Program running in background with progress bar | #microsoft | #hacking | #cybersecurity


Hi,

So I was on my computer watching youtube where I noticed on my second monitor a flickering. I looked over and every now and then very quickly a window would open with a progress bar filling up. I tried to click on the window but it wouldn’t stay on screen and I couldn’t make out any text whilst this was happening. I opened task manager and couldn’t see any programs running that seemed out of the ordinary so I’m not exactly sure what it was. I’m worried that it might be some kind of virus. Another thing to note I swear the other day when I was away from my computer when I came back I thought I saw the cursor moving on my screen but I was a few metres from my screen and wasn’t looking too closely so I may have just been seeing things. Please find my logs attached.

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09-06-2021
Ran by igugl (administrator) on DESKTOP-NMH6TJ5 (ASUS System Product Name) (10-06-2021 01:44:04)
Running from C:UsersiguglDesktop
Loaded Profiles: igugl
Platform: Windows 10 Pro Version 20H2 19042.1052 (X64) Language: English (United States)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ASUSTeK Computer Inc. -> ) C:Program Files (x86)ASUSArmouryDevicedllSwAgentArmourySwAgent.exe
(ASUSTeK Computer Inc. -> ASUS) C:Program Files (x86)ASUSArmouryDevicedllArmourySocketServerArmourySocketServer.exe
(ASUSTeK Computer Inc. -> ASUS) C:Program Files (x86)ASUSArmouryDevicedllMBLedSDKNoiseCancelingEngine.exe
(ASUSTeK Computer Inc. -> ASUSTek Compputer Inc.) C:Program FilesASUSAacMBAac3572MbHal_x86.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:Program Files (x86)ASUSArmouryDeviceasus_framework.exe <2>
(ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) C:Program Files (x86)ASUSAsusCertServiceAsusCertService.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:Program Files (x86)ASUSAXSP4.00.45atkexComSvc.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:Program Files (x86)LightingServiceLightingService.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:Program FilesASUSARMOURY CRATE Lite ServiceArmouryCrate.Service.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:Program FilesASUSARMOURY CRATE Lite ServiceArmouryCrate.UserSessionHelper.exe
(ASUSTEK COMPUTER INCORPORATION -> ASUSTek COMPUTER INC.) C:Program Files (x86)ASUSROG Live ServiceROGLiveService.exe
(A-Volute -> Nahimic) C:WindowsSystem32NahimicService.exe
(A-Volute -> Nahimic) C:WindowsSystem32NahimicSvc64.exe <2>
(A-Volute -> Nahimic) C:WindowsSysWOW64NahimicSvc32.exe <2>
(A-Volute SAS -> A-Volute) C:UsersiguglAppDataLocalNhNotifSyssonicstudioasusns.exe
(Discord Inc. -> Discord Inc.) C:UsersiguglAppDataLocalDiscordapp-1.0.9002Discord.exe <6>
(Intel® Wireless Connectivity Solutions -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositorypiecomponent.inf_amd64_6ea7dc2752605c07Intel_PIE_Service.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:Program Files (x86)Kaspersky LabKaspersky Total Security 21.3avp.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:Program Files (x86)Kaspersky LabKaspersky Total Security 21.3avpui.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:Program Files (x86)Kaspersky LabKaspersky VPN 5.3ksde.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:Program Files (x86)Kaspersky LabKaspersky VPN 5.3ksdeui.exe
(Logitech Inc -> Logitech, Inc.) C:Program FilesLGHUBlghub.exe <3>
(Logitech Inc -> Logitech, Inc.) C:Program FilesLGHUBlghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:Program FilesLGHUBlghub_updater.exe
(MariaDB Corporation Ab -> ) C:Program FilesMariaDB 10.5binmysqld.exe
(Microsoft Corporation -> Microsoft Corporation) C:Program FilesCommon Filesmicrosoft sharedClickToRunOfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:UsersiguglAppDataLocalMicrosoftOneDriveOneDrive.exe
(Microsoft Corporation) C:Program FilesWindowsAppsMicrosoft.GamingApp_2106.1001.4.0_x64__8wekyb3d8bbweXboxAppServices.exe
(Microsoft Corporation) C:Program FilesWindowsAppsMicrosoft.GamingApp_2106.1001.4.0_x64__8wekyb3d8bbweXboxPcApp.exe
(Microsoft Corporation) C:Program FilesWindowsAppsMicrosoft.GamingServices_2.53.17003.0_x64__8wekyb3d8bbweGamingServices.exe
(Microsoft Corporation) C:Program FilesWindowsAppsMicrosoft.GamingServices_2.53.17003.0_x64__8wekyb3d8bbweGamingServicesNet.exe
(Microsoft Corporation) C:Program FilesWindowsAppsMicrosoft.WindowsStore_12104.1001.1.0_x64__8wekyb3d8bbweWinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:WindowsSystemAppsMicrosoft.Windows.SecHealthUI_cw5n1h2txyewySecHealthUI.exe
(Microsoft Windows -> Microsoft Corporation) C:WindowsSysWOW64wbemWmiPrvSE.exe
(Microsoft Windows Hardware Compatibility Publisher -> DTS Inc.) C:WindowsSystem32DTSPCAPO4xDtsApo4Service.exe
(Mozilla Corporation -> Mozilla Corporation) C:Program FilesMozilla Firefoxfirefox.exe <10>
(Nota,Inc. -> Nota Inc.) C:Program Files (x86)GyazoGyStation.exe
(NVIDIA Corporation -> Node.js) C:Program Files (x86)NVIDIA CorporationNvNodeNVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:Program FilesNVIDIA CorporationNVIDIA GeForce ExperienceNVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:Program FilesNVIDIA CorporationShadowPlaynvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:WindowsSystem32DriverStoreFileRepositorynv_dispi.inf_amd64_1108979a670abe46Display.NvContainerNVDisplay.Container.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:WindowsSystem32RtkAudUService64.exe <2>
(Skutta, Kristjan -> ) C:Program Files (x86)Steamsteamappscommonwallpaper_enginewallpaper32.exe
(Slack Technologies, Inc. -> Slack Technologies Inc.) C:UsersiguglAppDataLocalslackapp-4.17.1slack.exe <5>
(Spotify AB) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.160.672.0_x86__zpdnekdrzrea0Spotify.exe <6>
(TEFINCOM S.A. -> TEFINCOM S.A.) C:Program FilesNordVPNNordVPN.exe
(TEFINCOM S.A. -> TEFINCOM S.A.) C:Program FilesNordVPNnordvpn-service.exe
(TODO: <Company name>) [File not signed] C:Program Files (x86)ASUSArmouryDevicedllAIOFanSDKArmouryAIOFanServer.exe
(Valve -> Valve Corporation) C:Program Files (x86)Common FilesSteamsteamservice.exe
(Valve -> Valve Corporation) C:Program Files (x86)Steambincefcef.win7x64steamwebhelper.exe <7>
(Valve -> Valve Corporation) C:Program Files (x86)Steamsteam.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM…Run: [RtkAudUService] => C:WindowsSystem32RtkAudUService64.exe [1084704 2020-05-28] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32…Run: [TeamsMachineInstaller] => C:Program Files (x86)Teams InstallerTeams.exe [114671912 2021-02-10] (Microsoft Corporation -> Microsoft Corporation)
HKUS-1-5-21-2675421376-3833927843-2164136087-1001…Run: [Discord] => C:UsersiguglAppDataLocalDiscordUpdate.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKUS-1-5-21-2675421376-3833927843-2164136087-1001…Run: [LGHUB] => C:Program FilesLGHUBlghub.exe [123792288 2021-05-28] (Logitech Inc -> Logitech, Inc.)
HKUS-1-5-21-2675421376-3833927843-2164136087-1001…Run: [NZXT.CAM] => C:Program FilesNZXT CAMNZXT CAM.exe –startup
HKUS-1-5-21-2675421376-3833927843-2164136087-1001…Run: [NordVPN] => C:Program FilesNordVPNNordVPN.exe [277688 2021-04-21] (TEFINCOM S.A. -> TEFINCOM S.A.)
HKUS-1-5-21-2675421376-3833927843-2164136087-1001…Run: [Steam] => C:Program Files (x86)Steamsteam.exe [4109032 2021-06-09] (Valve -> Valve Corporation)
HKUS-1-5-21-2675421376-3833927843-2164136087-1001…Run: [Gyazo] => C:Program Files (x86)GyazoGyStation.exe [935048 2021-05-24] (Nota,Inc. -> Nota Inc.)
HKUS-1-5-21-2675421376-3833927843-2164136087-1001…Run: [WallpaperEngine] => C:Program Files (x86)Steamsteamappscommonwallpaper_enginewallpaper32.exe [2769000 2021-06-02] (Skutta, Kristjan -> )
HKUS-1-5-21-2675421376-3833927843-2164136087-1001…Run: [com.squirrel.slack.slack] => C:UsersiguglAppDataLocalslackslack.exe [308368 2021-06-05] (Slack Technologies, Inc. -> Slack Technologies Inc.)
HKUS-1-5-18…Run: [Synapse3] => C:Program Files (x86)RazerSynapse3WPFUIFrameworkRazer Synapse 3 HostRazer Synapse 3.exe /StartMinimized

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {08D1A6C9-B368-4A82-97C4-8290A907F5BA} – System32TasksNvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationNvBackendNvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {101C4D92-3746-4177-A6E1-12E327D0DEEA} – System32TasksNvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationNvBackendNvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {114A1DC8-B77F-4B1E-8390-62EBCBC5E485} – System32TasksMozillaFirefox Default Browser Agent 308046B0AF4A39CB => C:Program FilesMozilla Firefoxdefault-browser-agent.exe [690616 2021-06-04] (Mozilla Corporation -> Mozilla Foundation)
Task: {1640BA31-640F-4FC1-ABD1-7F6C674B0F12} – System32TasksGyazoUpdateTaskMachineDaily => C:Program Files (x86)GyazoGyazoUpdate.exe [6899232 2021-05-24] (Nota,Inc. -> Nota Inc.)
Task: {2652EB93-DE2F-4EE5-8A60-5523909C86E0} – System32TasksMicrosoftOfficeOffice Automatic Updates 2.0 => C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeC2RClient.exe [23124336 2021-05-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {2A4C0984-012B-47E5-995E-7A31BF107BDA} – System32TasksMicrosoftOfficeOfficeTelemetryAgentLogOn2016 => C:Program FilesMicrosoft OfficerootOffice16msoia.exe [5275568 2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {2B6FCE9E-C6CC-438C-BE09-900C28086C62} – System32TasksASUSFramework Service => C:Program Files (x86)ASUSArmouryDeviceasus_framework.exe [45540760 2021-01-13] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {34039D84-1190-4C33-ACAA-C1B5D6D621C5} – System32TasksNvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe [874472 2020-09-29] (NVIDIA Corporation -> NVIDIA Corporation) -> -d “C:Program FilesNVIDIA CorporationNvDriverUpdateCheck” -l 3 -f C:ProgramDataNVIDIANvContainerDriverUpdateCheck.log
Task: {35BFEEF6-1A4A-4125-960B-31A77066910D} – System32TasksNahimicSvc64Run => C:Windowssystem32NahimicSvc64.exe [1066416 2020-11-04] (A-Volute -> Nahimic)
Task: {3AC5B585-BC6A-4CB7-BEFC-7D796B1377AC} – System32TasksASUSP508PowerAgent_sdk => C:Program Files (x86)ASUSArmouryDevicedllShareFromArmouryIIIMouseROG STRIX CARRYP508PowerAgent.exe
Task: {3DEA4717-5662-4ADB-BBFC-F9CC9D1C9D8A} – System32TasksASUSASUSUpdateTaskMachineUA => C:Program Files (x86)ASUSUpdateAsusUpdate.exe [168520 2021-03-13] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {5357B73F-0681-4146-8837-562CB88CFD37} – System32TasksNvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program Files (x86)NVIDIA CorporationNvNodenvnodejslauncher.exe [645488 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5B5C0ADD-7290-469A-86E9-ACF6BF3D5A0E} – System32TasksKaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:Program FilesCommon FilesAVKaspersky Labupgrade_launcher.exe [743488 2021-06-10] (Kaspersky Lab JSC -> AO Kaspersky Lab)
Task: {5E3EEEFE-112F-4BFC-8BAE-BAFB97B55B1D} – System32TasksNvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationUpdate CoreNvProfileUpdater64.exe [905584 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {61A7C583-B08E-4198-BAD7-0CAC1A9ACF6F} – System32TasksNvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationUpdate CoreNvProfileUpdater64.exe [905584 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {667154B3-7B34-4F6E-97A2-AAEC750C817B} – System32TasksASUSAcPowerNotification => C:Program Files (x86)ASUSArmouryDevicedllAcPowerNotificationAcPowerNotification.exe
Task: {68AA1F4A-8A1C-4C78-BC23-7B85240B1F32} – System32TasksASUSArmouryAIOFanServer => C:Program Files (x86)ASUSArmouryDevicedllAIOFanSDKArmouryAIOFanServer.exe [1039360 2020-11-10] (TODO: <Company name>) [File not signed]
Task: {69E07801-C62A-45DA-998E-C8ED00B5861C} – System32TasksNahimicTask32 => C:Windowssystem32..SysWOW64NahimicSvc32.exe [822704 2020-11-04] (A-Volute -> Nahimic)
Task: {74F987FE-03D1-4D9A-B214-F48EC860C553} – System32TasksNVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationNVIDIA GeForce ExperienceNVIDIA GeForce Experience.exe [3336560 2021-04-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {79D7933D-8DAF-4FEE-BFC8-16664C24F908} – System32TasksMicrosoftOfficeOffice Feature Updates Logon => C:Program FilesMicrosoft OfficerootOffice16sdxhelper.exe [147288 2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {92BF2E54-3A60-4E1B-9DC8-5C7F926F82CD} – System32TasksGyazoUpdateTaskMachine => C:Program Files (x86)GyazoGyazoUpdate.exe [6899232 2021-05-24] (Nota,Inc. -> Nota Inc.)
Task: {9FD44162-6F03-4CB2-889D-81074B73B824} – System32TasksNahimicSvc32Run => C:WindowsSysWOW64NahimicSvc32.exe [822704 2020-11-04] (A-Volute -> Nahimic)
Task: {A8DFB9B7-8882-4610-992E-D596C736B876} – System32TasksMicrosoftVisualStudioUpdatesBackgroundDownload => C:Program Files (x86)Microsoft Visual StudioInstallerresourcesappServiceHubServicesMicrosoft.VisualStudio.Setup.ServiceBackgroundDownload.exe [64936 2021-05-18] (Microsoft Corporation -> Microsoft)
Task: {AF3EEBE4-8F67-4EE3-A8EA-6285E106038F} – System32TasksASUSASUSUpdateTaskMachineCore1d717edcc31e277 => C:Program Files (x86)ASUSUpdateAsusUpdate.exe [168520 2021-03-13] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {C0334D8E-FA8C-4F18-BC29-E680E01577A1} – System32TasksASUSNoiseCancelingEngine.exe => C:Program Files (x86)ASUSArmouryDevicedllMBLedSDKNoiseCancelingEngine.exe [1238328 2021-01-21] (ASUSTeK Computer Inc. -> ASUS)
Task: {C3693761-0C85-4062-8CA6-78298A246C32} – System32TasksMicrosoftOfficeOffice ClickToRun Service Monitor => C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeC2RClient.exe [23124336 2021-05-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {C8F2CE62-9D9A-4B42-A6DE-31A7EA55C73A} – System32TasksMicrosoftOfficeOfficeTelemetryAgentFallBack2016 => C:Program FilesMicrosoft OfficerootOffice16msoia.exe [5275568 2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {D8D298D8-AAA0-4B70-BCCD-049DD5FE4014} – System32TasksMicrosoftOfficeOffice Feature Updates => C:Program FilesMicrosoft OfficerootOffice16sdxhelper.exe [147288 2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {DA76506D-4DDE-4B1D-9A02-A0D768EE8AFF} – System32TasksNahimicTask64 => C:Windowssystem32.NahimicSvc64.exe [1066416 2020-11-04] (A-Volute -> Nahimic)
Task: {E26F4350-1006-417E-9B57-7D6541DB6DD5} – System32TasksNvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationNvBackendNvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E434C8A1-D9CD-40CC-A203-AFAC253F5B5D} – System32TasksAMDAutoUpdate => C:Program FilesAMDAutoUpdateAMDAutoUpdate.exe [677624 2019-11-21] (Advanced Micro Devices INC. -> )
Task: {E6A78EF1-8E5F-45CD-A317-28F2D8118226} – System32TasksASUSArmourySocketServer => C:Program Files (x86)ASUSArmouryDevicedllArmourySocketServerArmourySocketServer.exe [2025488 2021-01-22] (ASUSTeK Computer Inc. -> ASUS)
Task: {EB5B7525-249B-4CEC-8267-832E51B956CC} – System32TasksNvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe [874472 2020-09-29] (NVIDIA Corporation -> NVIDIA Corporation) -> -d “C:Program FilesNVIDIA CorporationNvBackendNvBatteryBoostCheck” -l 3 -f C:ProgramDataNVIDIANvContainerBatteryBoostCheck.log
Task: {FE08EC73-E576-49D4-A07A-C01367F8AE26} – System32TasksNvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationNvBackendNvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:WindowsTasksCreateExplorerShellUnelevatedTask.job => C:Windowsexplorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

