VIRY.CZ

Logy sú urobené až po kontrole ADW cleanera, ktorý nič nenašiel

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-09-2021 02
Ran by saullerist (administrator) on DESKTOP-3SMP07F (TOSHIBA Satellite L650) (30-09-2021 16:49:58)
Running from C:\Users\saullerist\Downloads
Loaded Profiles: saullerist
Platform: Windows 10 Home Version Dev 21390.1000 (X64) Language: Slovenčina (Slovensko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Dynabook Inc. -> Dynabook Inc.) C:\Windows\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_f06ed65d98eceea8\DSDFunctionKeyCtlService.exe <2>
(Dynabook Inc. -> Dynabook Inc.) C:\Windows\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_f06ed65d98eceea8\dynabookSystemService.exe
(Dynabook Inc. -> Dynabook Inc.) C:\Windows\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_f06ed65d98eceea8\RMService.exe
(Google LLC -> ) C:\Program Files\Google\Drive File Stream\50.0.11.0\crashpad_handler.exe <2>
(Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\50.0.11.0\GoogleDriveFS.exe <7>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12107.1001.15.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> ) C:\Windows\System32\AggregatorHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.21390.1000_none_58f0e9ab64f38697\TiWorker.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.4-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.4-0\NisSrv.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Scans\MsMpEngCP.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\50.0.11.0\GoogleDriveFS.exe [53381464 2021-08-09] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\50.0.11.0\GoogleDriveFS.exe [53381464 2021-08-09] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\50.0.11.0\GoogleDriveFS.exe [53381464 2021-08-09] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\Run: [MicrosoftEdgeAutoLaunch_E9148071064FDAAA5D19B03EFBB79618] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\MountPoints2: {14f1611b-ca97-11eb-bc9d-00266c5324d3} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\50.0.11.0\GoogleDriveFS.exe [53381464 2021-08-09] (Google LLC -> Google, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
HKLM\Software\...\Winlogon\GPExtensions: [{8472C2C4-6B70-4301-A20D-A6CEA5F82B7E}] -> C:\WINDOWS\System32\StartTileData.dll [2021-05-22] (Microsoft Windows -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {12469F3F-5031-4F7B-8132-E18178931DA8} - System32\Tasks\Microsoft\Windows\Shell\UpdateAgentTask_SetCBSEndOfLife => C:\WINDOWS\System32\ShellUpdateAgentTask.exe [70656 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
Task: {379DF88D-08EE-4275-9075-B4D700B3AAB3} - System32\Tasks\Microsoft\Windows\Printing\PrinterCleanupTask => {C56F065E-DE49-4E42-BE7C-305C45609D25} C:\Windows\System32\PrinterCleanupTask.dll [118784 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
Task: {3B945F77-EE4A-4117-89AF-DDAA236F2199} - System32\Tasks\Microsoft\Windows\AppListBackup\Backup => {E0DCC2CC-3354-45F2-8914-519E07809082} C:\WINDOWS\system32\AppListBackupLauncher.dll [110592 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
Task: {5A7B58D1-CE41-4C5B-B700-D3C6E5FA97A7} - System32\Tasks\Microsoft\Windows\Shell\ThemesSyncedImageDownload => {79F8E185-4E45-4B74-8182-02AA430661E4} C:\Windows\System32\Themes.SsfDownload.ScheduledTask.dll [200704 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
Task: {6421D9B9-C0DC-407A-A6CF-75D420E93DCD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.4-0\MpCmdRun.exe [884544 2021-09-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6C0D9967-CD8A-4636-806A-C46992D7C871} - System32\Tasks\Microsoft\Windows\Shell\UpdateAgentTask_AcquireFOD => C:\WINDOWS\System32\ShellUpdateAgentTask.exe [70656 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
Task: {6CCBF424-E5AA-43D1-8288-B15995B8BE36} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.4-0\MpCmdRun.exe [884544 2021-09-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {71509BA9-E999-493C-8018-9E4520B1DCB5} - System32\Tasks\Microsoft\Windows\Shell\UpdateAgentTask_RemoveFOD => C:\WINDOWS\System32\ShellUpdateAgentTask.exe [70656 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
Task: {7AF922E2-481A-48DC-8C9B-692F6D73701F} - System32\Tasks\Microsoft\Windows\Management\Provisioning\MdmDiagnosticsCleanup => C:\WINDOWS\system32\MdmDiagnosticsTool.exe [90112 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
Task: {83CE6C76-3F28-489E-A7C6-794989F68298} - System32\Tasks\S-1-5-21-1796023744-1759536030-3900380101-1002\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe
Task: {8EA618F5-29D9-4485-85C0-49A2C95463C7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.4-0\MpCmdRun.exe [884544 2021-09-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B40F8511-B9B4-4F7B-9312-FC6DAA6B9F00} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {B91219DC-34E0-47A2-B494-6279369FA6B4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {BFB7A246-72BE-40AD-A724-9BE219683B69} - System32\Tasks\microsoft\windows\capabilityaccessmanager\maintenancetasks => %windir%\system32\rundll32.exe %windir%\system32\CapabilityAccessManager.dll,CapabilityAccessManagerDoStoreMaintenance
Task: {C5708D88-E25B-426C-A468-69F68E7A2CE6} - System32\Tasks\Microsoft\Windows\Kernel\La57Cleanup => C:\WINDOWS\system32\la57setup.exe [36864 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
Task: {DCB6B88A-7EDE-48DD-80A7-832385E1711A} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe
Task: {FC3FFFB2-C10E-4A94-8716-98ADE9FC8C3B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.4-0\MpCmdRun.exe [884544 2021-09-24] (Microsoft Windows Publisher -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 07 C:\WINDOWS\SysWOW64\nlansp_c.dll [83456 2021-05-22] (Microsoft Windows -> Microsoft Corporation) ATTENTION: LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5-x64 07 C:\Windows\system32\nlansp_c.dll [126976 2021-05-22] (Microsoft Windows -> Microsoft Corporation) ATTENTION: LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{5c6459f7-5caf-472f-850f-576031683b95}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{5c6459f7-5caf-472f-850f-576031683b95}: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{6246c65d-bac1-4762-89a6-06049b6e07d8}: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{6f775dc0-2278-405d-8f3d-3e457ae63af2}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9dfcf0d8-e52f-4e05-8126-662ce4070db5}: [DhcpNameServer] 192.168.1.1

Edge:
=======
DownloadDir: C:\Users\saullerist\Downloads
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\saullerist\AppData\Local\Microsoft\Edge\User Data\Default [2021-09-30]
Edge DownloadDir: Default -> C:\Users\saullerist\Downloads
Edge HomePage: Default -> hxxp://www.google.sk/
Edge StartupUrls: Default -> "hxxp://www.google.sk/"
Edge HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [llbjbkhnmlidjebalopleeepgdfgcpec] - C:\Program Files (x86)\Internet Download Manager\IDMEdgeExt.crx <not found>

