Inactive-A Possible Infection (Posted logs)

Status
Not open for further replies.
MeinAutoIstKaput

MeinAutoIstKaput

Posts: 7   +0
I suspect my pc may be infected. I ran tdsskiller and when it reached "Device0" it caused the computer to restart. I then tried running the program again, with the same results. I then checked out this forum and have pasted the directories below as instructed and am now awaiting further assistance.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 07-07-2021
Ran by javau (administrator) on DESKTOP-VE26JV6 (07-07-2021 10:10:04)
Running from C:\Users\javau\OneDrive\Desktop
Loaded Profiles: javau
Platform: Windows 10 Home Version 21H1 19043.1052 (X64) Language: English (United States)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe <2>
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0368925.inf_amd64_05ef22929fd9ebfc\B368707\atieclxx.exe
(Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0368925.inf_amd64_05ef22929fd9ebfc\B368707\atiesrxx.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe
(ASRock Incorporation -> ASRock Incorporation) C:\Program Files (x86)\ASRock Utility\A-Tuning\Bin\AsrSvc.exe
(ASRock Incorporation -> ASRock Incorporation) C:\Program Files (x86)\ASRock Utility\A-Tuning\Bin\ATuning.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Manager\AsHKService.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\Server\SyncUp Server.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <43>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee Security Scan\3.11.2254\SSScheduler.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft OneDrive\21.109.0530.0001\FileCoAuth.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\WirelessKB850NotificationService.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2106.14307.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12104.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Paramount Software UK Ltd -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\MacriumService.exe
(Paramount Software UK Ltd -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectMonitor.exe
(Paramount Software UK Ltd -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectUI.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [881440 2019-06-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Reflect UI] => C:\Program Files\Macrium\Common\ReflectUI.exe [7580488 2021-05-24] (Paramount Software UK Ltd -> Paramount Software UK Ltd)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1794888 2015-06-29] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.2.9.564\ASUSWSLoader.exe [63968 2016-06-21] (ASUS Cloud Corporation -> ASUS Cloud Corporation)
HKLM-x32\...\Run: [OnScreen Control] => C:\Program Files (x86)\LG Electronics\OnScreen Control\bin\OnScreenStartUpApp.exe [1820568 2020-10-19] (LG Electronics Inc. -> LG Electronics Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-1516065185-2354279922-2247536414-1001\...\Run: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [1976184 2021-06-26] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1516065185-2354279922-2247536414-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4109032 2021-06-08] (Valve -> Valve Corporation)
HKU\S-1-5-21-1516065185-2354279922-2247536414-1001\...\Run: [AMDDVR] => C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe [2524632 2021-06-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-1516065185-2354279922-2247536414-1001\...\Run: [ASRock A-Tuning] => [X]
HKU\S-1-5-21-1516065185-2354279922-2247536414-1001\...\Run: [BsgLauncher] => T:\Program Files\Battlestate\BsgLauncher\BsgLauncher.exe [1122512 2021-06-17] (BATTLESTATE GAMES LIMITED -> Battlestate Games)
HKU\S-1-5-21-1516065185-2354279922-2247536414-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5549280 2021-05-28] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-1516065185-2354279922-2247536414-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2147264 2021-07-01] (Wargaming.net Limited -> Wargaming.net)
HKU\S-1-5-21-1516065185-2354279922-2247536414-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\ssText3d.scr [224768 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\91.0.4472.124\Installer\chrmstp.exe [2021-06-24] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2021-06-30]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.2254\SSScheduler.exe (McAfee, LLC -> McAfee, LLC)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {08D75B76-7957-44E5-8CA3-1DA453C40D56} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [5938888 2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {21E8BA00-AD0B-4A75-935A-29EBBE600959} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [63448 2021-06-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {28E8DE9D-4599-4B1A-BE48-9F758363658A} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [5938888 2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {33172F9A-EEA4-40DC-B783-91493A8B15E5} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [1578784 2016-07-07] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) [File not signed]
Task: {3D43F398-505A-4806-BD44-21AEACB5177F} - System32\Tasks\Driver Easy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe [3817392 2020-06-18] (Easeware Technology Limited -> Easeware)
Task: {3E1B86AA-CAED-4AEF-9CD6-C49F6DF4B43F} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [2822520 2021-06-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {40545C02-5D55-4A62-A4F6-134A487B365A} - System32\Tasks\ATuning => C:\Program Files (x86)\ASRock Utility\A-Tuning\Bin\ATuning.exe [9712088 2020-11-10] (ASRock Incorporation -> ASRock Incorporation)
Task: {4E7EFD74-3D23-41B8-9601-192F343DC2A3} - System32\Tasks\AMD.PROCC CleanupTemporaryInternetFiles => C:\Program Files (x86)\AMD PRO Control Center\AMD.PROCC.CleanupSchedulerTool.exe [15464 2015-03-20] (Advanced Micro Devices, Inc. -> AMD) [File not signed]
Task: {62F032BC-8855-4046-B9D4-F663B6C2DA5C} - System32\Tasks\ASUS\ASUS Manager BackgroundWindow => C:\Program Files (x86)\ASUS\ASUS Manager\BackgroundWindow.exe [21784 2016-03-24] (ASUSTeK Computer Inc. -> )
Task: {652BA8CE-4678-46F3-BB08-A700B4C3624B} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [43520 2021-06-17] (Advanced Micro Devices, Inc.) [File not signed]
Task: {74C3086F-25AE-4497-86E4-D88DD96E03A5} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [5938888 2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {7A4CB82E-EBFC-4776-8E8A-4515F4A9B97A} - System32\Tasks\ASUS\ASUS Updater => C:\Program Files (x86)\ASUS\ASUS Manager\Application Update\ASUSFourceUpdater.exe [940496 2016-07-15] (ASUSTeK Computer Inc. -> )
Task: {82740ED4-9641-4FA3-AB86-048E2CB6CF57} - System32\Tasks\CorelUpdateHelperTask-FA701FD46DEE5BD579DFADDAEEB217B7 => c:\Program Files (x86)\Corel\CUH\v2\CUH.exe
Task: {8AD7FEA3-81CE-4B45-8DC5-F2389D0EDD98} - System32\Tasks\ASUS\ASUS Update Checker => C:\Program Files (x86)\ASUS\ASUS Manager\Application Update\ASUSUpdateChecker.exe [922576 2016-07-15] (ASUSTeK Computer Inc. -> )
Task: {98AA6CF0-4172-48B2-BBFE-6FF2A985CEC8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-26] (Adobe Inc. -> Adobe Inc.)
Task: {993A37B3-01F9-4BB2-BC1C-D68F028B43B8} - System32\Tasks\ASUS\ASUS Manager HotKey Service => C:\Program Files (x86)\ASUS\ASUS Manager\AsHKService.exe [225592 2016-03-24] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {AEEE1EA9-C467-4921-A6E9-E09A4549DD47} - System32\Tasks\AMD.PROCC SleepHibernate Computer => C:\Program Files (x86)\AMD PRO Control Center\AMD.PROCC.Notifier.exe [35432 2015-03-20] (Advanced Micro Devices, Inc. -> AMD) [File not signed]
Task: {C383F64F-0048-4657-B415-2841483C9CD8} - System32\Tasks\AMD.PROCC WakeUp Computer => C:\Program Files (x86)\AMD PRO Control Center\AMD.PROCC.Notifier.exe [35432 2015-03-20] (Advanced Micro Devices, Inc. -> AMD) [File not signed]
Task: {C72EC81B-BE97-4A55-9455-930D1D35CAF4} - System32\Tasks\AMDAutoUpdate => C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe [382168 2020-05-21] (Advanced Micro Devices INC. -> )
Task: {D36CC70A-A288-4280-9F5D-EDF94D666537} - System32\Tasks\ASUS\SyncUp => C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\Server\SyncUp Server.exe [3494200 2015-04-01] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {DD3FEA5B-2D0B-4BF1-9850-F65C5AF6FDF1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-25] (Google Inc -> Google LLC)
Task: {DFCFA362-B87D-44BA-B5CD-9C7A26520BB2} - System32\Tasks\AMD.PROCC CleanupCookies => C:\Program Files (x86)\AMD PRO Control Center\AMD.PROCC.CleanupSchedulerTool.exe [15464 2015-03-20] (Advanced Micro Devices, Inc. -> AMD) [File not signed]
Task: {EE59E04B-C17C-4E7B-9D37-96BC34BA7D0C} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [269272 2021-06-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {F24D8FE8-E872-4219-8DC9-A5F418729EF8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-25] (Google Inc -> Google LLC)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Driver Easy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{584842d4-e75c-45ee-ab0a-bf62afbcb7f9}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{585f592d-776d-4dad-884c-a7dbfb45f42c}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{bd960918-39e4-4af6-bc57-d3df8698c303}: [DhcpNameServer] 192.168.1.1

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\javau\AppData\Local\Microsoft\Edge\User Data\Default [2021-07-07]



Will post the remainder of this log, and the next log separately.
 
