Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Preventivní kontrola logu

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
paolov
Návštěvník
Návštěvník
Příspěvky: 242
Registrován: 30 srp 2006 20:17
Bydliště: Jih Moravy.

Preventivní kontrola logu

#1 Příspěvek od paolov »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-09-2021
Ran by Marcelka a Pavlíček (administrator) on DESKTOP-79A5PSH (LENOVO 20089) (17-09-2021 10:45:33)
Running from C:\Users\Marcelka a Pavlíček\Downloads
Loaded Profiles: Marcelka a Pavlíček
Platform: Windows 10 Home Version 21H1 19043.1237 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <10>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Xiaomi Technology Inc -> ) C:\Users\Marcelka a Pavlíček\AppData\Local\MiPhoneManager\main\MiPhoneHelper.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3951280 2016-01-07] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-06-09] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-3884071663-162100166-419435186-1001\...\Run: [MiPhoneManager] => C:\Users\Marcelka a Pavlíček\AppData\Local\MiPhoneManager\main\MiPhoneHelper.exe [157624 2016-03-11] (Xiaomi Technology Inc -> )

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0044AF1F-F4CE-4DCB-B545-FD897F0105F2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {317C1B9C-D764-46D6-A369-FDF50F955F64} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7E8F6813-90DF-47D2-9BAA-E55865327CF9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {D9CA9A21-78FB-42F4-BA8B-E260ADA0C99B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E1E15941-1A3D-4F18-BAEB-2C0F75237C1A} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [680888 2021-09-07] (Mozilla Corporation -> Mozilla Foundation)
Task: {E66088B2-0522-4584-B812-AE8D6CB45B41} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{6c242e33-4261-4d0b-a821-86a78574e0a0}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{9ea2f77b-4681-4f2a-a8b5-723fe2cfe311}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{a4d78430-550a-4fd0-b1c6-9da366229c8b}: [DhcpNameServer] 192.168.0.1

Edge:
=======
DownloadDir: C:\Users\Marcelka a Pavlíček\Downloads
Edge HomeButtonPage: HKU\S-1-5-21-3884071663-162100166-419435186-1001 -> hxxp://www.seznam.cz/
Edge Notifications: HKU\S-1-5-21-3884071663-162100166-419435186-1001 -> hxxps://www.tipsport.cz
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (uBlock Origin) -> EdgeExtension_37833NikRollsuBlockOrigin_f8jsg5mm64m62 => C:\Program Files\WindowsApps\37833NikRolls.uBlockOrigin_1.15.24.0_neutral__f8jsg5mm64m62 [2020-04-11]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (Translator pro Microsoft Edge) -> MicrosoftTranslate_MicrosoftTranslatorforMicrosoftEdge_8wekyb3d8bbwe => C:\Program Files\WindowsApps\Microsoft.TranslatorforMicrosoftEdge_0.91.51.0_neutral__8wekyb3d8bbwe [2020-04-11]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Profile 1
Edge Profile: C:\Users\Marcelka a Pavlíček\AppData\Local\Microsoft\Edge\User Data\Guest Profile [2020-09-07]
Edge Profile: C:\Users\Marcelka a Pavlíček\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2021-09-17]
Edge StartupUrls: Profile 1 -> "hxxp://www.seznam.cz/"

FireFox:
========
FF DefaultProfile: 75qnsple.default
FF ProfilePath: C:\Users\Marcelka a Pavlíček\AppData\Roaming\Mozilla\Firefox\Profiles\75qnsple.default [2019-08-28]
FF ProfilePath: C:\Users\Marcelka a Pavlíček\AppData\Roaming\Mozilla\Firefox\Profiles\l82wqagt.default-release [2021-09-17]
FF Homepage: Mozilla\Firefox\Profiles\l82wqagt.default-release -> www.seznam.cz
FF Session Restore: Mozilla\Firefox\Profiles\l82wqagt.default-release -> is enabled.
FF Notifications: Mozilla\Firefox\Profiles\l82wqagt.default-release -> hxxps://www.aliexpress.com
FF Extension: (Copy PlainText) - C:\Users\Marcelka a Pavlíček\AppData\Roaming\Mozilla\Firefox\Profiles\l82wqagt.default-release\Extensions\copyplaintext@eros.man.xpi [2021-03-05]
FF Extension: (LeechBlock NG) - C:\Users\Marcelka a Pavlíček\AppData\Roaming\Mozilla\Firefox\Profiles\l82wqagt.default-release\Extensions\leechblockng@proginosko.com.xpi [2021-07-05]
FF Extension: (uBlock Origin) - C:\Users\Marcelka a Pavlíček\AppData\Roaming\Mozilla\Firefox\Profiles\l82wqagt.default-release\Extensions\uBlock0@raymondhill.net.xpi [2021-07-31]
FF Extension: (ImTranslator: Překladač, Slovník, Hlas) - C:\Users\Marcelka a Pavlíček\AppData\Roaming\Mozilla\Firefox\Profiles\l82wqagt.default-release\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2021-08-13]
FF Plugin-x32: @java.com/DTPlugin,version=11.301.2 -> C:\Program Files (x86)\Java\jre1.8.0_301\bin\dtplugin\npDeployJava1.dll [2021-08-01] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.301.2 -> C:\Program Files (x86)\Java\jre1.8.0_301\bin\plugin2\npjp2.dll [2021-08-01] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.14 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-09-09] (Adobe Inc. -> Adobe Systems Inc.)

