-31 23:16 – 000000000 ____D C:UsersiguglDocumentsActual Final
2021-05-31 23:01 – 2021-05-31 23:01 – 000000000 ____D C:UsersiguglDocumentsFinal
2021-05-31 22:49 – 2021-05-31 22:49 – 000000000 ____D C:UsersiguglDocumentsHelp
2021-05-31 22:11 – 2021-05-31 22:11 – 001124873 _____ C:UsersiguglDocumentsN9699686.zip
2021-05-31 22:11 – 2021-05-31 22:11 – 000000000 ____D C:UsersiguglDocumentsstudent
2021-05-31 22:08 – 2021-05-31 22:08 – 000911332 _____ C:UsersiguglDownloadsHelp_Me.pdf
2021-05-30 21:12 – 2021-05-30 21:22 – 000000000 ____D C:UsersiguglDocumentsTengen Toppa Gurren Lagann
2021-05-30 12:29 – 2021-05-30 18:26 – 000005040 _____ C:UsersiguglDocumentshelp.py
2021-05-29 19:53 – 2021-05-29 19:53 – 000000000 ____D C:UsersiguglAppDataRoamingFrontier Developments
2021-05-29 19:53 – 2021-05-29 19:53 – 000000000 ____D C:UsersiguglAppDataLocalFrontier Developments
2021-05-29 19:47 – 2021-05-29 21:29 – 000000000 ____D C:UsersiguglAppDataLocalFrontier_Developments
2021-05-29 13:20 – 2021-05-30 12:29 – 000000000 ____D C:Usersigugl.idlerc
2021-05-29 12:57 – 2021-05-29 12:57 – 000001919 _____ C:UsersiguglDownloadsprojectexample.py
2021-05-29 07:55 – 2021-05-29 20:17 – 000000000 ____D C:Program Files (x86)Gyazo
2021-05-29 07:55 – 2021-05-29 07:55 – 011270688 _____ (Nota Inc. ) C:UsersiguglDownloadsGyazo-4.2.exe
2021-05-29 07:55 – 2021-05-29 07:55 – 000003544 _____ C:Windowssystem32TasksGyazoUpdateTaskMachineDaily
2021-05-29 07:55 – 2021-05-29 07:55 – 000003408 _____ C:Window ssystem32TasksGyazoUpdateTaskMachine
2021-05-29 07:55 – 2021-05-29 07:55 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsGyazo
2021-05-29 05:09 – 2021-05-29 05:09 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsLogi
2021-05-29 05:09 – 2021-05-29 05:09 – 000000000 ____D C:Program FilesLGHUB
2021-05-27 20:58 – 2021-05-27 20:58 – 002538358 _____ C:UsersiguglDownloadsAnany Levitin – Introduction to the Design and Analysis of Algorithms, 3rd Edition -Addison Wesley (2011).pdf
2021-05-27 20:08 – 2021-06-01 22:05 – 000000000 ____D C:UsersiguglDocumentsAssignments
2021-05-26 15:35 – 2021-05-26 15:35 – 000037502 _____ C:UsersiguglDownloadsmikasa.webp
2021-05-26 13:49 – 2021-05-26 13:49 – 000002583 _____ C:UsersiguglDownloadsInterfaces(3).zip
2021-05-26 13:49 – 2021-05-26 13:49 – 000000000 ____D C:UsersiguglDownloadsInterfaces(3)
2021-05-26 09:19 – 2021-05-26 09:19 – 000054994 _____ C:UsersiguglDownloadsLetter.pdf
2021-05-26 09:17 – 2021-05-26 09:17 – 000146356 _____ C:UsersiguglDesktopExt.pdf
2021-05-26 09:15 – 2021-06-08 16:32 – 000058252 _____ C:UsersiguglDocumentsLetter.pdf
2021-05-25 10:51 – 2021-05-25 10:51 – 000274755 _____ C:UsersiguglDownloadsToolLibrary-8fabfed9fedc0f1982f250726983d18efc24ea4b.zip
2021-05-25 10:51 – 2021-05-25 10:51 – 000000000 ____D C:UsersiguglDownloadsToolLibrary-8fabfed9fedc0f1982f250726983d18efc24ea4b
2021-05-24 18:50 – 2021-05-24 18:50 – 000527890 _____ C:UsersiguglDownloadsCAB301_Semester_1__2021___Assignment__Tool_Library.pdf
2021-05-24 16:32 – 2021-05-24 16:32 – 000105455 _____ C:UsersiguglDownloadsimage0.jpeg
2021-05-23 16:15 – 2021-05-23 16:15 – 000000000 ____D C:UsersiguglAppDataLocalNuGet
2021-05-23 16:15 – 2021-05-23 16:15 – 000000000 ____D C:Usersigugl.nuget
2021-05-22 1 5:10 – 2021-05-22 15:10 – 000000000 ____D C:UsersiguglDownloadsExercise4-Solution
2021-05-22 15:09 – 2021-05-22 15:09 – 000047687 _____ C:UsersiguglDownloadsExercise4-Solution.zip
2021-05-22 13:02 – 2021-05-22 13:02 – 000001800 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsBlend for Visual Studio 2019.lnk
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:WindowsSysWOW643082
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:WindowsSysWOW642052
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:WindowsSysWOW641055
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:WindowsSysWOW641049
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:WindowsSysWOW641046
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:WindowsSysWOW641045
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:WindowsSysWOW641042
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:WindowsSysWOW641041
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:WindowsSysWOW641040
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:WindowsSysWOW641036
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:WindowsSysWOW641033
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:WindowsSysWOW641031
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:WindowsSysWOW641029
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:WindowsSysWOW641028
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:Windowssystem323082
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:Windowssystem322052
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:Windowssystem321055
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:Windowssystem321049
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:Wind owssystem321046
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:Windowssystem321045
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:Windowssystem321042
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:Windowssystem321041
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:Windowssystem321040
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:Windowssystem321036
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:Windowssystem321033
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:Windowssystem321031
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:Windowssystem321029
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:Windowssystem321028
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:UsersiguglAppDataLocalPackage Cache
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:ProgramDataMicros oftWindowsStart MenuProgramsPython 3.7
2021-05-22 13:00 – 2021-05-22 13:00 – 000000000 ____D C:Program FilesMicrosoft SQL Server
2021-05-22 13:00 – 2021-05-22 13:00 – 000000000 ____D C:Program Files (x86)Windows Kits
2021-05-22 13:00 – 2021-05-22 13:00 – 000000000 ____D C:Program Files (x86)NuGet
2021-05-22 13:00 – 2021-05-22 13:00 – 000000000 ____D C:Program Files (x86)Microsoft SQL Server
2021-05-22 13:00 – 2021-05-22 13:00 – 000000000 ____D C:Program Files (x86)Microsoft SDKs
2021-05-22 12:59 – 2021-05-22 13:00 – 000000000 ____D C:Program Filesdotnet
2021-05-22 12:59 – 2021-05-22 12:59 – 000001799 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsVisual Studio 2019.lnk
2021-05-22 12:59 – 2021-05-22 12:59 – 000000000 ____D C:Program Files (x86)dotnet
2021-05-22 01:40 – 2021-05-13 20:38 – 000037656 _____ (NVIDIA Corporation) C:Windowssystem32Driversnvhdap64.dll
2021 -05-22 01:38 – 2021-06-01 02:10 – 000656176 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvEncodeAPI.dll
2021-05-21 11:13 – 2021-05-21 11:13 – 000000000 ____D C:UsersiguglAppDataLocalpip
2021-05-21 11:09 – 2021-05-21 11:09 – 000009735 _____ C:UsersiguglDownloadsgraphs.py
2021-05-20 15:34 – 2021-05-20 15:34 – 000000000 ____D C:UsersiguglAppDataLocalINetHistory
2021-05-20 15:28 – 2021-05-20 15:28 – 000091136 _____ (Microsoft Corporation) C:Windowssystem32gamingtcuihelpers.dll
2021-05-20 15:27 – 2021-05-20 15:27 – 008673152 _____ () C:UsersiguglDownloadsXboxInstaller.exe
2021-05-19 20:59 – 2021-05-19 21:00 – 054954633 _____ C:UsersiguglDocumentsFinal.mp4
2021-05-19 20:56 – 2021-05-19 20:56 – 067090793 _____ C:UsersiguglDocumentsnew.mp4
2021-05-19 20:53 – 2021-05-19 21:02 – 000237147 _____ C:UsersiguglDocumentsUntitled Project.osp
2021-05-19 20:53 – 2021-05-19 20:53 – 0000000 00 ____D C:UsersiguglDocumentsUntitled Project_assets
2021-05-19 20:50 – 2021-05-19 21:01 – 066028909 _____ C:UsersiguglDocumentsUntitled Project.mp4
2021-05-19 20:46 – 2021-05-19 20:47 – 067111533 _____ C:UsersiguglDocumentsez.mp4
2021-05-19 20:43 – 2021-05-19 21:26 – 000000000 ____D C:Usersigugl.openshot_qt
2021-05-19 20:43 – 2021-05-19 20:43 – 000000971 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsOpenShot Video Editor.lnk
2021-05-19 20:43 – 2021-05-19 20:43 – 000000000 ____D C:Program FilesOpenShot Video Editor
2021-05-19 20:41 – 2021-05-19 20:42 – 136910072 _____ (OpenShot Studios, LLC ) C:UsersiguglDownloadsOpenShot-v2.5.1-x86_64.exe
2021-05-19 19:01 – 2021-05-22 01:09 – 000000000 ____D C:Program Files (x86)MSI Afterburner
2021-05-19 19:01 – 2021-05-19 19:01 – 000000000 ____D C:UsersiguglAppDataRoamingMicrosoftWindowsStart MenuProgramsMSI Afterburner
