Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

kontrola logu / pre Rudy

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
5manager5
Návštěvník
Návštěvník
Příspěvky: 267
Registrován: 10 led 2009 21:21

kontrola logu / pre Rudy

#1 Příspěvek od 5manager5 »

Logy sú urobené až po kontrole ADW cleanera, ktorý nič nenašiel

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-09-2021 02
Ran by saullerist (administrator) on DESKTOP-3SMP07F (TOSHIBA Satellite L650) (30-09-2021 16:49:58)
Running from C:\Users\saullerist\Downloads
Loaded Profiles: saullerist
Platform: Windows 10 Home Version Dev 21390.1000 (X64) Language: Slovenčina (Slovensko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Dynabook Inc. -> Dynabook Inc.) C:\Windows\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_f06ed65d98eceea8\DSDFunctionKeyCtlService.exe <2>
(Dynabook Inc. -> Dynabook Inc.) C:\Windows\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_f06ed65d98eceea8\dynabookSystemService.exe
(Dynabook Inc. -> Dynabook Inc.) C:\Windows\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_f06ed65d98eceea8\RMService.exe
(Google LLC -> ) C:\Program Files\Google\Drive File Stream\50.0.11.0\crashpad_handler.exe <2>
(Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\50.0.11.0\GoogleDriveFS.exe <7>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12107.1001.15.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> ) C:\Windows\System32\AggregatorHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.21390.1000_none_58f0e9ab64f38697\TiWorker.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.4-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.4-0\NisSrv.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Scans\MsMpEngCP.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\50.0.11.0\GoogleDriveFS.exe [53381464 2021-08-09] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\50.0.11.0\GoogleDriveFS.exe [53381464 2021-08-09] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\50.0.11.0\GoogleDriveFS.exe [53381464 2021-08-09] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\Run: [MicrosoftEdgeAutoLaunch_E9148071064FDAAA5D19B03EFBB79618] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\MountPoints2: {14f1611b-ca97-11eb-bc9d-00266c5324d3} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\50.0.11.0\GoogleDriveFS.exe [53381464 2021-08-09] (Google LLC -> Google, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
HKLM\Software\...\Winlogon\GPExtensions: [{8472C2C4-6B70-4301-A20D-A6CEA5F82B7E}] -> C:\WINDOWS\System32\StartTileData.dll [2021-05-22] (Microsoft Windows -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {12469F3F-5031-4F7B-8132-E18178931DA8} - System32\Tasks\Microsoft\Windows\Shell\UpdateAgentTask_SetCBSEndOfLife => C:\WINDOWS\System32\ShellUpdateAgentTask.exe [70656 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
Task: {379DF88D-08EE-4275-9075-B4D700B3AAB3} - System32\Tasks\Microsoft\Windows\Printing\PrinterCleanupTask => {C56F065E-DE49-4E42-BE7C-305C45609D25} C:\Windows\System32\PrinterCleanupTask.dll [118784 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
Task: {3B945F77-EE4A-4117-89AF-DDAA236F2199} - System32\Tasks\Microsoft\Windows\AppListBackup\Backup => {E0DCC2CC-3354-45F2-8914-519E07809082} C:\WINDOWS\system32\AppListBackupLauncher.dll [110592 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
Task: {5A7B58D1-CE41-4C5B-B700-D3C6E5FA97A7} - System32\Tasks\Microsoft\Windows\Shell\ThemesSyncedImageDownload => {79F8E185-4E45-4B74-8182-02AA430661E4} C:\Windows\System32\Themes.SsfDownload.ScheduledTask.dll [200704 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
Task: {6421D9B9-C0DC-407A-A6CF-75D420E93DCD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.4-0\MpCmdRun.exe [884544 2021-09-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6C0D9967-CD8A-4636-806A-C46992D7C871} - System32\Tasks\Microsoft\Windows\Shell\UpdateAgentTask_AcquireFOD => C:\WINDOWS\System32\ShellUpdateAgentTask.exe [70656 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
Task: {6CCBF424-E5AA-43D1-8288-B15995B8BE36} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.4-0\MpCmdRun.exe [884544 2021-09-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {71509BA9-E999-493C-8018-9E4520B1DCB5} - System32\Tasks\Microsoft\Windows\Shell\UpdateAgentTask_RemoveFOD => C:\WINDOWS\System32\ShellUpdateAgentTask.exe [70656 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
Task: {7AF922E2-481A-48DC-8C9B-692F6D73701F} - System32\Tasks\Microsoft\Windows\Management\Provisioning\MdmDiagnosticsCleanup => C:\WINDOWS\system32\MdmDiagnosticsTool.exe [90112 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
Task: {83CE6C76-3F28-489E-A7C6-794989F68298} - System32\Tasks\S-1-5-21-1796023744-1759536030-3900380101-1002\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe
Task: {8EA618F5-29D9-4485-85C0-49A2C95463C7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.4-0\MpCmdRun.exe [884544 2021-09-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B40F8511-B9B4-4F7B-9312-FC6DAA6B9F00} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {B91219DC-34E0-47A2-B494-6279369FA6B4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {BFB7A246-72BE-40AD-A724-9BE219683B69} - System32\Tasks\microsoft\windows\capabilityaccessmanager\maintenancetasks => %windir%\system32\rundll32.exe %windir%\system32\CapabilityAccessManager.dll,CapabilityAccessManagerDoStoreMaintenance
Task: {C5708D88-E25B-426C-A468-69F68E7A2CE6} - System32\Tasks\Microsoft\Windows\Kernel\La57Cleanup => C:\WINDOWS\system32\la57setup.exe [36864 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
Task: {DCB6B88A-7EDE-48DD-80A7-832385E1711A} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe
Task: {FC3FFFB2-C10E-4A94-8716-98ADE9FC8C3B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.4-0\MpCmdRun.exe [884544 2021-09-24] (Microsoft Windows Publisher -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 07 C:\WINDOWS\SysWOW64\nlansp_c.dll [83456 2021-05-22] (Microsoft Windows -> Microsoft Corporation) ATTENTION: LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5-x64 07 C:\Windows\system32\nlansp_c.dll [126976 2021-05-22] (Microsoft Windows -> Microsoft Corporation) ATTENTION: LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{5c6459f7-5caf-472f-850f-576031683b95}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{5c6459f7-5caf-472f-850f-576031683b95}: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{6246c65d-bac1-4762-89a6-06049b6e07d8}: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{6f775dc0-2278-405d-8f3d-3e457ae63af2}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9dfcf0d8-e52f-4e05-8126-662ce4070db5}: [DhcpNameServer] 192.168.1.1

Edge:
=======
DownloadDir: C:\Users\saullerist\Downloads
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\saullerist\AppData\Local\Microsoft\Edge\User Data\Default [2021-09-30]
Edge DownloadDir: Default -> C:\Users\saullerist\Downloads
Edge HomePage: Default -> hxxp://www.google.sk/
Edge StartupUrls: Default -> "hxxp://www.google.sk/"
Edge HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [llbjbkhnmlidjebalopleeepgdfgcpec] - C:\Program Files (x86)\Internet Download Manager\IDMEdgeExt.crx <not found>