FireFox:
========
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-06-29] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-06-29] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-05-28] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\javau\AppData\Local\Google\Chrome\User Data\Default [2021-07-07]
CHR Notifications: Default -> hxxps://gfuel.com
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxp://www.google.com/"
CHR Extension: (Safe Torrent Scanner) - C:\Users\javau\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2021-06-30]
CHR Extension: (FormSwift PDF Editor:Convert, Sign, Fax, Edit) - C:\Users\javau\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdfcnmeidppjeaggnmidamkiddifkdib [2021-03-28]
CHR Extension: (Honey) - C:\Users\javau\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2021-07-06]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\javau\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-05-19]
CHR Extension: (Hulu) - C:\Users\javau\AppData\Local\Google\Chrome\User Data\Default\Extensions\epffkfffophpagfbbklffindaiconkmc [2020-11-11]
CHR Extension: (Special Characters - Click and Paste) - C:\Users\javau\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkjbliednplpohojfpgnbpcppgdnhklb [2019-10-25]
CHR Extension: (Google Docs Offline) - C:\Users\javau\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-24]
CHR Extension: (Google Calendar) - C:\Users\javau\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbgaklkmjakoegficnlkhebmhkjfich [2021-01-09]
CHR Extension: (Rapid Rewards Shopping® button) - C:\Users\javau\AppData\Local\Google\Chrome\User Data\Default\Extensions\iblgdcjagdifpikcobibfpkddkphllmc [2021-05-25]
CHR Extension: (Office - Enable Copy and Paste) - C:\Users\javau\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifbmcpbgkhlpfcodhjhdbllhiaomkdej [2020-09-12]
CHR Extension: (Grammarly for Chrome) - C:\Users\javau\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2021-07-05]
CHR Extension: (Google Drawings) - C:\Users\javau\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkaakpdehdafacodkgkpghoibnmamcme [2019-10-25]
CHR Extension: (No Name) - C:\Users\javau\AppData\Local\Google\Chrome\User Data\Default\Extensions\nenlahapcbofgnanklpelkaejcehkggg [2020-12-13]
CHR Extension: (Chrome Web Store Payments) - C:\Users\javau\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Chrome Media Router) - C:\Users\javau\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-16]
CHR Profile: C:\Users\javau\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-07-07]
CHR Profile: C:\Users\javau\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-06-30]
CHR Extension: (Slides) - C:\Users\javau\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-04-18]
CHR Extension: (Docs) - C:\Users\javau\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2021-04-18]
CHR Extension: (Google Drive) - C:\Users\javau\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-04-18]
CHR Extension: (YouTube) - C:\Users\javau\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-04-18]
CHR Extension: (Adobe Acrobat) - C:\Users\javau\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-05-02]
CHR Extension: (Sheets) - C:\Users\javau\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-04-18]
CHR Extension: (Google Docs Offline) - C:\Users\javau\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-30]
CHR Extension: (Chrome Web Store Payments) - C:\Users\javau\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-18]
CHR Extension: (Gmail) - C:\Users\javau\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-04-18]
CHR Extension: (Chrome Media Router) - C:\Users\javau\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-30]
CHR Profile: C:\Users\javau\AppData\Local\Google\Chrome\User Data\System Profile [2021-07-07]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-26] (Adobe Inc. -> Adobe Inc.)
S4 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-08-04] (Advanced Micro Devices, Inc.) [File not signed]
S4 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [920736 2013-11-06] (ASUSTeK Computer Inc. -> )
S4 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.2.9.564\AsusWSWinService.exe [75264 2016-06-21] (ASUS Cloud Corporation) [File not signed]
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8914856 2021-06-18] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2021-04-07] (EasyAntiCheat Oy -> Epic Games, Inc)
S4 ElevationService; C:\Program Files (x86)\Wondershare\dr.fone\Addins\Repair\ElevationService.exe [907776 2020-07-30] () [File not signed]
S3 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\21.109.0530.0001\FileSyncHelper.exe [2262904 2021-06-26] (Microsoft Corporation -> Microsoft Corporation)
S4 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335360 2016-03-18] (Intel Corporation) [File not signed]
S4 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [8704 2016-03-18] (Intel Corporation) [File not signed]
R2 MacriumService; C:\Program Files\Macrium\Common\MacriumService.exe [8929608 2021-05-24] (Paramount Software UK Ltd -> Paramount Software UK Ltd)
R3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7462200 2021-07-06] (Malwarebytes Inc -> Malwarebytes)
S4 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.2254\McCHSvc.exe [416752 2021-06-26] (McAfee, LLC -> McAfee, LLC)
S4 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\3.4.105.0\\McCSPServiceHost.exe [2687856 2020-01-25] (McAfee, LLC. -> McAfee, LLC.)
S4 MSI_Companion_Service; C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\MSI_Companion_Service.exe [143160 2021-03-31] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S3 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\21.109.0530.0001\OneDriveUpdaterService.exe [2728312 2021-06-26] (Microsoft Corporation -> Microsoft Corporation)
S4 SafeConnectService; C:\Program Files (x86)\McAfee\McAfee Safe Connect\SafeConnect.ServiceHost.exe [19760 2021-03-30] (McAfee, LLC. -> McAfee, LLC.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\NisSrv.exe [2644776 2021-06-16] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MsMpEng.exe [136656 2021-06-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WirelessKB850NotificationService; C:\WINDOWS\system32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation)
S4 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [262312 2021-01-06] (Wondershare Technology Co.,Ltd -> Wondershare)
S2 WsDrvInst; C:\Program Files (x86)\Wondershare\dr.fone\Addins\Repair\DriverInstall.exe [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 53512839; C:\WINDOWS\System32\drivers\66442761.sys [208216 2021-01-01] () [File not signed]
R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [40512 2021-06-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_8e2568524f674315\amdsafd.sys [100768 2021-03-29] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0368925.inf_amd64_05ef22929fd9ebfc\B368707\amdkmdag.sys [81597776 2021-06-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppShopDrv103; C:\WINDOWS\SysWOW64\Drivers\AppShopDrv103.sys [34568 2021-07-07] (ASROCK Incorporation -> ASRock Incorporation) [File not signed]
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-09-08] (ASUSTeK Computer Inc. -> )
S3 AsrDrv103; C:\WINDOWS\SysWOW64\Drivers\AsrDrv103.sys [34568 2020-11-30] (ASROCK Incorporation -> ASRock Incorporation) [File not signed]
R3 AsrDrv104; C:\WINDOWS\SysWOW64\Drivers\AsrDrv104.sys [34536 2020-12-30] (ASROCK Incorporation -> ASRock Incorporation) [File not signed]
R0 assdv2; C:\WINDOWS\System32\DRIVERS\assdv2.sys [30040 2015-09-07] (ASUSTeK Computer Inc. -> ASUS)
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [25944 2016-08-25] (ASUSTeK Computer Inc. -> )
S3 atillk64; C:\Users\javau\OneDrive\Desktop\Tools\atiflash_293\atillk64.sys [14608 2006-07-19] (ATI Technologies, Inc -> ATI Technologies Inc.)
S3 cpuz149; C:\Users\javau\AppData\Local\Temp\cpuz149\cpuz149_x64.sys [44320 2021-07-04] (CPUID S.A.R.L.U. -> CPUID) <==== ATTENTION
S3 dc3d; C:\WINDOWS\System32\drivers\dc3d.sys [47616 2011-05-18] (Hardware Group Test Cert -> Microsoft Corporation)
R1 EneTechIo; C:\WINDOWS\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [199128 2021-04-11] (Malwarebytes Inc -> Malwarebytes)
R1 GLCKIO2; C:\WINDOWS\system32\drivers\GLCKIO2.sys [19392 2018-04-23] (ASUSTeK Computer Inc. -> )
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-07-06] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-12-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198888 2021-07-07] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [69016 2021-07-07] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-07-06] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\SysWOW64\Drivers\mbamswissarmy.sys [38224 2010-12-20] (Malwarebytes Corporation -> Malwarebytes Corporation)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [156880 2021-07-07] (Malwarebytes Inc -> Malwarebytes)
S3 MpKsl10b79caf; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{18B5448D-8A0B-4A78-9DA7-A4EBCECFA3BF}\MpKslDrv.sys [107752 2021-07-07] (Microsoft Windows -> Microsoft Corporation)
R1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
S3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [51776 2020-02-17] (Razer USA Ltd. -> Razer Inc)
S3 RzDev_0306; C:\WINDOWS\System32\drivers\RzDev_0306.sys [52504 2020-02-17] (Razer USA Ltd. -> Razer Inc)
S3 rzmpos; C:\WINDOWS\System32\drivers\rzmpos.sys [47640 2016-05-10] (Razer USA Ltd. -> Razer Inc)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64864 2019-07-09] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [41008 2021-03-30] (McAfee, LLC. -> The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49568 2021-06-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [425184 2021-06-16] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [76000 2021-06-16] (Microsoft Windows -> Microsoft Corporation)
S3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-07-07 10:08 - 2021-07-07 10:10 - 000000000 ____D C:\FRST
2021-07-07 10:08 - 2021-07-07 10:08 - 000000000 ____D C:\Users\javau\Downloads\FRST-OlderVersion
2021-07-07 09:57 - 2021-07-07 09:57 - 000198888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2021-07-07 09:57 - 2021-07-07 09:57 - 000156880 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2021-07-07 09:57 - 2021-07-07 09:57 - 000069016 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2021-07-07 09:49 - 2021-07-07 09:49 - 001502244 _____ C:\WINDOWS\Minidump\070721-11515-01.dmp
2021-07-07 09:47 - 2021-07-07 09:47 - 000107002 _____ C:\TDSSKiller.3.1.0.28_07.07.2021_09.47.09_log.txt
2021-07-07 09:01 - 2021-07-07 09:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2021-07-07 09:01 - 2021-07-07 09:01 - 000000000 ____D C:\ProgramData\ATI
2021-07-07 00:10 - 2021-07-07 00:10 - 000130906 _____ C:\TDSSKiller.3.1.0.28_07.07.2021_00.10.24_log.txt
2021-07-06 23:58 - 2021-07-06 23:59 - 000077778 _____ C:\TDSSKiller.3.1.0.28_06.07.2021_23.58.32_log.txt
2021-07-06 23:57 - 2021-07-06 23:57 - 000009696 _____ C:\TDSSKiller.3.1.0.28_06.07.2021_23.57.01_log.txt
2021-07-06 23:54 - 2021-07-06 23:54 - 001349692 _____ C:\WINDOWS\Minidump\070621-13000-01.dmp
2021-07-06 23:52 - 2021-07-06 23:53 - 000064056 _____ C:\TDSSKiller.3.1.0.28_06.07.2021_23.52.40_log.txt
2021-07-06 23:39 - 2021-07-06 23:39 - 000000000 ____D C:\Users\javau\AppData\Local\Apps\2.0
2021-07-06 19:02 - 2021-07-07 09:49 - 000000000 ____D C:\Users\javau\AppData\Local\Discord
2021-07-06 17:54 - 2021-07-06 17:54 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-07-06 17:54 - 2021-07-06 17:54 - 000002028 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-07-06 17:41 - 2021-07-06 17:41 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-07-06 16:31 - 2021-07-06 16:31 - 000000000 ____D C:\Users\javau\AppData\Local\.uoc2
2021-07-02 08:11 - 2021-07-07 09:49 - 2204186706 _____ C:\WINDOWS\MEMORY.DMP
2021-07-02 08:11 - 2021-07-02 08:11 - 001426412 _____ C:\WINDOWS\Minidump\070221-10046-01.dmp
2021-07-02 08:07 - 2021-07-02 08:07 - 000000000 ____D C:\Users\javau\AppData\LocalLow\AMD
2021-07-02 07:52 - 2021-07-02 07:52 - 000000000 ____D C:\Users\javau\AppData\Local\NVIDIA
2021-07-02 07:37 - 2021-06-25 08:25 - 000116072 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdkmpfd.sys
2021-07-02 07:02 - 2021-07-07 09:49 - 000000000 ____D C:\ProgramData\NVIDIA
2021-07-02 07:02 - 2021-07-02 07:02 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2021-07-02 07:02 - 2021-07-02 07:02 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-07-02 07:02 - 2021-07-02 07:02 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2021-07-02 07:02 - 2015-06-29 22:53 - 031514312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2021-07-02 07:02 - 2015-06-29 22:53 - 024200336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2021-07-02 07:02 - 2015-06-29 22:53 - 022992072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2021-07-02 07:02 - 2015-06-29 22:53 - 018634264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2021-07-02 07:02 - 2015-06-29 22:53 - 017559432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2021-07-02 07:02 - 2015-06-29 22:53 - 016128768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2021-07-02 07:02 - 2015-06-29 22:53 - 015294280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2021-07-02 07:02 - 2015-06-29 22:53 - 014497568 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2021-07-02 07:02 - 2015-06-29 22:53 - 013916600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2021-07-02 07:02 - 2015-06-29 22:53 - 013828032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2021-07-02 07:02 - 2015-06-29 22:53 - 012896400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2021-07-02 07:02 - 2015-06-29 22:53 - 011272240 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2021-07-02 07:02 - 2015-06-29 22:53 - 011209192 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2021-07-02 07:02 - 2015-06-29 22:53 - 004245832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2021-07-02 07:02 - 2015-06-29 22:53 - 003986632 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2021-07-02 07:02 - 2015-06-29 22:53 - 003209736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2021-07-02 07:02 - 2015-06-29 22:53 - 002823992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2021-07-02 07:02 - 2015-06-29 22:53 - 001907400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6434174.dll
2021-07-02 07:02 - 2015-06-29 22:53 - 001557832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6434174.dll
2021-07-02 07:02 - 2015-06-29 22:53 - 000945480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2021-07-02 07:02 - 2015-06-29 22:53 - 000907464 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2021-07-02 07:02 - 2015-06-29 22:53 - 000903496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2021-07-02 07:02 - 2015-06-29 22:53 - 000870032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2021-07-02 07:02 - 2015-06-29 22:53 - 000026155 _____ C:\WINDOWS\system32\nvinfo.pb
2021-07-02 07:02 - 2015-06-29 15:42 - 006783304 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2021-07-02 07:02 - 2015-06-29 15:42 - 003522192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2021-07-02 07:02 - 2015-06-29 15:42 - 002558792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2021-07-02 07:02 - 2015-06-29 15:42 - 000932040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2021-07-02 07:02 - 2015-06-29 15:42 - 000385352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2021-07-02 07:02 - 2015-06-29 15:42 - 000062792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2021-07-02 07:02 - 2015-06-29 14:07 - 000606920 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2021-07-02 07:02 - 2015-06-29 06:02 - 004437364 _____ C:\WINDOWS\system32\nvcoproc.bin
2021-07-02 06:30 - 2021-07-02 06:30 - 000000000 ___DL C:\WINDOWS\SysWOW64\Drivers\atikmdag-patched
2021-07-02 06:30 - 2021-07-02 06:30 - 000000000 ____D C:\WINDOWS\system32\Drivers\atikmdag-patched
2021-07-02 05:29 - 2021-07-07 08:39 - 000003118 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2021-07-02 05:28 - 2021-07-07 08:39 - 000003078 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2021-07-02 05:28 - 2021-07-02 05:28 - 000003488 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2021-07-02 05:28 - 2021-07-02 05:28 - 000003160 _____ C:\WINDOWS\system32\Tasks\StartCN
2021-07-02 05:28 - 2021-07-02 05:28 - 000003080 _____ C:\WINDOWS\system32\Tasks\StartDVR
2021-07-02 05:28 - 2021-07-02 05:28 - 000002622 _____ C:\WINDOWS\system32\Tasks\AMDRyzenMasterSDKTask
2021-07-02 05:28 - 2021-07-02 05:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Software
2021-07-02 05:28 - 2021-07-02 05:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Link For Windows
2021-07-02 05:28 - 2021-07-02 05:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool
2021-07-02 05:28 - 2021-06-17 19:05 - 002444240 _____ (AMD Inc.) C:\WINDOWS\SysWOW64\AMDBugReportTool.exe
2021-07-02 05:09 - 2021-06-25 08:26 - 001871160 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-07-02 05:09 - 2021-06-25 08:26 - 001871160 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-07-02 05:09 - 2021-06-25 08:26 - 001451320 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-07-02 05:09 - 2021-06-25 08:26 - 001451320 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-07-02 05:09 - 2021-06-25 08:26 - 001105928 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-07-02 05:09 - 2021-06-25 08:26 - 001105928 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-07-02 05:09 - 2021-06-25 08:26 - 000959096 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-07-02 05:09 - 2021-06-25 08:26 - 000959096 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-07-02 05:09 - 2021-06-25 08:26 - 000745272 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2021-07-02 05:09 - 2021-06-25 08:26 - 000629560 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2021-07-02 05:09 - 2021-06-25 08:26 - 000508216 _____ C:\WINDOWS\system32\dgtrayicon.exe
2021-07-02 05:09 - 2021-06-25 08:26 - 000505168 _____ C:\WINDOWS\system32\GameManager64.dll
2021-07-02 05:09 - 2021-06-25 08:26 - 000441144 _____ C:\WINDOWS\system32\EEURestart.exe
2021-07-02 05:09 - 2021-06-25 08:26 - 000388408 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2021-07-02 05:09 - 2021-06-25 08:26 - 000355128 _____ C:\WINDOWS\system32\clinfo.exe
2021-07-02 05:09 - 2021-06-25 08:26 - 000195384 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2021-07-02 05:09 - 2021-06-25 08:26 - 000174904 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2021-07-02 05:09 - 2021-06-25 08:26 - 000165176 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2021-07-02 05:09 - 2021-06-25 08:26 - 000150840 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2021-07-02 05:09 - 2021-06-25 08:26 - 000099152 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mcl64.dll
2021-07-02 05:09 - 2021-06-25 08:26 - 000083800 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mcl32.dll
2021-07-02 05:09 - 2021-06-25 08:26 - 000055120 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2021-07-02 05:09 - 2021-06-25 08:26 - 000052056 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2021-07-02 05:09 - 2021-06-25 08:26 - 000027920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2021-07-02 05:09 - 2021-06-25 08:26 - 000027920 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2021-07-02 05:09 - 2021-06-25 08:25 - 083192128 _____ C:\WINDOWS\system32\amd_comgr.dll
2021-07-02 05:09 - 2021-06-25 08:25 - 068444480 _____ C:\WINDOWS\SysWOW64\amd_comgr32.dll
2021-07-02 05:09 - 2021-06-25 08:25 - 001545544 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiacm64.dll