TcpipParameters: [DhcpNameServer] 192.168.0.1
Tcpip..Interfaces{eb434384-21b0-4072-b44e-96b27b792814}: [DhcpNameServer] 192.168.0.1
Tcpip..Interfaces{ec12935b-ae8b-45b4-859f-b3d2124e8c01}: [DhcpNameServer] 192.168.0.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:UsersiguglAppDataLocalMicrosoftEdgeUser DataDefault [2021-06-08]
Edge Extension: (AdBlock — best ad blocker) – C:UsersiguglAppDataLocalMicrosoftEdgeUser DataDefaultExtensionsndcileolkflehcjpmjnfbnaibdcgglog [2021-05-17]
Edge HKUS-1-5-21-2675421376-3833927843-2164136087-1001SOFTWAREMicrosoftEdgeExtensions…EdgeExtension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]

FireFox:
========
FF DefaultProfile: qv7hwwsh.default
FF ProfilePath: C:UsersiguglAppDataRoamingMozillaFirefoxProfilesqv7hwwsh.default [2021-05-18]
FF ProfilePath: C:UsersiguglAppDataRoamingMozillaFirefoxProfilespzrg730n.default-release [2021-06-10]
FF Extension: (AdBlocker Ultimate) – C:UsersiguglAppDataRoamingMozillaFirefoxProfilespzrg730n.default-releaseExtensionsadblockultimate@adblockultimate.net.xpi [2021-05-18]
FF Extension: (BetterTTV) – C:UsersiguglAppDataRoamingMozillaFirefoxProfilespzrg730n.default-releaseExtensionsfirefox@betterttv.net.xpi [2021-05-27]
FF Extension: (Ghostery – Privacy Ad Blocker) – C:UsersiguglAppDataRoamingMozillaFirefoxProfilespzrg730n.default-releaseExtensionsfirefox@ghostery.com.xpi [2021-05-19]
FF Extension: (Dashlane) – C:UsersiguglAppDataRoamingMozillaFirefoxProfilespzrg730n.default-releaseExtensionsjetpack-extension@dashlane.com.xpi [2021-05-26] [UpdateUrl:hxxps://ws1.dashlane.com/5/binaries/query?logins=&platform=firefox&target=ff_web_extension&format=json&version=]
FF HKLM…FirefoxExtensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] – C:Program Files (x86)Kaspersky LabKaspersky Total Security 21.3FFExtlight_plugin_firefoxaddon.xpi => not found
FF HKLM-x32…FirefoxExtensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] – C:Program Files (x86)Kaspersky LabKaspersky Total Security 21.3FFExtlight_plugin_firefoxaddon.xpi => not found
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:Program FilesMicrosoft OfficerootOffice16NPSPWRAP.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:Program FilesVideoLANVLCnpvlc.dll [2021-05-11] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:Program FilesVideoLANVLCnpvlc.dll [2021-05-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Mozilla Firefoxpluginsnpmeetingjoinpluginoc.dll [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16NPSPWRAP.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
FF ExtraCheck: C:Program Filesmozilla firefoxdefaultsprefkl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2021-06-10] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:Program Filesmozilla firefoxkl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2021-06-10] <==== ATTENTION