FireFox:
========
FF DefaultProfile: 7922d3ji.default
FF ProfilePath: C:\Users\saullerist\AppData\Roaming\Mozilla\Firefox\Profiles\7922d3ji.default [2021-06-02]
FF ProfilePath: C:\Users\saullerist\AppData\Roaming\Mozilla\Firefox\Profiles\4qhn5rad.default-release [2021-08-31]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 DSDFunctionKeyCtlService; C:\WINDOWS\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_f06ed65d98eceea8\DSDFunctionKeyCtlService.exe [625776 2021-05-26] (Dynabook Inc. -> Dynabook Inc.)
S3 FrameServerMonitor; C:\WINDOWS\system32\FrameServerMonitor.dll [319488 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
S3 McpManagementService; C:\WINDOWS\System32\McpManagementService.dll [319488 2021-06-08] (Microsoft Windows -> Microsoft Corporation)
S3 NPSMSvc; C:\WINDOWS\System32\npsm.dll [233472 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
S3 NPSMSvc; C:\WINDOWS\SysWOW64\npsm.dll [163840 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
S3 P9RdrService; C:\WINDOWS\system32\p9rdrservice.dll [122880 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
R2 TSDSettingService; C:\WINDOWS\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_f06ed65d98eceea8\dynabookSystemService.exe [44773040 2021-05-26] (Dynabook Inc. -> Dynabook Inc.)
S2 TSDTabletControlService; C:\WINDOWS\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_f06ed65d98eceea8\TOSTABSYSSVC.exe [296272 2021-05-26] (Dynabook Inc. -> Dynabook Inc.)
R2 TSDWirelessLEDCtlService; C:\WINDOWS\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_f06ed65d98eceea8\RMService.exe [446248 2021-05-26] (Dynabook Inc. -> Dynabook Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.4-0\NisSrv.exe [2855480 2021-09-24] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.4-0\MsMpEng.exe [128376 2021-09-24] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 a016bus; C:\WINDOWS\System32\drivers\a016bus.sys [109096 2008-01-18] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 a016mgmt; C:\WINDOWS\System32\drivers\a016mgmt.sys [130600 2008-01-18] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 a016obex; C:\WINDOWS\System32\drivers\a016obex.sys [125480 2008-01-18] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S0 ebdrv; C:\WINDOWS\System32\drivers\evbda.sys [3436320 2021-05-22] (Microsoft Windows -> Marvell Semiconductor Inc.)
S0 ebdrv0; C:\WINDOWS\System32\drivers\evbd0a.sys [3418912 2021-05-22] (Microsoft Windows -> QLogic Corporation)
S3 ExecutionContext; C:\WINDOWS\System32\Drivers\ExecutionContext.sys [61440 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
R3 FwLnk; C:\WINDOWS\System32\drivers\FwLnk.sys [9216 2009-07-07] (Microsoft Windows Hardware Compatibility Publisher -> TOSHIBA Corporation)
R1 googledrivefs3514; C:\WINDOWS\System32\DRIVERS\googledrivefs3514.sys [389144 2021-06-25] (Google LLC -> Google, Inc.)
R1 googledrivefs3525; C:\WINDOWS\System32\DRIVERS\googledrivefs3525.sys [389640 2021-08-09] (Google LLC -> Google, Inc.)
S3 HidSpiCx; C:\WINDOWS\System32\drivers\HidSpiCx.sys [118784 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
S3 HWHandSet; C:\WINDOWS\System32\drivers\hw_quusbmdm.sys [226560 2018-12-12] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hw_usbdev; C:\WINDOWS\System32\drivers\hw_usbdev.sys [116864 2018-12-12] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R0 IntelPMT; C:\WINDOWS\System32\drivers\IntelPMT.sys [69952 2021-05-22] (Microsoft Windows Hardware Abstraction Layer Publisher -> Microsoft Corporation)
S0 megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [96032 2021-05-22] (Microsoft Windows -> Broadcom Inc)
S0 mpi3drvi; C:\WINDOWS\System32\drivers\mpi3drvi.sys [83232 2021-05-22] (Microsoft Windows -> Broadcom Limited)
S3 NDKPerf; C:\WINDOWS\System32\drivers\NDKPerf.sys [74016 2021-05-22] (Microsoft Windows -> )
S0 nvmedisk; C:\WINDOWS\System32\drivers\nvmedisk.sys [78112 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
S3 s0016bus; C:\WINDOWS\System32\drivers\s0016bus.sys [115240 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0016mgmt; C:\WINDOWS\System32\drivers\s0016mgmt.sys [137256 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0016obex; C:\WINDOWS\System32\drivers\s0016obex.sys [136744 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0016unic; C:\WINDOWS\System32\drivers\s0016unic.sys [151592 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0017bus; C:\WINDOWS\System32\drivers\s0017bus.sys [113704 2008-10-21] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0017mgmt; C:\WINDOWS\System32\drivers\s0017mgmt.sys [133160 2008-10-21] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0017obex; C:\WINDOWS\System32\drivers\s0017obex.sys [128552 2008-10-21] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0017unic; C:\WINDOWS\System32\drivers\s0017unic.sys [145960 2008-10-21] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1018bus; C:\WINDOWS\System32\drivers\s1018bus.sys [113704 2009-03-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1018mgmt; C:\WINDOWS\System32\drivers\s1018mgmt.sys [133160 2009-03-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1018obex; C:\WINDOWS\System32\drivers\s1018obex.sys [128552 2009-03-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1018unic; C:\WINDOWS\System32\drivers\s1018unic.sys [146472 2009-03-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1029bus; C:\WINDOWS\System32\drivers\s1029bus.sys [116264 2009-05-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1029mgmt; C:\WINDOWS\System32\drivers\s1029mgmt.sys [139304 2009-05-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1029obex; C:\WINDOWS\System32\drivers\s1029obex.sys [135208 2009-05-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1029unic; C:\WINDOWS\System32\drivers\s1029unic.sys [151592 2009-05-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1039mgmt; C:\WINDOWS\System32\drivers\s1039mgmt.sys [141424 2010-03-15] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1039obex; C:\WINDOWS\System32\drivers\s1039obex.sys [137328 2010-03-15] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1039unic; C:\WINDOWS\System32\drivers\s1039unic.sys [158320 2010-03-15] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s916bus; C:\WINDOWS\System32\drivers\s916bus.sys [108072 2007-11-02] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s916mgmt; C:\WINDOWS\System32\drivers\s916mgmt.sys [130088 2007-11-02] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s916obex; C:\WINDOWS\System32\drivers\s916obex.sys [124968 2007-11-02] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 se3ebus; C:\WINDOWS\System32\drivers\se3ebus.sys [107784 2007-04-10] (MCCI Corporation -> MCCI Corporation)
S3 se3emgmt; C:\WINDOWS\System32\drivers\se3emgmt.sys [126216 2007-04-10] (MCCI Corporation -> MCCI Corporation)
S3 se3eobex; C:\WINDOWS\System32\drivers\se3eobex.sys [123144 2007-04-10] (MCCI Corporation -> MCCI Corporation)
R3 Thotkey; C:\WINDOWS\System32\drivers\Thotkey.sys [47816 2020-07-21] (Dynabook Inc. -> Dynabook Inc.)
R1 TosSrvCtlDrv; C:\WINDOWS\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_f06ed65d98eceea8\TosSrvCtlDrv.sys [25584 2021-05-26] (Dynabook Inc. -> Dynabook Inc.)
R0 TVALZ_O; C:\WINDOWS\System32\drivers\TVALZ_O.SYS [46088 2019-04-30] (Dynabook Inc. -> Dynabook Inc.)
S3 Usb4DeviceRouter; C:\WINDOWS\System32\DriverStore\FileRepository\usb4devicerouter.inf_amd64_9f6d680e75a57995\Usb4DeviceRouter.sys [827680 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
S3 Usb4HostRouter; C:\WINDOWS\System32\DriverStore\FileRepository\usb4hostrouter.inf_amd64_cd0f44882a83a62c\Usb4HostRouter.sys [536864 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48544 2021-09-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [434400 2021-09-24] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86240 2021-09-24] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-09-30 16:44 - 2021-09-30 16:47 - 000050080 _____ C:\Users\saullerist\Downloads\Addition.txt
2021-09-30 16:41 - 2021-09-30 16:51 - 000020923 _____ C:\Users\saullerist\Downloads\FRST.txt
2021-09-30 16:40 - 2021-09-30 16:50 - 000000000 ____D C:\FRST
2021-09-30 16:40 - 2021-09-30 16:40 - 002304512 _____ (Farbar) C:\Users\saullerist\Downloads\FRST64.exe
2021-09-30 16:38 - 2021-09-30 16:38 - 000000000 ____D C:\AdwCleaner
2021-09-30 16:37 - 2021-09-30 16:37 - 008553680 _____ (Malwarebytes) C:\Users\saullerist\Downloads\adwcleaner_8.3.0.exe
2021-09-01 19:22 - 2021-08-09 14:57 - 000389640 _____ (Google, Inc.) C:\WINDOWS\system32\Drivers\googledrivefs3525.sys