2021 -05-19 10:13 – 2021-05-19 10:13 – 001687040 _____ C:Windowssystem32libcrypto.dll
2021-05-19 10:13 – 2021-05-19 10:13 – 001163776 _____ C:Windowssystem32MBR2GPT.EXE
2021-05-19 10:13 – 2021-05-19 10:13 – 000700928 _____ C:Windowssystem32FsNVSDeviceSource.dll
2021-05-19 10:13 – 2021-05-19 10:13 – 000165888 _____ C:Windowssystem32DataStoreCacheDumpTool.exe
2021-05-19 10:13 – 2021-05-19 10:13 – 000157184 _____ C:Windowssystem32uwfcsp.dll
2021-05-19 10:13 – 2021-05-19 10:13 – 000153600 _____ C:Windowssystem32uwfcfgmgmt.dll
2021-05-19 10:13 – 2021-05-19 10:13 – 000060928 _____ C:Windowssystem32runexehelper.exe
2021-05-19 10:13 – 2021-05-19 10:13 – 000013312 _____ C:Windowssystem32agentactivationruntimestarter.exe
2021-05-18 23:55 – 2021-05-18 23:58 – 000000000 ____D C:UsersiguglAppDataLocalGitHubVisualStudio
2021-05-18 22:48 – 2021-05-18 22:48 – 000000000 ____D C:UsersiguglAppData LocalCodeMaid
2021-05-18 22:38 – 2021-05-18 22:38 – 000000000 ____D C:UsersiguglAppDataLocalLowTemp
2021-05-18 22:10 – 2021-05-18 22:10 – 000000000 ____D C:UsersiguglAppDataRoamingNuGet
2021-05-18 20:53 – 2021-06-10 01:36 – 000000000 ____D C:ProgramDataMozilla
2021-05-18 20:53 – 2021-06-10 01:35 – 000000000 ____D C:UsersiguglAppDataLocalLowMozilla
2021-05-18 20:53 – 2021-06-05 08:32 – 000000000 ____D C:Program Files (x86)Mozilla Maintenance Service
2021-05-18 20:53 – 2021-06-04 19:51 – 000001005 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsFirefox.lnk
2021-05-18 20:53 – 2021-05-18 20:53 – 000333096 _____ (Mozilla) C:UsersiguglDownloadsFirefox Installer.exe
2021-05-18 20:53 – 2021-05-18 20:53 – 000000000 ____D C:UsersiguglAppDataRoamingMozilla
2021-05-18 20:53 – 2021-05-18 20:53 – 000000000 ____D C:UsersiguglAppDataLocalMozilla
2021-05-18 20:49 – 2021 -06-10 02:05 – 000000000 ____D C:Program Files (x86)Steam
2021-05-18 20:49 – 2021-05-18 20:49 – 001770744 _____ C:UsersiguglDownloadsSteamSetup (1).exe
2021-05-18 20:49 – 2021-05-18 20:49 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsSteam
2021-05-18 20:44 – 2021-05-18 20:44 – 000030939 _____ C:UsersiguglDownloadsMTB.txt
2021-05-18 20:43 – 2021-05-18 20:43 – 000892416 _____ (Farbar) C:UsersiguglDownloadsMiniToolBox.exe
2021-05-18 20:39 – 2021-05-18 20:39 – 000000000 ____D C:UsersiguglDownloadsDRV_Bluetooth_Intel_AX200_TP_W10_64_V219021_20200604R
2021-05-18 20:38 – 2021-05-18 20:39 – 011304801 _____ C:UsersiguglDownloadsDRV_Bluetooth_Intel_AX200_TP_W10_64_V219021_20200604R.zip
2021-05-18 10:47 – 2021-05-25 10:47 – 000001083 _____ C:UsersiguglDocumentskprm-20210518104717.txt
2021-05-18 10:47 – 2021-05-18 10:47 – 000000000 ____D C:KPRM
2021-05-18 08:50 – 202 1-05-18 08:50 – 000000000 ____D C:UsersiguglAppDataLocalOneDrive
2021-05-17 20:49 – 2021-05-17 20:49 – 003253544 _____ (TechPowerUp (www.techpowerup.com)) C:UsersiguglDownloadsMemTest64.exe
2021-05-17 20:47 – 2021-05-17 21:01 – 000000000 ____D C:Program FilesHWiNFO64
2021-05-17 20:47 – 2021-05-17 20:47 – 009140752 _____ (Martin Malik – REALiX ) C:UsersiguglDownloadshwi_702.exe
2021-05-17 20:47 – 2021-05-17 20:47 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsHWiNFO64
2021-05-17 20:35 – 2021-05-17 20:35 – 001279688 _____ (ALCPU ) C:UsersiguglDownloadsCore-Temp-setup.exe
2021-05-17 20:35 – 2021-05-17 20:35 – 000000000 ____D C:UsersiguglDocumentsMAXON
2021-05-17 20:35 – 2021-05-17 20:35 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsCore Temp
2021-05-17 20:35 – 2021-05-17 20:35 – 000000000 ____D C:Program FilesCore Temp
2021-05-17 20:34 – 2021-05-17 20:34 – 000000000 ____D C:UsersiguglAppDataRoamingMaxon
2021-05-17 20:33 – 2021-05-17 20:34 – 000000000 ____D C:UsersiguglDownloadsCinebenchR23
2021-05-17 20:30 – 2021-05-17 20:33 – 261956799 _____ C:UsersiguglDownloadsCinebenchR23.zip
2021-05-17 20:22 – 2021-05-17 20:22 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsGeeks3D
2021-05-17 20:22 – 2021-05-17 20:22 – 000000000 ____D C:Program Files (x86)Geeks3D
2021-05-17 20:21 – 2021-05-17 20:21 – 007435152 _____ (TechPowerUp (www.techpowerup.com)) C:UsersiguglDownloadsGPU-Z.2.39.0.exe
2021-05-17 20:21 – 2021-05-17 20:21 – 000001048 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsTechPowerUp GPU-Z.lnk
2021-05-17 20:21 – 2021-05-17 20:21 – 000000000 ____D C:Program Files (x86)GPU-Z
2021-05-17 20:20 – 2021-05-17 20:22 – 012459456 _____ (Geeks3D ) C:UsersiguglDownloadsFurMark_1.25.1.0_Setup.exe
2021-05-17 19:42 – 2021-06-10 01:35 – 000003112 _____ C:Windowssystem32TasksNahimicTask32
2021-05-17 19:42 – 2021-06-10 01:35 – 000003092 _____ C:Windowssystem32TasksNahimicTask64
2021-05-17 19:39 – 2021-05-17 19:39 – 035328832 _____ (AMD Inc.) C:UsersiguglDownloadsradeon-software-adrenalin-2020-21.5.1-minimalsetup-210505_web.exe
2021-05-17 19:39 – 2021-05-17 19:39 – 000000000 ____D C:UsersiguglAppDataLocalRadeonInstaller
2021-05-17 19:39 – 2021-05-17 19:39 – 000000000 ____D C:UsersiguglAppDataLocalAMD_Common
2021-05-17 19:39 – 2021-05-17 19:39 – 000000000 ____D C:ProgramDataAMD
2021-05-17 19:33 – 2021-06-01 00:00 – 000000000 ____D C:ProgramDataAMD AutoUpdate
2021-05-17 19:33 – 2021-05-17 19:39 – 000000000 ____D C:Program FilesAMD
2021-05-17 19:33 – 2021-05-17 19:33 – 000003484 _____ C:Windowssystem32TasksAMDAutoUpdate
2021-05-17 19:33 – 2021-05-17 19:33 – 000000000 ____ D C:UsersiguglAppDataLocalSetup
2021-05-17 19:33 – 2021-05-17 19:33 – 000000000 ____D C:UsersiguglAppDataLocalDownloaded Installations
2021-05-17 19:33 – 2021-05-17 19:33 – 000000000 ____D C:UsersiguglAppDataLocalcache
2021-05-17 19:33 – 2021-05-17 19:33 – 000000000 ____D C:UsersiguglAppDataLocalAMD
2021-05-17 19:33 – 2021-05-17 19:33 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsAMD Ryzen Master
2021-05-17 19:32 – 2021-05-17 19:32 – 137625256 _____ (Advanced Micro Devices, Inc.) C:UsersiguglDownloadsAMD-Ryzen-Master.exe
2021-05-17 19:17 – 2021-05-17 19:17 – 021423440 _____ C:UsersiguglDownloadsROG-CROSSHAIR-VIII-HERO-WIFI-ASUS-3401.ZIP
2021-05-17 19:17 – 2021-05-17 19:17 – 000000000 ____D C:UsersiguglDownloadsROG-CROSSHAIR-VIII-HERO-WIFI-ASUS-3401
2021-05-17 17:29 – 2021-05-17 17:34 – 000000000 ____D C:UsersiguglHeaven
2021-05-17 17:28 – 2021-05- 17 17:29 – 001065984 _____ C:UsersiguglAppDataLocalfile__0.localstorage
2021-05-17 17:25 – 2021-05-17 17:25 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsUnigine
2021-05-17 17:25 – 2021-05-17 17:25 – 000000000 ____D C:Program Files (x86)Unigine
2021-05-17 17:21 – 2021-05-17 17:25 – 259708359 _____ (Unigine Corp. ) C:UsersiguglDownloadsUnigine_Heaven-4.0.exe
2021-05-17 16:32 – 2021-05-17 16:32 – 000000000 ____D C:UsersiguglAppDataLocalmbam
2021-05-17 16:31 – 2021-05-17 16:31 – 002078632 _____ (Malwarebytes) C:UsersiguglDownloadsMBSetup.exe
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-06-10 02:16 – 2021-05-01 19:50 – 000000000 ____D C:UsersiguglAppDataRoamingSlack
2021-06-10 01:46 – 2019-12-07 19:13 – 000000000 ____D C:WindowsINF
2021-06-10 01:41 – 2020-11 -19 17:54 – 000840822 _____ C:Windowssystem32PerfStringBackup.INI
2021-06-10 01:40 – 2021-03-13 19:58 – 000000000 ____D C:UsersiguglAppDataRoamingdiscord
2021-06-10 01:37 – 2021-03-13 19:46 – 000000000 ____D C:ProgramDataNVIDIA
2021-06-10 01:35 – 2021-03-13 20:25 – 000000000 ____D C:UsersiguglAppDataRoamingLGHUB
2021-06-10 01:35 – 2021-03-13 20:25 – 000000000 ____D C:UsersiguglAppDataLocalLGHUB
2021-06-10 01:35 – 2021-03-13 19:57 – 000000000 ____D C:UsersiguglAppDataLocalDiscord
2021-06-10 01:35 – 2021-03-13 19:46 – 000000000 ___RD C:UsersiguglOneDrive
2021-06-10 01:34 – 2021-03-14 03:41 – 000880672 _____ C:Windowssystem32wpbbin.exe
2021-06-10 01:34 – 2021-03-14 03:41 – 000842128 _____ C:Windowssystem32AsusUpdateCheck.exe
2021-06-10 01:34 – 2021-03-14 03:41 – 000008192 ___SH C:DumpStack.log.tmp
2021-06-10 01:34 – 2021-03-13 19:44 – 000000000 ____D C:Usersigugl
2021-06-10 01:34 – 2020-11-19 17:43 – 000000006 ____H C:WindowsTasksSA.DAT
2021-06-10 01:34 – 2019-12-07 19:14 – 000000000 ____D C:WindowsServiceState
2021-06-10 01:34 – 2019-12-07 19:14 – 000000000 ____D C:ProgramDataregid.1991-06.com.microsoft
2021-06-10 01:34 – 2019-12-07 19:03 – 000524288 _____ C:Windowssystem32configBBI
2021-06-10 01:33 – 2021-05-03 21:47 – 000000000 ____D C:Program FilesCommon FilesAV
2021-06-10 01:33 – 2019-12-07 19:14 – 000000000 ___HD C:WindowsELAMBKUP
2021-06-10 01:33 – 2019-12-07 19:03 – 000032768 _____ C:Windowssystem32configELAM
2021-06-10 01:13 – 2020-11-19 17:43 – 000000000 ____D C:Windowssystem32SleepStudy
2021-06-09 23:39 – 2019-12-07 19:54 – 000000000 ____D C:Program FilesWindows Defender Advanced Threat Protection