FireFox:
========
FF DefaultProfile: 7922d3ji.default
FF ProfilePath: C:\Users\saullerist\AppData\Roaming\Mozilla\Firefox\Profiles\7922d3ji.default [2021-06-02]
FF ProfilePath: C:\Users\saullerist\AppData\Roaming\Mozilla\Firefox\Profiles\4qhn5rad.default-release [2021-08-31]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 DSDFunctionKeyCtlService; C:\WINDOWS\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_f06ed65d98eceea8\DSDFunctionKeyCtlService.exe [625776 2021-05-26] (Dynabook Inc. -> Dynabook Inc.)
S3 FrameServerMonitor; C:\WINDOWS\system32\FrameServerMonitor.dll [319488 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
S3 McpManagementService; C:\WINDOWS\System32\McpManagementService.dll [319488 2021-06-08] (Microsoft Windows -> Microsoft Corporation)
S3 NPSMSvc; C:\WINDOWS\System32\npsm.dll [233472 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
S3 NPSMSvc; C:\WINDOWS\SysWOW64\npsm.dll [163840 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
S3 P9RdrService; C:\WINDOWS\system32\p9rdrservice.dll [122880 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
R2 TSDSettingService; C:\WINDOWS\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_f06ed65d98eceea8\dynabookSystemService.exe [44773040 2021-05-26] (Dynabook Inc. -> Dynabook Inc.)
S2 TSDTabletControlService; C:\WINDOWS\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_f06ed65d98eceea8\TOSTABSYSSVC.exe [296272 2021-05-26] (Dynabook Inc. -> Dynabook Inc.)
R2 TSDWirelessLEDCtlService; C:\WINDOWS\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_f06ed65d98eceea8\RMService.exe [446248 2021-05-26] (Dynabook Inc. -> Dynabook Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.4-0\NisSrv.exe [2855480 2021-09-24] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.4-0\MsMpEng.exe [128376 2021-09-24] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 a016bus; C:\WINDOWS\System32\drivers\a016bus.sys [109096 2008-01-18] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 a016mgmt; C:\WINDOWS\System32\drivers\a016mgmt.sys [130600 2008-01-18] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 a016obex; C:\WINDOWS\System32\drivers\a016obex.sys [125480 2008-01-18] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S0 ebdrv; C:\WINDOWS\System32\drivers\evbda.sys [3436320 2021-05-22] (Microsoft Windows -> Marvell Semiconductor Inc.)
S0 ebdrv0; C:\WINDOWS\System32\drivers\evbd0a.sys [3418912 2021-05-22] (Microsoft Windows -> QLogic Corporation)
S3 ExecutionContext; C:\WINDOWS\System32\Drivers\ExecutionContext.sys [61440 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
R3 FwLnk; C:\WINDOWS\System32\drivers\FwLnk.sys [9216 2009-07-07] (Microsoft Windows Hardware Compatibility Publisher -> TOSHIBA Corporation)
R1 googledrivefs3514; C:\WINDOWS\System32\DRIVERS\googledrivefs3514.sys [389144 2021-06-25] (Google LLC -> Google, Inc.)
R1 googledrivefs3525; C:\WINDOWS\System32\DRIVERS\googledrivefs3525.sys [389640 2021-08-09] (Google LLC -> Google, Inc.)
S3 HidSpiCx; C:\WINDOWS\System32\drivers\HidSpiCx.sys [118784 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
S3 HWHandSet; C:\WINDOWS\System32\drivers\hw_quusbmdm.sys [226560 2018-12-12] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hw_usbdev; C:\WINDOWS\System32\drivers\hw_usbdev.sys [116864 2018-12-12] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R0 IntelPMT; C:\WINDOWS\System32\drivers\IntelPMT.sys [69952 2021-05-22] (Microsoft Windows Hardware Abstraction Layer Publisher -> Microsoft Corporation)
S0 megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [96032 2021-05-22] (Microsoft Windows -> Broadcom Inc)
S0 mpi3drvi; C:\WINDOWS\System32\drivers\mpi3drvi.sys [83232 2021-05-22] (Microsoft Windows -> Broadcom Limited)
S3 NDKPerf; C:\WINDOWS\System32\drivers\NDKPerf.sys [74016 2021-05-22] (Microsoft Windows -> )
S0 nvmedisk; C:\WINDOWS\System32\drivers\nvmedisk.sys [78112 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
S3 s0016bus; C:\WINDOWS\System32\drivers\s0016bus.sys [115240 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0016mgmt; C:\WINDOWS\System32\drivers\s0016mgmt.sys [137256 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0016obex; C:\WINDOWS\System32\drivers\s0016obex.sys [136744 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0016unic; C:\WINDOWS\System32\drivers\s0016unic.sys [151592 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0017bus; C:\WINDOWS\System32\drivers\s0017bus.sys [113704 2008-10-21] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0017mgmt; C:\WINDOWS\System32\drivers\s0017mgmt.sys [133160 2008-10-21] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0017obex; C:\WINDOWS\System32\drivers\s0017obex.sys [128552 2008-10-21] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0017unic; C:\WINDOWS\System32\drivers\s0017unic.sys [145960 2008-10-21] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1018bus; C:\WINDOWS\System32\drivers\s1018bus.sys [113704 2009-03-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1018mgmt; C:\WINDOWS\System32\drivers\s1018mgmt.sys [133160 2009-03-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1018obex; C:\WINDOWS\System32\drivers\s1018obex.sys [128552 2009-03-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1018unic; C:\WINDOWS\System32\drivers\s1018unic.sys [146472 2009-03-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1029bus; C:\WINDOWS\System32\drivers\s1029bus.sys [116264 2009-05-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1029mgmt; C:\WINDOWS\System32\drivers\s1029mgmt.sys [139304 2009-05-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1029obex; C:\WINDOWS\System32\drivers\s1029obex.sys [135208 2009-05-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1029unic; C:\WINDOWS\System32\drivers\s1029unic.sys [151592 2009-05-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1039mgmt; C:\WINDOWS\System32\drivers\s1039mgmt.sys [141424 2010-03-15] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1039obex; C:\WINDOWS\System32\drivers\s1039obex.sys [137328 2010-03-15] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1039unic; C:\WINDOWS\System32\drivers\s1039unic.sys [158320 2010-03-15] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s916bus; C:\WINDOWS\System32\drivers\s916bus.sys [108072 2007-11-02] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s916mgmt; C:\WINDOWS\System32\drivers\s916mgmt.sys [130088 2007-11-02] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s916obex; C:\WINDOWS\System32\drivers\s916obex.sys [124968 2007-11-02] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 se3ebus; C:\WINDOWS\System32\drivers\se3ebus.sys [107784 2007-04-10] (MCCI Corporation -> MCCI Corporation)
S3 se3emgmt; C:\WINDOWS\System32\drivers\se3emgmt.sys [126216 2007-04-10] (MCCI Corporation -> MCCI Corporation)
S3 se3eobex; C:\WINDOWS\System32\drivers\se3eobex.sys [123144 2007-04-10] (MCCI Corporation -> MCCI Corporation)
R3 Thotkey; C:\WINDOWS\System32\drivers\Thotkey.sys [47816 2020-07-21] (Dynabook Inc. -> Dynabook Inc.)
R1 TosSrvCtlDrv; C:\WINDOWS\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_f06ed65d98eceea8\TosSrvCtlDrv.sys [25584 2021-05-26] (Dynabook Inc. -> Dynabook Inc.)
R0 TVALZ_O; C:\WINDOWS\System32\drivers\TVALZ_O.SYS [46088 2019-04-30] (Dynabook Inc. -> Dynabook Inc.)
S3 Usb4DeviceRouter; C:\WINDOWS\System32\DriverStore\FileRepository\usb4devicerouter.inf_amd64_9f6d680e75a57995\Usb4DeviceRouter.sys [827680 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
S3 Usb4HostRouter; C:\WINDOWS\System32\DriverStore\FileRepository\usb4hostrouter.inf_amd64_cd0f44882a83a62c\Usb4HostRouter.sys [536864 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48544 2021-09-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [434400 2021-09-24] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86240 2021-09-24] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-09-30 16:44 - 2021-09-30 16:47 - 000050080 _____ C:\Users\saullerist\Downloads\Addition.txt
2021-09-30 16:41 - 2021-09-30 16:51 - 000020923 _____ C:\Users\saullerist\Downloads\FRST.txt
2021-09-30 16:40 - 2021-09-30 16:50 - 000000000 ____D C:\FRST
2021-09-30 16:40 - 2021-09-30 16:40 - 002304512 _____ (Farbar) C:\Users\saullerist\Downloads\FRST64.exe
2021-09-30 16:38 - 2021-09-30 16:38 - 000000000 ____D C:\AdwCleaner
2021-09-30 16:37 - 2021-09-30 16:37 - 008553680 _____ (Malwarebytes) C:\Users\saullerist\Downloads\adwcleaner_8.3.0.exe
2021-09-01 19:22 - 2021-08-09 14:57 - 000389640 _____ (Google, Inc.) C:\WINDOWS\system32\Drivers\googledrivefs3525.sys

