Asus Live Update malware? Websites with XSS/JS injection. | #firefox | #chrome | #microsoftedge

Sending my first log here. Not sure what to do. Going to Microsoft next week. This seem to be affecting my routers as well with log saying Bootloader 31st Nov 2000 something. Also connected my iPad and my iPhone thru this laptop before and they are both affected. Been to genius bar and luck. Can’t get a clean Windows 10 boot, been in this circle since October 2021. Thank you Pkshadow and midimusicman79

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-12-2021
Ran by isaha (administrator) on LAPTOP-7ILMBO7M (ASUSTeK COMPUTER INC. ASUS TUF Gaming A17 FA706IU_FA706IU) (31-12-2021 16:03:59)
Running from C:UsersisahaDesktop
Loaded Profiles: isaha
Platform: Microsoft Windows 10 Home Version 21H2 19044.1288 (X64) Language: English (United Kingdom)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AO Kaspersky Lab -> AO Kaspersky Lab) C:Program Files (x86)Kaspersky LabKaspersky Password Manager 9.0.2kpm_tray.exe
(ASUSTeK Computer Inc. -> ) C:Program Files (x86)ASUSArmouryDevicedllShareFromArmouryIIIMouseROG STRIX CARRYP508PowerAgent.exe
(ASUSTeK Computer Inc. -> ASUS) C:Program Files (x86)ASUSArmouryDevicedllArmourySocketServerArmourySocketServer.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) C:WindowsSystem32DriverStoreFileRepositoryasussci2.inf_amd64_74be8ed024c977b8ASUSLinkRemoteAsusLinkRemote.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) C:WindowsSystem32DriverStoreFileRepositoryasussci2.inf_amd64_74be8ed024c977b8ASUSSoftwareManagerAsusSoftwareManagerAgent.exe
(ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:Program Files (x86)ASUSROG Live ServiceROGLiveService.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:Program Files (x86)ASUSUpdateAsusUpdate.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:WindowsSystem32DriverStoreFileRepositoryasussci2.inf_amd64_74be8ed024c977b8AsusAppServiceAsusAppService.exe
(ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:WindowsSystem32DriverStoreFileRepositoryasussci2.inf_amd64_74be8ed024c977b8ASUSLinkNearAsusLinkNear.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:WindowsSystem32DriverStoreFileRepositoryasussci2.inf_amd64_74be8ed024c977b8ASUSOptimizationAsusOptimization.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:WindowsSystem32DriverStoreFileRepositoryasussci2.inf_amd64_74be8ed024c977b8ASUSOptimizationAsusOptimizationStartupTask.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:WindowsSystem32DriverStoreFileRepositoryasussci2.inf_amd64_74be8ed024c977b8ASUSSoftwareManagerAsusSoftwareManager.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:WindowsSystem32DriverStoreFileRepositoryasussci2.inf_amd64_74be8ed024c977b8ASUSSystemAnalysisAsusSystemAnalysis.exe
(Avast Software s.r.o. -> AVAST Software) C:Program FilesAvast SoftwareAvastaswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:Program FilesAvast SoftwareAvastaswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:Program FilesAvast SoftwareAvastAvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:Program FilesAvast SoftwareAvastAvastUI.exe
(Avast Software s.r.o. -> AVAST Software) C:Program FilesAvast SoftwareAvastwsc_proxy.exe
(Avast Software s.r.o. -> AVAST Software) C:Program FilesAvast SoftwareCleanupTuneupSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:Program FilesAvast SoftwareDriver UpdaterDriverUpdSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:Program FilesAvast SoftwareSecureLine VPNVpnSvc.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:Program Files (x86)Kaspersky LabKaspersky Total Security 21.3avp.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:Program Files (x86)Kaspersky LabKaspersky Total Security 21.3avpui.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:Program Files (x86)Kaspersky LabKaspersky Total Security 21.3plugins_nms.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:Program Files (x86)Kaspersky LabKaspersky VPN 5.3ksde.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:Program Files (x86)Kaspersky LabKaspersky VPN 5.3ksdeui.exe
(Microsoft Corporation -> Microsoft Corporation) C:Program FilesCommon Filesmicrosoft sharedClickToRunOfficeClickToRun.exe
(Microsoft Windows -> Microsoft Corporation) C:WindowsImmersiveControlPanelSystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:WindowsSysWOW64wbemWmiPrvSE.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2111.5-0MsMpEng.exe
(Mozilla Corporation -> Mozilla Corporation) C:Program FilesMozilla Firefoxfirefox.exe <8>
(Nvidia Corporation -> NVIDIA Corporation) C:WindowsSystem32DriverStoreFileRepositorynvami.inf_amd64_39f6d2586ed0b7d9Display.NvContainerNVDisplay.Container.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:WindowsSystem32DriverStoreFileRepositoryrealtekservice.inf_amd64_7634c653537a72fcRtkAudUService64.exe <2>
(Skype) C:Program FilesWindowsAppsmicrosoft.skypeapp_14.53.77.0_x64__kzf8qxf38zg5cSkypeApp.exe
(Skype) C:Program FilesWindowsAppsmicrosoft.skypeapp_14.53.77.0_x64__kzf8qxf38zg5cSkypeBackgroundHost.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM…Run: [AvastUI.exe] => C:Program FilesAvast SoftwareAvastAvLaunch.exe [157464 2021-12-29] (Avast Software s.r.o. -> AVAST Software)
HKLMSoftwareMicrosoftActive SetupInstalled Components: [{43F137B0-8F4D-463B-AB83-ADEAD4F15096}] -> C:Program Files (x86)MicrosoftEdge BetaApplication84.0.522.20Installersetup.exe [2021-12-20] (Microsoft Corporation -> Microsoft Corporation)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00C27535-C687-404D-9C63-242F495427CA} – McAfee Remediation (Prepare) -> No File <==== ATTENTION
Task: {0266999E-126E-48C0-A452-C7A062CB3C78} – System32TasksAvast SoftwareAvast Driver Updater Update => C:Program FilesCommon FilesAvast SoftwareIcarusavast-duicarus.exe [6475544 2021-12-16] (Avast Software s.r.o. -> Avast Software)
Task: {0ED4E45F-0877-4AFD-A18A-B4817BEE9054} – NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {124B68C0-288A-4EC3-A0E5-C7BDE2AC28FB} – System32TasksAvast Emergency Update => C:Program FilesAvast SoftwareAvastAvEmUpdate.exe [4969240 2021-12-29] (Avast Software s.r.o. -> AVAST Software)
Task: {132839CB-3C16-4090-8D2F-1F6E39F26ED5} – System32TasksASUS Update Checker 2.0 => C:WindowsSystem32DriverStoreFileRepositoryasussci2.inf_amd64_74be8ed024c977b8ASUSSoftwareManagerAsusUpdateChecker.exe [771208 2021-08-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {22CB1E0A-3FD3-4A1A-831A-E9871B2678C2} – NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {243FF696-A3C9-46AC-9583-FEB611E601F1} – System32TasksASUSASUSUpdateTaskMachineCore1d7fccc5b9d8104 => C:Program Files (x86)ASUSUpdateAsusUpdate.exe [168520 2021-12-20] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {2A2C1CFD-F9C3-48D2-9D50-44949B94AF5C} – NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {35BA301E-C5B3-464A-91FE-D533DFFC1F67} – NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {3B8C3A7C-3CD1-4470-B380-E1FB02A0C31B} – System32TasksAsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:WindowsSystem32DriverStoreFileRepositoryasussci2.inf_amd64_74be8ed024c977b8ASUSSystemAnalysisAsusSystemAnalysis.exe [2553472 2021-08-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {420AE72D-FD6D-4585-BD6D-B737054D840C} – System32TasksMicrosoftOfficeOffice Feature Updates => C:Program FilesMicrosoft OfficerootOffice16sdxhelper.exe [145752 2020-11-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {5E134C2D-A90D-4AEF-84F0-7190DFB9DBDD} – NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {62AA649D-EF5F-4B15-97C4-017B9939D538} – System32TasksMicrosoftWindowsWindows DefenderWindows Defender Cache Maintenance => C:ProgramDataMicrosoftWindows Defenderplatform4.18.2111.5-0MpCmdRun.exe [901048 2021-12-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6CBEF361-EE00-46F9-B3B8-D803788F07C8} – MicrosoftWindowsManagementProvisioningPostResetBoot -> No File <==== ATTENTION
Task: {6F0A4936-65C9-49CE-937B-90E4A7FAA512} – System32TasksMicrosoftWindowsWindows DefenderWindows Defender Verification => C:ProgramDataMicrosoftWindows Defenderplatform4.18.2111.5-0MpCmdRun.exe [901048 2021-12-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {755AEB8B-C4D3-494B-B7B5-E36C5B4373A9} – System32TasksMicrosoftWindowsWindows DefenderWindows Defender Cleanup => C:ProgramDataMicrosoftWindows Defenderplatform4.18.2111.5-0MpCmdRun.exe [901048 2021-12-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {75C72410-6471-4E8C-80C1-9A65658E5C51} – System32TasksASUS Optimization 36D18D69AFC3 => C:WindowsSystem32DriverStoreFileRepositoryasussci2.inf_amd64_74be8ed024c977b8ASUSOptimizationAsusHotkeyExec.exe [233616 2021-08-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {779CB5D0-EEBE-4408-9A2A-FBCDB4DFF034} – System32TasksMicrosoftWindowsWindows DefenderWindows Defender Scheduled Scan => C:ProgramDataMicrosoftWindows Defenderplatform4.18.2111.5-0MpCmdRun.exe [901048 2021-12-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7F99694A-97F6-4B71-BA33-5ADCD19CFE89} – NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {829AE13F-42BA-479D-A3A0-CED7426490D7} – System32TasksAvast SoftwareAvast Cleanup Update => C:Program FilesCommon FilesAvast SoftwareIcarusavast-tuicarus.exe [6475544 2021-12-16] (Avast Software s.r.o. -> Avast Software)
Task: {8701A00B-0A25-4CBF-ABD3-2844988DB0FC} – NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {8774B33C-0910-446F-98B0-7CBE830D25AF} – ASUSArmourySocketServer -> No File <==== ATTENTION
Task: {88A5B7E8-ED23-42F2-9008-5D4B4C5EB67F} – System32TasksMozillaFirefox Default Browser Agent 308046B0AF4A39CB => C:Program FilesMozilla Firefoxdefault-browser-agent.exe do-task “308046B0AF4A39CB”
Task: {99B15D2A-F119-4F33-B925-690CA8D567DF} – System32Taskskpm_tray.exe => C:Program Files (x86)Kaspersky LabKaspersky Password Manager 9.0.2kpm_tray.exe [623760 2021-12-02] (AO Kaspersky Lab -> AO Kaspersky Lab)
Task: {9A051478-CC90-4A32-BDB5-61C59DEEAA61} – System32TasksASUSASUSUpdateTaskMachineUA => C:Program Files (x86)ASUSUpdateAsusUpdate.exe [168520 2021-12-20] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {A1BC1168-7046-4500-8C4F-87BD4D739839} – MicrosoftWindowsPLAAsusLinkNear -> No File <==== ATTENTION
Task: {A3734856-C400-434F-90A2-BC9CE4097537} – System32TasksMicrosoftOfficeOffice Feature Updates Logon => C:Program FilesMicrosoft OfficerootOffice16sdxhelper.exe [145752 2020-11-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {A740A5E2-95B7-4D86-B67B-89BFCD695462} – System32TasksAvast SoftwareAvast SecureLine VPN Bug Report => C:Program FilesAvast SoftwareSecureLine VPNAvBugReport.exe [4760344 2021-12-29] (Avast Software s.r.o. -> AVAST Software) -> –send “dumps|report” –silent –product 11 –programpath “C:Program FilesAvast SoftwareSecureLine VPN” –configpath “C:ProgramDataAvast SoftwareSecureLine VPN” –path “C:ProgramDataAvast SoftwareSecureLine VPNlog” –path “C:ProgramDataAvast SoftwareIcarusLogs” –logpath “C:ProgramDataAvast SoftwareSecureLine VPNlog” –guid f58e46c0-afa0-4d90-af56-6813319eca74
Task: {A9DC7F97-9208-463F-B23A-1D749A87292C} – NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {B158E581-13C5-4B39-8CC4-6393E9C2139E} – ASUSASUSUpdateTaskMachineCore -> No File <==== ATTENTION
Task: {B51D43A5-47DD-4DD7-B122-22212FDDA90B} – System32TasksKaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:Program FilesCommon FilesAVKaspersky Labupgrade_launcher.exe [743488 2021-12-29] (Kaspersky Lab JSC -> AO Kaspersky Lab)
Task: {C9D31DEC-51DD-4EED-AC5D-EAF1C99881AA} – System32TasksAvast SoftwareAvast SecureLine VPN Update => C:Program FilesCommon FilesAvast SoftwareIcarusavast-vpnicarus.exe [6475544 2021-12-14] (Avast Software s.r.o. -> Avast Software)
Task: {CC43EFD0-7241-412B-881F-15214FA31715} – System32TasksAvast SoftwareAvast Cleanup BugReport => C:Program FilesAvast SoftwareCleanupAvBugReport.exe [4760344 2021-12-29] (Avast Software s.r.o. -> AVAST Software) -> –send “dumps|report” –silent –product 62 –programpath “C:Program FilesAvast SoftwareCleanupSetup..” –configpath “C:Program FilesAvast SoftwareCleanupSetup” –path “C:ProgramDataAvast SoftwareCleanuplog” –path “C:ProgramDataAvast SoftwareIcarusLogs” –guid cf76bf4c-3780-4281-8ec2-6a3de4017869
Task: {CD457CE6-7168-4904-B1CA-8E04FF206668} – NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {D3509F2D-D503-42D3-877A-0F812A14D3A8} – System32TasksRtkAudUService64_BG => C:WindowsSystem32DriverStoreFileRepositoryrealtekservice.inf_amd64_7634c653537a72fcRtkAudUService64.exe [1257832 2021-04-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {D65514EB-9F10-4824-9C14-D3D6547EF76F} – System32TasksAvast SecureLine VPN Update => C:Program FilesAvast SoftwareSecureLine VPNVpnUpdate.exe [1226520 2021-12-29] (Avast Software s.r.o. -> AVAST Software)
Task: {D7EF27F9-670C-479B-B3EB-EDC3FEB2C6AB} – System32TasksAvast SoftwareOverseer => C:Program FilesCommon FilesAvast SoftwareOverseeroverseer.exe [1778456 2021-12-29] (Avast Software s.r.o. -> Avast Software)
Task: {D8F9B382-8C6C-4A92-AA99-4D2EF1499236} – ASUSP508PowerAgent_sdk -> No File <==== ATTENTION
Task: {DAA8C8A0-E519-4621-BB69-584A1DACA6DE} – OneDrive Standalone Update Task-S-1-5-21-1449666024-2659739157-1938942744-500 -> No File <==== ATTENTION
Task: {E231691A-BB43-4ACA-AA3F-F7A76B63B5DD} – MicrosoftWindowsPLA74C0539-0999-4DA9-9D0D-3D016B62F4E9 -> No File <==== ATTENTION
Task: {E23E67F4-4992-4997-AB38-70FAA267E57A} – NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {E57AD1E8-EBD8-4386-9494-AAE58CE7A3B2} – System32TasksMicrosoftOfficeOffice Automatic Updates 2.0 => C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeC2RClient.exe [22764936 2020-10-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {F0F022CE-39BC-4692-BD88-D219433CD323} – System32TasksMicrosoftOfficeOffice ClickToRun Service Monitor => C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeC2RClient.exe [22764936 2020-10-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {FBE285A1-68C2-48F2-A984-9CA47A25ED5F} – System32TasksAvast SoftwareAvast Driver Updater BugReport => C:Program FilesAvast SoftwareDriver UpdaterAvBugReport.exe [4760344 2021-12-29] (Avast Software s.r.o. -> AVAST Software) -> –send “dumps|report” –silent –product 148 –programpath “C:Program FilesAvast SoftwareDriver UpdaterSetup..” –configpath “C:Program FilesAvast SoftwareDriver UpdaterSetup” –path “C:ProgramDataAvast SoftwareDriver Updaterlog” –path “C:ProgramDataAvast SoftwareIcarusLogs” –guid e4aa3a3b-4cb3-4908-a754-5b6f5180773a