2021-06-09 23:39 – 2019-12-07 19:14 – 000000000 ___RD C:WindowsPrintDialog
2021-06-09 23:39 – 2019-12-07 19:14 – 0 00000000 ____D C:WindowsSysWOW64lv-LV
2021-06-09 23:39 – 2019-12-07 19:14 – 000000000 ____D C:WindowsSysWOW64et-EE
2021-06-09 23:39 – 2019-12-07 19:14 – 000000000 ____D C:WindowsSysWOW64Dism
2021-06-09 23:39 – 2019-12-07 19:14 – 000000000 ____D C:WindowsSystemResources
2021-06-09 23:39 – 2019-12-07 19:14 – 000000000 ____D C:Windowssystem32oobe
2021-06-09 23:39 – 2019-12-07 19:14 – 000000000 ____D C:Windowssystem32migwiz
2021-06-09 23:39 – 2019-12-07 19:14 – 000000000 ____D C:Windowssystem32lv-LV
2021-06-09 23:39 – 2019-12-07 19:14 – 000000000 ____D C:Windowssystem32et-EE
2021-06-09 23:39 – 2019-12-07 19:14 – 000000000 ____D C:Windowssystem32Dism
2021-06-09 23:39 – 2019-12-07 19:14 – 000000000 ____D C:WindowsPolicyDefinitions
2021-06-09 23:39 – 2019-12-07 19:14 – 000000000 ____D C:Windowsbcastdvr
2021-06-09 23:03 – 2019-12-07 19:14 – 000000000 ___HD C:Program FilesWindowsApps
2021-06-09 23:03 – 2019-12-07 19:14 – 000000000 ____D C:WindowsAppReadiness
2021-06-09 22:38 – 2019-12-07 19:14 – 000000000 ___RD C:WindowsImmersiveControlPanel
2021-06-09 22:36 – 2020-11-19 17:43 – 000440696 _____ C:Windowssystem32FNTCACHE.DAT
2021-06-09 19:07 – 2019-12-07 19:03 – 000000000 ____D C:WindowsCbsTemp
2021-06-09 19:01 – 2021-03-27 16:11 – 000000000 ____D C:Windowssystem32MRT
2021-06-09 19:01 – 2021-03-13 22:35 – 000000000 ___HD C:$WinREAgent
2021-06-09 19:00 – 2021-03-27 16:11 – 132447432 ____C (Microsoft Corporation) C:Windowssystem32MRT.exe
2021-06-09 10:45 – 2021-03-14 00:03 – 000000000 ____D C:UsersiguglAppDataLocalCrashDumps
2021-06-08 16:46 – 2021-04-18 20:21 – 000000000 ____D C:UsersiguglAppDataLocalPlaceholderTileLogoFolder
2021-06-07 16:16 – 2021-05-01 20:48 – 000000000 ____D C:UsersiguglIdeaProjects
2021-06-07 14:22 – 2021-04-16 18:47 – 000000000 ____D C:UsersiguglAppDataRoamingvlc
2021-06-06 17:29 – 2020-11-19 17:43 – 000000000 ____D C:Windowssystem32Driverswd
2021-06-05 12:15 – 2021-03-13 19:45 – 000000000 ____D C:UsersiguglAppDataLocalPackages
2021-06-05 09:33 – 2021-05-01 19:50 – 000000000 ____D C:UsersiguglAppDataRoamingMicrosoftWindowsStart MenuProgramsSlack Technologies Inc
2021-06-05 09:33 – 2021-05-01 19:50 – 000000000 ____D C:UsersiguglAppDataLocalslack
2021-06-05 09:33 – 2021-03-13 19:57 – 000000000 ____D C:UsersiguglAppDataLocalSquirrelTemp
2021-06-05 09:15 – 2020-11-19 17:46 – 000002438 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Edge.lnk
2021-06-04 13:55 – 2021-04-25 01:34 – 000000000 ____D C:UsersiguglAppDataLocal.IdentityService
2021-06-02 15:27 – 2021-03-13 19:57 – 000000000 ____D C:UsersiguglAppDataRoamingMicrosoftWindowsStart MenuProgramsS team
2021-06-01 12:41 – 2021-05-01 21:35 – 000000000 ____D C:Usersigugl.jdks
2021-06-01 09:31 – 2021-04-01 12:42 – 000000000 ____D C:UsersiguglAppDataRoamingZoom
2021-06-01 02:08 – 2021-04-23 21:38 – 006159160 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvapi.dll
2021-06-01 02:08 – 2021-03-13 19:45 – 007212232 _____ (NVIDIA Corporation) C:Windowssystem32nvapi64.dll
2021-05-29 19:59 – 2021-03-13 20:30 – 000000000 ____D C:UsersiguglAppDataLocalD3DSCache
2021-05-29 19:47 – 2021-03-13 19:46 – 000000000 ____D C:ProgramDataPackage Cache
2021-05-29 05:10 – 2021-04-18 11:52 – 000000000 ____D C:Program FilesMicrosoft Office
2021-05-29 05:10 – 2019-12-07 19:14 – 000000000 ____D C:Program FilesCommon Filesmicrosoft shared
2021-05-26 10:21 – 2021-03-28 19:04 – 000000000 ____D C:UsersiguglAppDataLocalNordVPN
2021-05-26 10:21 – 2021-03-28 19:04 – 000000000 ____D C:ProgramDataNor dVPN
2021-05-26 10:21 – 2021-03-28 19:04 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsNordSec
2021-05-26 10:21 – 2021-03-28 19:04 – 000000000 ____D C:Program FilesNordVPN
2021-05-26 08:54 – 2021-03-13 19:46 – 000003380 _____ C:Windowssystem32TasksOneDrive Standalone Update Task-S-1-5-21-2675421376-3833927843-2164136087-1001
2021-05-26 08:54 – 2021-03-13 19:44 – 000002367 _____ C:UsersiguglAppDataRoamingMicrosoftWindowsStart MenuProgramsOneDrive.lnk
2021-05-22 12:59 – 2021-03-27 16:13 – 000000000 ____D C:Program Files (x86)MSBuild
2021-05-22 12:58 – 2021-04-25 01:30 – 000001433 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsVisual Studio Installer.lnk
2021-05-22 12:58 – 2021-04-25 01:30 – 000000000 ____D C:UsersiguglAppDataRoamingVisual Studio Setup
2021-05-22 01:41 – 2021-03-13 19:50 – 000000000 ____D C:UsersiguglAppDataLocalNVIDIA
2021-05-20 15:33 – 2020-11-19 17:48 – 000000000 ____D C:ProgramDataPackages
2021-05-20 15:27 – 2021-03-13 19:50 – 000000000 ____D C:UsersiguglAppDataLocalComms
2021-05-19 12:43 – 2021-04-25 01:34 – 000000000 ____D C:UsersiguglDocumentsVisual Studio 2019
2021-05-19 11:16 – 2021-04-25 01:30 – 000000000 ____D C:Program Files (x86)Microsoft Visual Studio
2021-05-19 11:16 – 2021-03-13 19:47 – 000000000 ____D C:Program Files (x86)Razer
2021-05-19 11:16 – 2019-12-07 19:51 – 000000000 ____D C:Windowssystem32OpenSSH
2021-05-19 11:16 – 2019-12-07 19:14 – 000000000 ____D C:WindowsSysWOW64WinMetadata
2021-05-19 11:16 – 2019-12-07 19:14 – 000000000 ____D C:WindowsSysWOW64setup
2021-05-19 11:16 – 2019-12-07 19:14 – 000000000 ____D C:WindowsSysWOW64oobe
2021-05-19 11:16 – 2019-12-07 19:14 – 000000000 ____D C:WindowsSysWOW64lt-LT
2021-05-19 11:16 – 2019-12-07 19:14 – 000000000 ____D C:Windows system32WinMetadata
2021-05-19 11:16 – 2019-12-07 19:14 – 000000000 ____D C:Windowssystem32SystemResetPlatform
2021-05-19 11:16 – 2019-12-07 19:14 – 000000000 ____D C:Windowssystem32setup
2021-05-19 11:16 – 2019-12-07 19:14 – 000000000 ____D C:Windowssystem32lt-LT
2021-05-19 11:16 – 2019-12-07 19:14 – 000000000 ____D C:WindowsProvisioning
2021-05-19 11:16 – 2019-12-07 19:14 – 000000000 ____D C:WindowsDiagTrack
2021-05-19 10:14 – 2019-12-07 19:54 – 000023552 _____ (Microsoft Corporation) C:Windowssystem32OEMDefaultAssociations.dll
2021-05-19 10:13 – 2021-03-13 19:45 – 000000000 ____D C:UsersiguglAppDataLocalConnectedDevicesPlatform
2021-05-18 22:05 – 2021-04-25 01:32 – 000000000 ____D C:Usersigugl.dotnet
2021-05-18 20:45 – 2021-03-13 19:51 – 000000000 ____D C:UsersiguglAppDataLocalRazer
2021-05-18 20:45 – 2021-03-13 19:51 – 000000000 ____D C:ProgramDataMicrosoftWin dowsStart MenuProgramsRazer
2021-05-18 20:45 – 2021-03-13 19:50 – 000000000 ____D C:Program FilesRazer
2021-05-18 20:45 – 2021-03-13 19:47 – 000000000 ____D C:ProgramDataRazer
2021-05-18 20:19 – 2021-03-13 20:32 – 000000000 ____D C:UsersiguglAppDataRoamingNZXT CAM
2021-05-18 20:19 – 2021-03-13 20:32 – 000000000 ____D C:Program FilesNZXT CAM
2021-05-18 09:55 – 2021-03-13 20:25 – 000000000 ____D C:ProgramDataLGHUB
2021-05-17 20:02 – 2021-04-11 06:38 – 000000000 ____D C:UsersiguglAppDataLocalLowMCC
2021-05-17 19:41 – 2021-04-02 00:02 – 000000000 ____D C:AMD
2021-05-17 17:17 – 2021-03-13 19:55 – 000000000 ____D C:Riot Games
2021-05-17 17:17 – 2021-03-13 19:55 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsRiot Games
2021-05-17 17:12 – 2019-12-07 19:14 – 000000000 ____D C:WindowsLiveKernelReports
2021-05-13 20:38 – 2021-03-13 19:45 – 000136472 _ ____ (NVIDIA Corporation) C:Windowssystem32Driversnvhda64v.sys
==================== Files in the root of some directories ========
2021-05-17 17:28 – 2021-05-17 17:29 – 001065984 _____ () C:UsersiguglAppDataLocalfile__0.localstorage
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-06-2021
Ran by igugl (10-06-2021 02:16:40)
Running from C:UsersiguglDesktop
Windows 10 Pro Version 20H2 19042.1052 (X64) (2021-03-13 17:42:46)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2675421376-3833927843-2164136087-500 – Administrator – Disabled)
DefaultAccount (S-1-5-21-2675421376-3833927843-2164136087-503 – Limited – Disabled)
Guest (S-1-5-21-2675421376-3833927843-2164136087-501 – Limited – Disabled)
igugl (S-1-5-21-2675421376-3833927843-2164136087-1001 – Administrator – Enabled) => C:Usersigugl
WDAGUtilityAccount (S-1-5-21-2675421376-3833927843-2164136087-504 – Limited – Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled – Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Total Security (Enabled – Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23}
FW: Kaspersky Total Security (Enabled) {774D7037-0984-41B0-3A87-5E88E680AD58}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
AMD Chipset Software (HKLM-x32…AMD_Chipset_IODrivers) (Version: 2.13.27.501 – Advanced Micro Devices, Inc.)
