VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Preventivní kontrola logu

https://forum.viry.cz:443/viewtopic.php?t=158262

Stránka 1 z 1

Preventivní kontrola logu

Napsal: 17 zář 2021 09:55
od paolov
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-09-2021
Ran by Marcelka a Pavlíček (administrator) on DESKTOP-79A5PSH (LENOVO 20089) (17-09-2021 10:45:33)
Running from C:\Users\Marcelka a Pavlíček\Downloads
Loaded Profiles: Marcelka a Pavlíček
Platform: Windows 10 Home Version 21H1 19043.1237 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <10>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Xiaomi Technology Inc -> ) C:\Users\Marcelka a Pavlíček\AppData\Local\MiPhoneManager\main\MiPhoneHelper.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3951280 2016-01-07] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-06-09] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-3884071663-162100166-419435186-1001\...\Run: [MiPhoneManager] => C:\Users\Marcelka a Pavlíček\AppData\Local\MiPhoneManager\main\MiPhoneHelper.exe [157624 2016-03-11] (Xiaomi Technology Inc -> )

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0044AF1F-F4CE-4DCB-B545-FD897F0105F2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {317C1B9C-D764-46D6-A369-FDF50F955F64} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7E8F6813-90DF-47D2-9BAA-E55865327CF9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {D9CA9A21-78FB-42F4-BA8B-E260ADA0C99B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E1E15941-1A3D-4F18-BAEB-2C0F75237C1A} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [680888 2021-09-07] (Mozilla Corporation -> Mozilla Foundation)
Task: {E66088B2-0522-4584-B812-AE8D6CB45B41} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{6c242e33-4261-4d0b-a821-86a78574e0a0}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{9ea2f77b-4681-4f2a-a8b5-723fe2cfe311}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{a4d78430-550a-4fd0-b1c6-9da366229c8b}: [DhcpNameServer] 192.168.0.1

Edge:
=======
DownloadDir: C:\Users\Marcelka a Pavlíček\Downloads
Edge HomeButtonPage: HKU\S-1-5-21-3884071663-162100166-419435186-1001 -> hxxp://www.seznam.cz/
Edge Notifications: HKU\S-1-5-21-3884071663-162100166-419435186-1001 -> hxxps://www.tipsport.cz
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (uBlock Origin) -> EdgeExtension_37833NikRollsuBlockOrigin_f8jsg5mm64m62 => C:\Program Files\WindowsApps\37833NikRolls.uBlockOrigin_1.15.24.0_neutral__f8jsg5mm64m62 [2020-04-11]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (Translator pro Microsoft Edge) -> MicrosoftTranslate_MicrosoftTranslatorforMicrosoftEdge_8wekyb3d8bbwe => C:\Program Files\WindowsApps\Microsoft.TranslatorforMicrosoftEdge_0.91.51.0_neutral__8wekyb3d8bbwe [2020-04-11]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Profile 1
Edge Profile: C:\Users\Marcelka a Pavlíček\AppData\Local\Microsoft\Edge\User Data\Guest Profile [2020-09-07]
Edge Profile: C:\Users\Marcelka a Pavlíček\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2021-09-17]
Edge StartupUrls: Profile 1 -> "hxxp://www.seznam.cz/"

FireFox:
========
FF DefaultProfile: 75qnsple.default
FF ProfilePath: C:\Users\Marcelka a Pavlíček\AppData\Roaming\Mozilla\Firefox\Profiles\75qnsple.default [2019-08-28]
FF ProfilePath: C:\Users\Marcelka a Pavlíček\AppData\Roaming\Mozilla\Firefox\Profiles\l82wqagt.default-release [2021-09-17]
FF Homepage: Mozilla\Firefox\Profiles\l82wqagt.default-release -> www.seznam.cz
FF Session Restore: Mozilla\Firefox\Profiles\l82wqagt.default-release -> is enabled.
FF Notifications: Mozilla\Firefox\Profiles\l82wqagt.default-release -> hxxps://www.aliexpress.com
FF Extension: (Copy PlainText) - C:\Users\Marcelka a Pavlíček\AppData\Roaming\Mozilla\Firefox\Profiles\l82wqagt.default-release\Extensions\copyplaintext@eros.man.xpi [2021-03-05]
FF Extension: (LeechBlock NG) - C:\Users\Marcelka a Pavlíček\AppData\Roaming\Mozilla\Firefox\Profiles\l82wqagt.default-release\Extensions\leechblockng@proginosko.com.xpi [2021-07-05]
FF Extension: (uBlock Origin) - C:\Users\Marcelka a Pavlíček\AppData\Roaming\Mozilla\Firefox\Profiles\l82wqagt.default-release\Extensions\uBlock0@raymondhill.net.xpi [2021-07-31]
FF Extension: (ImTranslator: Překladač, Slovník, Hlas) - C:\Users\Marcelka a Pavlíček\AppData\Roaming\Mozilla\Firefox\Profiles\l82wqagt.default-release\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2021-08-13]
FF Plugin-x32: @java.com/DTPlugin,version=11.301.2 -> C:\Program Files (x86)\Java\jre1.8.0_301\bin\dtplugin\npDeployJava1.dll [2021-08-01] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.301.2 -> C:\Program Files (x86)\Java\jre1.8.0_301\bin\plugin2\npjp2.dll [2021-08-01] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.14 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-09-09] (Adobe Inc. -> Adobe Systems Inc.)