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7785656 2021-09-14] (Malwarebytes Inc -> Malwarebytes)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13271336 2021-09-02] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\NisSrv.exe [2772856 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MsMpEng.exe [136640 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [210344 2021-09-14] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-09-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-09-14] (Malwarebytes Inc -> Malwarebytes)
S3 nmwcd; C:\WINDOWS\system32\drivers\ccdcmbx64.sys [19968 2012-01-09] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 nmwcdc; C:\WINDOWS\system32\drivers\ccdcmbox64.sys [27136 2012-01-09] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltx64.sys [9216 2012-01-09] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltjx64.sys [9216 2012-01-09] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2021-09-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [433384 2021-09-09] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-09-09] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-09-17 10:45 - 2021-09-17 10:46 - 000013413 _____ C:\Users\Marcelka a Pavlíček\Downloads\FRST.txt
2021-09-17 10:45 - 2021-09-17 10:46 - 000000000 ____D C:\FRST
2021-09-17 10:44 - 2021-09-17 10:44 - 002304000 _____ (Farbar) C:\Users\Marcelka a Pavlíček\Downloads\FRST64.exe
2021-09-15 14:23 - 2021-09-15 14:23 - 001164288 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-09-15 14:23 - 2021-09-15 14:23 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-09-15 14:23 - 2021-09-15 14:23 - 000426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-09-15 14:23 - 2021-09-15 14:23 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2021-09-15 14:23 - 2021-09-15 14:23 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshom.ocx
2021-09-15 14:23 - 2021-09-15 14:23 - 000011355 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-09-15 14:11 - 2021-09-15 14:11 - 000000000 ___HD C:\$WinREAgent
2021-09-14 19:02 - 2021-09-14 19:02 - 000210344 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-09-14 18:48 - 2021-09-14 18:48 - 002101944 _____ (Malwarebytes) C:\Users\Marcelka a Pavlíček\Downloads\MBSetup-119967.119967-consumer.exe
2021-09-08 14:22 - 2021-09-08 14:22 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-09-07 18:24 - 2021-09-16 17:20 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-09-04 10:41 - 2021-09-04 10:41 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-09-04 10:40 - 2021-09-04 10:40 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll
2021-09-04 10:40 - 2021-09-04 10:40 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-09-04 10:40 - 2021-09-04 10:40 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-09-04 10:40 - 2021-09-04 10:40 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-09-04 10:40 - 2021-09-04 10:40 - 001313608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-09-04 10:40 - 2021-09-04 10:40 - 000672768 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-09-04 10:40 - 2021-09-04 10:40 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-09-04 10:40 - 2021-09-04 10:40 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-09-04 10:39 - 2021-09-04 10:39 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll
2021-09-04 10:39 - 2021-09-04 10:39 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-09-04 10:39 - 2021-09-04 10:39 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-09-04 10:39 - 2021-09-04 10:39 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-09-04 10:39 - 2021-09-04 10:39 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-08-27 20:44 - 2021-08-27 20:44 - 000000017 _____ C:\Users\Marcelka a Pavlíček\AppData\Local\resmon.resmoncfg
2021-08-22 19:44 - 2021-08-22 19:45 - 000013750 _____ C:\Users\Marcelka a Pavlíček\Documents\Motivační dopis Pavel Kulhavý.odt
2021-08-18 21:29 - 2021-08-22 19:34 - 000020159 _____ C:\Users\Marcelka a Pavlíček\Desktop\Pavel Kulhavý.odt

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-09-17 10:49 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-09-17 10:45 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-09-17 10:39 - 2019-08-28 22:45 - 000000000 ____D C:\Users\Marcelka a Pavlíček\AppData\LocalLow\Mozilla
2021-09-16 19:05 - 2020-06-08 22:53 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-09-16 17:37 - 2020-06-08 23:00 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-09-16 17:37 - 2019-08-30 20:34 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-09-16 17:29 - 2020-06-08 23:01 - 001696380 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-09-16 17:29 - 2019-12-07 16:41 - 000719042 _____ C:\WINDOWS\system32\perfh005.dat
2021-09-16 17:29 - 2019-12-07 16:41 - 000145638 _____ C:\WINDOWS\system32\perfc005.dat
2021-09-16 17:25 - 2020-11-03 22:33 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-09-16 17:21 - 2020-06-08 23:00 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-09-16 17:20 - 2020-06-08 22:53 - 000457256 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-09-16 17:20 - 2020-06-08 22:53 - 000008192 ___SH C:\DumpStack.log.tmp
2021-09-16 17:20 - 2019-08-28 22:45 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-09-16 17:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-09-16 17:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-09-16 17:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-09-16 17:19 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-09-16 17:17 - 2020-11-17 00:29 - 000000000 ____D C:\Users\Marcelka a Pavlíček\AppData\Roaming\vlc
2021-09-16 14:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-09-15 14:25 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-09-15 14:10 - 2019-08-28 23:03 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-09-15 14:03 - 2019-08-28 23:03 - 135637312 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-09-14 18:55 - 2020-09-12 10:29 - 000000000 ____D C:\Users\Marcelka a Pavlíček\AppData\Local\CrashDumps
2021-09-14 18:51 - 2020-11-14 12:13 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-09-14 18:51 - 2020-09-08 22:13 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-09-14 18:50 - 2020-02-11 20:53 - 000160176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-09-14 18:22 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-09-13 16:16 - 2020-06-08 08:29 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-09-12 10:05 - 2020-06-08 23:00 - 000003404 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3884071663-162100166-419435186-1001
2021-09-12 10:05 - 2020-06-08 22:33 - 000002419 _____ C:\Users\Marcelka a Pavlíček\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-09-09 18:02 - 2019-08-28 22:28 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-09-08 19:52 - 2020-02-21 11:46 - 000000000 ____D C:\Users\Marcelka a Pavlíček\Documents\Inkaso a další platby
2021-09-08 14:22 - 2019-08-28 22:45 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-09-05 20:40 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-09-05 20:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-09-05 20:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-09-05 20:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-09-05 20:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-09-05 20:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-09-05 20:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-09-05 20:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-09-05 20:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2021-09-05 20:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-09-05 20:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-09-05 20:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-09-05 20:40 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2021-09-03 20:43 - 2021-02-21 15:44 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-09-01 09:13 - 2019-08-28 22:38 - 000000000 ____D C:\Users\Marcelka a Pavlíček\AppData\Local\Packages
2021-08-31 14:23 - 2019-08-28 22:47 - 000803176 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2021-08-27 20:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Registration
2021-08-21 13:00 - 2019-09-13 15:51 - 000001435 _____ C:\Users\Marcelka a Pavlíček\Desktop\Roblox Player.lnk
2021-08-21 13:00 - 2019-09-13 15:45 - 000000000 ____D C:\Users\Marcelka a Pavlíček\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox

==================== Files in the root of some directories ========

2021-02-02 20:55 - 2021-02-02 21:00 - 000000128 _____ () C:\Users\Marcelka a Pavlíček\AppData\Roaming\winscp.rnd
2019-10-01 21:04 - 2021-08-10 20:43 - 000025311 _____ () C:\Users\Marcelka a Pavlíček\AppData\Local\FSDownloader.err
2019-09-22 15:24 - 2021-08-10 20:43 - 000001128 _____ () C:\Users\Marcelka a Pavlíček\AppData\Local\FSDownloader.nast
2021-08-27 20:44 - 2021-08-27 20:44 - 000000017 _____ () C:\Users\Marcelka a Pavlíček\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

paolov
Návštěvník
Návštěvník
Příspěvky: 242
Registrován: 30 srp 2006 20:17
Bydliště: Jih Moravy.