AMD Ryzen Master (HKLM…AMD Ryzen Master) (Version: 2.6.2.1818 – Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32…{40c19864-e557-4855-95ee-075689dfcf8e}) (Version: 2.13.27.501 – Advanced Micro Devices, Inc.) Hidden
ARMOURY CRATE Lite Service (HKLM…{EF3944FF-2501-4568-B15C-5701E726719E}) (Version: 4.0.12 – ASUS)
ASUS AIOFan HAL (HKLM…{EAE80DED-1A39-41C5-9F60-87CC947F6454}) (Version: 1.1.16.0 – ASUSTek COMPUTER INC.) Hidden
ASUS AIOFan HAL (HKLM-x32…{a2a7dca1-0f67-4a82-bc2c-11911fa92dcc}) (Version: 1.1.16.0 – ASUSTek COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM…{2C39FF80-1BB2-42C5-A58D-DC90EFF048F6}) (Version: 1.0.24 – ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM-x32…{a75323e1-f1a4-4aff -a7ce-3858cbc1c0d2}) (Version: 1.0.24 – ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM…{4EBEAC95-76BC-46A8-8644-6E2F1C87CF70}) (Version: 1.1.4.0 – ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM-x32…{33e3ea9c-baed-4e8a-8dbb-4792a27c9066}) (Version: 1.1.4.0 – ASUSTeK COMPUTER INC.) Hidden
ASUS Aura SDK (HKLM…{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.04.05 – ASUSTek COMPUTER INC.) Hidden
ASUS AURA VGA Component (HKLM…{71BB96A6-EAC4-45AE-A17D-D3ED43FF1D14}) (Version: 0.0.3.1 – ASUSTek COMPUTER INC. ) Hidden
ASUS AURA VGA Component (HKLM-x32…{2357cd84-6c2b-4174-87c7-4f9f9db8746b}) (Version: 0.0.3.1 – ASUSTek COMPUTER INC. ) Hidden
ASUS Framework Service (HKLM-x32…{659ff51d-6e35-42de-83ec-aa394eabe9eb}) (Version: 2.0.2.2 – ASUSTek COMPUTER INC.)
ASUS Framework Service (HKLM-x32…{EA6A87BE-8AD3-40D2-944C-9DF5FBFF4332}) (Version: 2.0.2.2 – ASUSTek COMPUTER INC.) Hid den
ASUS GLCKIO2 Driver (HKLM-x32…{3507c756-a80f-4b0e-8475-975d8b432176}) (Version: 1.0.20 – ASUSTeK Computer Inc.) Hidden
ASUS GLCKIO2 Driver (HKLM-x32…{5960FD0F-BB3B-49AF-B175-F77DC91E995A}) (Version: 1.0.20 – ASUSTeK Computer Inc.) Hidden
ASUS Motherboard (HKLM-x32…{93795eb8-bd86-4d4d-ab27-ff80f9467b37}) (Version: 1.05.16 – ASUSTek Computer Inc.)
ASUS Update Helper (HKLM-x32…{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.53 – ASUSTeK Computer Inc.) Hidden
Audacity 3.0.2 (HKLM-x32…Audacity_is1) (Version: 3.0.2 – Audacity Team)
AURA DRAM Component (HKLM…{9AFE5429-866B-457D-A864-80BCF7672EE8}) (Version: 1.1.06 – ASUS) Hidden
AURA DRAM Component (HKLM-x32…{684f7887-cc5b-469a-81e9-36d38142cc46}) (Version: 1.1.06 – ASUS) Hidden
AURA lighting effect add-on (HKLM-x32…{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.15 – ASUS)
AURA lighting effect add-on x64 (HKLM …{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.15 – ASUS)
AURA Service (HKLM-x32…{0E536061-3B55-4D45-BF58-0BDA261C94B0}) (Version: 3.04.35 – ASUSTeK Computer Inc.) Hidden
AURA Service (HKLM-x32…{35381ead-8a19-4bff-a272-dcdfe38a5867}) (Version: 3.04.35 – ASUSTeK Computer Inc.)
ClickOnce Bootstrapper Package for Microsoft .NET Framework (HKLM-x32…{0243F145-076D-423A-8F77-218DC8840261}) (Version: 4.8.04119 – Microsoft Corporation) Hidden
Core Temp 1.17.1 (HKLM…{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.17.1 – ALCPU)
DiagnosticsHub_CollectionService (HKLM…{1F3C3AAC-9F7A-47DA-A082-0ACE770041BE}) (Version: 16.1.28901 – Microsoft Corporation) Hidden
Discord (HKUS-1-5-21-2675421376-3833927843-2164136087-1001…Discord) (Version: 0.0.309 – Discord Inc.)
ENE RGB HAL (HKLM…{E050E98C-5524-4AFB-9E53-97700BEF2C02}) (Version: 1.1.28.0 – Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32… {d22b5310-9f1e-43a8-8547-58fa44742994}) (Version: 1.1.28.0 – Ene Tech.) Hidden
Entity Framework 6.2.0 Tools for Visual Studio 2019 (HKLM-x32…{F878746A-C5F7-420A-A672-4DFEF74ADC3A}) (Version: 6.2.0.0 – Microsoft Corporation) Hidden
Geeks3D FurMark 1.25.1.0 (HKLM-x32…{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: 1.25.1.0 – Geeks3D)
Git version 2.24.1.2 (HKLM…Git_is1) (Version: 2.24.1.2 – The Git Development Community)
Gyazo 4.2.0.0 (HKLM-x32…{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: – Nota Inc.)
Heaven Benchmark version 4.0 (HKLM-x32…Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 – Unigine Corp.)
HWiNFO64 Version 7.02 (HKLM…HWiNFO64_is1) (Version: 7.02 – Martin Malik – REALiX)
icecap_collection_neutral (HKLM-x32…{CCAFAE33-E5CD-4828-962D-B2C08326EC67}) (Version: 16.9.31004 – Microsoft Corporation) Hidden
icecap_collection_x64 (HKLM…{D74AF03C-D072-4551 -9D8E-4312E22685FB}) (Version: 16.9.31004 – Microsoft Corporation) Hidden
icecap_collectionresources (HKLM-x32…{364E3A1B-9A41-44D6-9B81-0BF02C6FD2F0}) (Version: 16.9.31004 – Microsoft Corporation) Hidden
icecap_collectionresourcesx64 (HKLM-x32…{144536DB-036C-465C-86F3-53ADFD9C72A2}) (Version: 16.9.31004 – Microsoft Corporation) Hidden
IntelliJ IDEA Community Edition 2021.1.1 (HKLM-x32…IntelliJ IDEA Community Edition 2021.1.1) (Version: 211.7142.45 – JetBrains s.r.o.)
IntelliTraceProfilerProxy (HKLM-x32…{7D94CF67-6666-4111-B027-D7AB7F189F70}) (Version: 15.0.18198.01 – Microsoft Corporation) Hidden
Kaspersky Total Security (HKLM-x32…{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 – Kaspersky) Hidden
Kaspersky Total Security (HKLM-x32…InstallWIX_{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 – Kaspersky)
Kaspersky VPN (HKLM-x32…{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Ve rsion: 21.3.10.391 – Kaspersky) Hidden
Kaspersky VPN (HKLM-x32…InstallWIX_{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 – Kaspersky)
Kingston AURA DRAM Component (HKLM…{6D2D2DAF-BFE4-45A6-BF40-8A9F7FF54F42}) (Version: 1.0.28 – KINGSTON COMPONENTS INC.) Hidden
Kingston AURA DRAM Component (HKLM-x32…{511a62a9-1ff0-4cc5-adfe-4a5bd044a3c0}) (Version: 1.0.28 – KINGSTON COMPONENTS INC.) Hidden
League of Legends (HKUS-1-5-21-2675421376-3833927843-2164136087-1001…Riot Game league_of_legends.live) (Version: – Riot Games, Inc)
Logitech G HUB (HKLM…{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2021.5.9841 – Logitech)
MariaDB 10.5 (x64) (HKLM…{115A9F5C-6AFE-4A0B-B518-C4AABE7C2CEC}) (Version: 10.5.10.0 – MariaDB Corporation Ab) Hidden
MariaDB 10.5 (x64) (HKLM…MariaDB 10.5 (x64)) (Version: 10.5.10.0 – MariaDB Corporation Ab)
Microsoft .NET SDK 5.0.203 (x64) from Visual Studio (HK LM…{333473D4-FDB4-4975-8577-9AEB14837F72}) (Version: 5.2.321.22315 – Microsoft Corporation)
Microsoft 365 Apps for enterprise – en-us (HKLM…O365ProPlusRetail – en-us) (Version: 16.0.14026.20246 – Microsoft Corporation)
Microsoft Edge (HKLM-x32…Microsoft Edge) (Version: 91.0.864.41 – Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32…Microsoft EdgeWebView) (Version: 91.0.864.41 – Microsoft Corporation)
Microsoft OneDrive (HKUS-1-5-21-2675421376-3833927843-2164136087-1001…OneDriveSetup.exe) (Version: 21.083.0425.0003 – Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2019 CTP2.2 (HKLM…{8D7CE3B0-5379-46FE-9F4B-A65D9F4CC1F1}) (Version: 15.0.1200.24 – Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2019 CTP2.2 (HKLM-x32…{725CC962-98BD-42C7-87D8-51C680FB1779}) (Version: 15.0.1200.24 – Microsoft Corporation)
Microsoft Teams (HKUS-1-5-21-2675421376-3833927 843-2164136087-1001…Teams) (Version: 1.4.00.8872 – Microsoft Corporation)
Microsoft Update Health Tools (HKLM…{A0E1B43D-5F4A-46AF-9925-ABA3423325DC}) (Version: 2.77.0.0 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x64 9.0.30729.6161 (HKLM…{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x86 9.0.30729.6161 (HKLM-x32…{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 – Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable – 10.0.40219 (HKLM…{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 – Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable – 10.0.40219 (HKLM-x32…{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 – Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) – 11.0.61030 (HKLM-x32…{ca67548a-5ebe-413a-b50 c-4b9ceb6d66c6}) (Version: 11.0.61030.0 – Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) – 11.0.61030 (HKLM-x32…{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 – Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) – 14.28.29334 (HKLM-x32…{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 – Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) – 14.28.29334 (HKLM-x32…{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 – Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM…{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 2.9.3366.28650 – Microsoft Corporation)
Mozilla Firefox 89.0 (x64 en-US) (HKLM…Mozilla Firefox 89.0 (x64 en-US)) (Version: 89.0 – Mozilla)
Mozilla Maintenance Service (HKLM…MozillaMaintenanceService) (Version: 88.0.1 – Mozilla)
MSI Afterburner 4.6.4 Beta 3 (HKLM-x32 …Afterburner) (Version: 4.6.4 Beta 3 – MSI Co., LTD)
NordVPN (HKLM…{19465C24-3D5D-4327-B99F-3CC0A1D38151}_is1) (Version: 6.37.2.0 – TEFINCOM S.A.)