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

TcpipParameters: [DhcpNameServer] 192.168.1.254
Tcpip..Interfaces{d58f0965-4b06-4d4a-ab35-4920659eae81}: [DhcpNameServer] 192.168.1.254

Edge:
=======
Edge Profile: C:UsersisahaAppDataLocalMicrosoftEdgeUser DataDefault [2021-12-29]
Edge Extension: (Kaspersky Protection) – C:UsersisahaAppDataLocalMicrosoftEdgeUser DataDefaultExtensionsahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-12-29]
Edge HKUS-1-5-21-747036069-1942991826-1659572718-1001SOFTWAREMicrosoftEdgeExtensions…EdgeExtension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]
StartMenuInternet: Microsoft Edge Beta – C:Program Files (x86)MicrosoftEdge BetaApplicationmsedge.exe

FireFox:
========
FF DefaultProfile: x1zw9fd6.default
FF ProfilePath: C:UsersisahaAppDataRoamingMozillaFirefoxProfilesx1zw9fd6.default [2021-12-29]
FF ProfilePath: C:UsersisahaAppDataRoamingMozillaFirefoxProfilesnsldagzw.default-release [2021-12-31]
FF Extension: (Kaspersky Protection) – C:UsersisahaAppDataRoamingMozillaFirefoxProfilesnsldagzw.default-releaseExtensionslight_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com.xpi [2021-12-29]
FF HKLM…FirefoxExtensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] – C:Program Files (x86)Kaspersky LabKaspersky Total Security 21.3FFExtlight_plugin_firefoxaddon.xpi => not found
FF HKLM-x32…FirefoxExtensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] – C:Program Files (x86)Kaspersky LabKaspersky Total Security 21.3FFExtlight_plugin_firefoxaddon.xpi => not found
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:Program FilesMicrosoft OfficerootOffice16NPSPWRAP.DLL [2020-11-21] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16NPSPWRAP.DLL [2020-11-21] (Microsoft Corporation -> Microsoft Corporation)
FF ExtraCheck: C:Program Filesmozilla firefoxdefaultsprefkl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2021-12-29] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:Program Filesmozilla firefoxkl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2021-12-29] <==== ATTENTION