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-09-30 16:47 - 2021-05-22 14:46 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-09-30 15:51 - 2021-05-22 14:46 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-09-30 15:48 - 2021-06-09 14:48 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-09-30 15:48 - 2021-06-09 14:26 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-09-30 15:48 - 2021-05-22 14:46 - 000000000 ____D C:\WINDOWS\SystemTemp
2021-09-30 15:48 - 2020-02-21 12:41 - 000012288 ___SH C:\DumpStack.log.tmp
2021-09-30 15:47 - 2021-05-22 14:36 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-09-30 15:38 - 2020-02-04 19:05 - 000000000 ____D C:\Users\saullerist\AppData\Local\CrashDumps
2021-09-30 13:18 - 2021-05-22 14:46 - 000000000 ___HD C:\Program Files\WindowsApps
2021-09-30 13:18 - 2021-05-22 14:46 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-09-29 14:57 - 2021-06-08 13:18 - 000000000 ____D C:\Users\saullerist
2021-09-27 18:38 - 2021-07-06 20:45 - 000000000 ____D C:\WINDOWS\Minidump
2021-09-27 18:37 - 2016-01-06 01:43 - 000848265 ____N C:\WINDOWS\Minidump\092721-36625-01.dmp
2021-09-27 12:19 - 2020-05-06 20:08 - 000002527 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-09-24 12:37 - 2018-03-01 11:27 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-09-11 16:44 - 2017-10-18 10:41 - 000000000 ____D C:\Users\saullerist\AppData\Local\Packages
2021-09-11 16:42 - 2016-11-18 22:37 - 000000000 ____D C:\Users\saullerist\AppData\Roaming\Mozilla
2021-09-08 13:04 - 2021-06-09 14:39 - 009035642 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-09-08 13:04 - 2021-05-22 14:44 - 000000000 ____D C:\WINDOWS\INF
2021-09-08 13:04 - 2016-11-28 18:10 - 006209702 _____ C:\WINDOWS\system32\perfh01B.dat
2021-09-08 13:04 - 2016-11-28 18:10 - 001846180 _____ C:\WINDOWS\system32\perfc01B.dat
2021-09-03 16:40 - 2021-05-22 14:46 - 000000000 ____D C:\WINDOWS\SystemResources
2021-09-03 16:40 - 2021-05-22 14:46 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-09-03 16:40 - 2021-05-22 14:36 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-09-03 16:39 - 2018-07-19 09:34 - 000000000 ____D C:\ProgramData\Packages
2021-09-01 19:23 - 2021-07-13 20:43 - 000002071 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2021-08-31 12:03 - 2016-11-28 17:03 - 000803176 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2021-08-31 11:50 - 2021-06-08 10:30 - 000000000 ___DC C:\WINDOWS\Panther

==================== Files in the root of some directories ========

2020-02-26 21:13 - 2020-02-26 21:17 - 000000062 _____ () C:\Users\saullerist\AppData\Roaming\FalconX.cfg
2017-10-18 10:16 - 2020-04-08 14:19 - 000007597 _____ () C:\Users\saullerist\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22-09-2021 02
Ran by saullerist (30-09-2021 16:52:37)
Running from C:\Users\saullerist\Downloads
Windows 10 Home Version Dev 21390.1000 (X64) (2021-06-09 12:49:51)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1796023744-1759536030-3900380101-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1796023744-1759536030-3900380101-503 - Limited - Disabled)
Guest (S-1-5-21-1796023744-1759536030-3900380101-501 - Limited - Disabled)
saull (S-1-5-21-1796023744-1759536030-3900380101-1016 - Limited - Disabled)
saullerist (S-1-5-21-1796023744-1759536030-3900380101-1002 - Administrator - Enabled) => C:\Users\saullerist
WDAGUtilityAccount (S-1-5-21-1796023744-1759536030-3900380101-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

AIDA64 Extreme v6.33 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 6.33 - FinalWire Ltd.)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 50.0.11.0 - Google LLC)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 94.0.992.31 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 94.0.992.31 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.4.3.38 - Synaptics Incorporated)