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7785656 2021-09-14] (Malwarebytes Inc -> Malwarebytes)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13271336 2021-09-02] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\NisSrv.exe [2772856 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MsMpEng.exe [136640 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [210344 2021-09-14] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-09-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-09-14] (Malwarebytes Inc -> Malwarebytes)
S3 nmwcd; C:\WINDOWS\system32\drivers\ccdcmbx64.sys [19968 2012-01-09] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 nmwcdc; C:\WINDOWS\system32\drivers\ccdcmbox64.sys [27136 2012-01-09] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltx64.sys [9216 2012-01-09] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltjx64.sys [9216 2012-01-09] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2021-09-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [433384 2021-09-09] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-09-09] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-09-17 10:45 - 2021-09-17 10:46 - 000013413 _____ C:\Users\Marcelka a Pavlíček\Downloads\FRST.txt
2021-09-17 10:45 - 2021-09-17 10:46 - 000000000 ____D C:\FRST
2021-09-17 10:44 - 2021-09-17 10:44 - 002304000 _____ (Farbar) C:\Users\Marcelka a Pavlíček\Downloads\FRST64.exe
2021-09-15 14:23 - 2021-09-15 14:23 - 001164288 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-09-15 14:23 - 2021-09-15 14:23 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-09-15 14:23 - 2021-09-15 14:23 - 000426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-09-15 14:23 - 2021-09-15 14:23 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2021-09-15 14:23 - 2021-09-15 14:23 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshom.ocx
2021-09-15 14:23 - 2021-09-15 14:23 - 000011355 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-09-15 14:11 - 2021-09-15 14:11 - 000000000 ___HD C:\$WinREAgent
2021-09-14 19:02 - 2021-09-14 19:02 - 000210344 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-09-14 18:48 - 2021-09-14 18:48 - 002101944 _____ (Malwarebytes) C:\Users\Marcelka a Pavlíček\Downloads\MBSetup-119967.119967-consumer.exe
2021-09-08 14:22 - 2021-09-08 14:22 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-09-07 18:24 - 2021-09-16 17:20 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-09-04 10:41 - 2021-09-04 10:41 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-09-04 10:40 - 2021-09-04 10:40 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll
2021-09-04 10:40 - 2021-09-04 10:40 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-09-04 10:40 - 2021-09-04 10:40 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-09-04 10:40 - 2021-09-04 10:40 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-09-04 10:40 - 2021-09-04 10:40 - 001313608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-09-04 10:40 - 2021-09-04 10:40 - 000672768 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-09-04 10:40 - 2021-09-04 10:40 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-09-04 10:40 - 2021-09-04 10:40 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-09-04 10:39 - 2021-09-04 10:39 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll
2021-09-04 10:39 - 2021-09-04 10:39 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-09-04 10:39 - 2021-09-04 10:39 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-09-04 10:39 - 2021-09-04 10:39 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-09-04 10:39 - 2021-09-04 10:39 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-08-27 20:44 - 2021-08-27 20:44 - 000000017 _____ C:\Users\Marcelka a Pavlíček\AppData\Local\resmon.resmoncfg
2021-08-22 19:44 - 2021-08-22 19:45 - 000013750 _____ C:\Users\Marcelka a Pavlíček\Documents\Motivační dopis Pavel Kulhavý.odt
2021-08-18 21:29 - 2021-08-22 19:34 - 000020159 _____ C:\Users\Marcelka a Pavlíček\Desktop\Pavel Kulhavý.odt

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-09-17 10:49 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-09-17 10:45 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-09-17 10:39 - 2019-08-28 22:45 - 000000000 ____D C:\Users\Marcelka a Pavlíček\AppData\LocalLow\Mozilla
2021-09-16 19:05 - 2020-06-08 22:53 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-09-16 17:37 - 2020-06-08 23:00 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-09-16 17:37 - 2019-08-30 20:34 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-09-16 17:29 - 2020-06-08 23:01 - 001696380 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-09-16 17:29 - 2019-12-07 16:41 - 000719042 _____ C:\WINDOWS\system32\perfh005.dat
2021-09-16 17:29 - 2019-12-07 16:41 - 000145638 _____ C:\WINDOWS\system32\perfc005.dat
2021-09-16 17:25 - 2020-11-03 22:33 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-09-16 17:21 - 2020-06-08 23:00 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-09-16 17:20 - 2020-06-08 22:53 - 000457256 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-09-16 17:20 - 2020-06-08 22:53 - 000008192 ___SH C:\DumpStack.log.tmp
2021-09-16 17:20 - 2019-08-28 22:45 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-09-16 17:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-09-16 17:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-09-16 17:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-09-16 17:19 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-09-16 17:17 - 2020-11-17 00:29 - 000000000 ____D C:\Users\Marcelka a Pavlíček\AppData\Roaming\vlc
2021-09-16 14:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-09-15 14:25 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-09-15 14:10 - 2019-08-28 23:03 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-09-15 14:03 - 2019-08-28 23:03 - 135637312 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-09-14 18:55 - 2020-09-12 10:29 - 000000000 ____D C:\Users\Marcelka a Pavlíček\AppData\Local\CrashDumps
2021-09-14 18:51 - 2020-11-14 12:13 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-09-14 18:51 - 2020-09-08 22:13 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-09-14 18:50 - 2020-02-11 20:53 - 000160176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-09-14 18:22 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-09-13 16:16 - 2020-06-08 08:29 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-09-12 10:05 - 2020-06-08 23:00 - 000003404 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3884071663-162100166-419435186-1001
2021-09-12 10:05 - 2020-06-08 22:33 - 000002419 _____ C:\Users\Marcelka a Pavlíček\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-09-09 18:02 - 2019-08-28 22:28 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-09-08 19:52 - 2020-02-21 11:46 - 000000000 ____D C:\Users\Marcelka a Pavlíček\Documents\Inkaso a další platby
2021-09-08 14:22 - 2019-08-28 22:45 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-09-05 20:40 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-09-05 20:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-09-05 20:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-09-05 20:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-09-05 20:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-09-05 20:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-09-05 20:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-09-05 20:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-09-05 20:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2021-09-05 20:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-09-05 20:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-09-05 20:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-09-05 20:40 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2021-09-03 20:43 - 2021-02-21 15:44 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-09-01 09:13 - 2019-08-28 22:38 - 000000000 ____D C:\Users\Marcelka a Pavlíček\AppData\Local\Packages
2021-08-31 14:23 - 2019-08-28 22:47 - 000803176 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2021-08-27 20:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Registration
2021-08-21 13:00 - 2019-09-13 15:51 - 000001435 _____ C:\Users\Marcelka a Pavlíček\Desktop\Roblox Player.lnk
2021-08-21 13:00 - 2019-09-13 15:45 - 000000000 ____D C:\Users\Marcelka a Pavlíček\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox

==================== Files in the root of some directories ========

2021-02-02 20:55 - 2021-02-02 21:00 - 000000128 _____ () C:\Users\Marcelka a Pavlíček\AppData\Roaming\winscp.rnd
2019-10-01 21:04 - 2021-08-10 20:43 - 000025311 _____ () C:\Users\Marcelka a Pavlíček\AppData\Local\FSDownloader.err
2019-09-22 15:24 - 2021-08-10 20:43 - 000001128 _____ () C:\Users\Marcelka a Pavlíček\AppData\Local\FSDownloader.nast
2021-08-27 20:44 - 2021-08-27 20:44 - 000000017 _____ () C:\Users\Marcelka a Pavlíček\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Re: Preventivní kontrola logu