Chrome:
=======
CHR HKLM…ChromeExtension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] – hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32…ChromeExtension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] – hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ArmouryCrateService; C:Program FilesASUSARMOURY CRATE Lite ServiceArmouryCrate.Service.exe [348280 2021-03-27] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 asComSvc; C:Program Files (x86)ASUSAXSP4.00.45atkexComSvc.exe [442416 2020-11-30] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S2 asus; C:Program Files (x86)ASUSUpdateAsusUpdate.exe [168520 2021-03-13] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsusCertService; C:Program Files (x86)ASUSAsusCertServiceAsusCertService.exe [313008 2020-11-19] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.)
S3 asusm; C:Program Files (x86)ASUSUpdateAsusUpdate.exe [168520 2021-03-13] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S2 AsusUpdateCheck; C:WindowsSystem32AsusUpdateCheck.exe [842128 2021-06-10] (ASUSTeK Computer Inc. -> )
R2 AVP21.3; C:Program Files (x86)Kaspersky LabKaspersky Total Security 21.3avp.exe [384280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 ClickToRunSvc; C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeClickToRun.exe [11279752 2021-05-21] (Microsoft Corporation -> Microsoft Corporation)
R2 DtsApo4Service; C:WindowsSystem32DTSPCAPO4xDtsApo4Service.exe [185432 2020-06-02] (Microsoft Windows Hardware Compatibility Publisher -> DTS Inc.)
S3 EasyAntiCheat; C:Program Files (x86)EasyAntiCheatEasyAntiCheat.exe [803952 2021-04-11] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 klvssbridge64_21.3; C:Program Files (x86)Kaspersky LabKaspersky Total Security 21.3x64vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 KSDE5.3; C:Program Files (x86)Kaspersky LabKaspersky VPN 5.3ksde.exe [646520 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 LGHUBUpdaterService; C:Program FilesLGHUBlghub_updater.exe [10731424 2021-05-28] (Logitech Inc -> Logitech, Inc.)
R2 LightingService; C:Program Files (x86)LightingServiceLightingService.exe [3210232 2021-03-03] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R2 MariaDB; C:Program FilesMariaDB 10.5binmysqld.exe [32232 2021-05-05] (MariaDB Corporation Ab -> )
R2 NahimicService; C:Windowssystem32NahimicService.exe [2719664 2020-11-04] (A-Volute -> Nahimic)
R2 nordvpn-service; C:Program FilesNordVPNnordvpn-service.exe [277688 2021-04-21] (TEFINCOM S.A. -> TEFINCOM S.A.)
R2 ROG Live Service; C:Program Files (x86)ASUSROG Live ServiceROGLiveService.exe [5557848 2021-03-24] (ASUSTEK COMPUTER INCORPORATION -> ASUSTek COMPUTER INC.)
S3 Sense; C:Program FilesWindows Defender Advanced Threat ProtectionMsSense.exe [5393304 2021-06-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 VSStandardCollectorService150; C:Program Files (x86)Microsoft Visual StudioSharedCommonDiagnosticsHub.Collection.ServiceStandardCollector.Service.exe [147392 2019-04-30] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2105.4-0NisSrv.exe [2644760 2021-06-06] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2105.4-0MsMpEng.exe [136656 2021-06-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:WindowsSystem32DriverStoreFileRepositorynv_dispi.inf_amd64_1108979a670abe46Display.NvContainerNVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%NVIDIANVDisplay.ContainerLocalSystem.log -l 3 -d C:WindowsSystem32DriverStoreFileRepositorynv_dispi.inf_amd64_1108979a670abe46Display.NvContainerpluginsLocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystemLocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleLowerFilter; C:WindowsSystem32driversAppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R1 Asusgio2; C:Windowssystem32driversAsIO2.sys [33832 2019-04-09] (ASUSTeK Computer Inc. -> )
R1 Asusgio3; C:Windowssystem32driversAsIO3.sys [43920 2020-12-16] (ASUSTeK Computer Inc. -> )
R3 AVoluteSS3Vad; C:WindowsSystem32driversAVoluteSS3Vad.sys [85080 2019-08-15] (A-Volute -> Windows ® Win 7 DDK provider)
R0 cm_km; C:WindowsSystem32DRIVERScm_km.sys [250032 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 cpuz150; C:Windowstempcpuz150cpuz150_x64.sys [44832 2021-05-18] (CPUID S.A.R.L.U. -> CPUID)
R1 EneTechIo; C:Windowssystem32driversene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 GLCKIO2; C:Windowssystem32driversGLCKIO2.sys [29368 2019-04-24] (ASUSTeK Computer Inc. -> )
R4 IOMap; C:Windowssystem32driversIOMap64.sys [35344 2021-01-18] (ASUSTEK COMPUTER INC. -> ASUSTeK Computer Inc.)
R1 klbackupdisk; C:Windowssystem32DRIVERSklbackupdisk.sys [110336 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klbackupflt; C:WindowsSystem32DRIVERSklbackupflt.sys [211704 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kldisk; C:Windowssystem32DRIVERSkldisk.sys [126216 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S0 klelam; C:WindowsSystem32DRIVERSklelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R1 klflt; C:Windowssystem32DRIVERSklflt.sys [514840 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klgse; C:WindowsSystem32DRIVERSklgse.sys [657696 2021-05-08] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klhk; C:Windowssystem32DRIVERSklhk.sys [1439456 2021-05-08] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klids; C:ProgramDataKaspersky LabAVP21.3Basesklids.sys [253736 2021-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 KLIF; C:WindowsSystem32DRIVERSklif.sys [1042712 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klim6; C:Windowssystem32DRIVERSklim6.sys [98040 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klkbdflt; C:Windowssystem32DRIVERSklkbdflt.sys [112392 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klmouflt; C:Windowssystem32DRIVERSklmouflt.sys [112904 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpd; C:WindowsSystem32DRIVERSklpd.sys [85256 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpnpflt; C:Windowssystem32DRIVERSklpnpflt.sys [96008 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 kltap; C:WindowsSystem32driverskltap.sys [55592 2021-02-19] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:WindowsSystem32Driversklupd_klif_arkmon.sys [263888 2021-06-10] (Kaspersky Lab JSC -> AO Kaspersky Lab)
U3 klupd_klif_klark; C:WindowsSystem32Driversklupd_klif_klark.sys [309104 2021-06-10] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:WindowsSystem32Driversklupd_klif_klbg.sys [115744 2021-06-10] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:WindowsSystem32Driversklupd_klif_mark.sys [224880 2021-06-10] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwfp; C:Windowssystem32DRIVERSklwfp.sys [155912 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwtp; C:Windowssystem32DRIVERSklwtp.sys [327936 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kneps; C:Windowssystem32DRIVERSkneps.sys [300808 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 LGHUBTemperatureService; C:Program FilesLGHUBlogi_core_temp.sys [22864 2021-05-28] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:Windowssystem32driverslogi_joy_bus_enum.sys [37200 2021-03-22] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:Windowssystem32driverslogi_joy_vir_hid.sys [25928 2021-03-22] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:Windowssystem32driverslogi_joy_xlcore.sys [66896 2021-03-22] (Logitech Inc -> Logitech)
R1 MSIO; C:Windowssystem32driversMsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R2 NDivert; C:WindowsSystem32driversNDivert.sys [105184 2021-02-22] (TEFINCOM S.A. -> )
R3 nlwt; C:Windowssystem32DRIVERSnlwt.sys [39360 2021-03-28] (TEFINCOM S.A. -> WireGuard LLC)
R1 nordlwf; C:Windowssystem32DRIVERSnordlwf.sys [38608 2020-12-14] (TEFINCOM S.A. -> TEFINCOM S.A.)
S3 RzCommon; C:WindowsSystem32driversRzCommon.sys [53656 2020-11-16] (Razer USA Ltd. -> Razer Inc)
S3 RzDev_0228; C:WindowsSystem32driversRzDev_0228.sys [54160 2020-08-24] (Razer USA Ltd. -> Razer Inc)
R3 tapnordvpn; C:WindowsSystem32driverstapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project)
S3 WdBoot; C:Windowssystem32driverswdWdBoot.sys [49560 2021-06-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:Windowssystem32driverswdWdFilter.sys [425208 2021-06-06] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:WindowsSystem32driverswdWdNisDrv.sys [76008 2021-06-06] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-06-10 01:44 – 2021-06-10 01:44 – 000030529 _____ C:UsersiguglDesktopFRST.txt
2021-06-10 01:43 – 2021-06-10 01:44 – 000000000 ____D C:FRST
2021-06-10 01:42 – 2021-06-10 01:42 – 002300416 _____ (Farbar) C:UsersiguglDesktopFRST64.exe
2021-06-10 01:39 – 2021-06-10 01:39 – 000309104 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklupd_klif_klark.sys
2021-06-10 01:33 – 2021-06-10 01:33 – 000263888 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklupd_klif_arkmon.sys
2021-06-10 01:33 – 2021-06-10 01:33 – 000224880 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklupd_klif_mark.sys
2021-06-10 01:33 – 2021-06-10 01:33 – 000115744 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklupd_klif_klbg.sys
2021-06-10 01:33 – 2021-06-10 01:33 – 000003392 _____ C:Windowssystem32TasksKaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901}
2021-06-10 01:33 – 2021-06-10 01:33 – 000002170 _____ C:UsersPublicDesktopKaspersky Total Security.lnk
2021-06-10 01:33 – 2021-06-10 01:33 – 000002170 _____ C:ProgramDataDesktopKaspersky Total Security.lnk
2021-06-10 01:33 – 2021-06-10 01:33 – 000001155 _____ C:UsersPublicDesktopKaspersky VPN.lnk
2021-06-10 01:33 – 2021-06-10 01:33 – 000001155 _____ C:ProgramDataDesktopKaspersky VPN.lnk
2021-06-10 01:33 – 2021-06-10 01:33 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsKaspersky VPN
2021-06-10 01:33 – 2021-06-10 01:33 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsKaspersky Total Security
2021-06-10 01:33 – 2021-06-10 01:33 – 000000000 ____D C:ProgramDataKaspersky Lab
2021-06-10 01:33 – 2021-06-10 01:33 – 000000000 ____D C:Program Files (x86)Kaspersky Lab
2021-06-10 01:33 – 2021-02-19 21:09 – 000110176 _____ (Kaspersky Lab ZAO) C:Windowssystem32klfphc.dll
2021-06-10 01:33 – 2021-02-19 21:08 – 001042712 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklif.sys
2021-06-10 01:33 – 2021-02-19 21:08 – 000514840 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklflt.sys
2021-06-10 01:27 – 2021-06-10 01:27 – 002755928 _____ (Kaspersky) C:UsersiguglDownloadsstartup.exe
2021-06-10 01:21 – 2021-06-10 01:21 – 000000000 ____D C:UsersiguglAppDataRoamingGyazo
2021-06-09 19:05 – 2021-06-09 19:05 – 002755584 _____ (Microsoft Corporation) C:WindowsSysWOW64mshtml.tlb
2021-06-09 19:05 – 2021-06-09 19:05 – 002755584 _____ (Microsoft Corporation) C:Windowssystem32mshtml.tlb
2021-06-09 19:05 – 2021-06-09 19:05 – 002260480 _____ (The ICU Project) C:Windowssystem32icu.dll
2021-06-09 19:05 – 2021-06-09 19:05 – 001864192 _____ (The ICU Project) C:WindowsSysWOW64icu.dll
2021-06-09 19:05 – 2021-06-09 19:05 – 001823792 _____ (Microsoft Corporation) C:Windowssystem32winload.efi
2021-06-09 19:05 – 2021-06-09 19:05 – 001393496 _____ (Microsoft Corporation) C:Windowssystem32winresume.efi
2021-06-09 19:05 – 2021-06-09 19:05 – 001314120 _____ (Microsoft Corporation) C:Windowssystem32SecConfig.efi
2021-06-09 19:05 – 2021-06-09 19:05 – 000657464 _____ C:Windowssystem32WindowManagementAPI.dll
2021-06-09 19:05 – 2021-06-09 19:05 – 000568832 _____ (Microsoft Corporation) C:Windowssystem32inetcpl.cpl
2021-06-09 19:05 – 2021-06-09 19:05 – 000563712 _____ (Microsoft Corporation) C:Windowssystem32winspool.drv
2021-06-09 19:05 – 2021-06-09 19:05 – 000468440 _____ C:WindowsSysWOW64WindowManagementAPI.dll
2021-06-09 19:05 – 2021-06-09 19:05 – 000451072 _____ (Microsoft Corporation) C:WindowsSysWOW64inetcpl.cpl
2021-06-09 19:05 – 2021-06-09 19:05 – 000423936 _____ (Microsoft Corporation) C:WindowsSysWOW64winspool.drv
2021-06-09 19:05 – 2021-06-09 19:05 – 000287232 _____ C:Windowssystem32CoreMas.dll
2021-06-09 19:05 – 2021-06-09 19:05 – 000272384 _____ C:Windowssystem32TpmTool.exe
2021-06-09 19:05 – 2021-06-09 19:05 – 000223744 _____ C:WindowsSysWOW64TpmTool.exe
2021-06-09 19:05 – 2021-06-09 19:05 – 000097280 _____ C:Windowssystem32Driverscimfs.sys
2021-06-09 19:05 – 2021-06-09 19:05 – 000011353 _____ C:Windowssystem32DrtmAuthTxt.wim
2021-06-07 20:47 – 2021-06-07 20:47 – 008050676 _____ C:UsersiguglDownloadsjfreechart-1.0.19.zip
2021-06-07 20:47 – 2021-06-07 20:47 – 000000000 ____D C:UsersiguglDownloadsjfreechart-1.0.19
2021-06-07 14:30 – 2021-06-07 14:30 – 006973240 _____ C:UsersiguglDownloadsGroup 42 Requirements Document.pdf
2021-06-07 13:40 – 2021-06-07 13:40 – 000000000 ____D C:UsersiguglDocumentsNew folder
2021-06-07 12:58 – 2021-06-07 14:42 – 000000000 ____D C:UsersiguglAppDataRoamingobs-studio
2021-06-07 12:58 – 2021-06-07 12:58 – 076720824 _____ (obsproject.com) C:UsersiguglDownloadsOBS-Studio-27.0-Full-Installer-x64.exe
2021-06-07 12:58 – 2021-06-07 12:58 – 000000000 ____D C:ProgramDataobs-studio-hook
2021-06-07 12:58 – 2021-06-07 12:58 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsOBS Studio
2021-06-07 12:58 – 2021-06-07 12:58 – 000000000 ____D C:Program Filesobs-studio
2021-06-06 21:10 – 2021-06-06 21:10 – 186429125 _____ C:UsersiguglDownloadsFinalSubmissionVideo_Scaffold.mov
2021-06-06 12:25 – 2021-06-07 11:49 – 000000000 ____D C:UsersiguglDocumentsAudio Clips
2021-06-06 12:25 – 2021-06-06 12:25 – 000000000 ____D C:UsersiguglDocumentsAudacity
2021-06-06 11:32 – 2021-06-06 11:32 – 000000000 ____D C:Usersigugl.cache
2021-06-06 11:30 – 2021-06-06 17:50 – 000000000 ____D C:UsersiguglAppDataRoamingyoutube-dlg
2021-06-06 11:30 – 2021-06-06 11:30 – 000000000 ____D C:UsersiguglDownloadsyoutube-dl-gui-0.4-win-setup
2021-06-06 11:30 – 2021-06-06 11:30 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsYoutube-DLG
2021-06-06 11:30 – 2021-06-06 11:30 – 000000000 ____D C:Program Files (x86)Youtube-DLG
2021-06-06 11:29 – 2021-06-06 11:29 – 028321056 _____ C:UsersiguglDownloadsyoutube-dl-gui-0.4-win-setup.zip
2021-06-06 11:26 – 2021-06-06 11:26 – 008173621 _____ C:UsersiguglDocumentsyoutube-dl.exe
2021-06-06 11:03 – 2021-06-07 22:22 – 000000000 ____D C:UsersiguglAppDataRoamingaudacity
2021-06-06 11:03 – 2021-06-06 11:03 – 000001092 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsAudacity.lnk
2021-06-06 11:03 – 2021-06-06 11:03 – 000000000 ____D C:UsersiguglAppDataLocalAudacity
2021-06-06 11:03 – 2021-06-06 11:03 – 000000000 ____D C:Program Files (x86)Audacity
2021-06-06 11:02 – 2021-06-06 11:02 – 029534144 _____ (Audacity Team ) C:UsersiguglDownloadsaudacity-win-3.0.2.exe
2021-06-05 15:40 – 2021-06-05 15:42 – 000003898 _____ C:UsersiguglDocumentscab302project.sql