Packages:
=========
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-14] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-14] (Microsoft Corporation) [MS Ad]
Microsoft.UI.Xaml.CBS -> C:\Windows\SystemApps\Microsoft.UI.Xaml.CBS_8wekyb3d8bbwe [2021-06-09] (Microsoft Platform Extensions)
Paint -> C:\Program Files\WindowsApps\Microsoft.Paint_10.2104.17.0_x64__8wekyb3d8bbwe [2021-07-17] (Microsoft Corporation)
Windows Notepad -> C:\Program Files\WindowsApps\Microsoft.WindowsNotepad_10.2103.6.0_x64__8wekyb3d8bbwe [2021-07-17] (Microsoft Corporation)
Windows Zabezpečenie -> C:\Program Files\WindowsApps\Microsoft.SecHealthUI_1000.21390.1.0_neutral__8wekyb3d8bbwe [2021-07-17] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\50.0.11.0\drivefsext.dll [2021-08-09] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\50.0.11.0\drivefsext.dll [2021-08-09] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\50.0.11.0\drivefsext.dll [2021-08-09] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\50.0.11.0\drivefsext.dll [2021-08-09] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\50.0.11.0\drivefsext.dll [2021-08-09] (Google LLC -> Google, Inc.)
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\50.0.11.0\drivefsext.dll [2021-08-09] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll [2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\50.0.11.0\drivefsext.dll [2021-08-09] (Google LLC -> Google, Inc.)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2021-09-01 19:22 - 1980-01-01 00:00 - 000422912 _____ () [File not signed] C:\Program Files\Google\Drive File Stream\50.0.11.0\swiftshader\libegl.dll
2021-09-01 19:22 - 1980-01-01 00:00 - 002767360 _____ () [File not signed] C:\Program Files\Google\Drive File Stream\50.0.11.0\swiftshader\libglesv2.dll
2021-06-10 16:19 - 2021-06-10 16:19 - 000031232 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\A4.Foundation\4b4d6b6a634bfba2d65c396962e63d5c\A4.Foundation.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000022528 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Actions5dc83b46#\120c2e96d80d4f27643220e7e2099287\AEM.Actions.CCAA.Shared.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.0a1309f7#\456328dc85afd572341225910d25cad6\AEM.Plugin.EEU.Shared.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.2b6a6775#\24da43b0979454450d42a0f697fc8519\AEM.Plugin.Hotkeys.Shared.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000016384 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.54d8abe3#\2615fc0fab6f289e71424671e116e1b8\AEM.Plugin.DPPE.Shared.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000281600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.5d945b6b#\e081d2ddec3a70074f3a887fe4ae0647\AEM.Plugin.Source.Kit.Server.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000014848 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.674d2b8a#\86c5c13de5891c68937d0dedcdd69882\AEM.Plugin.WinMessages.Shared.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000012800 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.88aba5d2#\886c6be11fcbc1a2d347f1746cf02937\AEM.Plugin.REG.Shared.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.GD.Shared\058ee5233f0484fc085c9d1c0612fd4d\AEM.Plugin.GD.Shared.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Server.Shared\84a751163d4d0d1785ecd6c59b198652\AEM.Server.Shared.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000267776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Server\1641e72ef1e80fda40793ff74be751b9\AEM.Server.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000055808 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\APM.Foundation\c7cf34d89c3b3b00a08d093fa57db62b\APM.Foundation.ni.dll
2021-06-10 17:48 - 2021-06-10 17:48 - 000122880 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ATICCCom\43a4ba975ffaffec7cbb319b68caa831\ATICCCom.ni.dll
2021-06-10 16:21 - 2021-06-10 16:21 - 000204288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CCC.Implementation\da2af62cf1f104a88631e81e42f5b2ea\CCC.Implementation.ni.dll
2021-06-10 16:24 - 2021-06-10 16:24 - 000154112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.21d2ac78#\96b377099131a119843f5f5a6f7e74ef\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard.ni.dll
2021-06-10 16:22 - 2021-06-10 16:22 - 000128000 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3399d0ec#\350e2d591fcc718e5b046c7dcdf9f222\CLI.Aspect.CustomFormats.Graphics.Shared.ni.dll
2021-06-10 16:22 - 2021-06-10 16:22 - 000026112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.37d3d968#\17aa6e973cb4a95da5db9a04e6ad0369\CLI.Aspect.AMDHome.Graphics.Shared.ni.dll
2021-06-10 17:48 - 2021-06-10 17:48 - 000045568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.382a3def#\ed38a8e10ca641492aecc062ea92634a\CLI.Aspect.AMDOverDrive.Platform.Shared.ni.dll
2021-06-10 17:15 - 2021-06-10 17:15 - 000107008 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3a6f1658#\26e01bf63ab7750110fb55359b59476c\CLI.Aspect.TransCode.Graphics.Shared.ni.dll
2021-06-10 16:22 - 2021-06-10 16:22 - 000209920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4542c692#\420999349558e6db84ea10a5babb0cb5\CLI.Aspect.DeviceCRT.Graphics.Shared.ni.dll
2021-06-10 16:24 - 2021-06-10 16:24 - 000132608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.46819220#\e0d700b8532ea17c5653952f85f2ddb8\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.ni.dll
2021-06-10 17:15 - 2021-06-10 17:15 - 000074752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4bbb0755#\ea24236a17bc53aaa8ebe38e2db4ac9b\CLI.Aspect.TransCode.Graphics.Dashboard.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000037888 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.52c6dbaa#\200379b12771343f11fd8c90ba1396d7\CLI.Aspect.FPS.Graphics.Shared.ni.dll
2021-06-10 16:24 - 2021-06-10 16:24 - 000074752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.59a12d95#\d6711ca0b43e53ba2110e556783c7227\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.ni.dll
2021-06-10 17:48 - 2021-06-10 17:48 - 000263168 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.73911eb5#\c298b099c61ec5721e5195e590f6a42f\CLI.Aspect.WirelessDisplay.Graphics.Shared.ni.dll
2021-06-10 16:22 - 2021-06-10 16:22 - 000365056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.7ec2db45#\640b67beda0acd9de168f970fb25daab\CLI.Aspect.DeviceDFP.Graphics.Shared.ni.dll
2021-06-10 17:15 - 2021-06-10 17:15 - 000064000 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8350f5c6#\c62cbcd96744854bb4ede05cc4a43c51\CLI.Aspect.UpdateNotification.Graphics.Runtime.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000678912 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.846fa813#\9e2e412894e843a65c47ae8e7d46fa5d\CLI.Aspect.MMVideo.Graphics.Dashboard.ni.dll
2021-06-10 17:15 - 2021-06-10 17:15 - 000745472 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8d333b6b#\ec947d5e48afbd0dc513348ddb8672a5\CLI.Aspect.Radeon3D.Graphics.Shared.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000449536 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8e996306#\25ee0628483e6bb663c54a8728745944\CLI.Aspect.CrossDisplay.Graphics.Dashboard.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000089088 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.9cd1e9e7#\d348fc3cca38f60d6a589b7535d050d4\CLI.Aspect.FPS.Graphics.Dashboard.ni.dll
2021-06-10 16:22 - 2021-06-10 16:22 - 000158208 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a0ae52bc#\bceae737ea6ce0b7c6ccb1903bab645f\CLI.Aspect.DeviceLCD.Graphics.Shared.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000057856 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a6cd7fff#\055ba97ce802c3a6721938d9604ba1a1\CLI.Aspect.FPS.Graphics.Runtime.ni.dll
2021-06-10 17:15 - 2021-06-10 17:15 - 000082944 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a765109e#\94cd99baf19e52dcef40ce4dbc5c19aa\CLI.Aspect.UpdateNotification.Graphics.Dashboard.ni.dll
