Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19-07-2021 01 Ran by SYSTEM on MININT-AEQSOS0 (16-08-2021 23:00:00) Running from F:\ Platform: Windows 10 Pro Version 1903 18362.239 (X64) Language: slovenščina (Slovenija) -> slovenščina (Slovenija) Boot Mode: Recovery Default: ControlSet001 [b]ATTENTION!:=====> If the system is bootable FRST must be run from normal or Safe mode to create a complete log.[/b] ==================== Registry (Whitelisted) =================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) ==================== Scheduled Tasks (Whitelisted) ============ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {2E37C51E-0A53-4E27-A425-ACE27EE34705} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1215880588-2678762145-2491728819-1001 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe Task: {5839EBAF-D396-4FDA-ABD8-47D3B239AC61} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-08-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {6A35B19D-3E34-4A05-827B-0F267A3A9893} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-08-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {A6C60290-CA9E-4D89-9F7D-D8719563203B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-08-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {B8F0DEC7-8392-4F57-9990-74FCB934033F} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\Windows\System32\WinBioPlugIns\FaceFodUninstaller.exe [501760 2019-03-19] () Task: {F321FA28-B061-4F6B-A775-5A68525D8E6E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-08-12] (Microsoft Windows Publisher -> Microsoft Corporation) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) ==================== Services (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5773384 2019-07-09] (Microsoft Windows Publisher -> Microsoft Corporation) S4 ssh-agent; C:\Windows\System32\OpenSSH\ssh-agent.exe [384512 2019-03-19] () S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2107.4-0\NisSrv.exe [2727416 2021-08-12] (Microsoft Windows Publisher -> Microsoft Corporation) S2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2107.4-0\MsMpEng.exe [136656 2021-08-12] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 AcpiPmi; C:\Windows\System32\drivers\acpipmi.sys [16896 2019-03-19] (Microsoft Corporation) S1 afunix; C:\Windows\system32\drivers\afunix.sys [40960 2019-03-19] (Microsoft Corporation) S1 afunix; C:\Windows\SysWOW64\drivers\afunix.sys [29696 2019-03-19] (Microsoft Corporation) S1 ahcache; C:\Windows\System32\DRIVERS\ahcache.sys [291840 2019-03-19] (Microsoft Corporation) S3 applockerfltr; C:\Windows\System32\drivers\applockerfltr.sys [18432 2019-03-19] (Microsoft Corporation) S3 BCM43XX; C:\Windows\System32\drivers\bcmwl63al.sys [5170176 2019-03-19] (Broadcom Corporation) S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [9728 2019-03-19] (Windows (R) Win 7 DDK provider) S1 Beep; C:\Windows\System32\Drivers\Beep.sys [10240 2019-03-19] (Microsoft Corporation) S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [232448 2019-03-19] (Microsoft Corporation) S3 BthEnum; C:\Windows\System32\drivers\BthEnum.sys [114688 2019-07-09] (Microsoft Corporation) S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [131072 2019-03-19] (Microsoft Corporation) S3 BthLEEnum; C:\Windows\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [97280 2019-03-19] (Microsoft Corporation) S3 BthMini; C:\Windows\System32\drivers\BTHMINI.sys [36864 2019-07-09] (Microsoft Corporation) S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [76288 2019-03-19] (Microsoft Corporation) S3 BTHPORT; C:\Windows\System32\drivers\BTHport.sys [1422848 2019-07-09] (Microsoft Corporation) S3 BTHUSB; C:\Windows\System32\drivers\BTHUSB.sys [98304 2019-07-09] (Microsoft Corporation) S3 circlass; C:\Windows\System32\drivers\circlass.sys [51200 2019-03-19] (Microsoft Corporation) S2 