2021-06-05 12:17 – 2021-06-05 12:17 – 000048393 _____ C:UsersiguglDownloadsAcademicHistory-9699686-06_May_2021.pdf
2021-06-05 12:15 – 2021-06-05 12:15 – 000012004 _____ C:UsersiguglDocumentsIsaac-Guglielmin-Boeing-Cover-Letter.pdf
2021-06-05 11:59 – 2021-06-05 11:59 – 000217471 _____ C:UsersiguglDownloadsIsaac-Guglielmin-CV.pdf
2021-06-05 09:54 – 2021-06-05 09:54 – 000000000 ____D C:UsersiguglAppDataLocalNota_Inc
2021-06-04 19:51 – 2021-06-04 19:51 – 000000000 ____D C:Windowssystem32TasksMozilla
2021-06-04 19:08 – 2021-06-04 19:08 – 000338777 _____ C:UsersiguglDownloadsN9699686_CAB203_Project_Report.pdf
2021-06-04 15:12 – 2021-06-04 15:12 – 000347618 _____ C:UsersiguglDownloadsCAB203_Project(1).pdf
2021-06-04 15:04 – 2021-06-04 15:04 – 000362972 _____ C:UsersiguglDownloadsCAB203_Project.pdf
2021-06-04 14:49 – 2021-06-01 02:15 – 001855184 _____ C:Windowssystem32vulkaninfo-1-999-0-0-0.exe
2021-06-04 14:49 – 2021-06-01 02:15 – 001855184 _____ C:Windowssystem32vulkaninfo.exe
2021-06-04 14:49 – 2021-06-01 02:15 – 001453360 _____ (Khronos Group) C:Windowssystem32OpenCL.dll
2021-06-04 14:49 – 2021-06-01 02:15 – 001435864 _____ C:WindowsSysWOW64vulkaninfo-1-999-0-0-0.exe
2021-06-04 14:49 – 2021-06-01 02:15 – 001435864 _____ C:WindowsSysWOW64vulkaninfo.exe
2021-06-04 14:49 – 2021-06-01 02:15 – 001192752 _____ (Khronos Group) C:WindowsSysWOW64OpenCL.dll
2021-06-04 14:49 – 2021-06-01 02:15 – 001094864 _____ C:Windowssystem32vulkan-1-999-0-0-0.dll
2021-06-04 14:49 – 2021-06-01 02:15 – 001094864 _____ C:Windowssystem32vulkan-1.dll
2021-06-04 14:49 – 2021-06-01 02:15 – 000948936 _____ C:WindowsSysWOW64vulkan-1-999-0-0-0.dll
2021-06-04 14:49 – 2021-06-01 02:15 – 000948936 _____ C:WindowsSysWOW64vulkan-1.dll
2021-06-04 14:49 – 2021-06-01 02:11 – 001514784 _____ (NVIDIA Corporation) C:Windowssystem32NvIFR64.dll
2021-06-04 14:49 – 2021-06-01 02:11 – 001166096 _____ (NVIDIA Corporation) C:WindowsSysWOW64NvIFR.dll
2021-06-04 14:49 – 2021-06-01 02:11 – 000715536 _____ C:Windowssystem32nvofapi64.dll
2021-06-04 14:49 – 2021-06-01 02:11 – 000689952 _____ (NVIDIA Corporation) C:Windowssystem32nvidia-smi.exe
2021-06-04 14:49 – 2021-06-01 02:11 – 000675104 _____ (NVIDIA Corporation) C:Windowssystem32NvIFROpenGL.dll
2021-06-04 14:49 – 2021-06-01 02:11 – 000626960 _____ (NVIDIA Corporation) C:Windowssystem32nvml.dll
2021-06-04 14:49 – 2021-06-01 02:11 – 000575760 _____ C:WindowsSysWOW64nvofapi.dll
2021-06-04 14:49 – 2021-06-01 02:11 – 000563984 _____ (NVIDIA Corporation) C:WindowsSysWOW64NvIFROpenGL.dll
2021-06-04 14:49 – 2021-06-01 02:10 – 008317200 _____ (NVIDIA Corporation) C:Windowssystem32nvcuvid.dll
2021-06-04 14:49 – 2021-06-01 02:10 – 007434032 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvcuvid.dll
2021-06-04 14:49 – 2021-06-01 02:10 – 002823472 _____ (NVIDIA Corporation) C:Windowssystem32nvcuda.dll
2021-06-04 14:49 – 2021-06-01 02:10 – 002106160 _____ (NVIDIA Corporation) C:Windowssystem32NvFBC64.dll
2021-06-04 14:49 – 2021-06-01 02:10 – 001590576 _____ (NVIDIA Corporation) C:WindowsSysWOW64NvFBC.dll
2021-06-04 14:49 – 2021-06-01 02:10 – 000811808 _____ (NVIDIA Corporation) C:Windowssystem32nvEncodeAPI64.dll
2021-06-04 14:49 – 2021-06-01 02:10 – 000445744 _____ (NVIDIA Corporation) C:Windowssystem32nvdebugdump.exe
2021-06-04 14:49 – 2021-06-01 02:09 – 004795152 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvcuda.dll
2021-06-04 14:49 – 2021-06-01 02:09 – 000848688 _____ (NVIDIA Corporation) C:Windowssystem32MCU.exe
2021-06-04 14:49 – 2021-05-28 09:01 – 000087164 _____ C:Windowssystem32nvinfo.pb
2021-06-04 08:11 – 2021-06-10 01:35 – 000000000 ____D C:Program FilesMozilla Firefox
2021-06-03 22:22 – 2021-06-03 22:22 – 002190455 _____ C:UsersiguglDownloadsCAB203_Semester_1__2021___Project.pdf
2021-06-03 10:09 – 2021-06-03 18:41 – 000005340 _____ C:UsersiguglDocumentsbfu2e1fjewql.py
2021-06-02 20:17 – 2021-06-02 20:17 – 000001919 _____ C:UsersiguglDownloadsprojectexample(3).py
2021-06-02 18:25 – 2021-06-02 18:25 – 000001919 _____ C:UsersiguglDownloadsprojectexample(2).py
2021-06-02 15:41 – 2021-06-02 16:38 – 000009735 _____ C:UsersiguglDownloadsgraphs(1).py
2021-06-02 15:40 – 2021-06-02 18:34 – 000004423 _____ C:UsersiguglDownloadsprojectexample(1).py
2021-06-01 22:42 – 2021-06-01 23:12 – 000001448 _____ C:UsersiguglDocumentshehehehehehe.py
2021-06-01 11:37 – 2021-06-01 11:38 – 000000000 ____D C:UsersiguglAppDataRoamingHeidiSQL
2021-06-01 11:37 – 2021-06-01 11:37 – 000000000 ____D C:UsersiguglDocumentsHeidiSQL
2021-06-01 11:10 – 2021-06-01 11:10 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsMariaDB 10.5 (x64)
2021-06-01 11:10 – 2021-06-01 11:10 – 000000000 ____D C:Program FilesMariaDB 10.5
2021-06-01 11:09 – 2021-06-01 11:09 – 051822592 _____ C:UsersiguglDownloadsmariadb-10.5.10-winx64.msi
2021-06-01 09:31 – 2021-06-01 09:31 – 016089872 _____ (Zoom Video Communications, Inc.) C:UsersiguglDownloadsZoomInstaller.exe
2021-06-01 09:31 – 2021-06-01 09:31 – 000000000 ____D C:UsersiguglAppDataRoamingMicrosoftWindowsStart MenuProgramsZoom
2021-06-01 00:05 – 2021-06-01 00:05 – 000000000 ____D C:UsersiguglDocumentshahahahaha
2021-05-31 23:42 – 2021-05-31 23:42 – 000000000 ____D C:UsersiguglDocumentsOh god
2021-05-31 23:16 – 2021-05-31 23:16 – 000000000 ____D C:UsersiguglDocumentsActual Final
2021-05-31 23:01 – 2021-05-31 23:01 – 000000000 ____D C:UsersiguglDocumentsFinal
2021-05-31 22:49 – 2021-05-31 22:49 – 000000000 ____D C:UsersiguglDocumentsHelp
2021-05-31 22:11 – 2021-05-31 22:11 – 001124873 _____ C:UsersiguglDocumentsN9699686.zip
2021-05-31 22:11 – 2021-05-31 22:11 – 000000000 ____D C:UsersiguglDocumentsN9699686
2021-05-31 22:08 – 2021-05-31 22:08 – 000911332 _____ C:UsersiguglDownloadsHelp_Me.pdf
2021-05-30 21:12 – 2021-05-30 21:22 – 000000000 ____D C:UsersiguglDocumentsTengen Toppa Gurren Lagann
2021-05-30 12:29 – 2021-05-30 18:26 – 000005040 _____ C:UsersiguglDocumentshelp.py
2021-05-29 19:53 – 2021-05-29 19:53 – 000000000 ____D C:UsersiguglAppDataRoamingFrontier Developments
2021-05-29 19:53 – 2021-05-29 19:53 – 000000000 ____D C:UsersiguglAppDataLocalFrontier Developments
2021-05-29 19:47 – 2021-05-29 21:29 – 000000000 ____D C:UsersiguglAppDataLocalFrontier_Developments
2021-05-29 13:20 – 2021-05-30 12:29 – 000000000 ____D C:Usersigugl.idlerc
2021-05-29 12:57 – 2021-05-29 12:57 – 000001919 _____ C:UsersiguglDownloadsprojectexample.py
2021-05-29 07:55 – 2021-05-29 20:17 – 000000000 ____D C:Program Files (x86)Gyazo
2021-05-29 07:55 – 2021-05-29 07:55 – 011270688 _____ (Nota Inc. ) C:UsersiguglDownloadsGyazo-4.2.exe
2021-05-29 07:55 – 2021-05-29 07:55 – 000003544 _____ C:Windowssystem32TasksGyazoUpdateTaskMachineDaily
2021-05-29 07:55 – 2021-05-29 07:55 – 000003408 _____ C:Windowssystem32TasksGyazoUpdateTaskMachine
2021-05-29 07:55 – 2021-05-29 07:55 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsGyazo
2021-05-29 05:09 – 2021-05-29 05:09 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsLogi
2021-05-29 05:09 – 2021-05-29 05:09 – 000000000 ____D C:Program FilesLGHUB
2021-05-27 20:58 – 2021-05-27 20:58 – 002538358 _____ C:UsersiguglDownloadsAnany Levitin – Introduction to the Design and Analysis of Algorithms, 3rd Edition -Addison Wesley (2011).pdf
2021-05-27 20:08 – 2021-06-01 22:05 – 000000000 ____D C:UsersiguglDocumentsAssignments
2021-05-26 15:35 – 2021-05-26 15:35 – 000037502 _____ C:UsersiguglDownloadsmikasa.webp
2021-05-26 13:49 – 2021-05-26 13:49 – 000002583 _____ C:UsersiguglDownloadsInterfaces(3).zip
2021-05-26 13:49 – 2021-05-26 13:49 – 000000000 ____D C:UsersiguglDownloadsInterfaces(3)
2021-05-26 09:19 – 2021-05-26 09:19 – 000054994 _____ C:UsersiguglDownloadsIsaac Guglielmin Letter.pdf
2021-05-26 09:17 – 2021-05-26 09:17 – 000146356 _____ C:UsersiguglDesktop9699686 Guglielmin Ext CAB301.pdf
2021-05-26 09:15 – 2021-06-08 16:32 – 000058252 _____ C:UsersiguglDocumentsIsaac Guglielmin Letter.pdf
2021-05-25 10:51 – 2021-05-25 10:51 – 000274755 _____ C:UsersiguglDownloadsToolLibrary-8fabfed9fedc0f1982f250726983d18efc24ea4b.zip
2021-05-25 10:51 – 2021-05-25 10:51 – 000000000 ____D C:UsersiguglDownloadsToolLibrary-8fabfed9fedc0f1982f250726983d18efc24ea4b
2021-05-24 18:50 – 2021-05-24 18:50 – 000527890 _____ C:UsersiguglDownloadsCAB301_Semester_1__2021___Assignment__Tool_Library.pdf
2021-05-24 16:32 – 2021-05-24 16:32 – 000105455 _____ C:UsersiguglDownloadsimage0.jpeg
2021-05-23 16:15 – 2021-05-23 16:15 – 000000000 ____D C:UsersiguglAppDataLocalNuGet
2021-05-23 16:15 – 2021-05-23 16:15 – 000000000 ____D C:Usersigugl.nuget
2021-05-22 15:10 – 2021-05-22 15:10 – 000000000 ____D C:UsersiguglDownloadsExercise4-Solution
2021-05-22 15:09 – 2021-05-22 15:09 – 000047687 _____ C:UsersiguglDownloadsExercise4-Solution.zip
2021-05-22 13:02 – 2021-05-22 13:02 – 000001800 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsBlend for Visual Studio 2019.lnk
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:WindowsSysWOW643082
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:WindowsSysWOW642052
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:WindowsSysWOW641055
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:WindowsSysWOW641049
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:WindowsSysWOW641046
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:WindowsSysWOW641045
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:WindowsSysWOW641042
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:WindowsSysWOW641041
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:WindowsSysWOW641040
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:WindowsSysWOW641036
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:WindowsSysWOW641033
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:WindowsSysWOW641031
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:WindowsSysWOW641029
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:WindowsSysWOW641028
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:Windowssystem323082
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:Windowssystem322052
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:Windowssystem321055
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:Windowssystem321049
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:Windowssystem321046
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:Windowssystem321045
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:Windowssystem321042
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:Windowssystem321041
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:Windowssystem321040
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:Windowssystem321036
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:Windowssystem321033
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:Windowssystem321031
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:Windowssystem321029
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:Windowssystem321028
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:UsersiguglAppDataLocalPackage Cache
2021-05-22 13:01 – 2021-05-22 13:01 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsPython 3.7
2021-05-22 13:00 – 2021-05-22 13:00 – 000000000 ____D C:Program FilesMicrosoft SQL Server
2021-05-22 13:00 – 2021-05-22 13:00 – 000000000 ____D C:Program Files (x86)Windows Kits
2021-05-22 13:00 – 2021-05-22 13:00 – 000000000 ____D C:Program Files (x86)NuGet
2021-05-22 13:00 – 2021-05-22 13:00 – 000000000 ____D C:Program Files (x86)Microsoft SQL Server
2021-05-22 13:00 – 2021-05-22 13:00 – 000000000 ____D C:Program Files (x86)Microsoft SDKs
2021-05-22 12:59 – 2021-05-22 13:00 – 000000000 ____D C:Program Filesdotnet
2021-05-22 12:59 – 2021-05-22 12:59 – 000001799 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsVisual Studio 2019.lnk
2021-05-22 12:59 – 2021-05-22 12:59 – 000000000 ____D C:Program Files (x86)dotnet
2021-05-22 01:40 – 2021-05-13 20:38 – 000037656 _____ (NVIDIA Corporation) C:Windowssystem32Driversnvhdap64.dll
2021-05-22 01:38 – 2021-06-01 02:10 – 000656176 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvEncodeAPI.dll
2021-05-21 11:13 – 2021-05-21 11:13 – 000000000 ____D C:UsersiguglAppDataLocalpip
2021-05-21 11:09 – 2021-05-21 11:09 – 000009735 _____ C:UsersiguglDownloadsgraphs.py
2021-05-20 15:34 – 2021-05-20 15:34 – 000000000 ____D C:UsersiguglAppDataLocalINetHistory
2021-05-20 15:28 – 2021-05-20 15:28 – 000091136 _____ (Microsoft Corporation) C:Windowssystem32gamingtcuihelpers.dll
2021-05-20 15:27 – 2021-05-20 15:27 – 008673152 _____ () C:UsersiguglDownloadsXboxInstaller.exe
2021-05-19 20:59 – 2021-05-19 21:00 – 054954633 _____ C:UsersiguglDocumentsFinal.mp4
2021-05-19 20:56 – 2021-05-19 20:56 – 067090793 _____ C:UsersiguglDocumentsnew.mp4
2021-05-19 20:53 – 2021-05-19 21:02 – 000237147 _____ C:UsersiguglDocumentsUntitled Project.osp
2021-05-19 20:53 – 2021-05-19 20:53 – 000000000 ____D C:UsersiguglDocumentsUntitled Project_assets
2021-05-19 20:50 – 2021-05-19 21:01 – 066028909 _____ C:UsersiguglDocumentsUntitled Project.mp4
2021-05-19 20:46 – 2021-05-19 20:47 – 067111533 _____ C:UsersiguglDocumentsez.mp4
2021-05-19 20:43 – 2021-05-19 21:26 – 000000000 ____D C:Usersigugl.openshot_qt
2021-05-19 20:43 – 2021-05-19 20:43 – 000000971 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsOpenShot Video Editor.lnk
2021-05-19 20:43 – 2021-05-19 20:43 – 000000000 ____D C:Program FilesOpenShot Video Editor
2021-05-19 20:41 – 2021-05-19 20:42 – 136910072 _____ (OpenShot Studios, LLC ) C:UsersiguglDownloadsOpenShot-v2.5.1-x86_64.exe
2021-05-19 19:01 – 2021-05-22 01:09 – 000000000 ____D C:Program Files (x86)MSI Afterburner
2021-05-19 19:01 – 2021-05-19 19:01 – 000000000 ____D C:UsersiguglAppDataRoamingMicrosoftWindowsStart MenuProgramsMSI Afterburner
2021-05-19 10:13 – 2021-05-19 10:13 – 001687040 _____ C:Windowssystem32libcrypto.dll
2021-05-19 10:13 – 2021-05-19 10:13 – 001163776 _____ C:Windowssystem32MBR2GPT.EXE
2021-05-19 10:13 – 2021-05-19 10:13 – 000700928 _____ C:Windowssystem32FsNVSDeviceSource.dll
2021-05-19 10:13 – 2021-05-19 10:13 – 000165888 _____ C:Windowssystem32DataStoreCacheDumpTool.exe
2021-05-19 10:13 – 2021-05-19 10:13 – 000157184 _____ C:Windowssystem32uwfcsp.dll
2021-05-19 10:13 – 2021-05-19 10:13 – 000153600 _____ C:Windowssystem32uwfcfgmgmt.dll
2021-05-19 10:13 – 2021-05-19 10:13 – 000060928 _____ C:Windowssystem32runexehelper.exe
2021-05-19 10:13 – 2021-05-19 10:13 – 000013312 _____ C:Windowssystem32agentactivationruntimestarter.exe
2021-05-18 23:55 – 2021-05-18 23:58 – 000000000 ____D C:UsersiguglAppDataLocalGitHubVisualStudio
2021-05-18 22:48 – 2021-05-18 22:48 – 000000000 ____D C:UsersiguglAppDataLocalCodeMaid
2021-05-18 22:38 – 2021-05-18 22:38 – 000000000 ____D C:UsersiguglAppDataLocalLowTemp