Re: Preventivní kontrola logu

#2 Příspěvek od paolov »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-09-2021
Ran by Marcelka a Pavlíček (17-09-2021 10:50:13)
Running from C:\Users\Marcelka a Pavlíček\Downloads
Windows 10 Home Version 21H1 19043.1237 (X64) (2020-06-08 21:00:31)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-3884071663-162100166-419435186-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3884071663-162100166-419435186-503 - Limited - Disabled)
Guest (S-1-5-21-3884071663-162100166-419435186-501 - Limited - Disabled)
Marcelka a Pavlíček (S-1-5-21-3884071663-162100166-419435186-1001 - Administrator - Enabled) => C:\Users\Marcelka a Pavlíček
WDAGUtilityAccount (S-1-5-21-3884071663-162100166-419435186-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 21.007.20091 - Adobe Systems Incorporated)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
Balíček ovladače systému Windows - Nokia Modem (02/25/2011 4.7) (HKLM\...\E0AC723A3DE3A04256288CADBBB011B112AED454) (Version: 02/25/2011 4.7 - Nokia)
Balíček ovladače systému Windows - Nokia Modem (02/25/2011 7.01.0.9) (HKLM\...\72A50F48CC5601190B9C4E74D81161693133E7F7) (Version: 02/25/2011 7.01.0.9 - Nokia)
Balíček ovladače systému Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
Diablo II CZ verze 1.13c (HKLM-x32\...\{F380060E-D8AC-4823-91B8-71B9054C8DD2}_is1) (Version: 1.13c - )
Doom 3 verze 1.3.1 (HKLM-x32\...\{412432A1-677C-438F-A7D3-BB17DE4AF32D}_is1) (Version: 1.3.1 - )
FastShare.cz verze 2.4.0 (HKLM-x32\...\FastShare.cz_is1) (Version: 2.4.0 - )
Java 8 Update 301 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180301F0}) (Version: 8.0.3010.9 - Oracle Corporation)
LibreOffice 7.1.5.2 (HKLM\...\{4F0D0C39-A2CD-4908-AA4C-A1CC9BDCD71A}) (Version: 7.1.5.2 - The Document Foundation)
Malwarebytes version 4.4.6.132 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.6.132 - Malwarebytes)
Mi PC Suite (HKU\S-1-5-21-3884071663-162100166-419435186-1001\...\MiPhoneManager) (Version: - Xiaomi Inc.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 93.0.961.47 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3884071663-162100166-419435186-1001\...\OneDriveSetup.exe) (Version: 21.160.0808.0002 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-3884071663-162100166-419435186-1001\...\Teams) (Version: 1.4.00.11161 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{7B981965-2FBC-433C-B4B3-E183EE97CD29}) (Version: 2.83.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Modiac MP3 to MP4 Audio Converter (HKLM-x32\...\Modiac MP3 to MP4 Audio Converter) (Version: 1.0.0.4258 - Modiac Inc.)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 92.0 (x64 cs)) (Version: 92.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.0.2 - Mozilla)
MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
Nokia Connectivity Cable Driver (HKLM-x32\...\{A57025CC-5F2E-4D01-B387-06DB10500D43}) (Version: 7.1.78.0 - Nokia)
Nokia PC Suite (HKLM-x32\...\{866C4563-ED53-43F3-A29D-8BEE2BD1BA3C}) (Version: 7.1.180.94 - Nokia) Hidden
Nokia PC Suite (HKLM-x32\...\Nokia PC Suite) (Version: 7.1.180.94 - Nokia)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
PC Connectivity Solution (HKLM-x32\...\{644F4910-E812-49AD-93EC-86828CB81A0D}) (Version: 12.0.27.0 - Nokia)
Roblox Player for Marcelka a Pavlíček (HKU\S-1-5-21-3884071663-162100166-419435186-1001\...\roblox-player) (Version: - Roblox Corporation)
Roblox Studio for Marcelka a Pavlíček (HKU\S-1-5-21-3884071663-162100166-419435186-1001\...\roblox-studio) (Version: - Roblox Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.19.1 - Synaptics Incorporated)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.21.8 - TeamViewer)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.16 - VideoLAN)
WinSCP 5.17.10 (HKLM-x32\...\winscp3_is1) (Version: 5.17.10 - Martin Prikryl)

Packages:
=========
Artinii Cinema Player -> C:\Program Files\WindowsApps\Artinii.ArtiniiCinemaPlayer_1.0.591.0_x64__3p48kjqbq46a6 [2021-09-09] (Artinii)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-03-04] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-12] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-08-30] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-08-30] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.7290.0_x64__8wekyb3d8bbwe [2021-08-05] (Microsoft Studios) [MS Ad]
uBlock Origin -> C:\Program Files\WindowsApps\37833NikRolls.uBlockOrigin_1.15.24.0_neutral__f8jsg5mm64m62 [2020-04-11] (Nik Rolls)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3884071663-162100166-419435186-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Marcelka a Pavlíček\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.21063.3\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-02-11] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-02-11] (Malwarebytes Corporation -> Malwarebytes)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [msacm.l3acm] => C:\Windows\SysWOW64\l3codecp.acm [189440 2019-12-07] (Microsoft Windows -> Fraunhofer Institut Integrierte Schaltungen IIS)