CldFlt; C:\Windows\System32\drivers\cldflt.sys [456192 2019-07-09] (Microsoft Corporation) S1 CSC; C:\Windows\System32\drivers\csc.sys [576512 2019-03-19] (Microsoft Corporation) S1 FileCrypt; C:\Windows\System32\drivers\filecrypt.sys [59392 2019-03-19] (Microsoft Corporation) S1 GpuEnergyDrv; C:\Windows\System32\drivers\gpuenergydrv.sys [8704 2019-03-19] (Microsoft Corporation) S3 HidBth; C:\Windows\System32\drivers\hidbth.sys [121344 2019-03-19] (Microsoft Corporation) S3 HidIr; C:\Windows\System32\drivers\hidir.sys [48640 2019-03-19] (Microsoft Corporation) S3 hidspi; C:\Windows\System32\drivers\hidspi.sys [62976 2019-03-19] (Microsoft Corporation) S3 HwNClx0101; C:\Windows\System32\Drivers\mshwnclx.sys [28672 2019-03-19] (Microsoft Corporation) S3 IndirectKmd; C:\Windows\System32\drivers\IndirectKmd.sys [46592 2019-03-19] (Microsoft Corporation) S3 intelpmax; C:\Windows\System32\drivers\intelpmax.sys [28672 2019-03-19] (Microsoft Corporation) S3 IpFilterDriver; C:\Windows\System32\DRIVERS\ipfltdrv.sys [90624 2019-03-19] (Microsoft Corporation) S3 IPNAT; C:\Windows\System32\drivers\ipnat.sys [224768 2019-03-19] (Microsoft Corporation) S2 lltdio; C:\Windows\System32\drivers\lltdio.sys [72192 2019-03-19] (Microsoft Corporation) S2 luafv; C:\Windows\system32\drivers\luafv.sys [141312 2019-07-09] (Microsoft Corporation) S3 MbbCx; C:\Windows\System32\drivers\MbbCx.sys [358912 2019-07-09] (Microsoft Corporation) S3 Microsoft_Bluetooth_AvrcpTransport; C:\Windows\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [64512 2019-03-19] (Microsoft Corporation) S3 Modem; C:\Windows\System32\drivers\modem.sys [46592 2019-03-19] (Microsoft Corporation) S3 monitor; C:\Windows\System32\drivers\monitor.sys [69632 2019-07-09] (Microsoft Corporation) S3 MRxDAV; C:\Windows\system32\drivers\mrxdav.sys [158208 2019-03-19] (Microsoft Corporation) S3 MsBridge; C:\Windows\System32\drivers\bridge.sys [127488 2019-03-19] (Microsoft Corporation) S3 mshidumdf; C:\Windows\System32\drivers\mshidumdf.sys [12288 2019-03-19] (Microsoft Corporation) S2 MsLldp; C:\Windows\System32\drivers\mslldp.sys [78848 2019-03-19] (Microsoft Corporation) S3 NativeWifiP; C:\Windows\System32\DRIVERS\nwifi.sys [701952 2019-07-09] (Microsoft Corporation) S3 NdisCap; C:\Windows\System32\drivers\ndiscap.sys [56320 2019-03-19] (Microsoft Corporation) S3 NdisImPlatform; C:\Windows\System32\drivers\NdisImPlatform.sys [135168 2019-03-19] (Microsoft Corporation) S3 NDKPing; C:\Windows\System32\drivers\NDKPing.sys [63488 2019-03-19] (Microsoft Corporation) S2 Ndu; C:\Windows\System32\drivers\Ndu.sys [132096 2019-03-19] (Microsoft Corporation) S2 PEAUTH; C:\Windows\System32\drivers\peauth.sys [817152 2019-07-09] (Microsoft Corporation) S3 PNPMEM; C:\Windows\System32\drivers\pnpmem.sys [17408 2019-03-19] (Microsoft Corporation) S3 QWAVEdrv; C:\Windows\system32\drivers\qwavedrv.sys [53760 2019-03-19] (Microsoft Corporation) S3 rdpbus; C:\Windows\System32\drivers\rdpbus.sys [28672 2019-03-19] (Microsoft Corporation) S3 RDPDR; C:\Windows\System32\drivers\rdpdr.sys [167936 2019-03-19] (Microsoft Corporation) S3 RFCOMM; C:\Windows\System32\drivers\rfcomm.sys [211456 2019-03-19] (Microsoft Corporation) S3 rhproxy; C:\Windows\System32\drivers\rhproxy.sys [113152 2019-03-19] (Microsoft Corporation) S2 rspndr; C:\Windows\System32\drivers\rspndr.sys [89088 2019-03-19] (Microsoft Corporation) S3 scfilter; C:\Windows\System32\DRIVERS\scfilter.sys [45056 2019-03-19] (Microsoft Corporation) S3 smbdirect; C:\Windows\System32\DRIVERS\smbdirect.sys [171008 2019-03-19] (Microsoft Corporation) S3 Synth3dVsc; C:\Windows\System32\drivers\Synth3dVsc.sys [66560 2019-03-19] (Microsoft Corporation) S2 tcpipreg; C:\Windows\System32\drivers\tcpipreg.sys [54784 2019-03-19] (Microsoft Corporation) S3 TsUsbFlt; C:\Windows\System32\drivers\tsusbflt.sys [65024 2019-03-19] (Microsoft