Chrome:
=======
CHR HKLM…ChromeExtension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] – hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32…ChromeExtension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] – hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 ArmouryCrateControlInterface; C:WindowsSystem32ASUSACCIArmouryCrateControlInterface.exe [890968 2021-07-07] (ASUSTEK COMPUTER INCORPORATION -> ASUSTeK COMPUTER INC.)
S2 asus; C:Program Files (x86)ASUSUpdateAsusUpdate.exe [168520 2021-12-20] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsusAppService; C:WindowsSystem32DriverStoreFileRepositoryasussci2.inf_amd64_74be8ed024c977b8AsusAppServiceAsusAppService.exe [364688 2021-08-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSLinkNear; C:WindowsSystem32DriverStoreFileRepositoryasussci2.inf_amd64_74be8ed024c977b8ASUSLinkNearAsusLinkNear.exe [1307792 2021-08-19] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
R2 ASUSLinkRemote; C:WindowsSystem32DriverStoreFileRepositoryasussci2.inf_amd64_74be8ed024c977b8ASUSLinkRemoteAsusLinkRemote.exe [753808 2021-08-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​)
S3 asusm; C:Program Files (x86)ASUSUpdateAsusUpdate.exe [168520 2021-12-20] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 ASUSOptimization; C:WindowsSystem32DriverStoreFileRepositoryasussci2.inf_amd64_74be8ed024c977b8ASUSOptimizationAsusOptimization.exe [334464 2021-08-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSoftwareManager; C:WindowsSystem32DriverStoreFileRepositoryasussci2.inf_amd64_74be8ed024c977b8ASUSSoftwareManagerAsusSoftwareManager.exe [1012872 2021-08-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:WindowsSystem32DriverStoreFileRepositoryasussci2.inf_amd64_74be8ed024c977b8ASUSSystemAnalysisAsusSystemAnalysis.exe [2553472 2021-08-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
S2 ASUSSystemDiagnosis; C:WindowsSystem32DriverStoreFileRepositoryasussci2.inf_amd64_74be8ed024c977b8ASUSSystemDiagnosisAsusSystemDiagnosis.exe [612760 2021-08-19] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.)
S3 aswbIDSAgent; C:Program FilesAvast SoftwareAvastaswidsagent.exe [8480848 2021-12-29] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:Program FilesAvast SoftwareAvastAvastSvc.exe [452888 2021-12-29] (Avast Software s.r.o. -> AVAST Software)
S3 avast! Firewall; C:Program FilesAvast SoftwareAvastafwServ.exe [1720088 2021-12-29] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:Program FilesAvast SoftwareAvastaswToolsSvc.exe [452888 2021-12-29] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:Program FilesAvast SoftwareAvastwsc_proxy.exe [56912 2021-12-29] (Avast Software s.r.o. -> AVAST Software)
R2 AVP21.3; C:Program Files (x86)Kaspersky LabKaspersky Total Security 21.3avp.exe [184768 2021-12-29] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 CleanupPSvc; C:Program FilesAvast SoftwareCleanupTuneupSvc.exe [13745432 2021-12-29] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeClickToRun.exe [8853384 2020-10-05] (Microsoft Corporation -> Microsoft Corporation)
R2 DriverUpdSvc; C:Program FilesAvast SoftwareDriver UpdaterDriverUpdSvc.exe [7204632 2021-12-29] (Avast Software s.r.o. -> AVAST Software)
S2 DtsApo4Service; C:WindowsSystem32DTSPCAPO4xDtsApo4Service.exe [201376 2020-10-19] (DTS, Inc. -> DTS Inc.)
S3 klvssbridge64_21.3; C:Program Files (x86)Kaspersky LabKaspersky Total Security 21.3x64vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 kpm_launch_service; C:Program Files (x86)Kaspersky LabKaspersky Password Manager 9.0.2kpm_service.exe [375440 2021-12-02] (AO Kaspersky Lab -> AO Kaspersky Lab)
R2 KSDE5.3; C:Program Files (x86)Kaspersky LabKaspersky VPN 5.3ksde.exe [447104 2021-12-29] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S2 LightingService; C:Program Files (x86)LightingServiceLightingService.exe [2999296 2020-10-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
S3 MicrosoftEdgeBetaElevationService; C:Program Files (x86)MicrosoftEdge BetaApplication84.0.522.20elevation_service.exe [1580424 2020-06-13] (Microsoft Corporation -> Microsoft Corporation)
S2 OpusDiskAdmin; C:Windowssystem32OpusDiskAdmin.exe [97280 2020-04-03] (Prism Media Products Ltd.) [File not signed]
S2 RefreshRateService; C:Program Files (x86)ASUSTeK COMPUTER INCRefreshRateServiceRefreshRateService.exe [37856 2020-09-04] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R2 ROG Live Service; C:Program Files (x86)ASUSROG Live ServiceROGLiveService.exe [2718208 2020-10-21] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 SecureLine; C:Program FilesAvast SoftwareSecureLine VPNVpnSvc.exe [9210136 2021-12-29] (Avast Software s.r.o. -> AVAST Software)
S3 WdNisSvc; C:ProgramDataMicrosoftWindows Defenderplatform4.18.2111.5-0NisSrv.exe [2876152 2021-12-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:ProgramDataMicrosoftWindows Defenderplatform4.18.2111.5-0MsMpEng.exe [128360 2021-12-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:WindowsSystem32DriverStoreFileRepositorynvami.inf_amd64_39f6d2586ed0b7d9Display.NvContainerNVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%NVIDIANVDisplay.ContainerLocalSystem.log -l 3 -d C:WindowsSystem32DriverStoreFileRepositorynvami.inf_amd64_39f6d2586ed0b7d9Display.NvContainerpluginsLocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystemLocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdfendrmgr; C:WindowsSystem32driversamdfendrmgr.sys [41376 2021-07-30] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 amdwddmg; C:WindowsSystem32DriverStoreFileRepositoryu0370851.inf_amd64_93dde4c6b9b1ebddB371190amdkmdag.sys [80463176 2021-09-06] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AsusPTPDrv; C:WindowsSystem32driversAsusPTPFilter.sys [115176 2021-07-08] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
S3 ASUSSAIO; C:WindowsSystem32DriverStoreFileRepositoryasussci2.inf_amd64_74be8ed024c977b8ASUSSystemAnalysisASUSSAIO.sys [35968 2021-08-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
S3 aswArPot; C:WindowsSystem32driversaswArPot.sys [223176 2021-12-29] (Avast Software s.r.o. -> AVAST Software)
S3 aswbidsdriver; C:WindowsSystem32driversaswbidsdriver.sys [369216 2021-12-29] (Avast Software s.r.o. -> AVAST Software)
S3 aswbidsh; C:WindowsSystem32driversaswbidsh.sys [252992 2021-12-29] (Avast Software s.r.o. -> AVAST Software)
S3 aswbuniv; C:WindowsSystem32driversaswbuniv.sys [100416 2021-12-29] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:WindowsSystem32driversaswElam.sys [21936 2021-12-29] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
S3 aswKbd; C:WindowsSystem32driversaswKbd.sys [42416 2021-12-29] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:WindowsSystem32driversaswMonFlt.sys [186280 2021-12-29] (Avast Software s.r.o. -> AVAST Software)
S3 aswNetHub; C:WindowsSystem32driversaswNetHub.sys [540056 2021-12-29] (Avast Software s.r.o. -> AVAST Software)
S3 aswRdr; C:WindowsSystem32driversaswRdr2.sys [108912 2021-12-29] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:WindowsSystem32driversaswRvrt.sys [83976 2021-12-29] (Avast Software s.r.o. -> AVAST Software)
S3 aswSnx; C:WindowsSystem32driversaswSnx.sys [853800 2021-12-29] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:WindowsSystem32driversaswSP.sys [545176 2021-12-29] (Avast Software s.r.o. -> AVAST Software)
S3 aswStm; C:WindowsSystem32driversaswStm.sys [215432 2021-12-29] (Avast Software s.r.o. -> AVAST Software)
S3 aswVmm; C:WindowsSystem32driversaswVmm.sys [318760 2021-12-29] (Avast Software s.r.o. -> AVAST Software)
S3 aswVpnRdr; C:WindowsSystem32driversaswVpnRdr.sys [56960 2021-12-29] (Avast Software s.r.o. -> Avast Software)
R1 ATKWMIACPIIO; C:WindowsSystem32DriverStoreFileRepositoryasussci2.inf_amd64_74be8ed024c977b8ASUSOptimizationatkwmiacpi64.sys [44200 2021-08-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R0 cm_km; C:WindowsSystem32DRIVERScm_km.sys [250032 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 HIDSwitch; C:WindowsSystem32driversAsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R1 klbackupdisk; C:Windowssystem32DRIVERSklbackupdisk.sys [110336 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klbackupflt; C:WindowsSystem32DRIVERSklbackupflt.sys [211704 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kldisk; C:Windowssystem32DRIVERSkldisk.sys [126216 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S0 klelam; C:WindowsSystem32DRIVERSklelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R1 klflt; C:Windowssystem32DRIVERSklflt.sys [514840 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klgse; C:WindowsSystem32DRIVERSklgse.sys [689976 2021-11-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klhk; C:Windowssystem32DRIVERSklhk.sys [1507648 2021-11-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klids; C:ProgramDataKaspersky LabAVP21.3Basesklids.sys [272168 2021-12-29] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 KLIF; C:WindowsSystem32DRIVERSklif.sys [1042712 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klim6; C:Windowssystem32DRIVERSklim6.sys [98040 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klkbdflt; C:Windowssystem32DRIVERSklkbdflt.sys [112392 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klmouflt; C:Windowssystem32DRIVERSklmouflt.sys [112904 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpd; C:WindowsSystem32DRIVERSklpd.sys [85256 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpnpflt; C:Windowssystem32DRIVERSklpnpflt.sys [96008 2021-12-29] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 kltap; C:WindowsSystem32driverskltap.sys [55592 2021-02-19] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:WindowsSystem32Driversklupd_klif_arkmon.sys [276064 2021-12-29] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:WindowsSystem32Driversklupd_klif_klark.sys [314040 2021-12-29] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:WindowsSystem32Driversklupd_klif_klbg.sys [113976 2021-12-29] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:WindowsSystem32Driversklupd_klif_mark.sys [225648 2021-12-29] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwfp; C:Windowssystem32DRIVERSklwfp.sys [155912 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwtp; C:Windowssystem32DRIVERSklwtp.sys [327936 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kneps; C:Windowssystem32DRIVERSkneps.sys [300808 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 MidOF; C:Windowssystem32DRIVERSmidofw_W10_X64.sys [70656 2021-12-29] (Prism Media Products Ltd -> )
S3 npf; C:UsersisahaAppDataLocalTempHouseCalltmasenmapnpfx64npf.sys [36600 2014-08-19] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) <==== ATTENTION
R3 OADrv; C:Windowssystem32DRIVERSoadrvw_W10_X64.sys [189952 2021-12-29] (Prism Media Products Ltd -> )
R3 OFADrv; C:Windowssystem32DRIVERSofadrvw_W10_X64.sys [73728 2021-12-29] (Prism Media Products Ltd -> )
R3 OFileDrv; C:Windowssystem32DRIVERSofiledrvw_W10_X64.sys [189440 2021-12-29] (Prism Media Products Ltd -> )
R3 OpusSync; C:Windowssystem32DRIVERSopussyncw_W10_X64.sys [94208 2021-12-29] (Prism Media Products Ltd -> )
R3 OpusSys; C:Windowssystem32DRIVERSopussysw_W10_X64.sys [86016 2021-12-29] (Prism Media Products Ltd -> )
R3 SadieNativeLib; C:Windowssystem32DRIVERSSadieNativeLibw_W10_X64.sys [108544 2021-12-29] (Prism Media Products Ltd -> )
R3 SadieUsbLib; C:Windowssystem32DRIVERSSadieUsbLibw_W10_X64.sys [267264 2021-12-29] (Prism Media Products Ltd -> )
S0 WdBoot; C:WindowsSystem32driverswdWdBoot.sys [48536 2021-12-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:WindowsSystem32driverswdWdFilter.sys [435432 2021-12-29] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:WindowsSystem32driverswdWdNisDrv.sys [86248 2021-12-29] (Microsoft Windows -> Microsoft Corporation)
R2 WIBUKEY; C:WindowsSystem32DRIVERSWibuKey64.sys [106760 2015-07-21] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
R3 Wibukey2_64; C:Windowssystem32driverswibukey2_64.sys [22320 2015-07-21] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
U3 aswbdisk; no ImagePath
S3 MpKsl9df65ebd; ??C:ProgramDataMicrosoftWindows DefenderDefinition Updates{ABBA2D82-404A-4749-B52D-ADA42DA2D222}MpKslDrv.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-12-31 16:03 – 2021-12-31 16:04 – 000032494 _____ C:UsersisahaDesktopFRST.txt
2021-12-31 16:03 – 2021-12-31 16:04 – 000000000 ____D C:FRST
2021-12-31 16:03 – 2021-12-31 16:02 – 002311168 _____ (Farbar) C:UsersisahaDesktopFRST64.exe
2021-12-31 16:02 – 2021-12-31 16:02 – 002311168 _____ (Farbar) C:UsersisahaDownloadsFRST64(1).exe
2021-12-31 16:01 – 2021-12-31 16:02 – 002311168 _____ (Farbar) C:UsersisahaDownloadsFRST64.exe
2021-12-31 11:53 – 2021-12-31 11:53 – 000000000 ____D C:Program FilesMalwarebytes
2021-12-31 11:51 – 2021-12-31 11:51 – 008540344 _____ (Malwarebytes) C:UsersisahaDownloadsAdwCleaner.exe
2021-12-31 11:51 – 2021-12-31 11:51 – 000000000 ____D C:AdwCleaner
2021-12-31 11:49 – 2021-12-31 11:49 – 005659583 _____ (Swearware) C:UsersisahaDownloadsComboFix.exe
2021-12-31 11:44 – 2021-12-31 11:44 – 089915392 _____ C:Windowssystem32configSOFTWARE
2021-12-31 11:40 – 2021-12-31 11:54 – 000001870 _____ C:UsersisahaDesktopRkill.txt
2021-12-31 11:39 – 2021-12-31 11:39 – 001802704 _____ (Bleeping Computer, LLC) C:UsersisahaDownloadsrkill.exe
2021-12-31 11:24 – 2021-12-31 11:24 – 001094482 _____ C:UsersisahaDownloadsimage0.jpeg
2021-12-31 11:09 – 2021-12-31 11:09 – 000000000 ____D C:Windowssystem32TasksMozilla
2021-12-31 11:08 – 2021-12-31 11:08 – 000333848 _____ (Mozilla) C:UsersisahaDownloadsFirefox Installer(1).exe
2021-12-30 15:13 – 2021-12-30 15:13 – 000000253 _____ C:UsersisahaDocumentssuperuser.txt
2021-12-30 15:13 – 2021-12-30 15:13 – 000000253 _____ C:UsersisahaDocumentssuperuser.reg
2021-12-30 12:07 – 2021-12-30 12:07 – 000081115 _____ C:UsersisahaDesktopJS blocked.txt
2021-12-30 09:31 – 2021-12-30 09:31 – 000061304 _____ () C:Windowssystem32Driverslpsport.sys
2021-12-30 09:29 – 2021-12-30 09:30 – 000000000 ____D C:WindowsMinidump
2021-12-30 09:29 – 2021-12-30 09:29 – 2116630550 _____ C:WindowsMEMORY.DMP
2021-12-30 09:29 – 2021-12-30 09:29 – 003404204 _____ C:WindowsMinidump123021-11140-01.dmp
2021-12-30 09:28 – 2021-12-31 11:11 – 000000000 ____D C:UsersisahaAppDataLocalCrashDumps
2021-12-30 09:25 – 2021-12-30 09:25 – 000000000 ____D C:UsersisahaAppDataLocalmbam
2021-12-30 09:17 – 2021-12-30 15:36 – 000000000 ____D C:Program Files (x86)Trend Micro
2021-12-30 09:17 – 2021-12-30 09:43 – 000000000 ____D C:UsersisahaAppDataLocalTrend Micro
2021-12-30 09:17 – 2021-12-30 09:17 – 000928858 _____ C:UsersisahaAppDataLocalcensus.cache
2021-12-30 09:17 – 2021-12-30 09:17 – 000388275 _____ C:UsersisahaAppDataLocalars.cache
2021-12-30 09:15 – 2021-12-30 09:15 – 002910904 _____ (Malwarebytes) C:UsersisahaDownloadsMBSetup.exe
2021-12-30 09:13 – 2021-12-30 09:13 – 000000010 _____ C:UsersisahaAppDataLocalsponge.last.runtime.cache
2021-12-30 09:11 – 2021-12-30 09:43 – 000000000 ____D C:ProgramDataTrend Micro
2021-12-30 09:11 – 2021-12-30 09:11 – 000000000 ____D C:WindowsTrend Micro
2021-12-30 09:10 – 2021-12-30 09:10 – 003333936 _____ (Trend Micro Inc.) C:UsersisahaDownloadsHousecallLauncher64.exe
2021-12-30 09:10 – 2021-12-30 09:10 – 000608896 _____ (Trend Micro Inc.) C:UsersisahaDownloadsHouseCallforHomeNetworks.exe
2021-12-30 09:10 – 2021-12-30 09:10 – 000000036 _____ C:UsersisahaAppDataLocalhousecall.guid.cache
2021-12-30 09:00 – 2021-12-30 09:01 – 000000000 ____D C:UsersisahaDownloadsRealtek_Audio_6.0.9152.1_LogoDCH_20H1_2105120
2021-12-30 09:00 – 2021-12-30 09:00 – 027543884 _____ C:UsersisahaDownloadsRealtek_Audio_6.0.9152.1_LogoDCH_20H1_2105120.zip
2021-12-30 08:49 – 2021-12-30 08:49 – 000000000 ____D C:WindowsFirmware
2021-12-30 08:48 – 2021-12-30 08:48 – 007143240 _____ (ASUSTeK COMPUTER INC. ) C:UsersisahaDownloadsASUS_FA706IU_316_BIOS_Update.exe
2021-12-30 08:28 – 2021-12-29 15:58 – 000340248 _____ (AVAST Software) C:Windowssystem32aswBoot.exe
2021-12-30 08:24 – 2021-12-30 08:24 – 000000000 ____D C:ProgramDataFLEXnet
2021-12-29 23:28 – 2021-12-31 11:51 – 000795738 _____ C:Windowssystem32PerfStringBackup.INI
2021-12-29 23:23 – 2021-12-31 16:05 – 000003752 _____ C:Windowssystem32TasksAsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2021-12-29 23:22 – 2021-12-29 23:22 – 000000000 _SHDL C:UsersDefault User
2021-12-29 23:22 – 2021-12-29 23:22 – 000000000 _SHDL C:UsersAll Users
2021-12-29 23:22 – 2021-12-29 23:22 – 000000000 _SHDL C:Documents and Settings
2021-12-29 23:14 – 2021-12-29 23:14 – 000000000 ____D C:Windowssystem32configbbimigrate
2021-12-29 23:13 – 2021-12-29 23:13 – 000000000 ____D C:eSupport
2021-12-29 23:11 – 2021-12-31 16:01 – 000000000 ____D C:ProgramDataNVIDIA
2021-12-29 23:11 – 2021-12-31 11:44 – 000000006 ____H C:WindowsTasksSA.DAT
2021-12-29 23:11 – 2021-12-30 15:25 – 000000000 ____D C:ProgramDataASUS
2021-12-29 23:11 – 2021-12-29 23:21 – 000004122 _____ C:Windowssystem32TasksASUS Update Checker 2.0
2021-12-29 23:11 – 2021-12-29 23:19 – 000000000 ____D C:ProgramDataRealtek
2021-12-29 23:11 – 2021-12-29 23:11 – 000003764 _____ C:Windowssystem32TasksASUS Optimization 36D18D69AFC3
2021-12-29 23:11 – 2021-12-29 23:11 – 000003366 _____ C:Windowssystem32TasksRtkAudUService64_BG
2021-12-29 23:11 – 2021-12-29 23:11 – 000000000 ____D C:Windowssystem32lxss
2021-12-29 23:11 – 2021-12-29 23:11 – 000000000 ____D C:Windowssystem32DTS
2021-12-29 23:11 – 2021-12-29 23:11 – 000000000 ____D C:Windowssystem32DriversNVIDIA Corporation
2021-12-29 23:11 – 2021-12-29 23:11 – 000000000 ____D C:Program FilesAMD
2021-12-29 23:11 – 2021-12-29 22:37 – 000000000 ____D C:ProgramDataNVIDIA Corporation
2021-12-29 23:11 – 2021-12-29 20:31 – 000000000 ____D C:Windowssystem32Driverswd
2021-12-29 23:11 – 2021-12-29 15:41 – 000002440 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Edge.lnk