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-09-30 16:47 - 2021-05-22 14:46 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-09-30 15:51 - 2021-05-22 14:46 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-09-30 15:48 - 2021-06-09 14:48 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-09-30 15:48 - 2021-06-09 14:26 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-09-30 15:48 - 2021-05-22 14:46 - 000000000 ____D C:\WINDOWS\SystemTemp
2021-09-30 15:48 - 2020-02-21 12:41 - 000012288 ___SH C:\DumpStack.log.tmp
2021-09-30 15:47 - 2021-05-22 14:36 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-09-30 15:38 - 2020-02-04 19:05 - 000000000 ____D C:\Users\saullerist\AppData\Local\CrashDumps
2021-09-30 13:18 - 2021-05-22 14:46 - 000000000 ___HD C:\Program Files\WindowsApps
2021-09-30 13:18 - 2021-05-22 14:46 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-09-29 14:57 - 2021-06-08 13:18 - 000000000 ____D C:\Users\saullerist
2021-09-27 18:38 - 2021-07-06 20:45 - 000000000 ____D C:\WINDOWS\Minidump
2021-09-27 18:37 - 2016-01-06 01:43 - 000848265 ____N C:\WINDOWS\Minidump\092721-36625-01.dmp
2021-09-27 12:19 - 2020-05-06 20:08 - 000002527 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-09-24 12:37 - 2018-03-01 11:27 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-09-11 16:44 - 2017-10-18 10:41 - 000000000 ____D C:\Users\saullerist\AppData\Local\Packages
2021-09-11 16:42 - 2016-11-18 22:37 - 000000000 ____D C:\Users\saullerist\AppData\Roaming\Mozilla
2021-09-08 13:04 - 2021-06-09 14:39 - 009035642 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-09-08 13:04 - 2021-05-22 14:44 - 000000000 ____D C:\WINDOWS\INF
2021-09-08 13:04 - 2016-11-28 18:10 - 006209702 _____ C:\WINDOWS\system32\perfh01B.dat
2021-09-08 13:04 - 2016-11-28 18:10 - 001846180 _____ C:\WINDOWS\system32\perfc01B.dat
2021-09-03 16:40 - 2021-05-22 14:46 - 000000000 ____D C:\WINDOWS\SystemResources
2021-09-03 16:40 - 2021-05-22 14:46 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-09-03 16:40 - 2021-05-22 14:36 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-09-03 16:39 - 2018-07-19 09:34 - 000000000 ____D C:\ProgramData\Packages
2021-09-01 19:23 - 2021-07-13 20:43 - 000002071 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2021-08-31 12:03 - 2016-11-28 17:03 - 000803176 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2021-08-31 11:50 - 2021-06-08 10:30 - 000000000 ___DC C:\WINDOWS\Panther

==================== Files in the root of some directories ========

2020-02-26 21:13 - 2020-02-26 21:17 - 000000062 _____ () C:\Users\saullerist\AppData\Roaming\FalconX.cfg
2017-10-18 10:16 - 2020-04-08 14:19 - 000007597 _____ () C:\Users\saullerist\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Nahoru
5manager5
Návštěvník
Návštěvník
Příspěvky: 267
Registrován: 10 led 2009 21:21

Re: kontrola logu / pre Rudy

#2 Příspěvek od 5manager5 »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22-09-2021 02
Ran by saullerist (30-09-2021 16:52:37)
Running from C:\Users\saullerist\Downloads
Windows 10 Home Version Dev 21390.1000 (X64) (2021-06-09 12:49:51)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1796023744-1759536030-3900380101-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1796023744-1759536030-3900380101-503 - Limited - Disabled)
Guest (S-1-5-21-1796023744-1759536030-3900380101-501 - Limited - Disabled)
saull (S-1-5-21-1796023744-1759536030-3900380101-1016 - Limited - Disabled)
saullerist (S-1-5-21-1796023744-1759536030-3900380101-1002 - Administrator - Enabled) => C:\Users\saullerist
WDAGUtilityAccount (S-1-5-21-1796023744-1759536030-3900380101-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

AIDA64 Extreme v6.33 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 6.33 - FinalWire Ltd.)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 50.0.11.0 - Google LLC)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 94.0.992.31 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 94.0.992.31 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.4.3.38 - Synaptics Incorporated)