2021-07-02 05:09 - 2021-06-25 08:25 - 001345352 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2021-07-02 05:09 - 2021-06-25 08:25 - 001345352 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2021-07-02 05:09 - 2021-06-25 08:25 - 000949584 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2021-07-02 05:09 - 2021-06-25 08:25 - 000839992 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2021-07-02 05:09 - 2021-06-25 08:25 - 000777016 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2021-07-02 05:09 - 2021-06-25 08:25 - 000476992 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2021-07-02 05:09 - 2021-06-25 08:25 - 000474960 _____ C:\WINDOWS\system32\amdlogum.exe
2021-07-02 05:09 - 2021-06-25 08:25 - 000464696 _____ C:\WINDOWS\system32\atieah64.exe
2021-07-02 05:09 - 2021-06-25 08:25 - 000360248 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2021-07-02 05:09 - 2021-06-25 08:25 - 000253752 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2021-07-02 05:09 - 2021-06-25 08:25 - 000221496 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2021-07-02 05:09 - 2021-06-25 08:25 - 000190648 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2021-07-02 05:09 - 2021-06-25 08:25 - 000175416 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2021-07-02 05:09 - 2021-06-25 08:25 - 000174904 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2021-07-02 05:09 - 2021-06-25 08:25 - 000166904 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2021-07-02 05:09 - 2021-06-25 08:25 - 000158528 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-07-02 05:09 - 2021-06-25 08:25 - 000149304 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2021-07-02 05:09 - 2021-06-25 08:25 - 000145224 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2021-07-02 05:09 - 2021-06-25 08:25 - 000141632 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll
2021-07-02 05:09 - 2021-06-25 08:25 - 000139072 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-07-02 05:09 - 2021-06-25 08:25 - 000133952 _____ C:\WINDOWS\system32\atidxx64.dll
2021-07-02 05:09 - 2021-06-25 08:25 - 000121672 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2021-07-02 05:09 - 2021-06-25 08:25 - 000121672 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll
2021-07-02 05:09 - 2021-06-25 08:25 - 000116032 _____ C:\WINDOWS\SysWOW64\atidxx32.dll
2021-07-02 05:09 - 2021-06-25 08:25 - 000078664 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll
2021-07-02 05:09 - 2021-06-25 08:24 - 072873280 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdhip64.dll
2021-07-02 05:09 - 2021-06-25 08:24 - 001709000 _____ (AMD) C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll
2021-07-02 05:09 - 2021-06-25 08:24 - 001385504 _____ (AMD) C:\WINDOWS\SysWOW64\amf-mft-mjpeg-decoder32.dll
2021-07-02 05:09 - 2021-06-25 08:24 - 000559776 _____ C:\WINDOWS\system32\amdmiracast.dll
2021-07-02 05:09 - 2021-06-25 08:24 - 000497984 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2021-07-02 05:09 - 2021-06-25 08:24 - 000388408 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2021-07-02 05:09 - 2021-06-25 08:24 - 000145352 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2021-07-02 05:09 - 2021-06-25 08:24 - 000139648 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2021-07-02 05:09 - 2021-06-25 08:24 - 000139624 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2021-07-02 05:09 - 2021-06-25 08:24 - 000129520 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2021-07-02 05:09 - 2021-06-25 08:24 - 000117360 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2021-07-02 05:09 - 2021-06-25 08:24 - 000117336 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2021-07-02 05:09 - 2021-06-25 07:53 - 059811928 _____ C:\WINDOWS\system32\amdxc64.so
2021-07-02 05:09 - 2021-06-25 07:53 - 003471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2021-07-02 05:09 - 2021-06-25 07:53 - 003437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2021-07-02 05:09 - 2021-06-25 07:53 - 000561080 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2021-07-02 05:09 - 2021-06-25 07:53 - 000561080 _____ C:\WINDOWS\system32\atiapfxx.blb
2021-07-02 05:09 - 2021-06-25 07:53 - 000128048 _____ C:\WINDOWS\system32\kapp_ci.sbin
2021-07-02 05:09 - 2021-06-25 07:53 - 000012344 _____ C:\WINDOWS\system32\brandingWS_RSX.bmp
2021-07-02 05:09 - 2021-06-25 07:53 - 000012344 _____ C:\WINDOWS\system32\brandingRSX.bmp
2021-07-02 05:09 - 2021-06-08 05:10 - 000585136 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdfendrsr.exe
2021-07-02 05:09 - 2021-06-08 05:10 - 000040512 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdfendrmgr.sys
2021-07-02 03:58 - 2021-07-02 03:58 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2021-07-02 03:03 - 2021-07-02 03:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2021-07-02 03:03 - 2021-07-02 03:03 - 000000000 ____D C:\Program Files\Speccy
2021-07-01 23:38 - 2021-07-02 01:32 - 000000000 ____D C:\SearcherBar
2021-07-01 23:38 - 2021-07-02 01:32 - 000000000 ____D C:\Chrone
2021-07-01 23:38 - 2021-07-02 01:20 - 000000000 ____D C:\Users\javau\AppData\Roaming\Opera Software
2021-07-01 23:38 - 2021-07-02 01:20 - 000000000 ____D C:\Users\javau\AppData\Local\Opera Software
2021-07-01 23:38 - 2021-07-01 23:38 - 000000000 ____D C:\Users\javau\.cache
2021-07-01 23:08 - 2021-07-01 23:08 - 000000000 ____D C:\MSI
2021-07-01 23:08 - 2020-01-19 19:49 - 000017424 _____ (MICSYS Technology Co., LTd) C:\WINDOWS\system32\Drivers\MsIo64.sys
2021-07-01 23:08 - 2014-04-30 16:23 - 000011248 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\acpimof.dll
2021-07-01 23:07 - 2021-07-01 23:07 - 000000000 ____D C:\Program Files (x86)\MSI
2021-07-01 23:06 - 2021-07-02 01:32 - 000000000 ____D C:\ProgramData\MSI
2021-06-30 12:21 - 2021-07-07 00:06 - 000000000 ____D C:\ProgramData\McAfee Security Scan
2021-06-30 12:21 - 2021-06-30 12:21 - 000002025 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2021-06-30 12:21 - 2021-06-30 12:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2021-06-29 13:24 - 2021-07-02 01:32 - 000000000 ____D C:\Users\javau\AppData\Roaming\Easeware
2021-06-29 13:24 - 2021-07-02 01:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Easy
2021-06-29 13:24 - 2021-07-02 01:32 - 000000000 ____D C:\Program Files\Easeware
2021-06-29 13:24 - 2021-06-29 13:34 - 000000438 _____ C:\WINDOWS\Tasks\Driver Easy Scheduled Scan.job
2021-06-29 13:24 - 2021-06-29 13:24 - 000003910 _____ C:\WINDOWS\system32\Tasks\Driver Easy Scheduled Scan
2021-06-29 12:44 - 2021-07-06 23:40 - 000000000 ____D C:\Users\javau\AppData\Local\ElevatedDiagnostics
2021-06-28 12:51 - 2021-06-28 13:09 - 000000000 ____D C:\Users\javau\OneDrive\Documents\OnScreen Control
2021-06-28 12:39 - 2021-06-28 12:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OnScreen Control
2021-06-28 12:39 - 2021-06-28 12:39 - 000000000 ____D C:\Program Files (x86)\LG Electronics
2021-06-28 12:39 - 2018-10-10 11:24 - 000196608 _____ (LG Soft India) C:\WINDOWS\SysWOW64\LGDeviceManager.dll
2021-06-28 12:39 - 2018-10-10 11:24 - 000135168 _____ (LG Soft India) C:\WINDOWS\SysWOW64\LGMonitorDDCCISDK.dll
2021-06-28 12:39 - 2018-10-10 11:24 - 000102400 _____ (LG Soft India) C:\WINDOWS\SysWOW64\LGProtocolEngine.dll
2021-06-28 12:39 - 2018-09-28 13:57 - 000049152 _____ () C:\WINDOWS\SysWOW64\LGErrorHandler.dll
2021-06-27 01:13 - 2021-06-27 01:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD
2021-06-27 00:41 - 2021-06-27 00:41 - 000000000 ____D C:\Users\javau\Intel
2021-06-21 17:48 - 2021-06-21 17:48 - 000000000 ____D C:\Program Files\ASUS COMPUTER INC
2021-06-20 15:30 - 2021-07-05 22:01 - 000003034 _____ C:\WINDOWS\system32\Tasks\ATuning
2021-06-20 14:49 - 2021-06-20 14:49 - 000000000 ____D C:\Users\javau\AppData\Local\HomeDev
2021-06-20 14:49 - 2021-06-20 14:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HomeDev
2021-06-20 14:49 - 2021-06-20 14:49 - 000000000 ____D C:\Program Files (x86)\HomeDev
2021-06-20 14:46 - 2021-06-20 14:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\UnCleaner
2021-06-20 14:46 - 2021-06-20 14:46 - 000000000 ____D C:\Program Files\UnCleaner
2021-06-20 13:44 - 2021-06-20 13:44 - 000000000 ____D C:\WINDOWS\Panther
2021-06-20 12:35 - 2021-06-20 12:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Macrium
2021-06-20 11:16 - 2021-06-20 11:16 - 000000000 ____D C:\Users\javau\AppData\Local\ImageMagick
2021-06-17 16:12 - 2021-06-17 16:12 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-06-17 16:12 - 2021-06-17 16:12 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-06-17 16:12 - 2021-06-17 16:12 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2021-06-17 16:12 - 2021-06-17 16:12 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll
2021-06-17 16:12 - 2021-06-17 16:12 - 001823792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-06-17 16:12 - 2021-06-17 16:12 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-06-17 16:12 - 2021-06-17 16:12 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-06-17 16:12 - 2021-06-17 16:12 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-06-17 16:12 - 2021-06-17 16:12 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-06-17 16:12 - 2021-06-17 16:12 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-06-17 16:12 - 2021-06-17 16:12 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-06-17 16:12 - 2021-06-17 16:12 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-06-17 16:12 - 2021-06-17 16:12 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-06-17 16:12 - 2021-06-17 16:12 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2021-06-17 16:12 - 2021-06-17 16:12 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-06-17 16:12 - 2021-06-17 16:12 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-06-17 16:12 - 2021-06-17 16:12 - 000097280 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-06-17 16:12 - 2021-06-17 16:12 - 000011353 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-07-07 10:08 - 2020-04-12 11:06 - 002301440 _____ (Farbar) C:\Users\javau\Downloads\FRSTEnglish.exe
2021-07-07 09:56 - 2020-11-05 00:29 - 000842418 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-07-07 09:56 - 2019-12-07 04:13 - 000000000 ____D C:\WINDOWS\INF
2021-07-07 09:51 - 2020-02-07 16:03 - 000000000 ____D C:\Users\javau\AppData\Roaming\Discord
2021-07-07 09:49 - 2020-12-31 09:20 - 000000000 ____D C:\WINDOWS\Minidump
2021-07-07 09:49 - 2020-11-05 00:36 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-07-07 09:49 - 2020-11-05 00:12 - 000008192 ___SH C:\DumpStack.log.tmp
2021-07-07 09:49 - 2020-11-05 00:12 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-07-07 09:49 - 2019-12-07 04:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-07-07 09:49 - 2019-10-25 16:01 - 000000000 ___RD C:\Users\javau\OneDrive
2021-07-07 09:13 - 2020-11-27 07:53 - 000034568 _____ (ASRock Incorporation) C:\WINDOWS\SysWOW64\Drivers\AppShopDrv103.sys
2021-07-07 00:09 - 2020-11-27 09:38 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2021-07-07 00:09 - 2019-12-07 04:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-07-06 23:56 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-07-06 23:43 - 2019-12-07 04:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-07-06 23:41 - 2019-10-25 16:33 - 000000000 ____D C:\Program Files (x86)\Steam
2021-07-06 21:22 - 2019-10-25 16:03 - 000000000 ____D C:\Users\javau\OneDrive\Documents\My Games
2021-07-06 19:02 - 2020-02-07 16:03 - 000000000 ____D C:\Users\javau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2021-07-06 19:02 - 2020-02-07 16:03 - 000000000 ____D C:\Users\javau\AppData\Local\SquirrelTemp
2021-07-06 17:54 - 2020-12-27 12:40 - 000002040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-07-06 17:43 - 2020-09-25 02:49 - 000000000 ____D C:\Users\javau\AppData\Local\CrashDumps
2021-07-06 07:54 - 2019-10-28 10:28 - 000000000 ____D C:\Users\javau\AppData\Local\D3DSCache
2021-07-05 22:40 - 2020-12-12 17:24 - 000000000 ____D C:\Users\javau\AppData\Local\Battle.net
2021-07-05 20:47 - 2020-11-27 08:25 - 000000000 ____D C:\Users\javau\AppData\Local\AMD_Common
2021-07-03 01:44 - 2020-04-12 11:39 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-07-03 01:44 - 2020-04-12 11:39 - 000002283 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-07-03 01:44 - 2019-12-07 04:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-07-02 14:20 - 2020-11-05 00:18 - 000000000 ____D C:\Users\javau
2021-07-02 07:52 - 2020-11-17 23:02 - 000000000 ____D C:\Users\javau\AppData\Local\AMD
2021-07-02 07:39 - 2020-11-17 22:54 - 000000000 ____D C:\ProgramData\AMD
2021-07-02 07:37 - 2020-11-17 22:48 - 000000000 ____D C:\Program Files\AMD
2021-07-02 07:02 - 2020-09-15 17:42 - 000000000 ____D C:\temp
2021-07-02 07:02 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\Help
2021-07-02 05:28 - 2017-10-02 16:32 - 000000000 ____D C:\ProgramData\Package Cache
2021-07-02 05:26 - 2020-11-17 22:35 - 000000000 ____D C:\AMD
2021-07-02 05:10 - 2020-11-17 22:25 - 000000000 ____D C:\WINDOWS\system32\AMD
2021-07-02 04:51 - 2020-09-15 17:15 - 000000000 ____D C:\Program Files (x86)\Razer
2021-07-02 04:45 - 2020-11-28 18:56 - 000007593 _____ C:\Users\javau\AppData\Local\Resmon.ResmonCfg
2021-07-02 04:27 - 2020-09-15 17:42 - 000000000 ____D C:\Users\javau\AppData\Local\Razer
2021-07-02 04:27 - 2020-09-15 17:15 - 000000000 ____D C:\ProgramData\Razer
2021-07-02 04:26 - 2020-09-15 17:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2021-07-02 04:26 - 2020-09-15 17:39 - 000000000 ____D C:\Program Files\Razer
2021-07-02 04:24 - 2019-10-25 16:27 - 000000000 ____D C:\Users\javau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
2021-07-02 02:05 - 2019-10-25 15:56 - 000000000 ____D C:\Users\javau\AppData\Local\Packages
2021-07-02 01:49 - 2021-01-16 23:50 - 000000000 ____D C:\ProgramData\Wondershare
2021-07-02 01:49 - 2021-01-16 23:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2021-07-02 01:33 - 2019-10-25 18:32 - 000000000 ____D C:\Intel
2021-07-02 01:32 - 2020-11-30 23:51 - 000000000 ____D C:\Program Files (x86)\ENE
2021-07-02 01:32 - 2019-10-25 18:33 - 000000000 ____D C:\WINDOWS\system32\DAX2
2021-07-02 01:32 - 2019-10-25 18:32 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2021-07-02 01:24 - 2020-11-30 23:51 - 000000000 ____D C:\Program Files\ENE
2021-07-02 01:24 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\registration
2021-07-01 23:07 - 2021-01-03 14:45 - 000000000 ____D C:\Users\javau\AppData\Local\Downloaded Installations
2021-07-01 23:06 - 2019-10-25 15:57 - 000000000 ____D C:\ProgramData\Packages
2021-07-01 20:33 - 2020-11-30 09:11 - 000003386 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6b3344043fb07
2021-07-01 20:33 - 2020-11-05 00:36 - 000003480 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-06-30 12:21 - 2021-04-28 13:05 - 000000000 ____D C:\Program Files\McAfee Security Scan
2021-06-30 12:21 - 2016-10-26 15:01 - 000000000 ____D C:\ProgramData\McAfee
2021-06-29 13:26 - 2020-06-08 20:57 - 000247200 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\AtihdWT6.sys
2021-06-29 12:48 - 2019-10-25 16:02 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-06-28 22:09 - 2021-02-07 21:53 - 000000000 ____D C:\Users\javau\AppData\Local\Ubisoft Game Launcher
2021-06-28 22:05 - 2019-10-25 16:03 - 000000000 ____D C:\Users\javau\OneDrive\Documents\SH5
2021-06-28 14:03 - 2020-11-19 20:33 - 000618122 _____ C:\WINDOWS\gethelp_audiotroubleshooter_latestpackage.zip
2021-06-28 12:39 - 2016-10-26 15:00 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-06-27 01:31 - 2021-05-22 10:19 - 000000000 ____D C:\Games
2021-06-27 01:31 - 2021-05-22 10:15 - 000000000 ____D C:\Users\javau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargaming.net
2021-06-27 01:28 - 2021-01-30 23:50 - 000000000 ____D C:\Program Files\Autodesk
2021-06-27 01:28 - 2021-01-30 23:48 - 000000000 ____D C:\ProgramData\Autodesk
2021-06-27 01:27 - 2021-01-30 23:57 - 000000000 ____D C:\Program Files (x86)\Autodesk
2021-06-27 01:27 - 2021-01-30 23:52 - 000000000 ____D C:\Users\javau\AppData\Local\Autodesk
2021-06-27 01:26 - 2021-04-02 17:24 - 000000000 ____D C:\ProgramData\Corel
2021-06-27 01:26 - 2019-12-07 04:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-06-27 00:52 - 2021-01-01 12:12 - 000000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2021-06-27 00:52 - 2020-11-05 00:12 - 000567872 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-06-27 00:51 - 2021-01-16 09:28 - 000000000 ____D C:\Program Files (x86)\4MeKey
2021-06-27 00:46 - 2019-10-25 18:32 - 000000000 ____D C:\ProgramData\Intel
2021-06-27 00:46 - 2019-10-25 18:32 - 000000000 ____D C:\Program Files\Intel
2021-06-27 00:46 - 2017-10-02 16:34 - 000000000 ____D C:\Program Files (x86)\Intel
2021-06-27 00:39 - 2021-01-30 23:51 - 000000000 ____D C:\Program Files\Common Files\Autodesk Shared
2021-06-27 00:37 - 2021-01-30 23:48 - 000000000 ____D C:\Users\javau\AppData\Roaming\Autodesk
2021-06-26 09:40 - 2021-04-02 17:25 - 000003458 _____ C:\WINDOWS\system32\Tasks\CorelUpdateHelperTask-FA701FD46DEE5BD579DFADDAEEB217B7
2021-06-26 09:08 - 2021-01-01 12:13 - 000003206 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2021-06-26 09:08 - 2021-01-01 12:13 - 000002181 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-06-25 08:25 - 2020-09-28 11:27 - 001764160 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2021-06-25 08:24 - 2020-12-27 10:28 - 000178224 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdihk32.dll
2021-06-25 08:24 - 2020-09-28 11:26 - 000210704 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdihk64.dll
2021-06-21 17:47 - 2020-11-27 07:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASRock Utility
2021-06-20 14:46 - 2019-10-25 18:07 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2021-06-20 12:35 - 2020-12-29 22:39 - 000000000 ____D C:\Program Files\Macrium
2021-06-20 11:27 - 2020-11-27 09:43 - 001065984 _____ C:\Users\javau\AppData\Local\file__0.localstorage
2021-06-19 18:40 - 2021-05-22 10:15 - 000000000 ____D C:\Users\javau\AppData\Roaming\Wargaming.net
2021-06-19 09:41 - 2020-09-30 11:04 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-06-18 21:13 - 2019-12-07 04:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-06-18 21:10 - 2019-12-07 04:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-06-18 21:10 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-06-18 21:10 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-06-18 21:10 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2021-06-18 21:10 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-06-18 21:10 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-06-18 21:10 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-06-18 21:10 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-06-18 21:10 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-06-18 21:10 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-06-18 21:10 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-06-18 21:10 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-06-18 21:10 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-06-18 18:26 - 2020-12-22 23:01 - 000000894 _____ C:\Users\Public\Desktop\Battlestate Games Launcher.lnk
2021-06-18 18:26 - 2020-12-22 23:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlestate Games
2021-06-17 16:07 - 2019-10-29 16:19 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-06-17 16:05 - 2019-10-29 16:19 - 132447432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-06-16 18:54 - 2019-10-25 18:47 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-06-10 07:34 - 2021-04-28 12:23 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-06-08 05:10 - 2020-09-23 09:43 - 000151616 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdfendr.sys