2021-06-10 16:22 - 2021-06-10 16:22 - 000462336 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.acb9d930#\9ed9ea25fdd49dd27aa4b44ede4de7b9\CLI.Aspect.DeviceProperty.Graphics.Shared.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000086528 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ae5e117c#\5bfb6efe6f99c917c815ad7822e3d1de\CLI.Aspect.DisplaysColour2.Graphics.Shared.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000067072 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.b0a7c1fb#\4e6f8ffb32832a7745dfbcabc54e32ea\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.ni.dll
2021-06-10 16:24 - 2021-06-10 16:24 - 000340992 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c7aaa0f8#\267f90556920f9ab13caf04cdc52717f\CLI.Aspect.OverDrive5.Graphics.Shared.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000017920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c854b457#\960bce43b0bb3468fc215db1885d7582\CLI.Aspect.HotkeysHandling.Graphics.Shared.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000276480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e8635fc7#\0783eac9567205fcc347bf647141eb17\CLI.Aspect.InfoCentre.Graphics.Dashboard.ni.dll
2021-06-10 17:15 - 2021-06-10 17:15 - 003312640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e9fd7406#\d9277e5cc0e19cc1d3871c18c95fecd2\CLI.Aspect.Radeon3D.Graphics.Dashboard.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000240640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.eda8935e#\4607e8bc6f6afd134e645698d8425ae7\CLI.Aspect.MMVideo.Graphics.Shared.ni.dll
2021-06-10 17:15 - 2021-06-10 17:15 - 000047616 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ef3eaa4d#\f1f1dc48cc960de1e4d1886ac5e08dcc\CLI.Aspect.TransCode.Graphics.Runtime.ni.dll
2021-06-10 17:15 - 2021-06-10 17:15 - 000050688 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.f480a2f3#\23cc67716fb648f4dc995cdc0884b962\CLI.Aspect.UpdateNotification.Graphics.Shared.ni.dll
2021-06-10 17:16 - 2021-06-10 17:16 - 000051200 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Runtime\65b450454bfb9c63cd23f8fd279794c4\CLI.Caste.A4.Runtime.ni.dll
2021-06-10 16:22 - 2021-06-10 16:22 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Shared\3f6c50513447519f6a79f8d3e58bbad0\CLI.Caste.A4.Shared.ni.dll
2021-06-10 17:16 - 2021-06-10 17:16 - 000027136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Af820fedc#\3dc775cae658fe6e744c6192bfdd1ea0\CLI.Caste.A4.Dashboard.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F24de14fe#\da95cbadf4d87e43f20be87a23498a03\CLI.Caste.Fuel.Shared.ni.dll
2021-06-10 17:16 - 2021-06-10 17:16 - 000311296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F36b07a2b#\912eff1c15e3aed5562bb6aa9105c49d\CLI.Caste.Fuel.Runtime.ni.dll
2021-06-10 17:16 - 2021-06-10 17:16 - 000027136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Ff3085433#\0a493818b3021c325a97a93bfdf9bfc2\CLI.Caste.Fuel.Dashboard.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000037376 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60338cc0#\6af123d1ce306217b1b6d53574f78631\CLI.Caste.Graphics.Runtime.Shared.Private.ni.dll
2021-06-10 16:22 - 2021-06-10 16:22 - 001555456 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gd9d9b43b#\d89fed66d984e08698122c9d7260d2f3\CLI.Caste.Graphics.Dashboard.Shared.ni.dll
2021-06-10 16:22 - 2021-06-10 16:22 - 000587776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gee7d2dbc#\3bb40276c295cf91d97f843fe62d02b7\CLI.Caste.Graphics.Dashboard.ni.dll
2021-06-10 17:16 - 2021-06-10 17:16 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H18c99613#\37d22df99858f14e406179999ea085fb\CLI.Caste.HydraVision.Runtime.ni.dll
2021-06-10 17:16 - 2021-06-10 17:16 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H92ba4e46#\f690b5a83252f9cb20ddba18e24af049\CLI.Caste.HydraVision.Shared.ni.dll
2021-06-10 17:16 - 2021-06-10 17:16 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Hbb906c0b#\fb012686a25e828cb7b030c3e4656f04\CLI.Caste.HydraVision.Dashboard.ni.dll
2021-06-10 17:16 - 2021-06-10 17:16 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pac40511b#\aac886cdfae37718b93efa11940d5bf0\CLI.Caste.Platform.Shared.ni.dll
2021-06-10 17:16 - 2021-06-10 17:16 - 000044032 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pdb36d56e#\b1c36090678fcff35d8a8cd8f443005a\CLI.Caste.Platform.Runtime.ni.dll
2021-06-10 17:16 - 2021-06-10 17:16 - 000024064 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pfeefa2b6#\a2e6d65fe8b4d6fd28a7c4455e92d7c8\CLI.Caste.Platform.Dashboard.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone1b4a8c97#\488ffdafff7c0b962544aa6c29c69f70\CLI.Component.Runtime.Shared.ni.dll
2021-06-10 17:48 - 2021-06-10 17:48 - 000901632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone26c9c557#\32bacb3c6e811f7157ec960c54648c74\CLI.Component.Systemtray.ni.dll
2021-06-10 17:48 - 2021-06-10 17:48 - 000173568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone29e547cc#\4f51f6a8dc751cc866370b3f1432f30e\CLI.Component.Dashboard.ProfileManager2.ni.dll
2021-06-10 16:22 - 2021-06-10 16:22 - 000151040 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone59f353b4#\822bf3ace1d8640866af49689e1e3481\CLI.Component.Runtime.Shared.Private.ni.dll
2021-06-10 17:48 - 2021-06-10 17:48 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componeb4d0485c#\8d64722815c06c596b685f648ca22240\CLI.Component.Runtime.Extension.EEU.ni.dll
2021-06-10 16:21 - 2021-06-10 16:21 - 001609728 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componec89c3bec#\ff156affca9da1540c7633b007b99f8d\CLI.Component.Dashboard.Shared.Private.ni.dll
2021-06-10 16:21 - 2021-06-10 16:21 - 000018432 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componef1fd67b2#\f2875c5733e10ced17d18840435da499\CLI.Component.Client.Shared.ni.dll
2021-06-10 16:21 - 2021-06-10 16:21 - 000085504 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componef4cf054f#\d99d64252184c55f1519b0475d81aba6\CLI.Component.Dashboard.Shared.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000089600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat3d5d3945#\a1e5d8281963cf9bbdfd437844afc579\CLI.Foundation.Private.ni.dll
2021-06-10 17:48 - 2021-06-10 17:48 - 000061440 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat60cdf5df#\fe76ae65024d3e93b84cc078654c36ea\CLI.Foundation.XManifest.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000091136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat619559bd#\ff98e49d8f1cc70c787035a35f7880eb\CLI.Foundation.CoreAudioAPI.ni.dll
2021-06-10 16:21 - 2021-06-10 16:21 - 001079808 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundatd3771151#\d00a5ff8652935ce694d3be20a2198af\CLI.Foundation.Client.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000301568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundation\767b549aee281acd87612f8e51cec071\CLI.Foundation.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Foundation\88aedf4286b41335538454e28da3d5ad\DEM.Foundation.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000115200 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0601\2ac31d3affb164a3536f52325849618e\DEM.Graphics.I0601.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics\f53b68c8b8182240fcfcaa86d44f4a05\DEM.Graphics.ni.dll
2021-06-10 17:16 - 2021-06-10 17:16 - 000037376 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Fuel.Foundation\10e4e2f0f50c02bf900c85f3168f9d8b\Fuel.Foundation.ni.dll
2021-06-10 17:49 - 2021-06-10 17:49 - 000296960 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundat03490438#\ae3dfc80dd02293c53aab077b6568903\LOG.Foundation.Implementation.ni.dll
2021-06-10 16:19 - 2021-06-10 16:19 - 000150016 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundat5023f8e7#\e649252ab052f3f4b72721f97a880712\LOG.Foundation.Private.ni.dll
2021-06-10 16:21 - 2021-06-10 16:21 - 000087552 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundatcaafa75b#\509f7a388fc5ea6246a146f1fc6e18e6\LOG.Foundation.Implementation.Private.ni.dll