Packages:
=========
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-14] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-14] (Microsoft Corporation) [MS Ad]
Microsoft.UI.Xaml.CBS -> C:\Windows\SystemApps\Microsoft.UI.Xaml.CBS_8wekyb3d8bbwe [2021-06-09] (Microsoft Platform Extensions)
Paint -> C:\Program Files\WindowsApps\Microsoft.Paint_10.2104.17.0_x64__8wekyb3d8bbwe [2021-07-17] (Microsoft Corporation)
Windows Notepad -> C:\Program Files\WindowsApps\Microsoft.WindowsNotepad_10.2103.6.0_x64__8wekyb3d8bbwe [2021-07-17] (Microsoft Corporation)
Windows Zabezpečenie -> C:\Program Files\WindowsApps\Microsoft.SecHealthUI_1000.21390.1.0_neutral__8wekyb3d8bbwe [2021-07-17] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\50.0.11.0\drivefsext.dll [2021-08-09] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\50.0.11.0\drivefsext.dll [2021-08-09] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\50.0.11.0\drivefsext.dll [2021-08-09] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\50.0.11.0\drivefsext.dll [2021-08-09] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\50.0.11.0\drivefsext.dll [2021-08-09] (Google LLC -> Google, Inc.)
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\50.0.11.0\drivefsext.dll [2021-08-09] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll [2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\50.0.11.0\drivefsext.dll [2021-08-09] (Google LLC -> Google, Inc.)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2021-09-01 19:22 - 1980-01-01 00:00 - 000422912 _____ () [File not signed] C:\Program Files\Google\Drive File Stream\50.0.11.0\swiftshader\libegl.dll
2021-09-01 19:22 - 1980-01-01 00:00 - 002767360 _____ () [File not signed] C:\Program Files\Google\Drive File Stream\50.0.11.0\swiftshader\libglesv2.dll
2021-06-10 16:19 - 2021-06-10 16:19 - 000031232 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\A4.Foundation\4b4d6b6a634bfba2d65c396962e63d5c\A4.Foundation.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000022528 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Actions5dc83b46#\120c2e96d80d4f27643220e7e2099287\AEM.Actions.CCAA.Shared.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.0a1309f7#\456328dc85afd572341225910d25cad6\AEM.Plugin.EEU.Shared.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.2b6a6775#\24da43b0979454450d42a0f697fc8519\AEM.Plugin.Hotkeys.Shared.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000016384 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.54d8abe3#\2615fc0fab6f289e71424671e116e1b8\AEM.Plugin.DPPE.Shared.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000281600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.5d945b6b#\e081d2ddec3a70074f3a887fe4ae0647\AEM.Plugin.Source.Kit.Server.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000014848 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.674d2b8a#\86c5c13de5891c68937d0dedcdd69882\AEM.Plugin.WinMessages.Shared.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000012800 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.88aba5d2#\886c6be11fcbc1a2d347f1746cf02937\AEM.Plugin.REG.Shared.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.GD.Shared\058ee5233f0484fc085c9d1c0612fd4d\AEM.Plugin.GD.Shared.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Server.Shared\84a751163d4d0d1785ecd6c59b198652\AEM.Server.Shared.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000267776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Server\1641e72ef1e80fda40793ff74be751b9\AEM.Server.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000055808 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\APM.Foundation\c7cf34d89c3b3b00a08d093fa57db62b\APM.Foundation.ni.dll
2021-06-10 17:48 - 2021-06-10 17:48 - 000122880 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ATICCCom\43a4ba975ffaffec7cbb319b68caa831\ATICCCom.ni.dll
2021-06-10 16:21 - 2021-06-10 16:21 - 000204288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CCC.Implementation\da2af62cf1f104a88631e81e42f5b2ea\CCC.Implementation.ni.dll
2021-06-10 16:24 - 2021-06-10 16:24 - 000154112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.21d2ac78#\96b377099131a119843f5f5a6f7e74ef\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard.ni.dll
2021-06-10 16:22 - 2021-06-10 16:22 - 000128000 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3399d0ec#\350e2d591fcc718e5b046c7dcdf9f222\CLI.Aspect.CustomFormats.Graphics.Shared.ni.dll
2021-06-10 16:22 - 2021-06-10 16:22 - 000026112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.37d3d968#\17aa6e973cb4a95da5db9a04e6ad0369\CLI.Aspect.AMDHome.Graphics.Shared.ni.dll
2021-06-10 17:48 - 2021-06-10 17:48 - 000045568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.382a3def#\ed38a8e10ca641492aecc062ea92634a\CLI.Aspect.AMDOverDrive.Platform.Shared.ni.dll
2021-06-10 17:15 - 2021-06-10 17:15 - 000107008 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3a6f1658#\26e01bf63ab7750110fb55359b59476c\CLI.Aspect.TransCode.Graphics.Shared.ni.dll
2021-06-10 16:22 - 2021-06-10 16:22 - 000209920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4542c692#\420999349558e6db84ea10a5babb0cb5\CLI.Aspect.DeviceCRT.Graphics.Shared.ni.dll
2021-06-10 16:24 - 2021-06-10 16:24 - 000132608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.46819220#\e0d700b8532ea17c5653952f85f2ddb8\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.ni.dll
2021-06-10 17:15 - 2021-06-10 17:15 - 000074752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4bbb0755#\ea24236a17bc53aaa8ebe38e2db4ac9b\CLI.Aspect.TransCode.Graphics.Dashboard.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000037888 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.52c6dbaa#\200379b12771343f11fd8c90ba1396d7\CLI.Aspect.FPS.Graphics.Shared.ni.dll
2021-06-10 16:24 - 2021-06-10 16:24 - 000074752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.59a12d95#\d6711ca0b43e53ba2110e556783c7227\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.ni.dll
2021-06-10 17:48 - 2021-06-10 17:48 - 000263168 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.73911eb5#\c298b099c61ec5721e5195e590f6a42f\CLI.Aspect.WirelessDisplay.Graphics.Shared.ni.dll
2021-06-10 16:22 - 2021-06-10 16:22 - 000365056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.7ec2db45#\640b67beda0acd9de168f970fb25daab\CLI.Aspect.DeviceDFP.Graphics.Shared.ni.dll
2021-06-10 17:15 - 2021-06-10 17:15 - 000064000 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8350f5c6#\c62cbcd96744854bb4ede05cc4a43c51\CLI.Aspect.UpdateNotification.Graphics.Runtime.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000678912 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.846fa813#\9e2e412894e843a65c47ae8e7d46fa5d\CLI.Aspect.MMVideo.Graphics.Dashboard.ni.dll
2021-06-10 17:15 - 2021-06-10 17:15 - 000745472 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8d333b6b#\ec947d5e48afbd0dc513348ddb8672a5\CLI.Aspect.Radeon3D.Graphics.Shared.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000449536 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8e996306#\25ee0628483e6bb663c54a8728745944\CLI.Aspect.CrossDisplay.Graphics.Dashboard.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000089088 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.9cd1e9e7#\d348fc3cca38f60d6a589b7535d050d4\CLI.Aspect.FPS.Graphics.Dashboard.ni.dll
2021-06-10 16:22 - 2021-06-10 16:22 - 000158208 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a0ae52bc#\bceae737ea6ce0b7c6ccb1903bab645f\CLI.Aspect.DeviceLCD.Graphics.Shared.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000057856 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a6cd7fff#\055ba97ce802c3a6721938d9604ba1a1\CLI.Aspect.FPS.Graphics.Runtime.ni.dll
2021-06-10 17:15 - 2021-06-10 17:15 - 000082944 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a765109e#\94cd99baf19e52dcef40ce4dbc5c19aa\CLI.Aspect.UpdateNotification.Graphics.Dashboard.ni.dll