NordVPN network TAP (HKLM-x32…{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 – NordVPN)
NordVPN network TUN (HKLM…{BD0E4F38-D3F6-452D-A32E-B14D721839AC}) (Version: 1.0.1 – NordVPN)
NVIDIA FrameView SDK 1.1.4923.29781331 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29781331 – NVIDIA Corporation)
NVIDIA GeForce Experience 3.22.0.32 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.22.0.32 – NVIDIA Corporation)
NVIDIA Graphics Driver 466.63 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 466.63 – NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.38.60 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.60 – NVIDIA Corporation)
N VIDIA PhysX System Software 9.19.0218 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 – NVIDIA Corporation)
NVIDIA USBC Driver 1.46.831.832 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.46.831.832 – NVIDIA Corporation)
OBS Studio (HKLM-x32…OBS Studio) (Version: 27.0.0 – OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM…{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14026.20246 – Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM…{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14026.20246 – Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM…{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.14026.20246 – Microsoft Corporation) Hidden
OpenShot Video Editor version 2.5.1 (HKLM…{4BB0DCDC-BC24-49EC-8937-72956C33A470}_is1) (Version: 2.5.1 – OpenShot Studios, LLC)
PHISON HAL (HKLM…{966E33F0-6786-4B38-AA29-C1B3F6C1955D}) (Version: 1.0.6.0 – PHISON Electronics Corp.) Hidden
PHISON HAL (HKLM-x32…{c8f7044c-7f48-404a-9a5d-9f038f28a789}) (Version: 1.0.6.0 – PHISON Electronics Corp.) Hidden
Python 3.7.8 (64-bit) (HKUS-1-5-21-2675421376-3833927843-2164136087-1001…{886f7e19-ca0e-4f00-9cb5-14f6506fea86}) (Version: 3.7.8150.0 – Python Software Foundation)
Python 3.7.8 Core Interpreter (64-bit symbols) (HKLM…{D5C2F5B5-AE03-4897-B7EB-88EDEB52E55F}) (Version: 3.7.8150.0 – Python Software Foundation) Hidden
Python 3.7.8 Core Interpreter (64-bit) (HKLM…{8DE1D24F-C0EA-42D5-87D0-7F3071932A15}) (Version: 3.7.8150.0 – Python Software Foundation) Hidden
Python 3.7.8 Development Libraries (64-bit) (HKLM…{BB556C96-3906-453B-B068-E17C1F13C814}) (Version: 3.7.8150.0 – Python Software Foundation) Hidden
Python 3.7.8 Documentation (64-bit) (HKLM…{A90E9216-6C61-4A2B-A18E-85EF9DF6A2C0}) (Ve rsion: 3.7.8150.0 – Python Software Foundation) Hidden
Python 3.7.8 Executables (64-bit symbols) (HKLM…{FAF0840F-75F4-4331-819A-C5B88251F402}) (Version: 3.7.8150.0 – Python Software Foundation) Hidden
Python 3.7.8 Executables (64-bit) (HKLM…{0EEFE4AC-ED52-4F6F-A726-A9030991B75D}) (Version: 3.7.8150.0 – Python Software Foundation) Hidden
Python 3.7.8 pip Bootstrap (64-bit) (HKLM…{AD820C10-4106-47D5-B6BD-4B3CEA93E429}) (Version: 3.7.8150.0 – Python Software Foundation) Hidden
Python 3.7.8 Standard Library (64-bit symbols) (HKLM…{F7B2245C-D3F3-4CCC-A558-702AB2069D57}) (Version: 3.7.8150.0 – Python Software Foundation) Hidden
Python 3.7.8 Standard Library (64-bit) (HKLM…{68A406B0-F664-4882-8035-4015C78DDC93}) (Version: 3.7.8150.0 – Python Software Foundation) Hidden
Python 3.7.8 Tcl/Tk Support (64-bit symbols) (HKLM…{833EA197-6356-48B6-9E90-AE2D2CCC5479}) (Version: 3.7.8150.0 – Python Software Foundation) Hidden
Python 3.7.8 Tcl/Tk Support (64-bit) (HKLM…{223ADA3A-F506-428A-9244-C3EA445AD42A}) (Version: 3.7.8150.0 – Python Software Foundation) Hidden
Python 3.7.8 Test Suite (64-bit symbols) (HKLM…{F0759285-644B-4AAF-BB09-CA4592C12B89}) (Version: 3.7.8150.0 – Python Software Foundation) Hidden
Python 3.7.8 Test Suite (64-bit) (HKLM…{FE029834-AD26-45F1-B622-8DE59A8B1048}) (Version: 3.7.8150.0 – Python Software Foundation) Hidden
Python 3.7.8 Utility Scripts (64-bit) (HKLM…{3BDFA237-E962-435F-A556-A2BE2EE1464C}) (Version: 3.7.8150.0 – Python Software Foundation) Hidden
Python Launcher (HKLM-x32…{B25A5062-540A-4141-80D3-50FA598523F3}) (Version: 3.7.7118.0 – Python Software Foundation)
Realtek Audio Driver (HKLM-x32…{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8960.1 – Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32…{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.45.928 .2020 – Realtek)
ROG Live Service (HKLM-x32…{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 1.2.5.0 – ASUSTek COMPUTER INC.)
Slack (HKUS-1-5-21-2675421376-3833927843-2164136087-1001…slack) (Version: 4.17.1 – Slack Technologies Inc.)
Steam (HKLM-x32…Steam) (Version: 2.10.91.91 – Valve Corporation)
Teams Machine-Wide Installer (HKLM-x32…{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.4.0.4167 – Microsoft Corporation)
TechPowerUp GPU-Z (HKLM-x32…{8B0F211E-5846-4FB2-B0B9-4EB31546FDF9}}_is1) (Version: – TechPowerUp)
TypeScript SDK (HKLM-x32…{54BBE05F-F2AC-4403-AA5D-786BEAA645D5}) (Version: 4.1.4.0 – Microsoft Corporation) Hidden
Universal Holtek RGB DRAM (HKLM…{826388E4-E31F-4514-948B-3BB954FB3EAF}) (Version: 1.0.0.1 – PD) Hidden
Universal Holtek RGB DRAM (HKLM-x32…{68fb2ff9-0618-4948-b68f-9f95e5687067}) (Version: 1.0.0.1 – PD)
Update for (KB2504637) (HKLM-x32…{CFEF4 8A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 – Microsoft Corporation)
vcpp_crt.redist.clickonce (HKLM-x32…{8236EB3D-576E-432C-867A-D64F390A9D38}) (Version: 14.28.29914 – Microsoft Corporation) Hidden
Visual Studio Community 2019 (HKLM-x32…2bfe047c) (Version: 16.9.31313.79 – Microsoft Corporation)
VLC media player (HKLM…VLC media player) (Version: 3.0.14 – VideoLAN)
VS Immersive Activate Helper (HKLM-x32…{A71406B5-E487-4B01-8E59-D466841350F5}) (Version: 16.0.102.0 – Microsoft Corporation) Hidden
VS JIT Debugger (HKLM…{C7E8A4F2-EF09-42A8-B892-69D5ED99D965}) (Version: 16.0.102.0 – Microsoft Corporation) Hidden
VS Script Debugging Common (HKLM…{A4272808-82F5-410F-A5F9-1BF6F63F6B9A}) (Version: 16.0.102.0 – Microsoft Corporation) Hidden
vs_BlendMsi (HKLM-x32…{B5E3A3E1-1529-4D5A-9E95-34971FA07825}) (Version: 16.0.28329 – Microsoft Corporation) Hidden
vs_clickoncebootstrappermsi (HKLM -x32…{FB93144C-7671-4DA4-883B-B1D15F00176A}) (Version: 16.9.31004 – Microsoft Corporation) Hidden
vs_clickoncebootstrappermsires (HKLM-x32…{271F1F42-B547-4498-825F-590DBB1774F7}) (Version: 16.0.28329 – Microsoft Corporation) Hidden
vs_clickoncesigntoolmsi (HKLM-x32…{30D97A69-3C0F-4552-9A72-60E591B210C7}) (Version: 16.0.28329 – Microsoft Corporation) Hidden
vs_communitymsi (HKLM-x32…{03119992-794E-4BD1-8811-050DD87BC41C}) (Version: 16.9.31004 – Microsoft Corporation) Hidden
vs_communitymsires (HKLM-x32…{95E79BBC-97FD-4FEB-91B5-CC0231324812}) (Version: 16.0.28329 – Microsoft Corporation) Hidden
vs_devenvmsi (HKLM-x32…{AD0C92A4-1514-4BC1-A723-A272A8343924}) (Version: 16.0.28329 – Microsoft Corporation) Hidden
vs_filehandler_amd64 (HKLM-x32…{6E29FB21-642A-4E68-BD8B-745E679EB9F5}) (Version: 16.9.31004 – Microsoft Corporation) Hidden
vs_filehandler_x86 (HKLM-x32…{D12A3F67-709D-477A-B5D3-D820E4C745E 3}) (Version: 16.9.31004 – Microsoft Corporation) Hidden
vs_FileTracker_Singleton (HKLM-x32…{B64FFE5E-EDCF-49DE-B528-C5AA0D0C313B}) (Version: 16.9.31004 – Microsoft Corporation) Hidden
vs_minshellinteropmsi (HKLM-x32…{27B16914-BC5D-4018-8074-071262A27F6D}) (Version: 16.2.28917 – Microsoft Corporation) Hidden
vs_minshellmsi (HKLM-x32…{621CB344-D1D9-4F17-A5B5-36BBBC4F6FFA}) (Version: 16.9.31025 – Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32…{F4E68397-CB34-42A2-A2FC-33C63EA0CE3B}) (Version: 16.9.31004 – Microsoft Corporation) Hidden
vs_SQLClickOnceBootstrappermsi (HKLM-x32…{90BDEEC4-B67A-4ED4-A59C-E5616D5D5CA9}) (Version: 16.9.31004 – Microsoft Corporation) Hidden
vs_tipsmsi (HKLM-x32…{E208E682-50EE-4F2F-9860-C91B906B8A03}) (Version: 16.0.28329 – Microsoft Corporation) Hidden
vs_vswebprotocolselectormsi (HKLM-x32…{6C9A7596-C8E7-44B0-B5C1-15D5CB97499A}) (Version: 16.9.31004 – Microsoft C orporation) Hidden
WD_BLACK AN1500 (HKLM…{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.12.0 – ENE TECHNOLOGY INC.) Hidden
WD_BLACK AN1500 (HKLM-x32…{9c94735f-73fd-4b0f-9ddb-8be7b3cc4681}) (Version: 1.0.12.0 – ENE TECHNOLOGY INC.) Hidden
Youtube-DLG version 0.4 (HKLM-x32…{3C455028-FC99-4846-8E04-4FCD87D85613}_is1) (Version: 0.4 – Sotiris Papadopoulos)
Zoom (HKUS-1-5-21-2675421376-3833927843-2164136087-1001…ZoomUMX) (Version: 5.6.6 (961) – Zoom Video Communications, Inc.)
Packages:
=========
ARMOURY CRATE -> C:Program FilesWindowsAppsB9ECED6F.ArmouryCrate_4.0.8.0_x64__qmba6cd70vzyy [2021-03-29] (ASUSTeK COMPUTER INC.)
DTS Sound Unbound -> C:Program FilesWindowsAppsDTSInc.DTSSoundUnbound_2021.2.6.0_x64__t5j2fzbtdg37r [2021-05-19] (DTS, Inc.)