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2021-08-02 10:33 - 2021-08-02 10:33 - 000031232 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\A4.Foundation\11957e80aac6fe4aa075f148a371cdea\A4.Foundation.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000022528 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Actions5dc83b46#\36d9df3e9cf979be95c5196a08952ee7\AEM.Actions.CCAA.Shared.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.0a1309f7#\421ab0a3deb42718f1eac7ac591a0eed\AEM.Plugin.EEU.Shared.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.2b6a6775#\e9f315954abbb9146f53772d7469521d\AEM.Plugin.Hotkeys.Shared.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000016384 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.54d8abe3#\3f37c2adbe2fac1249da2b10c9105ee0\AEM.Plugin.DPPE.Shared.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000281600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.5d945b6b#\5678b44a041e2bde8b0da860894dc769\AEM.Plugin.Source.Kit.Server.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000014848 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.674d2b8a#\bb41f3e4fe424f9dcb9a953372945f7e\AEM.Plugin.WinMessages.Shared.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000012800 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.88aba5d2#\f7aac188f55a3a27bbcb7d36595a8e39\AEM.Plugin.REG.Shared.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.GD.Shared\ecffdff4e9fd09f1317fafb973e8619b\AEM.Plugin.GD.Shared.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Server.Shared\049470d94f30689f7d8676dc7535a12a\AEM.Server.Shared.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000267776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Server\c9a4ce940f97cc366e31ca82370de8c9\AEM.Server.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000055808 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\APM.Foundation\295a13daa12d8b68a1d015dcb27d14ec\APM.Foundation.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000122880 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ATICCCom\c326a7cb02d274a20902d4c8fe054f6d\ATICCCom.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000204288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CCC.Implementation\1e1ec63c6635c363384e4522fa9f0436\CCC.Implementation.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000154112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.21d2ac78#\537a8a8a73f7f519f875d4dcc5e6a6ec\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000128000 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3399d0ec#\f6df30eba0a30d1f6d8423b3130bc628\CLI.Aspect.CustomFormats.Graphics.Shared.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000026112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.37d3d968#\81ebbb81d69ac578ea5b9cac1107af98\CLI.Aspect.AMDHome.Graphics.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000045568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.382a3def#\b1beab2200d993608bcd689a73fc36a2\CLI.Aspect.AMDOverDrive.Platform.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000107008 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3a6f1658#\573537da98cce4a1b7bb9d9e5047c174\CLI.Aspect.TransCode.Graphics.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000132608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.46819220#\e5a1a9738ea5381d5e7a48f3a73da12e\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000074752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4bbb0755#\a3c22e4df7706004edb09713b31c8db2\CLI.Aspect.TransCode.Graphics.Dashboard.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000037888 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.52c6dbaa#\1f4514b7f093353ebd068f26b1330520\CLI.Aspect.FPS.Graphics.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000074752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.59a12d95#\b3abf0f5e48705235149f0db735bfbf4\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000263168 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.73911eb5#\2855f10dc521de2a2f81a2b8fc46d7e9\CLI.Aspect.WirelessDisplay.Graphics.Shared.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000365056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.7ec2db45#\e01c78e10ba72ba47f4b99e0b4d72caa\CLI.Aspect.DeviceDFP.Graphics.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000064000 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8350f5c6#\82f4b255535ec70db3cdb62532d5ae3e\CLI.Aspect.UpdateNotification.Graphics.Runtime.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000678912 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.846fa813#\0083c054f6f0dc15df75979c45011f43\CLI.Aspect.MMVideo.Graphics.Dashboard.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000745472 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8d333b6b#\62e56187a74aea0547327decb3a090df\CLI.Aspect.Radeon3D.Graphics.Shared.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000449536 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8e996306#\bf5e6bd0b94ead139d02a133485e51b7\CLI.Aspect.CrossDisplay.Graphics.Dashboard.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000089088 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.9cd1e9e7#\b3de14c2a08c37791db53b4615c54186\CLI.Aspect.FPS.Graphics.Dashboard.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000057856 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a6cd7fff#\a2242e013e7c4f0d6a549a4a2cd590e2\CLI.Aspect.FPS.Graphics.Runtime.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000082944 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a765109e#\d42ab4f0a26a15123ef4aecf191daa80\CLI.Aspect.UpdateNotification.Graphics.Dashboard.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000462336 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.acb9d930#\c117bc0ecb9036a5dd163cf31ab76da3\CLI.Aspect.DeviceProperty.Graphics.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000067072 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.b0a7c1fb#\3044392fa6a004d603cc507ddc71175f\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000340992 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c7aaa0f8#\12b5ddcfb455b5199d38fd2c7183ffab\CLI.Aspect.OverDrive5.Graphics.Shared.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000017920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c854b457#\a3cc10d4127e3581dfe7fadfda61ddc8\CLI.Aspect.HotkeysHandling.Graphics.Shared.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000096256 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.d4f2f79c#\511531cc2fbed930427b1291ef8d740c\CLI.Aspect.CrossFireX.Graphics.Dashboard.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000276480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e8635fc7#\33852c6bd4b35d4daaedd0b0efd32b7d\CLI.Aspect.InfoCentre.Graphics.Dashboard.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 003312640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e9fd7406#\6115ef9385f83b91375d2739d2a90719\CLI.Aspect.Radeon3D.Graphics.Dashboard.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000240640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.eda8935e#\685d5193cc9727450237a111243e3edd\CLI.Aspect.MMVideo.Graphics.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000047616 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ef3eaa4d#\34ad82d8371f027febb750242b651132\CLI.Aspect.TransCode.Graphics.Runtime.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000050688 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.f480a2f3#\33d6ecdc379c9abe8614f1c0a3b11c96\CLI.Aspect.UpdateNotification.Graphics.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000051200 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Runtime\b7a6736bb20b9124b832025c857eeb77\CLI.Caste.A4.Runtime.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Shared\542913b31b906e5420d677b6e8db5bdc\CLI.Caste.A4.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000027136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Af820fedc#\ef705b1b5ec196f0d15593a7eba6aeca\CLI.Caste.A4.Dashboard.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F24de14fe#\09390689ec66256af6df01abb092eeec\CLI.Caste.Fuel.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000311296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F36b07a2b#\ef3714c65cd8d025910dd5de1f55c19d\CLI.Caste.Fuel.Runtime.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000027136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Ff3085433#\ab48ea73acbca9c43476820fc386bb8e\CLI.Caste.Fuel.Dashboard.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000037376 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60338cc0#\f5b281abf4a6b3269e2f802680e8dd3d\CLI.Caste.Graphics.Runtime.Shared.Private.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 001555456 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gd9d9b43b#\4a511821a9c8a938a814bc5706fcafa5\CLI.Caste.Graphics.Dashboard.Shared.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000587776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gee7d2dbc#\4e3dab7662a43f5100026fb80a0d4ad2\CLI.Caste.Graphics.Dashboard.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H18c99613#\0cc679c82e9134d8826472cbdfd61ecf\CLI.Caste.HydraVision.Runtime.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H92ba4e46#\53800e67cbdb362de16024979760f8b4\CLI.Caste.HydraVision.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Hbb906c0b#\8b66176923ddf1aeb06fa2f19a3ccb4f\CLI.Caste.HydraVision.Dashboard.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pac40511b#\323e2bf363d1eadd32c843cb48dff255\CLI.Caste.Platform.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000044032 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pdb36d56e#\b10e648ce9ab1348c5fee268b40c17bd\CLI.Caste.Platform.Runtime.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000024064 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pfeefa2b6#\1857339a04521c8f1137ddc9558072f5\CLI.Caste.Platform.Dashboard.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone1b4a8c97#\bf63b52fec30fc53e3f1eb9bf42ebc63\CLI.Component.Runtime.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000901632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone26c9c557#\da85da2f64005bd551eb9f53e839ccd4\CLI.Component.Systemtray.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000173568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone29e547cc#\b060b54ca1ee30b7e94c208184812c8c\CLI.Component.Dashboard.ProfileManager2.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000151040 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone59f353b4#\111c03cfeb778ece9e7c0c507026f3e4\CLI.Component.Runtime.Shared.Private.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componeb4d0485c#\a3d433fe4baaa6b149263f2eaa47020d\CLI.Component.Runtime.Extension.EEU.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 001609728 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componec89c3bec#\da0e95145981f700c0cab1867c8b4312\CLI.Component.Dashboard.Shared.Private.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000018432 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componef1fd67b2#\6054cdfc86edeb31a1b7a7e6148305e2\CLI.Component.Client.Shared.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000085504 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componef4cf054f#\edede36c8fb5a97443dae905a4ed7728\CLI.Component.Dashboard.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000495104 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Component.Eeu\1063b559f0a874b8c427cd8ed9830452\CLI.Component.Eeu.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000089600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat3d5d3945#\2645fbae800657f0e21b47d677811a03\CLI.Foundation.Private.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000061440 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat60cdf5df#\eca2c297f29eeaa7e5d6bdcd7bb4b7c6\CLI.Foundation.XManifest.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000091136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat619559bd#\cc4823186b736d37f1006ae27724fc06\CLI.Foundation.CoreAudioAPI.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 001079808 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundatd3771151#\2458cfefa95eb8e77663d4785bb86ec6\CLI.Foundation.Client.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000301568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundation\ae6606530750410b0a96777f0b17e756\CLI.Foundation.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Foundation\b5f80a31f5bdd2998d74ed57af4c891d\DEM.Foundation.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000115200 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0601\ea3b9ea4e7dca43058fa5e74ab3565af\DEM.Graphics.I0601.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics\676857338bd66030bdd666b6c80713d7\DEM.Graphics.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000037376 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Fuel.Foundation\d8ebb5e971159850452858547f3c5a98\Fuel.Foundation.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000296960 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundat03490438#\97ba4ac59dd06a4476629880819c7768\LOG.Foundation.Implementation.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000150016 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundat5023f8e7#\bcbf7fa87dfb250c9741a0f93d0f1c73\LOG.Foundation.Private.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000087552 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundatcaafa75b#\c3c155736807caece881c7a6f4eb8219\LOG.Foundation.Implementation.Private.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000132608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundation\86ea4d2aa4928b3a5741cc1da5ce2cb4\LOG.Foundation.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MOM.Foundation\3aae2be2d60464b0c341911f6e97f50c\MOM.Foundation.ni.dll
2021-08-02 10:35 - 2021-08-02 10:35 - 000402944 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MOM.Implementation\97391ddecb899ebe77304ce9b53b6aa4\MOM.Implementation.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000055296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\NEWAEM.Foundation\e1adb549103d88fd22da964608f45949\NEWAEM.Foundation.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000897024 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ADL.Foundation\230eb6a89a38c2358f8a3a33ea5a2210\ADL.Foundation.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000256000 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\APM.Server\22a31e933dd439ea5e27a32868683309\APM.Server.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000783872 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.79734f7a#\71cd7566ac54d5607a9e85dd42274ac7\CLI.Aspect.PowerXpress.Graphics.Runtime.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000357888 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.b3da5a8f#\a62a46cf6f08d918dd52b0fe82a8ad6e\CLI.Aspect.PowerXpress.Graphics.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000595456 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.d4846ba2#\8927cf8e9eeb0772e3c79b536c762f2f\CLI.Aspect.PowerXpress.Graphics.Dashboard.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 008027648 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Combine0616f305#\763508824ea16122644287597cc11c81\CLI.Combined.Graphics.Aspects1.Dashboard.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000136704 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone168638d1#\3e1a29e1f40f68c58558988b03ee4149\CLI.Component.Client.Shared.Private.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000234496 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone6692ca50#\92cf67c817c409c69992230ff22fe097\CLI.Component.Runtime.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000929280 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone6bf88b08#\a0d65d034b7a3d287a67b218d83ad656\CLI.Component.Dashboard.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000011264 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0702\146eae4724574ad79c18f78cb5a7e1d5\DEM.Graphics.I0702.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000084480 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0709\8c4851117ebc88c333eed07438088c01\DEM.Graphics.I0709.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000009728 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0710\4410797938f009577b8746bc2a4a9f18\DEM.Graphics.I0710.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000012288 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0712\546256c2fb73d3541ac3f4c88003d11f\DEM.Graphics.I0712.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000018432 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0804\1435c1972d68a6917aac8a45120e4bb5\DEM.Graphics.I0804.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000009728 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0901\522e8316aa52ccee1909a58dd53411b0\DEM.Graphics.I0901.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000013312 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0906\ee00c0a6fd27b348ac98b54f72f44a5d\DEM.Graphics.I0906.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000035840 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I1010\7849779ef9c63ff0621ce495db124ac2\DEM.Graphics.I1010.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 001139200 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Localizatio01dbc1c0#\0b5f5f033666f210d8562ffb32ef8ad7\Localization.Foundation.Private.ni.dll
2021-08-02 10:35 - 2021-08-02 10:35 - 000244736 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ResourceMan446ca0e5#\ab815b3194e847398ee9a5a74f689e11\ResourceManagement.Foundation.Implementation.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000023552 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ResourceManf163905a#\4d9f31835cc8c17564c0526cb81a4ba4\ResourceManagement.Foundation.Private.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000091648 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ec8786e5#\f510d1fca82d3a542daee20051cd59cb\CLI.Aspect.AMDHome.Graphics.Dashboard.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 002845696 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60a7b4d1#\bfca917f0f71c3abd16c122cead3bb96\CLI.Caste.Graphics.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 003268096 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G962aa464#\4877439f0651af56ee90fcb6193f914f\CLI.Caste.Graphics.Runtime.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000335360 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.W8090224c#\1b2f2e31e5667fd6977d0719bb3bba70\Microsoft.WindowsAPICodePack.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 002546688 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.Wfbf9373c#\45d0df6896072d3eb640bbff9df04447\Microsoft.WindowsAPICodePack.Shell.ni.dll
2012-06-26 14:08 - 2012-06-26 14:08 - 000026624 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_cze.nlr
2012-06-26 12:58 - 2012-06-26 12:58 - 001262592 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\NGSCM64.DLL
2012-06-26 14:08 - 2012-06-26 14:08 - 000572928 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_301\bin\ssv.dll [2021-08-01] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_301\bin\jp2ssv.dll [2021-08-01] (Oracle America, Inc. -> Oracle Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