2021-06-10 16:22 - 2021-06-10 16:22 - 000462336 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.acb9d930#\9ed9ea25fdd49dd27aa4b44ede4de7b9\CLI.Aspect.DeviceProperty.Graphics.Shared.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000086528 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ae5e117c#\5bfb6efe6f99c917c815ad7822e3d1de\CLI.Aspect.DisplaysColour2.Graphics.Shared.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000067072 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.b0a7c1fb#\4e6f8ffb32832a7745dfbcabc54e32ea\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.ni.dll
2021-06-10 16:24 - 2021-06-10 16:24 - 000340992 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c7aaa0f8#\267f90556920f9ab13caf04cdc52717f\CLI.Aspect.OverDrive5.Graphics.Shared.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000017920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c854b457#\960bce43b0bb3468fc215db1885d7582\CLI.Aspect.HotkeysHandling.Graphics.Shared.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000276480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e8635fc7#\0783eac9567205fcc347bf647141eb17\CLI.Aspect.InfoCentre.Graphics.Dashboard.ni.dll
2021-06-10 17:15 - 2021-06-10 17:15 - 003312640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e9fd7406#\d9277e5cc0e19cc1d3871c18c95fecd2\CLI.Aspect.Radeon3D.Graphics.Dashboard.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000240640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.eda8935e#\4607e8bc6f6afd134e645698d8425ae7\CLI.Aspect.MMVideo.Graphics.Shared.ni.dll
2021-06-10 17:15 - 2021-06-10 17:15 - 000047616 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ef3eaa4d#\f1f1dc48cc960de1e4d1886ac5e08dcc\CLI.Aspect.TransCode.Graphics.Runtime.ni.dll
2021-06-10 17:15 - 2021-06-10 17:15 - 000050688 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.f480a2f3#\23cc67716fb648f4dc995cdc0884b962\CLI.Aspect.UpdateNotification.Graphics.Shared.ni.dll
2021-06-10 17:16 - 2021-06-10 17:16 - 000051200 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Runtime\65b450454bfb9c63cd23f8fd279794c4\CLI.Caste.A4.Runtime.ni.dll
2021-06-10 16:22 - 2021-06-10 16:22 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Shared\3f6c50513447519f6a79f8d3e58bbad0\CLI.Caste.A4.Shared.ni.dll
2021-06-10 17:16 - 2021-06-10 17:16 - 000027136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Af820fedc#\3dc775cae658fe6e744c6192bfdd1ea0\CLI.Caste.A4.Dashboard.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F24de14fe#\da95cbadf4d87e43f20be87a23498a03\CLI.Caste.Fuel.Shared.ni.dll
2021-06-10 17:16 - 2021-06-10 17:16 - 000311296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F36b07a2b#\912eff1c15e3aed5562bb6aa9105c49d\CLI.Caste.Fuel.Runtime.ni.dll
2021-06-10 17:16 - 2021-06-10 17:16 - 000027136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Ff3085433#\0a493818b3021c325a97a93bfdf9bfc2\CLI.Caste.Fuel.Dashboard.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000037376 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60338cc0#\6af123d1ce306217b1b6d53574f78631\CLI.Caste.Graphics.Runtime.Shared.Private.ni.dll
2021-06-10 16:22 - 2021-06-10 16:22 - 001555456 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gd9d9b43b#\d89fed66d984e08698122c9d7260d2f3\CLI.Caste.Graphics.Dashboard.Shared.ni.dll
2021-06-10 16:22 - 2021-06-10 16:22 - 000587776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gee7d2dbc#\3bb40276c295cf91d97f843fe62d02b7\CLI.Caste.Graphics.Dashboard.ni.dll
2021-06-10 17:16 - 2021-06-10 17:16 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H18c99613#\37d22df99858f14e406179999ea085fb\CLI.Caste.HydraVision.Runtime.ni.dll
2021-06-10 17:16 - 2021-06-10 17:16 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H92ba4e46#\f690b5a83252f9cb20ddba18e24af049\CLI.Caste.HydraVision.Shared.ni.dll
2021-06-10 17:16 - 2021-06-10 17:16 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Hbb906c0b#\fb012686a25e828cb7b030c3e4656f04\CLI.Caste.HydraVision.Dashboard.ni.dll
2021-06-10 17:16 - 2021-06-10 17:16 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pac40511b#\aac886cdfae37718b93efa11940d5bf0\CLI.Caste.Platform.Shared.ni.dll
2021-06-10 17:16 - 2021-06-10 17:16 - 000044032 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pdb36d56e#\b1c36090678fcff35d8a8cd8f443005a\CLI.Caste.Platform.Runtime.ni.dll
2021-06-10 17:16 - 2021-06-10 17:16 - 000024064 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pfeefa2b6#\a2e6d65fe8b4d6fd28a7c4455e92d7c8\CLI.Caste.Platform.Dashboard.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone1b4a8c97#\488ffdafff7c0b962544aa6c29c69f70\CLI.Component.Runtime.Shared.ni.dll
2021-06-10 17:48 - 2021-06-10 17:48 - 000901632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone26c9c557#\32bacb3c6e811f7157ec960c54648c74\CLI.Component.Systemtray.ni.dll
2021-06-10 17:48 - 2021-06-10 17:48 - 000173568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone29e547cc#\4f51f6a8dc751cc866370b3f1432f30e\CLI.Component.Dashboard.ProfileManager2.ni.dll
2021-06-10 16:22 - 2021-06-10 16:22 - 000151040 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone59f353b4#\822bf3ace1d8640866af49689e1e3481\CLI.Component.Runtime.Shared.Private.ni.dll
2021-06-10 17:48 - 2021-06-10 17:48 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componeb4d0485c#\8d64722815c06c596b685f648ca22240\CLI.Component.Runtime.Extension.EEU.ni.dll
2021-06-10 16:21 - 2021-06-10 16:21 - 001609728 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componec89c3bec#\ff156affca9da1540c7633b007b99f8d\CLI.Component.Dashboard.Shared.Private.ni.dll
2021-06-10 16:21 - 2021-06-10 16:21 - 000018432 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componef1fd67b2#\f2875c5733e10ced17d18840435da499\CLI.Component.Client.Shared.ni.dll
2021-06-10 16:21 - 2021-06-10 16:21 - 000085504 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componef4cf054f#\d99d64252184c55f1519b0475d81aba6\CLI.Component.Dashboard.Shared.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000089600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat3d5d3945#\a1e5d8281963cf9bbdfd437844afc579\CLI.Foundation.Private.ni.dll
2021-06-10 17:48 - 2021-06-10 17:48 - 000061440 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat60cdf5df#\fe76ae65024d3e93b84cc078654c36ea\CLI.Foundation.XManifest.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000091136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat619559bd#\ff98e49d8f1cc70c787035a35f7880eb\CLI.Foundation.CoreAudioAPI.ni.dll
2021-06-10 16:21 - 2021-06-10 16:21 - 001079808 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundatd3771151#\d00a5ff8652935ce694d3be20a2198af\CLI.Foundation.Client.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000301568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundation\767b549aee281acd87612f8e51cec071\CLI.Foundation.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Foundation\88aedf4286b41335538454e28da3d5ad\DEM.Foundation.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000115200 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0601\2ac31d3affb164a3536f52325849618e\DEM.Graphics.I0601.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics\f53b68c8b8182240fcfcaa86d44f4a05\DEM.Graphics.ni.dll
2021-06-10 17:16 - 2021-06-10 17:16 - 000037376 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Fuel.Foundation\10e4e2f0f50c02bf900c85f3168f9d8b\Fuel.Foundation.ni.dll
2021-06-10 17:49 - 2021-06-10 17:49 - 000296960 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundat03490438#\ae3dfc80dd02293c53aab077b6568903\LOG.Foundation.Implementation.ni.dll
2021-06-10 16:19 - 2021-06-10 16:19 - 000150016 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundat5023f8e7#\e649252ab052f3f4b72721f97a880712\LOG.Foundation.Private.ni.dll
2021-06-10 16:21 - 2021-06-10 16:21 - 000087552 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundatcaafa75b#\509f7a388fc5ea6246a146f1fc6e18e6\LOG.Foundation.Implementation.Private.ni.dll
