Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-03-2020 Ran by asus (administrator) on LAPTOP-D8R09741 (ASUSTeK COMPUTER INC. TUF Gaming FX505DT_FX505DT) (05-04-2020 03:19:01) Running from C:\Users\asus\Desktop Loaded Profiles: asus (Available Profiles: asus) Platform: Windows 10 Home Single Language Version 1909 18363.657 (X64) Language: English (United States) Default browser: "C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe" -- "%1" Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12003.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe ==================== Registry (Whitelisted) =================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3022416 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM\...\Run: [AvastUI.exe] => "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui HKLM\...\Policies\Explorer: [HideSCAHealth] 1 HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION HKU\S-1-5-21-2987826816-1455516208-1627320750-1001\...\Run: [Steam] => D:\Games\Steam\steam.exe [3370272 2020-03-27] (Valve -> Valve Corporation) HKU\S-1-5-21-2987826816-1455516208-1627320750-1001\...\Run: [Discord] => C:\Users\asus\AppData\Local\Discord\app-0.0.306\Discord.exe [90950968 2020-02-24] (Discord Inc. -> Discord Inc.) HKU\S-1-5-21-2987826816-1455516208-1627320750-1001\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe [1993360 2020-04-03] (Brave Software, Inc. -> Brave Software, Inc.) HKU\S-1-5-21-2987826816-1455516208-1627320750-1001\...\MountPoints2: {e5f99822-6350-11ea-bdb1-04d4c4e4c4f6} - "E:\.\setup.exe" HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\80.1.5.123\Installer\chrmstp.exe [2020-04-04] (Brave Software, Inc.) [File not signed] FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION ==================== Scheduled Tasks (Whitelisted) ============ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {0EDE7D45-C21F-4260-9F4C-C44AC998B129} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-06] (NVIDIA Corporation -> NVIDIA Corporation) Task: {11E70B29-A477-497A-B7FC-D0FD88AD6E9F} - System32\Tasks\Microsoft\Windows\Wininet\Winlogui => winlogui.exe <==== ATTENTION Task: {12092A98-E5AD-4C72-97B1-215B23B96D9C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.10-0\MpCmdRun.exe [473544 2020-02-28] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {16FCAC46-FBA5-4C96-912A-7B4FB3CF5D93} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe Task: {1ACD88EA-DEDC-4C62-9737-2C3BCE47EBB5} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe Task: {30A97015-D506-40E0-9796-90F853A207E5} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_610b7c1b6fee074c\ASUSSystemAnalysis\AsusSystemAnalysis.exe [1824168 2020-01-30] (ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.) Task: {3777BF30-AA64-407C-98C3-021E2EE2A011} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-06] (NVIDIA Corporation -> NVIDIA Corporation) Task: {3905CE23-11E1-4043-8137-2CCB257F3176} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1d56d563f586531 => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [156208 2019-09-17] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {3BCAB921-5B1F-491F-AB0E-2A4AB3C71795} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.10-0\MpCmdRun.exe [473544 2020-02-28] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {3F00008B-6D2E-4020-9113-1F7FFE4CC553} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_610b7c1b6fee074c\ASUSSoftwareManager\AsusUpdateChecker.exe [348328 2020-01-30] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) Task: {56028307-DB2F-43A6-A41B-FA897944EF01} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\asus\Desktop\esetonlinescanner.exe [14566496 2020-04-04] (ESET, spol. s r.o. -> ESET spol. s r.o.) Task: {57896815-36D7-49D4-9339-CF01070E6397} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2019-12-29] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {5CCC4415-0562-45B5-A559-ACF3DE70A47C} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe Task: {62426CA3-FD7E-4931-9229-CC645C8E5A7A} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [64920 2020-02-19] (Microsoft Corporation -> Microsoft) Task: {6901FB97-59CD-4742-A23F-AF6471ED6993} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.10-0\MpCmdRun.exe [473544 2020-02-28] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {74B78C0A-51A8-40D5-B0FC-6C8484895B2D} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2019-12-29] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {7EDFFFD8-8B91-4ECC-BBFC-FA64BB8C4768} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.10-0\MpCmdRun.exe [473544 2020-02-28] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {807CC175-26B0-447C-ACB7-5F8D15DBCF7A} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [156208 2019-09-17] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {89B790BB-E5F2-4D9F-B585-76E1F1D43FDA} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3022416 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {A2BAF120-83C1-4A5E-BB8A-4F80F5A42AC1} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {A8B2B4B9-0DA8-4807-9F92-5A0FCCCDED3D} - System32\Tasks\RtkAudUService64_BG => C:\Windows\system32\RtkAudUService64.exe [862192 2019-02-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {BAD6E2C2-EC32-440D-9769-826396FD98FF} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C5B974DE-17AA-478B-883F-95182DF1E339} - System32\Tasks\Microsoft\Windows\Windows Error Reporting\winrmsrv => winrmsrv.exe <==== ATTENTION Task: {CFE594A2-6C47-4FA9-9E9A-EBFCA00AAE1E} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\asus\Desktop\esetonlinescanner.exe [14566496 2020-04-04] (ESET, spol. s r.o. -> ESET spol. s r.o.) Task: {D855C3FA-932B-41CB-9780-8D31F9688598} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {DD0C85B4-5CAC-4E9A-BF6C-740E47DF1FA6} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653848 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {E10E88C2-A86A-4AA6-8442-20CDE863209B} - System32\Tasks\ASUS Optimization 36D18D69AFC3 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_610b7c1b6fee074c\ASUSOptimization\AsusHotkeyExec.exe [182904 2020-01-30] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) Task: {E5891881-5A0E-42A5-83FC-41D1CB23645D} - System32\Tasks\DSB Notification => C:\Program Files\ASUS\DSB Notification\DSBNotification.exe [782216 2019-01-28] (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.) Task: {EE838A05-9125-4E84-979D-08C0E33AFEA6} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {F89131C1-00E0-4098-BE96-50EB13963E76} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {FE1EA3E6-1527-4BD9-BA76-7BDB36A54D20} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302880 2019-12-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {FFCD8B45-CEEA-4231-BC19-4703561CE66E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{04bd6c03-4119-4a0e-9eeb-213db18045e5}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{98f07b51-bb45-484f-a3e8-e37a02b59149}: [DhcpNameServer] 10.66.40.1 Tcpip\..\Interfaces\{ffc6e7ae-5506-4f5e-ab28-ea096d2535ee}: [DhcpNameServer] 192.168.42.129 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-2987826816-1455516208-1627320750-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-2987826816-1455516208-1627320750-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus17win10.msn.com/?pc=ASTE BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation -> Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation) FireFox: ======== FF DefaultProfile: 2kucvwy9.default FF ProfilePath: C:\Users\asus\AppData\Roaming\Mozilla\Firefox\Profiles\2kucvwy9.default [2019-12-21] FF ProfilePath: C:\Users\asus\AppData\Roaming\Mozilla\Firefox\Profiles\m9bs51ze.default-release [2020-01-23] FF Notifications: Mozilla\Firefox\Profiles\m9bs51ze.default-release -> hxxps://www.youtube.com FF Extension: (Avast Online Security) - C:\Users\asus\AppData\Roaming\Mozilla\Firefox\Profiles\m9bs51ze.default-release\Extensions\wrc@avast.com.xpi [2020-02-13] FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @tools.asus.com/ASUS Update;version=3 -> C:\Program Files (x86)\ASUS\Update\1.3.107.17\npAsusUpdate3.dll [2020-03-18] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) FF Plugin-x32: @tools.asus.com/ASUS Update;version=9 -> C:\Program Files (x86)\ASUS\Update\1.3.107.17\npAsusUpdate3.dll [2020-03-18] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=3 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2019-12-29] (Brave Software, Inc. -> BraveSoftware Inc.) FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=9 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2019-12-29] (Brave Software, Inc. -> BraveSoftware Inc.) ==================== Services (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3374160 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated) S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3103824 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated) S4 AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\u0346262.inf_amd64_c058abf1b241a588\B346039\atiesrxx.exe [516624 2019-08-31] (Advanced Micro Devices, Inc. -> AMD) S4 ArmouryCrateService; C:\Program Files\ASUS\ARMOURY CRATE Service\ArmouryCrate.Service.exe [271328 2020-03-25] (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.) S4 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [156208 2019-09-17] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) S4 ASUSLinkNear; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_610b7c1b6fee074c\ASUSLinkNear\AsusLinkNear.exe [973944 2020-01-30] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) S4 ASUSLinkRemote; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_610b7c1b6fee074c\ASUSLinkRemote\AsusLinkRemote.exe [314488 2020-01-30] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) S4 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [156208 2019-09-17] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) S4 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_610b7c1b6fee074c\ASUSOptimization\AsusOptimization.exe [264312 2020-01-30] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) S4 ASUSSoftwareManager; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_610b7c1b6fee074c\ASUSSoftwareManager\AsusSoftwareManager.exe [458408 2020-01-30] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) S4 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_610b7c1b6fee074c\ASUSSystemAnalysis\AsusSystemAnalysis.exe [1824168 2020-01-30] (ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.) S4 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_610b7c1b6fee074c\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [570264 2020-01-30] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.) S4 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2019-12-29] (Brave Software, Inc. -> BraveSoftware Inc.) S4 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2019-12-29] (Brave Software, Inc. -> BraveSoftware Inc.) S4 DTSAPO3Service; C:\WINDOWS\System32\DTS\PC\APO3x\DTSAPO3Service.exe [206744 2018-11-02] (DTS, Inc. -> ) S4 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [2856632 2020-03-09] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) S4 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-06] (NVIDIA Corporation -> NVIDIA Corporation) S4 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-06] (NVIDIA Corporation -> NVIDIA Corporation) S4 RefreshRateService; C:\Program Files (x86)\ASUSTeK COMPUTER INC\RefreshRateService\RefreshRateService.exe [29696 2019-01-11] () [File not signed] S4 ROG Live Service; C:\Program Files (x86)\ASUS\ROG Live Service\ROGLiveService.exe [2165728 2020-03-16] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) S4 RtkAudioUniversalService; C:\WINDOWS\System32\RtkAudUService64.exe [862192 2019-02-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor) S4 RtkBtManServ; C:\WINDOWS\RtkBtManServ.exe [710600 2019-06-25] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [147392 2019-04-30] (Microsoft Corporation -> Microsoft Corporation) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.10-0\NisSrv.exe [3285864 2020-02-28] (Microsoft Windows Publisher -> Microsoft Corporation) S2 wuauserv; C:\WINDOWS\system32\svchost.exe [53744 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL) S2 wuauserv; C:\WINDOWS\SysWOW64\svchost.exe [45448 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL) S2 AvastWscReporter; "C:\Program Files\AVAST Software\Avast\wsc_proxy.exe" /runassvc /rpcserver [X] S4 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_af6519e6e3300977\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_af6519e6e3300977\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Drivers (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 amdgpio2; C:\WINDOWS\System32\drivers\amdgpio2.sys [34568 2019-04-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc) R3 amdi2c; C:\WINDOWS\System32\drivers\amdi2c.sys [61728 2019-04-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc) R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\u0346262.inf_amd64_c058abf1b241a588\B346039\atikmdag.sys [53496848 2019-08-31] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\u0346262.inf_amd64_c058abf1b241a588\B346039\atikmpag.sys [601616 2019-08-31] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R0 amdpsp; C:\WINDOWS\System32\drivers\amdpsp.sys [138064 2019-06-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc. ) R3 AMDRyzenMasterDriverV13; C:\WINDOWS\System32\drivers\AMDRyzenMasterDriver.sys [71152 