Ist raus! Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24-10-2020
Ran by EE (25-10-2020 12:11:52)
Running from C:\Users\EE\Downloads
Windows 10 Pro Version 2004 19041.572 (X64) (2020-10-20 10:04:54)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-590958880-3246498269-3680704979-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-590958880-3246498269-3680704979-503 - Limited - Disabled)
EE (S-1-5-21-590958880-3246498269-3680704979-1001 - Administrator - Enabled) => C:\Users\EE
Gast (S-1-5-21-590958880-3246498269-3680704979-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-590958880-3246498269-3680704979-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Sicherheitspaket by F-Secure (Disabled - Up to date) {8AC831E5-DF57-0DC0-D07B-4DE1A5FFFD9A}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Acronis Universal Restore Bootable Media Builder (HKLM-x32\...\{8C7086EC-DD84-4F9F-9671-6B899545EA32}) (Version: 11.5.40067 - Acronis)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 20.012.20048 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.445 - Adobe)
AirPort (HKLM-x32\...\{AA68AAAE-41F0-40B5-8896-5947F5FD6889}) (Version: 5.6.1.2 - Apple Inc.)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
ANT Drivers Installer x64 (HKLM\...\{998DF7E5-262F-4391-A117-8D9E383B8C0A}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Assessments on Client (HKLM-x32\...\{C1C83898-5A60-AE9D-A3AB-7534375CA453}) (Version: 8.100.26866 - Microsoft) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
calibre (HKLM-x32\...\{E323667D-F082-4379-87DF-BF7C9E00F9D5}) (Version: 5.0.1 - Kovid Goyal)
ClipGrab 3.8.14 (HKLM-x32\...\{8A1033B0-EF33-4FB5-97A1-C47A7DCDD7E6}_is1) (Version: - The ClipGrab Project)
CopyTrans Control Center deinstallieren (HKU\S-1-5-21-590958880-3246498269-3680704979-1001\...\CopyTrans Suite) (Version: 4.100 - WindSolutions)
CrystalDiskInfo 8.4.2 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.4.2 - Crystal Dew World)
Data Lifeguard Diagnostic version 1.36 (HKLM-x32\...\{519C4DB6-B53B-4F5C-8297-89B2BE949FA5}_is1) (Version: - Western Digital Corporation)
Dot4 (HKLM\...\{3EEDA265-C6F3-4EC1-A317-1C9315DEDDDE}) (Version: 1.0.0.0 - HP)
dreamboxEDIT -- The one and only settings editor for your Dreambox (HKLM-x32\...\dreamboxEDIT) (Version: - )
EaseUS Partition Master 14.0 (HKLM-x32\...\EaseUS Partition Master Trial Edition_is1) (Version: - EaseUS)
Elevated Installer (HKLM-x32\...\{5053832D-D695-4E6A-A777-8CC79DF61A85}) (Version: 7.1.3.0 - Garmin Ltd or its subsidiaries) Hidden
ElsterFormular (HKLM-x32\...\{870D4BDF-96FD-4A68-ACF4-A35CB31E0B3A}) (Version: 21.3 - Thüringer Landesamt für Finanzen)
EPUB to MOBI (HKLM-x32\...\{C65AA5AE-8B80-46B6-ADFC-BBF1EFF2AD98}_is1) (Version: - epubtomobi.com)
Excel (HKU\S-1-5-21-590958880-3246498269-3680704979-1001\...\1fc5b090eab9aa41f8a2f5987367e6da) (Version: 1.0 - Excel)
FileZilla Client 3.48.0 (HKLM-x32\...\FileZilla Client) (Version: 3.48.0 - Tim Kosse)
Garmin Express (HKLM-x32\...\{040c11a0-b209-4b21-b861-163f52e01d88}) (Version: 7.1.3.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{F8609938-A6C9-4796-87BC-471F62EA4F0E}) (Version: 7.1.3.0 - Garmin Ltd or its subsidiaries) Hidden
Gigaset QuickSync (HKLM\...\{90cbe112-5ab9-4ff3-aa3a-25dec23359ab}) (Version: 8.6.0880.1 - Gigaset Communications GmbH)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
iPod-Unterstützung (HKLM\...\{D9DF60DE-E46E-40DC-BAF6-546AA63013EC}) (Version: 120.7.3.55 - Apple Inc.)
JDownloader 2 (HKLM-x32\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Kits Configuration Installer (HKLM-x32\...\{B74E65FD-CC47-41C5-4B89-791A3F61942D}) (Version: 8.100.25984 - Microsoft) Hidden
Malwarebytes version 4.2.1.89 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.2.1.89 - Malwarebytes)
Mazda Toolbox (HKLM-x32\...\Mazda Toolbox) (Version: - )
Microsoft 365 Apps for Enterprise - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 16.0.13231.20390 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 86.0.622.51 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.49 - )
Microsoft OneDrive (HKLM-x32\...\OneDriveSetup.exe) (Version: 20.169.0823.0008 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-590958880-3246498269-3680704979-1001\...\Teams) (Version: 1.3.00.28779 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{97238E8A-4919-4A1E-965A-C6C36938F4CE}) (Version: 2.68.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 5.0.0 Preview 3 (x64) (HKLM-x32\...\{66ed90d9-d99c-4f52-866b-e42940abba3e}) (Version: 5.0.0.28814 - Microsoft Corporation)
Mozilla Firefox 83.0 (x64 de) (HKLM\...\Mozilla Firefox 83.0 (x64 de)) (Version: 83.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 82.0 - Mozilla)
MyDriveConnect 4.0.4.2260 (HKLM-x32\...\MyDriveConnect) (Version: 4.0.4.2260 - TomTom)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.13231.20126 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.13231.20200 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0407-1000-0000000FF1CE}) (Version: 16.0.13231.20126 - Microsoft Corporation) Hidden
Outlook (HKU\S-1-5-21-590958880-3246498269-3680704979-1001\...\6b0f23e57a39ebfbf2814acb1a24293d) (Version: 1.0 - Outlook)
PowerPoint (HKU\S-1-5-21-590958880-3246498269-3680704979-1001\...\319814cb56b667dff88f54e08be8f51f) (Version: 1.0 - PowerPoint)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7586 - Realtek Semiconductor Corp.)