Corporation) S3 TsUsbGD; C:\Windows\System32\drivers\TsUsbGD.sys [35328 2019-03-19] (Microsoft Corporation) S3 tsusbhub; C:\Windows\System32\drivers\tsusbhub.sys [130560 2019-03-19] (Microsoft Corporation) S3 tunnel; C:\Windows\System32\drivers\tunnel.sys [128512 2019-03-19] (Microsoft Corporation) S3 UcmCx0101; C:\Windows\System32\Drivers\UcmCx.sys [160256 2019-03-19] (Microsoft Corporation) S3 UcmTcpciCx0101; C:\Windows\System32\Drivers\UcmTcpciCx.sys [186368 2019-03-19] (Microsoft Corporation) S3 UcmUcsiAcpiClient; C:\Windows\System32\drivers\UcmUcsiAcpiClient.sys [34816 2019-03-19] (Microsoft Corporation) S3 UcmUcsiCx0101; C:\Windows\System32\Drivers\UcmUcsiCx.sys [111104 2019-03-19] (Microsoft Corporation) S3 usbaudio2; C:\Windows\System32\drivers\usbaudio2.sys [257536 2019-07-09] (Microsoft Corporation) S3 usbcir; C:\Windows\System32\drivers\usbcir.sys [107008 2019-03-19] (Microsoft Corporation) S3 usbprint; C:\Windows\System32\drivers\usbprint.sys [34304 2019-03-19] (Microsoft Corporation) S3 vwifibus; C:\Windows\System32\drivers\vwifibus.sys [27648 2019-03-19] (Microsoft Corporation) S1 vwififlt; C:\Windows\System32\drivers\vwififlt.sys [77312 2019-03-19] (Microsoft Corporation) S3 wcnfs; C:\Windows\system32\drivers\wcnfs.sys [92672 2019-03-19] (Microsoft Corporation) S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49568 2021-08-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [434424 2021-08-12] (Microsoft Windows -> Microsoft Corporation) S3 wdiwifi; C:\Windows\System32\DRIVERS\wdiwifi.sys [931840 2019-03-19] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [78072 2021-08-12] (Microsoft Windows -> Microsoft Corporation) S3 WinNat; C:\Windows\System32\drivers\winnat.sys [250880 2019-07-09] (Microsoft Corporation) S3 WINUSB; C:\Windows\System32\drivers\WinUSB.SYS [105472 2019-03-19] (Microsoft Corporation) S3 WudfPf; C:\Windows\System32\drivers\WudfPf.sys [134656 2019-03-19] (Microsoft Corporation) S3 WUDFRd; C:\Windows\System32\drivers\WudfRd.sys [297984 2019-03-19] (Microsoft Corporation) S3 xboxgip; C:\Windows\System32\drivers\xboxgip.sys [324608 2019-03-19] (Microsoft Corporation) S3 xinputhid; C:\Windows\System32\drivers\xinputhid.sys [48128 2019-03-19] (Microsoft Corporation) S3 MpKslf8aa86db; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{6BE20BBB-7DC1-431D-BE9E-E6E1DC71CA85}\MpKslDrv.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One month (created) (All) ========= (If an entry is included in the fixlist, the file/folder will be moved.) 2021-08-16 22:58 - 2021-08-16 22:58 - 000000000 ____D C:\FRST 2021-08-12 22:18 - 2021-08-12 22:18 - 000000000 ___HD C:\Users\Tom\MicrosoftEdgeBackups 2021-08-12 22:12 - 2021-08-12 22:12 - 000000000 ____D C:\Windows\System32\AMD 2021-08-12 22:12 - 2021-08-12 22:12 - 000000000 _____ C:\Windows\System32\spu_storage.bin 2021-08-12 22:11 - 2019-09-18 17:05 - 003885152 _____ (Advanced Micro Devices, Inc.) C:\Windows\System32\amfrt64.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 003484256 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amfrt32.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 001705568 _____ (Advanced Micro Devices, Inc.) C:\Windows\System32\atiadlxx.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 001237088 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 001237088 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 001010696 _____ C:\Windows\System32\vulkan-1-999-0-0-0.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 001010696 _____ C:\Windows\System32\vulkan-1.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000941152 _____ (Advanced Micro Devices, Inc.) C:\Windows\System32\amdlvr64.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000873640 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000873640 _____ C:\Windows\SysWOW64\vulkan-1.