2018-11-09] (Advanced Micro Devices Inc. -> Advanced Micro Devices) R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [108504 2019-04-24] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.) R1 ASUSSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_610b7c1b6fee074c\ASUSSystemAnalysis\ASUSSAIO.sys [27256 2020-01-30] (WDKTestCert UX450FDX,132225054109494307 -> ) R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_610b7c1b6fee074c\ASUSOptimization\atkwmiacpi64.sys [46024 2020-01-30] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32680 2019-08-07] (ASUSTek Computer Inc. -> ASUS) S3 iaLPSS2_GPIO2; C:\WINDOWS\System32\drivers\iaLPSS2_GPIO2.sys [123544 2017-10-14] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_af6519e6e3300977\nvlddmkm.sys [23439288 2020-03-19] (NVIDIA Corporation -> NVIDIA Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-12-07] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [75600 2019-12-07] (NVIDIA Corporation -> NVIDIA Corporation) S3 qcusbnet; C:\WINDOWS\System32\drivers\qcusbnet.sys [428600 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated) S3 qcusbser; C:\WINDOWS\system32\DRIVERS\qcusbser.sys [254520 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated) R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1131024 2018-10-23] (Realtek Semiconductor Corp. -> Realtek ) R3 RtkBtFilter; C:\WINDOWS\System32\drivers\RtkBtfilter.sys [775624 2019-06-25] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corporation) R3 RTWlanE; C:\WINDOWS\System32\drivers\rtwlane.sys [11708712 2019-06-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation ) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45960 2020-02-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [376544 2020-02-28] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2020-02-28] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One month (created) =================== (If an entry is included in the fixlist, the file/folder will be moved.) 2020-04-05 11:08 - 2020-04-05 11:10 - 000000000 ___HD C:\$SysReset 2020-04-05 03:18 - 2020-04-05 03:19 - 000000000 ____D C:\FRST 2020-04-05 03:17 - 2020-04-05 03:17 - 000000000 ____D C:\Program Files\Avast Software 2020-04-05 03:06 - 2020-04-05 03:07 - 010899784 _____ (AVAST Software) C:\Users\asus\Desktop\avastclear.exe 2020-04-05 01:37 - 2020-04-05 03:16 - 000000000 ___HD C:\$WINDOWS.~BT 2020-04-04 22:01 - 2020-04-04 22:01 - 000000000 ___HD C:\$Windows.~WS 2020-04-04 21:54 - 2020-04-05 01:34 - 000000000 ____D C:\ESD 2020-04-04 21:38 - 2020-04-04 22:01 - 000000733 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 10 Update Assistant.lnk 2020-04-04 21:38 - 2020-04-04 22:01 - 000000721 _____ C:\Users\asus\Desktop\Windows 10 Update Assistant.lnk 2020-04-04 21:38 - 2020-04-04 21:40 - 019255000 _____ (Microsoft Corporation) C:\Users\asus\Desktop\MediaCreationTool1909.exe 2020-04-04 21:38 - 2020-04-04 21:38 - 006261368 _____ (Microsoft Corporation) C:\Users\asus\Desktop\Windows10Upgrade9252.exe 2020-04-04 21:38 - 2020-04-04 21:38 - 000000000 ____D C:\Windows10Upgrade 2020-04-04 21:04 - 2020-04-04 21:04 - 000001676 _____ C:\Users\asus\Desktop\ckfiles.txt 2020-04-04 21:01 - 2020-04-04 21:01 - 000468480 _____ () C:\Users\asus\Desktop\CKScanner.exe 2020-04-04 20:54 - 2020-04-04 20:55 - 000051647 _____ C:\Users\asus\Desktop\Addition.txt 2020-04-04 20:53 - 2020-04-05 03:19 - 000025119 _____ C:\Users\asus\Desktop\FRST.txt 2020-04-04 20:52 - 2020-04-04 20:52 - 002280448 _____ (Farbar) C:\Users\asus\Desktop\FRST64.exe 2020-04-04 19:14 - 2020-04-04 19:14 - 000003796 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn 2020-04-04 19:14 - 2020-04-04 19:14 - 000003354 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime 2020-04-04 17:43 - 2020-04-04 19:35 - 000000627 _____ C:\Users\asus\Desktop\ESET Online Scanner.lnk 2020-04-04 17:42 - 2020-04-04 17:42 - 000000744 _____ C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk 2020-04-04 17:42 - 2020-04-04 17:42 - 000000000 ____D C:\Users\asus\AppData\Local\ESET 2020-04-04 17:41 - 2020-04-04 17:42 - 014566496 _____ (ESET spol. s r.o.) C:\Users\asus\Desktop\esetonlinescanner.exe 2020-04-04 17:26 - 2020-04-04 17:34 - 095456688 _____ (Microsoft Corporation) C:\Users\asus\Desktop\win10-mpam-feX64.exe 2020-04-04 17:07 - 2020-04-04 17:22 - 095887496 _____ (Microsoft Corporation) C:\Users\asus\Desktop\mpam-fe.exe 2020-04-04 17:06 - 2020-04-04 17:06 - 000000000 _____ C:\WINDOWS\system32\Update-MpSignature 2020-04-04 16:54 - 2020-04-04 16:55 - 003480040 _____ (McAfee, Inc.) C:\Users\asus\Desktop\MCPR.exe 2020-04-03 14:16 - 2020-04-03 16:19 - 007346636 _____ C:\Users\asus\Desktop\stupa.blend 2020-04-03 14:16 - 2020-04-03 14:54 - 002409088 _____ C:\Users\asus\Desktop\stupa.blend1 2020-04-02 17:50 - 2020-03-18 15:24 - 000039824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll 2020-04-02 17:47 - 2020-03-19 08:07 - 004196160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2020-04-02 17:47 - 2020-03-19 05:11 - 001729232 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2020-04-02 17:47 - 2020-03-19 05:11 - 001729232 _____ C:\WINDOWS\system32\vulkaninfo.exe 2020-04-02 17:47 - 2020-03-19 05:11 - 001329360 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2020-04-02 17:47 - 2020-03-19 05:11 - 001329360 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2020-04-02 17:47 - 2020-03-19 05:11 - 001078992 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2020-04-02 17:47 - 2020-03-19 05:11 - 001078992 _____ C:\WINDOWS\system32\vulkan-1.dll 2020-04-02 17:47 - 2020-03-19 05:11 - 000937680 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2020-04-02 17:47 - 2020-03-19 05:11 - 000937680 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2020-04-02 17:47 - 2020-03-19 05:11 - 000450464 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2020-04-02 17:47 - 2020-03-19 05:11 - 000348048 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2020-04-02 17:47 - 2020-03-19 05:10 - 011944864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll 2020-04-02 17:47 - 2020-03-19 05:10 - 010285472 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll 2020-04-02 17:47 - 2020-03-19 05:09 - 002073200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2020-04-02 17:47 - 2020-03-19 05:09 - 001565136 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2020-04-02 17:47 - 2020-03-19 05:09 - 001481144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2020-04-02 17:47 - 2020-03-19 05:09 - 001351776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll 2020-04-02 17:47 - 2020-03-19 05:09 - 001142384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2020-04-02 17:47 - 2020-03-19 05:09 - 001022560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll 2020-04-02 17:47 - 2020-03-19 05:09 - 000817264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll 2020-04-02 17:47 - 2020-03-19 05:09 - 000680048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll 2020-04-02 17:47 - 2020-03-19 05:09 - 000676240 _____ C:\WINDOWS\system32\nvofapi64.dll 2020-04-02 17:47 - 2020-03-19 05:09 - 000573024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe 2020-04-02 17:47 - 2020-03-19 05:09 - 000546928 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll 2020-04-02 17:47 - 2020-03-19 05:09 - 000544144 _____ C:\WINDOWS\SysWOW64\nvofapi.dll 2020-04-02 17:47 - 2020-03-19 05:08 - 017601120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2020-04-02 17:47 - 2020-03-19 05:08 - 015157664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2020-04-02 17:47 - 2020-03-19 05:08 - 005856864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2020-04-02 17:47 - 2020-03-19 05:08 - 005158512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2020-04-02 17:47 - 2020-03-19 05:08 - 001049696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll 2020-04-02 17:47 - 2020-03-19 05:08 - 000849848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe 2020-04-02 17:47 - 2020-03-19 05:08 - 000811632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2020-04-02 17:47 - 2020-03-19 05:08 - 000655472 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2020-04-02 17:47 - 2020-03-19 05:08 - 000445024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe 2020-04-02 17:47 - 2020-03-18 15:24 - 000111058 _____ C:\WINDOWS\system32\nvidia-smi.1.pdf 2020-04-02 17:47 - 2020-03-18 15:24 - 000077314 _____ C:\WINDOWS\system32\nvinfo.pb 2020-04-02 17:02 - 2020-04-04 08:24 - 4123525120 _____ C:\Users\asus\Downloads\DOOM Eternal Deluxe Edition-DRMFREE [2020] RePack.iso 2020-03-31 17:10 - 2020-04-02 20:38 - 026051000 _____ C:\Users\asus\Desktop\doughnut.blend 2020-03-31 17:10 - 2020-04-02 20:37 - 026066016 _____ C:\Users\asus\Desktop\doughnut.blend1 2020-03-31 15:59 - 2020-03-31 15:59 - 000000000 ____D C:\Users\asus\AppData\Roaming\NVIDIA 2020-03-31 11:45 - 2020-03-31 11:45 - 000000000 ____D C:\Users\asus\AppData\Roaming\Blender Foundation 2020-03-31 11:44 - 2020-03-31 11:44 - 000000000 ____D C:\Users\asus\.thumbnails 2020-03-30 16:43 - 2020-03-30 16:43 - 000001194 _____ C:\Users\asus\Desktop\blender.lnk 2020-03-30 16:43 - 2020-03-30 16:43 - 000000000 ____D C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blender 2020-03-30 16:43 - 2020-03-30 16:43 - 000000000 ____D C:\Program Files\Blender Foundation 2020-03-29 23:27 - 2020-04-03 11:36 - 000000000 ____D C:\Users\asus\AppData\Roaming\discord 2020-03-29 23:27 - 2020-03-29 23:27 - 000000000 ____D C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2020-03-29 23:27 - 2020-03-29 23:27 - 000000000 ____D C:\Users\asus\AppData\Local\SquirrelTemp 2020-03-29 23:27 - 2020-03-29 23:27 - 000000000 ____D C:\Users\asus\AppData\Local\Discord 2020-03-29 22:45 - 2020-03-30 19:08 - 000000000 ____D C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2020-03-29 22:29 - 2020-03-29 22:30 - 000000000 ____D C:\Users\asus\AppData\Local\Steam 2020-03-29 21:43 - 2020-03-29 21:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2020-03-28 09:23 - 2020-03-29 21:15 - 000000000 ____D C:\Users\asus\Downloads\The Devil's Advocate (1997) [1080p] 2020-03-27 10:02 - 2020-03-27 10:15 - 000000000 ____D C:\Users\asus\Downloads\Blue Is The Warmest Color (2013) [BluRay] [1080p] [YTS.AM] 2020-03-27 10:02 - 2020-03-27 10:02 - 000000000 ____D C:\Users\asus\Downloads\Raw (2016) [BluRay] [1080p] [YTS.AM] 2020-03-27 10:00 - 2020-03-27 10:20 - 000000000 ____D C:\Users\asus\Downloads\Amélie (2001) [BluRay] [1080p] [YTS.AM] 2020-03-27 02:13 - 2020-03-27 02:20 - 000000000 ____D C:\Users\asus\Downloads\Se7en ( 1995 ) 2020-03-27 00:15 - 2020-03-27 01:03 - 000000000 ____D C:\Users\asus\Downloads\Limitless (2011) 1080p 2020-03-26 16:54 - 2020-04-04 16:41 - 000000000 ____D C:\Users\asus\AppData\Local\ElevatedDiagnostics 2020-03-25 20:54 - 2020-03-27 03:13 - 000000000 ____D C:\Users\asus\Downloads\Oldboy (2003) [BluRay] [1080p] [YTS.AM] 2020-03-25 20:48 - 2020-03-25 23:59 - 000000000 ____D C:\Users\asus\Downloads\District 9 (2009) [1080p] 2020-03-25 20:45 - 2020-03-25 20:47 - 000000000 ____D C:\Users\asus\Downloads\Her (2013) [1080p] 2020-03-25 12:09 - 2020-03-25 12:09 - 000000000 ____D C:\Users\asus\Documents\KoeiTecmo 2020-03-23 18:13 - 2019-09-22 09:52 - 000000000 ____D C:\Users\asus\Desktop\qbt-theme-master 2020-03-23 14:18 - 2020-03-24 10:55 - 000000000 ____D C:\Users\asus\Downloads\The Wolf of Wall Street (2013) [1080p] 2020-03-23 14:17 - 2020-03-23 14:17 - 000000000 ____D C:\Users\asus\Downloads\The Big Short (2015) [1080p] [YTS.AG] 2020-03-18 18:33 - 2020-04-03 20:33 - 000000000 ____D C:\Users\asus\AppData\Roaming\StardewValley 2020-03-18 18:32 - 2020-03-25 20:28 - 000000000 ____D C:\Users\asus\Downloads\Stardew.Valley.v1.4.5 2020-03-15 21:24 - 2020-04-02 22:10 - 000000000 ____D C:\Users\asus\Documents\Sound recordings 2020-03-15 18:57 - 2020-03-15 18:58 - 000000000 ____D C:\Users\asus\Desktop\THE BISH 2 2020-03-15 18:57 - 2020-03-15 18:57 - 000000000 ____D C:\Users\asus\Desktop\THE BISH 2020-03-15 09:34 - 2020-03-15 09:34 - 000000024 _____ C:\WINDOWS\system32\WinUpdates105.dat 2020-03-15 09:34 - 2020-03-15 09:34 - 000000003 _____ C:\WINDOWS\system32\wdbcache.tmp 2020-03-15 09:34 - 2020-03-08 13:24 - 000024512 _____ C:\WINDOWS\system32\7B296FC0-376B-497d-B013-58F4D9633A22-5P-1.B5841A4C-A289-439d-8115-50AB69CD450 2020-03-14 10:04 - 2020-03-14 10:04 - 000000000 ____D C:\Users\asus\Documents\Rockstar Games 2020-03-14 10:04 - 2020-03-14 10:04 - 000000000 ____D C:\Users\asus\AppData\Local\Rockstar Games 2020-03-14 10:04 - 2020-03-14 10:04 - 000000000 ____D C:\ProgramData\Steam 2020-03-14 10:04 - 2020-03-14 10:04 - 000000000 ____D C:\ProgramData\Socialclub 2020-03-14 00:24 - 2020-03-14 00:24 - 001398584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2020-03-14 00:24 - 2020-03-14 00:24 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2020-03-13 13:53 - 2020-03-13 14:29 - 000000000 ____D C:\Users\asus\Documents\GreedFall 2020-03-12 00:34 - 2020-03-12 00:34 - 001283600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2020-03-12 00:34 - 2020-03-12 00:34 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe 2020-03-12 00:34 - 2020-03-12 00:34 - 000210744 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll 2020-03-12 00:34 - 2020-03-12 00:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin 2020-03-12 00:34 - 2020-03-12 00:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin 2020-03-12 00:34 - 2020-03-12 00:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin 2020-03-12 00:34 - 2020-03-12 00:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin 2020-03-12 00:34 - 2020-03-12 00:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin 2020-03-12 00:34 - 2020-03-12 00:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin 2020-03-12 00:34 - 2020-03-12 00:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin 2020-03-12 00:34 - 2020-03-12 00:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin 2020-03-12 00:34 - 2020-03-12 00:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin 2020-03-12 00:34 - 2020-03-12 00:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin 2020-03-12 00:34 - 2020-03-12 00:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin 2020-03-12 00:34 - 2020-03-12 00:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin 2020-03-12 00:28 - 2020-02-11 10:33 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe 2020-03-12 00:28 - 2020-02-11 10:22 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2020-03-10 17:49 - 2020-03-10 17:53 - 000000000 ____D C:\Users\asus\flutter_local_notifications 2020-03-10 11:47 - 2020-03-10 11:47 - 000165559 _____ C:\Users\asus\Downloads\Appendix.zip 2020-03-08 13:24 - 2020-03-08 13:24 - 000024512 _____ C:\WINDOWS\system32\7B296FC0-376B-497d-B013-58F4D9633A22-5P-1.B5841A4C-A289-439d-8115-50AB69CD450B 2020-03-08 13:24 - 2020-03-08 13:24 - 000000000 _____ C:\WINDOWS\system32\setup4.2.6.tmp ==================== One month (modified) ================== (If an entry is included in the fixlist, the file/folder will be moved.) 2020-04-05 03:18 - 2019-03-19 10:37 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2020-04-05 03:17 - 2020-02-13 19:29 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job 2020-04-05 03:17 - 2020-02-13 14:18 - 000000000 ____D C:\ProgramData\AVAST Software 2020-04-05 03:17 - 2019-12-24 11:39 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2020-04-05 03:17 - 2019-03-19 10:22 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2020-04-05 03:16 - 2019-12-24 11:38 - 000001908 _____ C:\WINDOWS\diagwrn.xml 2020-04-05 03:16 - 2019-12-24 11:38 - 000001908 _____ C:\WINDOWS\diagerr.xml 2020-04-05 03:16 - 2019-12-24 10:06 - 000000000 ___DC C:\WINDOWS\Panther 2020-04-05 02:49 - 2019-12-24 11:31 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2020-04-04 22:01 - 2019-12-24 11:40 - 000840852 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2020-04-04 22:01 - 2019-03-19 10:35 - 000000000 ____D C:\WINDOWS\INF 2020-04-04 21:59 - 2019-09-17 18:21 - 000000000 ____D C:\ProgramData\NVIDIA 2020-04-04 21:52 - 2019-12-21 11:54 - 000000000 ____D C:\Users\asus\AppData\Local\PlaceholderTileLogoFolder 2020-04-04 20:49 - 2020-02-08 20:28 - 000000000 ____D C:\Program Files (x86)\Adobe 2020-04-04 20:49 - 2019-12-21 11:52 - 000000000 ____D C:\Users\asus\AppData\Roaming\Adobe 2020-04-04 20:22 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\CbsTemp 2020-04-04 19:31 - 2019-12-21 11:52 - 000000000 ____D C:\Users\asus\AppData\Local\D3DSCache 2020-04-04 19:15 - 2020-01-07 17:09 - 000000000 ____D C:\Users\asus\AppData\Local\CrashDumps 2020-04-04 16:12 - 2019-12-24 11:31 - 000443928 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2020-04-04 16:12 - 2019-03-19 10:37 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2020-04-04 16:12 - 2019-03-19 10:37 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2020-04-04 16:12 - 2019-03-19 10:37 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2020-04-04 16:12 - 2019-03-19 10:37 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2020-04-04 16:12 - 2019-03-19 10:37 - 000000000 ____D C:\WINDOWS\SystemResources 2020-04-04 16:12 - 2019-03-19 10:37 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2020-04-04 16:12 - 2019-03-19 10:37 - 000000000 ____D C:\WINDOWS\system32\setup 2020-04-04 16:12 - 2019-03-19 10:37 - 000000000 ____D C:\WINDOWS\system32\oobe 2020-04-04 16:12 - 2019-03-19 10:37 - 000000000 ____D C:\WINDOWS\system32\Dism 2020-04-04 16:12 - 2019-03-19 10:37 - 000000000 ____D C:\WINDOWS\ShellExperiences 2020-04-04 16:12 - 2019-03-19 10:37 - 000000000 ____D C:\WINDOWS\bcastdvr 2020-04-04 16:12 - 2019-03-19 10:37 - 000000000 ____D C:\Program Files\Windows Defender 2020-04-04 16:12 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\servicing 2020-04-04 15:45 - 2019-12-24 11:39 - 000002876 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 2020-04-04 15:18 - 2019-12-21 23:03 - 000000000 ____D C:\Users\asus\AppData\Roaming\vlc 2020-04-04 15:14 - 2019-12-20 09:25 - 000000000 ___RD C:\Users\asus\OneDrive 2020-04-04 11:58 - 2019-12-21 18:20 - 000018355 _____ C:\ProgramData\NVDisplay.ContainerLocalSystem.log_backup1 2020-04-04 11:58 - 2019-12-21 18:20 - 000017429 _____ C:\ProgramData\NVDisplayContainerWatchdog.log_backup1 2020-04-04 11:58 - 2019-12-21 18:20 - 000011622 _____ C:\ProgramData\DisplaySessionContainer1.log_backup1 2020-04-04 10:54 - 2020-02-23 15:16 - 000000000 ____D C:\Users\asus\Desktop\Games 2020-04-04 05:12 - 2019-12-29 10:24 - 000002420 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk 2020-04-04 01:56 - 2020-02-08 20:30 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2020-04-04 01:56 - 2020-02-08 20:30 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData 2020-04-03 18:04 - 2019-12-28 15:11 - 000000000 ____D C:\Users\asus\Documents\The Witcher 3 2020-04-03 11:34 - 2019-12-22 20:23 - 000001206 _____ C:\ProgramData\NvcDispCorePlugin.log_backup1 2020-04-02 19:27 - 2019-12-22 18:23 - 000000000 ____D C:\Users\asus\AppData\Local\NVIDIA 2020-03-31 11:44 - 2019-12-24 11:34 - 000000000 ____D C:\Users\asus 2020-03-26 13:07 - 2019-03-19 10:37 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2020-03-26 07:58 - 2019-12-21 11:44 - 000000000 ____D C:\ProgramData\ASUS 2020-03-26 07:55 - 2019-09-17 18:33 - 000000000 ____D C:\Program Files (x86)\LightingService 2020-03-26 07:55 - 2019-09-17 18:33 - 000000000 ____D C:\Program Files (x86)\ASUS 2020-03-26 07:55 - 2019-09-17 18:22 - 000000000 ____D C:\ProgramData\Package Cache 2020-03-25 12:09 - 2019-12-21 11:52 - 000000000 ____D C:\Users\asus\AppData\Local\NVIDIA Corporation 2020-03-25 02:27 - 2020-02-08 20:30 - 000003518 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0 2020-03-19 08:07 - 2019-12-22 20:17 - 004927048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2020-03-18 20:27 - 2019-12-24 11:39 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2987826816-1455516208-1627320750-1001 2020-03-18 20:27 - 2019-12-24 11:34 - 000002366 _____ C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2020-03-18 15:24 - 2019-09-20 03:55 - 000222112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys 2020-03-16 11:46 - 2019-12-21 12:12 - 000000000 ____D C:\Users\asus\AppData\Roaming\Code 2020-03-15 21:37 - 2019-03-19 10:37 - 000000000 ____D C:\WINDOWS\AppReadiness 2020-03-14 10:02 - 2020-02-09 10:17 - 000000000 ____D C:\WINDOWS\SysWOW64\directx 2020-03-13 23:05 - 2019-03-19 10:37 - 000000000 ___HD C:\Program Files\WindowsApps 2020-03-13 22:57 - 2019-12-22 12:06 - 000018479 _____ C:\ProgramData\DisplaySessionContainer4.log_backup1 2020-03-13 15:11 - 2020-03-04 16:35 - 000000000 ____D C:\Users\asus\Desktop\Project 2020-03-12 22:48 - 2019-12-21 20:06 - 000014194 _____ C:\ProgramData\DisplaySessionContainer2.log_backup1 2020-03-12 01:09 - 2019-12-20 09:23 - 000000000 ___RD C:\Users\asus\3D Objects 2020-03-12 01:09 - 2019-09-17 18:20 - 000000000 __RHD C:\Users\Public\AccountPictures 2020-03-12 00:39 - 2019-12-21 14:28 - 000000000 ____D C:\WINDOWS\system32\MRT 2020-03-12 00:37 - 2019-12-21 14:28 - 121542864 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2020-03-11 13:33 - 2020-01-10 09:12 - 000013123 _____ C:\ProgramData\DisplaySessionContainer10.log_backup1 2020-03-11 11:58 - 2020-01-03 16:27 - 000013415 _____ C:\ProgramData\DisplaySessionContainer9.log_backup1 2020-03-10 22:33 - 2019-12-29 22:55 - 000017680 _____ C:\ProgramData\DisplaySessionContainer8.log_backup1 2020-03-10 10:01 - 2019-12-29 19:13 - 000013873 _____ C:\ProgramData\DisplaySessionContainer7.log_backup1 2020-03-10 09:18 - 2019-12-20 18:05 - 000000000 ____D C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Visual Studio Code 2020-03-10 04:31 - 2019-12-29 06:04 - 000017957 _____ C:\ProgramData\DisplaySessionContainer6.log_backup1 2020-03-09 08:58 - 2019-12-27 15:32 - 000017248 _____ C:\ProgramData\DisplaySessionContainer5.log_backup1 2020-03-07 01:16 - 2019-12-22 08:41 - 000012138 _____ C:\ProgramData\DisplaySessionContainer3.log_backup1 ==================== Files in the root of some directories ======== 2020-02-23 15:23 - 2020-02-23 15:28 - 000000044 _____ () C:\Users\asus\AppData\Roaming\.devtools 2019-12-21 12:09 - 2019-12-21 21:50 - 000000078 _____ () C:\Users\asus\AppData\Roaming\.flutter 2019-12-21 12:09 - 2019-12-21 12:09 - 000000041 _____ () C:\Users\asus\AppData\Roaming\.flutter_tool_state 2020-02-08 20:28 - 2020-02-08 20:28 - 000000410 _____ () C:\Users\asus\AppData\Local\oobelibMkey.log ==================== SigCheck ============================ (There is no automatic fix for files that do not pass verification.) ==================== End of FRST.txt ========================