Samsung Data Migration (HKLM-x32\...\{D4DE3DB4-7734-47E5-8D92-B80146311406}) (Version: 2.5 - Samsung)
Samsung Kies3 (HKLM-x32\...\{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16011.2 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16011.2 - Samsung Electronics Co., Ltd.)
Samsung SideSync (HKLM-x32\...\Samsung SideSync) (Version: 4.7.5.244 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.)
SDFormatter (HKLM-x32\...\{179324FF-7B16-4BA8-9836-055CAAEE4F08}) (Version: 4.0.0 - SD Association)
SuperOrca (HKLM-x32\...\SuperOrca) (Version: 11.0.0.1 - Pantaray)
Synology Assistant (remove only) (HKLM-x32\...\Synology Assistant) (Version: 6.2-24922 - Synology)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.3.0.4461 - Microsoft Corporation)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.5.3 - TeamViewer)
TomTom HOME 2.8.0.2146 (HKLM-x32\...\TomTom HOME) (Version: 2.8.0.2146 - TomTom)
TomTom HOME Visual Studio Merge Modules (HKLM-x32\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.)
Toolkit Documentation (HKLM-x32\...\{6C870B12-6FF2-68FC-8C3B-DD177BBF3F92}) (Version: 8.100.26866 - Microsoft) Hidden
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.0a - Ghisler Software GmbH)
Unknown Device Identifier 8.01 (HKLM\...\Unknown Device Identifier_is1) (Version: 8.01 - Huntersoft)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.5.2.0 - Elaborate Bytes)
Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.10 - VideoLAN)
Windows Assessment and Deployment Kit for Windows 8.1 (HKLM-x32\...\{e9e06304-a604-434b-b35f-d9beb94dc06d}) (Version: 8.100.26866 - Microsoft Corporation)
Windows-Treiberpaket - Apple Inc. Apple ODD (05/17/2010 3.1.0.0) (HKLM\...\D6B4CB6AD2F81752C2EF8DCF6AD5EBC567ADD45C) (Version: 05/17/2010 3.1.0.0 - Apple Inc.)
Windows-Treiberpaket - Atmel Corporation (libusb0) Atmel USB Devices (10/02/2010 1.2.2.0) (HKLM\...\52DAED6955BA3A58B0EA4BAC7B5158E5BBB8B427) (Version: 10/02/2010 1.2.2.0 - Atmel Corporation)
Windows-Treiberpaket - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows-Treiberpaket - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Word (HKU\S-1-5-21-590958880-3246498269-3680704979-1001\...\1b837d0bf93d01407352736c91b7bf50) (Version: 1.0 - Word)
WPT Redistributables (HKLM-x32\...\{64F3FB9A-9250-B2D6-00B4-50BE0358AEE8}) (Version: 8.100.26866 - Microsoft) Hidden
WPTx64 (HKLM-x32\...\{BFF81CB5-E8C7-4184-FBB4-74ADFBC6CCCB}) (Version: 8.100.26837 - Microsoft) Hidden
Zeppelin Air Recovery Utility (HKLM-x32\...\{4AB30A93-1108-4703-B737-82C206771039}) (Version: 2.2.3.342 - Bowers & Wilkins) Hidden
Zeppelin Recovery Utility (HKLM-x32\...\{c771c813-6cad-441f-8719-818b1e4fd511}) (Version: 2.2.3.342 - Bowers & Wilkins)
Packages:
=========
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.45.4.0_x86__kgqvnymyfvs32 [2020-10-23] (king.com)
Farm Heroes Saga -> C:\Program Files\WindowsApps\king.com.FarmHeroesSaga_5.46.6.0_x86__kgqvnymyfvs32 [2020-09-30] (king.com)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_120.1.741.0_x64__v10z8vjag6ke6 [2020-10-14] (HP Inc.)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x64__nzyj5cx40ttqa [2020-10-22] (Apple Inc.) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-05-01] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-05-01] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2020-10-23] (Microsoft Studios) [MS Ad]
Microsoft To Do -> C:\Program Files\WindowsApps\Microsoft.Todos_2.28.32802.0_x64__8wekyb3d8bbwe [2020-10-14] (Microsoft Corporation) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-590958880-3246498269-3680704979-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\EE\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-590958880-3246498269-3680704979-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\EE\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\20.169.0823.0008\amd64\FileSyncShell64.dll [2020-10-25] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\20.169.0823.0008\amd64\FileSyncShell64.dll [2020-10-25] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\20.169.0823.0008\amd64\FileSyncShell64.dll [2020-10-25] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\20.169.0823.0008\amd64\FileSyncShell64.dll [2020-10-25] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\20.169.0823.0008\amd64\FileSyncShell64.dll [2020-10-25] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\20.169.0823.0008\amd64\FileSyncShell64.dll [2020-10-25] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\20.169.0823.0008\amd64\FileSyncShell64.dll [2020-10-25] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\20.169.0823.0008\amd64\FileSyncShell64.dll [2020-10-25] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\20.169.0823.0008\amd64\FileSyncShell64.dll [2020-10-25] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\20.169.0823.0008\amd64\FileSyncShell64.dll [2020-10-25] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\20.169.0823.0008\amd64\FileSyncShell64.dll [2020-10-25] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\20.169.0823.0008\amd64\FileSyncShell64.dll [2020-10-25] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\20.169.0823.0008\amd64\FileSyncShell64.dll [2020-10-25] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\20.169.0823.0008\amd64\FileSyncShell64.dll [2020-10-25] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\20.169.0823.0008\amd64\FileSyncShell64.dll [2020-10-25] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2020-02-23] (Elaborate Bytes AG -> Elaborate Bytes AG)
ContextMenuHandlers2: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2020-02-23] (Elaborate Bytes AG -> Elaborate Bytes AG)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-04-27] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\20.169.0823.0008\amd64\FileSyncShell64.dll [2020-10-25] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\20.169.0823.0008\amd64\FileSyncShell64.dll [2020-10-25] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-04-27] (Malwarebytes Corporation -> Malwarebytes)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\EE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Excel.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=leffmjdabcgaflkikcefahmlgpodjkdm --app-url=hxxps://excel.office.com/