Napsal: 17 zář 2021 09:56
od paolov
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-09-2021
Ran by Marcelka a Pavlíček (17-09-2021 10:50:13)
Running from C:\Users\Marcelka a Pavlíček\Downloads
Windows 10 Home Version 21H1 19043.1237 (X64) (2020-06-08 21:00:31)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-3884071663-162100166-419435186-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3884071663-162100166-419435186-503 - Limited - Disabled)
Guest (S-1-5-21-3884071663-162100166-419435186-501 - Limited - Disabled)
Marcelka a Pavlíček (S-1-5-21-3884071663-162100166-419435186-1001 - Administrator - Enabled) => C:\Users\Marcelka a Pavlíček
WDAGUtilityAccount (S-1-5-21-3884071663-162100166-419435186-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 21.007.20091 - Adobe Systems Incorporated)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
Balíček ovladače systému Windows - Nokia Modem (02/25/2011 4.7) (HKLM\...\E0AC723A3DE3A04256288CADBBB011B112AED454) (Version: 02/25/2011 4.7 - Nokia)
Balíček ovladače systému Windows - Nokia Modem (02/25/2011 7.01.0.9) (HKLM\...\72A50F48CC5601190B9C4E74D81161693133E7F7) (Version: 02/25/2011 7.01.0.9 - Nokia)
Balíček ovladače systému Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
Diablo II CZ verze 1.13c (HKLM-x32\...\{F380060E-D8AC-4823-91B8-71B9054C8DD2}_is1) (Version: 1.13c - )
Doom 3 verze 1.3.1 (HKLM-x32\...\{412432A1-677C-438F-A7D3-BB17DE4AF32D}_is1) (Version: 1.3.1 - )
FastShare.cz verze 2.4.0 (HKLM-x32\...\FastShare.cz_is1) (Version: 2.4.0 - )
Java 8 Update 301 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180301F0}) (Version: 8.0.3010.9 - Oracle Corporation)
LibreOffice 7.1.5.2 (HKLM\...\{4F0D0C39-A2CD-4908-AA4C-A1CC9BDCD71A}) (Version: 7.1.5.2 - The Document Foundation)
Malwarebytes version 4.4.6.132 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.6.132 - Malwarebytes)
Mi PC Suite (HKU\S-1-5-21-3884071663-162100166-419435186-1001\...\MiPhoneManager) (Version: - Xiaomi Inc.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 93.0.961.47 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3884071663-162100166-419435186-1001\...\OneDriveSetup.exe) (Version: 21.160.0808.0002 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-3884071663-162100166-419435186-1001\...\Teams) (Version: 1.4.00.11161 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{7B981965-2FBC-433C-B4B3-E183EE97CD29}) (Version: 2.83.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Modiac MP3 to MP4 Audio Converter (HKLM-x32\...\Modiac MP3 to MP4 Audio Converter) (Version: 1.0.0.4258 - Modiac Inc.)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 92.0 (x64 cs)) (Version: 92.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.0.2 - Mozilla)
MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
Nokia Connectivity Cable Driver (HKLM-x32\...\{A57025CC-5F2E-4D01-B387-06DB10500D43}) (Version: 7.1.78.0 - Nokia)
Nokia PC Suite (HKLM-x32\...\{866C4563-ED53-43F3-A29D-8BEE2BD1BA3C}) (Version: 7.1.180.94 - Nokia) Hidden
Nokia PC Suite (HKLM-x32\...\Nokia PC Suite) (Version: 7.1.180.94 - Nokia)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
PC Connectivity Solution (HKLM-x32\...\{644F4910-E812-49AD-93EC-86828CB81A0D}) (Version: 12.0.27.0 - Nokia)
Roblox Player for Marcelka a Pavlíček (HKU\S-1-5-21-3884071663-162100166-419435186-1001\...\roblox-player) (Version: - Roblox Corporation)
Roblox Studio for Marcelka a Pavlíček (HKU\S-1-5-21-3884071663-162100166-419435186-1001\...\roblox-studio) (Version: - Roblox Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.19.1 - Synaptics Incorporated)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.21.8 - TeamViewer)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.16 - VideoLAN)
WinSCP 5.17.10 (HKLM-x32\...\winscp3_is1) (Version: 5.17.10 - Martin Prikryl)

Packages:
=========
Artinii Cinema Player -> C:\Program Files\WindowsApps\Artinii.ArtiniiCinemaPlayer_1.0.591.0_x64__3p48kjqbq46a6 [2021-09-09] (Artinii)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-03-04] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-12] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-08-30] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-08-30] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.7290.0_x64__8wekyb3d8bbwe [2021-08-05] (Microsoft Studios) [MS Ad]
uBlock Origin -> C:\Program Files\WindowsApps\37833NikRolls.uBlockOrigin_1.15.24.0_neutral__f8jsg5mm64m62 [2020-04-11] (Nik Rolls)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3884071663-162100166-419435186-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Marcelka a Pavlíček\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.21063.3\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-02-11] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-02-11] (Malwarebytes Corporation -> Malwarebytes)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [msacm.l3acm] => C:\Windows\SysWOW64\l3codecp.acm [189440 2019-12-07] (Microsoft Windows -> Fraunhofer Institut Integrierte Schaltungen IIS)