Microsoft Solitaire Collection -> C:Program FilesWindowsAppsMicrosoft.MicrosoftSolitaireCollection_4.9.5310.0_x64__8wekyb3d8bbwe [2021-06-07] (Microsoft Studios) [MS Ad]
NVIDIA Control Panel -> C:Program FilesWindowsAppsNVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-05-27] (NVIDIA Corp.)
Photos Add-on -> C:Program FilesWindowsAppsMicrosoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-05-19] (Microsoft Corporation)
Photos Media Engine Add-on -> C:Program FilesWindowsAppsMicrosoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-05-19] (Microsoft Corporation)
Realtek Audio Control -> C:Program FilesWindowsAppsRealtekSemiconductorCorp.RealtekAudioControl_1.14.221.0_x64__dt26b99r8h8gj [2021-04-02] (Realtek Semiconductor Corp)
Sea of Thieves -> C:Program FilesWindowsAppsMicrosoft.SeaofThieves_2.101.2052.2_x64__8wekyb3d8bbwe [2021-05-20] (ms-resource:PublisherDisplayName)
Sonic Radar 3 -> C:Program FilesWindowsAppsA-Volute.28054DF1F58B4_3.16.15.0_x64__w2gh52qy24etm [2021-04-03] (A-Volute)
Sonic Studio 3 -> C:Program Files WindowsAppsA-Volute.SonicStudio3_3.16.15.0_x64__w2gh52qy24etm [2021-04-03] (A-Volute)
Spotify Music -> C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.160.672.0_x86__zpdnekdrzrea0 [2021-05-29] (Spotify AB) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKUS-1-5-21-2675421376-3833927843-2164136087-1001_ClassesCLSID{19A6E644-14E6-4A60-B8D7-DD20610A871D}InprocServer32 -> C:UsersiguglAppDataLocalMicrosoftTeamsMeetingAddin1.0.20339.4x64Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKUS-1-5-21-2675421376-3833927843-2164136087-1001_ClassesCLSID{5405618e-4c42-4fb9-a80a-d24d89911296}localserver32 -> C:UsersiguglAppDataLocalNhNotifSyssonicstudioasusns.exe (A-Volute SAS -> A-Volute)
ContextMenuHandlers1: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:Program Files (x86)Kaspersky LabKaspersky Total Security 21.3x64shellex.dll [2021-06-10] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers2: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:Program Files (x86)Kaspersky LabKaspersky Total Security 21.3x64shellex.dll [2021-06-10] (Kaspersky La b JSC -> AO Kaspersky Lab)
ContextMenuHandlers4: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:Program Files (x86)Kaspersky LabKaspersky Total Security 21.3x64shellex.dll [2021-06-10] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:WindowsSystem32DriverStoreFileRepositorynv_dispi.inf_amd64_1108979a670abe46nvshext.dll [2021-06-01] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:Program Files (x86)Kaspersky LabKaspersky Total Security 21.3x64shellex.dll [2021-06-10] (Kaspersky Lab JSC -> AO Kaspersky Lab)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2020-07-08 17:42 – 2020-07-08 17:42 – 000477696 _____ () [File not signed] \ ?C:Program Files (x86)ASUSArmouryDevicenode_modulesffi-napiprebuildswin32-ia32node.napi.node
2020-07-08 17:42 – 2020-07-08 17:42 – 000471040 _____ () [File not signed] \?C:Program Files (x86)ASUSArmouryDevicenode_modulesref-napiprebuildswin32-ia32node.napi.node
2020-07-14 17:16 – 2020-07-14 17:16 – 000454656 _____ () [File not signed] \?C:Program Files (x86)ASUSArmouryDevicenode_modulesregistry-jsprebuildswin32-ia32node.napi.node
2021-03-13 19:47 – 2019-12-23 18:51 – 000093184 _____ () [File not signed] C:Program Files (x86)ASUSArmouryDevicedllArmourySocketServerzlibwapi.dll
2020-04-22 15:35 – 2020-04-22 15:35 – 000081920 _____ () [File not signed] C:Program Files (x86)ASUSArmouryDevicedllWindowIDWindowID.dll
2020-05-26 17:08 – 2020-05-26 17:08 – 002831360 _____ (Apache Software Foundation) [File not signed] C:Program Files (x86)LightingServicelog4cxx.dll
2021-03-13 19:47 – 2020-12-31 17:26 – 002676224 _____ (ASUSTeK Comput er Inc.) [File not signed] C:Program Files (x86)ASUSArmouryDevicedllArmourySocketServerAURAChecker.dll
2021-06-10 02:00 – 2021-06-10 02:00 – 000254464 ____N (Java™ Native Access (JNA)) [File not signed] C:UsersiguglAppDataLocalJetBrainsIdeaIC2021.1tmpjna5242236373475319617.dll
2021-03-13 19:47 – 2019-06-26 16:07 – 003394560 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:Program Files (x86)ASUSArmouryDevicedllArmourySocketServerlibcrypto-1_1-x64.dll
2021-03-13 19:47 – 2019-06-26 16:07 – 000679424 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:Program Files (x86)ASUSArmouryDevicedllArmourySocketServerlibssl-1_1-x64.dll
2021-03-13 19:49 – 2020-05-14 15:15 – 003394560 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:Program Files (x86)ASUSArmouryDevicedllMBLedSDKlibcrypto-1_1-x64.dll
2021-03-13 19:49 – 2020-05-14 15:15 – 000679424 _____ (The OpenSSL Project, hxxp://www.open ssl.org/) [File not signed] C:Program Files (x86)ASUSArmouryDevicedllMBLedSDKlibssl-1_1-x64.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:Program FilesMicrosoft OfficerootOffice16OCHelper.dll [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16OCHelper.dll [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 – {83C25742-A9F7-49FB-9138-434302C88D07} – C:Program FilesMicrosoft OfficerootOffice16MSOSB.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 – {83C25742-A9F7-49FB-9138-434302C88D07} – C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16MSOSB.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 – {42089D2D-912D-4018-9087-2B87803E93FB} – C:Program FilesMicrosoft OfficerootOffice16MSOSB.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 – {42089D2D-912D-4018-9087-2B87803E93FB} – C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16MSOSB.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 – {42089D2D-912D-4018-9087-2B87803E93FB} – C:Program FilesMicrosoft OfficerootOffice16MSOSB.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 – {42089D2D-912D-4018-9087-2B87803E93FB} – C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16MSOSB.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 – {5504BE45-A83B-4808-900A-3A5C36E7F77A} – C:Program FilesMicrosoft OfficerootOffice16MSOSB.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 – {5504BE45-A83B-4808-900A-3A5C36E7F77A} – C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16MSOSB.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKUS-1-5-21-2675421376-3833927843-2164136087-1001…sharepoint.com -> hxxps://connectqutedu-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 19:14 – 2019-12-07 19:1 2 – 000000824 _____ C:Windowssystem32driversetchosts
2021-05-03 22:14 – 2021-05-03 22:14 – 000000444 _____ C:Windowssystem32driversetchosts.ics
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKUS-1-5-21-2675421376-3833927843-2164136087-1001Control PanelDesktop\Wallpaper -> C:UsersiguglDownloadskamina.jpg
DNS Servers: 192.168.0.1
HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesSystem => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
Network Binding:
=============
Ethernet: NordVPN LightWeight Firewall -> NordLwf (enabled)
Wi-Fi: NordVPN LightWeight Firewall -> NordLwf (enabled)
Ethernet 2: NordVPN LightWeight Firewall -> NordLwf (enabled)
Ethernet 3: NordVPN LightWeight Firewall -> NordLwf (enabled)
Ethernet 4: NordVPN LightWeight Firewall -> NordLwf (enabled)
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{ABB3BB19-13D0-485F-A37F-922946CFA5F2}] => (Allow) C:Program Files (x86)ASUSArmouryDeviceasus_framework.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
FirewallRules: [{DFDF023C-9C2C-417E-BD09-4D9ECDC5E96F}] => (Allow) C:Program Files (x86)ASUSArmouryDevicedllArmourySocketServerArmourySocketServer.exe (ASUSTeK Computer Inc. -> ASUS)
FirewallRules: [{D1915259-5266-4E2F-B6B0-0AF017691C1F}] => (Allow) C:Program Files (x86)ASUSArmouryDeviceasus_framework.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
FirewallRules: [{3CD5CE37-9AEE-447A-B5D2-CB43180DF551}] => (Allow) C:Program Files (x86)ASUSArmouryDevicedllArmourySocketServerArmouryHtmlDebugServer.exe (ASUSTeK Computer Inc. -> ASUS)
FirewallRules: [{EEECB670-F9B0-485B-A7DD-42C2C710B6D2}] => (Allow) C:Program Files (x86)SteamSteam.exe (Valve -> Valve Corporation)
FirewallRules: [{658F86F2-C0AA-4691-8DCF-F278A6533609}] => (Allow) C:Program Files (x86)SteamSteam.exe (Valve -> Valve Corporation)
FirewallRules: [{C2DA4B28-9FC7-4EEC-8E1B-B9D38E8A2700}] => (Allow) C:Program FilesNVID IA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{6593A99E-8B57-4B51-9FBD-E3A002155969}] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9ED57CCD-BDA4-43A6-A3F3-37B28F77A847}] => (Allow) C:Program Files (x86)Steambincefcef.win7x64steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{FA7D6204-012C-4D9C-8D33-7CF8C4A5B83D}] => (Allow) C:Program Files (x86)Steambincefcef.win7x64steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{DA42E953-F502-402C-AD03-7AC35550D40E}C:usersiguglappdataroamingspotifyspotify.exe] => (Allow) C:usersiguglappdataroamingspotifyspotify.exe => No File
FirewallRules: [UDP Query User{4A733066-6E4F-42C0-B444-8864382EC5FB}C:usersiguglappdataroamingspotifyspotify.exe] => (Allow) C:usersiguglappdataroamingspotifyspotify.exe => No File
FirewallRules: [TCP Query User{7E49CC42-D0B0-4125-A0E4-51B9DC8E3F87}C:program fileslghublghub_agent.exe] => (Allow) C:program fileslghublghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{D04D7C9D-9E8D-44B1-B748-FBD9978D4145}C:program fileslghublghub_agent.exe] => (Allow) C:program fileslghublghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{0C0E622E-9EFE-41EA-BB7C-FFE099B36D6F}] => (Allow) C:Program Files (x86)SteamsteamappscommonHadesx64Hades.exe => No File
FirewallRules: [{343C87DF-6C1E-4E0E-8BB5-7CB4BB6557DA}] => (Allow) C:Program Files (x86)SteamsteamappscommonHadesx64Hades.exe => No File
FirewallRules: [{FB7E267C-4953-4F0F-B7E8-7DD15677C76A}] => (Allow) C:Program Files (x86)SteamsteamappscommonHadesx64VkHades.exe => No File
FirewallRules: [{2556E305-7A28-4630-8588-5BB5E7A1036C}] => (Allow) C:Program Files (x86)SteamsteamappscommonHadesx64VkHades.exe => No File
FirewallRules: [{9C3A5609-D168-4810-A64D-C6A5DB546B18}] => (Allow) C:Program Files (x86)SteamsteamappscommonHadesx86Hades.exe => No File
FirewallRules: [{BCF2AE9B-9A06-44A3-9399-179CD8C03FBC}] => (Allow) C:Program Files (x86)SteamsteamappscommonHadesx86Hades.exe => No File
FirewallRules: [{C47571AF-EF7A-44C7-A6B6-DD63F2BE22B8}] => (Allow) C:Program Files (x86)SteamsteamappscommonPersona 4 GoldenP4G.exe => No File
FirewallRules: [{31461454-AE47-4AD9-9F4D-9911AD70026B}] => (Allow) C:Program Files (x86)SteamsteamappscommonPersona 4 GoldenP4G.exe => No File
FirewallRules: [{50FA76FF-F336-47C5-AE7E-437A82EA143B}] => (Allow) C:Program Files (x86)ASUSROG Live ServiceROGLiveService.exe (ASUSTEK COMPUTER INCORPORATION -> ASUSTek COMPUTER INC.)