ShortcutWithArgument: C:\Users\EE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=bjhmmnoficofgoiacjaajpkfndojknpb --app-url=hxxps://outlook.com/
ShortcutWithArgument: C:\Users\EE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=opfacbhaojodjaojgocnibmklknchehf --app-url=hxxps://powerpoint.office.com/
ShortcutWithArgument: C:\Users\EE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Word.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=hikhggiobiflkdfdgdajcfklmcibbopi --app-url=hxxps://word.office.com/
==================== Loaded Modules (Whitelisted) =============
2019-09-09 07:13 - 2019-09-09 07:13 - 001364992 _____ () [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\CefSharp.Core.dll
2020-08-27 13:45 - 2020-08-27 13:45 - 000073216 _____ () [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\FixBootSector.dll
2017-05-08 09:35 - 2017-05-08 09:35 - 000325632 _____ () [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\GpsImgWrapper.dll
2019-07-27 08:57 - 2019-07-27 08:57 - 096071680 _____ () [File not signed] C:\Program Files (x86)\Garmin\Express\libcef.dll
2014-10-24 20:34 - 2014-10-24 20:34 - 000880640 _____ () [File not signed] C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\fsk.dll
2014-04-25 20:46 - 2014-04-25 20:46 - 000798720 _____ () [File not signed] C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskSecurity.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 000031232 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\A4.Foundation\19359ae49469bf9b7c0ec45f0eea3f26\A4.Foundation.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 000022528 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Actions5dc83b46#\31bbb048d58f46af4cfa28cd4e099104\AEM.Actions.CCAA.Shared.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.0a1309f7#\7e97dbe1c85ac52a48d67685460652a6\AEM.Plugin.EEU.Shared.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.2b6a6775#\8bee449877e06bf000e1f1ec1604586c\AEM.Plugin.Hotkeys.Shared.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 000281600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.5d945b6b#\4a3353337c092fe874ae108d3ba51513\AEM.Plugin.Source.Kit.Server.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 000014848 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.674d2b8a#\29121686d9f5d67741abcd49a5c2c9ae\AEM.Plugin.WinMessages.Shared.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 000012800 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.88aba5d2#\6ee7bd7e0eed422d737ce4f21f6eb548\AEM.Plugin.REG.Shared.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.GD.Shared\2f72afa817c34b1c4a60fee3fcc4c731\AEM.Plugin.GD.Shared.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Server.Shared\4c19cb7ef5a596c9c78e5b7038e3e4c8\AEM.Server.Shared.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 000267776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Server\c24e1d4da1c13f81d3034fe46ba24dba\AEM.Server.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 000055808 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\APM.Foundation\95acdb99eebfe4cb86b02ddd75be71b2\APM.Foundation.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000122880 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ATICCCom\f505e4013c0e682e207242832dc3e078\ATICCCom.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 000204288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CCC.Implementation\3efaa283749a8f8afc6639237806cba3\CCC.Implementation.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000128000 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3399d0ec#\b0be19065b449a2be0451c84e9fce166\CLI.Aspect.CustomFormats.Graphics.Shared.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000026112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.37d3d968#\bb049f96432b6c4c1ea8df310d833a7b\CLI.Aspect.AMDHome.Graphics.Shared.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000045568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.382a3def#\06ce82d29df3b120d1c6d7ba2870d5c3\CLI.Aspect.AMDOverDrive.Platform.Shared.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000107008 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3a6f1658#\6947d4bfb6465a7c61eb358daece96a6\CLI.Aspect.TransCode.Graphics.Shared.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000209920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4542c692#\0c08621acf17e48f68fa61ddab84ddac\CLI.Aspect.DeviceCRT.Graphics.Shared.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000074752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4bbb0755#\0a4da03b450177dfa063a630d3c2b573\CLI.Aspect.TransCode.Graphics.Dashboard.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000037888 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.52c6dbaa#\caf2e83db5a102be792d988f838649ff\CLI.Aspect.FPS.Graphics.Shared.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000263168 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.73911eb5#\bba49ec305a868b0189462b030656e2c\CLI.Aspect.WirelessDisplay.Graphics.Shared.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000365056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.7ec2db45#\ef988e699eb93f2b7c853c7043566ae0\CLI.Aspect.DeviceDFP.Graphics.Shared.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000064000 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8350f5c6#\a6bd3254d6472d2bb3e87fc6f5ac4b86\CLI.Aspect.UpdateNotification.Graphics.Runtime.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000678912 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.846fa813#\30610fa2453dbfba4035ee0fc2b0e3a7\CLI.Aspect.MMVideo.Graphics.Dashboard.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000320512 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.87ad5c75#\c0683dac226bfdbbf41c407be35ccff3\CLI.Aspect.OverDrive5.Graphics.Dashboard.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000745472 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8d333b6b#\150fd64b19ba00575a7aaec8cc7cd89a\CLI.Aspect.Radeon3D.Graphics.Shared.