2021-05-18 22:10 – 2021-05-18 22:10 – 000000000 ____D C:UsersiguglAppDataRoamingNuGet
2021-05-18 20:53 – 2021-06-10 01:36 – 000000000 ____D C:ProgramDataMozilla
2021-05-18 20:53 – 2021-06-10 01:35 – 000000000 ____D C:UsersiguglAppDataLocalLowMozilla
2021-05-18 20:53 – 2021-06-05 08:32 – 000000000 ____D C:Program Files (x86)Mozilla Maintenance Service
2021-05-18 20:53 – 2021-06-04 19:51 – 000001005 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsFirefox.lnk
2021-05-18 20:53 – 2021-05-18 20:53 – 000333096 _____ (Mozilla) C:UsersiguglDownloadsFirefox Installer.exe
2021-05-18 20:53 – 2021-05-18 20:53 – 000000000 ____D C:UsersiguglAppDataRoamingMozilla
2021-05-18 20:53 – 2021-05-18 20:53 – 000000000 ____D C:UsersiguglAppDataLocalMozilla
2021-05-18 20:49 – 2021-06-10 01:35 – 000000000 ____D C:Program Files (x86)Steam
2021-05-18 20:49 – 2021-05-18 20:49 – 001770744 _____ C:UsersiguglDownloadsSteamSetup (1).exe
2021-05-18 20:49 – 2021-05-18 20:49 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsSteam
2021-05-18 20:44 – 2021-05-18 20:44 – 000030939 _____ C:UsersiguglDownloadsMTB.txt
2021-05-18 20:43 – 2021-05-18 20:43 – 000892416 _____ (Farbar) C:UsersiguglDownloadsMiniToolBox.exe
2021-05-18 20:39 – 2021-05-18 20:39 – 000000000 ____D C:UsersiguglDownloadsDRV_Bluetooth_Intel_AX200_TP_W10_64_V219021_20200604R
2021-05-18 20:38 – 2021-05-18 20:39 – 011304801 _____ C:UsersiguglDownloadsDRV_Bluetooth_Intel_AX200_TP_W10_64_V219021_20200604R.zip
2021-05-18 10:47 – 2021-05-25 10:47 – 000001083 _____ C:UsersiguglDocumentskprm-20210518104717.txt
2021-05-18 10:47 – 2021-05-18 10:47 – 000000000 ____D C:KPRM
2021-05-18 08:50 – 2021-05-18 08:50 – 000000000 ____D C:UsersiguglAppDataLocalOneDrive
2021-05-17 20:49 – 2021-05-17 20:49 – 003253544 _____ (TechPowerUp (www.techpowerup.com)) C:UsersiguglDownloadsMemTest64.exe
2021-05-17 20:47 – 2021-05-17 21:01 – 000000000 ____D C:Program FilesHWiNFO64
2021-05-17 20:47 – 2021-05-17 20:47 – 009140752 _____ (Martin Malik – REALiX ) C:UsersiguglDownloadshwi_702.exe
2021-05-17 20:47 – 2021-05-17 20:47 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsHWiNFO64
2021-05-17 20:35 – 2021-05-17 20:35 – 001279688 _____ (ALCPU ) C:UsersiguglDownloadsCore-Temp-setup.exe
2021-05-17 20:35 – 2021-05-17 20:35 – 000000000 ____D C:UsersiguglDocumentsMAXON
2021-05-17 20:35 – 2021-05-17 20:35 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsCore Temp
2021-05-17 20:35 – 2021-05-17 20:35 – 000000000 ____D C:Program FilesCore Temp
2021-05-17 20:34 – 2021-05-17 20:34 – 000000000 ____D C:UsersiguglAppDataRoamingMaxon
2021-05-17 20:33 – 2021-05-17 20:34 – 000000000 ____D C:UsersiguglDownloadsCinebenchR23
2021-05-17 20:30 – 2021-05-17 20:33 – 261956799 _____ C:UsersiguglDownloadsCinebenchR23.zip
2021-05-17 20:22 – 2021-05-17 20:22 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsGeeks3D
2021-05-17 20:22 – 2021-05-17 20:22 – 000000000 ____D C:Program Files (x86)Geeks3D
2021-05-17 20:21 – 2021-05-17 20:21 – 007435152 _____ (TechPowerUp (www.techpowerup.com)) C:UsersiguglDownloadsGPU-Z.2.39.0.exe
2021-05-17 20:21 – 2021-05-17 20:21 – 000001048 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsTechPowerUp GPU-Z.lnk
2021-05-17 20:21 – 2021-05-17 20:21 – 000000000 ____D C:Program Files (x86)GPU-Z
2021-05-17 20:20 – 2021-05-17 20:22 – 012459456 _____ (Geeks3D ) C:UsersiguglDownloadsFurMark_1.25.1.0_Setup.exe
2021-05-17 19:42 – 2021-06-10 01:35 – 000003112 _____ C:Windowssystem32TasksNahimicTask32
2021-05-17 19:42 – 2021-06-10 01:35 – 000003092 _____ C:Windowssystem32TasksNahimicTask64
2021-05-17 19:39 – 2021-05-17 19:39 – 035328832 _____ (AMD Inc.) C:UsersiguglDownloadsradeon-software-adrenalin-2020-21.5.1-minimalsetup-210505_web.exe
2021-05-17 19:39 – 2021-05-17 19:39 – 000000000 ____D C:UsersiguglAppDataLocalRadeonInstaller
2021-05-17 19:39 – 2021-05-17 19:39 – 000000000 ____D C:UsersiguglAppDataLocalAMD_Common
2021-05-17 19:39 – 2021-05-17 19:39 – 000000000 ____D C:ProgramDataAMD
2021-05-17 19:33 – 2021-06-01 00:00 – 000000000 ____D C:ProgramDataAMD AutoUpdate
2021-05-17 19:33 – 2021-05-17 19:39 – 000000000 ____D C:Program FilesAMD
2021-05-17 19:33 – 2021-05-17 19:33 – 000003484 _____ C:Windowssystem32TasksAMDAutoUpdate
2021-05-17 19:33 – 2021-05-17 19:33 – 000000000 ____D C:UsersiguglAppDataLocalSetup
2021-05-17 19:33 – 2021-05-17 19:33 – 000000000 ____D C:UsersiguglAppDataLocalDownloaded Installations
2021-05-17 19:33 – 2021-05-17 19:33 – 000000000 ____D C:UsersiguglAppDataLocalcache
2021-05-17 19:33 – 2021-05-17 19:33 – 000000000 ____D C:UsersiguglAppDataLocalAMD
2021-05-17 19:33 – 2021-05-17 19:33 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsAMD Ryzen Master
2021-05-17 19:32 – 2021-05-17 19:32 – 137625256 _____ (Advanced Micro Devices, Inc.) C:UsersiguglDownloadsAMD-Ryzen-Master.exe
2021-05-17 19:17 – 2021-05-17 19:17 – 021423440 _____ C:UsersiguglDownloadsROG-CROSSHAIR-VIII-HERO-WIFI-ASUS-3401.ZIP
2021-05-17 19:17 – 2021-05-17 19:17 – 000000000 ____D C:UsersiguglDownloadsROG-CROSSHAIR-VIII-HERO-WIFI-ASUS-3401
2021-05-17 17:29 – 2021-05-17 17:34 – 000000000 ____D C:UsersiguglHeaven
2021-05-17 17:28 – 2021-05-17 17:29 – 001065984 _____ C:UsersiguglAppDataLocalfile__0.localstorage
2021-05-17 17:25 – 2021-05-17 17:25 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsUnigine
2021-05-17 17:25 – 2021-05-17 17:25 – 000000000 ____D C:Program Files (x86)Unigine
2021-05-17 17:21 – 2021-05-17 17:25 – 259708359 _____ (Unigine Corp. ) C:UsersiguglDownloadsUnigine_Heaven-4.0.exe
2021-05-17 16:32 – 2021-05-17 16:32 – 000000000 ____D C:UsersiguglAppDataLocalmbam
2021-05-17 16:31 – 2021-05-17 16:31 – 002078632 _____ (Malwarebytes) C:UsersiguglDownloadsMBSetup.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-06-10 01:41 – 2020-11-19 17:54 – 000840822 _____ C:Windowssystem32PerfStringBackup.INI
2021-06-10 01:41 – 2019-12-07 19:13 – 000000000 ____D C:WindowsINF
2021-06-10 01:40 – 2021-03-13 19:58 – 000000000 ____D C:UsersiguglAppDataRoamingdiscord
2021-06-10 01:39 – 2021-05-01 19:50 – 000000000 ____D C:UsersiguglAppDataRoamingSlack
2021-06-10 01:37 – 2021-03-13 19:46 – 000000000 ____D C:ProgramDataNVIDIA
2021-06-10 01:35 – 2021-03-13 20:25 – 000000000 ____D C:UsersiguglAppDataRoamingLGHUB
2021-06-10 01:35 – 2021-03-13 20:25 – 000000000 ____D C:UsersiguglAppDataLocalLGHUB
2021-06-10 01:35 – 2021-03-13 19:57 – 000000000 ____D C:UsersiguglAppDataLocalDiscord
2021-06-10 01:35 – 2021-03-13 19:46 – 000000000 ___RD C:UsersiguglOneDrive
2021-06-10 01:34 – 2021-03-14 03:41 – 000880672 _____ C:Windowssystem32wpbbin.exe
2021-06-10 01:34 – 2021-03-14 03:41 – 000842128 _____ C:Windowssystem32AsusUpdateCheck.exe
2021-06-10 01:34 – 2021-03-14 03:41 – 000008192 ___SH C:DumpStack.log.tmp
2021-06-10 01:34 – 2021-03-13 19:44 – 000000000 ____D C:Usersigugl
2021-06-10 01:34 – 2020-11-19 17:43 – 000000006 ____H C:WindowsTasksSA.DAT
2021-06-10 01:34 – 2019-12-07 19:14 – 000000000 ____D C:WindowsServiceState
2021-06-10 01:34 – 2019-12-07 19:14 – 000000000 ____D C:ProgramDataregid.1991-06.com.microsoft
2021-06-10 01:34 – 2019-12-07 19:03 – 000524288 _____ C:Windowssystem32configBBI
2021-06-10 01:33 – 2021-05-03 21:47 – 000000000 ____D C:Program FilesCommon FilesAV
2021-06-10 01:33 – 2019-12-07 19:14 – 000000000 ___HD C:WindowsELAMBKUP
2021-06-10 01:33 – 2019-12-07 19:03 – 000032768 _____ C:Windowssystem32configELAM
2021-06-10 01:13 – 2020-11-19 17:43 – 000000000 ____D C:Windowssystem32SleepStudy
2021-06-09 23:39 – 2019-12-07 19:54 – 000000000 ____D C:Program FilesWindows Defender Advanced Threat Protection
2021-06-09 23:39 – 2019-12-07 19:14 – 000000000 ___RD C:WindowsPrintDialog
2021-06-09 23:39 – 2019-12-07 19:14 – 000000000 ____D C:WindowsSysWOW64lv-LV
2021-06-09 23:39 – 2019-12-07 19:14 – 000000000 ____D C:WindowsSysWOW64et-EE
2021-06-09 23:39 – 2019-12-07 19:14 – 000000000 ____D C:WindowsSysWOW64Dism
2021-06-09 23:39 – 2019-12-07 19:14 – 000000000 ____D C:WindowsSystemResources
2021-06-09 23:39 – 2019-12-07 19:14 – 000000000 ____D C:Windowssystem32oobe
2021-06-09 23:39 – 2019-12-07 19:14 – 000000000 ____D C:Windowssystem32migwiz
2021-06-09 23:39 – 2019-12-07 19:14 – 000000000 ____D C:Windowssystem32lv-LV
2021-06-09 23:39 – 2019-12-07 19:14 – 000000000 ____D C:Windowssystem32et-EE
2021-06-09 23:39 – 2019-12-07 19:14 – 000000000 ____D C:Windowssystem32Dism
2021-06-09 23:39 – 2019-12-07 19:14 – 000000000 ____D C:WindowsPolicyDefinitions
2021-06-09 23:39 – 2019-12-07 19:14 – 000000000 ____D C:Windowsbcastdvr
2021-06-09 23:03 – 2019-12-07 19:14 – 000000000 ___HD C:Program FilesWindowsApps
2021-06-09 23:03 – 2019-12-07 19:14 – 000000000 ____D C:WindowsAppReadiness
2021-06-09 22:38 – 2019-12-07 19:14 – 000000000 ___RD C:WindowsImmersiveControlPanel
2021-06-09 22:36 – 2020-11-19 17:43 – 000440696 _____ C:Windowssystem32FNTCACHE.DAT
2021-06-09 19:07 – 2019-12-07 19:03 – 000000000 ____D C:WindowsCbsTemp
2021-06-09 19:01 – 2021-03-27 16:11 – 000000000 ____D C:Windowssystem32MRT
2021-06-09 19:01 – 2021-03-13 22:35 – 000000000 ___HD C:$WinREAgent
2021-06-09 19:00 – 2021-03-27 16:11 – 132447432 ____C (Microsoft Corporation) C:Windowssystem32MRT.exe
2021-06-09 10:45 – 2021-03-14 00:03 – 000000000 ____D C:UsersiguglAppDataLocalCrashDumps
2021-06-08 16:46 – 2021-04-18 20:21 – 000000000 ____D C:UsersiguglAppDataLocalPlaceholderTileLogoFolder
2021-06-07 16:16 – 2021-05-01 20:48 – 000000000 ____D C:UsersiguglIdeaProjects
2021-06-07 14:22 – 2021-04-16 18:47 – 000000000 ____D C:UsersiguglAppDataRoamingvlc
2021-06-06 17:29 – 2020-11-19 17:43 – 000000000 ____D C:Windowssystem32Driverswd
2021-06-05 12:15 – 2021-03-13 19:45 – 000000000 ____D C:UsersiguglAppDataLocalPackages
2021-06-05 09:33 – 2021-05-01 19:50 – 000000000 ____D C:UsersiguglAppDataRoamingMicrosoftWindowsStart MenuProgramsSlack Technologies Inc
2021-06-05 09:33 – 2021-05-01 19:50 – 000000000 ____D C:UsersiguglAppDataLocalslack
2021-06-05 09:33 – 2021-03-13 19:57 – 000000000 ____D C:UsersiguglAppDataLocalSquirrelTemp
2021-06-05 09:15 – 2020-11-19 17:46 – 000002438 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Edge.lnk
2021-06-04 13:55 – 2021-04-25 01:34 – 000000000 ____D C:UsersiguglAppDataLocal.IdentityService
2021-06-02 15:27 – 2021-03-13 19:57 – 000000000 ____D C:UsersiguglAppDataRoamingMicrosoftWindowsStart MenuProgramsSteam
2021-06-01 12:41 – 2021-05-01 21:35 – 000000000 ____D C:Usersigugl.jdks
2021-06-01 09:31 – 2021-04-01 12:42 – 000000000 ____D C:UsersiguglAppDataRoamingZoom
2021-06-01 02:08 – 2021-04-23 21:38 – 006159160 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvapi.dll
2021-06-01 02:08 – 2021-03-13 19:45 – 007212232 _____ (NVIDIA Corporation) C:Windowssystem32nvapi64.dll
2021-05-29 19:59 – 2021-03-13 20:30 – 000000000 ____D C:UsersiguglAppDataLocalD3DSCache
2021-05-29 19:47 – 2021-03-13 19:46 – 000000000 ____D C:ProgramDataPackage Cache
2021-05-29 05:10 – 2021-04-18 11:52 – 000000000 ____D C:Program FilesMicrosoft Office
2021-05-29 05:10 – 2019-12-07 19:14 – 000000000 ____D C:Program FilesCommon Filesmicrosoft shared
2021-05-26 10:21 – 2021-03-28 19:04 – 000000000 ____D C:UsersiguglAppDataLocalNordVPN
2021-05-26 10:21 – 2021-03-28 19:04 – 000000000 ____D C:ProgramDataNordVPN
2021-05-26 10:21 – 2021-03-28 19:04 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsNordSec
2021-05-26 10:21 – 2021-03-28 19:04 – 000000000 ____D C:Program FilesNordVPN
2021-05-26 08:54 – 2021-03-13 19:46 – 000003380 _____ C:Windowssystem32TasksOneDrive Standalone Update Task-S-1-5-21-2675421376-3833927843-2164136087-1001
2021-05-26 08:54 – 2021-03-13 19:44 – 000002367 _____ C:UsersiguglAppDataRoamingMicrosoftWindowsStart MenuProgramsOneDrive.lnk
2021-05-22 12:59 – 2021-03-27 16:13 – 000000000 ____D C:Program Files (x86)MSBuild
2021-05-22 12:58 – 2021-04-25 01:30 – 000001433 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsVisual Studio Installer.lnk
2021-05-22 12:58 – 2021-04-25 01:30 – 000000000 ____D C:UsersiguglAppDataRoamingVisual Studio Setup
2021-05-22 01:41 – 2021-03-13 19:50 – 000000000 ____D C:UsersiguglAppDataLocalNVIDIA
2021-05-20 15:33 – 2020-11-19 17:48 – 000000000 ____D C:ProgramDataPackages
2021-05-20 15:27 – 2021-03-13 19:50 – 000000000 ____D C:UsersiguglAppDataLocalComms
2021-05-19 12:43 – 2021-04-25 01:34 – 000000000 ____D C:UsersiguglDocumentsVisual Studio 2019
2021-05-19 11:16 – 2021-04-25 01:30 – 000000000 ____D C:Program Files (x86)Microsoft Visual Studio
2021-05-19 11:16 – 2021-03-13 19:47 – 000000000 ____D C:Program Files (x86)Razer
2021-05-19 11:16 – 2019-12-07 19:51 – 000000000 ____D C:Windowssystem32OpenSSH
2021-05-19 11:16 – 2019-12-07 19:14 – 000000000 ____D C:WindowsSysWOW64WinMetadata
2021-05-19 11:16 – 2019-12-07 19:14 – 000000000 ____D C:WindowsSysWOW64setup
2021-05-19 11:16 – 2019-12-07 19:14 – 000000000 ____D C:WindowsSysWOW64oobe
2021-05-19 11:16 – 2019-12-07 19:14 – 000000000 ____D C:WindowsSysWOW64lt-LT
2021-05-19 11:16 – 2019-12-07 19:14 – 000000000 ____D C:Windowssystem32WinMetadata
2021-05-19 11:16 – 2019-12-07 19:14 – 000000000 ____D C:Windowssystem32SystemResetPlatform
2021-05-19 11:16 – 2019-12-07 19:14 – 000000000 ____D C:Windowssystem32setup
2021-05-19 11:16 – 2019-12-07 19:14 – 000000000 ____D C:Windowssystem32lt-LT
2021-05-19 11:16 – 2019-12-07 19:14 – 000000000 ____D C:WindowsProvisioning
2021-05-19 11:16 – 2019-12-07 19:14 – 000000000 ____D C:WindowsDiagTrack
2021-05-19 10:14 – 2019-12-07 19:54 – 000023552 _____ (Microsoft Corporation) C:Windowssystem32OEMDefaultAssociations.dll
2021-05-19 10:13 – 2021-03-13 19:45 – 000000000 ____D C:UsersiguglAppDataLocalConnectedDevicesPlatform
2021-05-18 22:05 – 2021-04-25 01:32 – 000000000 ____D C:Usersigugl.dotnet
2021-05-18 20:45 – 2021-03-13 19:51 – 000000000 ____D C:UsersiguglAppDataLocalRazer
2021-05-18 20:45 – 2021-03-13 19:51 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsRazer
2021-05-18 20:45 – 2021-03-13 19:50 – 000000000 ____D C:Program FilesRazer
2021-05-18 20:45 – 2021-03-13 19:47 – 000000000 ____D C:ProgramDataRazer
2021-05-18 20:19 – 2021-03-13 20:32 – 000000000 ____D C:UsersiguglAppDataRoamingNZXT CAM
2021-05-18 20:19 – 2021-03-13 20:32 – 000000000 ____D C:Program FilesNZXT CAM
2021-05-18 09:55 – 2021-03-13 20:25 – 000000000 ____D C:ProgramDataLGHUB
2021-05-17 20:02 – 2021-04-11 06:38 – 000000000 ____D C:UsersiguglAppDataLocalLowMCC
2021-05-17 19:41 – 2021-04-02 00:02 – 000000000 ____D C:AMD
2021-05-17 17:17 – 2021-03-13 19:55 – 000000000 ____D C:Riot Games
2021-05-17 17:17 – 2021-03-13 19:55 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsRiot Games
2021-05-17 17:12 – 2019-12-07 19:14 – 000000000 ____D C:WindowsLiveKernelReports
2021-05-13 20:38 – 2021-03-13 19:45 – 000136472 _____ (NVIDIA Corporation) C:Windowssystem32Driversnvhda64v.sys