2021-06-10 16:19 - 2021-06-10 16:19 - 000132608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundation\6b2ea6d0a1acbe8f0fc6ca36d0856e3e\LOG.Foundation.ni.dll
2021-06-10 16:21 - 2021-06-10 16:21 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MOM.Foundation\b99d2538c3c890d771a1c04dd177d7aa\MOM.Foundation.ni.dll
2021-06-10 17:50 - 2021-06-10 17:50 - 000402944 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MOM.Implementation\f65b407b6fa1fd149cd0aeda74bde371\MOM.Implementation.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000055296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\NEWAEM.Foundation\e92cc532e4e54924171ac11e0b58376d\NEWAEM.Foundation.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000897024 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ADL.Foundation\e21bd6b0141764f99439dc1ef6f975b8\ADL.Foundation.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000256000 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\APM.Server\6a8cbc23c9d801aecf56d10975faad6e\APM.Server.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000298496 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.9b707b25#\ec4c1a20a416effc1974e4fc5e41bacd\CLI.Aspect.DeviceProperty.Graphics.Runtime.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 001654272 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.aa59351a#\2cbdff7d694bc92e586cac6352007d27\CLI.Aspect.DeviceProperty.Graphics.Dashboard.Shared.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 006336512 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e6d9f3a8#\dcc564f48bd106e545b200851e7295c9\CLI.Aspect.DeviceDFP.Graphics.Dashboard.ni.dll
2021-06-10 17:47 - 2021-06-10 17:47 - 008027648 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Combine0616f305#\70526763377531b7f8da0eef0ff46570\CLI.Combined.Graphics.Aspects1.Dashboard.ni.dll
2021-06-10 17:48 - 2021-06-10 17:48 - 001159680 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Combine7332395e#\d8c9417de1394f863be60783c1f0548e\CLI.Combined.Graphics.Aspects2.Runtime.ni.dll
2021-06-10 16:21 - 2021-06-10 16:21 - 000136704 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone168638d1#\9990039a04e60ea15c90dd9e6705d5ec\CLI.Component.Client.Shared.Private.ni.dll
2021-06-10 17:48 - 2021-06-10 17:48 - 000234496 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone6692ca50#\10aeb7bd876d92391a92ae5878172bfd\CLI.Component.Runtime.ni.dll
2021-06-10 17:48 - 2021-06-10 17:48 - 000929280 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone6bf88b08#\3adea2d6f9625cd435590eeb58334093\CLI.Component.Dashboard.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000013312 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0706\4e6edfde6749f5cd91ddfc3c758c88fa\DEM.Graphics.I0706.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000084480 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0709\821e22275b6879c65ecfa39ff816979c\DEM.Graphics.I0709.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000012288 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0712\d33744e34975426a466a715ea18596e6\DEM.Graphics.I0712.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000018432 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0804\687ae02d4df333e6199795c273e6a71f\DEM.Graphics.I0804.ni.dll
2021-06-10 17:48 - 2021-06-10 17:48 - 000010752 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0805\5b6428b829b41206bd64e65eb6cfbde2\DEM.Graphics.I0805.ni.dll
2021-06-10 17:48 - 2021-06-10 17:48 - 000010752 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0812\aad026d5d7cc6e985bce46cde5e6bdb7\DEM.Graphics.I0812.ni.dll
2021-06-10 17:16 - 2021-06-10 17:16 - 000013312 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0906\5d244a8b168204855e757e1006ab6b23\DEM.Graphics.I0906.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000014336 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0912\db2b1342df9cc26000ca49b721241683\DEM.Graphics.I0912.ni.dll
2021-06-10 17:16 - 2021-06-10 17:16 - 000035840 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I1010\b4c023b457ef000c29dd844bcc115d4c\DEM.Graphics.I1010.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 001139200 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Localizatio01dbc1c0#\3b6999fc264004816a7e66a626af43d3\Localization.Foundation.Private.ni.dll
2021-06-10 17:50 - 2021-06-10 17:50 - 000244736 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ResourceMan446ca0e5#\ceeb4fd4925bda216a8804ffb441096a\ResourceManagement.Foundation.Implementation.ni.dll
2021-06-10 16:21 - 2021-06-10 16:21 - 000023552 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ResourceManf163905a#\7d31d8a7df1e04ef5209215d0d101c6d\ResourceManagement.Foundation.Private.ni.dll
2021-06-10 16:22 - 2021-06-10 16:22 - 000091648 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ec8786e5#\dc2dcb8d44480a6dada87fb22d6f1432\CLI.Aspect.AMDHome.Graphics.Dashboard.ni.dll
2021-06-10 16:21 - 2021-06-10 16:21 - 002845696 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60a7b4d1#\0dfb2c1d8027a7a9b2ed95dfb7975ab0\CLI.Caste.Graphics.Shared.ni.dll
2021-06-10 17:16 - 2021-06-10 17:16 - 003268096 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G962aa464#\6e38eccb13526a1f944a507efe7b5b56\CLI.Caste.Graphics.Runtime.ni.dll
2021-06-10 16:22 - 2021-06-10 16:22 - 000335360 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.W8090224c#\895eea6b8ebd633de047eb384b451d44\Microsoft.WindowsAPICodePack.ni.dll
2021-06-10 16:22 - 2021-06-10 16:22 - 002546688 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.Wfbf9373c#\18b78dcc6c39d463517a08d5ad8f5fc3\Microsoft.WindowsAPICodePack.Shell.ni.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\nvdimm.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{53966cb1-4d46-4166-bf23-c522403cd495} => ""="ScmDisk"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\nvdimm.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{53966cb1-4d46-4166-bf23-c522403cd495} => ""="ScmDisk"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
SearchScopes: HKU\S-1-5-21-1796023744-1759536030-3900380101-1002 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-11-18 17:42 - 2021-01-13 22:21 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img13.jpg
DNS Servers: 8.8.8.8 - 1.1.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "StartCCC"
HKLM\...\StartupApproved\Run32: => "WindowsDefender"
HKLM\...\StartupApproved\Run32: => "SecurityHealth"
HKLM\...\StartupApproved\Run32: => "TeamsMachineUninstallerLocalAppData"
HKLM\...\StartupApproved\Run32: => "TeamsMachineUninstallerProgramData"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\StartupFolder: => "Odoslanie do aplikácie OneNote.lnk"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "Uninstall C:\Users\saullerist\AppData\Local\Microsoft\OneDrive\17.3.6381.0405\amd64"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "GoogleDriveSync"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_DDAEB60A3A4C412D731C2E4868511E36"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "Lync"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "Skype for Desktop"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "CCleanerBrowserAutoLaunch_AFE589D608B3188594AF573809023416"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{BA94B2AF-32ED-43B0-9B5C-A9BBFCBCC76C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.42.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7E92E685-95D4-4189-8B87-D070E2A6CFE2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.42.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B86A1AE4-0285-4430-AC20-49ED7CA71FCA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.42.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A7C9D772-FB32-48C2-92E1-3605FCE728BC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.42.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{165F1F12-F363-43B1-A7B2-21B220C91658}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\94.0.992.31\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