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000768608 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000760928 _____ (AMD) C:\Windows\System32\atieclxx.exe 2021-08-12 22:11 - 2019-09-18 17:05 - 000574048 _____ (Advanced Micro Devices, Inc.) C:\Windows\System32\Rapidfire64.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000553568 _____ (Advanced Micro Devices, Inc. ) C:\Windows\System32\amdmcl64.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000493152 _____ C:\Windows\System32\dgtrayicon.exe 2021-08-12 22:11 - 2019-09-18 17:05 - 000484960 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\Rapidfire.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000480352 _____ C:\Windows\System32\GameManager64.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000468576 _____ (Advanced Micro Devices, Inc.) C:\Windows\System32\atidemgy.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000466528 _____ C:\Windows\System32\amdlogum.exe 2021-08-12 22:11 - 2019-09-18 17:05 - 000439904 _____ C:\Windows\System32\atieah64.exe 2021-08-12 22:11 - 2019-09-18 17:05 - 000416864 _____ C:\Windows\System32\EEURestart.exe 2021-08-12 22:11 - 2019-09-18 17:05 - 000383584 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmcl32.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000381536 _____ C:\Windows\SysWOW64\GameManager32.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000352352 _____ C:\Windows\SysWOW64\atieah32.exe 2021-08-12 22:11 - 2019-09-18 17:05 - 000348768 _____ C:\Windows\System32\clinfo.exe 2021-08-12 22:11 - 2019-09-18 17:05 - 000304224 _____ C:\Windows\System32\vulkaninfo-1-999-0-0-0.exe 2021-08-12 22:11 - 2019-09-18 17:05 - 000304224 _____ C:\Windows\System32\vulkaninfo.exe 2021-08-12 22:11 - 2019-09-18 17:05 - 000276064 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2021-08-12 22:11 - 2019-09-18 17:05 - 000276064 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2021-08-12 22:11 - 2019-09-18 17:05 - 000239200 _____ (Advanced Micro Devices, Inc. ) C:\Windows\System32\atig6txx.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000211552 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000183904 _____ (Advanced Micro Devices, Inc. ) C:\Windows\System32\mantle64.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000178752 _____ (Advanced Micro Devices, Inc. ) C:\Windows\System32\aticfx64.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000162912 _____ (Advanced Micro Devices, Inc. ) C:\Windows\System32\mantleaxl64.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000158816 _____ (Advanced Micro Devices, Inc. ) C:\Windows\System32\atisamu64.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000157592 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000152672 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000138336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000135776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000134752 _____ (Khronos Group) C:\Windows\System32\OpenCL.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000125536 _____ (AMD) C:\Windows\System32\atimuixx.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000124000 _____ C:\Windows\System32\atidxx64.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000121440 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000120928 _____ (Advanced Micro Devices, Inc. ) C:\Windows\System32\amdxc64.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000107104 _____ C:\Windows\SysWOW64\atidxx32.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000105568 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdxc32.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000090720 _____ (Advanced Micro Devices, Inc. ) C:\Windows\System32\mcl64.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000075360 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mcl32.