==================== Files in the root of some directories ========

2021-05-17 17:28 – 2021-05-17 17:29 – 001065984 _____ () C:UsersiguglAppDataLocalfile__0.localstorage

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

 

 

 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-06-2021
Ran by igugl (10-06-2021 01:45:48)
Running from C:UsersiguglDesktop
Windows 10 Pro Version 20H2 19042.1052 (X64) (2021-03-13 17:42:46)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-2675421376-3833927843-2164136087-500 – Administrator – Disabled)
DefaultAccount (S-1-5-21-2675421376-3833927843-2164136087-503 – Limited – Disabled)
Guest (S-1-5-21-2675421376-3833927843-2164136087-501 – Limited – Disabled)
igugl (S-1-5-21-2675421376-3833927843-2164136087-1001 – Administrator – Enabled) => C:Usersigugl
WDAGUtilityAccount (S-1-5-21-2675421376-3833927843-2164136087-504 – Limited – Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled – Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Total Security (Enabled – Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23}
FW: Kaspersky Total Security (Enabled) {774D7037-0984-41B0-3A87-5E88E680AD58}

==================== Installed Programs ======================

(Only the adware programs with “Hidden” flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

AMD Chipset Software (HKLM-x32…AMD_Chipset_IODrivers) (Version: 2.13.27.501 – Advanced Micro Devices, Inc.)
AMD Ryzen Master (HKLM…AMD Ryzen Master) (Version: 2.6.2.1818 – Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32…{40c19864-e557-4855-95ee-075689dfcf8e}) (Version: 2.13.27.501 – Advanced Micro Devices, Inc.) Hidden
ARMOURY CRATE Lite Service (HKLM…{EF3944FF-2501-4568-B15C-5701E726719E}) (Version: 4.0.12 – ASUS)
ASUS AIOFan HAL (HKLM…{EAE80DED-1A39-41C5-9F60-87CC947F6454}) (Version: 1.1.16.0 – ASUSTek COMPUTER INC.) Hidden
ASUS AIOFan HAL (HKLM-x32…{a2a7dca1-0f67-4a82-bc2c-11911fa92dcc}) (Version: 1.1.16.0 – ASUSTek COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM…{2C39FF80-1BB2-42C5-A58D-DC90EFF048F6}) (Version: 1.0.24 – ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM-x32…{a75323e1-f1a4-4aff-a7ce-3858cbc1c0d2}) (Version: 1.0.24 – ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM…{4EBEAC95-76BC-46A8-8644-6E2F1C87CF70}) (Version: 1.1.4.0 – ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM-x32…{33e3ea9c-baed-4e8a-8dbb-4792a27c9066}) (Version: 1.1.4.0 – ASUSTeK COMPUTER INC.) Hidden
ASUS Aura SDK (HKLM…{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.04.05 – ASUSTek COMPUTER INC.) Hidden
ASUS AURA VGA Component (HKLM…{71BB96A6-EAC4-45AE-A17D-D3ED43FF1D14}) (Version: 0.0.3.1 – ASUSTek COMPUTER INC. ) Hidden
ASUS AURA VGA Component (HKLM-x32…{2357cd84-6c2b-4174-87c7-4f9f9db8746b}) (Version: 0.0.3.1 – ASUSTek COMPUTER INC. ) Hidden
ASUS Framework Service (HKLM-x32…{659ff51d-6e35-42de-83ec-aa394eabe9eb}) (Version: 2.0.2.2 – ASUSTek COMPUTER INC.)
ASUS Framework Service (HKLM-x32…{EA6A87BE-8AD3-40D2-944C-9DF5FBFF4332}) (Version: 2.0.2.2 – ASUSTek COMPUTER INC.) Hidden
ASUS GLCKIO2 Driver (HKLM-x32…{3507c756-a80f-4b0e-8475-975d8b432176}) (Version: 1.0.20 – ASUSTeK Computer Inc.) Hidden
ASUS GLCKIO2 Driver (HKLM-x32…{5960FD0F-BB3B-49AF-B175-F77DC91E995A}) (Version: 1.0.20 – ASUSTeK Computer Inc.) Hidden
ASUS Motherboard (HKLM-x32…{93795eb8-bd86-4d4d-ab27-ff80f9467b37}) (Version: 1.05.16 – ASUSTek Computer Inc.)
ASUS Update Helper (HKLM-x32…{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.53 – ASUSTeK Computer Inc.) Hidden
Audacity 3.0.2 (HKLM-x32…Audacity_is1) (Version: 3.0.2 – Audacity Team)
AURA DRAM Component (HKLM…{9AFE5429-866B-457D-A864-80BCF7672EE8}) (Version: 1.1.06 – ASUS) Hidden
AURA DRAM Component (HKLM-x32…{684f7887-cc5b-469a-81e9-36d38142cc46}) (Version: 1.1.06 – ASUS) Hidden
AURA lighting effect add-on (HKLM-x32…{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.15 – ASUS)
AURA lighting effect add-on x64 (HKLM…{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.15 – ASUS)
AURA Service (HKLM-x32…{0E536061-3B55-4D45-BF58-0BDA261C94B0}) (Version: 3.04.35 – ASUSTeK Computer Inc.) Hidden
AURA Service (HKLM-x32…{35381ead-8a19-4bff-a272-dcdfe38a5867}) (Version: 3.04.35 – ASUSTeK Computer Inc.)
ClickOnce Bootstrapper Package for Microsoft .NET Framework (HKLM-x32…{0243F145-076D-423A-8F77-218DC8840261}) (Version: 4.8.04119 – Microsoft Corporation) Hidden
Core Temp 1.17.1 (HKLM…{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.17.1 – ALCPU)
DiagnosticsHub_CollectionService (HKLM…{1F3C3AAC-9F7A-47DA-A082-0ACE770041BE}) (Version: 16.1.28901 – Microsoft Corporation) Hidden
Discord (HKUS-1-5-21-2675421376-3833927843-2164136087-1001…Discord) (Version: 0.0.309 – Discord Inc.)
ENE RGB HAL (HKLM…{E050E98C-5524-4AFB-9E53-97700BEF2C02}) (Version: 1.1.28.0 – Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32…{d22b5310-9f1e-43a8-8547-58fa44742994}) (Version: 1.1.28.0 – Ene Tech.) Hidden
Entity Framework 6.2.0 Tools  for Visual Studio 2019 (HKLM-x32…{F878746A-C5F7-420A-A672-4DFEF74ADC3A}) (Version: 6.2.0.0 – Microsoft Corporation) Hidden
Geeks3D FurMark 1.25.1.0 (HKLM-x32…{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: 1.25.1.0 – Geeks3D)
Git version 2.24.1.2 (HKLM…Git_is1) (Version: 2.24.1.2 – The Git Development Community)
Gyazo 4.2.0.0 (HKLM-x32…{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version:  – Nota Inc.)
Heaven Benchmark version 4.0 (HKLM-x32…Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 – Unigine Corp.)
HWiNFO64 Version 7.02 (HKLM…HWiNFO64_is1) (Version: 7.02 – Martin Malik – REALiX)
icecap_collection_neutral (HKLM-x32…{CCAFAE33-E5CD-4828-962D-B2C08326EC67}) (Version: 16.9.31004 – Microsoft Corporation) Hidden
icecap_collection_x64 (HKLM…{D74AF03C-D072-4551-9D8E-4312E22685FB}) (Version: 16.9.31004 – Microsoft Corporation) Hidden
icecap_collectionresources (HKLM-x32…{364E3A1B-9A41-44D6-9B81-0BF02C6FD2F0}) (Version: 16.9.31004 – Microsoft Corporation) Hidden
icecap_collectionresourcesx64 (HKLM-x32…{144536DB-036C-465C-86F3-53ADFD9C72A2}) (Version: 16.9.31004 – Microsoft Corporation) Hidden
IntelliJ IDEA Community Edition 2021.1.1 (HKLM-x32…IntelliJ IDEA Community Edition 2021.1.1) (Version: 211.7142.45 – JetBrains s.r.o.)
IntelliTraceProfilerProxy (HKLM-x32…{7D94CF67-6666-4111-B027-D7AB7F189F70}) (Version: 15.0.18198.01 – Microsoft Corporation) Hidden
Kaspersky Total Security (HKLM-x32…{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 – Kaspersky) Hidden
Kaspersky Total Security (HKLM-x32…InstallWIX_{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 – Kaspersky)
Kaspersky VPN (HKLM-x32…{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 – Kaspersky) Hidden
Kaspersky VPN (HKLM-x32…InstallWIX_{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 – Kaspersky)
Kingston AURA DRAM Component (HKLM…{6D2D2DAF-BFE4-45A6-BF40-8A9F7FF54F42}) (Version: 1.0.28 – KINGSTON COMPONENTS INC.) Hidden
Kingston AURA DRAM Component (HKLM-x32…{511a62a9-1ff0-4cc5-adfe-4a5bd044a3c0}) (Version: 1.0.28 – KINGSTON COMPONENTS INC.) Hidden
League of Legends (HKUS-1-5-21-2675421376-3833927843-2164136087-1001…Riot Game league_of_legends.live) (Version:  – Riot Games, Inc)
Logitech G HUB (HKLM…{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2021.5.9841 – Logitech)
MariaDB 10.5 (x64) (HKLM…{115A9F5C-6AFE-4A0B-B518-C4AABE7C2CEC}) (Version: 10.5.10.0 – MariaDB Corporation Ab) Hidden
MariaDB 10.5 (x64) (HKLM…MariaDB 10.5 (x64)) (Version: 10.5.10.0 – MariaDB Corporation Ab)
Microsoft .NET SDK 5.0.203 (x64) from Visual Studio (HKLM…{333473D4-FDB4-4975-8577-9AEB14837F72}) (Version: 5.2.321.22315 – Microsoft Corporation)
Microsoft 365 Apps for enterprise – en-us (HKLM…O365ProPlusRetail – en-us) (Version: 16.0.14026.20246 – Microsoft Corporation)
Microsoft Edge (HKLM-x32…Microsoft Edge) (Version: 91.0.864.41 – Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32…Microsoft EdgeWebView) (Version: 91.0.864.41 – Microsoft Corporation)
Microsoft OneDrive (HKUS-1-5-21-2675421376-3833927843-2164136087-1001…OneDriveSetup.exe) (Version: 21.083.0425.0003 – Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2019 CTP2.2 (HKLM…{8D7CE3B0-5379-46FE-9F4B-A65D9F4CC1F1}) (Version: 15.0.1200.24 – Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2019 CTP2.2 (HKLM-x32…{725CC962-98BD-42C7-87D8-51C680FB1779}) (Version: 15.0.1200.24 – Microsoft Corporation)
Microsoft Teams (HKUS-1-5-21-2675421376-3833927843-2164136087-1001…Teams) (Version: 1.4.00.8872 – Microsoft Corporation)
Microsoft Update Health Tools (HKLM…{A0E1B43D-5F4A-46AF-9925-ABA3423325DC}) (Version: 2.77.0.0 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x64 9.0.30729.6161 (HKLM…{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x86 9.0.30729.6161 (HKLM-x32…{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 – Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable – 10.0.40219 (HKLM…{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 – Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable – 10.0.40219 (HKLM-x32…{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 – Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) – 11.0.61030 (HKLM-x32…{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 – Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) – 11.0.61030 (HKLM-x32…{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 – Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) – 14.28.29334 (HKLM-x32…{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 – Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) – 14.28.29334 (HKLM-x32…{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 – Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM…{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 2.9.3366.28650 – Microsoft Corporation)
Mozilla Firefox 89.0 (x64 en-US) (HKLM…Mozilla Firefox 89.0 (x64 en-US)) (Version: 89.0 – Mozilla)
Mozilla Maintenance Service (HKLM…MozillaMaintenanceService) (Version: 88.0.1 – Mozilla)
MSI Afterburner 4.6.4 Beta 3 (HKLM-x32…Afterburner) (Version: 4.6.4 Beta 3 – MSI Co., LTD)
NordVPN (HKLM…{19465C24-3D5D-4327-B99F-3CC0A1D38151}_is1) (Version: 6.37.2.0 – TEFINCOM S.A.)
NordVPN network TAP (HKLM-x32…{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 – NordVPN)
NordVPN network TUN (HKLM…{BD0E4F38-D3F6-452D-A32E-B14D721839AC}) (Version: 1.0.1 – NordVPN)
NVIDIA FrameView SDK 1.1.4923.29781331 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29781331 – NVIDIA Corporation)
NVIDIA GeForce Experience 3.22.0.32 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.22.0.32 – NVIDIA Corporation)
NVIDIA Graphics Driver 466.63 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 466.63 – NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.38.60 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.60 – NVIDIA Corporation)
NVIDIA PhysX System Software 9.19.0218 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 – NVIDIA Corporation)
NVIDIA USBC Driver 1.46.831.832 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.46.831.832 – NVIDIA Corporation)
OBS Studio (HKLM-x32…OBS Studio) (Version: 27.0.0 – OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM…{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14026.20246 – Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM…{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14026.20246 – Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM…{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.14026.20246 – Microsoft Corporation) Hidden
OpenShot Video Editor version 2.5.1 (HKLM…{4BB0DCDC-BC24-49EC-8937-72956C33A470}_is1) (Version: 2.5.1 – OpenShot Studios, LLC)
PHISON HAL (HKLM…{966E33F0-6786-4B38-AA29-C1B3F6C1955D}) (Version: 1.0.6.0 – PHISON Electronics Corp.) Hidden
PHISON HAL (HKLM-x32…{c8f7044c-7f48-404a-9a5d-9f038f28a789}) (Version: 1.0.6.0 – PHISON Electronics Corp.) Hidden
Python 3.7.8 (64-bit) (HKUS-1-5-21-2675421376-3833927843-2164136087-1001…{886f7e19-ca0e-4f00-9cb5-14f6506fea86}) (Version: 3.7.8150.0 – Python Software Foundation)
Python 3.7.8 Core Interpreter (64-bit symbols) (HKLM…{D5C2F5B5-AE03-4897-B7EB-88EDEB52E55F}) (Version: 3.7.8150.0 – Python Software Foundation) Hidden
Python 3.7.8 Core Interpreter (64-bit) (HKLM…{8DE1D24F-C0EA-42D5-87D0-7F3071932A15}) (Version: 3.7.8150.0 – Python Software Foundation) Hidden
Python 3.7.8 Development Libraries (64-bit) (HKLM…{BB556C96-3906-453B-B068-E17C1F13C814}) (Version: 3.7.8150.0 – Python Software Foundation) Hidden
Python 3.7.8 Documentation (64-bit) (HKLM…{A90E9216-6C61-4A2B-A18E-85EF9DF6A2C0}) (Version: 3.7.8150.0 – Python Software Foundation) Hidden
Python 3.7.8 Executables (64-bit symbols) (HKLM…{FAF0840F-75F4-4331-819A-C5B88251F402}) (Version: 3.7.8150.0 – Python Software Foundation) Hidden
Python 3.7.8 Executables (64-bit) (HKLM…{0EEFE4AC-ED52-4F6F-A726-A9030991B75D}) (Version: 3.7.8150.0 – Python Software Foundation) Hidden
Python 3.7.8 pip Bootstrap (64-bit) (HKLM…{AD820C10-4106-47D5-B6BD-4B3CEA93E429}) (Version: 3.7.8150.0 – Python Software Foundation) Hidden
Python 3.7.8 Standard Library (64-bit symbols) (HKLM…{F7B2245C-D3F3-4CCC-A558-702AB2069D57}) (Version: 3.7.8150.0 – Python Software Foundation) Hidden
Python 3.7.8 Standard Library (64-bit) (HKLM…{68A406B0-F664-4882-8035-4015C78DDC93}) (Version: 3.7.8150.0 – Python Software Foundation) Hidden
Python 3.7.8 Tcl/Tk Support (64-bit symbols) (HKLM…{833EA197-6356-48B6-9E90-AE2D2CCC5479}) (Version: 3.7.8150.0 – Python Software Foundation) Hidden
Python 3.7.8 Tcl/Tk Support (64-bit) (HKLM…{223ADA3A-F506-428A-9244-C3EA445AD42A}) (Version: 3.7.8150.0 – Python Software Foundation) Hidden
Python 3.7.8 Test Suite (64-bit symbols) (HKLM…{F0759285-644B-4AAF-BB09-CA4592C12B89}) (Version: 3.7.8150.0 – Python Software Foundation) Hidden
Python 3.7.8 Test Suite (64-bit) (HKLM…{FE029834-AD26-45F1-B622-8DE59A8B1048}) (Version: 3.7.8150.0 – Python Software Foundation) Hidden
Python 3.7.8 Utility Scripts (64-bit) (HKLM…{3BDFA237-E962-435F-A556-A2BE2EE1464C}) (Version: 3.7.8150.0 – Python Software Foundation) Hidden
Python Launcher (HKLM-x32…{B25A5062-540A-4141-80D3-50FA598523F3}) (Version: 3.7.7118.0 – Python Software Foundation)
Realtek Audio Driver (HKLM-x32…{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8960.1 – Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32…{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.45.928.2020 – Realtek)
ROG Live Service (HKLM-x32…{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 1.2.5.0 – ASUSTek COMPUTER INC.)
Slack (HKUS-1-5-21-2675421376-3833927843-2164136087-1001…slack) (Version: 4.17.1 – Slack Technologies Inc.)
Steam (HKLM-x32…Steam) (Version: 2.10.91.91 – Valve Corporation)
Teams Machine-Wide Installer (HKLM-x32…{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.4.0.4167 – Microsoft Corporation)
TechPowerUp GPU-Z (HKLM-x32…{8B0F211E-5846-4FB2-B0B9-4EB31546FDF9}}_is1) (Version:  – TechPowerUp)
TypeScript SDK (HKLM-x32…{54BBE05F-F2AC-4403-AA5D-786BEAA645D5}) (Version: 4.1.4.0 – Microsoft Corporation) Hidden
Universal Holtek RGB DRAM (HKLM…{826388E4-E31F-4514-948B-3BB954FB3EAF}) (Version: 1.0.0.1 – PD) Hidden
Universal Holtek RGB DRAM (HKLM-x32…{68fb2ff9-0618-4948-b68f-9f95e5687067}) (Version: 1.0.0.1 – PD)
Update for  (KB2504637) (HKLM-x32…{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 – Microsoft Corporation)
vcpp_crt.redist.clickonce (HKLM-x32…{8236EB3D-576E-432C-867A-D64F390A9D38}) (Version: 14.28.29914 – Microsoft Corporation) Hidden
Visual Studio Community 2019 (HKLM-x32…2bfe047c) (Version: 16.9.31313.79 – Microsoft Corporation)
VLC media player (HKLM…VLC media player) (Version: 3.0.14 – VideoLAN)
VS Immersive Activate Helper (HKLM-x32…{A71406B5-E487-4B01-8E59-D466841350F5}) (Version: 16.0.102.0 – Microsoft Corporation) Hidden
VS JIT Debugger (HKLM…{C7E8A4F2-EF09-42A8-B892-69D5ED99D965}) (Version: 16.0.102.0 – Microsoft Corporation) Hidden
VS Script Debugging Common (HKLM…{A4272808-82F5-410F-A5F9-1BF6F63F6B9A}) (Version: 16.0.102.0 – Microsoft Corporation) Hidden
vs_BlendMsi (HKLM-x32…{B5E3A3E1-1529-4D5A-9E95-34971FA07825}) (Version: 16.0.28329 – Microsoft Corporation) Hidden
vs_clickoncebootstrappermsi (HKLM-x32…{FB93144C-7671-4DA4-883B-B1D15F00176A}) (Version: 16.9.31004 – Microsoft Corporation) Hidden
vs_clickoncebootstrappermsires (HKLM-x32…{271F1F42-B547-4498-825F-590DBB1774F7}) (Version: 16.0.28329 – Microsoft Corporation) Hidden
vs_clickoncesigntoolmsi (HKLM-x32…{30D97A69-3C0F-4552-9A72-60E591B210C7}) (Version: 16.0.28329 – Microsoft Corporation) Hidden
vs_communitymsi (HKLM-x32…{03119992-794E-4BD1-8811-050DD87BC41C}) (Version: 16.9.31004 – Microsoft Corporation) Hidden
vs_communitymsires (HKLM-x32…{95E79BBC-97FD-4FEB-91B5-CC0231324812}) (Version: 16.0.28329 – Microsoft Corporation) Hidden
vs_devenvmsi (HKLM-x32…{AD0C92A4-1514-4BC1-A723-A272A8343924}) (Version: 16.0.28329 – Microsoft Corporation) Hidden
vs_filehandler_amd64 (HKLM-x32…{6E29FB21-642A-4E68-BD8B-745E679EB9F5}) (Version: 16.9.31004 – Microsoft Corporation) Hidden
vs_filehandler_x86 (HKLM-x32…{D12A3F67-709D-477A-B5D3-D820E4C745E3}) (Version: 16.9.31004 – Microsoft Corporation) Hidden
vs_FileTracker_Singleton (HKLM-x32…{B64FFE5E-EDCF-49DE-B528-C5AA0D0C313B}) (Version: 16.9.31004 – Microsoft Corporation) Hidden
vs_minshellinteropmsi (HKLM-x32…{27B16914-BC5D-4018-8074-071262A27F6D}) (Version: 16.2.28917 – Microsoft Corporation) Hidden
vs_minshellmsi (HKLM-x32…{621CB344-D1D9-4F17-A5B5-36BBBC4F6FFA}) (Version: 16.9.31025 – Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32…{F4E68397-CB34-42A2-A2FC-33C63EA0CE3B}) (Version: 16.9.31004 – Microsoft Corporation) Hidden
vs_SQLClickOnceBootstrappermsi (HKLM-x32…{90BDEEC4-B67A-4ED4-A59C-E5616D5D5CA9}) (Version: 16.9.31004 – Microsoft Corporation) Hidden
vs_tipsmsi (HKLM-x32…{E208E682-50EE-4F2F-9860-C91B906B8A03}) (Version: 16.0.28329 – Microsoft Corporation) Hidden
vs_vswebprotocolselectormsi (HKLM-x32…{6C9A7596-C8E7-44B0-B5C1-15D5CB97499A}) (Version: 16.9.31004 – Microsoft Corporation) Hidden
WD_BLACK AN1500 (HKLM…{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.12.0 – ENE TECHNOLOGY INC.) Hidden
WD_BLACK AN1500 (HKLM-x32…{9c94735f-73fd-4b0f-9ddb-8be7b3cc4681}) (Version: 1.0.12.0 – ENE TECHNOLOGY INC.) Hidden
Youtube-DLG version 0.4 (HKLM-x32…{3C455028-FC99-4846-8E04-4FCD87D85613}_is1) (Version: 0.4 – Sotiris Papadopoulos)
Zoom (HKUS-1-5-21-2675421376-3833927843-2164136087-1001…ZoomUMX) (Version: 5.6.6 (961) – Zoom Video Communications, Inc.)