==================== Files in the root of some directories ========

2020-11-27 09:43 - 2021-06-20 11:27 - 001065984 _____ () C:\Users\javau\AppData\Local\file__0.localstorage
2020-11-28 18:56 - 2021-07-02 04:45 - 000007593 _____ () C:\Users\javau\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Will post additional log separately.
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-07-2021
Ran by javau (07-07-2021 10:11:07)
Running from C:\Users\javau\OneDrive\Desktop
Windows 10 Home Version 21H1 19043.1052 (X64) (2020-11-05 05:38:10)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1516065185-2354279922-2247536414-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1516065185-2354279922-2247536414-503 - Limited - Disabled)
Guest (S-1-5-21-1516065185-2354279922-2247536414-501 - Limited - Disabled)
javau (S-1-5-21-1516065185-2354279922-2247536414-1001 - Administrator - Enabled) => C:\Users\javau
WDAGUtilityAccount (S-1-5-21-1516065185-2354279922-2247536414-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: McAfee Firewall (Enabled) {E2A40FF5-9AB1-3894-DE05-F89EB212F22D}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 21.005.20048 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{66AFB595-BC05-2913-7696-6D58F9B733E1}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 2.17.25.506 - Advanced Micro Devices, Inc.)
AMD PRO Control Center (HKLM-x32\...\{BDFBDA0C-2525-4EF1-85F4-78CC66D4F878}) (Version: 1.0.0.833 - Advanced Micro Devices, Inc.)
AMD Ryzen Master (HKLM\...\AMD Ryzen Master) (Version: 2.6.0.1702 - Advanced Micro Devices, Inc.)
AMD Ryzen Master SDK (HKLM\...\{DBD50508-5F75-416B-995D-C42433A00944}) (Version: 2.7.0.1725 - Advanced Micro Devices, Inc.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 21.6.1 - Advanced Micro Devices, Inc.)
AMD StoreMI (HKLM\...\AMD_StoreMI) (Version: 2.1.0.159 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{9bbdaa84-1315-4bcf-ac55-57449b4228f1}) (Version: 2.17.25.506 - Advanced Micro Devices, Inc.) Hidden
APP Shop v1.0.46 (HKLM-x32\...\{90242E9B-BC60-46E3-8EE7-8E953F702280}_is1) (Version: 1.0.46 - ASRock Inc.)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.26.1 - Asmedia Technology)
ASRRGBLED v1.0.60 (HKLM-x32\...\ASRock RGB LED_is1) (Version: 1.0.60 - ASRock Inc.)
ASUS App Box (HKLM-x32\...\{F0CE6060-50B1-401E-8357-B6E24DB98D21}) (Version: 1.01.09 - ASUSTeK Computer Inc.)
ASUS DRAM_LIB (HKLM\...\{2F0D3D1A-1B75-4DFC-8C0E-C55C4EAB67F8}) (Version: 1.0.22 - ASUS COMPUTER INC.) Hidden
ASUS DRAM_LIB (HKLM-x32\...\{6bd55e2a-f475-4183-b862-1dd70c1ce699}) (Version: 1.0.22 - ASUS COMPUTER INC.) Hidden
ASUS GLCKIO2 Driver (HKLM-x32\...\{548dd834-70c5-4426-8065-fbeabdd2bb5d}) (Version: 1.0.10 - ASUSTeK Computer Inc.) Hidden
ASUS GLCKIO2 Driver (HKLM-x32\...\{5960FD0F-BB3B-49AF-B175-F77DC91E995A}) (Version: 1.0.10 - ASUSTeK Computer Inc.) Hidden
ASUS Manager - Ai Booting (HKLM-x32\...\{2DCE446C-D090-4458-8782-8F16DF94351E}) (Version: 2.01.18 - ASUSTeK Computer Inc.)
ASUS Manager - Backup & Recovery (HKLM-x32\...\{34D67DE5-2ECF-4E6B-A243-2C16E2792787}) (Version: 2.01.18 - ASUSTeK Computer Inc.)
ASUS Manager - PC Cleanup (HKLM-x32\...\{E22A19AE-7DDB-4959-B1DB-A0996294352A}) (Version: 2.01.20 - ASUSTeK Computer Inc.)
ASUS Manager - Power Manager (HKLM-x32\...\{DD248BEE-E925-4720-A775-9A42276BB6EA}) (Version: 2.02.09 - ASUSTeK Computer Inc.)
ASUS Manager - SyncUp (HKLM-x32\...\{C2294792-457D-4DF7-9486-B630754C73D0}) (Version: 2.00.13 - ASUSTeK Computer Inc.)
ASUS Manager - Update (HKLM-x32\...\{675BBE8A-0ED3-4048-8723-BA51EAB8E1A8}) (Version: 2.05.05 - ASUSTeK Computer Inc.)
ASUS Manager (HKLM-x32\...\{F5E5AD85-4A90-4604-A887-464D3818D8FD}) (Version: 2.12.00 - ASUSTeK Computer Inc.)
A-Tuning v3.0.378 (HKLM-x32\...\A-Tuning_is1) (Version: 3.0.378 - ASRock Inc.)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.95 - ICEpower a/s)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlestate Games Launcher 12.8.3.1445 (HKLM-x32\...\{B0FDA062-7581-4D67-B085-C4E7C358037F}_is1) (Version: 12.8.3.1445 - Battlestate Games)
Branding64 (HKLM\...\{C871FC62-0186-40ED-BAEA-7C65BE367755}) (Version: 1.00.0006 - Advanced Micro Devices, Inc.) Hidden
Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
CleanUp! (HKLM-x32\...\CleanUp!) (Version: - )
Cooler Master Portal Settings software (HKLM-x32\...\{1A3E3EA7-5A7C-4292-8A13-B0DE1BF49E13}_COOLER_MASTER_PORTAL) (Version: 1.01 - Cooler Master)
CPUID CPU-Z 1.94 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.94 - CPUID, Inc.)
Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.2.5 - ASUSTek COMPUTER INC.)
Discord (HKU\S-1-5-21-1516065185-2354279922-2247536414-1001\...\Discord) (Version: 1.0.9002 - Discord Inc.)
Driver Easy 5.6.15 (HKLM\...\DriverEasy_is1) (Version: 5.6.15 - Easeware)
ENE RGB HAL (HKLM\...\{2914DF72-932B-4DF2-9696-C2821EDA1CA9}) (Version: 1.00.09 - Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32\...\{546469ee-3f9d-4fe4-bf1c-893f79cf7327}) (Version: 1.00.09 - Ene Tech.) Hidden
ENE_DRAM_RGB_AIO (HKLM\...\{1745D314-9077-46C9-8562-1C62BAE189B7}) (Version: 1.0.2.2 - Ene Tech.) Hidden
ENE_DRAM_RGB_AIO (HKLM-x32\...\{c0cc7253-fa06-46c2-9ceb-f8641408262f}) (Version: 1.0.2.2 - Ene Tech.) Hidden
ENE_EHD_HAL (HKLM\...\{F56EC5A0-3A93-492E-882A-E036F5897CC7}) (Version: 1.00.04 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_HAL (HKLM-x32\...\{cc33eebd-777b-4177-8cd7-6ab9fd06ceed}) (Version: 1.00.04 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.8.13 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{54d3d2b5-db16-446d-b6dd-f4964b166b3b}) (Version: 1.0.8.13 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_SSS_HAL (HKLM\...\{CF703694-01C6-4062-B797-84DB215662BC}) (Version: 1.00.00 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_SSS_HAL (HKLM-x32\...\{b00e47a4-d642-402c-a060-8d959a0537db}) (Version: 1.00.00 - ENE TECHNOLOGY INC.) Hidden
ENE_MousePad_HAL (HKLM\...\{9E97178A-ADB8-4778-BE60-7E28E2A72721}) (Version: 1.0.2.0 - ENE TECHNOLOGY INC.) Hidden
ENE_MousePad_HAL (HKLM-x32\...\{c2c794a4-7986-4c45-884d-d4ca43b88df9}) (Version: 1.0.2.0 - ENE TECHNOLOGY INC.) Hidden
ENE_X-JMI_HAL (HKLM\...\{2B8E611F-0B51-4FAC-87BB-AF50D82E7DDA}) (Version: 1.0.5.1 - ENE Tech) Hidden
ENE_X-JMI_HAL (HKLM-x32\...\{50ec3a07-291b-463e-be86-487eb8cbb71c}) (Version: 1.0.5.1 - ENE Tech) Hidden
Escape from Tarkov (HKLM-x32\...\EscapeFromTarkov) (Version: 0.12.11.1.13124 - Battlestate Games)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 91.0.4472.124 - Google LLC)
Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.)
HWiNFO64 Version 6.34 (HKLM\...\HWiNFO64_is1) (Version: 6.34 - Martin Malik - REALiX)
Intel(R) Chipset Device Software (HKLM-x32\...\{c6cff78a-cccb-49d5-be68-ae0ec5f0d48a}) (Version: 10.1.1.8 - Intel(R) Corporation) Hidden
Intel® Security Assist (HKLM-x32\...\{B294CE94-FE0F-4427-910C-180AF9FCFED1}) (Version: 1.0.1.620 - Intel Corporation)
Logitech Unifying Software 2.50 (HKLM\...\Logitech Unifying) (Version: 2.50.25 - Logitech)
Macrium Reflect Free Edition (HKLM\...\{C8B6069E-2459-4450-A320-440710F591F5}) (Version: 7.3.5925 - Paramount Software (UK) Ltd.) Hidden
Macrium Reflect Free Edition (HKLM\...\MacriumReflect) (Version: 7.3 - Paramount Software (UK) Ltd.)
Malwarebytes version 4.4.2.123 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.2.123 - Malwarebytes)
McAfee Safe Connect (HKLM-x32\...\{79038208-1705-488c-92f6-e010f8149076}) (Version: 2.12 - McAfee, LLC.)
McAfee Safe Connect (HKLM-x32\...\{8926AF73-2D1C-4FD8-902E-F7665CBF807C}) (Version: 2.12 - McAfee, LLC.) Hidden
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.2254.1 - McAfee, LLC)
Microsoft Access database engine 2016 (English) (HKLM\...\{90160000-00D1-0409-1000-0000000FF1CE}) (Version: 16.0.4519.1000 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 91.0.864.64 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 91.0.864.64 - Microsoft Corporation)
Microsoft OneDrive (HKLM-x32\...\OneDriveSetup.exe) (Version: 21.109.0530.0001 - Microsoft Corporation)
Microsoft SQL Server 2014 Express LocalDB (HKLM\...\{BAF67399-85CD-4555-9B49-1F80EB921C35}) (Version: 12.3.6024.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{E5A95BC5-81DF-4F0C-B910-B59DD012F037}) (Version: 2.81.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29913 (HKLM-x32\...\{03d1453c-7d5c-479c-afea-8482f406e036}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2019 (HKLM-x32\...\{1edcd8d2-905a-4e93-bfdf-92ed5601528a}) (Version: 16.0.28801 - Microsoft Corporation)
MSI SDK (HKLM-x32\...\{EE7D557C-3AE7-4348-8DCA-3A89790D0002}}_is1) (Version: 2.2021.0526.01 - MSI)
NVIDIA 3D Vision Driver 341.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 341.74 - NVIDIA Corporation)
NVIDIA Graphics Driver 341.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.74 - NVIDIA Corporation)
NVIDIA Update 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
OnScreen Control (HKLM-x32\...\{E5C1B339-0E4E-49A5-859E-5E1DE1938706}) (Version: 6.88 - LG Electronics Inc)
Paradox Launcher v2 (HKLM\...\{F0072197-FCF6-41BF-9D38-832B145922DC}) (Version: 2.0.0.0 - Paradox Interactive)
PatchCleaner (HKLM-x32\...\{727DA176-50BB-452C-8DB5-96EE0A573ED4}) (Version: 1.4.20 - HomeDev)
Patriot Viper M2 SSD RGB (HKLM\...\{8B4C0A3D-C135-4E1F-98D8-3926494B4D61}) (Version: 1.0.6.2 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{1122cfaf-aa52-4ba0-af2e-1e252b647b5b}) (Version: 1.0.6.2 - Patriot Memory)
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 2.0.1.0 - Advanced Micro Devices, Inc.) Hidden
REALTEK Bluetooth Filter Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AD}) (Version: 1.4.887.170424 - REALTEK Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.35.510.2019 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8730.1 - Realtek Semiconductor Corp.)
Realtek PCI-E Wireless LAN Driver (HKLM-x32\...\InstallShield_{70714FB7-4084-4202-A599-2D5935DECB67}) (Version: Drv_3.00.0014 - REALTEK Semiconductor Corp.)
RyzenMasterSDK (HKLM\...\{22DFF94E-1F6F-463F-9F14-425610714166}) (Version: 1.2.3.5 - Advanced Micro Devices, Inc.) Hidden
Silent Hunter 5 (HKLM-x32\...\Uplay Install 3) (Version: - Ubisoft)
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TechPowerUp GPU-Z (HKLM-x32\...\{8B0F211E-5846-4FB2-B0B9-4EB31546FDF9}}_is1) (Version: - TechPowerUp)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 117.0.10324 - Ubisoft)
UnCleaner (HKLM\...\UnCleaner) (Version: 1.7 - Josh Cell Softwares Corporation)
War Thunder Launcher 1.0.3.260 (HKU\S-1-5-21-1516065185-2354279922-2247536414-1001\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Network)
Wargaming.net Game Center (HKU\S-1-5-21-1516065185-2354279922-2247536414-1001\...\Wargaming.net Game Center) (Version: 21.4.0.5527 - Wargaming.net)
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.2.9.564 - ASUS Cloud Corporation)
WinDirStat 1.1.2 (HKU\S-1-5-21-1516065185-2354279922-2247536414-1001\...\WinDirStat) (Version: - )
WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
World of Tanks NA (HKU\S-1-5-21-1516065185-2354279922-2247536414-1001\...\WOT.NA.PRODUCTION) (Version: - Wargaming.net)