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000449536 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8e996306#\6176ef4c8e573c94e3b066828d154992\CLI.Aspect.CrossDisplay.Graphics.Dashboard.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000089088 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.9cd1e9e7#\2fc4bab34ce8a42d29a42d0dd087e83a\CLI.Aspect.FPS.Graphics.Dashboard.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000158208 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a0ae52bc#\c01c9624b6e291fdf32ee32993bfa623\CLI.Aspect.DeviceLCD.Graphics.Shared.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000057856 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a6cd7fff#\130ff1328a469bb9534cedcf39b7f96c\CLI.Aspect.FPS.Graphics.Runtime.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000082944 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a765109e#\9052d5b9f2fab20e4a2652b52b8c3242\CLI.Aspect.UpdateNotification.Graphics.Dashboard.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000462336 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.acb9d930#\34883581803ef3b333a1f5df50927559\CLI.Aspect.DeviceProperty.Graphics.Shared.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000086528 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ae5e117c#\2a525bb5a644f82439408dd0383e03f7\CLI.Aspect.DisplaysColour2.Graphics.Shared.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000067072 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.b0a7c1fb#\263aca372794af5c2fc91e2d25b63686\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000340992 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c7aaa0f8#\6311b0871d54d57444c8e9d919e30bcf\CLI.Aspect.OverDrive5.Graphics.Shared.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000017920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c854b457#\d72a00e202c3ee355ef41142062418f7\CLI.Aspect.HotkeysHandling.Graphics.Shared.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000276480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e8635fc7#\4cafd0a4a8f52f56e0d75a0e179897c4\CLI.Aspect.InfoCentre.Graphics.Dashboard.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 003312640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e9fd7406#\870138516582e687c8a19aca6675ea83\CLI.Aspect.Radeon3D.Graphics.Dashboard.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000240640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.eda8935e#\18eaddc2e85ec9f005ef2f1d240d24c5\CLI.Aspect.MMVideo.Graphics.Shared.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000047616 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ef3eaa4d#\35b0b6cdacd9fd2eb5c7db560c92dc64\CLI.Aspect.TransCode.Graphics.Runtime.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000050688 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.f480a2f3#\870704bbc2a57e1582d81970e6b717c0\CLI.Aspect.UpdateNotification.Graphics.Shared.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000051200 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Runtime\6b4b6080fcb4808712aff27b8b4499c4\CLI.Caste.A4.Runtime.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Shared\87c2dcf1efc129b103a639c14036d2a5\CLI.Caste.A4.Shared.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000027136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Af820fedc#\998f193e1fb63b22595c5f7f84d3927b\CLI.Caste.A4.Dashboard.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F24de14fe#\e9eb2096d1e131923ea2ee1d2121ff03\CLI.Caste.Fuel.Shared.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000311296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F36b07a2b#\9000bf0ede0f93f0ed79e701ae075f08\CLI.Caste.Fuel.Runtime.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000027136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Ff3085433#\11c69aacaa7c9b10427bd8954c4a842d\CLI.Caste.Fuel.Dashboard.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000037376 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60338cc0#\85c2eba119de338e3da90232f602fa14\CLI.Caste.Graphics.Runtime.Shared.Private.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 001555456 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gd9d9b43b#\fc5af3277af3d5c1928ba3cba1eabd5b\CLI.Caste.Graphics.Dashboard.Shared.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000587776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gee7d2dbc#\35615ccb8b23e35455ce9d2479f51707\CLI.Caste.Graphics.Dashboard.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H18c99613#\a82a86aed250fbc7421fbe045b7db2ef\CLI.Caste.HydraVision.Runtime.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H92ba4e46#\f354b73f96881e0709b4a16472f44261\CLI.Caste.HydraVision.Shared.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Hbb906c0b#\416a400a169e40b3a825b1947609dba8\CLI.Caste.HydraVision.Dashboard.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pac40511b#\5e13abc6087bd2f0676c2c2ef741a0a0\CLI.Caste.Platform.Shared.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000044032 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pdb36d56e#\91dd0084012236f72a12f521be8a4c5c\CLI.Caste.Platform.Runtime.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000024064 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pfeefa2b6#\b98b84f769c0cf52a296a431231c2ce1\CLI.Caste.Platform.Dashboard.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone1b4a8c97#\8de86f586a5d0a9425fdd6e718269676\CLI.Component.Runtime.Shared.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000901632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone26c9c557#\25f444f878ee0c3f96719ddd33ebcddc\CLI.Component.Systemtray.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000173568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone29e547cc#\aef778787ba52f42c68f093a9d4add9d\CLI.Component.Dashboard.ProfileManager2.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000151040 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone59f353b4#\f512565685b279c1700a21624a5d924b\CLI.Component.Runtime.Shared.Private.