19-09-2021 15:28:20 Scheduled Checkpoint
28-09-2021 17:52:10 Scheduled Checkpoint

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (09/30/2021 03:38:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: SystemSettings.exe, verzia: 10.0.21390.1, časová značka: 0x27a6d211
Názov chybujúceho modulu: msvcrt.dll, verzia: 7.0.21390.1, časová značka: 0x90483ed2
Kód výnimky: 0x40000015
Odstup chyby: 0x000000000000b0ac
Identifikácia chybujúceho procesu: 0x69c
Čas spustenia chybujúcej aplikácie: 0x01d7b5ff6e44cefa
Cesta chybujúcej aplikácie: C:\Windows\ImmersiveControlPanel\SystemSettings.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\msvcrt.dll
Identifikácia hlásenia: 153fb632-e2bb-4bb3-856d-de934441bcdd
Celé meno chybujúceho balíka: windows.immersivecontrolpanel_10.0.6.1000_neutral_neutral_cw5n1h2txyewy
Identifikácia chybujúcej aplikácie vzhľadom na balík: microsoft.windows.immersivecontrolpanel

Error: (09/30/2021 09:04:27 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: MoUsoCoreWorker.exe, verzia: 10.0.21390.1, časová značka: 0x49a30216
Názov chybujúceho modulu: ucrtbase.dll, verzia: 10.0.21390.1, časová značka: 0x00e78ce9
Kód výnimky: 0xc0000409
Odstup chyby: 0x000000000007dd7e
Identifikácia chybujúceho procesu: 0x152c
Čas spustenia chybujúcej aplikácie: 0x01d7b5751aa08d80
Cesta chybujúcej aplikácie: C:\WINDOWS\uus\AMD64\MoUsoCoreWorker.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\ucrtbase.dll
Identifikácia hlásenia: 35a490cf-34f5-4250-bf77-537527023d4d
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (09/29/2021 11:30:53 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: MoUsoCoreWorker.exe, verzia: 10.0.21390.1, časová značka: 0x49a30216
Názov chybujúceho modulu: ucrtbase.dll, verzia: 10.0.21390.1, časová značka: 0x00e78ce9
Kód výnimky: 0xc0000409
Odstup chyby: 0x000000000007dd7e
Identifikácia chybujúceho procesu: 0x1d1c
Čas spustenia chybujúcej aplikácie: 0x01d7b5144d56ce4c
Cesta chybujúcej aplikácie: C:\WINDOWS\uus\AMD64\MoUsoCoreWorker.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\ucrtbase.dll
Identifikácia hlásenia: a477aacb-0442-4cc5-9ea7-da686b36d401
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (09/28/2021 10:36:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: MoUsoCoreWorker.exe, verzia: 10.0.21390.1, časová značka: 0x49a30216
Názov chybujúceho modulu: ucrtbase.dll, verzia: 10.0.21390.1, časová značka: 0x00e78ce9
Kód výnimky: 0xc0000409
Odstup chyby: 0x000000000007dd7e
Identifikácia chybujúceho procesu: 0x1e60
Čas spustenia chybujúcej aplikácie: 0x01d7b4a86b4d5872
Cesta chybujúcej aplikácie: C:\WINDOWS\uus\AMD64\MoUsoCoreWorker.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\ucrtbase.dll
Identifikácia hlásenia: 710abca3-10f4-4199-97ee-505d57a3a8ec
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (09/28/2021 04:29:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: ShellExperienceHost.exe, verzia: 10.0.21390.1, časová značka: 0x11cf7eb5
Názov chybujúceho modulu: Windows.UI.Xaml.dll, verzia: 10.0.21390.1, časová značka: 0xe2e989d9
Kód výnimky: 0xc0000005
Odstup chyby: 0x00000000001a1d2f
Identifikácia chybujúceho procesu: 0x520
Čas spustenia chybujúcej aplikácie: 0x01d7b4753d65c959
Cesta chybujúcej aplikácie: C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
Cesta chybujúceho modulu: C:\Windows\System32\Windows.UI.Xaml.dll
Identifikácia hlásenia: 9934e4ed-b01d-4299-b986-c621a27a16ec
Celé meno chybujúceho balíka: Microsoft.Windows.ShellExperienceHost_10.0.21390.1_neutral_neutral_cw5n1h2txyewy
Identifikácia chybujúcej aplikácie vzhľadom na balík: App

Error: (09/28/2021 10:24:47 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: MoUsoCoreWorker.exe, verzia: 10.0.21390.1, časová značka: 0x49a30216
Názov chybujúceho modulu: ucrtbase.dll, verzia: 10.0.21390.1, časová značka: 0x00e78ce9
Kód výnimky: 0xc0000409
Odstup chyby: 0x000000000007dd7e
Identifikácia chybujúceho procesu: 0x137c
Čas spustenia chybujúcej aplikácie: 0x01d7b4422948400c
Cesta chybujúcej aplikácie: C:\WINDOWS\uus\AMD64\MoUsoCoreWorker.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\ucrtbase.dll
Identifikácia hlásenia: 4fa0ed6f-679e-4eac-863c-56c930f793c5
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (09/27/2021 09:59:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: MoUsoCoreWorker.exe, verzia: 10.0.21390.1, časová značka: 0x49a30216
Názov chybujúceho modulu: ucrtbase.dll, verzia: 10.0.21390.1, časová značka: 0x00e78ce9
Kód výnimky: 0xc0000409
Odstup chyby: 0x000000000007dd7e
Identifikácia chybujúceho procesu: 0x2264
Čas spustenia chybujúcej aplikácie: 0x01d7b3d9c766010d
Cesta chybujúcej aplikácie: C:\WINDOWS\uus\AMD64\MoUsoCoreWorker.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\ucrtbase.dll
Identifikácia hlásenia: 2bf9ce0c-00b5-4b35-bacd-bc7096aa0c1a
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (09/27/2021 09:23:31 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: MoUsoCoreWorker.exe, verzia: 10.0.21390.1, časová značka: 0x49a30216
Názov chybujúceho modulu: ucrtbase.dll, verzia: 10.0.21390.1, časová značka: 0x00e78ce9
Kód výnimky: 0xc0000409
Odstup chyby: 0x000000000007dd7e
Identifikácia chybujúceho procesu: 0x2164
Čas spustenia chybujúcej aplikácie: 0x01d7b370666cdf34
Cesta chybujúcej aplikácie: C:\WINDOWS\uus\AMD64\MoUsoCoreWorker.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\ucrtbase.dll
Identifikácia hlásenia: ee9daa87-c545-49be-b51b-7f63de7e413c
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:


System errors:
=============
Error: (09/30/2021 04:13:31 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{6246C65D-BAC1-4762-89A6-06049B6E07D8} because another computer on the network has the same name. The server could not start.

Error: (09/30/2021 04:03:42 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{6246C65D-BAC1-4762-89A6-06049B6E07D8} because another computer on the network has the same name. The server could not start.

Error: (09/30/2021 03:58:17 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{6246C65D-BAC1-4762-89A6-06049B6E07D8} because another computer on the network has the same name. The server could not start.

Error: (09/30/2021 03:52:51 PM) (Source: googledrivefs3514) (EventID: 2) (User: )
Description: The driver version of the disk does not match.

Error: (09/30/2021 03:32:02 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{1CCE6693-D84C-4468-86B9-8032B89A8897} because another computer on the network has the same name. The server could not start.

Error: (09/30/2021 03:27:11 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{1CCE6693-D84C-4468-86B9-8032B89A8897} because another computer on the network has the same name. The server could not start.

Error: (09/30/2021 01:15:45 PM) (Source: googledrivefs3514) (EventID: 2) (User: )
Description: The driver version of the disk does not match.

Error: (09/30/2021 09:09:08 AM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{1CCE6693-D84C-4468-86B9-8032B89A8897} because another computer on the network has the same name. The server could not start.


Windows Defender:
================Event[0]

Date: 2021-09-27 13:17:32
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Event[1]

Date: 2021-09-26 13:20:46
Description:
N/A
Event[2]

Date: 2021-09-24 13:20:35
Description:
N/A
Event[3]

Date: 2021-09-23 13:12:02
Description:
N/A
Event[4]

Date: 2021-09-21 12:59:11
Description:
N/A
Event[0]

Date: 2021-09-30 16:01:45
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.349.1685.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.18600.3
Error code: 0x80240438
Error description: Počas vyhľadávania aktualizácií sa vyskytol neočakávaný problém. Informácie o inštalácii aktualizácií a riešení problémov s aktualizáciami nájdete v Pomoci a technickej podpore. ਍
Event[1]

Date: 2021-09-29 11:46:42
Description:
N/A

CodeIntegrity:
===============
Date: 2021-09-25 14:09:31
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\ImmersiveControlPanel\SystemSettings.exe) attempted to load \Device\HarddiskVolume2\Program Files\Google\Drive File Stream\50.0.11.0\crashpad_handler.exe that did not meet the Microsoft signing level requirements. ਍


==================== Memory info ===========================

BIOS: INSYDE 1.40 05/17/2010
Motherboard: TOSHIBA Portable PC
Processor: Intel(R) Core(TM) i3 CPU M 330 @ 2.13GHz
Percentage of memory in use: 70%
Total physical RAM: 3958.85 MB
Available physical RAM: 1153.77 MB
Total Virtual: 5174.85 MB
Available Virtual: 1975.15 MB

==================== Drives ================================

Drive c: (WINDOWS) (Fixed) (Total:296.96 GB) (Free:269.97 GB) NTFS
Drive d: (Data) (Fixed) (Total:297.92 GB) (Free:287.08 GB) NTFS
Drive g: (Google Drive) (Fixed) (Total:19 GB) (Free:17.97 GB) FAT32

\\?\Volume{18c6abd2-0000-0000-0000-100000000000}\ (SYSTEM) (Fixed) (Total:0.39 GB) (Free:0.18 GB) NTFS
\\?\Volume{18c6abd2-0000-0000-0000-a0564a000000}\ () (Fixed) (Total:0.89 GB) (Free:0.3 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 596.2 GB) (Disk ID: 18C6ABD2)
Partition 1: (Active) - (Size=400 MB) - (Type=27)
Partition 2: (Not Active) - (Size=297 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=915 MB) - (Type=27)
Partition 4: (Not Active) - (Size=297.9 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118275
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: kontrola logu / pre Rudy

#3 Příspěvek od Rudy »

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\MountPoints2: {14f1611b-ca97-11eb-bc9d-00266c5324d3} - "F:\HiSuiteDownLoader.exe"
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {B40F8511-B9B4-4F7B-9312-FC6DAA6B9F00} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {B91219DC-34E0-47A2-B494-6279369FA6B4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]

EmptyTemp:
End
Uložte do C:\Users\saullerist\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
5manager5
Návštěvník
Návštěvník
Příspěvky: 267
Registrován: 10 led 2009 21:21

Re: kontrola logu / pre Rudy

#4 Příspěvek od 5manager5 »

Fix result of Farbar Recovery Scan Tool (x64) Version: 22-09-2021 02
Ran by saullerist (30-09-2021 18:55:11) Run:1
Running from C:\Users\saullerist\Downloads
Loaded Profiles: saullerist
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\MountPoints2: {14f1611b-ca97-11eb-bc9d-00266c5324d3} - "F:\HiSuiteDownLoader.exe"
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {B40F8511-B9B4-4F7B-9312-FC6DAA6B9F00} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {B91219DC-34E0-47A2-B494-6279369FA6B4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Local Page"="C:\Windows\SysWOW64\blank.htm" => value restored successfully
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{14f1611b-ca97-11eb-bc9d-00266c5324d3} => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers\{C885AA15-1764-4293-B82A-0586ADD46B35} => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B40F8511-B9B4-4F7B-9312-FC6DAA6B9F00}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B40F8511-B9B4-4F7B-9312-FC6DAA6B9F00}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B91219DC-34E0-47A2-B494-6279369FA6B4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B91219DC-34E0-47A2-B494-6279369FA6B4}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 24298358 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 673767 B
Edge => 0 B
Firefox => 10677366 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 110930 B
saullerist => 76704292 B

RecycleBin => 50110 B
EmptyTemp: => 108.6 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 18:56:14 ====
Naposledy upravil(a) 5manager5 dne 30 zář 2021 18:49, celkem upraveno 1 x.
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118275
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: kontrola logu / pre Rudy

#5 Příspěvek od Rudy »

Smazáno, log by již měl být OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“