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2021-08-02 10:33 - 2021-08-02 10:33 - 000031232 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\A4.Foundation\11957e80aac6fe4aa075f148a371cdea\A4.Foundation.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000022528 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Actions5dc83b46#\36d9df3e9cf979be95c5196a08952ee7\AEM.Actions.CCAA.Shared.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.0a1309f7#\421ab0a3deb42718f1eac7ac591a0eed\AEM.Plugin.EEU.Shared.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.2b6a6775#\e9f315954abbb9146f53772d7469521d\AEM.Plugin.Hotkeys.Shared.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000016384 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.54d8abe3#\3f37c2adbe2fac1249da2b10c9105ee0\AEM.Plugin.DPPE.Shared.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000281600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.5d945b6b#\5678b44a041e2bde8b0da860894dc769\AEM.Plugin.Source.Kit.Server.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000014848 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.674d2b8a#\bb41f3e4fe424f9dcb9a953372945f7e\AEM.Plugin.WinMessages.Shared.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000012800 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.88aba5d2#\f7aac188f55a3a27bbcb7d36595a8e39\AEM.Plugin.REG.Shared.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.GD.Shared\ecffdff4e9fd09f1317fafb973e8619b\AEM.Plugin.GD.Shared.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Server.Shared\049470d94f30689f7d8676dc7535a12a\AEM.Server.Shared.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000267776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Server\c9a4ce940f97cc366e31ca82370de8c9\AEM.Server.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000055808 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\APM.Foundation\295a13daa12d8b68a1d015dcb27d14ec\APM.Foundation.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000122880 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ATICCCom\c326a7cb02d274a20902d4c8fe054f6d\ATICCCom.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000204288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CCC.Implementation\1e1ec63c6635c363384e4522fa9f0436\CCC.Implementation.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000154112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.21d2ac78#\537a8a8a73f7f519f875d4dcc5e6a6ec\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000128000 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3399d0ec#\f6df30eba0a30d1f6d8423b3130bc628\CLI.Aspect.CustomFormats.Graphics.Shared.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000026112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.37d3d968#\81ebbb81d69ac578ea5b9cac1107af98\CLI.Aspect.AMDHome.Graphics.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000045568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.382a3def#\b1beab2200d993608bcd689a73fc36a2\CLI.Aspect.AMDOverDrive.Platform.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000107008 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3a6f1658#\573537da98cce4a1b7bb9d9e5047c174\CLI.Aspect.TransCode.Graphics.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000132608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.46819220#\e5a1a9738ea5381d5e7a48f3a73da12e\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000074752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4bbb0755#\a3c22e4df7706004edb09713b31c8db2\CLI.Aspect.TransCode.Graphics.Dashboard.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000037888 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.52c6dbaa#\1f4514b7f093353ebd068f26b1330520\CLI.Aspect.FPS.Graphics.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000074752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.59a12d95#\b3abf0f5e48705235149f0db735bfbf4\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000263168 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.73911eb5#\2855f10dc521de2a2f81a2b8fc46d7e9\CLI.Aspect.WirelessDisplay.Graphics.Shared.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000365056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.7ec2db45#\e01c78e10ba72ba47f4b99e0b4d72caa\CLI.Aspect.DeviceDFP.Graphics.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000064000 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8350f5c6#\82f4b255535ec70db3cdb62532d5ae3e\CLI.Aspect.UpdateNotification.Graphics.Runtime.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000678912 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.846fa813#\0083c054f6f0dc15df75979c45011f43\CLI.Aspect.MMVideo.Graphics.Dashboard.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000745472 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8d333b6b#\62e56187a74aea0547327decb3a090df\CLI.Aspect.Radeon3D.Graphics.Shared.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000449536 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8e996306#\bf5e6bd0b94ead139d02a133485e51b7\CLI.Aspect.CrossDisplay.Graphics.Dashboard.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000089088 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.9cd1e9e7#\b3de14c2a08c37791db53b4615c54186\CLI.Aspect.FPS.Graphics.Dashboard.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000057856 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a6cd7fff#\a2242e013e7c4f0d6a549a4a2cd590e2\CLI.Aspect.FPS.Graphics.Runtime.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000082944 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a765109e#\d42ab4f0a26a15123ef4aecf191daa80\CLI.Aspect.UpdateNotification.Graphics.Dashboard.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000462336 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.acb9d930#\c117bc0ecb9036a5dd163cf31ab76da3\CLI.Aspect.DeviceProperty.Graphics.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000067072 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.b0a7c1fb#\3044392fa6a004d603cc507ddc71175f\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000340992 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c7aaa0f8#\12b5ddcfb455b5199d38fd2c7183ffab\CLI.Aspect.OverDrive5.Graphics.Shared.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000017920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c854b457#\a3cc10d4127e3581dfe7fadfda61ddc8\CLI.Aspect.HotkeysHandling.Graphics.Shared.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000096256 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.d4f2f79c#\511531cc2fbed930427b1291ef8d740c\CLI.Aspect.CrossFireX.Graphics.Dashboard.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000276480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e8635fc7#\33852c6bd4b35d4daaedd0b0efd32b7d\CLI.Aspect.InfoCentre.Graphics.Dashboard.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 003312640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e9fd7406#\6115ef9385f83b91375d2739d2a90719\CLI.Aspect.Radeon3D.Graphics.Dashboard.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000240640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.eda8935e#\685d5193cc9727450237a111243e3edd\CLI.Aspect.MMVideo.Graphics.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000047616 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ef3eaa4d#\34ad82d8371f027febb750242b651132\CLI.Aspect.TransCode.Graphics.Runtime.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000050688 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.f480a2f3#\33d6ecdc379c9abe8614f1c0a3b11c96\CLI.Aspect.UpdateNotification.Graphics.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000051200 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Runtime\b7a6736bb20b9124b832025c857eeb77\CLI.Caste.A4.Runtime.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Shared\542913b31b906e5420d677b6e8db5bdc\CLI.Caste.A4.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000027136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Af820fedc#\ef705b1b5ec196f0d15593a7eba6aeca\CLI.Caste.A4.Dashboard.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F24de14fe#\09390689ec66256af6df01abb092eeec\CLI.Caste.Fuel.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000311296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F36b07a2b#\ef3714c65cd8d025910dd5de1f55c19d\CLI.Caste.Fuel.Runtime.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000027136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Ff3085433#\ab48ea73acbca9c43476820fc386bb8e\CLI.Caste.Fuel.Dashboard.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000037376 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60338cc0#\f5b281abf4a6b3269e2f802680e8dd3d\CLI.Caste.Graphics.Runtime.Shared.Private.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 001555456 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gd9d9b43b#\4a511821a9c8a938a814bc5706fcafa5\CLI.Caste.Graphics.Dashboard.Shared.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000587776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gee7d2dbc#\4e3dab7662a43f5100026fb80a0d4ad2\CLI.Caste.Graphics.Dashboard.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H18c99613#\0cc679c82e9134d8826472cbdfd61ecf\CLI.Caste.HydraVision.Runtime.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H92ba4e46#\53800e67cbdb362de16024979760f8b4\CLI.Caste.HydraVision.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Hbb906c0b#\8b66176923ddf1aeb06fa2f19a3ccb4f\CLI.Caste.HydraVision.Dashboard.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pac40511b#\323e2bf363d1eadd32c843cb48dff255\CLI.Caste.Platform.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000044032 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pdb36d56e#\b10e648ce9ab1348c5fee268b40c17bd\CLI.Caste.Platform.Runtime.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000024064 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pfeefa2b6#\1857339a04521c8f1137ddc9558072f5\CLI.Caste.Platform.Dashboard.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone1b4a8c97#\bf63b52fec30fc53e3f1eb9bf42ebc63\CLI.Component.Runtime.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000901632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone26c9c557#\da85da2f64005bd551eb9f53e839ccd4\CLI.Component.Systemtray.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000173568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone29e547cc#\b060b54ca1ee30b7e94c208184812c8c\CLI.Component.Dashboard.ProfileManager2.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000151040 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone59f353b4#\111c03cfeb778ece9e7c0c507026f3e4\CLI.Component.Runtime.Shared.Private.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componeb4d0485c#\a3d433fe4baaa6b149263f2eaa47020d\CLI.Component.Runtime.Extension.EEU.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 001609728 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componec89c3bec#\da0e95145981f700c0cab1867c8b4312\CLI.Component.Dashboard.Shared.Private.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000018432 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componef1fd67b2#\6054cdfc86edeb31a1b7a7e6148305e2\CLI.Component.Client.Shared.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000085504 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componef4cf054f#\edede36c8fb5a97443dae905a4ed7728\CLI.Component.Dashboard.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000495104 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Component.Eeu\1063b559f0a874b8c427cd8ed9830452\CLI.Component.Eeu.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000089600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat3d5d3945#\2645fbae800657f0e21b47d677811a03\CLI.Foundation.Private.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000061440 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat60cdf5df#\eca2c297f29eeaa7e5d6bdcd7bb4b7c6\CLI.Foundation.XManifest.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000091136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat619559bd#\cc4823186b736d37f1006ae27724fc06\CLI.Foundation.CoreAudioAPI.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 001079808 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundatd3771151#\2458cfefa95eb8e77663d4785bb86ec6\CLI.Foundation.Client.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000301568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundation\ae6606530750410b0a96777f0b17e756\CLI.Foundation.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Foundation\b5f80a31f5bdd2998d74ed57af4c891d\DEM.Foundation.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000115200 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0601\ea3b9ea4e7dca43058fa5e74ab3565af\DEM.Graphics.I0601.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics\676857338bd66030bdd666b6c80713d7\DEM.Graphics.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000037376 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Fuel.Foundation\d8ebb5e971159850452858547f3c5a98\Fuel.Foundation.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000296960 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundat03490438#\97ba4ac59dd06a4476629880819c7768\LOG.Foundation.Implementation.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000150016 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundat5023f8e7#\bcbf7fa87dfb250c9741a0f93d0f1c73\LOG.Foundation.Private.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000087552 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundatcaafa75b#\c3c155736807caece881c7a6f4eb8219\LOG.Foundation.Implementation.Private.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000132608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundation\86ea4d2aa4928b3a5741cc1da5ce2cb4\LOG.Foundation.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MOM.Foundation\3aae2be2d60464b0c341911f6e97f50c\MOM.Foundation.ni.dll
2021-08-02 10:35 - 2021-08-02 10:35 - 000402944 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MOM.Implementation\97391ddecb899ebe77304ce9b53b6aa4\MOM.Implementation.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000055296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\NEWAEM.Foundation\e1adb549103d88fd22da964608f45949\NEWAEM.Foundation.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000897024 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ADL.Foundation\230eb6a89a38c2358f8a3a33ea5a2210\ADL.Foundation.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000256000 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\APM.Server\22a31e933dd439ea5e27a32868683309\APM.Server.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000783872 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.79734f7a#\71cd7566ac54d5607a9e85dd42274ac7\CLI.Aspect.PowerXpress.Graphics.Runtime.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000357888 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.b3da5a8f#\a62a46cf6f08d918dd52b0fe82a8ad6e\CLI.Aspect.PowerXpress.Graphics.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000595456 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.d4846ba2#\8927cf8e9eeb0772e3c79b536c762f2f\CLI.Aspect.PowerXpress.Graphics.Dashboard.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 008027648 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Combine0616f305#\763508824ea16122644287597cc11c81\CLI.Combined.Graphics.Aspects1.Dashboard.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000136704 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone168638d1#\3e1a29e1f40f68c58558988b03ee4149\CLI.Component.Client.Shared.Private.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000234496 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone6692ca50#\92cf67c817c409c69992230ff22fe097\CLI.Component.Runtime.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000929280 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone6bf88b08#\a0d65d034b7a3d287a67b218d83ad656\CLI.Component.Dashboard.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000011264 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0702\146eae4724574ad79c18f78cb5a7e1d5\DEM.Graphics.I0702.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000084480 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0709\8c4851117ebc88c333eed07438088c01\DEM.Graphics.I0709.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000009728 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0710\4410797938f009577b8746bc2a4a9f18\DEM.Graphics.I0710.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000012288 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0712\546256c2fb73d3541ac3f4c88003d11f\DEM.Graphics.I0712.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000018432 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0804\1435c1972d68a6917aac8a45120e4bb5\DEM.Graphics.I0804.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000009728 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0901\522e8316aa52ccee1909a58dd53411b0\DEM.Graphics.I0901.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000013312 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0906\ee00c0a6fd27b348ac98b54f72f44a5d\DEM.Graphics.I0906.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 000035840 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I1010\7849779ef9c63ff0621ce495db124ac2\DEM.Graphics.I1010.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 001139200 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Localizatio01dbc1c0#\0b5f5f033666f210d8562ffb32ef8ad7\Localization.Foundation.Private.ni.dll
2021-08-02 10:35 - 2021-08-02 10:35 - 000244736 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ResourceMan446ca0e5#\ab815b3194e847398ee9a5a74f689e11\ResourceManagement.Foundation.Implementation.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000023552 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ResourceManf163905a#\4d9f31835cc8c17564c0526cb81a4ba4\ResourceManagement.Foundation.Private.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000091648 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ec8786e5#\f510d1fca82d3a542daee20051cd59cb\CLI.Aspect.AMDHome.Graphics.Dashboard.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 002845696 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60a7b4d1#\bfca917f0f71c3abd16c122cead3bb96\CLI.Caste.Graphics.Shared.ni.dll
2021-08-02 10:34 - 2021-08-02 10:34 - 003268096 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G962aa464#\4877439f0651af56ee90fcb6193f914f\CLI.Caste.Graphics.Runtime.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 000335360 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.W8090224c#\1b2f2e31e5667fd6977d0719bb3bba70\Microsoft.WindowsAPICodePack.ni.dll
2021-08-02 10:33 - 2021-08-02 10:33 - 002546688 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.Wfbf9373c#\45d0df6896072d3eb640bbff9df04447\Microsoft.WindowsAPICodePack.Shell.ni.dll
2012-06-26 14:08 - 2012-06-26 14:08 - 000026624 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_cze.nlr
2012-06-26 12:58 - 2012-06-26 12:58 - 001262592 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\NGSCM64.DLL
2012-06-26 14:08 - 2012-06-26 14:08 - 000572928 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_301\bin\ssv.dll [2021-08-01] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_301\bin\jp2ssv.dll [2021-08-01] (Oracle America, Inc. -> Oracle Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