Packages:
=========
ARMOURY CRATE -> C:Program FilesWindowsAppsB9ECED6F.ArmouryCrate_4.0.8.0_x64__qmba6cd70vzyy [2021-03-29] (ASUSTeK COMPUTER INC.)
DTS Sound Unbound -> C:Program FilesWindowsAppsDTSInc.DTSSoundUnbound_2021.2.6.0_x64__t5j2fzbtdg37r [2021-05-19] (DTS, Inc.)
Microsoft Solitaire Collection -> C:Program FilesWindowsAppsMicrosoft.MicrosoftSolitaireCollection_4.9.5310.0_x64__8wekyb3d8bbwe [2021-06-07] (Microsoft Studios) [MS Ad]
NVIDIA Control Panel -> C:Program FilesWindowsAppsNVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-05-27] (NVIDIA Corp.)
Photos Add-on -> C:Program FilesWindowsAppsMicrosoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-05-19] (Microsoft Corporation)
Photos Media Engine Add-on -> C:Program FilesWindowsAppsMicrosoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-05-19] (Microsoft Corporation)
Realtek Audio Control -> C:Program FilesWindowsAppsRealtekSemiconductorCorp.RealtekAudioControl_1.14.221.0_x64__dt26b99r8h8gj [2021-04-02] (Realtek Semiconductor Corp)
Sea of Thieves -> C:Program FilesWindowsAppsMicrosoft.SeaofThieves_2.101.2052.2_x64__8wekyb3d8bbwe [2021-05-20] (ms-resource:PublisherDisplayName)
Sonic Radar 3 -> C:Program FilesWindowsAppsA-Volute.28054DF1F58B4_3.16.15.0_x64__w2gh52qy24etm [2021-04-03] (A-Volute)
Sonic Studio 3 -> C:Program FilesWindowsAppsA-Volute.SonicStudio3_3.16.15.0_x64__w2gh52qy24etm [2021-04-03] (A-Volute)
Spotify Music -> C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.160.672.0_x86__zpdnekdrzrea0 [2021-05-29] (Spotify AB) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKUS-1-5-21-2675421376-3833927843-2164136087-1001_ClassesCLSID{19A6E644-14E6-4A60-B8D7-DD20610A871D}InprocServer32 -> C:UsersiguglAppDataLocalMicrosoftTeamsMeetingAddin1.0.20339.4x64Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKUS-1-5-21-2675421376-3833927843-2164136087-1001_ClassesCLSID{5405618e-4c42-4fb9-a80a-d24d89911296}localserver32 -> C:UsersiguglAppDataLocalNhNotifSyssonicstudioasusns.exe (A-Volute SAS -> A-Volute)
ContextMenuHandlers1: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:Program Files (x86)Kaspersky LabKaspersky Total Security 21.3x64shellex.dll [2021-06-10] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers2: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:Program Files (x86)Kaspersky LabKaspersky Total Security 21.3x64shellex.dll [2021-06-10] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers4: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:Program Files (x86)Kaspersky LabKaspersky Total Security 21.3x64shellex.dll [2021-06-10] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:WindowsSystem32DriverStoreFileRepositorynv_dispi.inf_amd64_1108979a670abe46nvshext.dll [2021-06-01] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:Program Files (x86)Kaspersky LabKaspersky Total Security 21.3x64shellex.dll [2021-06-10] (Kaspersky Lab JSC -> AO Kaspersky Lab)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2020-07-08 17:42 – 2020-07-08 17:42 – 000477696 _____ () [File not signed] \?C:Program Files (x86)ASUSArmouryDevicenode_modulesffi-napiprebuildswin32-ia32node.napi.node
2020-07-08 17:42 – 2020-07-08 17:42 – 000471040 _____ () [File not signed] \?C:Program Files (x86)ASUSArmouryDevicenode_modulesref-napiprebuildswin32-ia32node.napi.node
2020-07-14 17:16 – 2020-07-14 17:16 – 000454656 _____ () [File not signed] \?C:Program Files (x86)ASUSArmouryDevicenode_modulesregistry-jsprebuildswin32-ia32node.napi.node
2021-03-13 19:47 – 2019-12-23 18:51 – 000093184 _____ () [File not signed] C:Program Files (x86)ASUSArmouryDevicedllArmourySocketServerzlibwapi.dll
2020-04-22 15:35 – 2020-04-22 15:35 – 000081920 _____ () [File not signed] C:Program Files (x86)ASUSArmouryDevicedllWindowIDWindowID.dll
2021-03-29 20:55 – 2021-03-29 20:55 – 074615808 _____ () [File not signed] C:Program FilesWindowsAppsB9ECED6F.ArmouryCrate_4.0.8.0_x64__qmba6cd70vzyyArmouryCrate.dll
2020-05-26 17:08 – 2020-05-26 17:08 – 002831360 _____ (Apache Software Foundation) [File not signed] C:Program Files (x86)LightingServicelog4cxx.dll
2021-03-13 19:47 – 2020-12-31 17:26 – 002676224 _____ (ASUSTeK Computer Inc.) [File not signed] C:Program Files (x86)ASUSArmouryDevicedllArmourySocketServerAURAChecker.dll
2021-03-13 19:47 – 2019-06-26 16:07 – 003394560 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:Program Files (x86)ASUSArmouryDevicedllArmourySocketServerlibcrypto-1_1-x64.dll
2021-03-13 19:47 – 2019-06-26 16:07 – 000679424 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:Program Files (x86)ASUSArmouryDevicedllArmourySocketServerlibssl-1_1-x64.dll
2021-03-13 19:49 – 2020-05-14 15:15 – 003394560 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:Program Files (x86)ASUSArmouryDevicedllMBLedSDKlibcrypto-1_1-x64.dll
2021-03-13 19:49 – 2020-05-14 15:15 – 000679424 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:Program Files (x86)ASUSArmouryDevicedllMBLedSDKlibssl-1_1-x64.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:Program FilesMicrosoft OfficerootOffice16OCHelper.dll [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16OCHelper.dll [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 – {83C25742-A9F7-49FB-9138-434302C88D07} – C:Program FilesMicrosoft OfficerootOffice16MSOSB.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 – {83C25742-A9F7-49FB-9138-434302C88D07} – C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16MSOSB.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 – {42089D2D-912D-4018-9087-2B87803E93FB} – C:Program FilesMicrosoft OfficerootOffice16MSOSB.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 – {42089D2D-912D-4018-9087-2B87803E93FB} – C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16MSOSB.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 – {42089D2D-912D-4018-9087-2B87803E93FB} – C:Program FilesMicrosoft OfficerootOffice16MSOSB.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 – {42089D2D-912D-4018-9087-2B87803E93FB} – C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16MSOSB.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 – {5504BE45-A83B-4808-900A-3A5C36E7F77A} – C:Program FilesMicrosoft OfficerootOffice16MSOSB.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 – {5504BE45-A83B-4808-900A-3A5C36E7F77A} – C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16MSOSB.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKUS-1-5-21-2675421376-3833927843-2164136087-1001…sharepoint.com -> hxxps://connectqutedu-files.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 19:14 – 2019-12-07 19:12 – 000000824 _____ C:Windowssystem32driversetchosts

2021-05-03 22:14 – 2021-05-03 22:14 – 000000444 _____ C:Windowssystem32driversetchosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKUS-1-5-21-2675421376-3833927843-2164136087-1001Control PanelDesktop\Wallpaper -> C:UsersiguglDownloadskamina.jpg
DNS Servers: 192.168.0.1
HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesSystem => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

Network Binding:
=============
Ethernet: NordVPN LightWeight Firewall -> NordLwf (enabled)
Wi-Fi: NordVPN LightWeight Firewall -> NordLwf (enabled)
Ethernet 2: NordVPN LightWeight Firewall -> NordLwf (enabled)
Ethernet 3: NordVPN LightWeight Firewall -> NordLwf (enabled)
Ethernet 4: NordVPN LightWeight Firewall -> NordLwf (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{ABB3BB19-13D0-485F-A37F-922946CFA5F2}] => (Allow) C:Program Files (x86)ASUSArmouryDeviceasus_framework.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
FirewallRules: [{DFDF023C-9C2C-417E-BD09-4D9ECDC5E96F}] => (Allow) C:Program Files (x86)ASUSArmouryDevicedllArmourySocketServerArmourySocketServer.exe (ASUSTeK Computer Inc. -> ASUS)
FirewallRules: [{D1915259-5266-4E2F-B6B0-0AF017691C1F}] => (Allow) C:Program Files (x86)ASUSArmouryDeviceasus_framework.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
FirewallRules: [{3CD5CE37-9AEE-447A-B5D2-CB43180DF551}] => (Allow) C:Program Files (x86)ASUSArmouryDevicedllArmourySocketServerArmouryHtmlDebugServer.exe (ASUSTeK Computer Inc. -> ASUS)
FirewallRules: [{EEECB670-F9B0-485B-A7DD-42C2C710B6D2}] => (Allow) C:Program Files (x86)SteamSteam.exe (Valve -> Valve Corporation)
FirewallRules: [{658F86F2-C0AA-4691-8DCF-F278A6533609}] => (Allow) C:Program Files (x86)SteamSteam.exe (Valve -> Valve Corporation)
FirewallRules: [{C2DA4B28-9FC7-4EEC-8E1B-B9D38E8A2700}] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{6593A99E-8B57-4B51-9FBD-E3A002155969}] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9ED57CCD-BDA4-43A6-A3F3-37B28F77A847}] => (Allow) C:Program Files (x86)Steambincefcef.win7x64steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{FA7D6204-012C-4D9C-8D33-7CF8C4A5B83D}] => (Allow) C:Program Files (x86)Steambincefcef.win7x64steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{DA42E953-F502-402C-AD03-7AC35550D40E}C:usersiguglappdataroamingspotifyspotify.exe] => (Allow) C:usersiguglappdataroamingspotifyspotify.exe => No File
FirewallRules: [UDP Query User{4A733066-6E4F-42C0-B444-8864382EC5FB}C:usersiguglappdataroamingspotifyspotify.exe] => (Allow) C:usersiguglappdataroamingspotifyspotify.exe => No File
FirewallRules: [TCP Query User{7E49CC42-D0B0-4125-A0E4-51B9DC8E3F87}C:program fileslghublghub_agent.exe] => (Allow) C:program fileslghublghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{D04D7C9D-9E8D-44B1-B748-FBD9978D4145}C:program fileslghublghub_agent.exe] => (Allow) C:program fileslghublghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{0C0E622E-9EFE-41EA-BB7C-FFE099B36D6F}] => (Allow) C:Program Files (x86)SteamsteamappscommonHadesx64Hades.exe => No File
FirewallRules: [{343C87DF-6C1E-4E0E-8BB5-7CB4BB6557DA}] => (Allow) C:Program Files (x86)SteamsteamappscommonHadesx64Hades.exe => No File
FirewallRules: [{FB7E267C-4953-4F0F-B7E8-7DD15677C76A}] => (Allow) C:Program Files (x86)SteamsteamappscommonHadesx64VkHades.exe => No File
FirewallRules: [{2556E305-7A28-4630-8588-5BB5E7A1036C}] => (Allow) C:Program Files (x86)SteamsteamappscommonHadesx64VkHades.exe => No File
FirewallRules: [{9C3A5609-D168-4810-A64D-C6A5DB546B18}] => (Allow) C:Program Files (x86)SteamsteamappscommonHadesx86Hades.exe => No File
FirewallRules: [{BCF2AE9B-9A06-44A3-9399-179CD8C03FBC}] => (Allow) C:Program Files (x86)SteamsteamappscommonHadesx86Hades.exe => No File
FirewallRules: [{C47571AF-EF7A-44C7-A6B6-DD63F2BE22B8}] => (Allow) C:Program Files (x86)SteamsteamappscommonPersona 4 GoldenP4G.exe => No File
FirewallRules: [{31461454-AE47-4AD9-9F4D-9911AD70026B}] => (Allow) C:Program Files (x86)SteamsteamappscommonPersona 4 GoldenP4G.exe => No File
FirewallRules: [{50FA76FF-F336-47C5-AE7E-437A82EA143B}] => (Allow) C:Program Files (x86)ASUSROG Live ServiceROGLiveService.exe (ASUSTEK COMPUTER INCORPORATION -> ASUSTek COMPUTER INC.)
FirewallRules: [{C782C5AD-CF00-45C9-A677-9F4E347D4018}] => (Allow) C:Program Files (x86)ASUSROG Live ServiceROGLiveService.exe (ASUSTEK COMPUTER INCORPORATION -> ASUSTek COMPUTER INC.)
FirewallRules: [{4110090F-3E84-4201-ADB0-D88D30A1E4E2}] => (Allow) C:UsersiguglAppDataRoamingZoombinZoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{E44E41A7-CEDC-47F0-93B2-D91F8D1B93BF}] => (Allow) C:UsersiguglAppDataRoamingZoombinairhost.exe => No File
FirewallRules: [{22E64FB3-CB54-4AA9-9432-9E91D434BA89}] => (Allow) C:UsersiguglAppDataRoamingZoombinairhost.exe => No File
FirewallRules: [TCP Query User{140A9AE8-EE13-4097-BD8A-74EB5CC710D8}C:usersiguglappdatalocalpackagesb9eced6f.armourycrate_qmba6cd70vzyylocalstategridupdatefileasusgcdriverupdateclient.exe] => (Allow) C:usersiguglappdatalocalpackagesb9eced6f.armourycrate_qmba6cd70vzyylocalstategridupdatefileasusgcdriverupdateclient.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
FirewallRules: [UDP Query User{8D4C0446-7024-4BC8-81C2-B1BA471A8D5A}C:usersiguglappdatalocalpackagesb9eced6f.armourycrate_qmba6cd70vzyylocalstategridupdatefileasusgcdriverupdateclient.exe] => (Allow) C:usersiguglappdatalocalpackagesb9eced6f.armourycrate_qmba6cd70vzyylocalstategridupdatefileasusgcdriverupdateclient.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
FirewallRules: [{C18CF33C-48E0-45A1-A4B0-BD6EEA7384A7}] => (Allow) C:Program Files (x86)SteamsteamappscommonRisk of Rain 2Risk of Rain 2.exe => No File
FirewallRules: [{D2E1DCE8-B611-4F02-BA94-A094B67D5361}] => (Allow) C:Program Files (x86)SteamsteamappscommonRisk of Rain 2Risk of Rain 2.exe => No File
FirewallRules: [{8B4F65F4-7B19-4B1B-9394-955AB141A128}] => (Allow) C:Program Files (x86)SteamsteamappscommonHalo The Master Chief Collectionmcclauncher.exe => No File
FirewallRules: [{83C916D6-991F-426E-A17E-105B0FA694E3}] => (Allow) C:Program Files (x86)SteamsteamappscommonHalo The Master Chief Collectionmcclauncher.exe => No File
FirewallRules: [{561F16C2-17F2-48DE-9998-DB98CD03E7FE}] => (Allow) C:Program Files (x86)SteamsteamappscommonHalo The Master Chief Collectionmccbinarieswin64MCC-Win64-Shipping.exe => No File
FirewallRules: [{45EE8E1A-3863-4CE5-9F94-44948363BF60}] => (Allow) C:Program Files (x86)SteamsteamappscommonHalo The Master Chief Collectionmccbinarieswin64MCC-Win64-Shipping.exe => No File
FirewallRules: [{94BAA367-21FF-4873-A607-8EA56FC82AD2}] => (Allow) C:Program FilesMicrosoft OfficerootOffice16Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D244DDB0-6E37-4CB8-BBA7-53FA251DC6D3}] => (Allow) C:Program FilesMicrosoft OfficerootOffice16UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EA6865D1-F38E-4B98-BCE5-D91598946EE3}] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{91A24A70-BB7B-4205-A408-41835D00FD63}] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{8E7B85FF-CE1D-411E-B585-FF1931D87E0A}] => (Allow) C:Program FilesNVIDIA CorporationNvStreamSrvnvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{96D78284-9BD6-4668-8D14-DCEA93A210DF}] => (Allow) C:Program FilesNVIDIA CorporationNvStreamSrvnvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{1DC30C1F-CD21-4C1A-B12D-36E754D7661F}C:usersiguglappdatalocalmicrosoftteamscurrentteams.exe] => (Allow) C:usersiguglappdatalocalmicrosoftteamscurrentteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{C158B6A5-466C-49BD-AC47-BDE710BA1930}C:usersiguglappdatalocalmicrosoftteamscurrentteams.exe] => (Allow) C:usersiguglappdatalocalmicrosoftteamscurrentteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4B856927-B205-4029-9B21-C03234865D9E}] => (Allow) C:Program Files (x86)SteamsteamappscommonCounter-Strike Global Offensivecsgo.exe (Valve -> )
FirewallRules: [{6CA342D5-C282-49FD-BE2A-A91354003A57}] => (Allow) C:Program Files (x86)SteamsteamappscommonCounter-Strike Global Offensivecsgo.exe (Valve -> )
FirewallRules: [{6F0FC755-CD2A-4CEC-AB79-7B8E05F5FCF9}] => (Allow) C:Program Files (x86)SteamsteamappscommonDOOMEternalidTechLauncher.exe => No File
FirewallRules: [{90B3AE9F-E543-4E88-A8F9-B119A05C9ED2}] => (Allow) C:Program Files (x86)SteamsteamappscommonDOOMEternalidTechLauncher.exe => No File
FirewallRules: [{DA997A5F-F715-44D8-AE0E-FA58E6B52AE1}] => (Allow) C:Program Files (x86)SteamsteamappscommonCyberpunk 2077REDprelauncher.exe => No File
FirewallRules: [{94C6216B-82A5-49AA-B5F8-C3C8EFB7097A}] => (Allow) C:Program Files (x86)SteamsteamappscommonCyberpunk 2077REDprelauncher.exe => No File
FirewallRules: [{379A8F15-1603-410C-86A5-5C036AA8B180}] => (Allow) C:Program FilesMozilla Firefoxfirefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{BB193CAA-6FE7-4D19-BEBC-987A31D00641}] => (Allow) C:Program FilesMozilla Firefoxfirefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{5EF39823-A0E0-4A10-8388-57AB8BB3ED9D}C:program filesopenshot video editoropenshot-qt.exe] => (Allow) C:program filesopenshot video editoropenshot-qt.exe (OpenShot Studios, LLC) [File not signed]
FirewallRules: [UDP Query User{180B56E0-006D-4C5E-B4B2-BBE9E5DE1709}C:program filesopenshot video editoropenshot-qt.exe] => (Allow) C:program filesopenshot video editoropenshot-qt.exe (OpenShot Studios, LLC) [File not signed]
FirewallRules: [{5198CD8E-A658-44DF-B6AA-D6FCCC7F279F}] => (Allow) C:Program Files (x86)SteamsteamappscommonElite DangerousEDLaunch.exe (Frontier Developments) [File not signed]
FirewallRules: [{57F97D7A-136C-41EE-BBB6-537AD2C37FD1}] => (Allow) C:Program Files (x86)SteamsteamappscommonElite DangerousEDLaunch.exe (Frontier Developments) [File not signed]
FirewallRules: [TCP Query User{E19A4D87-418D-49CB-8B2F-527CFA8A58B0}C:program fileslghublghub_agent.exe] => (Block) C:program fileslghublghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{96267224-BEB6-4C6D-8BCB-92BD621A1D89}C:program fileslghublghub_agent.exe] => (Block) C:program fileslghublghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{72259562-5EB3-44C2-9A4B-4874FB5922CE}] => (Allow) C:Program FilesMicrosoft OfficerootOffice16outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{07840CC3-6A4B-4AEF-9722-55241B6C9FFA}] => (Allow) C:Program FilesMicrosoft OfficerootOffice16Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2799F525-A61C-483C-8DCD-610B76C9B0AD}] => (Allow) C:Program FilesMicrosoft OfficerootOffice16UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E27F65F4-1F89-4A80-8B36-A79E1A2EC0DF}] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.160.672.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3637C08C-FE17-4D3F-8796-D80F338D7BB5}] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.160.672.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C97E7442-9EC8-4432-99E3-78E3FC486966}] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.160.672.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C6039A2E-1AFE-4A22-8CB0-FF469AEECD32}] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.160.672.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E1E8D9B5-2052-412E-A770-0C6F27C1016C}] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.160.672.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BDF854D0-6E45-48F4-8503-0565718E78FD}] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.160.672.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BD0EC819-9548-4DD5-9E59-82423B52756C}] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.160.672.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{81B17CE4-2023-4CB6-AFBA-E282B9F4A559}] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.160.672.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{9C42C575-AA92-4885-972E-09A341CD5C3E}C:program files (x86)steamsteamappscommonelite dangerousproductselite-dangerous-64elitedangerous64.exe] => (Allow) C:program files (x86)steamsteamappscommonelite dangerousproductselite-dangerous-64elitedangerous64.exe (Frontier Developments plc) [File not signed]
FirewallRules: [UDP Query User{08B3078E-A4C4-40F1-8283-C72C085D0FAF}C:program files (x86)steamsteamappscommonelite dangerousproductselite-dangerous-64elitedangerous64.exe] => (Allow) C:program files (x86)steamsteamappscommonelite dangerousproductselite-dangerous-64elitedangerous64.exe (Frontier Developments plc) [File not signed]
FirewallRules: [{2927F8A8-F147-40A9-95AC-E575463F7518}] => (Allow) C:Program FilesMariaDB 10.5binmysqld.exe (MariaDB Corporation Ab -> )
FirewallRules: [TCP Query User{9B7CADA9-8DA3-4528-B27F-7FCD3BBB5A8F}C:usersigugl.jdkscorretto-1.8.0_292binjava.exe] => (Allow) C:usersigugl.jdkscorretto-1.8.0_292binjava.exe
FirewallRules: [UDP Query User{75EF91A2-5600-4746-8966-B7B194F0C393}C:usersigugl.jdkscorretto-1.8.0_292binjava.exe] => (Allow) C:usersigugl.jdkscorretto-1.8.0_292binjava.exe
FirewallRules: [{55CDD625-1438-4F90-812D-B720CC99732C}] => (Block) C:usersigugl.jdkscorretto-1.8.0_292binjava.exe
FirewallRules: [{40D61405-C332-4FA7-AED0-2127B7F8268E}] => (Block) C:usersigugl.jdkscorretto-1.8.0_292binjava.exe
FirewallRules: [{E477ACFB-B885-423E-8BD8-CBF04F068CFE}] => (Allow) C:Program Files (x86)Steamsteamappscommonwallpaper_enginelauncher.exe (Skutta, Kristjan -> )
FirewallRules: [{A59A7D9C-41C9-4FD1-807A-EA07A00690DA}] => (Allow) C:Program Files (x86)Steamsteamappscommonwallpaper_enginelauncher.exe (Skutta, Kristjan -> )
FirewallRules: [TCP Query User{DDD584E3-EEC2-454E-A6B1-97FE6158A2F7}C:usersigugl.jdksazul-15.0.3binjava.exe] => (Allow) C:usersigugl.jdksazul-15.0.3binjava.exe
FirewallRules: [UDP Query User{A54D6751-2D64-41EC-97A0-8EF3E83EA964}C:usersigugl.jdksazul-15.0.3binjava.exe] => (Allow) C:usersigugl.jdksazul-15.0.3binjava.exe
FirewallRules: [{CC397A2D-EA35-4ED2-B49D-C8DF73867953}] => (Allow) C:Program Files (x86)MicrosoftEdgeWebViewApplication91.0.864.41msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{79DAC7CE-776A-4D4E-812B-456580450B1C}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BCD446AF-2D5A-478C-B51D-7D405AEF247E}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E8009C2A-D0C5-49F3-8E77-26722C56DB81}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D03ECB6E-7478-4EDB-8C7C-A068032CF0AA}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)