Packages:
=========
Dell Document Hub -> C:\Program Files\WindowsApps\DellPrinter.DellDocumentHub_1.7.0.6_x64__nmdn7k89bxsn6 [2021-07-02] (DELL GLOBAL B.V. (SINGAPORE BRANCH))
Hulu -> C:\Program Files\WindowsApps\HULULLC.HULUPLUS_3.1.0.0_neutral__fphbd361v8tya [2021-07-02] (Hulu.)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12113.17.53090.0_x64__nzyj5cx40ttqa [2021-07-02] (Apple Inc.) [Startup Task]
Lively Wallpaper -> C:\Program Files\WindowsApps\12030rocksdanister.LivelyWallpaper_1.0.50.0_x86__97hta09mmv6hy [2021-07-02] (rocksdanister) [Startup Task]
Microsoft Midi gm.dls -> C:\Program Files\WindowsApps\Microsoft.Midi.GmDls_1.0.1.0_neutral__8wekyb3d8bbwe [2021-07-02] (Microsoft Platform Extensions)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2021-07-02] (Netflix, Inc.)
PDF Document Scanner -> C:\Program Files\WindowsApps\61083ApeApps.PDFDocumentScanner_4.34.0.0_x64__d2yynfvsn01f4 [2021-07-02] (Ape Apps)
Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-07-02] (Microsoft Corporation)
Reader Notification Client -> C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2021-07-02] (Adobe Systems Incorporated)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.2.175.0_x64__dt26b99r8h8gj [2021-07-02] (Realtek Semiconductor Corp)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.162.583.0_x86__zpdnekdrzrea0 [2021-07-02] (Spotify AB) [Startup Task]
Xbox One SmartGlass -> C:\Program Files\WindowsApps\Microsoft.XboxOneSmartGlass_2.2.1702.2004_x64__8wekyb3d8bbwe [2021-07-02] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{0215A4C0-5431-4FD0-9B06-46589B5C4939}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{048ED0E0-12CF-4C0F-9FFA-947C2FBE8C8E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{071339A1-1946-44B2-B63E-50459B15DB86}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2021\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{08A60FF7-BB37-44F4-9759-0ADA6C7B9CC9}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{0B38CACA-3D3C-48EA-BEB5-7D95F4F6EE15}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{0C3393F8-94F5-4B79-8C01-49A2D0CC0FE9}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{0D555CE0-304A-47A6-858B-B145209A3982}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{12545889-6D32-4424-9967-1E1D7BD1F809}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{13009989-EFB5-48C9-8BD2-943E0392BD71}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2021\Bin\RxAppCtrl.Ocx => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{14679E3B-C952-4998-8E13-4B1286E6DD99}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{1481B385-759A-4B00-9257-E96357563999}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{162EF0A1-5A33-46F2-ACCF-CA388B084A09}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{1D625598-C876-4C51-8EF5-F9D8F96F62AA}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{1D6DFD6A-9E16-435A-9327-6FFEC6BA372F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{1E5724EA-3423-4BD3-ABD6-46E650D2DC66}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{1E8A29BA-827D-4031-A4A3-AE7999B402F6}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{1EA072EE-57FD-495E-889C-8243C3BDBDBC}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{1FD7F53F-7ED5-439C-9A77-A3821CD09E98}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{20E47D5B-529A-45BD-8E77-BF1A3064A008}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{2709544A-5B24-4F9F-A5DA-CEC7297D3A4E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{2BCA857B-A18B-4AFA-B183-CC0E49C12058}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{2C74F89E-7421-46B4-BA54-F86F1BD9F237}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{2C7D1157-7D50-4A88-9777-5EBBA3189AB8}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{3497C2EC-5684-4B21-AF74-F6760E0221DC}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{38C8B14E-7879-4DA9-8C3F-8CAAC359293A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{3FC94EB5-AEBD-4f3f-A2A4-B6CE57113C01}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2021\Bin\RxAppDocView.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{3FCEB42C-9B98-486A-BED7-FD7F3ADB7291}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{40770568-0D5E-49D4-BE47-BC47A4F0B0A4}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{44A52280-AE56-490D-890C-89FB7279ED6B}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{46C56738-39C6-4240-8B9B-008CCD769A84}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{47179DDE-10AC-4737-97C9-8CE5379343EA}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{475C7B4A-6964-4F9E-9708-05A16EAC31D0}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{48270F9E-CCF6-4C79-B6FF-267C960E6425}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{48FEFCD7-5D7C-4E4A-9F11-60E69A31D4B1}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{49998808-648A-4A9C-A7A5-B1672775D9AB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{4A756F5F-CBA4-428B-B17F-AF80C0C8502D}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{4B40437B-8972-4444-BBE3-1588FF55F203}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{4BD03680-3C0F-4501-AFF7-3D008586917F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{4C80573A-9150-11d2-B772-0060B0F159EF}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2021\Bin\RxAppDocView.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{4E6F2E83-E7F0-4333-9772-875EB733C820}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2021\Bin\RxTest.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{5544903C-2CCC-487C-91BB-F310B72A8E9B}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{59A224A2-BEF8-4C89-96E0-83A5411ABB6C}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{622F6193-E4DD-46E6-BC66-2ED88E9FD28D}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{6451051B-AD22-4C6A-ACCE-013A0E1DDBC3}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{64B99FDB-1D85-447F-98C7-569DBDA723DB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{6BCE6F6E-C050-4F39-BD98-E2743949F724}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{6F56D7C9-18DD-4C15-9FA8-C54E3610EC40}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{6FDE7A70-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2021\Bin\DtBridge.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{6FDE7A71-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2021\Bin\DtBridge.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{6FDE7A72-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2021\Bin\DtBridge.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{6FDE7A73-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2021\Bin\DtBridge.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{6FDE7A74-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2021\Bin\DtBridge.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{6FDE7A77-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2021\Bin\DtCp.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{70DBCAE8-8C2B-450C-9E1D-43E4686C6512}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{713C0E8A-5AE8-4695-B442-5ED6C4FE5C42}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{7293E009-3015-4AD3-96EC-D42C36B5FCE3}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{72EFC580-D085-4B81-8C55-26A79E445338}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{750AEC19-2E4C-4ED9-9B9F-F9CAFCD060F3}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{794199C5-827C-41C8-8CB2-3A1EA056AF5E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{798391FE-4AF2-4851-9DDA-1F0D70C02A9E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{7BA16B3F-1AB3-4BD7-B959-52C4B8504EE9}\InprocServer32 -> AcInetUI.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{7C239DAB-BC87-45F3-B7B1-FCC1541A235B}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{81D07C3D-0350-11D3-B7C2-0060B0EC020B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2021\Bin\RxAppCtrl.Ocx => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{834CE679-2E47-49DE-9E41-FEC87E9192EB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{846217D0-8954-11D2-8DCD-0060B0C32531}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2021\Bin\UCxTextBtn.Ocx => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{846217D1-8954-11D2-8DCD-0060B0C32531}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2021\Bin\UCxTextBtn.Ocx => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{849AFB5B-D6C9-4924-A712-F7118FF9611F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{85452F88-5071-492E-B850-2E3C586DCBD8}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{87F5CF8F-A06D-498F-A05F-E520E6B570DB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{89F0FC31-3B1D-494B-A75B-6BD4FA527B8A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{8AA16DFC-DFC6-4B51-8FA2-A5D812BE33BF}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2021\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{8ED07FEF-E1B0-4CC3-B2BA-D354828AB952}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{988F4102-E6E3-4282-ACAC-55270827F2A8}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{9906CDFC-DB2C-4126-9422-13139B148495}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{9A21C6C5-27FC-4442-8590-575E7AFD73BB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{9ECF83FB-23C5-43B6-83DE-93CFBDD74D4A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{A58F47CC-FF65-4152-B0B1-666C643A5BFC}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{A6A3D586-44CF-44C2-A92C-620BB713B4F2}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{ABBE3F83-D585-4A50-9B69-198B0F566F2E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{AC5CECFA-F03A-41D2-A89C-704C44935941}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{B1560245-190E-4BBD-81DF-9B642D0E5325}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{B2A579E0-A797-40B1-8AEE-A8F6404719F8}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{B47196BC-D4AB-41BB-A771-543D67CFC9F5}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{B53CEF4B-1A13-49DE-BBC5-A7100FB2F38C}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{B5EE2B68-9A23-4BCD-BB77-FEA6DFB24DD6}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{B6B5DC40-96E3-11d2-B774-0060B0F159EF}\localserver32 -> C:\Program Files\Autodesk\Inventor 2021\Bin\Inventor.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{B80687F9-FA4C-4735-9DC4-E5715F2BC698}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{BAE5802A-CF21-4F9C-AE04-D98F4036AC31}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{BBF6A206-CB04-479D-96AE-349E1E83319A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{BC71DEA1-D6FB-48B8-AB06-D151C81BBCDD}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{BF224DC3-B602-4EEE-BFE9-9E4E0AED6837}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{BF4CC07E-E9BB-40D6-873F-855B211033B9}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{C061C82C-D041-4214-BB07-B608107CEFCB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{C2D4ACCC-A3D1-4A0A-AD59-0DD8BA3D5EE1}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{C343ED84-A129-11d3-B799-0060B0F159EF}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2021\Bin\RxApprenticeServer.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{C8C18F89-794D-466B-8B97-95634D9890EF}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{C8EC7647-1E79-4F13-81D7-2EED803D0D22}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{C92F8F8C-8B2C-11d4-B872-0060B0EC020B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2021\Bin\DtBridge.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{CC23CA32-9892-4FBA-A108-FE31CA0F35A6}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{CD865713-70D6-4E15-BB7B-9B99AD9DEB85}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{D56F5AB3-9C4D-4F1A-A851-A671D9FE8C22}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{D66873EA-AAE5-41CC-8DD2-8CE3228E9F89}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{D86B6C47-11F2-4D95-B635-EA575F0892FC}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{DA1F437C-9BD9-11d4-B87C-0060B0EC020B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2021\Bin\DtBridge.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{DB207560-8449-4FAF-BDC2-61676EB012D4}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{DB5D476B-3FF4-4E9D-A606-1E2B473BE571}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2021\Bin\AcInetUI.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{DE74F5AD-DA2F-429F-BAF9-850A2808D585}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{DF6525C2-6358-4B07-813D-708120C5FE1A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{E177A457-9EAA-43C3-A3CE-84874A28F6CA}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{E1C85E9F-60B2-4007-80C3-2C5E09474C3B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2021\Bin\RxInventorUtilities.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{E29F6C45-6927-4508-8F3F-34105FD3FC5F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{E4222C78-3670-4BB1-9AD4-7D8F3E581F2D}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2021\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{E70DE962-842A-4488-9481-1D0FD72A020F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{E9C07CEC-7B82-49E4-BBA2-7533B88E9D64}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{EA34A0C0-5CE7-4701-A6FA-117D25CD5EBB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{EF01D98A-747B-4522-AD70-991B90855DBF}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{F196F03F-651A-43AF-BE34-D11942F24445}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{F2D4F4E5-EEA1-46FF-A83B-A270C92DAE4B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2021\Bin\DTInterop.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{F2DB0EE3-7137-4CB0-8349-483C4FF2143A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{F40E2FF0-4D77-40B2-9A44-A3AEECCE8EFF}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{F4363F9D-3BBA-46AC-ABFE-F27977981DA8}\localserver32 -> "C:\Program Files\Autodesk\Inventor 2021\Bin\ApprenticeServerHost.exe" => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{F5522F0C-962A-48AC-9992-E81B07628F1F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{F61064CC-DBFB-47ee-9BC8-CA5A1CBDF0DA}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2021\Bin\InvResc.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{F78DCF7C-043D-45FC-9D21-676FC307BA3F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{F868EAEC-1B73-4F5E-BA73-90EBA94E75BE}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{FA97F7A7-FD19-4D55-ABF2-CFEFFF777426}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{FB469644-3F14-4403-ACCA-6B13486FF7BD}\localserver32 -> C:\Program Files\Autodesk\Inventor 2021\Bin\InvTXTStack.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{FD51ED8A-D518-4554-B236-B6E9D234FD03}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{FD703B01-4362-423E-9BDB-91BDCB16C1C9}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2021\Bin\DTInterop.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{FE054BB2-AF94-40AC-88AA-2F59F7018B1D}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{FE317223-8EDE-4684-B424-E48B9EA90220}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-1516065185-2354279922-2247536414-1001_Classes\CLSID\{FE718E8F-C3AA-4F30-9103-432450CF1DA1}\InprocServer32 -> axdb.dll => No File
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\21.109.0530.0001\amd64\FileSyncShell64.dll [2021-06-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\21.109.0530.0001\amd64\FileSyncShell64.dll [2021-06-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\21.109.0530.0001\amd64\FileSyncShell64.dll [2021-06-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\21.109.0530.0001\amd64\FileSyncShell64.dll [2021-06-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\21.109.0530.0001\amd64\FileSyncShell64.dll [2021-06-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\21.109.0530.0001\amd64\FileSyncShell64.dll [2021-06-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\21.109.0530.0001\amd64\FileSyncShell64.dll [2021-06-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.2.9.564\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.2.9.564\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.2.9.564\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\21.109.0530.0001\amd64\FileSyncShell64.dll [2021-06-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\21.109.0530.0001\amd64\FileSyncShell64.dll [2021-06-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\21.109.0530.0001\amd64\FileSyncShell64.dll [2021-06-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\21.109.0530.0001\amd64\FileSyncShell64.dll [2021-06-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\21.109.0530.0001\amd64\FileSyncShell64.dll [2021-06-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\21.109.0530.0001\amd64\FileSyncShell64.dll [2021-06-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\21.109.0530.0001\amd64\FileSyncShell64.dll [2021-06-26] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\21.109.0530.0001\amd64\FileSyncShell64.dll [2021-06-26] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ReflectShellExt] -> {DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => C:\Program Files\Macrium\Reflect\RContextMenu.dll [2019-09-20] (Paramount Software UK Ltd -> Paramount Software UK Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [ReflectShellExt] -> {DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => C:\Program Files\Macrium\Reflect\RContextMenu.dll [2019-09-20] (Paramount Software UK Ltd -> Paramount Software UK Ltd)
ContextMenuHandlers3: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2326} => C:\Program Files (x86)\Common Files\AWS\2.2.9.564\ASUSWSContextMenu.dll [2016-06-21] (ASUS Cloud Corporation -> ASUS Cloud Corporation)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-12-27] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\21.109.0530.0001\amd64\FileSyncShell64.dll [2021-06-26] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\21.109.0530.0001\amd64\FileSyncShell64.dll [2021-06-26] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\atiacm64.dll [2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_2cec8fd58a80e6ea\igfxDTCM.dll [2020-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2015-06-29] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-12-27] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6_S-1-5-21-1516065185-2354279922-2247536414-1001: [InventorMenu] -> {6FDE7A70-351B-11d6-988B-0010B57A8BB7} => C:\Program Files\Autodesk\Inventor 2021\Bin\DtBridge.dll -> No File
 
==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\javau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Hulu.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=epffkfffophpagfbbklffindaiconkmc