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componeb4d0485c#\ca285c9b4a783b09ba8e20cb95f7559b\CLI.Component.Runtime.Extension.EEU.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 001609728 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componec89c3bec#\8974e8f25a64974b10b3e299ce7b81a2\CLI.Component.Dashboard.Shared.Private.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 000018432 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componef1fd67b2#\03d9aa207ca7f7b7251852757b4c79df\CLI.Component.Client.Shared.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 000085504 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componef4cf054f#\39af1744750edfb562e1c557c0aad599\CLI.Component.Dashboard.Shared.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 000089600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat3d5d3945#\fe9ef509eb10786babacac3a28e55d40\CLI.Foundation.Private.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000061440 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat60cdf5df#\bf8a2da2163fe392ed53c2548d748058\CLI.Foundation.XManifest.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 000091136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat619559bd#\5d750f3d02daec64ef440816b2c8cfec\CLI.Foundation.CoreAudioAPI.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 001079808 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundatd3771151#\fdb772f14559558c4193534f3103e991\CLI.Foundation.Client.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 000301568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundation\bd090a55d4540d9316d5da12de28aa48\CLI.Foundation.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Foundation\73b0e8845a50ec92668bce66a5a4f26f\DEM.Foundation.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 000115200 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0601\64697c8e4fc6da96b67331a3c1389e86\DEM.Graphics.I0601.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics\301070414d6c8a0a028c9ea6818d601a\DEM.Graphics.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000037376 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Fuel.Foundation\a17b4c3d74df9517d803f975194d387e\Fuel.Foundation.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000296960 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundat03490438#\271b296c742210a101d2c37a135dc77d\LOG.Foundation.Implementation.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 000150016 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundat5023f8e7#\73e92e134b8a77712aef782f5e944020\LOG.Foundation.Private.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 000087552 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundatcaafa75b#\afe92e2845d87de72910b3847af885ab\LOG.Foundation.Implementation.Private.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 000132608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundation\1fadb8808e2ca0c0bf668f8252ef9cfa\LOG.Foundation.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MOM.Foundation\c70d4b55b999ae7c9b7c4ca005c38843\MOM.Foundation.ni.dll
2020-10-23 11:42 - 2020-10-23 11:42 - 000402944 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MOM.Implementation\fb32e450f472fb004d61ab4079b92f44\MOM.Implementation.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 000055296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\NEWAEM.Foundation\7f97f11127f043940860427c076d3217\NEWAEM.Foundation.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 000897024 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ADL.Foundation\ab1112f2228f3958f5baa3ec33ca0ab5\ADL.Foundation.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 000256000 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\APM.Server\5abd11236f7ab07b75bea76bdaa1df70\APM.Server.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000298496 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.9b707b25#\186ac9b8f1d7223400deffab68be17d5\CLI.Aspect.DeviceProperty.Graphics.Runtime.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 001654272 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.aa59351a#\ba64a732a628bc96fbcafb18a53dccbc\CLI.Aspect.DeviceProperty.Graphics.Dashboard.Shared.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 006336512 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e6d9f3a8#\24b45e885d481b6b37e2f0f5e09c83a7\CLI.Aspect.DeviceDFP.Graphics.Dashboard.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 008027648 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Combine0616f305#\a3edcc871b93a985a8f4e9c1145342cd\CLI.Combined.Graphics.Aspects1.Dashboard.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 001159680 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Combine7332395e#\fa98da9f2fe2f00a216dddbe35fda719\CLI.Combined.Graphics.Aspects2.Runtime.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 000136704 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone168638d1#\b224174aec9212b381eb09566b24b836\CLI.Component.Client.Shared.Private.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000234496 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone6692ca50#\c321e44e2aa4d731b8ae32854ed01e1c\CLI.Component.Runtime.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000929280 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone6bf88b08#\153e2101f6abf386c777f2aadafa88da\CLI.Component.Dashboard.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000016896 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0703\413434b73bdd20a1801945be908f1dc5\DEM.Graphics.I0703.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000013312 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0706\d1e472525b028a30aabbceffe7161197\DEM.Graphics.I0706.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000084480 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0709\6fcf9f1120024078d4ae0bea706b06f5\DEM.Graphics.I0709.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000012288 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0712\9b14c1a163e3999ee02c08835c478b62\DEM.Graphics.I0712.