2020-12-08 17:41 - 2020-12-08 17:46 - 000000445 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\PC Connectivity Solution\;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static
HKU\S-1-5-21-3884071663-162100166-419435186-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Marcelka a Pavlíček\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\IMG_20210320_153419.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{0C2D014B-B6B3-4A99-8F41-33D9CF400294}C:\program files (x86)\java\jre1.8.0_251\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_251\bin\javaw.exe => No File
FirewallRules: [TCP Query User{CC9B20CD-8021-40A8-A199-D17855ADE7C5}C:\program files (x86)\java\jre1.8.0_251\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_251\bin\javaw.exe => No File
FirewallRules: [UDP Query User{38F8A0BA-CDB0-4D19-B4F7-4C7F6039A585}C:\users\marcelka a pavlíček\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe] => (Block) C:\users\marcelka a pavlíček\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe
FirewallRules: [TCP Query User{1DDCC2AA-E680-4B66-BE7D-4330682FD8B8}C:\users\marcelka a pavlíček\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe] => (Block) C:\users\marcelka a pavlíček\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{2D56983B-0B5D-40BE-B0E2-43351CBA8A19}C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe => No File
FirewallRules: [TCP Query User{9F899ED7-25CE-42EC-964A-1B7C3A9E156B}C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe => No File
FirewallRules: [UDP Query User{9F92D62C-A695-43D4-A2E3-801E7029C193}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [TCP Query User{415B8BCF-80E2-4329-A644-7C4D942B1130}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [UDP Query User{F6A79B0F-C4B7-43D8-906C-99BAD5696706}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [TCP Query User{A1632069-0850-46F4-BC54-10464923694A}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [UDP Query User{47B6D6F1-39C5-4650-B259-8901280D84C9}C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe => No File
FirewallRules: [TCP Query User{431A2486-29C0-4B59-B74A-E0B5F13D08A9}C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe => No File
FirewallRules: [{53643E65-E92D-421E-BA91-54BC289C98EF}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{EFFF745D-6577-4BD1-A3C9-507BF4B7374F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{150EB5F0-0A84-45A4-BE41-0BB8DE478888}C:\program files (x86)\java\jre1.8.0_261\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_261\bin\javaw.exe => No File
FirewallRules: [UDP Query User{679E569E-E462-4B40-9C3E-7D0E7B2A3022}C:\program files (x86)\java\jre1.8.0_261\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_261\bin\javaw.exe => No File
FirewallRules: [TCP Query User{5208A8D1-F787-427E-86CE-70327A563356}C:\program files (x86)\infogrames\v-rally\vrdirectx.exe] => (Block) C:\program files (x86)\infogrames\v-rally\vrdirectx.exe => No File
FirewallRules: [UDP Query User{D914CED9-3EEB-49E2-B2C2-CA98B284287E}C:\program files (x86)\infogrames\v-rally\vrdirectx.exe] => (Block) C:\program files (x86)\infogrames\v-rally\vrdirectx.exe => No File
FirewallRules: [TCP Query User{B52F0E35-875E-4588-BA8C-D8B26EE66FA9}C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe => No File
FirewallRules: [UDP Query User{8939C380-0DC6-49D5-BEDC-0B009736EC32}C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe => No File
FirewallRules: [{E63B9B41-E6F5-4331-8763-73FA3963CA7F}] => (Allow) C:\Program Files (x86)\Seagull\BarTender Suite\BtSystem.Service.exe => No File
FirewallRules: [{BA896FCB-4CC3-4669-9747-EC4DD4EE6FA9}] => (Allow) C:\Program Files (x86)\Seagull\BarTender Suite\BtSystem.Service.exe => No File
FirewallRules: [TCP Query User{035BA2B5-ADF0-4310-8307-E739622D89F8}C:\program files (x86)\java\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_281\bin\javaw.exe => No File
FirewallRules: [UDP Query User{2C32D8F8-54A7-4AD0-8C0F-B268D26FCC4B}C:\program files (x86)\java\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_281\bin\javaw.exe => No File
FirewallRules: [TCP Query User{8F35D91C-6D9A-4C23-B4FB-796822209522}C:\users\marcelka a pavlíček\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\marcelka a pavlíček\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{1F98D6DB-5E6B-46E1-A1D6-AB9D438511A5}C:\users\marcelka a pavlíček\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\marcelka a pavlíček\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{BB5D7EFD-720C-4777-AD23-31C4C4191B48}C:\users\marcelka a pavlíček\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\marcelka a pavlíček\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{D8FB6E9E-E524-4B0B-BA30-3B8DF8F9E87A}C:\users\marcelka a pavlíček\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\marcelka a pavlíček\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{B376198C-3AD8-4EB0-859C-B44CFEB57715}C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe => No File
FirewallRules: [UDP Query User{11236998-CD9C-4E70-913C-F326A1FB79EC}C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe => No File
FirewallRules: [{85A2B8DA-07A3-4989-98A5-018ADB5EDA27}] => (Allow) C:\Users\Marcelka a Pavlíček\AppData\Local\MiPhoneManager\main\MiPCSuite.exe (Xiaomi Technology Inc -> Xiaomi.Inc)
FirewallRules: [TCP Query User{8371B502-DDC4-4D92-81AB-EE643A00F084}C:\users\marcelka a pavlíček\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe] => (Block) C:\users\marcelka a pavlíček\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司)
FirewallRules: [UDP Query User{4B0333F9-1361-4461-BB77-1EACC88AAEA9}C:\users\marcelka a pavlíček\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe] => (Block) C:\users\marcelka a pavlíček\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司)
FirewallRules: [TCP Query User{F0C3F816-CDFD-456E-A4F1-C66F022888CC}C:\windows\syswow64\dplaysvr.exe] => (Block) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{BBE7992A-5D10-461D-B837-0A5B4595D7E4}C:\windows\syswow64\dplaysvr.exe] => (Block) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{99F3A61E-879A-4B00-A10F-EA212E3CA38D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6AD53378-DAFD-4462-8B0B-818459BEC203}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5F03AA3F-9391-41EA-B28D-BA65DCF5DBDA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9BF073F6-83DF-4EBC-A504-0680D1B87280}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E5F7E079-F3E5-42FC-A5F2-6C32B52D19F3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{7D87835B-8AF6-4A64-B16D-328ADDA9179C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{B4175DE1-291A-44AD-829C-06BAD50901E1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{0CC017B6-6939-4496-B229-DC085705B509}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:110.64 GB) (Free:13.61 GB) (12%)