==================== Loaded Modules (Whitelisted) =============

2017-10-02 16:43 - 2014-01-22 13:35 - 000684032 _____ () [File not signed] C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\Server\PhoneCtrlAPI.dll
2017-10-02 16:43 - 2014-01-22 13:36 - 000753664 _____ () [File not signed] C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\Server\WiMoveHelp.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000031232 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\A4.Foundation\9c6499cdab6cfc19219961af97f5c596\A4.Foundation.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000022528 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Actions5dc83b46#\86dc2ffae918acfd84bf13fd46bd48e6\AEM.Actions.CCAA.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.0a1309f7#\099718f72e686164018754ad5779715a\AEM.Plugin.EEU.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.2b6a6775#\06c3a84cec54b455cbecbd49cc391436\AEM.Plugin.Hotkeys.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.4adf1574#\c59a2805a01c56bbecfa2915a0b16955\AEM.Plugin.Audio.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000281600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.5d945b6b#\a3ef5909b220266feb0aacdca9c1d3de\AEM.Plugin.Source.Kit.Server.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000014848 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.674d2b8a#\bff7420ff84f95783bebbaecd88f3405\AEM.Plugin.WinMessages.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000012800 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.88aba5d2#\04f0eb412ca81be73ff607e02b228908\AEM.Plugin.REG.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.GD.Shared\96ca8586ffdd64315e1c48d02869765a\AEM.Plugin.GD.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Server.Shared\d0cffbddb01f346d4f5dc220a0f0e6b4\AEM.Server.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000267776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Server\7b4fcdabd87e13afa6e482dab2fc557a\AEM.Server.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000055808 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\APM.Foundation\bee1879d340277628174881cebefb5ca\APM.Foundation.ni.dll
2021-06-30 06:26 - 2021-06-30 06:26 - 000122880 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ATICCCom\5a9cdbc36f758e70778b82428a3e0ad8\ATICCCom.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000204288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CCC.Implementation\a653cd337d8eee9868e8a62e407aee20\CCC.Implementation.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000128000 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3399d0ec#\c0e86b4c6a9163bf7d96977326382ffe\CLI.Aspect.CustomFormats.Graphics.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000026112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.37d3d968#\f0ed26a23393221a393d1352a7aef9fb\CLI.Aspect.AMDHome.Graphics.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000045568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.382a3def#\52fcfdca4d93e69e0b7197b89aad1a07\CLI.Aspect.AMDOverDrive.Platform.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000107008 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3a6f1658#\0e5d01da4247db7010af7863bf26acfd\CLI.Aspect.TransCode.Graphics.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000209920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4542c692#\0b3791b9b248c71dbd5c9f5b1275db56\CLI.Aspect.DeviceCRT.Graphics.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000074752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4bbb0755#\3875d9d64f74bc6f1ba11273ca995d39\CLI.Aspect.TransCode.Graphics.Dashboard.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000037888 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.52c6dbaa#\a2f98abacef1b2b4e75353f4ff71c306\CLI.Aspect.FPS.Graphics.Shared.ni.dll
2021-06-30 06:26 - 2021-06-30 06:26 - 000263168 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.73911eb5#\ac32f7068aa3e14c0be90edafc3d048f\CLI.Aspect.WirelessDisplay.Graphics.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000365056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.7ec2db45#\f857c2dc97b40d9a6ae40ecf4e136b72\CLI.Aspect.DeviceDFP.Graphics.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000064000 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8350f5c6#\815d8b307ab14274be7387fb262d4f08\CLI.Aspect.UpdateNotification.Graphics.Runtime.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000678912 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.846fa813#\9252994d7a0c4ba672b6c137b09d4a13\CLI.Aspect.MMVideo.Graphics.Dashboard.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000745472 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8d333b6b#\a4fd300ad73447f1cebe146b4ab644ce\CLI.Aspect.Radeon3D.Graphics.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000449536 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8e996306#\3152a1d704e3d7b8a824f98f88bcaec0\CLI.Aspect.CrossDisplay.Graphics.Dashboard.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000089088 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.9cd1e9e7#\cd45aa0ea140ecd4b6a5c7a9447da15d\CLI.Aspect.FPS.Graphics.Dashboard.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000158208 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a0ae52bc#\7d67f7aead9851b4b71d3c7739d70d5d\CLI.Aspect.DeviceLCD.Graphics.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000057856 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a6cd7fff#\652f5b4bc0bf0e5c514bd2113e79e92c\CLI.Aspect.FPS.Graphics.Runtime.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000082944 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a765109e#\5025257a2ce0e75ca5cfca9fb2c8aa86\CLI.Aspect.UpdateNotification.Graphics.Dashboard.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000462336 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.acb9d930#\ce4560b0909e93e81758eb923abf35d8\CLI.Aspect.DeviceProperty.Graphics.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000086528 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ae5e117c#\106ddd3a0fcde53d5038f0aa5a245b60\CLI.Aspect.DisplaysColour2.Graphics.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000067072 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.b0a7c1fb#\a14aaecdc77061e5c63e6ec5e85a0560\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000340992 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c7aaa0f8#\9a4f2d4cf466af2a66566c67a5c6cf37\CLI.Aspect.OverDrive5.Graphics.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000017920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c854b457#\ba1e30272142d59c88acde6d9ade7943\CLI.Aspect.HotkeysHandling.Graphics.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000276480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e8635fc7#\95aa72e9cae919074f1967420dd8a8c3\CLI.Aspect.InfoCentre.Graphics.Dashboard.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 003312640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e9fd7406#\a8d56b14d00e002f5d7a60dd26e07427\CLI.Aspect.Radeon3D.Graphics.Dashboard.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000240640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.eda8935e#\5e5d341a93073b31cc4ffcf215ca6d81\CLI.Aspect.MMVideo.Graphics.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000047616 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ef3eaa4d#\fd9f7efaedee1e0ed586877038f276c2\CLI.Aspect.TransCode.Graphics.Runtime.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000050688 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.f480a2f3#\191af58f9f1ebe7c8186cb33967b859d\CLI.Aspect.UpdateNotification.Graphics.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000051200 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Runtime\21a5bfebbbae9a459daf70097debb7fc\CLI.Caste.A4.Runtime.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Shared\70b9a7da791cd18f0497ec20be5fd1b6\CLI.Caste.A4.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000027136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Af820fedc#\187300e8743816ac0499f6e1b814616e\CLI.Caste.A4.Dashboard.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F24de14fe#\d0b836608ecea451f90f4bb213074fd2\CLI.Caste.Fuel.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000311296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F36b07a2b#\51e3756a38f8cb461f0e023f70b6708d\CLI.Caste.Fuel.Runtime.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000027136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Ff3085433#\58bcaab8ba4371dc61ae90eedd5420fd\CLI.Caste.Fuel.Dashboard.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000037376 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60338cc0#\05cac8fec036d31d8c9cc97b63b156ec\CLI.Caste.Graphics.Runtime.Shared.Private.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 001555456 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gd9d9b43b#\b7e436f9d618c9168bf8fd00355d589e\CLI.Caste.Graphics.Dashboard.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000587776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gee7d2dbc#\31ac42113d4f81465e702d6f9e801364\CLI.Caste.Graphics.Dashboard.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H18c99613#\b270487bac5f238f5ec9fd598e5ec87f\CLI.Caste.HydraVision.Runtime.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H92ba4e46#\48f1a950bca5198281504ef2a7f08cd1\CLI.Caste.HydraVision.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Hbb906c0b#\bea664a3553332646eb23dda1d6906cb\CLI.Caste.HydraVision.Dashboard.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pac40511b#\fed98829c37acf2d3a15959e41bebecd\CLI.Caste.Platform.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000044032 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pdb36d56e#\1adcdf168349cd36ecca400081dbed0a\CLI.Caste.Platform.Runtime.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000024064 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pfeefa2b6#\61ce23a2a2bd6b6eb5c351aa6ba5ab02\CLI.Caste.Platform.Dashboard.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone1b4a8c97#\32a92b10422dff2f717204eb82ff9375\CLI.Component.Runtime.Shared.ni.dll
2021-06-30 06:26 - 2021-06-30 06:26 - 000901632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone26c9c557#\fa62c7552b254cc2dc5d36b7614bc47b\CLI.Component.Systemtray.ni.dll
2021-06-30 06:26 - 2021-06-30 06:26 - 000173568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone29e547cc#\adf4956af24e1319a358b68f85b246e5\CLI.Component.Dashboard.ProfileManager2.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000151040 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone59f353b4#\b5b4a6fda886764b520cba8eb90f5cb5\CLI.Component.Runtime.Shared.Private.ni.dll
2021-06-30 06:26 - 2021-06-30 06:26 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componeb4d0485c#\36ff5d39d81d72fa8c8973ac21ff267a\CLI.Component.Runtime.Extension.EEU.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 001609728 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componec89c3bec#\f1421f2952e88e6dd5b847b6929eec45\CLI.Component.Dashboard.Shared.Private.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000018432 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componef1fd67b2#\a42bf684f2c737997ad679800f4a34c3\CLI.Component.Client.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000085504 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componef4cf054f#\ef76bc49016ec8ee02d473480dd7d2d9\CLI.Component.Dashboard.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000089600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat3d5d3945#\ed02cf3c16c08b56cfdf324c7cd98b18\CLI.Foundation.Private.ni.dll
2021-06-30 06:26 - 2021-06-30 06:26 - 000061440 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat60cdf5df#\4b9a73b4e1874d2098776eb82bfd9a0d\CLI.Foundation.XManifest.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000091136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat619559bd#\d48fe583cc948c1893bcbf96281cf258\CLI.Foundation.CoreAudioAPI.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 001079296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundatd3771151#\d352f9758ec4226b9879384b7f3e1187\CLI.Foundation.Client.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000301568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundation\c89a13370d00c2d12ee1db5357b4368a\CLI.Foundation.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Foundation\2e6d14c4183363b2e8df4c5508a6af77\DEM.Foundation.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000115200 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0601\d8b094429f96bd0064a0fb70c0098def\DEM.Graphics.I0601.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics\8773b7754a9399e6a112ddb35a16adcc\DEM.Graphics.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000037376 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Fuel.Foundation\d0f5644482f55db35d75ee03f63ae106\Fuel.Foundation.ni.dll
2021-06-30 06:26 - 2021-06-30 06:26 - 000296960 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundat03490438#\2f1498860d227bf43058f1a5ee2643dd\LOG.Foundation.Implementation.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000150016 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundat5023f8e7#\94388b543f7dcfe973b7d51b27e1f245\LOG.Foundation.Private.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000087552 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundatcaafa75b#\481d12337e27d7a2398eb4828745cf7e\LOG.Foundation.Implementation.Private.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000132608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundation\10ffaeb728d6dd2385514d570bcb1767\LOG.Foundation.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MOM.Foundation\50e5800c9fc5f7c1d829115b2163a726\MOM.Foundation.ni.dll
2021-06-30 06:26 - 2021-06-30 06:26 - 000402944 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MOM.Implementation\c367cf4caa69e4c61b7ca965ca4441c6\MOM.Implementation.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000055296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\NEWAEM.Foundation\0512ed11eb01ff547e4ddc68ee2844a2\NEWAEM.Foundation.ni.dll
2021-04-15 07:01 - 2021-04-15 07:01 - 000575488 _____ (Advanced Micro Devices) [File not signed] C:\Program Files\AMD\CNext\CNext\Device.dll
2021-04-15 07:01 - 2021-04-15 07:01 - 000048640 _____ (Advanced Micro Devices) [File not signed] C:\Program Files\AMD\CNext\CNext\Platform.dll
2021-06-17 19:40 - 2021-06-17 19:40 - 001704960 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\WVR\OpenVR\bin\win64\driver_amdwvr.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000897024 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ADL.Foundation\26d58ca994b4b49bf269109c61f89ae2\ADL.Foundation.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000256000 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\APM.Server\ebb1c8963617d6a518855be3b15a08ea\APM.Server.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000298496 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.9b707b25#\b72fbfde3c5a857062dd2f947912c9ef\CLI.Aspect.DeviceProperty.Graphics.Runtime.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 001654272 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.aa59351a#\cfbcb74f060290d6a930e1b5e43c3016\CLI.Aspect.DeviceProperty.Graphics.Dashboard.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 006336512 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e6d9f3a8#\16068a3f20215d1b75b83ead34621172\CLI.Aspect.DeviceDFP.Graphics.Dashboard.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 008027648 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Combine0616f305#\7eaf929c1cd28b326c4899db927294b1\CLI.Combined.Graphics.Aspects1.Dashboard.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 001159680 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Combine7332395e#\9d3b860f73112f6326bf249f8dbd2e86\CLI.Combined.Graphics.Aspects2.Runtime.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000136704 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone168638d1#\d0372f1f133b87f1a90c0fa745c254bd\CLI.Component.Client.Shared.Private.ni.dll
2021-06-30 06:26 - 2021-06-30 06:26 - 000234496 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone6692ca50#\62f6774e6b551d82ced4022f571af710\CLI.Component.Runtime.ni.dll
2021-06-30 06:26 - 2021-06-30 06:26 - 000929280 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone6bf88b08#\39b80ac578531824a0c8da4a905bfa82\CLI.Component.Dashboard.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000013312 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0706\3dd486ce13be8742377717c75093da6b\DEM.Graphics.I0706.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000084480 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0709\1d3c8da2b571437b006bfc411e24a603\DEM.Graphics.I0709.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000012288 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0712\33eaecd1cd433dcfa6c1e5990fa77f1b\DEM.Graphics.I0712.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000018432 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0804\d97d3c62f9367c8e97c04302dcc0d6d2\DEM.Graphics.I0804.ni.dll
2021-06-30 06:26 - 2021-06-30 06:26 - 000010752 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0805\a290a498dc07619dc97ed8035aaa5e50\DEM.Graphics.I0805.ni.dll
2021-06-30 06:26 - 2021-06-30 06:26 - 000010752 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0812\7b12f3b0dca67497793a6b792009e1ce\DEM.Graphics.I0812.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000013312 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0906\d6c2ccbecd7da081990f3b3eca4fcb5a\DEM.Graphics.I0906.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000014336 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0912\443933d0ae61095862ecbb71e986a0e0\DEM.Graphics.I0912.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000035840 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I1010\d6a586698eee510c3774fbc31b5c31f8\DEM.Graphics.I1010.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 001139200 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Localizatio01dbc1c0#\a91b586a3fcb574c7f6ceeaf2c32ce09\Localization.Foundation.Private.ni.dll
2021-06-30 06:26 - 2021-06-30 06:26 - 000244736 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ResourceMan446ca0e5#\e268bbcd63eaa2ae33758c65db981824\ResourceManagement.Foundation.Implementation.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000023552 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ResourceManf163905a#\41cda9fa1ab933318cb8795040423aa9\ResourceManagement.Foundation.Private.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000091648 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ec8786e5#\b08ae4e23861875c408a428f8bae01cf\CLI.Aspect.AMDHome.Graphics.Dashboard.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 002845696 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60a7b4d1#\e544b1099aca68f22462b08d373ddc3e\CLI.Caste.Graphics.Shared.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 003268096 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G962aa464#\07bfb04a3d812a032529853f37608fd6\CLI.Caste.Graphics.Runtime.ni.dll
2015-04-22 08:59 - 2015-04-22 08:59 - 001489920 _____ (ASUS Cloud Corporation.) [File not signed] C:\Program Files (x86)\Common Files\AWS\2.2.9.564\ASUSWSShellExt64.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 000335360 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.W8090224c#\f4c093c4741075da99433000f36b584a\Microsoft.WindowsAPICodePack.ni.dll
2021-06-29 14:15 - 2021-06-29 14:15 - 002546688 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.Wfbf9373c#\2de6e751ecae03c4f693d3a4e50b0818\Microsoft.WindowsAPICodePack.Shell.ni.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000057856 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\audio\qtaudio_windows.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000039424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000414720 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000532992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 001441792 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 001189888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000134656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 006184448 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 006867456 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 000735232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Multimedia.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 000120832 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5MultimediaQuick.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 001104896 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 000325120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 003668480 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 000517120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 000051712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlWorkerScript.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 004228608 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 000171008 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 001085440 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 000480256 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5RemoteObjects.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 000205824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 000329728 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 000127488 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 000390656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 095598080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 005587968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000462848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000188928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 002878464 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000055808 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000262144 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtMultimedia\declarative_multimedia.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQml\qmlplugin.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000284160 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000333824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000136704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000090112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000313856 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000091648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll
==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\22465200.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\53512839.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\22465200.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\53512839.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-1516065185-2354279922-2247536414-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus17win10.msn.com/?pc=ASTE
HKU\S-1-5-21-1516065185-2354279922-2247536414-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus17win10.msn.com/?pc=ASTE

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-07-16 06:47 - 2021-06-30 12:21 - 000000895 _____ C:\WINDOWS\system32\drivers\etc\hosts
0.0.0.1 scinstallcheck.mcafee.com
0.0.0.1 mssplus.mcafee.com