2021-12-29 23:11 – 2021-12-29 15:41 – 000002278 _____ C:UsersPublicDesktopMicrosoft Edge.lnk
2021-12-29 23:11 – 2021-12-29 15:41 – 000002278 _____ C:ProgramDataDesktopMicrosoft Edge.lnk
2021-12-29 23:11 – 2021-12-29 15:40 – 000003480 _____ C:Windowssystem32TasksMicrosoftEdgeUpdateTaskMachineUA
2021-12-29 23:11 – 2021-12-29 15:40 – 000003356 _____ C:Windowssystem32TasksMicrosoftEdgeUpdateTaskMachineCore
2021-12-29 23:10 – 2021-12-31 11:44 – 000008192 ___SH C:DumpStack.log.tmp
2021-12-29 23:10 – 2021-12-30 09:29 – 000000000 ____D C:Windowssystem32SleepStudy
2021-12-29 23:10 – 2021-12-29 23:11 – 000000000 ____D C:Windowssystem32AMD
2021-12-29 23:10 – 2021-12-29 23:10 – 000000000 ____D C:WindowsServiceProfiles
2021-12-29 23:10 – 2021-12-29 15:54 – 000437136 _____ C:Windowssystem32FNTCACHE.DAT
2021-12-29 23:04 – 2021-12-29 23:00 – 088473620 _____ C:UsersisahaDownloadsRT-AX86U_386.3_2_cferom_pureubi.w
2021-12-29 23:04 – 2021-12-29 23:00 – 000000100 _____ C:UsersisahaDownloadssha256sum.sha256
2021-12-29 23:00 – 2021-12-29 23:00 – 000000000 ____D C:UsersisahaDownloadsRT-AX86U_386.3_2
2021-12-29 22:58 – 2021-12-29 23:00 – 078761106 _____ C:UsersisahaDownloadsRT-AX86U_386.3_2.zip
2021-12-29 20:34 – 2021-12-31 11:44 – 000000000 ____D C:WindowsMicrosoft Antimalware
2021-12-29 20:28 – 2021-12-29 20:28 – 000000000 ____D C:UsersisahaDocumentsSadie
2021-12-29 20:27 – 2021-12-29 20:27 – 000000000 ____D C:UsersisahaDocumentsStudio Audio & Video
2021-12-29 20:27 – 2021-12-29 20:27 – 000000000 ____D C:UsersisahaAppDataRoamingStudio Audio & Video
2021-12-29 20:22 – 2021-12-29 20:22 – 000000000 ____D C:Program Files (x86)WindowsInstallationAssistant
2021-12-29 20:01 – 2021-12-29 19:58 – 088604692 _____ C:UsersisahaDownloadsFW_RT_AX86U_300438645934.w
2021-12-29 19:58 – 2021-12-29 19:58 – 000000000 ____D C:UsersisahaDownloadsFW_RT_AX86U_300438645934
2021-12-29 19:56 – 2021-12-29 19:57 – 078948445 _____ C:UsersisahaDownloadsFW_RT_AX86U_300438645934.zip
2021-12-29 19:50 – 2021-12-29 20:32 – 000000000 ____D C:UsersisahaAppDataRoamingFileZilla
2021-12-29 19:50 – 2021-12-29 19:52 – 000000000 ____D C:UsersisahaAppDataLocalFileZilla
2021-12-29 19:50 – 2021-12-29 19:50 – 000001929 _____ C:UsersisahaDesktopFileZilla Client.lnk
2021-12-29 19:50 – 2021-12-29 19:50 – 000000000 ____D C:UsersisahaAppDataRoamingMicrosoftWindowsStart MenuProgramsFileZilla FTP Client
2021-12-29 19:50 – 2021-12-29 19:50 – 000000000 ____D C:Program FilesFileZilla FTP Client
2021-12-29 19:49 – 2021-12-29 19:49 – 011800816 _____ (Tim Kosse) C:UsersisahaDownloadsFileZilla_3.57.0_win64_sponsored-setup.exe
2021-12-29 19:37 – 2021-12-29 20:27 – 000000000 ____D C:UsersisahaDesktopsadie
2021-12-29 19:37 – 2021-12-28 15:16 – 010695360 _____ C:UsersisahaDesktop1439 Something to Hide.APJ
2021-12-29 19:36 – 2021-12-29 19:36 – 000001887 _____ C:UsersPublicDesktopSADiE6.lnk
2021-12-29 19:36 – 2021-12-29 19:36 – 000001887 _____ C:ProgramDataDesktopSADiE6.lnk
2021-12-29 19:36 – 2021-12-29 19:36 – 000000000 ____D C:ProgramDataStudio Audio & Video
2021-12-29 19:36 – 2021-12-29 19:36 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsSADiE
2021-12-29 19:36 – 2021-12-29 19:36 – 000000000 ____D C:Program FilesWIBU-SYSTEMS
2021-12-29 19:36 – 2021-12-29 19:36 – 000000000 ____D C:Program FilesSADiE
2021-12-29 19:36 – 2021-12-29 19:36 – 000000000 ____D C:Program FilesCommon FilesMacrovision Shared
2021-12-29 19:36 – 2021-12-29 19:36 – 000000000 ____D C:Program Files (x86)WIBU-SYSTEMS
2021-12-29 19:36 – 2021-12-29 19:36 – 000000000 ____D C:Program Files (x86)WIBUKEY
2021-12-29 19:36 – 2015-07-21 10:26 – 000106760 _____ (WIBU-SYSTEMS AG) C:Windowssystem32DriversWibuKey64.sys
2021-12-29 19:36 – 2015-07-21 10:26 – 000022320 _____ (WIBU-SYSTEMS AG) C:Windowssystem32DriversWibukey2_64.sys
2021-12-29 19:36 – 2015-07-21 05:32 – 001322016 _____ (WIBU-SYSTEMS AG) C:Windowssystem32WibuXpm4J64.dll
2021-12-29 19:36 – 2015-07-21 05:32 – 001039392 _____ (WIBU-SYSTEMS AG) C:WindowsSysWOW64WibuXpm4J32.dll
2021-12-29 19:36 – 2015-07-21 05:32 – 000592448 _____ (WIBU-SYSTEMS AG) C:Windowssystem32wibuKJni64.dll
2021-12-29 19:36 – 2015-07-21 05:32 – 000483904 _____ (WIBU-SYSTEMS AG) C:WindowsSysWOW64wibuKJni.dll
2021-12-29 19:36 – 2015-07-21 05:32 – 000416800 _____ (WIBU-SYSTEMS AG) C:Windowssystem32WkExt64.dll
2021-12-29 19:36 – 2015-07-21 05:32 – 000350240 _____ (WIBU-SYSTEMS AG) C:WindowsSysWOW64WkExt32.dll
2021-12-29 19:36 – 2014-04-30 14:42 – 000175496 _____ (WIBU-SYSTEMS AG) C:WindowsSysWOW64WkWin64.dll
2021-12-29 19:36 – 2014-04-30 14:42 – 000175496 _____ (WIBU-SYSTEMS AG) C:Windowssystem32WkWin64.dll
2021-12-29 19:36 – 2014-04-30 14:42 – 000156040 _____ (WIBU-SYSTEMS AG) C:WindowsSysWOW64WkWin32.dll
2021-12-29 19:35 – 2021-12-29 19:35 – 000000000 ____H C:Windowssystem32DriversMsft_User_WpdFs_01_11_00.Wdf
2021-12-29 19:29 – 2021-12-29 19:29 – 000000000 ____D C:UsersisahaAppDataLocalOneDrive
2021-12-29 16:07 – 2021-12-29 16:07 – 000000000 ____D C:UsersisahaAppDataLocalKaspersky Lab
2021-12-29 16:07 – 2021-12-29 16:07 – 000000000 ____D C:UsersisahaAppDataLocalComms
2021-12-29 15:59 – 2021-12-29 15:59 – 000000000 ____D C:UsersisahaAppDataLocalASUS
2021-12-29 15:58 – 2021-12-31 11:53 – 000004028 _____ C:Windowssystem32TasksAvast SecureLine VPN Update
2021-12-29 15:58 – 2021-12-31 09:16 – 000004264 _____ C:Windowssystem32TasksAvast Emergency Update
2021-12-29 15:58 – 2021-12-30 08:28 – 000001946 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsAvast One.lnk
2021-12-29 15:58 – 2021-12-30 08:28 – 000001934 _____ C:UsersPublicDesktopAvast One.lnk
2021-12-29 15:58 – 2021-12-30 08:28 – 000001934 _____ C:ProgramDataDesktopAvast One.lnk
2021-12-29 15:58 – 2021-12-29 20:00 – 000000000 ____D C:UsersisahaAppDataLocalAvast Software
2021-12-29 15:58 – 2021-12-29 15:58 – 000853800 _____ (AVAST Software) C:Windowssystem32DriversaswSnx.sys
2021-12-29 15:58 – 2021-12-29 15:58 – 000545176 _____ (AVAST Software) C:Windowssystem32DriversaswSP.sys
2021-12-29 15:58 – 2021-12-29 15:58 – 000540056 _____ (AVAST Software) C:Windowssystem32DriversaswNetHub.sys
2021-12-29 15:58 – 2021-12-29 15:58 – 000369216 _____ (AVAST Software) C:Windowssystem32Driversaswbidsdriver.sys
2021-12-29 15:58 – 2021-12-29 15:58 – 000318760 _____ (AVAST Software) C:Windowssystem32DriversaswVmm.sys
2021-12-29 15:58 – 2021-12-29 15:58 – 000252992 _____ (AVAST Software) C:Windowssystem32Driversaswbidsh.sys
2021-12-29 15:58 – 2021-12-29 15:58 – 000223176 _____ (AVAST Software) C:Windowssystem32DriversaswArPot.sys
2021-12-29 15:58 – 2021-12-29 15:58 – 000215432 _____ (AVAST Software) C:Windowssystem32DriversaswStm.sys
2021-12-29 15:58 – 2021-12-29 15:58 – 000186280 _____ (AVAST Software) C:Windowssystem32DriversaswMonFlt.sys
2021-12-29 15:58 – 2021-12-29 15:58 – 000108912 _____ (AVAST Software) C:Windowssystem32DriversaswRdr2.sys
2021-12-29 15:58 – 2021-12-29 15:58 – 000100416 _____ (AVAST Software) C:Windowssystem32Driversaswbuniv.sys
2021-12-29 15:58 – 2021-12-29 15:58 – 000083976 _____ (AVAST Software) C:Windowssystem32DriversaswRvrt.sys
2021-12-29 15:58 – 2021-12-29 15:58 – 000056960 _____ (Avast Software) C:Windowssystem32DriversaswVpnRdr.sys
2021-12-29 15:58 – 2021-12-29 15:58 – 000042416 _____ (AVAST Software) C:Windowssystem32DriversaswKbd.sys
2021-12-29 15:58 – 2021-12-29 15:58 – 000036120 _____ (Avast Software) C:Windowssystem32icarus_rvrt.exe
2021-12-29 15:58 – 2021-12-29 15:58 – 000021936 _____ (AVAST Software) C:Windowssystem32DriversaswElam.sys
2021-12-29 15:58 – 2021-12-29 15:58 – 000000000 ____D C:Windowssystem32TasksAvast Software
2021-12-29 15:58 – 2021-12-29 15:58 – 000000000 ____D C:Windowssystem32gf2engine
2021-12-29 15:58 – 2021-12-29 15:58 – 000000000 ____D C:UsersisahaAppDataRoamingAvast Software
2021-12-29 15:58 – 2021-12-29 15:58 – 000000000 ____D C:UsersisahaAppDataLocalCEF
2021-12-29 15:58 – 2021-12-29 15:58 – 000000000 ____D C:Program FilesCommon FilesAvast Software
2021-12-29 15:58 – 2021-12-29 15:58 – 000000000 ____D C:Program FilesAvast Software
2021-12-29 15:57 – 2021-12-31 11:44 – 000000000 ____D C:ProgramDataAvast Software
2021-12-29 15:57 – 2021-12-29 15:57 – 000234272 _____ (AVAST Software) C:UsersisahaDownloadsavast_one_setup_online.exe
2021-12-29 15:55 – 2021-12-29 15:55 – 000314040 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklupd_klif_klark.sys
2021-12-29 15:55 – 2021-12-29 15:55 – 000276064 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklupd_klif_arkmon.sys
2021-12-29 15:55 – 2021-12-29 15:55 – 000225648 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklupd_klif_mark.sys
2021-12-29 15:55 – 2021-12-29 15:55 – 000113976 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklupd_klif_klbg.sys
2021-12-29 15:55 – 2021-12-29 15:55 – 000003392 _____ C:Windowssystem32TasksKaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901}
2021-12-29 15:55 – 2021-12-29 15:55 – 000003192 _____ C:Windowssystem32Taskskpm_tray.exe
2021-12-29 15:55 – 2021-12-29 15:55 – 000001229 _____ C:UsersPublicDesktopKaspersky Password Manager.lnk
2021-12-29 15:55 – 2021-12-29 15:55 – 000001229 _____ C:ProgramDataDesktopKaspersky Password Manager.lnk
2021-12-29 15:55 – 2021-12-29 15:55 – 000001157 _____ C:UsersPublicDesktopKaspersky VPN.lnk
2021-12-29 15:55 – 2021-12-29 15:55 – 000001157 _____ C:ProgramDataDesktopKaspersky VPN.lnk
2021-12-29 15:55 – 2021-12-29 15:55 – 000000000 ____D C:UsersDefaultAppDataLocalKaspersky Lab
2021-12-29 15:55 – 2021-12-29 15:55 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsKaspersky VPN
2021-12-29 15:55 – 2021-12-29 15:55 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsKaspersky Password Manager
2021-12-29 15:54 – 2021-12-29 15:57 – 000000000 ____D C:UsersisahaAppDataLocalNVIDIA Corporation
2021-12-29 15:54 – 2021-12-29 15:55 – 000000000 ____D C:ProgramDataKaspersky Lab
2021-12-29 15:54 – 2021-12-29 15:55 – 000000000 ____D C:Program Files (x86)Kaspersky Lab
2021-12-29 15:54 – 2021-12-29 15:54 – 000002172 _____ C:UsersPublicDesktopKaspersky Total Security.lnk
2021-12-29 15:54 – 2021-12-29 15:54 – 000002172 _____ C:ProgramDataDesktopKaspersky Total Security.lnk
2021-12-29 15:54 – 2021-12-29 15:54 – 000000000 ____D C:Windowssystem32TasksASUS
2021-12-29 15:54 – 2021-12-29 15:54 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsKaspersky Total Security
2021-12-29 15:54 – 2021-02-19 21:09 – 000110176 _____ (Kaspersky Lab ZAO) C:Windowssystem32klfphc.dll
2021-12-29 15:54 – 2021-02-19 21:08 – 001042712 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklif.sys
2021-12-29 15:54 – 2021-02-19 21:08 – 000514840 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklflt.sys
2021-12-29 15:48 – 2021-12-29 15:48 – 002758488 _____ (Kaspersky) C:UsersisahaDownloadsstartup.exe
2021-12-29 15:47 – 2021-12-31 15:59 – 000000000 ____D C:ProgramDataMozilla
2021-12-29 15:47 – 2021-12-31 15:58 – 000000000 ____D C:UsersisahaAppDataLocalLowMozilla
2021-12-29 15:47 – 2021-12-31 11:44 – 000000000 ____D C:Program FilesMozilla Firefox
2021-12-29 15:47 – 2021-12-31 11:44 – 000000000 ____D C:Program Files (x86)Mozilla Maintenance Service
2021-12-29 15:47 – 2021-12-31 11:09 – 000001007 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsFirefox.lnk
2021-12-29 15:47 – 2021-12-31 11:09 – 000000995 _____ C:UsersPublicDesktopFirefox.lnk
2021-12-29 15:47 – 2021-12-31 11:09 – 000000995 _____ C:ProgramDataDesktopFirefox.lnk
2021-12-29 15:47 – 2021-12-29 15:47 – 000333848 _____ (Mozilla) C:UsersisahaDownloadsFirefox Installer.exe
2021-12-29 15:47 – 2021-12-29 15:47 – 000000000 ____D C:UsersisahaAppDataRoamingMozilla
2021-12-29 15:47 – 2021-12-29 15:47 – 000000000 ____D C:UsersisahaAppDataLocalMozilla
2021-12-29 15:46 – 2021-12-29 15:46 – 000000000 ____D C:UsersisahaAppDataLocalNVIDIA
2021-12-29 15:45 – 2021-12-31 11:07 – 000003588 _____ C:Windowssystem32TasksOneDrive Reporting Task-S-1-5-21-747036069-1942991826-1659572718-1001
2021-12-29 15:45 – 2021-12-31 11:07 – 000003378 _____ C:Windowssystem32TasksOneDrive Standalone Update Task-S-1-5-21-747036069-1942991826-1659572718-1001
2021-12-29 15:45 – 2021-12-30 12:39 – 000000000 ____D C:UsersisahaAppDataLocalPlaceholderTileLogoFolder
2021-12-29 15:45 – 2021-12-29 15:54 – 000000000 ___RD C:UsersisahaOneDrive
2021-12-29 15:45 – 2021-12-29 15:45 – 000000000 ____D C:ProgramDataMicrosoft OneDrive
2021-12-29 15:44 – 2021-12-29 15:55 – 000000000 ____D C:ProgramDataPackages
2021-12-29 15:44 – 2021-12-29 15:44 – 000000000 ____D C:UsersisahaAppDataLocalPublishers
2021-12-29 15:43 – 2021-12-31 11:41 – 000000000 ____D C:UsersisahaAppDataLocalD3DSCache
2021-12-29 15:43 – 2021-12-30 11:50 – 000000000 ____D C:UsersisahaAppDataLocalPackages
2021-12-29 15:43 – 2021-12-29 15:54 – 000000000 ____D C:UsersisahaAppDataLocalConnectedDevicesPlatform
2021-12-29 15:43 – 2021-12-29 15:43 – 000000000 ___RD C:Usersisaha3D Objects
2021-12-29 15:43 – 2021-12-29 15:43 – 000000000 ____D C:UsersisahaAppDataRoamingAdobe
2021-12-29 15:43 – 2021-12-29 15:43 – 000000000 ____D C:UsersisahaAppDataLocalLowAMD
2021-12-29 15:43 – 2021-12-29 15:43 – 000000000 ____D C:UsersisahaAppDataLocalVirtualStore
2021-12-29 15:43 – 2021-12-29 15:43 – 000000000 ____D C:UsersisahaAppDataLocalAMD
2021-12-29 15:41 – 2021-12-31 11:07 – 000002381 _____ C:UsersisahaAppDataRoamingMicrosoftWindowsStart MenuProgramsOneDrive.lnk
2021-12-29 15:41 – 2021-12-30 12:15 – 000000000 ____D C:Usersisaha
2021-12-29 15:41 – 2021-12-29 15:41 – 000000020 ___SH C:Usersisahantuser.ini
2021-12-29 14:21 – 2021-12-29 23:17 – 000000000 ____D C:WindowsASUS
2021-12-29 12:17 – 2021-12-29 23:26 – 000000000 ____D C:WindowsPanther
2021-12-29 12:13 – 2021-12-29 21:31 – 000000000 ____D C:Windows.old
2021-12-29 12:12 – 2021-12-31 11:44 – 000000000 ____D C:Windowssystem32ASUSACCI
2021-12-29 12:12 – 2021-12-29 12:12 – 000008192 _____ C:Windowssystem32configuserdiff
2021-12-29 12:11 – 2021-12-29 23:27 – 000000000 ____D C:Windowssystem32FxsTmp
2021-12-29 12:11 – 2021-12-29 23:17 – 000000000 ____D C:WindowsSysWOW64winrm
2021-12-29 12:11 – 2021-12-29 23:17 – 000000000 ____D C:WindowsSysWOW64WCN
2021-12-29 12:11 – 2021-12-29 23:17 – 000000000 ____D C:WindowsSysWOW64slmgr
2021-12-29 12:11 – 2021-12-29 23:17 – 000000000 ____D C:WindowsSysWOW64Printing_Admin_Scripts
2021-12-29 12:11 – 2021-12-29 23:17 – 000000000 ____D C:Windowssystem32winrm
2021-12-29 12:11 – 2021-12-29 23:17 – 000000000 ____D C:Windowssystem32WCN
2021-12-29 12:11 – 2021-12-29 23:17 – 000000000 ____D C:Windowssystem32slmgr
2021-12-29 12:11 – 2021-12-29 23:17 – 000000000 ____D C:Windowssystem32Printing_Admin_Scripts
2021-12-29 12:11 – 2021-12-29 23:17 – 000000000 ____D C:WindowsOCR
2021-12-29 12:11 – 2021-12-29 12:11 – 000000000 ____D C:WindowsSysWOW64sysprep
2021-12-29 12:11 – 2021-12-29 12:11 – 000000000 ____D C:WindowsSysWOW64MailContactsCalendarSync
2021-12-29 12:11 – 2021-12-29 12:11 – 000000000 ____D C:WindowsSysWOW64FxsTmp
2021-12-29 12:11 – 2021-12-29 12:11 – 000000000 ____D C:WindowsSysWOW64409
2021-12-29 12:11 – 2021-12-29 12:11 – 000000000 ____D C:Windowssystem32OpenSSH
2021-12-29 12:11 – 2021-12-29 12:11 – 000000000 ____D C:Windowssystem32MailContactsCalendarSync
2021-12-29 12:11 – 2021-12-29 12:11 – 000000000 ____D C:Windowssystem32409
2021-12-29 12:11 – 2021-12-29 12:11 – 000000000 ____D C:WindowsSetup
2021-12-29 12:11 – 2021-12-29 12:11 – 000000000 ____D C:WindowsDigitalLocker
2021-12-29 12:11 – 2021-12-29 12:11 – 000000000 ____D C:Windowsaddins
2021-12-29 12:11 – 2021-12-29 12:11 – 000000000 ____D C:ProgramDatassh
2021-12-29 12:10 – 2021-12-31 11:58 – 000000000 ___HD C:WindowsELAMBKUP
2021-12-29 12:10 – 2021-12-31 11:55 – 000000000 ____D C:ProgramDataregid.1991-06.com.microsoft
2021-12-29 12:10 – 2021-12-31 11:53 – 000000000 ___RD C:Program Files (x86)
2021-12-29 12:10 – 2021-12-30 15:46 – 000000000 ____D C:WindowsPolicyDefinitions
2021-12-29 12:10 – 2021-12-30 11:56 – 000000000 ____D C:WindowsAppReadiness
2021-12-29 12:10 – 2021-12-30 11:50 – 000000000 ___HD C:Program FilesWindowsApps
2021-12-29 12:10 – 2021-12-30 08:46 – 000000000 ____D C:Windowsappcompat
2021-12-29 12:10 – 2021-12-29 23:21 – 000000000 ____D C:ProgramDataUSOPrivate
2021-12-29 12:10 – 2021-12-29 23:17 – 000000000 ___SD C:WindowsSysWOW64F12
2021-12-29 12:10 – 2021-12-29 23:17 – 000000000 ___SD C:WindowsSysWOW64DiagSvcs
2021-12-29 12:10 – 2021-12-29 23:17 – 000000000 ___SD C:Windowssystem32F12
2021-12-29 12:10 – 2021-12-29 23:17 – 000000000 ___SD C:Windowssystem32dsc
2021-12-29 12:10 – 2021-12-29 23:17 – 000000000 ___SD C:Windowssystem32DiagSvcs
2021-12-29 12:10 – 2021-12-29 23:17 – 000000000 ____D C:WindowsSysWOW64oobe
2021-12-29 12:10 – 2021-12-29 23:17 – 000000000 ____D C:WindowsSysWOW64Dism
2021-12-29 12:10 – 2021-12-29 23:17 – 000000000 ____D C:Windowssystem32WinBioPlugIns
2021-12-29 12:10 – 2021-12-29 23:17 – 000000000 ____D C:Windowssystem32SystemResetPlatform
2021-12-29 12:10 – 2021-12-29 23:17 – 000000000 ____D C:Windowssystem32spool
2021-12-29 12:10 – 2021-12-29 23:17 – 000000000 ____D C:Windowssystem32PerceptionSimulation
2021-12-29 12:10 – 2021-12-29 23:17 – 000000000 ____D C:Windowssystem32oobe
2021-12-29 12:10 – 2021-12-29 23:17 – 000000000 ____D C:Windowssystem32Dism
2021-12-29 12:10 – 2021-12-29 23:17 – 000000000 ____D C:WindowsIME
2021-12-29 12:10 – 2021-12-29 23:15 – 000000000 ____D C:Program FilesWindows Photo Viewer
2021-12-29 12:10 – 2021-12-29 23:15 – 000000000 ____D C:Program Files (x86)Windows Photo Viewer
2021-12-29 12:10 – 2021-12-29 23:14 – 000000000 ____D C:Program FilesCommon FilesSystem
2021-12-29 12:10 – 2021-12-29 23:14 – 000000000 ____D C:Program FilesCommon Filesmicrosoft shared
2021-12-29 12:10 – 2021-12-29 23:10 – 000000000 ____D C:Windowssystem32configTxR
2021-12-29 12:10 – 2021-12-29 22:50 – 000000000 ____D C:Windowssystem32NDF
2021-12-29 12:10 – 2021-12-29 20:31 – 000000000 ____D C:Program FilesWindows Defender
2021-12-29 12:10 – 2021-12-29 15:54 – 000000000 ___RD C:WindowsPrintDialog