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000018432 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0804\46d2597d16397de4af70002beaf9e556\DEM.Graphics.I0804.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000010752 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0805\eb1494854922511a30a0fbb1714af12e\DEM.Graphics.I0805.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000010752 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0812\cbbefe12ed70338abbf18d18e2bee560\DEM.Graphics.I0812.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000013312 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0906\d231dc765d4c79ecfb668a0049d8b696\DEM.Graphics.I0906.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000014336 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0912\4bda0373f3b13fe3c574d5d31029f6cb\DEM.Graphics.I0912.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000035840 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I1010\8db87337f7fd0ffc6bb40f2784841d35\DEM.Graphics.I1010.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 001139200 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Localizatio01dbc1c0#\0867ac150278cc9c0d031950d1a64996\Localization.Foundation.Private.ni.dll
2020-10-23 11:42 - 2020-10-23 11:42 - 000244736 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ResourceMan446ca0e5#\af9de29f7a1dca84c724fe01ecf4f8e4\ResourceManagement.Foundation.Implementation.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 000023552 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ResourceManf163905a#\9942abf6a8427326a80226bd5c29b03f\ResourceManagement.Foundation.Private.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000091648 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ec8786e5#\d9453c185381355fc0815bdb0b70f6e7\CLI.Aspect.AMDHome.Graphics.Dashboard.ni.dll
2020-10-23 11:40 - 2020-10-23 11:40 - 002845696 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60a7b4d1#\4ac525569587a2891e7909a33f1010fd\CLI.Caste.Graphics.Shared.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 003268096 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G962aa464#\8ff66e72ba7b5f3d8fdd3a31fa0c090d\CLI.Caste.Graphics.Runtime.ni.dll
2020-08-27 13:45 - 2020-08-27 13:45 - 001976832 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\Garmin\Express\XercesLib.dll
2020-08-27 13:51 - 2020-08-27 13:51 - 000234496 _____ (Dynastream Innovations Inc.) [File not signed] C:\Program Files (x86)\Garmin\Express\ANT_WrappedLib.dll
2020-08-27 13:45 - 2020-08-27 13:45 - 002711552 _____ (Garmin International) [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\legacyio.dll
2017-05-08 09:35 - 2017-05-08 09:35 - 000343552 _____ (Garmin International, Inc.) [File not signed] C:\Program Files (x86)\Garmin\Express\IMG_GPSMAP.dll
2020-08-27 13:45 - 2020-08-27 13:45 - 000425472 _____ (Garmin) [File not signed] C:\Program Files (x86)\Garmin\Express\XMLdll.dll
2020-05-31 09:47 - 2019-02-21 17:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2014-04-25 20:33 - 2014-04-25 20:33 - 000348160 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\MSVCR71.dll
2020-04-27 21:44 - 2020-04-27 21:44 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\AppVIsvSubsystems64.dll
2020-04-27 21:44 - 2020-04-27 21:44 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\c2r64.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 000335360 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.W8090224c#\0f311c2e34cbabf45f81b80d577980ba\Microsoft.WindowsAPICodePack.ni.dll
2020-10-23 11:41 - 2020-10-23 11:41 - 002546688 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.Wfbf9373c#\824e1dea37e75bf4a8c3536ac87d7a7a\Microsoft.WindowsAPICodePack.Shell.ni.dll
2020-08-27 13:47 - 2020-08-27 13:47 - 000090112 _____ (Silicon Laboratories, Inc.) [File not signed] C:\Program Files (x86)\Garmin\Express\DSI_SiUSBXp_3_1.DLL
2019-07-27 08:57 - 2019-07-27 08:57 - 000762368 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Garmin\Express\chrome_elf.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
SearchScopes: HKU\S-1-5-21-590958880-3246498269-3680704979-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2020-09-16] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-09-16] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-10-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-10-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-10-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-10-02] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-590958880-3246498269-3680704979-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-590958880-3246498269-3680704979-1001\...\sharepoint.com -> hxxps://zvwtg-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-03-19 05:49 - 2020-10-25 12:09 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-590958880-3246498269-3680704979-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{BE42364B-6854-41D1-9057-2F9EC404C47E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{F5C899F9-659E-4D9A-B527-C37A11F6AFA1}C:\users\ee\downloads\fritz.box_fon_wlan_7390.annexb.06.23.recover-image.exe] => (Allow) C:\users\ee\downloads\fritz.box_fon_wlan_7390.annexb.06.23.recover-image.exe (AVM Berlin) [File not signed]
FirewallRules: [TCP Query User{B3830F7D-A231-4FB2-A64A-2E4D38856C09}C:\users\ee\downloads\fritz.box_fon_wlan_7390.annexb.06.23.recover-image.exe] => (Allow) C:\users\ee\downloads\fritz.box_fon_wlan_7390.annexb.06.23.recover-image.exe (AVM Berlin) [File not signed]
FirewallRules: [UDP Query User{0E80A8A7-8BCD-40DF-AAC4-173CC11F277D}C:\users\ee\downloads\fritz.box_fon_wlan_7320-06.34.recover.exe] => (Allow) C:\users\ee\downloads\fritz.box_fon_wlan_7320-06.34.recover.exe (AVM Computersysteme Vertriebs GmbH -> AVM Berlin)
FirewallRules: [TCP Query User{47C364C5-72E7-49BE-B547-B1EE37EBB5E8}C:\users\ee\downloads\fritz.box_fon_wlan_7320-06.34.recover.exe] => (Allow) C:\users\ee\downloads\fritz.box_fon_wlan_7320-06.34.recover.exe (AVM Computersysteme Vertriebs GmbH -> AVM Berlin)