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000070240 _____ (Advanced Micro Devices, Inc.) C:\Windows\System32\ati2erec.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000046688 _____ (Advanced Micro Devices, Inc.) C:\Windows\System32\RapidFireServer64.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000043616 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\RapidFireServer.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000019768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\detoured.dll 2021-08-12 22:11 - 2019-09-18 17:05 - 000019768 _____ (Microsoft Corporation) C:\Windows\System32\detoured.dll 2021-08-12 22:11 - 2019-09-18 17:04 - 001686000 _____ (AMD) C:\Windows\System32\amf-mft-mjpeg-decoder64.dll 2021-08-12 22:11 - 2019-09-18 17:04 - 001365352 _____ (AMD) C:\Windows\SysWOW64\amf-mft-mjpeg-decoder32.dll 2021-08-12 22:11 - 2019-09-18 17:04 - 000554072 _____ C:\Windows\System32\amdmiracast.dll 2021-08-12 22:11 - 2019-09-18 17:04 - 000472672 _____ C:\Windows\System32\amdgfxinfo64.dll 2021-08-12 22:11 - 2019-09-18 17:04 - 000381536 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll 2021-08-12 22:11 - 2019-09-18 17:04 - 000134824 _____ (Advanced Micro Devices, Inc. ) C:\Windows\System32\amdave64.dll 2021-08-12 22:11 - 2019-09-18 17:04 - 000128112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\System32\atimpc64.dll 2021-08-12 22:11 - 2019-09-18 17:04 - 000128112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\System32\amdpcom64.dll 2021-08-12 22:11 - 2019-09-18 17:04 - 000119232 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll 2021-08-12 22:11 - 2019-09-18 17:04 - 000107728 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll 2021-08-12 22:11 - 2019-09-18 17:04 - 000107728 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll 2021-08-12 22:11 - 2019-09-18 16:33 - 003471376 _____ C:\Windows\SysWOW64\atiumdva.cap 2021-08-12 22:11 - 2019-09-18 16:33 - 003437632 _____ C:\Windows\System32\atiumd6a.cap 2021-08-12 22:11 - 2019-09-18 16:33 - 000920680 _____ C:\Windows\SysWOW64\atiapfxx.blb 2021-08-12 22:11 - 2019-09-18 16:33 - 000920680 _____ C:\Windows\System32\atiapfxx.blb 2021-08-12 22:11 - 2019-09-18 16:33 - 000204952 _____ C:\Windows\SysWOW64\ativvsvl.dat 2021-08-12 22:11 - 2019-09-18 16:33 - 000204952 _____ C:\Windows\System32\ativvsvl.dat 2021-08-12 22:11 - 2019-09-18 16:33 - 000157144 _____ C:\Windows\SysWOW64\ativvsva.dat 2021-08-12 22:11 - 2019-09-18 16:33 - 000157144 _____ C:\Windows\System32\ativvsva.dat 2021-08-12 22:11 - 2019-09-18 16:33 - 000154384 _____ C:\Windows\System32\samu_krnl_ci.sbin 2021-08-12 22:11 - 2019-09-18 16:33 - 000138832 _____ C:\Windows\System32\samu_krnl_isv_ci.sbin 2021-08-12 22:11 - 2019-09-18 16:33 - 000125488 _____ C:\Windows\System32\kapp_ci.sbin 2021-08-12 22:11 - 2019-09-18 16:33 - 000121168 _____ C:\Windows\System32\kapp_si.sbin 2021-08-12 22:11 - 2019-09-18 16:32 - 000034488 _____ C:\Windows\System32\AMDKernelEvents.man 2021-08-12 09:48 - 2021-08-12 09:48 - 000000000 ____D C:\Users\Tom\AppData\Local\PeerDistRepub 2021-08-12 09:47 - 2021-08-12 09:47 - 000000000 ___HD C:\$WinREAgent 2021-08-12 09:39 - 2021-08-12 09:49 - 000000000 ____D C:\ProgramData\Packages 2021-08-12 09:34 - 2021-08-12 09:25 - 000799104 ____N (Microsoft Corporation) C:\Windows\System32\MpSigStub.exe 2021-08-12 09:29 - 2021-08-12 09:29 - 000000000 ____D C:\Users\Tom\AppData\Local\Comms 2021-08-12 09:25 - 2021-08-12 09:28 - 000003376 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1215880588-2678762145-2491728819-1001 2021-08-12 09:25 - 2021-08-12 09:28 - 000000000 ___RD C:\Users\Tom\OneDrive 2021-08-12 09:25 - 2021-08-12 09:25 - 000000000 ____D C:\Program Files\UNP 2021-08-12 09:24 - 2021-08-12 10:00 - 000000000 ____D C:\Users\Tom\AppData\Local\PlaceholderTileLogoFolder 2021-08-12 09:24 - 2021-08-12 09:24 - 000000000 ____D C:\ProgramData\Microsoft OneDrive ==================== One month (modified) ================== (If an entry is included in the fixlist, the file/folder will be moved.) 