2021-12-29 12:10 – 2021-12-29 15:54 – 000000000 ____D C:WindowsServiceState
2021-12-29 12:10 – 2021-12-29 15:43 – 000000000 ___RD C:WindowsImmersiveControlPanel
2021-12-29 12:10 – 2021-12-29 15:41 – 000000000 ____D C:Windowssystem32WinBioDatabase
2021-12-29 12:10 – 2021-12-29 14:21 – 000028672 _____ C:Windowssystem32configBCD-Template
2021-12-29 12:10 – 2021-12-29 12:11 – 000000000 ____D C:WindowsSysWOW64setup
2021-12-29 12:10 – 2021-12-29 12:11 – 000000000 ____D C:WindowsSysWOW64MUI
2021-12-29 12:10 – 2021-12-29 12:11 – 000000000 ____D C:WindowsSysWOW64Com
2021-12-29 12:10 – 2021-12-29 12:11 – 000000000 ____D C:WindowsSystemResources
2021-12-29 12:10 – 2021-12-29 12:11 – 000000000 ____D C:Windowssystem32Sysprep
2021-12-29 12:10 – 2021-12-29 12:11 – 000000000 ____D C:Windowssystem32setup
2021-12-29 12:10 – 2021-12-29 12:11 – 000000000 ____D C:Windowssystem32MUI
2021-12-29 12:10 – 2021-12-29 12:11 – 000000000 ____D C:Windowssystem32migwiz
2021-12-29 12:10 – 2021-12-29 12:11 – 000000000 ____D C:Windowssystem32Com
2021-12-29 12:10 – 2021-12-29 12:11 – 000000000 ____D C:WindowsHelp
2021-12-29 12:10 – 2021-12-29 12:11 – 000000000 ____D C:Program FilesWindows NT
2021-12-29 12:10 – 2021-12-29 12:11 – 000000000 ____D C:Program Files (x86)Windows NT
2021-12-29 12:10 – 2021-12-29 12:11 – 000000000 ____D C:Program Files (x86)Windows Defender
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 __SHD C:Program FilesWindows Sidebar
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 __SHD C:Program Files (x86)Windows Sidebar
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 __RSD C:WindowsMedia
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 __RHD C:UsersPublicLibraries
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ___SD C:WindowsSysWOW64Nui
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ___SD C:WindowsSysWOW64Configuration
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ___SD C:Windowssystem32UNP
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ___SD C:Windowssystem32Nui
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ___SD C:Windowssystem32Configuration
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ___SD C:WindowsDownloaded Program Files
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ___RD C:WindowsOffline Web Pages
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ___HD C:WindowsLanguageOverlayCache
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsWeb
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsWaaS
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsVss
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowstracing
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsTAPI
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsSysWOW64WinMetadata
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsSysWOW64SMI
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsSysWOW64ras
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsSysWOW64PerceptionSimulation
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsSysWOW64NDF
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsSysWOW64Msdtc
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsSysWOW64migwiz
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsSysWOW64Macromed
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsSysWOW64Keywords
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsSysWOW64Ipmi
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsSysWOW64InputMethod
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsSysWOW64inetsrv
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsSysWOW64IME
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsSysWOW64icsxml
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsSysWOW64GroupPolicyUsers
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsSysWOW64GroupPolicy
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsSysWOW64downlevel
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsSysWOW64Bthprops
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsSysWOW64AppLocker
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsSysWOW64AdvancedInstallers
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsSystemApps
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32WinMetadata
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32winevt
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32ti-et
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32ta-lk
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32ta-in
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32si-lk
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32ShellExperiences
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32Sgrm
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32SecureBootUpdates
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32ras
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32ProximityToast
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32PointOfService
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32osa-Osge-001
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32my-mm
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32Macromed
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32Keywords
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32Ipmi
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32InputMethod
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32inetsrv
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32IME
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32icsxml
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32ias
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32Hydrogen
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32ff-Adlm-SN
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32DriverState
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32DriversDriverData
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32downlevel
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32DDFs
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32ContainerSettingsProviders
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32configsystemprofile
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32configRegBack
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32configJournal
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32Bthprops
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32appraiser
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32AppLocker
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32am-et
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32AdvancedInstallers
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsSystem
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsSKB
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsShellExperiences
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsShellComponents
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowssecurity
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowsschemas
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsSchCache
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsResources
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowsrescache
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsRegistration
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsProvisioning
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsPLA
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsPerformance
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsModemLogs
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsLiveKernelReports
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsL2Schemas
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsInputMethod
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsIdentityCRL
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsGlobalization
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsGameBarPresenceWriter
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsDiagTrack
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsCursors
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsContainers
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:WindowsBranding
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Windowsbcastdvr
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:ProgramDataWindowsHolographicDevices
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:ProgramDataUSOShared
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Program FilesWindows Security
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Program FilesWindows Portable Devices
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Program FilesWindows Multimedia Platform
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Program FilesModifiableWindowsApps
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Program FilesCommon FilesServices
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Program Files (x86)Windows Portable Devices
2021-12-29 12:10 – 2021-12-29 12:10 – 000000000 ____D C:Program Files (x86)Windows Multimedia Platform
2021-12-29 12:10 – 2021-12-29 12:09 – 000215943 _____ C:WindowsSysWOW64dssec.dat
2021-12-29 12:10 – 2021-12-29 12:09 – 000215943 _____ C:Windowssystem32dssec.dat
2021-12-29 12:10 – 2021-12-29 12:09 – 000020908 _____ C:Windowssystem32OEMDefaultAssociations.xml
2021-12-29 12:10 – 2021-12-29 12:09 – 000003683 _____ C:Windowssystem32Driversetclmhosts.sam
2021-12-29 12:10 – 2021-12-29 12:09 – 000003103 _____ C:WindowsSysWOW64mmc.exe.config
2021-12-29 12:10 – 2021-12-29 12:09 – 000003103 _____ C:Windowssystem32mmc.exe.config
2021-12-29 12:10 – 2021-12-29 12:09 – 000000858 _____ C:Windowssystem32DefaultQuestions.json
2021-12-29 12:10 – 2021-12-29 12:09 – 000000741 _____ C:WindowsSysWOW64NOISE.DAT
2021-12-29 12:10 – 2021-12-29 12:09 – 000000741 _____ C:Windowssystem32NOISE.DAT
2021-12-29 12:09 – 2021-12-31 11:51 – 000000000 ____D C:WindowsINF
2021-12-29 12:07 – 2021-12-30 15:46 – 000000000 ____D C:WindowsCbsTemp
2021-12-29 12:06 – 2021-12-31 11:44 – 017563648 _____ C:Windowssystem32configSYSTEM
2021-12-29 12:06 – 2021-12-31 11:41 – 000786432 _____ C:Windowssystem32configDEFAULT
2021-12-29 12:06 – 2021-12-31 11:41 – 000524288 _____ C:Windowssystem32configBBI
2021-12-29 12:06 – 2021-12-31 11:41 – 000131072 _____ C:Windowssystem32configSAM
2021-12-29 12:06 – 2021-12-31 11:41 – 000065536 _____ C:Windowssystem32configSECURITY
2021-12-29 12:06 – 2021-12-31 11:41 – 000032768 _____ C:Windowssystem32configELAM
2021-12-29 12:06 – 2021-12-29 23:27 – 000000000 ____D C:Windowsservicing
2021-12-29 12:06 – 2021-12-29 12:10 – 000000000 ____D C:Windowssystem32SMI
2021-12-29 12:02 – 2021-12-29 12:17 – 000000000 ___HD C:$SysReset
2021-12-29 11:18 – 2021-12-29 11:18 – 000267264 _____ C:Windowssystem32DriversSadieUsbLibw_W10_X64.sys
2021-12-29 11:18 – 2021-12-29 11:18 – 000189952 _____ C:Windowssystem32Driversoadrvw_W10_X64.sys
2021-12-29 11:18 – 2021-12-29 11:18 – 000189440 _____ C:Windowssystem32Driversofiledrvw_W10_X64.sys
2021-12-29 11:18 – 2021-12-29 11:18 – 000108544 _____ C:Windowssystem32DriversSadieNativeLibw_W10_X64.sys
2021-12-29 11:18 – 2021-12-29 11:18 – 000094208 _____ C:Windowssystem32Driversopussyncw_W10_X64.sys
2021-12-29 11:18 – 2021-12-29 11:18 – 000086016 _____ C:Windowssystem32Driversopussysw_W10_X64.sys
2021-12-29 11:18 – 2021-12-29 11:18 – 000073728 _____ C:Windowssystem32Driversofadrvw_W10_X64.sys
2021-12-29 11:18 – 2021-12-29 11:18 – 000070656 _____ C:Windowssystem32Driversmidofw_W10_X64.sys
2021-12-26 01:21 – 2021-04-19 22:52 – 000276848 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RTHDASIO64.dll
2021-12-26 01:21 – 2021-04-19 22:52 – 000231280 _____ (Realtek Semiconductor Corp.) C:WindowsSysWOW64RTHDASIO.dll
2021-12-26 01:19 – 2021-04-19 22:52 – 000018816 _____ C:Windowssystem32RtEventLog.dll
2021-12-26 01:19 – 2021-04-19 22:42 – 045530813 _____ C:Windowssystem32DriversRTAIODAT.DAT
2021-12-20 16:46 – 2021-12-29 23:17 – 000000000 ____D C:WindowsOEM
2021-12-20 16:41 – 2021-12-29 23:15 – 000000000 ____D C:ProgramDataMcInstTemp0084121640018486
2021-12-20 16:41 – 2021-12-29 15:55 – 000000000 ____D C:Program FilesCommon FilesAV
2021-12-20 16:41 – 2021-12-29 15:54 – 000000000 ____D C:ProgramDataMcAfee
2021-12-20 16:41 – 2021-12-29 15:54 – 000000000 ____D C:Program FilesCommon FilesMcAfee
2021-12-20 16:39 – 2021-12-30 15:25 – 000000000 ____D C:Program FilesASUS
2021-12-20 16:39 – 2021-12-29 23:23 – 000002359 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Edge Beta.lnk
2021-12-20 16:39 – 2021-12-29 23:15 – 000000000 ____D C:Program Files (x86)LightingService
2021-12-20 16:38 – 2021-12-29 23:15 – 000000000 ___HD C:Program Files (x86)InstallShield Installation Information
2021-12-20 16:38 – 2021-12-29 23:15 – 000000000 ____D C:Program Files (x86)ASUSTeK COMPUTER INC
2021-12-20 16:38 – 2021-12-29 15:54 – 000000000 ____D C:Program Files (x86)ASUS
2021-12-20 16:37 – 2021-12-31 11:58 – 000000000 ____D C:ProgramDataPackage Cache
2021-12-20 16:37 – 2021-12-29 23:15 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsNVIDIA Corporation
2021-12-20 16:37 – 2020-07-10 01:44 – 002799416 _____ (NVIDIA Corporation) C:Windowssystem32nvspcap64.dll
2021-12-20 16:37 – 2020-07-10 01:44 – 002159592 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvspcap.dll
2021-12-20 16:37 – 2020-07-10 01:44 – 001314792 _____ (NVIDIA Corporation) C:Windowssystem32NvRtmpStreamer64.dll
2021-12-20 16:37 – 2020-07-10 01:44 – 000170472 _____ (NVIDIA Corporation) C:Windowssystem32nvaudcap64v.dll
2021-12-20 16:37 – 2020-07-10 01:44 – 000146408 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvaudcap32v.dll
2021-12-20 16:37 – 2020-07-10 01:44 – 000069840 _____ (NVIDIA Corporation) C:Windowssystem32Driversnvvad64v.sys
2021-12-20 16:37 – 2020-07-10 01:44 – 000067456 _____ (NVIDIA Corporation) C:Windowssystem32Driversnvvhci.sys
2021-12-20 16:37 – 2020-07-10 01:43 – 000001951 _____ C:WindowsNvContainerRecovery.bat
2021-12-20 16:36 – 2021-12-29 23:15 – 000000000 ____D C:Program FilesNVIDIA Corporation
2021-12-20 16:36 – 2021-12-29 23:15 – 000000000 ____D C:Program Files (x86)NVIDIA Corporation
2021-12-20 16:33 – 2021-12-29 15:45 – 000000000 __RHD C:UsersPublicAccountPictures
2021-12-20 16:31 – 2021-12-20 16:23 – 000000098 _____ C:WindowsAsPEToolVer.txt
2021-12-20 16:31 – 2021-03-10 06:11 – 000000049 _____ C:WindowsAsToolCDVer.txt
2021-12-20 16:30 – 2021-04-09 02:52 – 000000073 _____ C:WindowsAsKitVer.txt
2021-12-20 16:30 – 2021-03-10 06:07 – 000000064 _____ C:WindowsAsProcKitVer.txt
2021-12-16 14:42 – 2021-12-16 14:42 – 011621944 _____ (Realtek Semiconductor Corporation ) C:Windowssystem32Driversrtwlane.sys
2021-12-16 14:42 – 2021-12-16 14:42 – 000471201 _____ C:Windowssystem32Driversrtldata.txt
2021-12-15 21:58 – 2021-12-15 21:58 – 001450200 _____ C:WindowsSysWOW64vulkaninfo-1-999-0-0-0.exe
2021-12-15 21:58 – 2021-12-15 21:58 – 001450200 _____ C:WindowsSysWOW64vulkaninfo.exe
2021-12-15 21:57 – 2021-12-15 21:57 – 001874648 _____ C:Windowssystem32vulkaninfo-1-999-0-0-0.exe
2021-12-15 21:57 – 2021-12-15 21:57 – 001874648 _____ C:Windowssystem32vulkaninfo.exe
2021-12-15 21:57 – 2021-12-15 21:57 – 001466024 _____ (Khronos Group) C:Windowssystem32OpenCL.dll
2021-12-15 21:57 – 2021-12-15 21:57 – 001209312 _____ (Khronos Group) C:WindowsSysWOW64OpenCL.dll
2021-12-15 21:57 – 2021-12-15 21:57 – 001112336 _____ C:Windowssystem32vulkan-1-999-0-0-0.dll
2021-12-15 21:57 – 2021-12-15 21:57 – 001112336 _____ C:Windowssystem32vulkan-1.dll
2021-12-15 21:57 – 2021-12-15 21:57 – 000966416 _____ C:WindowsSysWOW64vulkan-1-999-0-0-0.dll
2021-12-15 21:57 – 2021-12-15 21:57 – 000966416 _____ C:WindowsSysWOW64vulkan-1.dll
2021-12-15 21:54 – 2021-12-15 21:54 – 001524392 _____ (NVIDIA Corporation) C:Windowssystem32NvIFR64.dll
2021-12-15 21:54 – 2021-12-15 21:54 – 000802216 _____ C:Windowssystem32nvofapi64.dll
2021-12-15 21:54 – 2021-12-15 21:54 – 000679384 _____ (NVIDIA Corporation) C:Windowssystem32NvIFROpenGL.dll
2021-12-15 21:54 – 2021-12-15 21:54 – 000658344 _____ (NVIDIA Corporation) C:Windowssystem32nvml.dll
2021-12-15 21:54 – 2021-12-15 21:54 – 000636840 _____ C:WindowsSysWOW64nvofapi.dll
2021-12-15 21:54 – 2021-12-15 21:54 – 000565416 _____ (NVIDIA Corporation) C:WindowsSysWOW64NvIFROpenGL.dll
2021-12-15 21:53 – 2021-12-15 21:53 – 002116520 _____ (NVIDIA Corporation) C:Windowssystem32NvFBC64.dll
2021-12-15 21:53 – 2021-12-15 21:53 – 001597552 _____ (NVIDIA Corporation) C:WindowsSysWOW64NvFBC.dll
2021-12-15 21:53 – 2021-12-15 21:53 – 001175512 _____ (NVIDIA Corporation) C:WindowsSysWOW64NvIFR.dll
2021-12-15 21:53 – 2021-12-15 21:53 – 000982952 _____ (NVIDIA Corporation) C:Windowssystem32nvEncodeAPI64.dll
2021-12-15 21:53 – 2021-12-15 21:53 – 000794024 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvEncodeAPI.dll
2021-12-15 21:53 – 2021-12-15 21:53 – 000708776 _____ (NVIDIA Corporation) C:Windowssystem32nvidia-smi.exe
2021-12-15 21:52 – 2021-12-15 21:52 – 008725160 _____ (NVIDIA Corporation) C:Windowssystem32nvcuvid.dll
2021-12-15 21:52 – 2021-12-15 21:52 – 007843968 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvcuvid.dll
2021-12-15 21:52 – 2021-12-15 21:52 – 005732320 _____ (NVIDIA Corporation) C:Windowssystem32nvcpl.dll
2021-12-15 21:52 – 2021-12-15 21:52 – 004938880 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvcuda.dll
2021-12-15 21:52 – 2021-12-15 21:52 – 002852280 _____ (NVIDIA Corporation) C:Windowssystem32nvcuda.dll
2021-12-15 21:52 – 2021-12-15 21:52 – 000452224 _____ (NVIDIA Corporation) C:Windowssystem32nvdebugdump.exe
2021-12-15 21:51 – 2021-12-15 21:51 – 000851936 _____ (NVIDIA Corporation) C:Windowssystem32MCU.exe
2021-12-15 21:50 – 2021-12-15 21:50 – 007586784 _____ (NVIDIA Corporation) C:Windowssystem32nvapi64.dll
2021-12-15 21:50 – 2021-12-15 21:50 – 006438112 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvapi.dll
2021-12-15 13:16 – 2021-12-15 13:16 – 000085698 _____ C:Windowssystem32nvinfo.pb