==================== Restore Points =========================

08-06-2021 18:44:23 Scheduled Checkpoint
09-06-2021 19:01:24 Windows Modules Installer

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (06/10/2021 01:35:35 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: AUDIODG.EXE, version: 10.0.19041.1023, time stamp: 0x4507cb5a
Faulting module name: dtstech64.dll, version: 4.2.8.0, time stamp: 0x5ebd130b
Exception code: 0xc0000409
Fault offset: 0x00000000000225ac
Faulting process id: 0x3554
Faulting application start time: 0x01d75d450b26c1d0
Faulting application path: C:Windowssystem32AUDIODG.EXE
Faulting module path: C:WindowsSystem32DTSPCAPO4xdtstech64.dll
Report Id: e30c6d8d-a809-4431-929e-7d3d74ae5d4b
Faulting package full name:
Faulting package-relative application ID:

Error: (06/10/2021 01:34:25 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance.  hr = 0x8007045b, A system shutdown is in progress.
.

Error: (06/10/2021 01:34:25 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]

Error: (06/10/2021 01:19:56 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program slack.exe version 4.17.1.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 4508

Start Time: 01d75d2ef0b43105

Termination Time: 4294967295

Application Path: C:UsersiguglAppDataLocalslackapp-4.17.1slack.exe

Report Id: b66ac593-7aac-4b8a-a5c1-4b3bff5ca8de

Faulting package full name:

Faulting package-relative application ID:

Hang type: Top level window is idle

Error: (06/09/2021 10:56:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: AUDIODG.EXE, version: 10.0.19041.1023, time stamp: 0x4507cb5a
Faulting module name: dtstech64.dll, version: 4.2.8.0, time stamp: 0x5ebd130b
Exception code: 0xc0000409
Fault offset: 0x00000000000225ac
Faulting process id: 0x34b8
Faulting application start time: 0x01d75d2ee050a6db
Faulting application path: C:Windowssystem32AUDIODG.EXE
Faulting module path: C:WindowsSystem32DTSPCAPO4xdtstech64.dll
Report Id: b68280f3-9753-4019-8a42-db0ddb0e23c9
Faulting package full name:
Faulting package-relative application ID:

Error: (06/09/2021 10:38:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: AUDIODG.EXE, version: 10.0.19041.1023, time stamp: 0x4507cb5a
Faulting module name: dtstech64.dll, version: 4.2.8.0, time stamp: 0x5ebd130b
Exception code: 0xc0000409
Fault offset: 0x00000000000225ac
Faulting process id: 0x3af0
Faulting application start time: 0x01d75d2c6016a81d
Faulting application path: C:Windowssystem32AUDIODG.EXE
Faulting module path: C:WindowsSystem32DTSPCAPO4xdtstech64.dll
Report Id: 3bdbb2ec-66a2-4b87-8b9b-7cdb3a686a91
Faulting package full name:
Faulting package-relative application ID:

Error: (06/09/2021 10:45:13 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: AUDIODG.EXE, version: 10.0.19041.906, time stamp: 0x985b4154
Faulting module name: dtstech64.dll, version: 4.2.8.0, time stamp: 0x5ebd130b
Exception code: 0xc0000409
Fault offset: 0x00000000000225ac
Faulting process id: 0x1448
Faulting application start time: 0x01d75c51c44f4961
Faulting application path: C:Windowssystem32AUDIODG.EXE
Faulting module path: C:WindowsSystem32DTSPCAPO4xdtstech64.dll
Report Id: bd67776b-ee87-4b17-9478-7c8f52a09322
Faulting package full name:
Faulting package-relative application ID:

Error: (06/09/2021 10:45:03 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: ArmourySocketServer.exe, version: 0.0.5.18, time stamp: 0x600a817e
Faulting module name: ArmourySocketServer.exe, version: 0.0.5.18, time stamp: 0x600a817e
Exception code: 0xc0000005
Fault offset: 0x000000000000c73e
Faulting process id: 0x129c
Faulting application start time: 0x01d75cc8a9d6dd68
Faulting application path: C:Program Files (x86)ASUSArmouryDevicedllArmourySocketServerArmourySocketServer.exe
Faulting module path: C:Program Files (x86)ASUSArmouryDevicedllArmourySocketServerArmourySocketServer.exe
Report Id: 9d444326-2972-4368-802f-17d8b661fa89
Faulting package full name:
Faulting package-relative application ID:

System errors:
=============
Error: (06/10/2021 01:35:02 AM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created.
Use the string “%2” to identify the interface for which initialization
failed. It represents the MAC address of the failed interface or the
Globally Unique Interface Identifier (GUID) if NetBT was unable to
map from GUID to MAC address. If neither the MAC address nor the GUID were
available, the string represents a cluster device name.

Error: (06/10/2021 01:35:02 AM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created.
Use the string “%2” to identify the interface for which initialization
failed. It represents the MAC address of the failed interface or the
Globally Unique Interface Identifier (GUID) if NetBT was unable to
map from GUID to MAC address. If neither the MAC address nor the GUID were
available, the string represents a cluster device name.

Error: (06/10/2021 01:33:33 AM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: The ScRegSetValueExW call failed for Start with the following error:
Access is denied.

Error: (06/10/2021 01:24:10 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The nordvpn-service service terminated unexpectedly.  It has done this 1 time(s).

Error: (06/09/2021 10:56:20 PM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created.
Use the string “%2” to identify the interface for which initialization
failed. It represents the MAC address of the failed interface or the
Globally Unique Interface Identifier (GUID) if NetBT was unable to
map from GUID to MAC address. If neither the MAC address nor the GUID were
available, the string represents a cluster device name.

Error: (06/09/2021 10:56:20 PM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created.
Use the string “%2” to identify the interface for which initialization
failed. It represents the MAC address of the failed interface or the
Globally Unique Interface Identifier (GUID) if NetBT was unable to
map from GUID to MAC address. If neither the MAC address nor the GUID were
available, the string represents a cluster device name.

Error: (06/09/2021 10:56:16 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 10:38:15 PM on ‎9/‎06/‎2021 was unexpected.

Error: (06/09/2021 10:39:22 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Steam Client Service service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

Windows Defender:
================
Date: 2021-06-09 17:54:11
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2021-06-08 18:32:09
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2021-06-07 17:52:43
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2021-06-04 20:47:22
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2021-06-04 00:44:47
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2021-06-05 08:43:00
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.339.1957.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.18200.2
Error code: 0x80070643
Error description: Fatal error during installation.

Date: 2021-06-05 08:42:59
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 1.341.82.0
Previous security intelligence Version: 1.339.1957.0
Update Source: User
Security intelligence Type: AntiSpyware
Update Type: Delta
Current Engine Version: 1.1.18200.4
Previous Engine Version: 1.1.18200.2
Error code: 0x80070666
Error description: Another version of this product is already installed. Installation of this version cannot continue. To configure or remove the existing version of this product, use Add/Remove Programs on the Control Panel.

Date: 2021-06-05 08:42:59
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 1.341.82.0
Previous security intelligence Version: 1.339.1957.0
Update Source: User
Security intelligence Type: AntiVirus
Update Type: Delta
Current Engine Version: 1.1.18200.4
Previous Engine Version: 1.1.18200.2
Error code: 0x80070666
Error description: Another version of this product is already installed. Installation of this version cannot continue. To configure or remove the existing version of this product, use Add/Remove Programs on the Control Panel.

Date: 2021-06-05 08:42:59
Description:
Microsoft Defender Antivirus has encountered an error trying to update the engine.
New Engine Version: 1.1.18200.4
Previous Engine Version: 1.1.18200.2
Error Code: 0x80070666
Error description: Another version of this product is already installed. Installation of this version cannot continue. To configure or remove the existing version of this product, use Add/Remove Programs on the Control Panel.

Date: 2021-05-30 09:21:29
Description:
Microsoft Defender Antivirus engine has been terminated due to an unexpected error.
Failure Type: Crash
Exception code: 0xc0000005
Resource: file:C:Program Files (x86)ASUSArmouryDevicedllMBLedSDKportaudio_x64.dll

CodeIntegrity:
===============
Date: 2021-06-10 01:41:04
Description:
Code Integrity determined that a process (DeviceHarddiskVolume2WindowsSystem32SecurityHealthService.exe) attempted to load DeviceHarddiskVolume2Program Files (x86)Kaspersky LabKaspersky Total Security 21.3x64antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2021-06-10 01:37:06
Description:
Code Integrity determined that a process (DeviceHarddiskVolume2WindowsSystem32svchost.exe) attempted to load DeviceHarddiskVolume2Program Files (x86)Kaspersky LabKaspersky Total Security 21.3x64antimalware_provider.dll that did not meet the Windows signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. 3401 03/19/2021
Motherboard: ASUSTeK COMPUTER INC. ROG CROSSHAIR VIII HERO (WI-FI)
Processor: AMD Ryzen 9 3900X 12-Core Processor
Percentage of memory in use: 48%
Total physical RAM: 16296.72 MB
Available physical RAM: 8430.41 MB
Total Virtual: 25512.72 MB
Available Virtual: 11445.04 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:953.85 GB) (Free:583.18 GB) NTFS
Drive d: () (Fixed) (Total:1863 GB) (Free:1727.91 GB) NTFS
Drive e: () (Fixed) (Total:3726.01 GB) (Free:2918.94 GB) NTFS

\?Volume{9a419cf5-f715-44f6-97e6-130d1bb1cc24} () (Fixed) (Total:0.5 GB) (Free:0.47 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 85622EC4)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 3726 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 2 (Size: 953.9 GB) (Disk ID: 62310063)

Partition: GPT.

==========================================================
Disk: 3 (Protective MBR) (Size: 1907.7 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

 





Original Source link

Leave a Reply

Your email address will not be published. Required fields are marked *

sixty six − = fifty nine