germaebook.blogg.se - Asus live update deleted but still shows up

ASUS LIVE UPDATE DELETED BUT STILL SHOWS UP CODE
ASUS LIVE UPDATE DELETED BUT STILL SHOWS UP DOWNLOAD

GetActivatedTime - It's an empty datetime GetActivatedTime - GPNV_Get_ActivatedTime(.) function return %d SetRandomUUID - fail to load FWVariableWin32.dll SetRandomUUID - fail to get GPNV_Set_RandomUUID(.) function address

SetRandomUUID - GPNV_Set_RandomUUID(.) function return %d GetRandomUUID - fail to load FWVariableWin32.dll GetRandomUUID - fail to get GPNV_Get_RandomUUID(.) function address GetRandomUUID - GPNV_Get_RandomUUID(.) function return %d SendCompareStatusRequest - server response (StatusCode: %d, StatusMessage: %s, IpGdprFlag: %s) SendCompareStatusRequest - response format is invalid (parameter error) SendCompareStatusRequest - response format is invalid (discarded) SendActivationRequest - Find matched item(HideKey: %s, SoIndex: %d, GdprFlag: %s, ActFlag: %s) SendActivationRequest - Check item(HideKey: %s, SoIndex: %d, GdprFlag: %s, ActFlag: %s) SendActivationRequest - server response (StatusCode: %d, StatusMessage: %s, Date: %s, CheckDay: %d) SendActivationRequest - response format is invalid (parameter error)

SendActivationRequest - response format is invalid (discarded) SendRequest - fail to decrypt the response SendRequest - fail to convert unicode response to ansi response SendRequest - unable to connect to server SendRequest - fail to convert ansi playload string to unicode payload string SendRequest - fail to convert ansi url string to unicode url string SendActivateRequestForNonGDPRCase - server response: %ws SendActivateRequestForNonGDPRCase - unable to connect to server SendActivateRequestForNonGDPRCase - fail to convert ansi url string to unicode url string SendActivateRequestForNonGDPRCase - fail to encrypt UUID SendActivateRequestForNonGDPRCase - fail to encrypt MAC2 SendActivateRequestForNonGDPRCase - fail to encrypt MAC1 SendActivateRequestForNonGDPRCase - SSN: SendActivateRequestForNonGDPRCase - fail to encrypt SSN SendActivateRequestForNonGDPRCase(%s, %s) I'm not getting any registry key matches either. Looks like one or more api end-points, although the service on my machine never hits the network. More strings from the DevActSvc.exe file.

But I didn't see the service in procmon/procexp hitting any files so it makes me wonder if it's working as intended. Some suggest they are updating the data privacy terms in their other services to deal with GDPR/COPPA. There have been no new outbound network connections. However, the system is configured to not allow interactive services. The Device Activation Service service is marked as an interactive service. So I'm not sure I was running it correctly.

Directory of C:\Program Files (x86)\ASUS\ASUS Device Activation.

msiexec.exe%%/uninstall \DisplayVersion pub/ASUS/GamingDT/AppforWin10/AsusDeviceActivation/DeviceActivation_V1.0.4.0.zip pub/ASUS/GamingDT/G11CD/Command_Update_2_05_05.zip Īccording to the General Data Protection Regulation (GDPR) compliance, ASUS would update ASUS Device Activation to you. Program will be closed for a time to update itself. According to the General Data Protection Regulation (GDPR) compliance, ASUS would update ASUS Device Activation to you.Īnway, the G11CD.idx file is an XML file with the following content, you may have something similar:

Also maybe it's just whatever this is about.

Y'all might check to see you have a pending BIOS update for Spectre/Meltdown or perhaps other drivers/fixes for your particular devices.

Hope the update servers haven't been compromised. There are no release notes other than "update for kabylake, oculus, improve system stability".

Hmm, looking here: I see that there are a couple of BIOS updates released in May for the G11CD.

They're invalid, or perhaps they're encoded/encrypted or otherwise missing parts.

Directory of C:\Program Files (x86)\ASUS\ASUS Manager\UpdateTemp.

Looking around a bit more, I see this folder was updated a couple days ago: Although it might just be an attempted GDPR policy update/track covering of some sort. I was hoping this would be a Spectre/Meltdown BIOS update for my old G11CD mini-tower. DevActSvc.exe.Īlso found this.Not an answer, but another place to watch.

ASUS LIVE UPDATE DELETED BUT STILL SHOWS UP CODE

The binaries have Asustek code signing certs. I've extracted the cab/binaries and fed them to VirusTotal with no hits.

ASUS LIVE UPDATE DELETED BUT STILL SHOWS UP DOWNLOAD

I don't like that the download site isn't secure and there's no other info. The first two are old, the last "DeviceActivation." has a setup.exe dated 8 and a data folder with 409.msi dated 5. I added that and was able to download these files. idx (xml) file below, without the leading / info. Clean as is, but they could still just do bad things without using exploit I've extracted the cab/bins and run them through VT. The MSI appears to contain an ASUStek code-signing cert.