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-12-29 23:21 – 2019-12-07 09:14 – 000000000 ____D C:Windowssystem32Tasks_Migrated
2021-12-29 23:15 – 2020-11-21 12:45 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Office Tools
2021-12-29 23:15 – 2020-11-21 12:43 – 000000000 ____D C:Program FilesMicrosoft Office 15
2021-12-29 23:14 – 2020-11-21 12:44 – 000000000 ____D C:Program FilesCommon FilesDESIGNER
2021-12-29 23:14 – 2019-12-07 09:14 – 000000000 ____D C:Windowssystem32MsDtc
2021-12-29 15:57 – 2020-11-21 12:43 – 000000000 ____D C:Program FilesMicrosoft Office
2021-12-29 15:55 – 2021-02-19 21:09 – 000096008 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklpnpflt.sys
2021-12-29 15:43 – 2020-11-21 11:59 – 000000000 ____D C:WindowsLog
2021-12-20 16:49 – 2020-11-21 12:12 – 000753582 _____ C:Windowssystem32perfh013.dat
2021-12-20 16:49 – 2020-11-21 12:12 – 000150398 _____ C:Windowssystem32perfc013.dat
2021-12-20 16:49 – 2020-11-21 12:09 – 000748218 _____ C:Windowssystem32perfh010.dat
2021-12-20 16:49 – 2020-11-21 12:09 – 000142116 _____ C:Windowssystem32perfc010.dat
2021-12-20 16:49 – 2020-11-21 12:06 – 000758916 _____ C:Windowssystem32perfh00C.dat
2021-12-20 16:49 – 2020-11-21 12:06 – 000145844 _____ C:Windowssystem32perfc00C.dat
2021-12-20 16:49 – 2020-11-21 12:03 – 000709258 _____ C:Windowssystem32perfh007.dat
2021-12-20 16:49 – 2020-11-21 12:03 – 000146152 _____ C:Windowssystem32perfc007.dat