2021-06-10 16:19 - 2021-06-10 16:19 - 000132608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundation\6b2ea6d0a1acbe8f0fc6ca36d0856e3e\LOG.Foundation.ni.dll
2021-06-10 16:21 - 2021-06-10 16:21 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MOM.Foundation\b99d2538c3c890d771a1c04dd177d7aa\MOM.Foundation.ni.dll
2021-06-10 17:50 - 2021-06-10 17:50 - 000402944 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MOM.Implementation\f65b407b6fa1fd149cd0aeda74bde371\MOM.Implementation.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000055296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\NEWAEM.Foundation\e92cc532e4e54924171ac11e0b58376d\NEWAEM.Foundation.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000897024 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ADL.Foundation\e21bd6b0141764f99439dc1ef6f975b8\ADL.Foundation.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 000256000 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\APM.Server\6a8cbc23c9d801aecf56d10975faad6e\APM.Server.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000298496 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.9b707b25#\ec4c1a20a416effc1974e4fc5e41bacd\CLI.Aspect.DeviceProperty.Graphics.Runtime.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 001654272 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.aa59351a#\2cbdff7d694bc92e586cac6352007d27\CLI.Aspect.DeviceProperty.Graphics.Dashboard.Shared.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 006336512 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e6d9f3a8#\dcc564f48bd106e545b200851e7295c9\CLI.Aspect.DeviceDFP.Graphics.Dashboard.ni.dll
2021-06-10 17:47 - 2021-06-10 17:47 - 008027648 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Combine0616f305#\70526763377531b7f8da0eef0ff46570\CLI.Combined.Graphics.Aspects1.Dashboard.ni.dll
2021-06-10 17:48 - 2021-06-10 17:48 - 001159680 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Combine7332395e#\d8c9417de1394f863be60783c1f0548e\CLI.Combined.Graphics.Aspects2.Runtime.ni.dll
2021-06-10 16:21 - 2021-06-10 16:21 - 000136704 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone168638d1#\9990039a04e60ea15c90dd9e6705d5ec\CLI.Component.Client.Shared.Private.ni.dll
2021-06-10 17:48 - 2021-06-10 17:48 - 000234496 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone6692ca50#\10aeb7bd876d92391a92ae5878172bfd\CLI.Component.Runtime.ni.dll
2021-06-10 17:48 - 2021-06-10 17:48 - 000929280 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone6bf88b08#\3adea2d6f9625cd435590eeb58334093\CLI.Component.Dashboard.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000013312 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0706\4e6edfde6749f5cd91ddfc3c758c88fa\DEM.Graphics.I0706.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000084480 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0709\821e22275b6879c65ecfa39ff816979c\DEM.Graphics.I0709.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000012288 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0712\d33744e34975426a466a715ea18596e6\DEM.Graphics.I0712.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000018432 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0804\687ae02d4df333e6199795c273e6a71f\DEM.Graphics.I0804.ni.dll
2021-06-10 17:48 - 2021-06-10 17:48 - 000010752 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0805\5b6428b829b41206bd64e65eb6cfbde2\DEM.Graphics.I0805.ni.dll
2021-06-10 17:48 - 2021-06-10 17:48 - 000010752 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0812\aad026d5d7cc6e985bce46cde5e6bdb7\DEM.Graphics.I0812.ni.dll
2021-06-10 17:16 - 2021-06-10 17:16 - 000013312 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0906\5d244a8b168204855e757e1006ab6b23\DEM.Graphics.I0906.ni.dll
2021-06-10 16:23 - 2021-06-10 16:23 - 000014336 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0912\db2b1342df9cc26000ca49b721241683\DEM.Graphics.I0912.ni.dll
2021-06-10 17:16 - 2021-06-10 17:16 - 000035840 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I1010\b4c023b457ef000c29dd844bcc115d4c\DEM.Graphics.I1010.ni.dll
2021-06-10 16:20 - 2021-06-10 16:20 - 001139200 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Localizatio01dbc1c0#\3b6999fc264004816a7e66a626af43d3\Localization.Foundation.Private.ni.dll
2021-06-10 17:50 - 2021-06-10 17:50 - 000244736 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ResourceMan446ca0e5#\ceeb4fd4925bda216a8804ffb441096a\ResourceManagement.Foundation.Implementation.ni.dll
2021-06-10 16:21 - 2021-06-10 16:21 - 000023552 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ResourceManf163905a#\7d31d8a7df1e04ef5209215d0d101c6d\ResourceManagement.Foundation.Private.ni.dll
2021-06-10 16:22 - 2021-06-10 16:22 - 000091648 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ec8786e5#\dc2dcb8d44480a6dada87fb22d6f1432\CLI.Aspect.AMDHome.Graphics.Dashboard.ni.dll
2021-06-10 16:21 - 2021-06-10 16:21 - 002845696 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60a7b4d1#\0dfb2c1d8027a7a9b2ed95dfb7975ab0\CLI.Caste.Graphics.Shared.ni.dll
2021-06-10 17:16 - 2021-06-10 17:16 - 003268096 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G962aa464#\6e38eccb13526a1f944a507efe7b5b56\CLI.Caste.Graphics.Runtime.ni.dll
2021-06-10 16:22 - 2021-06-10 16:22 - 000335360 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.W8090224c#\895eea6b8ebd633de047eb384b451d44\Microsoft.WindowsAPICodePack.ni.dll
2021-06-10 16:22 - 2021-06-10 16:22 - 002546688 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.Wfbf9373c#\18b78dcc6c39d463517a08d5ad8f5fc3\Microsoft.WindowsAPICodePack.Shell.ni.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\nvdimm.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{53966cb1-4d46-4166-bf23-c522403cd495} => ""="ScmDisk"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\nvdimm.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{53966cb1-4d46-4166-bf23-c522403cd495} => ""="ScmDisk"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
SearchScopes: HKU\S-1-5-21-1796023744-1759536030-3900380101-1002 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-11-18 17:42 - 2021-01-13 22:21 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img13.jpg
DNS Servers: 8.8.8.8 - 1.1.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "StartCCC"
HKLM\...\StartupApproved\Run32: => "WindowsDefender"
HKLM\...\StartupApproved\Run32: => "SecurityHealth"
HKLM\...\StartupApproved\Run32: => "TeamsMachineUninstallerLocalAppData"
HKLM\...\StartupApproved\Run32: => "TeamsMachineUninstallerProgramData"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\StartupFolder: => "Odoslanie do aplikácie OneNote.lnk"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "Uninstall C:\Users\saullerist\AppData\Local\Microsoft\OneDrive\17.3.6381.0405\amd64"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "GoogleDriveSync"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_DDAEB60A3A4C412D731C2E4868511E36"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "Lync"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "Skype for Desktop"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "CCleanerBrowserAutoLaunch_AFE589D608B3188594AF573809023416"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{BA94B2AF-32ED-43B0-9B5C-A9BBFCBCC76C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.42.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7E92E685-95D4-4189-8B87-D070E2A6CFE2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.42.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B86A1AE4-0285-4430-AC20-49ED7CA71FCA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.42.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A7C9D772-FB32-48C2-92E1-3605FCE728BC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.42.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{165F1F12-F363-43B1-A7B2-21B220C91658}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\94.0.992.31\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