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (09/14/2021 07:02:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: mbamtray.exe, verze: 4.0.0.1117, časové razítko: 0x61321f0b
Název chybujícího modulu: Qt5Core.dll, verze: 5.14.1.0, časové razítko: 0x603971ce
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000219dc5
ID chybujícího procesu: 0x3144
Čas spuštění chybující aplikace: 0x01d7a98a4c365b6c
Cesta k chybující aplikaci: C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
Cesta k chybujícímu modulu: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
ID zprávy: f42e91f2-72d3-4107-9d5c-896367476692
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (09/14/2021 07:00:04 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Centru zabezpečení se nepodařilo ověřit volajícího s chybou %1.

Error: (09/14/2021 06:57:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: mbam.exe, verze: 4.0.0.1117, časové razítko: 0x61322081
Název chybujícího modulu: Qt5Core.dll, verze: 5.14.1.0, časové razítko: 0x603971ce
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000219dc5
ID chybujícího procesu: 0x1ae4
Čas spuštění chybující aplikace: 0x01d7a9899002439a
Cesta k chybující aplikaci: C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
Cesta k chybujícímu modulu: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
ID zprávy: 0b367cc0-0749-4bf0-b08e-004e29a0ade3
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (09/14/2021 06:54:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MBAM.exe, verze: 4.0.0.1117, časové razítko: 0x61322081
Název chybujícího modulu: Qt5Core.dll, verze: 5.14.1.0, časové razítko: 0x603971ce
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000219dc5
ID chybujícího procesu: 0x3184
Čas spuštění chybující aplikace: 0x01d7a9892542578c
Cesta k chybující aplikaci: C:\Program Files\Malwarebytes\Anti-Malware\MBAM.exe
Cesta k chybujícímu modulu: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
ID zprávy: 4aa449af-2e9a-48d6-9bea-a88fddf50c93
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (09/14/2021 06:51:32 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Centru zabezpečení se nepodařilo ověřit volajícího s chybou %1.

Error: (09/05/2021 08:39:56 PM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed

Error: (09/05/2021 08:15:00 PM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed

Error: (09/05/2021 11:28:36 AM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed


System errors:
=============
Error: (09/16/2021 07:53:19 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-79A5PSH)
Description: Server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} se v daném časovém limitu neregistroval u služby DCOM.