FirewallRules: [{C782C5AD-CF00-45C9-A677-9F4E347D4018}] => (Allow) C:Program Files (x86)ASUSROG Live ServiceROGLiveService.exe (ASUSTEK COMPUTER INCORPORATION -> ASUSTek COMPUTER INC.)
FirewallRules: [{4110090F-3E84-4201-ADB0-D88D30A1E4E2}] => (Allow) C:UsersiguglAppDataRoamingZoombinZoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{E44E41A7-CEDC-47F0-93B2-D91F8D1B93BF}] => (Allow) C:UsersiguglAppDataRoamingZoombinairhost.exe => No File
FirewallRules: [{22E64FB3-CB54-4AA9-9432-9E91D434BA89}] => (Allow) C:UsersiguglAppDataRoamingZoombinairhost.exe => No File
FirewallRules: [TCP Query User{140A9AE8-EE13-4097-BD8A-74EB5CC710D8}C:usersiguglappdatalocalpackagesb9eced6f.armourycrate_qmba6cd70vzyylocalstategridupdatefileasusgcdriverupdateclient.exe] => (Allow) C:usersiguglappdatalocalpackagesb9eced6f.armourycrate_qmba6cd70vzyylocalstategridupdatefileasusgcdriverupdateclient.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
FirewallRules: [UDP Query User{8D4C0446-7024-4BC8-81C2-B1BA471A8D5A}C:usersiguglappdatalocalpackagesb9eced6f.armourycrate_qmba6cd70vzyylocalstategridupdatefileasusgcdriverupdateclient.exe] => (Allow) C:usersiguglappdatalocalpackages b9eced6f.armourycrate_qmba6cd70vzyylocalstategridupdatefileasusgcdriverupdateclient.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
FirewallRules: [{C18CF33C-48E0-45A1-A4B0-BD6EEA7384A7}] => (Allow) C:Program Files (x86)SteamsteamappscommonRisk of Rain 2Risk of Rain 2.exe => No File
FirewallRules: [{D2E1DCE8-B611-4F02-BA94-A094B67D5361}] => (Allow) C:Program Files (x86)SteamsteamappscommonRisk of Rain 2Risk of Rain 2.exe => No File
FirewallRules: [{8B4F65F4-7B19-4B1B-9394-955AB141A128}] => (Allow) C:Program Files (x86)SteamsteamappscommonHalo The Master Chief Collectionmcclauncher.exe => No File
FirewallRules: [{83C916D6-991F-426E-A17E-105B0FA694E3}] => (Allow) C:Program Files (x86)SteamsteamappscommonHalo The Master Chief Collectionmcclauncher.exe => No File
FirewallRules: [{561F16C2-17F2-48DE-9998-DB98CD03E7FE}] => (Allow) C:Program Files (x86)SteamsteamappscommonHalo The Master Chief Collectionmccbinarieswin64MCC-Win64-Shipping.exe => No File
FirewallRules: [{45EE8E1A-3863-4CE5-9F94-44948363BF60}] => (Allow) C:Program Files (x86)SteamsteamappscommonHalo The Ma ster Chief Collectionmccbinarieswin64MCC-Win64-Shipping.exe => No File
FirewallRules: [{94BAA367-21FF-4873-A607-8EA56FC82AD2}] => (Allow) C:Program FilesMicrosoft OfficerootOffice16Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D244DDB0-6E37-4CB8-BBA7-53FA251DC6D3}] => (Allow) C:Program FilesMicrosoft OfficerootOffice16UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EA6865D1-F38E-4B98-BCE5-D91598946EE3}] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{91A24A70-BB7B-4205-A408-41835D00FD63}] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{8E7B85FF-CE1D-411E-B585-FF1931D87E0A}] => (Allow) C:Program FilesNVIDIA CorporationNvStreamSrvnvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{96D78284-9BD6-4668-8D14-DCEA93A210DF}] => (Allow) C:Program FilesNVIDIA CorporationNvStreamSrvnvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{1DC30C1F-CD21-4C1A-B12D-36E754D7661F}C:usersiguglappdatalocalmicrosoftteamscurrentteams.exe] => (Allow) C:usersiguglappdatalocalmicrosoftteamscurrentteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{C158B6A5-466C-49BD-AC47-BDE710BA1930}C:usersiguglappdatalocalmicrosoftteamscurrentteams.exe] => (Allow) C:usersiguglappdatalocalmicrosoftteamscurrentteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4B856927-B205-4029-9B21-C03234865D9E}] => (Allow) C:Program Files (x86)SteamsteamappscommonCounter-Strike Global Offensivecsgo.exe (Valve -> )
FirewallRules: [{6CA342D5-C282-49FD-BE2A-A91354003A57}] => (Allow) C:Program Files (x86)SteamsteamappscommonCounter-Strike Global Offensivecsgo.exe (Valve -> )
FirewallRules: [{6F0FC755-CD2A-4CEC-AB79-7B8E05F5FCF9}] => (Allow) C:Program Files (x86)SteamsteamappscommonDOOMEternalidTechLauncher.exe => No File
FirewallRules: [{90B3AE9F-E543-4E88-A8F9-B119A05C9ED2}] => (Allow) C:Program Files (x86)SteamsteamappscommonDOOMEternalidTechLauncher.exe => No File
FirewallRules: [{DA997A5F-F715-44D8-AE0E-FA58E6B52AE1}] => (Allow) C:Program Files (x86)SteamsteamappscommonCyberpunk 2077REDprelauncher.exe => No Fil e
FirewallRules: [{94C6216B-82A5-49AA-B5F8-C3C8EFB7097A}] => (Allow) C:Program Files (x86)SteamsteamappscommonCyberpunk 2077REDprelauncher.exe => No File
FirewallRules: [{379A8F15-1603-410C-86A5-5C036AA8B180}] => (Allow) C:Program FilesMozilla Firefoxfirefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{BB193CAA-6FE7-4D19-BEBC-987A31D00641}] => (Allow) C:Program FilesMozilla Firefoxfirefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{5EF39823-A0E0-4A10-8388-57AB8BB3ED9D}C:program filesopenshot video editoropenshot-qt.exe] => (Allow) C:program filesopenshot video editoropenshot-qt.exe (OpenShot Studios, LLC) [File not signed]
FirewallRules: [UDP Query User{180B56E0-006D-4C5E-B4B2-BBE9E5DE1709}C:program filesopenshot video editoropenshot-qt.exe] => (Allow) C:program filesopenshot video editoropenshot-qt.exe (OpenShot Studios, LLC) [File not signed]
FirewallRules: [{5198CD8E-A658-44DF-B6AA-D6FCCC7F279F}] => (Allow) C:Program Files (x86)SteamsteamappscommonElite DangerousEDLaunch.exe (Frontier Developments) [File not signed]
FirewallRules: [{57F97D7A-136C-41EE-BBB6-537AD2C37FD1}] => (Allow) C:Program Files (x86)SteamsteamappscommonElite DangerousEDLaunch.exe (Frontier Developments) [File not signed]
FirewallRules: [TCP Query User{E19A4D87-418D-49CB-8B2F-527CFA8A58B0}C:program fileslghublghub_agent.exe] => (Block) C:program fileslghublghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{96267224-BEB6-4C6D-8BCB-92BD621A1D89}C:program fileslghublghub_agent.exe] => (Block) C:program fileslghublghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{72259562-5EB3-44C2-9A4B-4874FB5922CE}] => (Allow) C:Program FilesMicrosoft OfficerootOffice16outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{07840CC3-6A4B-4AEF-9722-55241B6C9FFA}] => (Allow) C:Program FilesMicrosoft OfficerootOffice16Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2799F525-A61C-483C-8DCD-610B76C9B0AD}] => (Allow) C:Program FilesMicrosoft OfficerootOffice16UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E27F65F4-1F89-4A80-8B36-A79E1A2EC0DF}] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.160.672.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3637C08C-FE17-4D3F-8796-D80F338D7BB5}] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.160.672.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)
F irewallRules: [{C97E7442-9EC8-4432-99E3-78E3FC486966}] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.160.672.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C6039A2E-1AFE-4A22-8CB0-FF469AEECD32}] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.160.672.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E1E8D9B5-2052-412E-A770-0C6F27C1016C}] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.160.672.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BDF854D0-6E45-48F4-8503-0565718E78FD}] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.160.672.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BD0EC819-9548-4DD5-9E59-82423B52756C}] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.160.672.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{81B17CE4-2023-4CB6-AFBA-E282B9F4A559}] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.160.672.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify L td)
FirewallRules: [TCP Query User{9C42C575-AA92-4885-972E-09A341CD5C3E}C:program files (x86)steamsteamappscommonelite dangerousproductselite-dangerous-64elitedangerous64.exe] => (Allow) C:program files (x86)steamsteamappscommonelite dangerousproductselite-dangerous-64elitedangerous64.exe (Frontier Developments plc) [File not signed]
FirewallRules: [UDP Query User{08B3078E-A4C4-40F1-8283-C72C085D0FAF}C:program files (x86)steamsteamappscommonelite dangerousproductselite-dangerous-64elitedangerous64.exe] => (Allow) C:program files (x86)steamsteamappscommonelite dangerousproductselite-dangerous-64elitedangerous64.exe (Frontier Developments plc) [File not signed]
FirewallRules: [{2927F8A8-F147-40A9-95AC-E575463F7518}] => (Allow) C:Program FilesMariaDB 10.5binmysqld.exe (MariaDB Corporation Ab -> )
FirewallRules: [TCP Query User{9B7CADA9-8DA3-4528-B27F-7FCD3BBB5A8F}C:usersigugl.jdkscorretto-1.8.0_292binjava.exe] => (Allow) C:usersigugl.jdkscorretto-1.8.0_292binjava.exe
FirewallRules: [UDP Query User{75EF91A2-5600-4746-8966-B7B194F0C393}C:usersigugl.jdkscorretto-1.8.0_292binjava.exe] => (Allow) C:usersigugl.jdkscorretto-1.8.0_292binjava.exe
FirewallRules: [{55CDD625-1438-4F90-812D-B720CC99732C}] => (Block) C:usersigugl.jdkscorretto-1.8.0_292binjava.exe
FirewallRules: [{40D61405-C332-4FA7-AED0-2127B7F8268E}] => (Block) C:usersigugl.jdkscorretto-1.8.0_292binjava.exe
FirewallRules: [{E477ACFB-B885-423E-8BD8-CBF04F068CFE}] => (Allow) C:Program Files (x86)Steamsteamappscommonwallpaper_engine launcher.exe (Skutta, Kristjan -> )
FirewallRules: [{A59A7D9C-41C9-4FD1-807A-EA07A00690DA}] => (Allow) C:Program Files (x86)Steamsteamappscommonwallpaper_enginelauncher.exe (Skutta, Kristjan -> )
FirewallRules: [TCP Query User{DDD584E3-EEC2-454E-A6B1-97FE6158A2F7}C:usersigugl.jdksazul-15.0.3binjava.exe] => (Allow) C:usersigugl.jdksazul-15.0.3binjava.exe
FirewallRules: [UDP Query User{A54D6751-2D64-41EC-97A0-8EF3E83EA964}C:usersigugl.jdksazul-15.0.3binjava.exe] => (Allow) C:usersigugl.jdksazul-15.0.3binjava.exe
FirewallRules: [{CC397A2D-EA35-4ED2-B49D-C8DF73867953}] => (Allow) C:Program Files (x86)MicrosoftEdgeWebViewApplication91.0.864.41msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{79DAC7CE-776A-4D4E-812B-456580450B1C}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BCD446AF-2D5A-478C-B51D-7D405AEF247E}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E8009C2A-D0C5-49F3-8E77-26722C56DB81}] => (Allow) C:Program FilesWindowsApp sMicrosoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D03ECB6E-7478-4EDB-8C7C-A068032CF0AA}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)
==================== Restore Points =========================
08-06-2021 18:44:23 Scheduled Checkpoint
09-06-2021 19:01:24 Windows Modules Installer
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (06/10/2021 01:35:35 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: AUDIODG.EXE, version: 10.0.19041.1023, time stamp: 0x4507cb5a
Faulting module name: dtstech64.dll, version: 4.2.8.0, time stamp: 0x5ebd130b
Exception code: 0xc0000409
Fault offset: 0x00000000000225ac
Faulting process id: 0x3554
Faulting application start time: 0x01d75d450b26c1d0
Faulting application path: C:Windowssystem32AUDIODG.EXE
Faulting module path: C:WindowsSystem32DTSPCAPO4xdtstech64.dll
Report Id: e30c6d8d-a809-4431-929e-7d3d74ae5d4b
Faulting package full name:
Faulting package-relative application ID:
Error: (06/10/2021 01:34:25 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.