2020-12-08 17:41 - 2020-12-08 17:46 - 000000445 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\PC Connectivity Solution\;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static
HKU\S-1-5-21-3884071663-162100166-419435186-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Marcelka a Pavlíček\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\IMG_20210320_153419.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{0C2D014B-B6B3-4A99-8F41-33D9CF400294}C:\program files (x86)\java\jre1.8.0_251\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_251\bin\javaw.exe => No File
FirewallRules: [TCP Query User{CC9B20CD-8021-40A8-A199-D17855ADE7C5}C:\program files (x86)\java\jre1.8.0_251\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_251\bin\javaw.exe => No File
FirewallRules: [UDP Query User{38F8A0BA-CDB0-4D19-B4F7-4C7F6039A585}C:\users\marcelka a pavlíček\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe] => (Block) C:\users\marcelka a pavlíček\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe
FirewallRules: [TCP Query User{1DDCC2AA-E680-4B66-BE7D-4330682FD8B8}C:\users\marcelka a pavlíček\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe] => (Block) C:\users\marcelka a pavlíček\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{2D56983B-0B5D-40BE-B0E2-43351CBA8A19}C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe => No File
FirewallRules: [TCP Query User{9F899ED7-25CE-42EC-964A-1B7C3A9E156B}C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe => No File
FirewallRules: [UDP Query User{9F92D62C-A695-43D4-A2E3-801E7029C193}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [TCP Query User{415B8BCF-80E2-4329-A644-7C4D942B1130}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [UDP Query User{F6A79B0F-C4B7-43D8-906C-99BAD5696706}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [TCP Query User{A1632069-0850-46F4-BC54-10464923694A}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [UDP Query User{47B6D6F1-39C5-4650-B259-8901280D84C9}C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe => No File
FirewallRules: [TCP Query User{431A2486-29C0-4B59-B74A-E0B5F13D08A9}C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe => No File
FirewallRules: [{53643E65-E92D-421E-BA91-54BC289C98EF}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{EFFF745D-6577-4BD1-A3C9-507BF4B7374F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{150EB5F0-0A84-45A4-BE41-0BB8DE478888}C:\program files (x86)\java\jre1.8.0_261\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_261\bin\javaw.exe => No File
FirewallRules: [UDP Query User{679E569E-E462-4B40-9C3E-7D0E7B2A3022}C:\program files (x86)\java\jre1.8.0_261\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_261\bin\javaw.exe => No File
FirewallRules: [TCP Query User{5208A8D1-F787-427E-86CE-70327A563356}C:\program files (x86)\infogrames\v-rally\vrdirectx.exe] => (Block) C:\program files (x86)\infogrames\v-rally\vrdirectx.exe => No File
FirewallRules: [UDP Query User{D914CED9-3EEB-49E2-B2C2-CA98B284287E}C:\program files (x86)\infogrames\v-rally\vrdirectx.exe] => (Block) C:\program files (x86)\infogrames\v-rally\vrdirectx.exe => No File
FirewallRules: [TCP Query User{B52F0E35-875E-4588-BA8C-D8B26EE66FA9}C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe => No File
FirewallRules: [UDP Query User{8939C380-0DC6-49D5-BEDC-0B009736EC32}C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe => No File
FirewallRules: [{E63B9B41-E6F5-4331-8763-73FA3963CA7F}] => (Allow) C:\Program Files (x86)\Seagull\BarTender Suite\BtSystem.Service.exe => No File
FirewallRules: [{BA896FCB-4CC3-4669-9747-EC4DD4EE6FA9}] => (Allow) C:\Program Files (x86)\Seagull\BarTender Suite\BtSystem.Service.exe => No File
FirewallRules: [TCP Query User{035BA2B5-ADF0-4310-8307-E739622D89F8}C:\program files (x86)\java\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_281\bin\javaw.exe => No File
FirewallRules: [UDP Query User{2C32D8F8-54A7-4AD0-8C0F-B268D26FCC4B}C:\program files (x86)\java\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_281\bin\javaw.exe => No File
FirewallRules: [TCP Query User{8F35D91C-6D9A-4C23-B4FB-796822209522}C:\users\marcelka a pavlíček\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\marcelka a pavlíček\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{1F98D6DB-5E6B-46E1-A1D6-AB9D438511A5}C:\users\marcelka a pavlíček\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\marcelka a pavlíček\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{BB5D7EFD-720C-4777-AD23-31C4C4191B48}C:\users\marcelka a pavlíček\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\marcelka a pavlíček\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{D8FB6E9E-E524-4B0B-BA30-3B8DF8F9E87A}C:\users\marcelka a pavlíček\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\marcelka a pavlíček\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{B376198C-3AD8-4EB0-859C-B44CFEB57715}C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe => No File
FirewallRules: [UDP Query User{11236998-CD9C-4E70-913C-F326A1FB79EC}C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe => No File
FirewallRules: [{85A2B8DA-07A3-4989-98A5-018ADB5EDA27}] => (Allow) C:\Users\Marcelka a Pavlíček\AppData\Local\MiPhoneManager\main\MiPCSuite.exe (Xiaomi Technology Inc -> Xiaomi.Inc)
FirewallRules: [TCP Query User{8371B502-DDC4-4D92-81AB-EE643A00F084}C:\users\marcelka a pavlíček\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe] => (Block) C:\users\marcelka a pavlíček\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司)
FirewallRules: [UDP Query User{4B0333F9-1361-4461-BB77-1EACC88AAEA9}C:\users\marcelka a pavlíček\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe] => (Block) C:\users\marcelka a pavlíček\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司)
FirewallRules: [TCP Query User{F0C3F816-CDFD-456E-A4F1-C66F022888CC}C:\windows\syswow64\dplaysvr.exe] => (Block) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{BBE7992A-5D10-461D-B837-0A5B4595D7E4}C:\windows\syswow64\dplaysvr.exe] => (Block) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{99F3A61E-879A-4B00-A10F-EA212E3CA38D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6AD53378-DAFD-4462-8B0B-818459BEC203}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5F03AA3F-9391-41EA-B28D-BA65DCF5DBDA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9BF073F6-83DF-4EBC-A504-0680D1B87280}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E5F7E079-F3E5-42FC-A5F2-6C32B52D19F3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{7D87835B-8AF6-4A64-B16D-328ADDA9179C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{B4175DE1-291A-44AD-829C-06BAD50901E1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{0CC017B6-6939-4496-B229-DC085705B509}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:110.64 GB) (Free:13.61 GB) (12%)

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (09/14/2021 07:02:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: mbamtray.exe, verze: 4.0.0.1117, časové razítko: 0x61321f0b
Název chybujícího modulu: Qt5Core.dll, verze: 5.14.1.0, časové razítko: 0x603971ce
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000219dc5
ID chybujícího procesu: 0x3144
Čas spuštění chybující aplikace: 0x01d7a98a4c365b6c
Cesta k chybující aplikaci: C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
Cesta k chybujícímu modulu: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
ID zprávy: f42e91f2-72d3-4107-9d5c-896367476692
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (09/14/2021 07:00:04 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Centru zabezpečení se nepodařilo ověřit volajícího s chybou %1.

Error: (09/14/2021 06:57:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: mbam.exe, verze: 4.0.0.1117, časové razítko: 0x61322081
Název chybujícího modulu: Qt5Core.dll, verze: 5.14.1.0, časové razítko: 0x603971ce
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000219dc5
ID chybujícího procesu: 0x1ae4
Čas spuštění chybující aplikace: 0x01d7a9899002439a
Cesta k chybující aplikaci: C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
Cesta k chybujícímu modulu: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
ID zprávy: 0b367cc0-0749-4bf0-b08e-004e29a0ade3
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (09/14/2021 06:54:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MBAM.exe, verze: 4.0.0.1117, časové razítko: 0x61322081
Název chybujícího modulu: Qt5Core.dll, verze: 5.14.1.0, časové razítko: 0x603971ce
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000219dc5
ID chybujícího procesu: 0x3184
Čas spuštění chybující aplikace: 0x01d7a9892542578c
Cesta k chybující aplikaci: C:\Program Files\Malwarebytes\Anti-Malware\MBAM.exe
Cesta k chybujícímu modulu: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
ID zprávy: 4aa449af-2e9a-48d6-9bea-a88fddf50c93
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (09/14/2021 06:51:32 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Centru zabezpečení se nepodařilo ověřit volajícího s chybou %1.

Error: (09/05/2021 08:39:56 PM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed

Error: (09/05/2021 08:15:00 PM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed

Error: (09/05/2021 11:28:36 AM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed


System errors:
=============
Error: (09/16/2021 07:53:19 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-79A5PSH)
Description: Server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} se v daném časovém limitu neregistroval u služby DCOM.

Error: (09/16/2021 05:17:58 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-79A5PSH)
Description: Server Microsoft.AAD.BrokerPlugin_1000.19041.1023.0_neutral_neutral_cw5n1h2txyewy!Windows.Security.Authentication.Web.Core.BackgroundGetTokenTask.ClassId.WebAccountProvider se v daném časovém limitu neregistroval u služby DCOM.

Error: (09/11/2021 09:56:40 AM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: NT AUTHORITY)
Description: Na miniportu TeamViewer VPN Adapter, {174a77be-1ada-4fe8-8cfc-0e94fabe93a3}, došlo k události 76.

Error: (09/07/2021 07:59:47 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-79A5PSH)
Description: Server Microsoft.Windows.Search_1.14.2.19041_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppX49we79s9ab0xp8xpjb6t6g31ep03r71y.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (09/04/2021 11:20:41 AM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: NT AUTHORITY)
Description: Na miniportu TeamViewer VPN Adapter, {f39fabdf-be31-4260-8fbe-df5d7c089998}, došlo k události 76.

Error: (08/26/2021 10:37:53 AM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: NT AUTHORITY)
Description: Na miniportu TeamViewer VPN Adapter, {7d1cc9df-6a3d-4aa0-81bd-09855715e1e7}, došlo k události 76.

Error: (08/25/2021 09:31:03 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-79A5PSH)
Description: Server Microsoft.Windows.ContentDeliveryManager_10.0.19041.1023_neutral_neutral_cw5n1h2txyewy!Windows.Networking.BackgroundTransfer.Internal.NetworkChangeTask.ClassId.1 se v daném časovém limitu neregistroval u služby DCOM.

Error: (08/22/2021 08:27:14 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-79A5PSH)
Description: Server {776DBC8D-7347-478C-8D71-791E12EF49D8} se v daném časovém limitu neregistroval u služby DCOM.


Windows Defender:
================
Date: 2021-09-12 18:30:55
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {4D770690-6AE2-4B77-98A3-51B0CC696EBA}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-09-12 10:24:06
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {07882810-BAA0-4AF3-A797-0C3A1F224913}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-09-08 19:38:46
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {FCA7C7F4-DAF1-4F0A-805E-658D5FE551CD}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-09-07 19:05:34
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {9D95974E-9E8B-45AC-A24F-C823F35B3224}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-09-05 20:30:32
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {D17DBF6C-394B-40A1-AAB9-31337F2CED4F}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

CodeIntegrity:
===============
Date: 2021-09-16 17:23:50
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2021-09-14 19:02:41
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2021-05-08 20:22:20
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\WindowManagementAPI.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

BIOS: LENOVO 40CN08WW(V3.07) 09/19/2011
Motherboard: LENOVO Base Board Product Name
Processor: Intel(R) Core(TM) i5-2430M CPU @ 2.40GHz
Percentage of memory in use: 73%
Total physical RAM: 4039.86 MB
Available physical RAM: 1063.24 MB
Total Virtual: 6983.86 MB
Available Virtual: 2979.71 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:110.64 GB) (Free:13.61 GB) NTFS

\\?\Volume{f70accae-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.57 GB) (Free:0.53 GB) NTFS
\\?\Volume{f70accae-0000-0000-0000-70cd1b000000}\ () (Fixed) (Total:0.58 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: F70ACCAE)
Partition 1: (Active) - (Size=579 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=110.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=592 MB) - (Type=27)

==================== End of Addition.txt =======================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118197
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Preventivní kontrola logu

#3 Příspěvek od Rudy »

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
FirewallRules: [UDP Query User{0C2D014B-B6B3-4A99-8F41-33D9CF400294}C:\program files (x86)\java\jre1.8.0_251\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_251\bin\javaw.exe => No File
FirewallRules: [TCP Query User{CC9B20CD-8021-40A8-A199-D17855ADE7C5}C:\program files (x86)\java\jre1.8.0_251\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_251\bin\javaw.exe => No File
FirewallRules: [UDP Query User{2D56983B-0B5D-40BE-B0E2-43351CBA8A19}C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe => No File
FirewallRules: [TCP Query User{9F899ED7-25CE-42EC-964A-1B7C3A9E156B}C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe => No File
FirewallRules: [UDP Query User{9F92D62C-A695-43D4-A2E3-801E7029C193}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [TCP Query User{415B8BCF-80E2-4329-A644-7C4D942B1130}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [UDP Query User{F6A79B0F-C4B7-43D8-906C-99BAD5696706}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [TCP Query User{A1632069-0850-46F4-BC54-10464923694A}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [UDP Query User{47B6D6F1-39C5-4650-B259-8901280D84C9}C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe => No File
FirewallRules: [TCP Query User{431A2486-29C0-4B59-B74A-E0B5F13D08A9}C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe => No File
FirewallRules: [TCP Query User{150EB5F0-0A84-45A4-BE41-0BB8DE478888}C:\program files (x86)\java\jre1.8.0_261\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_261\bin\javaw.exe => No File
FirewallRules: [UDP Query User{679E569E-E462-4B40-9C3E-7D0E7B2A3022}C:\program files (x86)\java\jre1.8.0_261\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_261\bin\javaw.exe => No File
FirewallRules: [TCP Query User{5208A8D1-F787-427E-86CE-70327A563356}C:\program files (x86)\infogrames\v-rally\vrdirectx.exe] => (Block) C:\program files (x86)\infogrames\v-rally\vrdirectx.exe => No File
FirewallRules: [UDP Query User{D914CED9-3EEB-49E2-B2C2-CA98B284287E}C:\program files (x86)\infogrames\v-rally\vrdirectx.exe] => (Block) C:\program files (x86)\infogrames\v-rally\vrdirectx.exe => No File
FirewallRules: [TCP Query User{B52F0E35-875E-4588-BA8C-D8B26EE66FA9}C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe => No File
FirewallRules: [UDP Query User{8939C380-0DC6-49D5-BEDC-0B009736EC32}C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe => No File
FirewallRules: [{E63B9B41-E6F5-4331-8763-73FA3963CA7F}] => (Allow) C:\Program Files (x86)\Seagull\BarTender Suite\BtSystem.Service.exe => No File
FirewallRules: [{BA896FCB-4CC3-4669-9747-EC4DD4EE6FA9}] => (Allow) C:\Program Files (x86)\Seagull\BarTender Suite\BtSystem.Service.exe => No File
FirewallRules: [TCP Query User{035BA2B5-ADF0-4310-8307-E739622D89F8}C:\program files (x86)\java\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_281\bin\javaw.exe => No File
FirewallRules: [UDP Query User{2C32D8F8-54A7-4AD0-8C0F-B268D26FCC4B}C:\program files (x86)\java\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_281\bin\javaw.exe => No File
FirewallRules: [TCP Query User{B376198C-3AD8-4EB0-859C-B44CFEB57715}C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe => No File
FirewallRules: [UDP Query User{11236998-CD9C-4E70-913C-F326A1FB79EC}C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe => No File
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]

EmptyTemp:
End
Uložte do C:\Users\Marcelka a Pavlíček\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

paolov
Návštěvník
Návštěvník
Příspěvky: 242
Registrován: 30 srp 2006 20:17
Bydliště: Jih Moravy.