19-09-2021 15:28:20 Scheduled Checkpoint
28-09-2021 17:52:10 Scheduled Checkpoint

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (09/30/2021 03:38:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: SystemSettings.exe, verzia: 10.0.21390.1, časová značka: 0x27a6d211
Názov chybujúceho modulu: msvcrt.dll, verzia: 7.0.21390.1, časová značka: 0x90483ed2
Kód výnimky: 0x40000015
Odstup chyby: 0x000000000000b0ac
Identifikácia chybujúceho procesu: 0x69c
Čas spustenia chybujúcej aplikácie: 0x01d7b5ff6e44cefa
Cesta chybujúcej aplikácie: C:\Windows\ImmersiveControlPanel\SystemSettings.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\msvcrt.dll
Identifikácia hlásenia: 153fb632-e2bb-4bb3-856d-de934441bcdd
Celé meno chybujúceho balíka: windows.immersivecontrolpanel_10.0.6.1000_neutral_neutral_cw5n1h2txyewy
Identifikácia chybujúcej aplikácie vzhľadom na balík: microsoft.windows.immersivecontrolpanel

Error: (09/30/2021 09:04:27 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: MoUsoCoreWorker.exe, verzia: 10.0.21390.1, časová značka: 0x49a30216
Názov chybujúceho modulu: ucrtbase.dll, verzia: 10.0.21390.1, časová značka: 0x00e78ce9
Kód výnimky: 0xc0000409
Odstup chyby: 0x000000000007dd7e
Identifikácia chybujúceho procesu: 0x152c
Čas spustenia chybujúcej aplikácie: 0x01d7b5751aa08d80
Cesta chybujúcej aplikácie: C:\WINDOWS\uus\AMD64\MoUsoCoreWorker.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\ucrtbase.dll
Identifikácia hlásenia: 35a490cf-34f5-4250-bf77-537527023d4d
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (09/29/2021 11:30:53 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: MoUsoCoreWorker.exe, verzia: 10.0.21390.1, časová značka: 0x49a30216
Názov chybujúceho modulu: ucrtbase.dll, verzia: 10.0.21390.1, časová značka: 0x00e78ce9
Kód výnimky: 0xc0000409
Odstup chyby: 0x000000000007dd7e
Identifikácia chybujúceho procesu: 0x1d1c
Čas spustenia chybujúcej aplikácie: 0x01d7b5144d56ce4c
Cesta chybujúcej aplikácie: C:\WINDOWS\uus\AMD64\MoUsoCoreWorker.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\ucrtbase.dll
Identifikácia hlásenia: a477aacb-0442-4cc5-9ea7-da686b36d401
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (09/28/2021 10:36:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: MoUsoCoreWorker.exe, verzia: 10.0.21390.1, časová značka: 0x49a30216
Názov chybujúceho modulu: ucrtbase.dll, verzia: 10.0.21390.1, časová značka: 0x00e78ce9
Kód výnimky: 0xc0000409
Odstup chyby: 0x000000000007dd7e
Identifikácia chybujúceho procesu: 0x1e60
Čas spustenia chybujúcej aplikácie: 0x01d7b4a86b4d5872
Cesta chybujúcej aplikácie: C:\WINDOWS\uus\AMD64\MoUsoCoreWorker.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\ucrtbase.dll
Identifikácia hlásenia: 710abca3-10f4-4199-97ee-505d57a3a8ec
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (09/28/2021 04:29:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: ShellExperienceHost.exe, verzia: 10.0.21390.1, časová značka: 0x11cf7eb5
Názov chybujúceho modulu: Windows.UI.Xaml.dll, verzia: 10.0.21390.1, časová značka: 0xe2e989d9
Kód výnimky: 0xc0000005
Odstup chyby: 0x00000000001a1d2f
Identifikácia chybujúceho procesu: 0x520
Čas spustenia chybujúcej aplikácie: 0x01d7b4753d65c959
Cesta chybujúcej aplikácie: C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
Cesta chybujúceho modulu: C:\Windows\System32\Windows.UI.Xaml.dll
Identifikácia hlásenia: 9934e4ed-b01d-4299-b986-c621a27a16ec
Celé meno chybujúceho balíka: Microsoft.Windows.ShellExperienceHost_10.0.21390.1_neutral_neutral_cw5n1h2txyewy
Identifikácia chybujúcej aplikácie vzhľadom na balík: App