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Razer\ChromaBroadcast\bin;C:\Program Files\Razer\ChromaBroadcast\bin;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\WindowsApps;;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\AMD\ATI.ACE\Core-Static;C:\Program Files\Microsoft SQL Server\120\Tools\Binn\
HKU\S-1-5-21-1516065185-2354279922-2247536414-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\asus.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AMD Crash Defender Service => 2
MSCONFIG\Services: AMD External Events Utility => 2
MSCONFIG\Services: AMD FUEL Service => 2
MSCONFIG\Services: asComSvc => 2
MSCONFIG\Services: Asus WebStorage Windows Service => 2
MSCONFIG\Services: BEService => 3
MSCONFIG\Services: cphs => 3
MSCONFIG\Services: cplspcon => 2
MSCONFIG\Services: EasyAntiCheat => 3
MSCONFIG\Services: ElevationService => 2
MSCONFIG\Services: GoogleChromeElevationService => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: igfxCUIService2.0.0.0 => 2
MSCONFIG\Services: Intel(R) Security Assist => 3
MSCONFIG\Services: isaHelperSvc => 2
MSCONFIG\Services: McComponentHostService => 3
MSCONFIG\Services: mccspsvc => 2
MSCONFIG\Services: MSI_Companion_Service => 2
MSCONFIG\Services: RtkAudioUniversalService => 2
MSCONFIG\Services: RtkBtManServ => 2
MSCONFIG\Services: SafeConnectService => 2
MSCONFIG\Services: Wondershare InstallAssist => 2
HKLM\...\StartupApproved\Run: => "IAStorIcon"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run32: => "WebStorage"
HKLM\...\StartupApproved\Run32: => "OnScreen Control"
HKU\S-1-5-21-1516065185-2354279922-2247536414-1001\...\StartupApproved\Run: => "Steam"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{1E3FBF05-6AF8-4DC0-AA17-4261DA2DEE71}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\World of Warships\WorldOfWarships.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{E732E2E2-5B5B-428A-8406-71F7FA744108}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\World of Warships\WorldOfWarships.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{FA094462-41D8-429C-9247-A67D37C402E9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings II\CK2game.exe => No File
FirewallRules: [{A9991894-73C7-42D5-91F4-5ACC6CC088F7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings II\CK2game.exe => No File
FirewallRules: [{E1FF1788-C626-407E-92FF-C73E8DD842A3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{F4590B68-AF8E-4E79-AA89-62060A052D4A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{0CB09E82-917B-43DB-B2D7-EC3A1B302567}] => (Block) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{C3394EE8-B625-4769-8CE0-74D009A68017}] => (Block) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [UDP Query User{D9E3521C-79A6-4758-A4A9-872F3C16EB16}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [TCP Query User{BFE449D4-4F9F-42C5-BAF3-1C412FEC765B}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [UDP Query User{2E01F0AD-74B1-4B49-9C26-394DFAE1A517}C:\users\javau\appdata\roaming\bittorrent web\btweb.exe] => (Block) C:\users\javau\appdata\roaming\bittorrent web\btweb.exe => No File
FirewallRules: [TCP Query User{2D2A566C-1F03-4A1A-8087-BD6DD5DB201F}C:\users\javau\appdata\roaming\bittorrent web\btweb.exe] => (Block) C:\users\javau\appdata\roaming\bittorrent web\btweb.exe => No File
FirewallRules: [{65B6F66D-E8C8-42EE-A6F4-DBABA82730D0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\WWIIONLINE\Settings.exe => No File
FirewallRules: [{35450CBA-FBD7-4E25-A398-3A84E1D6617C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\WWIIONLINE\Settings.exe => No File
FirewallRules: [{E7EE7C76-9DB5-4DD5-BB60-470502C950CE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\WWIIONLINE\WW2.exe => No File
FirewallRules: [{B6891D6A-EBA6-44F8-8E50-B4D1CA2D4C34}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\WWIIONLINE\WW2.exe => No File
FirewallRules: [{4741F7FA-73E8-4A2F-A9C2-4C8DE9AB91E0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hearts of Iron IV\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{342F91F2-FD3C-44DE-BD44-A9140B0B5FAC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hearts of Iron IV\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{273D976A-E05B-4327-8721-0F257695B528}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DCSWorld\bin\DCS.exe (Eagle Dynamics) [File not signed]
FirewallRules: [{29C81CC1-6446-40C9-B77C-A01EB089751E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DCSWorld\bin\DCS.exe (Eagle Dynamics) [File not signed]
FirewallRules: [{662C0CF1-411E-4FCB-B92E-C60DB13C86B8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DCSWorld\Run.exe => No File
FirewallRules: [{C5589749-E6F6-4F23-A2EE-9EBDBFE51143}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DCSWorld\Run.exe => No File
FirewallRules: [{07524B43-39A8-4BBD-B663-3EDC586AAC34}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{1A981D83-9C22-4CE8-9CE3-3AFD9267CD02}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{4F349AA6-24A4-475F-807E-B487569CE9C9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Citystate\Citystate.exe => No File
FirewallRules: [{A8695419-BBCD-4E90-8A47-4969AE919475}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Citystate\Citystate.exe => No File
FirewallRules: [{E5A4E00D-3360-4109-B9A4-3BFD976BBAA6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\LaunchPad\LaunchPad.exe => No File
FirewallRules: [{16E93B1B-8743-4F5E-89FB-C770C0E6064B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\LaunchPad\LaunchPad.exe => No File
FirewallRules: [{36CA5233-9A5C-4804-A427-66E434A2DCE6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\World of Warships\bin\clientrunner\clientrunner.exe => No File
FirewallRules: [{9F36A93A-7814-455B-8B7B-0EEB39BFC138}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\World of Warships\bin\clientrunner\clientrunner.exe => No File
FirewallRules: [{E5751900-03DB-41FA-8930-84A811A836AA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hearts of Iron IV\hoi4.exe (Paradox Interactive AB (publ) -> Paradox Interactive)
FirewallRules: [{AAA70A8B-08B0-4754-9A87-8365A5A4398D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hearts of Iron IV\hoi4.exe (Paradox Interactive AB (publ) -> Paradox Interactive)
FirewallRules: [{8473A6EF-85FA-49EB-ABF9-AEA963E6F3DB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect.exe () [File not signed]
FirewallRules: [{B39536F4-28DF-4FA2-AA54-FD27D3A755A4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect.exe () [File not signed]
FirewallRules: [{B07E29B3-6B02-48AF-934C-C0EA7D4AEA45}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Launcher\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{F3840064-AE12-4851-BE2E-2F56E5A1A00C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Launcher\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{026DC518-EACA-4BC1-B7BE-83B3D82F8B0E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{E173084B-41B3-4AFC-AA9E-A0B487817F4D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{9B1D2A2C-28B1-433E-9463-D8767F3E748E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{572A8185-BCE1-4035-8E66-F6050174E0D3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{06F0AB5D-AA63-41F7-93BE-3DE656DB7B64}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{DE1361B1-7E70-4FE3-8081-FDEF40A62221}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{8830827D-623D-4B3B-91E1-965F9F7B390D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization VI\LaunchPad\LaunchPad.exe => No File
FirewallRules: [{C80B5BA4-A667-4489-ABA0-91DD466C7192}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization VI\LaunchPad\LaunchPad.exe => No File
FirewallRules: [{AFCFD504-6E2C-4152-9AD1-BAE25EDB27A5}] => (Allow) T:\SteamLibrary\steamapps\common\Hearts of Iron IV\dowser.exe => No File
FirewallRules: [{7C9989D1-C930-4210-A162-E9C96F298FF5}] => (Allow) T:\SteamLibrary\steamapps\common\Hearts of Iron IV\dowser.exe => No File
FirewallRules: [TCP Query User{69D854D4-1510-41A4-8C80-46784BFC4580}T:\steamlibrary\steamapps\common\hearts of iron iv\hoi4.exe] => (Allow) T:\steamlibrary\steamapps\common\hearts of iron iv\hoi4.exe => No File
FirewallRules: [UDP Query User{81355D02-E87B-47A9-91C6-AE36A57C824C}T:\steamlibrary\steamapps\common\hearts of iron iv\hoi4.exe] => (Allow) T:\steamlibrary\steamapps\common\hearts of iron iv\hoi4.exe => No File
FirewallRules: [{A59EE3D9-6CF5-443F-9019-D1B67CDAD4C1}] => (Allow) T:\SteamLibrary\steamapps\common\Sid Meier's Civilization V\LaunchPad\LaunchPad.exe () [File not signed]
FirewallRules: [{8E059EE6-8261-43BC-815D-41195409ACB3}] => (Allow) T:\SteamLibrary\steamapps\common\Sid Meier's Civilization V\LaunchPad\LaunchPad.exe () [File not signed]
FirewallRules: [TCP Query User{3392DA41-17A8-4127-B321-07FFE4FABA81}T:\program files\call of duty modern warfare\modernwarfare.exe] => (Allow) T:\program files\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [UDP Query User{F555F454-EDB6-40A7-913C-6838EFFFB9C8}T:\program files\call of duty modern warfare\modernwarfare.exe] => (Allow) T:\program files\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{C26C0644-3BB6-49B3-B620-FE6776EC7DA5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tropico 5\Tropico5Steam.exe (Haemimont Games) [File not signed]
FirewallRules: [{02703209-B932-40DE-8E33-4A275F3A6E67}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tropico 5\Tropico5Steam.exe (Haemimont Games) [File not signed]
FirewallRules: [{244221F0-B12C-43AD-87E3-3119073198C5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network LTD -> Gaijin)
FirewallRules: [{2D99F9F6-5258-4ADD-8798-997E5466DD4B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network LTD -> Gaijin)
FirewallRules: [{CAC49639-9951-4D78-9AD3-3182E770C803}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Napoleon Total War\Napoleon.exe (Sega Europe Limited -> The Creative Assembly Ltd)
FirewallRules: [{005EF99C-411E-4AD2-8CC7-B384864024BC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Napoleon Total War\Napoleon.exe (Sega Europe Limited -> The Creative Assembly Ltd)
FirewallRules: [{376DF906-CFFF-424B-B3EE-B184D68B9CB1}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Silent Hunter 5\sh5.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{7860624B-CD1F-4B78-AA06-982F8FDEB87C}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Silent Hunter 5\sh5.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{A4FAEC07-1F41-41EA-92AE-E061D29BFCAD}] => (Allow) T:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\LaunchPad\LaunchPad.exe (Xsolla (USA), Inc -> 2K)
FirewallRules: [{23086EDF-7041-4156-A63A-65BB007CCB2E}] => (Allow) T:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\LaunchPad\LaunchPad.exe (Xsolla (USA), Inc -> 2K)
FirewallRules: [{10ED0818-5D2B-40D0-891F-090558A3F04F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForest.exe () [File not signed]
FirewallRules: [{7D5F4233-2469-4284-99CC-FB20A5C95CB0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForest.exe () [File not signed]
FirewallRules: [{22B954BB-FD59-4C53-9835-17F01F52D984}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForestVR.exe () [File not signed]
FirewallRules: [{05B628AE-FD52-47CB-96B9-9D196EEEC7F1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForestVR.exe () [File not signed]
FirewallRules: [{30249BED-930F-4BBE-B675-576F3957EE1F}] => (Allow) T:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\LaunchPad\LaunchPad.exe (Xsolla (USA), Inc -> 2K)
FirewallRules: [{B0D1E5F2-DE52-4BCC-80AD-8247F4D0747D}] => (Allow) T:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\LaunchPad\LaunchPad.exe (Xsolla (USA), Inc -> 2K)
FirewallRules: [{CC30BD5F-F419-4E63-897B-C8EF67EDFE39}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Silent Hunter 5\sh5.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{A6F1863A-1CC4-41B6-A9C3-E54C70B38F4B}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Silent Hunter 5\sh5.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{284EEA01-C7F5-4051-9350-19262816755F}] => (Allow) T:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\2KLauncher\LauncherPatcher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [{18C5D6F9-98B5-46A6-8E0C-D69837BBCA0D}] => (Allow) T:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\2KLauncher\LauncherPatcher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [{780606F0-8AFC-48C2-9D64-26F49ABFCCA3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\win32\eac_launcher.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{37578EB0-3D38-4FCC-B7CD-80786FCF010A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\win32\eac_launcher.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{92EAC87E-65A5-4F48-8C85-A1EFD27E9416}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\eac_wt_mlauncher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{74B37697-F04A-4ABD-8AAE-AD335BAC7D21}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\eac_wt_mlauncher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{03159E40-71FE-4DCB-BFC0-580ABB3D04A8}] => (Allow) T:\Program Files\Battlestate\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{71E28016-60F9-4E8C-9BC6-565D96B88F44}] => (Allow) T:\Program Files\Battlestate\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [TCP Query User{FABE988E-FEBF-4AB7-A488-3423DC065EF2}T:\program files\call of duty modern warfare\modernwarfare.exe] => (Allow) T:\program files\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [UDP Query User{867E892A-6DD4-4145-B073-41E3623F602C}T:\program files\call of duty modern warfare\modernwarfare.exe] => (Allow) T:\program files\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{A18E6025-D447-4523-AFD4-00D80C218ABB}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12113.17.53090.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B970A1FF-0606-420C-B8EC-CB970084DBC2}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12113.17.53090.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{605EC9B6-55B8-4CB1-9CCD-3875F8FFDFFB}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12113.17.53090.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{1ECBDF8A-C864-41D3-BF56-4CD87D7FB221}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12113.17.53090.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E5E86CDF-F549-4C8C-A53D-12FDB7D1CE6C}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12113.17.53090.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3E0C0983-3879-4690-A1BD-5D6169F5165B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12113.17.53090.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{EAA53694-A3B2-41BC-AC48-45C4F71C29D3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12113.17.53090.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2CE26B5E-6819-42CB-959D-12F3403C15A9}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12113.17.53090.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{AE8CE4B7-C450-457C-BF84-0E2B6226F8DB}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{37BD81C4-386D-46B9-BF32-DC56F458DE0B}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{B6DA62E6-B9EC-4BD8-B847-1FF89A69438D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe (Valve -> )
FirewallRules: [{4A2409D1-B238-4014-81AB-DA62DB55F694}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe (Valve -> )
FirewallRules: [TCP Query User{60A5A62A-80C3-4A1B-9362-728F89E43CAC}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{97F7ADE0-F405-4446-A092-D12799A464EE}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{6BA413CA-A55C-49A5-A617-F7D973FEE377}] => (Allow) T:\SteamLibrary\steamapps\common\War Thunder\launcher.exe (Gaijin Network LTD -> Gaijin)
FirewallRules: [{1843C549-8F4D-4227-9038-3BDBDEE8FF0B}] => (Allow) T:\SteamLibrary\steamapps\common\War Thunder\launcher.exe (Gaijin Network LTD -> Gaijin)
FirewallRules: [TCP Query User{74E7DC84-2848-4F6E-9636-74550663E3B8}T:\steamlibrary\steamapps\common\war thunder\win64\aces.exe] => (Allow) T:\steamlibrary\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [UDP Query User{2F036B84-5F87-438A-B023-7FDFC2E276F5}T:\steamlibrary\steamapps\common\war thunder\win64\aces.exe] => (Allow) T:\steamlibrary\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{77A20AF1-C443-449E-8D67-37A1C9F4325A}] => (Block) T:\steamlibrary\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{CDEF4129-92F3-4319-AAA5-16ED841B1323}] => (Block) T:\steamlibrary\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{77891995-F6A1-4D35-B6E0-9E3398046A15}] => (Allow) T:\SteamLibrary\steamapps\common\War Thunder\eac_wt_mlauncher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{CA314D69-E838-4E9A-85EA-C9BD0ABF1542}] => (Allow) T:\SteamLibrary\steamapps\common\War Thunder\eac_wt_mlauncher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{9AEFDE64-93A9-4E58-B84E-9465DBD7FE8D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DAD6F559-223B-41E8-9E58-8FD7F26F9589}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7A2E10DD-84C5-449D-8AB2-71BA65BA17F8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C0192A13-ABDF-4630-A602-6F819CC23FAD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{29A65E2F-F921-42F6-8231-880DC6398BC5}] => (Allow) T:\Program Files\Battlestate\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{76942C78-5C3B-4121-9136-054E2C6C2CAB}] => (Allow) T:\Program Files\Battlestate\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [TCP Query User{8F6F95C2-DC91-4682-B6A0-553EC96232F8}C:\games\world_of_tanks_na\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_na\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{2C62687E-5AEC-419A-A24F-2927DD5B6F66}C:\games\world_of_tanks_na\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_na\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{0C53A71B-093A-4F7B-99EF-A41CE551ABAE}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Citystate\Citystate.exe () [File not signed]
FirewallRules: [{63B6372C-8825-404F-9D2F-931003C5ABAC}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Citystate\Citystate.exe () [File not signed]
FirewallRules: [{31DAD1AF-0372-4A23-A923-AD41EBB1D022}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Crusader Kings II\CK2game.exe (Paradox Interactive AB (publ) -> Paradox Interactive)
FirewallRules: [{962842F4-CC36-4833-95DD-D2FB026C05FD}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Crusader Kings II\CK2game.exe (Paradox Interactive AB (publ) -> Paradox Interactive)
FirewallRules: [{5F1DFCAF-F647-40C5-BA38-1FC5F95C4ECF}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\WWIIONLINE\WW2.exe (Playnet, Inc. / Cornered Rat Software, LLC.) [File not signed]
FirewallRules: [{8983CDB1-3AB1-4EC2-A1A4-265525255B8A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\WWIIONLINE\WW2.exe (Playnet, Inc. / Cornered Rat Software, LLC.) [File not signed]
FirewallRules: [{DB3CCA18-F1A5-4B42-803A-01176D8CEBC3}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\WWIIONLINE\Settings.exe (Playnet, Inc. / Cornered Rat Software, LLC.) [File not signed]
FirewallRules: [{8F39B8D0-D9DA-4CF7-B87F-1C3AC2B7DA5B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\WWIIONLINE\Settings.exe (Playnet, Inc. / Cornered Rat Software, LLC.) [File not signed]
FirewallRules: [{E6811E9E-DEDF-4811-9DBD-ED85DA957E90}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{46885A11-875C-4E9F-8A43-5337D60889CA}] => (Allow) C:\Program Files\Easeware\DriverEasy\DriverEasy.exe (Easeware Technology Limited -> Easeware)
FirewallRules: [{57798058-D478-4A9B-9535-12F80ED22657}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.162.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7B58D8A1-FB04-45CE-B9BC-2BF4B6CB732E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.162.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{AC3060EE-AD67-4273-836E-73E7154C4432}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.162.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A2F9DF52-FF6F-4A4E-BF82-912D73894216}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.162.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4D5BE292-7D95-4E0B-A9A2-6B5FD9E4A0CC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.162.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{96C645AD-3AB2-4775-9736-400BC06FD99A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.162.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A391DF5B-647B-4889-92F3-FD960EF263D6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.162.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0075CD45-D122-4EBC-B56B-0320EFEC7BCC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.162.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FA6B5C79-BA54-4674-809B-D7A13B5F7658}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\91.0.864.64\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A0FDADC3-FA2D-4320-A3BD-46BAB5D37E57}] => (Allow) C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\Server\SyncUp Server.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
FirewallRules: [{1AFFC37F-93FC-4DDD-B9C3-D5411F12E8AD}] => (Allow) C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\Server\SyncUp Server.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
FirewallRules: [{E3C15919-625A-40D8-9438-F18C597BD4C8}] => (Allow) C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\ASUSDMS.exe => No File
FirewallRules: [{8CA5B690-52CE-48BC-9613-A1DF403FD969}] => (Allow) C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\ASUSDMS.exe => No File

==================== Restore Points =========================

02-07-2021 01:23:07 Restore Operation

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (07/07/2021 09:24:04 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program explorer.exe version 10.0.19041.1023 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 2eac

Start Time: 01d77336e79ca02a

Termination Time: 0

Application Path: C:\Windows\explorer.exe

Report Id: afe718f8-3db9-4ca9-922c-ed773dc32c22

Faulting package full name:

Faulting package-relative application ID:

Hang type: Cross-thread

Error: (07/07/2021 09:15:39 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program explorer.exe version 10.0.19041.1023 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 3bc0

Start Time: 01d7733906956283

Termination Time: 795

Application Path: C:\Windows\explorer.exe

Report Id: fb9b5dfa-60e6-4571-bccf-6e57356f6e1a

Faulting package full name:

Faulting package-relative application ID:

Hang type: Unknown

Error: (07/07/2021 09:04:37 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program explorer.exe version 10.0.19041.1023 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 33b4

Start Time: 01d773377a0fa53c

Termination Time: 14

Application Path: C:\Windows\explorer.exe

Report Id: 1dfe37e5-2023-4549-9491-4ea2c1ab17ab

Faulting package full name:

Faulting package-relative application ID:

Hang type: Unknown

Error: (07/07/2021 08:53:30 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program explorer.exe version 10.0.19041.1023 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 464

Start Time: 01d7733737f2561d

Termination Time: 7

Application Path: C:\Windows\explorer.exe

Report Id: 3f5e6d7a-c42b-4125-aa87-122940a95639

Faulting package full name:

Faulting package-relative application ID:

Hang type: Unknown

Error: (07/07/2021 08:49:33 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program explorer.exe version 10.0.19041.1023 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 1a8c

Start Time: 01d77336da488b21

Termination Time: 0

Application Path: C:\Windows\explorer.exe

Report Id: 952e680f-a1fb-4a8b-9604-44b5ecaaafb6

Faulting package full name:

Faulting package-relative application ID:

Hang type: Cross-thread

Error: (07/07/2021 08:49:14 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program explorer.exe version 10.0.19041.1023 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: db4

Start Time: 01d77336d51de0d5

Termination Time: 0

Application Path: C:\Windows\explorer.exe

Report Id: db6d3278-fa46-44d3-b165-cf806c0c6353

Faulting package full name:

Faulting package-relative application ID:

Hang type: Cross-thread

Error: (07/07/2021 08:49:11 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program explorer.exe version 10.0.19041.1023 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 1858

Start Time: 01d772eed7d50c53

Termination Time: 0

Application Path: C:\Windows\explorer.exe

Report Id: 19a8821c-da02-4106-b80c-1fc9375d0df4

Faulting package full name:

Faulting package-relative application ID:

Hang type: Cross-thread

Error: (07/07/2021 08:48:25 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program explorer.exe version 10.0.19041.1023 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 375c

Start Time: 01d7733648c5ea9f

Termination Time: 9

Application Path: C:\Windows\explorer.exe

Report Id: c23e17c4-3648-4485-a7e6-b93569a8ac39

Faulting package full name:

Faulting package-relative application ID:

Hang type: Unknown


System errors:
=============
Error: (07/07/2021 09:49:09 AM) (Source: BugCheck) (EventID: 1001) (User: )
Description: The computer has rebooted from a bugcheck. The bugcheck was: 0x00000154 (0xffffb3071eb80000, 0xffffa80c7182e030, 0x0000000000000002, 0x0000000000000000). A dump was saved in: C:\WINDOWS\MEMORY.DMP. Report Id: 189702ac-31d9-47fe-9b5d-1ae0871b9ad0.