FirewallRules: [UDP Query User{12DBF554-2F1B-44B5-86E8-353C42752A7D}C:\program files (x86)\airport\aputil.exe] => (Allow) C:\program files (x86)\airport\aputil.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{588D9CA5-8BD4-4333-8B5A-B8F7F2AA9C00}C:\program files (x86)\airport\aputil.exe] => (Allow) C:\program files (x86)\airport\aputil.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2497B3A3-2B62-4B35-81F5-1997BFB54DA6}] => (Allow) C:\Program Files (x86)\AirPort\APAgent.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [UDP Query User{E3D7C238-4D0B-4FF0-A77C-E9575F480967}C:\users\ee\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\ee\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{6D14EDE6-D7B6-4F3A-9155-6C9863DE297A}C:\users\ee\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\ee\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0B15DCC2-57A7-463C-B375-B69220B9781D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{04EFA5CE-E90E-4DBC-B56E-507C1482E87E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{720CD592-0CA5-4357-9E9A-FC7300C7BE2F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{27022CD7-6BA7-4C9B-A3FE-B4A41280D623}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0B4C7658-3DD5-4FE2-8DA6-EC7216373EC5}] => (Allow) C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{FF86B428-8F30-4669-B89E-07EEADF7F05B}] => (Allow) C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [UDP Query User{4DF6ADE0-5D1D-4B26-A39A-7602E5FF539C}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe (Synology Inc. -> )
FirewallRules: [TCP Query User{BB2BB86B-E8B4-4A86-A508-0DDF4509018E}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe (Synology Inc. -> )
FirewallRules: [{4B948C5F-0307-4582-B284-91FBA1394CDC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{263EEE98-A513-4C39-8018-8D3747572EA0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{BAF6599F-2225-41FD-B7C5-EF3F14AB4713}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{6D21D11D-BCFC-416E-B12A-D45F9A8F29F2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [UDP Query User{E45EEE35-BA5F-4313-8087-4BBAE801225F}C:\program files (x86)\qnap\qfinder\qfinderpro.exe] => (Allow) C:\program files (x86)\qnap\qfinder\qfinderpro.exe => No File
FirewallRules: [TCP Query User{67CB05B7-AB12-4B0E-A585-D92D2AC7B13D}C:\program files (x86)\qnap\qfinder\qfinderpro.exe] => (Allow) C:\program files (x86)\qnap\qfinder\qfinderpro.exe => No File
FirewallRules: [{3D9AE743-5621-4EDE-8455-EE2D4275A6CF}] => (Allow) C:\Users\EE\AppData\Local\Programs\Opera\68.0.3618.56\opera.exe => No File
FirewallRules: [{1D210D5C-1DC2-4CEB-BB98-D051BE6B9246}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C5A48AFF-415E-4B2F-9E5C-84422F3DD446}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C78635BC-4439-49A0-975B-F929F71E613D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{20715143-DE19-47D3-8E99-7EAF4C359705}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{63F37ECB-13DA-4980-8E59-81D903DED075}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{2E380D01-3AB2-4898-BAD8-2089E7E128B8}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{39A2F1CD-4A32-4D42-9DE0-F8E87DBD3F34}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BAF74011-DFCD-47CE-ADC6-C8FEEC42D2A9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{51500593-765B-4F96-8F2C-747512A3FAA1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{1103B775-6E7A-4F46-B889-7ABF60154621}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{505D0E03-89B2-4F88-8D81-78183AF0B281}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{FEE55C52-5A67-4753-8B23-5246ED4FA339}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F117155F-1506-4EC3-9AD2-0BC0E0A6B2E2}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{95CECFC2-B515-48A0-89C0-C09A140A8C0C}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{AE4682C4-BBE3-4313-912A-16C77092BCCD}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E919A5A6-3F11-4090-A793-A00AB0A4714A}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7F2A7D25-A383-4880-8F2D-A034237B80F8}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{00516226-6D18-43C8-90BF-7741A2306560}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{0BF1E24A-F47B-4F9A-ACEA-66BC85ADAA1F}C:\users\ee\downloads\fritz.box_7490-07.12-recover_en.exe] => (Allow) C:\users\ee\downloads\fritz.box_7490-07.12-recover_en.exe (AVM Computersysteme Vertriebs GmbH -> AVM Berlin)
FirewallRules: [UDP Query User{C679BBE4-3FB4-46DA-8356-0092D3DEC300}C:\users\ee\downloads\fritz.box_7490-07.12-recover_en.exe] => (Allow) C:\users\ee\downloads\fritz.box_7490-07.12-recover_en.exe (AVM Computersysteme Vertriebs GmbH -> AVM Berlin)
FirewallRules: [TCP Query User{4C05FD2B-6646-4197-ABA6-0C4E8B8623C3}C:\users\ee\downloads\fritz.box_7490-07.12-recover.exe] => (Allow) C:\users\ee\downloads\fritz.box_7490-07.12-recover.exe (AVM Computersysteme Vertriebs GmbH -> AVM Berlin)
FirewallRules: [UDP Query User{83303054-93C8-4327-BB6B-BA8CE90DECE3}C:\users\ee\downloads\fritz.box_7490-07.12-recover.exe] => (Allow) C:\users\ee\downloads\fritz.box_7490-07.12-recover.exe (AVM Computersysteme Vertriebs GmbH -> AVM Berlin)
FirewallRules: [TCP Query User{5DD00145-37C6-4739-930C-7E29DE66A5C9}C:\users\ee\downloads\fritz.box_7490-07.12-recover.exe] => (Allow) C:\users\ee\downloads\fritz.box_7490-07.12-recover.exe (AVM Computersysteme Vertriebs GmbH -> AVM Berlin)
FirewallRules: [UDP Query User{396FD8FC-B6BF-4325-895F-E4FEE5D749AB}C:\users\ee\downloads\fritz.box_7490-07.12-recover.exe] => (Allow) C:\users\ee\downloads\fritz.box_7490-07.12-recover.exe (AVM Computersysteme Vertriebs GmbH -> AVM Berlin)
==================== Restore Points =========================
22-10-2020 13:26:14 Windows Modules Installer
==================== Faulty Device Manager Devices ============
Name: Intel(R) Ethernet Connection I217-LM
Description: Intel(R) Ethernet Connection I217-LM
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel Corporation
Service: e1i65x64
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: ========================
Application errors:
==================
Error: (10/25/2020 12:08:56 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.488_none_ca04af081b815d21.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.488_none_11b1e5df2ffd8627.manifest.