==================== Files in the root of some directories ========

2021-12-30 09:17 – 2021-12-30 09:17 – 000388275 _____ () C:UsersisahaAppDataLocalars.cache
2021-12-30 09:17 – 2021-12-30 09:17 – 000928858 _____ () C:UsersisahaAppDataLocalcensus.cache
2021-12-30 09:10 – 2021-12-30 09:10 – 000000036 _____ () C:UsersisahaAppDataLocalhousecall.guid.cache
2021-12-30 09:13 – 2021-12-30 09:13 – 000000010 _____ () C:UsersisahaAppDataLocalsponge.last.runtime.cache

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-12-2021
Ran by isaha (31-12-2021 16:05:17)
Running from C:UsersisahaDesktop
Microsoft Windows 10 Home Version 21H2 19044.1288 (X64) (2021-12-29 23:26:59)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-747036069-1942991826-1659572718-500 – Administrator – Disabled)
DefaultAccount (S-1-5-21-747036069-1942991826-1659572718-503 – Limited – Disabled)
Guest (S-1-5-21-747036069-1942991826-1659572718-501 – Limited – Disabled)
isaha (S-1-5-21-747036069-1942991826-1659572718-1001 – Administrator – Enabled) => C:Usersisaha
WDAGUtilityAccount (S-1-5-21-747036069-1942991826-1659572718-504 – Limited – Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled – Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Total Security (Enabled – Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23}
AV: Avast Antivirus (Disabled – Out of date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
FW: Kaspersky Total Security (Enabled) {774D7037-0984-41B0-3A87-5E88E680AD58}

==================== Installed Programs ======================

(Only the adware programs with “Hidden” flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ASUS Aac_NBDT HAL (HKLM…{01D3B7AA-D078-4506-B460-60877FCDDBD6}) (Version: 2.4.2.0 – ASUSTek COMPUTER INC.) Hidden
ASUS Aac_NBDT HAL (HKLM-x32…{52b48e15-2733-4646-a008-c6f1922c46ab}) (Version: 2.4.2.0 – ASUSTek COMPUTER INC.) Hidden
ASUS AURA Display Component (HKLM…{AFD1CF98-FE97-434C-A095-9F27C5BEA53C}) (Version: 1.1.29.0 – ASUSTek COMPUTER INC. ) Hidden
ASUS AURA Display Component (HKLM-x32…{c5669622-d369-4e19-ae7b-d6b33d469f2d}) (Version: 1.1.29.0 – ASUSTek COMPUTER INC. ) Hidden
ASUS AURA Headset Component (HKLM…{A3C4120D-8096-4307-91A2-FFE37EBD5A3D}) (Version: 1.3.11.0 – ASUSTek COMPUTER INC.) Hidden
ASUS AURA Headset Component (HKLM-x32…{8fdbf6da-e99e-479d-8981-0c8faf88d84b}) (Version: 1.3.11.0 – ASUSTek COMPUTER INC.) Hidden
ASUS Aura SDK (HKLM…{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.03.58 – ASUSTek COMPUTER INC.) Hidden
ASUS Keyboard HAL (HKLM…{0FA0CDEE-5DC8-421E-A97D-C74FA6E66FC3}) (Version: 1.1.27.0 – ASUSTek COMPUTER INC.) Hidden
ASUS Keyboard HAL (HKLM-x32…{f85f47f8-3d16-4c94-84ab-66429113e123}) (Version: 1.1.27.0 – ASUSTek COMPUTER INC.) Hidden
ASUS MB Peripheral Products (HKLM…{BFED9861-7D96-4528-89F1-B090ABBF11A7}) (Version: 1.0.35 – ASUSTeK Computer Inc.) Hidden
ASUS MB Peripheral Products (HKLM-x32…{193a2068-8738-4276-ab1b-9133f9403487}) (Version: 1.0.35 – ASUSTeK Computer Inc.) Hidden
ASUS Mouse HAL (HKLM…{B8F984F2-7887-4DD2-8D96-F9A4BC5A4AC5}) (Version: 1.1.0.27 – ASUSTek COMPUTER INC.) Hidden
ASUS Mouse HAL (HKLM-x32…{33293f2d-c1c1-4931-af92-d3b33c73a984}) (Version: 1.1.0.27 – ASUSTek COMPUTER INC.) Hidden
ASUS Update Helper (HKLM-x32…{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.65 – ASUSTeK Computer Inc.) Hidden
AURA lighting effect add-on (HKLM-x32…{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.13 – ASUS)
AURA lighting effect add-on x64 (HKLM…{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.13 – ASUS)
AURA Service (HKLM-x32…{0E536061-3B55-4D45-BF58-0BDA261C94B0}) (Version: 3.04.24 – ASUSTeK Computer Inc.) Hidden
AURA Service (HKLM-x32…{af3f5fef-4152-4f2a-a932-1df532a9a697}) (Version: 3.04.24 – ASUSTeK Computer Inc.)
Avast One (HKLM…Avast Antivirus) (Version: 21.11.2500 – Avast Software)
Dongle_Installer (HKLM…Dongle_Installer) (Version: 1.5 – Prism Media Products Ltd)
FileZilla Client 3.57.0 (HKUS-1-5-21-747036069-1942991826-1659572718-1001…FileZilla Client) (Version: 3.57.0 – Tim Kosse)
Kaspersky Password Manager (HKLM-x32…{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 – Kaspersky Lab) Hidden
Kaspersky Password Manager (HKLM-x32…InstallWIX_{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 – Kaspersky Lab)
Kaspersky Total Security (HKLM-x32…{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 – Kaspersky) Hidden
Kaspersky Total Security (HKLM-x32…InstallWIX_{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 – Kaspersky)
Kaspersky VPN (HKLM-x32…{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 – Kaspersky) Hidden
Kaspersky VPN (HKLM-x32…InstallWIX_{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 – Kaspersky)
Microsoft 365 – en-us (HKLM…O365HomePremRetail – en-us) (Version: 16.0.13127.20616 – Microsoft Corporation)
Microsoft Edge (HKLM-x32…Microsoft Edge) (Version: 96.0.1054.62 – Microsoft Corporation)
Microsoft OneDrive (HKUS-1-5-21-747036069-1942991826-1659572718-1001…OneDriveSetup.exe) (Version: 21.230.1107.0004 – Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) – 14.13.26020 (HKLM-x32…{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 – Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) – 14.13.26020 (HKLM-x32…{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 – Microsoft Corporation)
Mozilla Firefox (x64 en-GB) (HKLM…Mozilla Firefox 95.0.2 (x64 en-GB)) (Version: 95.0.2 – Mozilla)
Mozilla Maintenance Service (HKLM…MozillaMaintenanceService) (Version: 95.0.2 – Mozilla)
NVIDIA GeForce Experience 3.20.3.63 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.3.63 – NVIDIA Corporation)
NVIDIA Graphics Driver 451.67 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 451.67 – NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.38.34 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.34 – NVIDIA Corporation)
NVIDIA PhysX System Software 9.20.0221 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.20.0221 – NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM…{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.13127.20616 – Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM…{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.13127.20616 – Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM…{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.13127.20616 – Microsoft Corporation) Hidden
RefreshRateService (HKLM-x32…{7E5E84CB-B190-4658-A4DC-166779C329D1}) (Version: 2.0.5 – ASUSTeK COMPUTER INC.)
ROG Live Service (HKLM-x32…{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 1.1.8.0 – ASUSTek COMPUTER INC.)
Sadie Software (HKLM…{CA15C7A3-ABD2-48D0-B478-BBDAD4A10323}) (Version: 6.1.18.4083 – Audio Squadron Ltd)
WibuKey Setup (WibuKey Remove) (HKLM…{00060000-0000-1004-8002-0000C06B5161}) (Version: Version 6.32 of 2015-Jul-21 (Build 1504) (Setup) – WIBU-SYSTEMS AG)
Windows 10 Update Assistant (HKLM-x32…{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.19041.1375 – Microsoft Corporation)

Packages:
=========
AMD Radeon Software -> C:Program FilesWindowsAppsadvancedmicrodevicesinc-2.amdradeonsoftware_10.21.30024.0_x64__0a9344xs7nr4m [2021-12-29] (Advanced Micro Devices Inc.) [Startup Task]
Cortana -> C:Program FilesWindowsAppsMicrosoft.549981C3F5F10_1.1911.21713.0_x64__8wekyb3d8bbwe [2021-12-29] (Microsoft Corporation)
DTS:X Ultra -> C:Program FilesWindowsAppsDTSInc.DTSXUltra_1.11.3.0_x64__t5j2fzbtdg37r [2021-12-29] (DTS, Inc.)
Mail and Calendar -> C:Program FilesWindowsAppsmicrosoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe [2021-12-29] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:Program FilesWindowsAppsmicrosoft.advertising.xaml_10.1808.3.0_x64__8wekyb3d8bbwe [2021-12-29] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:Program FilesWindowsAppsMicrosoft.MicrosoftSolitaireCollection_4.4.8204.0_x64__8wekyb3d8bbwe [2021-12-29] (Microsoft Studios) [MS Ad]
MSN Weather -> C:Program FilesWindowsAppsMicrosoft.BingWeather_4.25.20211.0_x64__8wekyb3d8bbwe [2021-12-29] (Microsoft Corporation) [MS Ad]
NVIDIA Control Panel -> C:Program FilesWindowsAppsnvidiacorp.nvidiacontrolpanel_8.1.961.0_x64__56jybvy8sckqj [2021-12-29] (NVIDIA Corp.)
Realtek Audio Control -> C:Program FilesWindowsAppsRealtekSemiconductorCorp.RealtekAudioControl_1.25.247.0_x64__dt26b99r8h8gj [2021-12-29] (Realtek Semiconductor Corp)
Skype -> C:Program FilesWindowsAppsMicrosoft.SkypeApp_14.53.77.0_x64__kzf8qxf38zg5c [2021-12-29] (Skype)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:Program FilesAvast SoftwareAvastashShell.dll [2021-12-29] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:Program FilesAvast SoftwareAvastashShell.dll [2021-12-29] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:Program FilesAvast SoftwareAvastashShell.dll [2021-12-29] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:Program Files (x86)Kaspersky LabKaspersky Total Security 21.3x64shellex.dll [2021-12-29] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers2: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:Program Files (x86)Kaspersky LabKaspersky Total Security 21.3x64shellex.dll [2021-12-29] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:Program FilesAvast SoftwareAvastashShell.dll [2021-12-29] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:Program Files (x86)Kaspersky LabKaspersky Total Security 21.3x64shellex.dll [2021-12-29] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:WindowsSystem32atiacm64.dll [2021-09-06] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:WindowsSystem32DriverStoreFileRepositorynvami.inf_amd64_39f6d2586ed0b7d9nvshext.dll [2021-12-15] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:Program FilesAvast SoftwareAvastashShell.dll [2021-12-29] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:Program Files (x86)Kaspersky LabKaspersky Total Security 21.3x64shellex.dll [2021-12-29] (Kaspersky Lab JSC -> AO Kaspersky Lab)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM…Drivers32: [msacm.l3acm] => c:windowssystem32l3codecp.acm [184320 2019-12-07] (Microsoft Windows -> Fraunhofer Institut Integrierte Schaltungen IIS)

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2021-12-20 16:38 – 2019-12-24 02:51 – 000093184 _____ () [File not signed] C:Program Files (x86)ASUSArmouryDevicedllArmourySocketServerzlibwapi.dll
2021-12-20 16:38 – 2019-06-27 00:07 – 003394560 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:Program Files (x86)ASUSArmouryDevicedllArmourySocketServerlibcrypto-1_1-x64.dll
2021-12-20 16:38 – 2019-06-27 00:07 – 000679424 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:Program Files (x86)ASUSArmouryDevicedllArmourySocketServerlibssl-1_1-x64.dll
2021-12-20 16:38 – 2019-07-31 22:48 – 000072704 _____ (TODO: <Company name>) [File not signed] C:Program Files (x86)ASUSArmouryDevicedllShareFromArmouryIIIProtocolInterruptInterruptTransfer.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The “AlternateShell” will be restored.)