Error: (06/10/2021 01:34:25 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045bAsystemshutdownisinprogress
]
Error: (06/10/2021 01:19:56 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program slack.exe version 4.17.1.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: 4508
Start Time: 01d75d2ef0b43105
Termination Time: 4294967295
Application Path: C:UsersiguglAppDataLocalslackapp-4.17.1slack.exe
Report Id: b66ac593-7aac-4b8a-a5c1-4b3bff5ca8de
Faulting package full name:
Faulting package-relative application ID:
Hang type: Top level window is idle
Error: (06/09/2021 10:56:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: AUDIODG.EXE, version: 10.0.19041.1023, time stamp: 0x4507cb5a
Faulting module name: dtstech64.dll, version: 4.2.8.0, time stamp: 0x5ebd130b
Exception code: 0xc0000409
Fault offset: 0x00000000000225ac
Faulting process id: 0x34b8
Faulting application start time: 0x01d75d2ee050a6db
Faulting applica tion path: C:Windowssystem32AUDIODG.EXE
Faulting module path: C:WindowsSystem32DTSPCAPO4xdtstech64.dll
Report Id: b68280f3-9753-4019-8a42-db0ddb0e23c9
Faulting package full name:
Faulting package-relative application ID:
Error: (06/09/2021 10:38:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: AUDIODG.EXE, version: 10.0.19041.1023, time stamp: 0x4507cb5a
Faulting module name: dtstech64.dll, version: 4.2.8.0, time stamp: 0x5ebd130b
Exception code: 0xc0000409
Fault offset: 0x00000000000225ac
Faulting process id: 0x3af0
Faulting application start time: 0x01d75d2c6016a81d
Faulting application path: C:Windowssystem32AUDIODG.EXE
Faulting module path: C:WindowsSystem32DTSPCAPO4xdtstech64.dll
Report Id: 3bdbb2ec-66a2-4b87-8b9b-7cdb3a686a91
Faulting package full name:
Faulting package- relative application ID:
Error: (06/09/2021 10:45:13 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: AUDIODG.EXE, version: 10.0.19041.906, time stamp: 0x985b4154
Faulting module name: dtstech64.dll, version: 4.2.8.0, time stamp: 0x5ebd130b
Exception code: 0xc0000409
Fault offset: 0x00000000000225ac
Faulting process id: 0x1448
Faulting application start time: 0x01d75c51c44f4961
Faulting application path: C:Windowssystem32AUDIODG.EXE
Faulting module path: C:WindowsSystem32DTSPCAPO4xdtstech64.dll
Report Id: bd67776b-ee87-4b17-9478-7c8f52a09322
Faulting package full name:
Faulting package-relative application ID:
Error: (06/09/2021 10:45:03 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: ArmourySocketServer.exe, version: 0.0.5.18, time stamp: 0x600a817e
Faulting module name: ArmourySocketServer.exe, version: 0.0.5.18, time stamp: 0x600a817e
Exception code: 0xc0000005
Fault offset: 0x000000000000c73e
Faulting process id: 0x129c
Faulting application start time: 0x01d75cc8a9d6dd68
Faulting application path: C:Program Files (x86)ASUSArmouryDevicedllArmourySocketServerArmourySocketServer.exe
Faulting module path: C:Program Files (x86)ASUSArmouryDevicedllArmourySocketServerArmourySocketServer.exe
Report Id: 9d444326-2972-4368-802f-17d8b661fa89
Faulting package full name:
Faulting package-relative application ID:
System errors:
=============
Error: (06/10/2021 01:35:02 AM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created.
Use the string "%2" to identify the interface for which initialization
failed. It represents the MAC address of the failed interface or the
Globally Unique Interface Identifier (GUID) if NetBT was unable to
map from GUID to MAC address. If neither the MAC address nor the GUID were
available, the string represents a cluster device name.
Error: (06/10/2021 01:35:02 AM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created.
Use the string "%2" to identify the interface for which initialization
failed. It represents the MAC address of the failed interface or the
Globally Unique Interface Identifier (GUID) if NetBT was unable to
map from GUID to MAC address. If neither the MAC address nor the GUID were
available, the string represents a cluster device name.
Error: (06/10/2021 01:33:33 AM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: The ScRegSetValueExW call failed for Start with the following error:
Access is denied.
Error: (06/10/2021 01:24:10 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The nordvpn-service service terminated unexpectedly. It has done this 1 time(s).
Error: (06/09/2021 10:56:20 PM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created.
Use the string "%2" to identify the interface for which initialization
failed. It represents the MAC address of the failed interface or the
Globally Unique Interface Identifier (GUID) if NetBT was unable to
map from GUID to MAC address. If neither the MAC address nor the GUID were
available, the string represents a cluster device name.
Error: (06/09/2021 10:56:20 PM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created.
Use the string "%2" to identify the interface for which initialization
failed. It represents the MAC address of the failed interface or the
Globally Unique Interface Identifier (GUID) if NetBT was unable to
map from GUID to MAC address. If neither the MAC address nor the GUID were
available, the string represents a cluster device name.
Error: (06/09/2021 10:56:16 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 10:38:15 PM on 9/06/2021 was unexpected.
Error: (06/09/2021 10:39:22 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Steam Client Service service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.
Windows Defender:
================
Date: 2021-06-09 17:54:11
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2021-06-08 18:32:09
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Anti malware
Scan Parameters: Quick Scan
Date: 2021-06-07 17:52:43
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2021-06-04 20:47:22
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2021-06-04 00:44:47
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2021-06-05 08:43:00
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.339.1957.0
Update Source: Microsoft Update Server
Security intellig ence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.18200.2
Error code: 0x80070643
Error description: Fatal error during installation.
Date: 2021-06-05 08:42:59
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 1.341.82.0
Previous security intelligence Version: 1.339.1957.0
Update Source: User
Security intelligence Type: AntiSpyware
Update Type: Delta
Current Engine Version: 1.1.18200.4
Previous Engine Version: 1.1.18200.2
Error code: 0x80070666
Error description: Another version of this product is already installed. Installation of this version cannot continue. To configure or remove the existing version of this product, use Add/Remove Programs on the Control Panel.
Date: 2021-06-05 08:42:59
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 1.341.82.0
Previous security intelligence Version: 1.339.1957.0
Update Source: User
Security intelligence Type: AntiVirus
Update Type: Delta
Current Engine Version: 1.1.18200.4
Previous Engine Version: 1.1.18200.2
Error code: 0x80070666
Error description: Another version of this product is already installed. Installation of this version cannot continue. To configure or remove the existing version of this product, use Add/Remove Programs on the Control Panel.
Date: 2021-06-05 08:42:59
Description:
Microsoft Defender Antivirus has encountered an error trying to update the engine.
New Engine Version: 1.1.18200.4
Previous Engine Version: 1.1.18200.2
Error Code: 0x80070666
Error description: Another version of this product is already installed. Installation of this version cannot continue. To configure or remove the existing version of this product, use Add/Remove Programs on the Control Panel.
Date: 2021-05-30 09:21:29
Description:
Microsoft Defender Antivirus engine has been terminated due to an unexpected error.
Failure Type: Crash
Exception code: 0xc0000005
Resource: file:C:Program Files (x86)ASUSArmouryDevicedllMBLedSDKportaudio_x64.dll
CodeIntegrity:
===============
Date: 2021-06-10 01:41:04
Description:
Code Integrity determined that a process (DeviceHarddiskVolume2WindowsSystem32SecurityHealthService.exe) attempted to load DeviceHarddiskVolume2Program Files (x86)Kaspersky LabKaspersky Total Security 21.3x64antimalware_provider.dll that did not meet the Windows signing level requirements.
Date: 2021-06-10 01:37:06
Description:
Code Integrity determined that a process (DeviceHarddiskVolume2WindowsSystem32svchost.exe) a ttempted to load DeviceHarddiskVolume2Program Files (x86)Kaspersky LabKaspersky Total Security 21.3x64antimalware_provider.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 3401 03/19/2021
Motherboard: ASUSTeK COMPUTER INC. ROG CROSSHAIR VIII HERO (WI-FI)
Processor: AMD Ryzen 9 3900X 12-Core Processor
Percentage of memory in use: 56%
Total physical RAM: 16296.72 MB
Available physical RAM: 7042.01 MB
Total Virtual: 25512.72 MB
Available Virtual: 9181.12 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:953.85 GB) (Free:581.68 GB) NTFS
Drive d: () (Fixed) (Total:1863 GB) (Free:1727.91 GB) NTFS
Drive e: () (Fixed) (Total:3726.01 GB) (Free:2918.94 GB) NTFS
\?Volume{9a419cf5-f715-44f6-97e6-130d1bb1cc24} () (Fixed) (Total:0.5 GB) (Free:0.47 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 85622EC4)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 3726 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 2 (Size: 953.9 GB) (Disk ID: 62310063)
Partition: GPT.
==========================================================
Disk: 3 (Protective MBR) (Size: 1907.7 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
Edited by anikamina, Today, 09:18 PM.
.