Error: (10/25/2020 12:07:43 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.488_none_ca04af081b815d21.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.488_none_11b1e5df2ffd8627.manifest.
Error: (10/25/2020 11:58:17 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.488_none_ca04af081b815d21.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.488_none_11b1e5df2ffd8627.manifest.
Error: (10/25/2020 10:57:11 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.488_none_ca04af081b815d21.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.488_none_11b1e5df2ffd8627.manifest.
Error: (10/25/2020 10:31:07 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.488_none_ca04af081b815d21.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.488_none_11b1e5df2ffd8627.manifest.
Error: (10/25/2020 10:30:59 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname DESKTOP-T3C33N7.local already in use; will try DESKTOP-T3C33N7-2.local instead
Error: (10/25/2020 10:30:59 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 4 DESKTOP-T3C33N7.local. Addr 192.168.178.20
Error: (10/25/2020 10:30:59 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.178.20:5353 16 DESKTOP-T3C33N7.local. AAAA 2001:4DD3:7ECA:0000:3599:BCBD:B2A8:CFF8
System errors:
=============
Error: (10/23/2020 10:40:02 PM) (Source: Microsoft-Windows-Bits-Client) (EventID: 16392) (User: NT-AUTORITÄT)
Description: Fehler beim Starten des BITS-Dienstes. Fehler: 2147500053.
Error: (10/23/2020 09:25:20 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-T3C33N7)
Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (10/23/2020 09:25:20 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-T3C33N7)
Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (10/23/2020 09:25:20 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-T3C33N7)
Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (10/23/2020 09:25:20 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-T3C33N7)
Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (10/23/2020 09:25:20 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-T3C33N7)
Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (10/23/2020 09:25:20 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-T3C33N7)
Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (10/23/2020 09:25:20 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-T3C33N7)
Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Windows Defender:
===================================
Date: 2020-10-22 14:33:23.1490000Z
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {6BFC93CB-F780-4039-8949-EB9A00222965}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2020-10-21 13:39:26.5950000Z
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.325.748.0
Update Source: Microsoft Update-Server
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.17500.4
Fehlercode: 0x8007045b
Fehlerbeschreibung: Der Computer wird heruntergefahren.
CodeIntegrity:
===================================
Date: 2020-10-25 12:02:51.0180000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Windows signing level requirements.
Date: 2020-10-25 12:43:36.3300000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Windows signing level requirements.
Date: 2020-10-25 12:43:35.3110000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Windows signing level requirements.
Date: 2020-10-25 12:43:35.2240000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Windows signing level requirements.
Date: 2020-10-25 12:35:57.0880000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Windows signing level requirements.
Date: 2020-10-25 11:25:41.4910000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Windows signing level requirements.
Date: 2020-10-25 11:25:41.4490000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Windows signing level requirements.
Date: 2020-10-25 11:11:00.1770000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO FBKT79AUS 04/17/2014
Motherboard: LENOVO SHARKBAY
Processor: Intel(R) Core(TM) i5-4590 CPU @ 3.30GHz
Percentage of memory in use: 33%
Total physical RAM: 16308.07 MB
Available physical RAM: 10816.04 MB
Total Virtual: 18740.07 MB
Available Virtual: 12795.45 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:237.38 GB) (Free:75.66 GB) NTFS
Drive d: (Volume) (Fixed) (Total:1397.26 GB) (Free:343.19 GB) NTFS
Drive g: () (Removable) (Total:3.68 GB) (Free:0.76 GB) FAT32
\\?\Volume{65dc3a1e-0000-0000-0000-100000000000}\ (System-reserviert) (Fixed) (Total:0.57 GB) (Free:0.1 GB) NTFS
\\?\Volume{65dc3a1e-0000-0000-0000-807c3b000000}\ () (Fixed) (Total:0.53 GB) (Free:0.08 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 238.5 GB) (Disk ID: 65DC3A1E)
Partition 1: (Active) - (Size=579 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=237.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=541 MB) - (Type=27)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1397.3 GB) (Disk ID: F9EA6CE4)
Partition 1: (Not Active) - (Size=1397.3 GB) - (Type=07 NTFS)
==========================================================
Disk: 2 (Size: 3.7 GB) (Disk ID: 077F1EFD)
Partition 1: (Not Active) - (Size=3.7 GB) - (Type=0C)
==================== End of Addition.txt ======================= |