2021-08-12 22:18 - 2019-03-21 15:19 - 000000000 ____D C:\Users\Tom\AppData\Local\MicrosoftEdge 2021-08-12 22:18 - 2019-03-21 15:14 - 000000000 ____D C:\users\Tom 2021-08-12 22:13 - 2019-03-21 15:13 - 000795988 _____ C:\Windows\System32\PerfStringBackup.INI 2021-08-12 22:13 - 2019-03-21 15:05 - 000000000 ____D C:\Windows\System32\SleepStudy 2021-08-12 22:13 - 2019-03-19 05:50 - 000000000 ____D C:\Windows\INF 2021-08-12 22:03 - 2019-03-21 15:06 - 000000000 ____D C:\Windows\System32\Drivers\wd 2021-08-12 22:03 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Windows Defender 2021-08-12 21:56 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-08-12 21:51 - 2019-03-21 15:06 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2021-08-12 21:45 - 2019-03-19 05:37 - 000262144 _____ C:\Windows\System32\config\BBI 2021-08-12 21:43 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\AppReadiness 2021-08-12 09:49 - 2019-03-21 15:18 - 000000000 ____D C:\Users\Tom\AppData\Local\Packages 2021-08-12 09:41 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps 2021-08-12 09:39 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\ServiceState 2021-08-12 09:38 - 2019-03-21 15:05 - 000000000 ____D C:\Windows\Panther 2021-08-12 09:38 - 2019-03-19 05:37 - 000000000 ____D C:\Windows\CbsTemp 2021-08-12 09:24 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\System32\WinBioDatabase 2021-08-12 09:23 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\appcompat ==================== KnownDLLs (Whitelisted) ========================= ==================== SigCheck ============================ (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\explorer.exe [2019-07-09 02:56] - [2019-07-09 02:56] - 004552336 _____ (Microsoft Corporation) 9C111E2764F4F0C03EBE0A0BD5EDA46D C:\Windows\SysWOW64\explorer.exe [2019-07-09 02:57] - [2019-07-09 02:57] - 003914480 _____ (Microsoft Corporation) F0F5EB7F9CF59FA6A5F42A5190E68D57 C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll [2019-07-09 02:57] - [2019-07-09 02:57] - 001261568 _____ (Microsoft Corporation) 33B39D6FFE66F664C42A3FA1708559A9 C:\Windows\System32\dnsapi.dll [2019-07-09 02:57] - [2019-07-09 02:57] - 000818656 _____ (Microsoft Corporation) 224E651F86C2C75835FE89F915A6F9E8 C:\Windows\SysWOW64\dnsapi.dll [2019-07-09 02:57] - [2019-07-09 02:57] - 000588464 _____ (Microsoft Corporation) 734ED429E6E9F083AB6174734288A1DF C:\Windows\System32\dllhost.exe => MD5 is legit C:\Windows\SysWOW64\dllhost.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit ==================== Association (Whitelisted) ============= ==================== Restore Points ========================= Restore point date: 2021-08-12 09:39 Restore point date: 2021-08-12 22:12 ==================== Memory info =========================== Percentage of memory in use: 6% Total physical RAM: 16348.63 MB Available physical RAM: 15255.63 MB Total Virtual: 16348.63 MB Available Virtual: 15312.41 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:223 GB) (Free:184.84 GB) NTFS Drive f: (Transcend) (Removable) (Total:3.73 GB) (Free:1.88 GB) FAT32 Drive x: (Boot) (Fixed) (Total:0.5 GB) (Free:0.49 GB) NTFS Drive y: (Rezerviran sistem) (Fixed) (Total:0.57 GB) (Free:0.14 GB) NTFS ==>[system with boot components (obtained from drive)] ==================== MBR & Partition Table ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 9F74A498) Partition 1: (Active) - (Size=579 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=223 GB) - (Type=07 NTFS) ========================================================== Disk: 1 (Protective MBR) (Size: 3.7 GB) (Disk ID: 00000000) Partition: GPT. ==================== End of FRST.txt ========================