Error: (07/07/2021 09:49:07 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The WsDrvInst service failed to start due to the following error:
The system cannot find the file specified.

Error: (07/07/2021 09:49:06 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 9:20:33 AM on ‎7/‎7/‎2021 was unexpected.

Error: (07/07/2021 12:12:50 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The WsDrvInst service failed to start due to the following error:
The system cannot find the file specified.

Error: (07/07/2021 12:12:49 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 12:09:47 AM on ‎7/‎7/‎2021 was unexpected.

Error: (07/07/2021 12:09:49 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The WsDrvInst service failed to start due to the following error:
The system cannot find the file specified.

Error: (07/07/2021 12:09:04 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-VE26JV6)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.

Error: (07/07/2021 12:09:04 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-VE26JV6)
Description: The server {021E4F06-9DCC-49AD-88CF-ECC2DA314C8A} did not register with DCOM within the required timeout.


Windows Defender:
================
Date: 2021-07-06 22:46:41
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2021-07-05 21:50:23
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2021-07-04 11:37:15
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2021-07-01 23:36:12
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
Name: Misleading:Win32/Lodi
Severity: Low
Category: Potentially Unwanted Software
Path: file:_C:\Users\javau\OneDrive\Desktop\DriverPack-17-Online_307931536.1625200445.exe; webfile:_C:\Users\javau\OneDrive\Desktop\DriverPack-17-Online_307931536.1625200445.exe|https://dl.drp.su/17-online/DriverPack-17-Online.exe|pid:11684,ProcessStart:132696741718919863
Detection Origin: Internet
Detection Type: Concrete
Detection Source: Downloads and attachments
Process Name: Unknown
Security intelligence Version: AV: 1.343.205.0, AS: 1.343.205.0, NIS: 1.343.205.0
Engine Version: AM: 1.1.18300.4, NIS: 1.1.18300.4

Date: 2021-07-01 23:35:03
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
Name: Misleading:Win32/Lodi
Severity: Low
Category: Potentially Unwanted Software
Path: file:_C:\Users\javau\OneDrive\Desktop\DriverPack-17-Online_307931536.1625200445 (1).exe; file:_C:\Users\javau\OneDrive\Desktop\DriverPack-17-Online_307931536.1625200445.exe; webfile:_C:\Users\javau\OneDrive\Desktop\DriverPack-17-Online_307931536.1625200445 (1).exe|https://dl.drp.su/17-online/DriverPack-17-Online.exe|pid:14488,ProcessStart:132696741030559767; webfile:_C:\Users\javau\OneDrive\Desktop\DriverPack-17-Online_307931536.1625200445.exe|https://dl.drp.su/17-online/DriverPack-17-Online.exe|pid:4992,ProcessStart:132696740642969236
Detection Origin: Internet
Detection Type: Concrete
Detection Source: Downloads and attachments
Process Name: Unknown
Security intelligence Version: AV: 1.343.205.0, AS: 1.343.205.0, NIS: 1.343.205.0
Engine Version: AM: 1.1.18300.4, NIS: 1.1.18300.4

Date: 2021-07-02 01:33:35
Description:
Microsoft Defender Antivirus has encountered an error trying to load security intelligence and will attempt reverting back to a known-good version.
Security intelligence Attempted: Current
Error Code: 0x80070003
Error description: The system cannot find the path specified.
Security intelligence version: 0.0.0.0;0.0.0.0
Engine version: 0.0.0.0

Date: 2021-06-29 12:31:51
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 1.343.25.0
Previous security intelligence Version: 1.341.1630.0
Update Source: User
Security intelligence Type: AntiSpyware
Update Type: Delta
Current Engine Version: 1.1.18300.4
Previous Engine Version: 1.1.18200.4
Error code: 0x80070666
Error description: Another version of this product is already installed. Installation of this version cannot continue. To configure or remove the existing version of this product, use Add/Remove Programs on the Control Panel.

Date: 2021-06-29 12:31:51
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 1.343.25.0
Previous security intelligence Version: 1.341.1630.0
Update Source: User
Security intelligence Type: AntiVirus
Update Type: Delta
Current Engine Version: 1.1.18300.4
Previous Engine Version: 1.1.18200.4
Error code: 0x80070666
Error description: Another version of this product is already installed. Installation of this version cannot continue. To configure or remove the existing version of this product, use Add/Remove Programs on the Control Panel.

Date: 2021-06-29 12:31:51
Description:
Microsoft Defender Antivirus has encountered an error trying to update the engine.
New Engine Version: 1.1.18300.4
Previous Engine Version: 1.1.18200.4
Error Code: 0x80070666
Error description: Another version of this product is already installed. Installation of this version cannot continue. To configure or remove the existing version of this product, use Add/Remove Programs on the Control Panel.

Date: 2021-06-29 12:29:09
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 1.343.25.0
Previous security intelligence Version: 1.341.1630.0
Update Source: User
Security intelligence Type: AntiSpyware
Update Type: Delta
Current Engine Version: 1.1.18300.4
Previous Engine Version: 1.1.18200.4
Error code: 0x80070666
Error description: Another version of this product is already installed. Installation of this version cannot continue. To configure or remove the existing version of this product, use Add/Remove Programs on the Control Panel.

CodeIntegrity:
===============
Date: 2021-07-07 09:51:08
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-12-25 19:39:51
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

BIOS: American Megatrends Inc. P4.20 06/18/2020
Motherboard: ASRock B450 Pro4
Processor: AMD Ryzen 5 3600 6-Core Processor
Percentage of memory in use: 35%
Total physical RAM: 16315.33 MB
Available physical RAM: 10577.33 MB
Total Virtual: 48315.33 MB
Available Virtual: 38860.53 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:930.91 GB) (Free:439.15 GB) NTFS
Drive d: (Spinner) (Fixed) (Total:930.91 GB) (Free:922.07 GB) NTFS
Drive t: (SSD 1) (Fixed) (Total:223.57 GB) (Free:37.82 GB) NTFS

\\?\Volume{286033cf-1991-408d-a0d1-d9a59d825a72}\ () (Fixed) (Total:0.49 GB) (Free:0.05 GB) NTFS
\\?\Volume{2d45d62e-0063-469c-9ff5-4e9c95fc6ae1}\ () (Fixed) (Total:0.49 GB) (Free:0.05 GB) NTFS
\\?\Volume{7f86ebc0-975b-4837-9dd7-7dbc71d007f3}\ (SYSTEM) (Fixed) (Total:0.09 GB) (Free:0.04 GB) FAT32
\\?\Volume{97913f6c-a276-4fd3-b24c-544412ed0171}\ (SYSTEM) (Fixed) (Total:0.09 GB) (Free:0.04 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 93A60D82)
Partition 1: (Not Active) - (Size=223.6 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (Size: 931.5 GB) (Disk ID: BB15408F)

Partition: GPT.

==================== End of Addition.txt =======================
 
Please, observe following rules:
  • Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
  • If you're stuck, or you're not sure about certain step, always ask before doing anything else.
  • Please refrain from running any tools, fixes or applying any changes to your computer other than those I suggest.
  • Never run more than one scan at a time.
  • Keep updating me regarding your computer behavior, good, or bad.
  • The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
  • If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
  • I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.

========================================

redtarget.gif
Download RogueKiller from one of the following links and save it to your Desktop:

Link 1
Link 2
  • Close all the running programs
  • Double click on downloaded setup.exe file to install the program.
  • Click on Start Scan button.
  • Click on another Start Scan button.
  • Wait until the Status box shows Scan Finished
  • Click on Remove Selected.
  • Wait until the Status box shows Deleting Finished.
  • Click on Report and copy/paste the content of the Notepad into your next reply.
  • RKreport.txt could also be found on your desktop.
  • If more than one log is produced post all logs.
redtarget.gif
Please download Malwarebytes to your desktop.
  • Double-click mb3-setup-consumer-{version}.exe and follow the prompts to install the program.
  • Then click Finish.
  • Once the program has fully updated, select Scan Now on the Dashboard. Or select the Threat Scan from the Scan menu.
  • If another update of the definitions is available, it will be implemented before the rest of the scanning procedure.
  • When the scan is complete, make sure that all Threats are selected, and click Remove Selected.
  • Restart your computer when prompted to do so.
  • The Scan log is available throughout History ->Application logs. Please post it contents in your next reply.
redtarget.gif
Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8/10 users right-click and select Run As Administrator
  • The tool will start to update the database if one is required.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Logfile button.
  • A window will open which lists the logs of your scans.
  • Click on the Scan tab.
  • Double-click the most recent scan which will be at the top of the list....the log will appear.
  • Review the results...see note below
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[CX].txt) will open automatically (where the largest value of X represents the most recent report).
  • To open a Cleaning log, launch AdwareClearer, click on the Logfile button, click on the Cleaning tab and double-click the log at the top of the list.
  • Copy and paste the contents of AdwCleaner[CX].txt in your next reply.
  • A copy of all logfiles are saved to C:\AdwCleaner.
-- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name or entry that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on and uncheck any items you want to keep.
 
I have included the logs below.
RogueKiller Log:
RogueKiller Anti-Malware V15.0.6.0 (x64) [Jul 1 2021] (Premium) by Adlice Software
mail : https://adlice.com/contact/
Website : https://adlice.com/download/roguekiller/
Operating System : Windows 10 (10.0.19043) 64-bit
Started in : Normal mode
User : javau [Administrator]
Started from : C:\Program Files\RogueKiller\RogueKiller64.exe
Signatures : 20210705_114159, Driver : Loaded
Mode : Standard Scan, Scan -- Date : 2021/07/07 13:31:21 (Duration : 00:04:42)
Switches : -minimize

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Processes ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Process Modules ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Services ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Tasks ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Registry ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ WMI ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Hosts File ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Files ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Web browsers ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
MalwareBytes Log:
Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 7/7/21
Scan Time: 1:37 PM
Log File: 744e300c-df52-11eb-9f0a-a8a159459251.json

-Software Information-
Version: 4.4.2.123
Components Version: 1.0.1358
Update Package Version: 1.0.42810
License: Trial

-System Information-
OS: Windows 10 (Build 19043.1052)
CPU: x64
File System: NTFS
User: DESKTOP-VE26JV6\javau

-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 304306
Threats Detected: 0
Threats Quarantined: 0
Time Elapsed: 1 min, 22 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registry Key: 0
(No malicious items detected)

Registry Value: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 0
(No malicious items detected)

File: 0
(No malicious items detected)

Physical Sector: 0
(No malicious items detected)

WMI: 0
(No malicious items detected)


(end)
 
ADWCleaner Scan Log:
# -------------------------------
# Malwarebytes AdwCleaner 8.2.0.0
# -------------------------------
# Build: 03-22-2021
# Database: 2021-06-29.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 07-07-2021
# Duration: 00:00:06
# OS: Windows 10 Home
# Scanned: 31985
# Detected: 22


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

PUP.Optional.AdvancedSystemCare C:\Windows\SysWOW64\Tasks\Advance-SystemCare-Suite.lnk

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

Preinstalled.ASUSManager Folder C:\Program Files (x86)\ASUS\ASUS MANAGER\AI BOOTING
Preinstalled.ASUSManager Folder C:\Program Files (x86)\ASUS\ASUS MANAGER\ASUS MANAGER - UPDATE
Preinstalled.ASUSManager Folder C:\Program Files (x86)\ASUS\ASUS MANAGER\BACKUP & RECOVERY
Preinstalled.ASUSManager Folder C:\Program Files (x86)\ASUS\ASUS MANAGER\PC CLEANUP
Preinstalled.ASUSManager Folder C:\Program Files (x86)\ASUS\ASUS MANAGER\POWER MANAGER
Preinstalled.ASUSManager Folder C:\Program Files (x86)\ASUS\ASUS MANAGER\RECOVERY
Preinstalled.ASUSManager Folder C:\Program Files (x86)\ASUS\ASUS MANAGER\SYNCUP
Preinstalled.ASUSManager Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{2DCE446C-D090-4458-8782-8F16DF94351E}
Preinstalled.ASUSManager Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{34D67DE5-2ECF-4E6B-A243-2C16E2792787}
Preinstalled.ASUSManager Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{675BBE8A-0ED3-4048-8723-BA51EAB8E1A8}
Preinstalled.ASUSManager Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{C2294792-457D-4DF7-9486-B630754C73D0}
Preinstalled.ASUSManager Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{DD248BEE-E925-4720-A775-9A42276BB6EA}
Preinstalled.ASUSManager Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{E22A19AE-7DDB-4959-B1DB-A0996294352A}
Preinstalled.ASUSProductRegistration Folder C:\Program Files (x86)\ASUS\APRP
Preinstalled.ASUSProductRegistration Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{8D6B05E0-F457-408C-9D13-549334D8FAE1}
Preinstalled.ASUSWebStorage Folder C:\Program Files (x86)\ASUS\WEBSTORAGE
Preinstalled.ASUSWebStorage Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\WEBSTORAGE
Preinstalled.ASUSWebStorage Registry HKLM\Software\Classes\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7191}
Preinstalled.ASUSWebStorage Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|WebStorage
Preinstalled.ASUSWebStorage Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|WebStorage
Preinstalled.ASUSWebStorage Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\WebStorage



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########

ADWCleaner Clean Log:
# -------------------------------
# Malwarebytes AdwCleaner 8.2.0.0
# -------------------------------
# Build: 03-22-2021
# Database: 2021-06-29.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 07-07-2021
# Duration: 00:00:00
# OS: Windows 10 Home
# Cleaned: 1
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

Deleted C:\Windows\SysWOW64\Tasks\Advance-SystemCare-Suite.lnk

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [3892 octets] - [07/07/2021 13:42:29]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
 
Looks good so far.

Re-run Farbar Recovery Scan Tool (FRST/FRST64) you ran at the very beginning of this topic.

  • Double click to run it.
  • Press Scan button.
  • Scan will create two logs, FRST.txt and Addition.txt in the same directory the tool is run. Please copy and paste them to your reply.
 
This topic is marked as abandoned and closed due to inactivity.

This member will NOT be eligible to receive any more help in malware removal forum.
 
Status
Not open for further replies.

Similar threads

uber_beetle
Infected with fake ad pop-ups - posting FRST and Addition
Replies
12
Views
794
uber_beetle
uber_beetle
A
Infected: Antivirus says it's Trojan:Script/Wacatac.H!ml
Replies
12
Views
2K
adidaman27
A
wshknwntlprtmn
  • Locked
Inactive Not sure what's going on here....
Replies
12
Views
2K
Broni
Broni

Latest posts

Back