Error: (09/28/2021 10:24:47 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: MoUsoCoreWorker.exe, verzia: 10.0.21390.1, časová značka: 0x49a30216
Názov chybujúceho modulu: ucrtbase.dll, verzia: 10.0.21390.1, časová značka: 0x00e78ce9
Kód výnimky: 0xc0000409
Odstup chyby: 0x000000000007dd7e
Identifikácia chybujúceho procesu: 0x137c
Čas spustenia chybujúcej aplikácie: 0x01d7b4422948400c
Cesta chybujúcej aplikácie: C:\WINDOWS\uus\AMD64\MoUsoCoreWorker.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\ucrtbase.dll
Identifikácia hlásenia: 4fa0ed6f-679e-4eac-863c-56c930f793c5
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (09/27/2021 09:59:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: MoUsoCoreWorker.exe, verzia: 10.0.21390.1, časová značka: 0x49a30216
Názov chybujúceho modulu: ucrtbase.dll, verzia: 10.0.21390.1, časová značka: 0x00e78ce9
Kód výnimky: 0xc0000409
Odstup chyby: 0x000000000007dd7e
Identifikácia chybujúceho procesu: 0x2264
Čas spustenia chybujúcej aplikácie: 0x01d7b3d9c766010d
Cesta chybujúcej aplikácie: C:\WINDOWS\uus\AMD64\MoUsoCoreWorker.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\ucrtbase.dll
Identifikácia hlásenia: 2bf9ce0c-00b5-4b35-bacd-bc7096aa0c1a
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (09/27/2021 09:23:31 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: MoUsoCoreWorker.exe, verzia: 10.0.21390.1, časová značka: 0x49a30216
Názov chybujúceho modulu: ucrtbase.dll, verzia: 10.0.21390.1, časová značka: 0x00e78ce9
Kód výnimky: 0xc0000409
Odstup chyby: 0x000000000007dd7e
Identifikácia chybujúceho procesu: 0x2164
Čas spustenia chybujúcej aplikácie: 0x01d7b370666cdf34
Cesta chybujúcej aplikácie: C:\WINDOWS\uus\AMD64\MoUsoCoreWorker.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\ucrtbase.dll
Identifikácia hlásenia: ee9daa87-c545-49be-b51b-7f63de7e413c
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:


System errors:
=============
Error: (09/30/2021 04:13:31 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{6246C65D-BAC1-4762-89A6-06049B6E07D8} because another computer on the network has the same name. The server could not start.

Error: (09/30/2021 04:03:42 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{6246C65D-BAC1-4762-89A6-06049B6E07D8} because another computer on the network has the same name. The server could not start.

Error: (09/30/2021 03:58:17 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{6246C65D-BAC1-4762-89A6-06049B6E07D8} because another computer on the network has the same name. The server could not start.

Error: (09/30/2021 03:52:51 PM) (Source: googledrivefs3514) (EventID: 2) (User: )
Description: The driver version of the disk does not match.

Error: (09/30/2021 03:32:02 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{1CCE6693-D84C-4468-86B9-8032B89A8897} because another computer on the network has the same name. The server could not start.

Error: (09/30/2021 03:27:11 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{1CCE6693-D84C-4468-86B9-8032B89A8897} because another computer on the network has the same name. The server could not start.

Error: (09/30/2021 01:15:45 PM) (Source: googledrivefs3514) (EventID: 2) (User: )
Description: The driver version of the disk does not match.

Error: (09/30/2021 09:09:08 AM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{1CCE6693-D84C-4468-86B9-8032B89A8897} because another computer on the network has the same name. The server could not start.


Windows Defender:
================Event[0]

Date: 2021-09-27 13:17:32
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Event[1]

Date: 2021-09-26 13:20:46
Description:
N/A
Event[2]

Date: 2021-09-24 13:20:35
Description:
N/A
Event[3]

Date: 2021-09-23 13:12:02
Description:
N/A
Event[4]

Date: 2021-09-21 12:59:11
Description:
N/A
Event[0]

Date: 2021-09-30 16:01:45
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.349.1685.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.18600.3
Error code: 0x80240438
Error description: Počas vyhľadávania aktualizácií sa vyskytol neočakávaný problém. Informácie o inštalácii aktualizácií a riešení problémov s aktualizáciami nájdete v Pomoci a technickej podpore. ਍
Event[1]

Date: 2021-09-29 11:46:42
Description:
N/A

CodeIntegrity:
===============
Date: 2021-09-25 14:09:31
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\ImmersiveControlPanel\SystemSettings.exe) attempted to load \Device\HarddiskVolume2\Program Files\Google\Drive File Stream\50.0.11.0\crashpad_handler.exe that did not meet the Microsoft signing level requirements. ਍


==================== Memory info ===========================

BIOS: INSYDE 1.40 05/17/2010
Motherboard: TOSHIBA Portable PC
Processor: Intel(R) Core(TM) i3 CPU M 330 @ 2.13GHz
Percentage of memory in use: 70%
Total physical RAM: 3958.85 MB
Available physical RAM: 1153.77 MB
Total Virtual: 5174.85 MB
Available Virtual: 1975.15 MB

==================== Drives ================================

Drive c: (WINDOWS) (Fixed) (Total:296.96 GB) (Free:269.97 GB) NTFS
Drive d: (Data) (Fixed) (Total:297.92 GB) (Free:287.08 GB) NTFS
Drive g: (Google Drive) (Fixed) (Total:19 GB) (Free:17.97 GB) FAT32

\\?\Volume{18c6abd2-0000-0000-0000-100000000000}\ (SYSTEM) (Fixed) (Total:0.39 GB) (Free:0.18 GB) NTFS
\\?\Volume{18c6abd2-0000-0000-0000-a0564a000000}\ () (Fixed) (Total:0.89 GB) (Free:0.3 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 596.2 GB) (Disk ID: 18C6ABD2)
Partition 1: (Active) - (Size=400 MB) - (Type=27)
Partition 2: (Not Active) - (Size=297 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=915 MB) - (Type=27)
Partition 4: (Not Active) - (Size=297.9 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\MountPoints2: {14f1611b-ca97-11eb-bc9d-00266c5324d3} - "F:\HiSuiteDownLoader.exe"
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {B40F8511-B9B4-4F7B-9312-FC6DAA6B9F00} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {B91219DC-34E0-47A2-B494-6279369FA6B4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]

EmptyTemp:
End

Uložte do C:\Users\saullerist\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Fix result of Farbar Recovery Scan Tool (x64) Version: 22-09-2021 02
Ran by saullerist (30-09-2021 18:55:11) Run:1
Running from C:\Users\saullerist\Downloads
Loaded Profiles: saullerist
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\MountPoints2: {14f1611b-ca97-11eb-bc9d-00266c5324d3} - "F:\HiSuiteDownLoader.exe"
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {B40F8511-B9B4-4F7B-9312-FC6DAA6B9F00} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {B91219DC-34E0-47A2-B494-6279369FA6B4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Local Page"="C:\Windows\SysWOW64\blank.htm" => value restored successfully
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{14f1611b-ca97-11eb-bc9d-00266c5324d3} => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers\{C885AA15-1764-4293-B82A-0586ADD46B35} => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B40F8511-B9B4-4F7B-9312-FC6DAA6B9F00}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B40F8511-B9B4-4F7B-9312-FC6DAA6B9F00}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B91219DC-34E0-47A2-B494-6279369FA6B4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B91219DC-34E0-47A2-B494-6279369FA6B4}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 24298358 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 673767 B
Edge => 0 B
Firefox => 10677366 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 110930 B
saullerist => 76704292 B

RecycleBin => 50110 B
EmptyTemp: => 108.6 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 18:56:14 ====

Smazáno, log by již měl být OK.