Error: (09/16/2021 05:17:58 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-79A5PSH)
Description: Server Microsoft.AAD.BrokerPlugin_1000.19041.1023.0_neutral_neutral_cw5n1h2txyewy!Windows.Security.Authentication.Web.Core.BackgroundGetTokenTask.ClassId.WebAccountProvider se v daném časovém limitu neregistroval u služby DCOM.

Error: (09/11/2021 09:56:40 AM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: NT AUTHORITY)
Description: Na miniportu TeamViewer VPN Adapter, {174a77be-1ada-4fe8-8cfc-0e94fabe93a3}, došlo k události 76.

Error: (09/07/2021 07:59:47 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-79A5PSH)
Description: Server Microsoft.Windows.Search_1.14.2.19041_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppX49we79s9ab0xp8xpjb6t6g31ep03r71y.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (09/04/2021 11:20:41 AM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: NT AUTHORITY)
Description: Na miniportu TeamViewer VPN Adapter, {f39fabdf-be31-4260-8fbe-df5d7c089998}, došlo k události 76.

Error: (08/26/2021 10:37:53 AM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: NT AUTHORITY)
Description: Na miniportu TeamViewer VPN Adapter, {7d1cc9df-6a3d-4aa0-81bd-09855715e1e7}, došlo k události 76.

Error: (08/25/2021 09:31:03 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-79A5PSH)
Description: Server Microsoft.Windows.ContentDeliveryManager_10.0.19041.1023_neutral_neutral_cw5n1h2txyewy!Windows.Networking.BackgroundTransfer.Internal.NetworkChangeTask.ClassId.1 se v daném časovém limitu neregistroval u služby DCOM.

Error: (08/22/2021 08:27:14 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-79A5PSH)
Description: Server {776DBC8D-7347-478C-8D71-791E12EF49D8} se v daném časovém limitu neregistroval u služby DCOM.


Windows Defender:
================
Date: 2021-09-12 18:30:55
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {4D770690-6AE2-4B77-98A3-51B0CC696EBA}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-09-12 10:24:06
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {07882810-BAA0-4AF3-A797-0C3A1F224913}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-09-08 19:38:46
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {FCA7C7F4-DAF1-4F0A-805E-658D5FE551CD}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-09-07 19:05:34
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {9D95974E-9E8B-45AC-A24F-C823F35B3224}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-09-05 20:30:32
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {D17DBF6C-394B-40A1-AAB9-31337F2CED4F}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

CodeIntegrity:
===============
Date: 2021-09-16 17:23:50
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2021-09-14 19:02:41
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2021-05-08 20:22:20
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\WindowManagementAPI.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

BIOS: LENOVO 40CN08WW(V3.07) 09/19/2011
Motherboard: LENOVO Base Board Product Name
Processor: Intel(R) Core(TM) i5-2430M CPU @ 2.40GHz
Percentage of memory in use: 73%
Total physical RAM: 4039.86 MB
Available physical RAM: 1063.24 MB
Total Virtual: 6983.86 MB
Available Virtual: 2979.71 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:110.64 GB) (Free:13.61 GB) NTFS

\\?\Volume{f70accae-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.57 GB) (Free:0.53 GB) NTFS
\\?\Volume{f70accae-0000-0000-0000-70cd1b000000}\ () (Fixed) (Total:0.58 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: F70ACCAE)
Partition 1: (Active) - (Size=579 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=110.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=592 MB) - (Type=27)

==================== End of Addition.txt =======================

Re: Preventivní kontrola logu

Napsal: 18 zář 2021 10:15
od Rudy
Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
FirewallRules: [UDP Query User{0C2D014B-B6B3-4A99-8F41-33D9CF400294}C:\program files (x86)\java\jre1.8.0_251\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_251\bin\javaw.exe => No File
FirewallRules: [TCP Query User{CC9B20CD-8021-40A8-A199-D17855ADE7C5}C:\program files (x86)\java\jre1.8.0_251\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_251\bin\javaw.exe => No File
FirewallRules: [UDP Query User{2D56983B-0B5D-40BE-B0E2-43351CBA8A19}C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe => No File
FirewallRules: [TCP Query User{9F899ED7-25CE-42EC-964A-1B7C3A9E156B}C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe => No File
FirewallRules: [UDP Query User{9F92D62C-A695-43D4-A2E3-801E7029C193}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [TCP Query User{415B8BCF-80E2-4329-A644-7C4D942B1130}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [UDP Query User{F6A79B0F-C4B7-43D8-906C-99BAD5696706}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [TCP Query User{A1632069-0850-46F4-BC54-10464923694A}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [UDP Query User{47B6D6F1-39C5-4650-B259-8901280D84C9}C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe => No File
FirewallRules: [TCP Query User{431A2486-29C0-4B59-B74A-E0B5F13D08A9}C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe => No File
FirewallRules: [TCP Query User{150EB5F0-0A84-45A4-BE41-0BB8DE478888}C:\program files (x86)\java\jre1.8.0_261\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_261\bin\javaw.exe => No File
FirewallRules: [UDP Query User{679E569E-E462-4B40-9C3E-7D0E7B2A3022}C:\program files (x86)\java\jre1.8.0_261\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_261\bin\javaw.exe => No File
FirewallRules: [TCP Query User{5208A8D1-F787-427E-86CE-70327A563356}C:\program files (x86)\infogrames\v-rally\vrdirectx.exe] => (Block) C:\program files (x86)\infogrames\v-rally\vrdirectx.exe => No File
FirewallRules: [UDP Query User{D914CED9-3EEB-49E2-B2C2-CA98B284287E}C:\program files (x86)\infogrames\v-rally\vrdirectx.exe] => (Block) C:\program files (x86)\infogrames\v-rally\vrdirectx.exe => No File
FirewallRules: [TCP Query User{B52F0E35-875E-4588-BA8C-D8B26EE66FA9}C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe => No File
FirewallRules: [UDP Query User{8939C380-0DC6-49D5-BEDC-0B009736EC32}C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe => No File
FirewallRules: [{E63B9B41-E6F5-4331-8763-73FA3963CA7F}] => (Allow) C:\Program Files (x86)\Seagull\BarTender Suite\BtSystem.Service.exe => No File
FirewallRules: [{BA896FCB-4CC3-4669-9747-EC4DD4EE6FA9}] => (Allow) C:\Program Files (x86)\Seagull\BarTender Suite\BtSystem.Service.exe => No File
FirewallRules: [TCP Query User{035BA2B5-ADF0-4310-8307-E739622D89F8}C:\program files (x86)\java\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_281\bin\javaw.exe => No File
FirewallRules: [UDP Query User{2C32D8F8-54A7-4AD0-8C0F-B268D26FCC4B}C:\program files (x86)\java\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_281\bin\javaw.exe => No File
FirewallRules: [TCP Query User{B376198C-3AD8-4EB0-859C-B44CFEB57715}C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe => No File
FirewallRules: [UDP Query User{11236998-CD9C-4E70-913C-F326A1FB79EC}C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe => No File
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]