Re: Preventivní kontrola logu

#4 Příspěvek od paolov »

Fix result of Farbar Recovery Scan Tool (x64) Version: 15-09-2021
Ran by Marcelka a Pavlíček (19-09-2021 10:44:02) Run:1
Running from C:\Users\Marcelka a Pavlíček\Downloads
Loaded Profiles: Marcelka a Pavlíček
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
FirewallRules: [UDP Query User{0C2D014B-B6B3-4A99-8F41-33D9CF400294}C:\program files (x86)\java\jre1.8.0_251\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_251\bin\javaw.exe => No File
FirewallRules: [TCP Query User{CC9B20CD-8021-40A8-A199-D17855ADE7C5}C:\program files (x86)\java\jre1.8.0_251\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_251\bin\javaw.exe => No File
FirewallRules: [UDP Query User{2D56983B-0B5D-40BE-B0E2-43351CBA8A19}C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe => No File
FirewallRules: [TCP Query User{9F899ED7-25CE-42EC-964A-1B7C3A9E156B}C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe => No File
FirewallRules: [UDP Query User{9F92D62C-A695-43D4-A2E3-801E7029C193}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [TCP Query User{415B8BCF-80E2-4329-A644-7C4D942B1130}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [UDP Query User{F6A79B0F-C4B7-43D8-906C-99BAD5696706}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [TCP Query User{A1632069-0850-46F4-BC54-10464923694A}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [UDP Query User{47B6D6F1-39C5-4650-B259-8901280D84C9}C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe => No File
FirewallRules: [TCP Query User{431A2486-29C0-4B59-B74A-E0B5F13D08A9}C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe => No File
FirewallRules: [TCP Query User{150EB5F0-0A84-45A4-BE41-0BB8DE478888}C:\program files (x86)\java\jre1.8.0_261\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_261\bin\javaw.exe => No File
FirewallRules: [UDP Query User{679E569E-E462-4B40-9C3E-7D0E7B2A3022}C:\program files (x86)\java\jre1.8.0_261\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_261\bin\javaw.exe => No File
FirewallRules: [TCP Query User{5208A8D1-F787-427E-86CE-70327A563356}C:\program files (x86)\infogrames\v-rally\vrdirectx.exe] => (Block) C:\program files (x86)\infogrames\v-rally\vrdirectx.exe => No File
FirewallRules: [UDP Query User{D914CED9-3EEB-49E2-B2C2-CA98B284287E}C:\program files (x86)\infogrames\v-rally\vrdirectx.exe] => (Block) C:\program files (x86)\infogrames\v-rally\vrdirectx.exe => No File
FirewallRules: [TCP Query User{B52F0E35-875E-4588-BA8C-D8B26EE66FA9}C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe => No File
FirewallRules: [UDP Query User{8939C380-0DC6-49D5-BEDC-0B009736EC32}C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe => No File
FirewallRules: [{E63B9B41-E6F5-4331-8763-73FA3963CA7F}] => (Allow) C:\Program Files (x86)\Seagull\BarTender Suite\BtSystem.Service.exe => No File
FirewallRules: [{BA896FCB-4CC3-4669-9747-EC4DD4EE6FA9}] => (Allow) C:\Program Files (x86)\Seagull\BarTender Suite\BtSystem.Service.exe => No File
FirewallRules: [TCP Query User{035BA2B5-ADF0-4310-8307-E739622D89F8}C:\program files (x86)\java\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_281\bin\javaw.exe => No File
FirewallRules: [UDP Query User{2C32D8F8-54A7-4AD0-8C0F-B268D26FCC4B}C:\program files (x86)\java\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_281\bin\javaw.exe => No File
FirewallRules: [TCP Query User{B376198C-3AD8-4EB0-859C-B44CFEB57715}C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe => No File
FirewallRules: [UDP Query User{11236998-CD9C-4E70-913C-F326A1FB79EC}C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe => No File
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{0C2D014B-B6B3-4A99-8F41-33D9CF400294}C:\program files (x86)\java\jre1.8.0_251\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{CC9B20CD-8021-40A8-A199-D17855ADE7C5}C:\program files (x86)\java\jre1.8.0_251\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{2D56983B-0B5D-40BE-B0E2-43351CBA8A19}C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{9F899ED7-25CE-42EC-964A-1B7C3A9E156B}C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{9F92D62C-A695-43D4-A2E3-801E7029C193}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{415B8BCF-80E2-4329-A644-7C4D942B1130}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{F6A79B0F-C4B7-43D8-906C-99BAD5696706}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{A1632069-0850-46F4-BC54-10464923694A}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{47B6D6F1-39C5-4650-B259-8901280D84C9}C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{431A2486-29C0-4B59-B74A-E0B5F13D08A9}C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{150EB5F0-0A84-45A4-BE41-0BB8DE478888}C:\program files (x86)\java\jre1.8.0_261\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{679E569E-E462-4B40-9C3E-7D0E7B2A3022}C:\program files (x86)\java\jre1.8.0_261\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{5208A8D1-F787-427E-86CE-70327A563356}C:\program files (x86)\infogrames\v-rally\vrdirectx.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D914CED9-3EEB-49E2-B2C2-CA98B284287E}C:\program files (x86)\infogrames\v-rally\vrdirectx.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{B52F0E35-875E-4588-BA8C-D8B26EE66FA9}C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{8939C380-0DC6-49D5-BEDC-0B009736EC32}C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E63B9B41-E6F5-4331-8763-73FA3963CA7F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BA896FCB-4CC3-4669-9747-EC4DD4EE6FA9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{035BA2B5-ADF0-4310-8307-E739622D89F8}C:\program files (x86)\java\jre1.8.0_281\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{2C32D8F8-54A7-4AD0-8C0F-B268D26FCC4B}C:\program files (x86)\java\jre1.8.0_281\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{B376198C-3AD8-4EB0-859C-B44CFEB57715}C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{11236998-CD9C-4E70-913C-F326A1FB79EC}C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe" => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 10248192 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 479819897 B
Java, Flash, Steam htmlcache => 291 B
Windows/system/drivers => 7479486 B
Edge => 3507884 B
Firefox => 452620724 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 6656 B
ProgramData => 6656 B
Public => 6656 B
systemprofile => 6656 B
systemprofile32 => 6656 B
LocalService => 27526 B
NetworkService => 1033008 B
Marcelka a Pavlíček => 98078576 B

RecycleBin => 1911834469 B
EmptyTemp: => 2.8 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 10:45:08 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118197
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Preventivní kontrola logu

#5 Příspěvek od Rudy »

Smazáno, log již vypadá OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

paolov
Návštěvník
Návštěvník
Příspěvky: 242
Registrován: 30 srp 2006 20:17
Bydliště: Jih Moravy.

Re: Preventivní kontrola logu

#6 Příspěvek od paolov »

Díky.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118197
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Preventivní kontrola logu

#7 Příspěvek od Rudy »

Rádo se stalo! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Zamčeno