HKLMSYSTEMCurrentControlSetControlSafeBootMinimalaswSP.sys => “”=”Driver”
HKLMSYSTEMCurrentControlSetControlSafeBootMinimalMCODS => “”=”Service”
HKLMSYSTEMCurrentControlSetControlSafeBootNetworkaswSP.sys => “”=”Driver”
HKLMSYSTEMCurrentControlSetControlSafeBootNetworkMcMPFSvc => “”=”Service”
HKLMSYSTEMCurrentControlSetControlSafeBootNetworkMCODS => “”=”Service”

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16OCHelper.dll [2020-11-21] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 – {83C25742-A9F7-49FB-9138-434302C88D07} – C:Program FilesMicrosoft OfficerootOffice16MSOSB.DLL [2020-11-21] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 – {83C25742-A9F7-49FB-9138-434302C88D07} – C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16MSOSB.DLL [2020-11-21] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 – {42089D2D-912D-4018-9087-2B87803E93FB} – C:Program FilesMicrosoft OfficerootOffice16MSOSB.DLL [2020-11-21] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 – {42089D2D-912D-4018-9087-2B87803E93FB} – C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16MSOSB.DLL [2020-11-21] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 – {42089D2D-912D-4018-9087-2B87803E93FB} – C:Program FilesMicrosoft OfficerootOffice16MSOSB.DLL [2020-11-21] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 – {42089D2D-912D-4018-9087-2B87803E93FB} – C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16MSOSB.DLL [2020-11-21] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 – {5504BE45-A83B-4808-900A-3A5C36E7F77A} – C:Program FilesMicrosoft OfficerootOffice16MSOSB.DLL [2020-11-21] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 – {5504BE45-A83B-4808-900A-3A5C36E7F77A} – C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16MSOSB.DLL [2020-11-21] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 09:14 – 2021-12-31 11:53 – 000000852 _____ C:Windowssystem32driversetchosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKUS-1-5-21-747036069-1942991826-1659572718-1001Control PanelDesktop\Wallpaper ->
DNS Servers: 192.168.1.254
HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesSystem => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{9E3B5416-57F3-4948-B0C6-8C8EB8D3B4EC}] => (Allow) C:Program FilesWindowsAppsB9ECED6F.ASUSPCAssistant_3.0.34.0_x64__qmba6cd70vzyyMyASUSMyASUS.exe (ASUSTeK COMPUTER INC.) [File not signed]
FirewallRules: [{6FE0FA5B-0E22-462A-9FE0-FD7F20896C11}] => (Allow) C:Program FilesWindowsAppsB9ECED6F.ASUSPCAssistant_3.0.34.0_x64__qmba6cd70vzyyMyASUSMyASUS.exe (ASUSTeK COMPUTER INC.) [File not signed]
FirewallRules: [{9E76C969-24C8-467C-9DAF-7391A921CEAF}] => (Allow) C:Program FilesWindowsAppsB9ECED6F.ASUSPCAssistant_3.0.34.0_x64__qmba6cd70vzyyMyASUSMyASUS.exe (ASUSTeK COMPUTER INC.) [File not signed]
FirewallRules: [{76282B14-BC6A-4591-9F03-598D2FB95BE4}] => (Allow) C:Program FilesWindowsAppsB9ECED6F.ASUSPCAssistant_3.0.34.0_x64__qmba6cd70vzyyMyASUSMyASUS.exe (ASUSTeK COMPUTER INC.) [File not signed]
FirewallRules: [{8F5F21C6-455C-49A2-8D9F-5AE39ED42440}] => (Allow) C:Program FilesASUSARMOURY CRATE ServiceMobilePluginAutoConnectHelper.exe => No File
FirewallRules: [{FA7921A2-CCF6-4A62-80EE-52CB8E438036}] => (Allow) C:Program FilesASUSARMOURY CRATE ServiceMobilePluginAutoConnectHelper.exe => No File
FirewallRules: [{999FCD11-C68E-4926-97B8-17DA87B2F7B8}] => (Allow) C:Program Files (x86)ASUSROG Live ServiceROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{FA4C1A85-62E2-4055-AAFA-A6607F70EFC4}] => (Allow) C:Program Files (x86)ASUSROG Live ServiceROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{ECA03E08-0D0C-461D-9290-588DB18AC57B}] => (Allow) C:Program Files (x86)MicrosoftEdge BetaApplication84.0.522.20msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2A96D5AC-4424-4D7A-825E-CF64FDACAD53}] => (Allow) C:Program Files (x86)MicrosoftEdge BetaApplicationmsedge.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FAD5511E-C284-4C78-9EE2-B089EF7D2404}] => (Allow) C:Program Files (x86)ASUSArmouryDevicedllArmourySocketServerArmouryHtmlDebugServer.exe (ASUSTeK Computer Inc. -> ASUS)
FirewallRules: [{DE4304DE-294B-411B-BADA-6FB010234DCF}] => (Allow) C:Program Files (x86)ASUSArmouryDevicedllArmourySocketServerArmourySocketServer.exe (ASUSTeK Computer Inc. -> ASUS)
FirewallRules: [{384279C3-50F2-47A6-8662-D08BF0AC893F}] => (Allow) C:Program FilesNVIDIA CorporationNvStreamSrvnvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{439DF22E-FD4B-44F5-94B0-8E1AD26AF47C}] => (Allow) C:Program FilesNVIDIA CorporationNvStreamSrvnvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{19666E42-9562-422C-8E97-A9E346EFA08F}] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{16266ADB-8B44-4FB5-B2B1-8A0A837542FF}] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{36332E35-9C4F-42E5-886D-24FC0F0F05AF}] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F6370D40-848E-454C-8626-798E93DBF96F}] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{1AFFF290-FB7F-441F-ADCF-83FC80F3C467}] => (Allow) C:Program FilesMicrosoft OfficerootOffice16outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9647E486-44C9-4F58-B5BD-72FB62084D76}] => (Allow) C:Program FilesMozilla Firefoxfirefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{24E6A579-EA5A-4D5A-8410-A04AC2C184D0}] => (Allow) C:Program FilesMozilla Firefoxfirefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{73308562-E0BA-461D-B8FB-C8BF4D04F13A}] => (Block) C:Program FilesAvast SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{48DAAEF5-BCA8-4705-8424-7B1ECA733561}] => (Block) C:Program FilesAvast SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{541DAF92-96DB-4125-AF72-673B7529E673}] => (Block) C:Program FilesAvast SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{C9714153-EB75-47E0-96DA-78837578883D}] => (Block) C:Program FilesAvast SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{C267923D-F65D-4FBA-84F4-D461C8227AD5}] => (Block) C:Program FilesAvast SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{BE3F6350-32AB-4B33-BDFF-98E306B1D966}] => (Block) C:Program FilesAvast SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{2D152316-06BD-43C5-878A-A64DF4F185B4}] => (Allow) C:UsersisahaAppDataLocalTempHouseCalltmasenmapnmap.exe (Insecure.Org) [File not signed]
FirewallRules: [{E2E40C56-10B6-4625-B41A-3F9D988DF6DC}] => (Allow) C:WindowsSystem32DriverStoreFileRepositoryasussci2.inf_amd64_74be8ed024c977b8ASUSLinkNearAsusLinkNear.exe (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
FirewallRules: [{AF1C7D97-AB9C-49C8-B544-5D187300FA56}] => (Allow) C:WindowsSystem32DriverStoreFileRepositoryasussci2.inf_amd64_74be8ed024c977b8ASUSLinkRemoteAsusLinkRemoteAgent.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​)
FirewallRules: [{863D128F-1B6F-4268-9519-6AA63D668487}] => (Allow) C:WindowsSystem32DriverStoreFileRepositoryasussci2.inf_amd64_74be8ed024c977b8ASUSLinkRemoteAsusLinkRemoteAgent.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​)

==================== Restore Points =========================

30-12-2021 08:52:28 After BIOS Update
30-12-2021 15:45:44 Windows Modules Installer

==================== Faulty Device Manager Devices ============

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click “Update Driver”, which starts the Hardware Update wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click “Update Driver”, which starts the Hardware Update wizard.

==================== Event log errors: ========================

Application errors:
==================
Error: (12/31/2021 11:58:13 AM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center failed to validate caller with error %1.

Error: (12/31/2021 11:44:51 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for WORKGROUPLAPTOP-7ILMBO7M$ via https://AMD-KeyId-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net/templates/Aik/scep failed:

GetCACaps

Method: GET(234ms)
Stage: GetCACaps
The server name or address could not be resolved 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)

Error: (12/31/2021 11:41:55 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance.  hr = 0x8007045b, A system shutdown is in progress.
.

Error: (12/31/2021 11:41:55 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]

Error: (12/31/2021 11:11:13 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: firefox.exe, version: 95.0.2.8022, time stamp: 0x61be560a
Faulting module name: ntdll.dll, version: 10.0.19041.1288, time stamp: 0xa280d1d6
Exception code: 0xc0000005
Fault offset: 0x00000000000a1fe7
Faulting process ID: 0x5e4
Faulting application start time: 0x01d7fe371e57e97b
Faulting application path: C:Program FilesMozilla Firefoxfirefox.exe
Faulting module path: C:WindowsSYSTEM32ntdll.dll
Report ID: 73a29184-f9e4-4f87-889f-33cc350654e5
Faulting package full name:
Faulting package-relative application ID:

Error: (12/31/2021 11:11:03 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: firefox.exe, version: 95.0.2.8022, time stamp: 0x61be560a
Faulting module name: ntdll.dll, version: 10.0.19041.1288, time stamp: 0xa280d1d6
Exception code: 0xc0000005
Fault offset: 0x00000000000a1fe7
Faulting process ID: 0x2ae0
Faulting application start time: 0x01d7fe37189027f8
Faulting application path: C:Program FilesMozilla Firefoxfirefox.exe
Faulting module path: C:WindowsSYSTEM32ntdll.dll
Report ID: 74e4769b-9d07-4da1-b4c9-f2caacfd1e5a
Faulting package full name:
Faulting package-relative application ID:

Error: (12/31/2021 11:10:48 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: firefox.exe, version: 95.0.2.8022, time stamp: 0x61be560a
Faulting module name: ntdll.dll, version: 10.0.19041.1288, time stamp: 0xa280d1d6
Exception code: 0xc0000005
Fault offset: 0x00000000000a1fe7
Faulting process ID: 0x9fc
Faulting application start time: 0x01d7fe370feb6012
Faulting application path: C:Program FilesMozilla Firefoxfirefox.exe
Faulting module path: C:WindowsSYSTEM32ntdll.dll
Report ID: f9c8f03d-ddd3-42a5-afe7-d53ceae64fba
Faulting package full name:
Faulting package-relative application ID:

Error: (12/31/2021 11:10:39 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: firefox.exe, version: 95.0.2.8022, time stamp: 0x61be560a
Faulting module name: ntdll.dll, version: 10.0.19041.1288, time stamp: 0xa280d1d6
Exception code: 0xc0000005
Fault offset: 0x00000000000a1fe7
Faulting process ID: 0xb1c
Faulting application start time: 0x01d7fe370a40a880
Faulting application path: C:Program FilesMozilla Firefoxfirefox.exe
Faulting module path: C:WindowsSYSTEM32ntdll.dll
Report ID: c1dc5df3-89ef-413e-94db-9535ef2d7a32
Faulting package full name:
Faulting package-relative application ID:

System errors:
=============
Error: (12/31/2021 11:53:11 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Kaspersky VPN Secure Connection Service 5.3 service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.

Error: (12/31/2021 11:53:11 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Avast SecureLine VPN service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service.

Error: (12/31/2021 11:53:11 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Microsoft Office Click-to-Run Service service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service.

Error: (12/31/2021 11:53:11 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The NVIDIA Display Container LS service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 6000 milliseconds: Restart the service.

Error: (12/31/2021 11:53:11 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The ROG Live Service service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.

Error: (12/31/2021 11:53:11 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Realtek Audio Universal Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service.

Error: (12/31/2021 11:53:11 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The ASUS Software Manager service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service.

Error: (12/31/2021 11:53:11 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The ASUS Link Near service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service.

Windows Defender:
================
Date: 2021-12-29 22:12:16
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2021-12-29 22:06:35
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2021-12-29 21:36:13
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2021-12-29 21:31:57
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2021-12-29 21:09:28
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

CodeIntegrity:
===============
Date: 2021-12-31 15:59:13
Description:
Code Integrity determined that a process (DeviceHarddiskVolume3WindowsSystem32svchost.exe) attempted to load DeviceHarddiskVolume3Program FilesAvast SoftwareAvastaswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2021-12-31 15:59:13
Description:
Code Integrity determined that a process (DeviceHarddiskVolume3WindowsSystem32svchost.exe) attempted to load DeviceHarddiskVolume3Program Files (x86)Kaspersky LabKaspersky Total Security 21.3x64antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2021-12-31 11:58:13
Description:
Code Integrity determined that a process (DeviceHarddiskVolume3Program FilesWindows DefenderMpCmdRun.exe) attempted to load DeviceHarddiskVolume3Program FilesAvast SoftwareAvastaswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2021-12-31 11:57:35
Description:
Code Integrity determined that a process (DeviceHarddiskVolume3WindowsSystem32SecurityHealthService.exe) attempted to load DeviceHarddiskVolume3Program FilesAvast SoftwareAvastaswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2021-12-31 11:57:35
Description:
Code Integrity determined that a process (DeviceHarddiskVolume3WindowsSystem32SecurityHealthService.exe) attempted to load DeviceHarddiskVolume3Program Files (x86)Kaspersky LabKaspersky Total Security 21.3x64antimalware_provider.dll that did not meet the Windows signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. FA706IU.316 03/12/2021
Motherboard: ASUSTeK COMPUTER INC. FA706IU
Processor: AMD Ryzen 7 4800H with Radeon Graphics
Percentage of memory in use: 32%
Total physical RAM: 15789.46 MB
Available physical RAM: 10688.49 MB
Total Virtual: 18733.46 MB
Available Virtual: 11658.32 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:929.61 GB) (Free:863.45 GB) NTFS
Drive d: (DATA) (Fixed) (Total:953.87 GB) (Free:938.91 GB) NTFS

\?Volume{bbd95101-eb99-4cff-9732-00cf15b89cd9} () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS
\?Volume{85c4f48f-f2a6-45a0-9cc4-fbcac18caf57} () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 763FC590)

Partition: GPT.

==========================================================
Disk: 1 (Size: 953.9 GB) (Disk ID: E0A84A8F)

Partition: GPT.

==================== End of Addition.txt =======================

 




Original Source by [author_name]

Leave a Reply

Your email address will not be published.

eighty seven − = 82