EmptyTemp:
End
Uložte do C:\Users\Marcelka a Pavlíček\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: Preventivní kontrola logu

Napsal: 19 zář 2021 09:55
od paolov
Fix result of Farbar Recovery Scan Tool (x64) Version: 15-09-2021
Ran by Marcelka a Pavlíček (19-09-2021 10:44:02) Run:1
Running from C:\Users\Marcelka a Pavlíček\Downloads
Loaded Profiles: Marcelka a Pavlíček
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
FirewallRules: [UDP Query User{0C2D014B-B6B3-4A99-8F41-33D9CF400294}C:\program files (x86)\java\jre1.8.0_251\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_251\bin\javaw.exe => No File
FirewallRules: [TCP Query User{CC9B20CD-8021-40A8-A199-D17855ADE7C5}C:\program files (x86)\java\jre1.8.0_251\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_251\bin\javaw.exe => No File
FirewallRules: [UDP Query User{2D56983B-0B5D-40BE-B0E2-43351CBA8A19}C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe => No File
FirewallRules: [TCP Query User{9F899ED7-25CE-42EC-964A-1B7C3A9E156B}C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe => No File
FirewallRules: [UDP Query User{9F92D62C-A695-43D4-A2E3-801E7029C193}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [TCP Query User{415B8BCF-80E2-4329-A644-7C4D942B1130}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [UDP Query User{F6A79B0F-C4B7-43D8-906C-99BAD5696706}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [TCP Query User{A1632069-0850-46F4-BC54-10464923694A}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [UDP Query User{47B6D6F1-39C5-4650-B259-8901280D84C9}C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe => No File
FirewallRules: [TCP Query User{431A2486-29C0-4B59-B74A-E0B5F13D08A9}C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe => No File
FirewallRules: [TCP Query User{150EB5F0-0A84-45A4-BE41-0BB8DE478888}C:\program files (x86)\java\jre1.8.0_261\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_261\bin\javaw.exe => No File
FirewallRules: [UDP Query User{679E569E-E462-4B40-9C3E-7D0E7B2A3022}C:\program files (x86)\java\jre1.8.0_261\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_261\bin\javaw.exe => No File
FirewallRules: [TCP Query User{5208A8D1-F787-427E-86CE-70327A563356}C:\program files (x86)\infogrames\v-rally\vrdirectx.exe] => (Block) C:\program files (x86)\infogrames\v-rally\vrdirectx.exe => No File
FirewallRules: [UDP Query User{D914CED9-3EEB-49E2-B2C2-CA98B284287E}C:\program files (x86)\infogrames\v-rally\vrdirectx.exe] => (Block) C:\program files (x86)\infogrames\v-rally\vrdirectx.exe => No File
FirewallRules: [TCP Query User{B52F0E35-875E-4588-BA8C-D8B26EE66FA9}C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe => No File
FirewallRules: [UDP Query User{8939C380-0DC6-49D5-BEDC-0B009736EC32}C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe => No File
FirewallRules: [{E63B9B41-E6F5-4331-8763-73FA3963CA7F}] => (Allow) C:\Program Files (x86)\Seagull\BarTender Suite\BtSystem.Service.exe => No File
FirewallRules: [{BA896FCB-4CC3-4669-9747-EC4DD4EE6FA9}] => (Allow) C:\Program Files (x86)\Seagull\BarTender Suite\BtSystem.Service.exe => No File
FirewallRules: [TCP Query User{035BA2B5-ADF0-4310-8307-E739622D89F8}C:\program files (x86)\java\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_281\bin\javaw.exe => No File
FirewallRules: [UDP Query User{2C32D8F8-54A7-4AD0-8C0F-B268D26FCC4B}C:\program files (x86)\java\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_281\bin\javaw.exe => No File
FirewallRules: [TCP Query User{B376198C-3AD8-4EB0-859C-B44CFEB57715}C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe => No File
FirewallRules: [UDP Query User{11236998-CD9C-4E70-913C-F326A1FB79EC}C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe => No File
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{0C2D014B-B6B3-4A99-8F41-33D9CF400294}C:\program files (x86)\java\jre1.8.0_251\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{CC9B20CD-8021-40A8-A199-D17855ADE7C5}C:\program files (x86)\java\jre1.8.0_251\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{2D56983B-0B5D-40BE-B0E2-43351CBA8A19}C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{9F899ED7-25CE-42EC-964A-1B7C3A9E156B}C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{9F92D62C-A695-43D4-A2E3-801E7029C193}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{415B8BCF-80E2-4329-A644-7C4D942B1130}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{F6A79B0F-C4B7-43D8-906C-99BAD5696706}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{A1632069-0850-46F4-BC54-10464923694A}C:\program files (x86)\java\jre1.8.0_231\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{47B6D6F1-39C5-4650-B259-8901280D84C9}C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{431A2486-29C0-4B59-B74A-E0B5F13D08A9}C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{150EB5F0-0A84-45A4-BE41-0BB8DE478888}C:\program files (x86)\java\jre1.8.0_261\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{679E569E-E462-4B40-9C3E-7D0E7B2A3022}C:\program files (x86)\java\jre1.8.0_261\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{5208A8D1-F787-427E-86CE-70327A563356}C:\program files (x86)\infogrames\v-rally\vrdirectx.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D914CED9-3EEB-49E2-B2C2-CA98B284287E}C:\program files (x86)\infogrames\v-rally\vrdirectx.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{B52F0E35-875E-4588-BA8C-D8B26EE66FA9}C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{8939C380-0DC6-49D5-BEDC-0B009736EC32}C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E63B9B41-E6F5-4331-8763-73FA3963CA7F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BA896FCB-4CC3-4669-9747-EC4DD4EE6FA9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{035BA2B5-ADF0-4310-8307-E739622D89F8}C:\program files (x86)\java\jre1.8.0_281\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{2C32D8F8-54A7-4AD0-8C0F-B268D26FCC4B}C:\program files (x86)\java\jre1.8.0_281\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{B376198C-3AD8-4EB0-859C-B44CFEB57715}C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{11236998-CD9C-4E70-913C-F326A1FB79EC}C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe" => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 10248192 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 479819897 B
Java, Flash, Steam htmlcache => 291 B
Windows/system/drivers => 7479486 B
Edge => 3507884 B
Firefox => 452620724 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 6656 B
ProgramData => 6656 B
Public => 6656 B
systemprofile => 6656 B
systemprofile32 => 6656 B
LocalService => 27526 B
NetworkService => 1033008 B
Marcelka a Pavlíček => 98078576 B

RecycleBin => 1911834469 B
EmptyTemp: => 2.8 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 10:45:08 ====

Re: Preventivní kontrola logu

Napsal: 19 zář 2021 10:20
od Rudy
Smazáno, log již vypadá OK.

Re: Preventivní kontrola logu

Napsal: 19 zář 2021 14:42
od paolov
Díky.

Re: Preventivní kontrola logu

Napsal: 19 zář 2021 18:13
od Rudy
Rádo se stalo! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz