Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11.03.2019
Ran by O.O (administrator) on DESKTOP-DOQT081 (12-03-2019 21:55:24)
Running from C:\Users\O.O\Desktop
Loaded Profiles: O.O (Available Profiles: O.O)
Platform: Windows 10 Pro Version 1809 17763.253 (X64) Language: Angličtina (Spojené státy)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0339583.inf_amd64_c5be1e62234928ae\B339442\atiesrxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0339583.inf_amd64_c5be1e62234928ae\B339442\atieclxx.exe
(Advanced Micro Devices, Inc. -> ) C:\Program Files\Common Files\ATI Technologies\DSEManager.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(ICEpower a/s -> ICEpower) C:\Windows\System32\ICEsoundService64.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MysticLight\MysticLight2_Service.exe
(Electronic Arts, Inc. -> Electronic Arts) D:\Origin\OriginWebHelperService.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MysticLight\LEDKeeper.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\schtasks.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(AMD) [File not signed] C:\Program Files\AMD\Performance Profile Client\AUEPLauncher.exe
(AMD) [File not signed] C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe
() [File not signed] C:\Program Files\AMD\Performance Profile Client\RyzenMaster\AUEPRyzenMasterAC.exe
(AMD) [File not signed] C:\Program Files\AMD\Performance Profile Client\AUEPUF.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9269352 2019-01-05] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [260488 2019-03-12] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-614282534-2744804656-2105578271-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19646312 2019-02-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-614282534-2744804656-2105578271-1002\...\Run: [Discord] => C:\Users\O.O\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKLM\...\Drivers32: [VIDC.FPS1] => C:\WINDOWS\system32\frapsv64.dll [105984 2018-09-26] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [94208 2018-09-26] (Beepa P/L) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.121\Installer\chrmstp.exe [2019-03-05] (Google LLC -> Google Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{6dbfc0c5-ebb2-4f7b-bc84-a514b0692670}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================

FireFox:
========
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2019-01-05] (Google Inc -> Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2019-01-05] (Google Inc -> Google Inc.)

Chrome: 
=======
CHR DefaultSearchURL: Default -> hxxps://defaultsearch.co/?q={searchTerms}
CHR DefaultSearchKeyword: Default -> Adaware Secure
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\O.O\AppData\Local\Google\Chrome\User Data\Default [2019-03-12]
CHR Extension: (Prezentace) - C:\Users\O.O\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-01-05]
CHR Extension: (Dokumenty) - C:\Users\O.O\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-01-05]
CHR Extension: (Disk Google) - C:\Users\O.O\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-01-05]
CHR Extension: (YouTube) - C:\Users\O.O\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-01-05]
CHR Extension: (Tabulky) - C:\Users\O.O\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-01-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\O.O\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-01-05]
CHR Extension: (AdBlock) - C:\Users\O.O\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-02-24]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\O.O\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-01-05]
CHR Extension: (Gmail) - C:\Users\O.O\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-01-05]
CHR Extension: (Chrome Media Router) - C:\Users\O.O\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-02-15]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [nladljmabboanhihfkjacnnkgjhnokhj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\c0339583.inf_amd64_c5be1e62234928ae\B339442\atiesrxx.exe [509048 2019-02-25] (Advanced Micro Devices, Inc. -> AMD)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6570352 2019-03-12] (AVAST Software s.r.o. -> AVAST Software)
R2 AUEPLauncher; C:\Program Files\AMD\Performance Profile Client\AUEPLauncher.exe [43008 2019-02-20] (AMD) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [360440 2019-03-12] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-03-12] (AVAST Software s.r.o. -> AVAST Software)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [781440 2018-12-08] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 ICEsoundService; C:\WINDOWS\system32\ICEsoundService64.exe [806352 2019-01-05] (ICEpower a/s -> ICEpower)
R2 MysticLight2_Service; C:\Program Files (x86)\MSI\MysticLight\MysticLight2_Service.exe [34488 2018-09-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S3 Origin Client Service; D:\Origin\OriginClientService.exe [2298688 2019-02-19] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [3171144 2019-02-19] (Electronic Arts, Inc. -> Electronic Arts)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3830488 2018-09-15] (Microsoft Corporation -> Microsoft Corporation)
S3 wuauserv; C:\WINDOWS\system32\svchost.exe [51696 2018-09-15] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 wuauserv; C:\WINDOWS\SysWOW64\svchost.exe [45448 2018-09-15] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdgpio2; C:\WINDOWS\System32\drivers\amdgpio2.sys [43400 2017-03-02] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc)
R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [24424 2016-08-13] (AMD PMP-PE CB Code Signer v20160415 -> Advanced Micro Devices, Inc)
R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0339583.inf_amd64_c5be1e62234928ae\B339442\atikmdag.sys [52881528 2019-02-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0339583.inf_amd64_c5be1e62234928ae\B339442\atikmpag.sys [590968 2019-02-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [103456 2019-02-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 AMDPCIDev; C:\WINDOWS\System32\drivers\AMDPCIDev.sys [31592 2018-04-26] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R2 AMDRyzenMasterDriver; C:\Program Files\AMD\Performance Profile Client\RyzenMaster\AMDRyzenMasterDriver.sys [70304 2017-11-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R2 AMDRyzenMasterDriverV13; C:\Program Files\AMD\RyzenMaster\bin\AMDRyzenMasterDriver.sys [71152 2018-11-26] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37320 2019-03-12] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [205608 2019-03-12] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [254408 2019-03-12] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [196304 2019-03-12] (AVAST Software s.r.o. -> AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblog.sys [320904 2019-03-12] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [58168 2019-03-12] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15488 2019-01-27] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [249152 2019-03-12] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42496 2019-03-12] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [169104 2019-03-12] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [112520 2019-03-12] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [88152 2019-03-12] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1034640 2019-03-12] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [476256 2019-03-12] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [220632 2019-03-12] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [380160 2019-03-12] (AVAST Software s.r.o. -> AVAST Software)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [107400 2018-10-03] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 NTIOLib_MysticLight; C:\Program Files (x86)\MSI\MysticLight\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [605696 2018-09-15] (Microsoft Windows -> Realtek )
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46584 2018-09-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [340008 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [61992 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 VGAOCTool; \??\C:\Users\O.O\AppData\Local\Temp\VGAOCTool.sys [X] <==== ATTENTION

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-03-12 19:02 - 2019-03-12 19:02 - 000001994 _____ C:\Users\O.O\Desktop\AdwCleaner[C00].txt
2019-03-12 19:00 - 2019-03-12 19:01 - 000000000 ____D C:\AdwCleaner
2019-03-12 18:59 - 2019-03-12 19:00 - 007316688 _____ (Malwarebytes) C:\Users\O.O\Desktop\adwcleaner_7.2.7.0.exe
2019-03-12 18:53 - 2019-03-12 18:53 - 000015404 _____ C:\Users\O.O\Desktop\FRSTlog.rar
2019-03-12 18:40 - 2019-03-12 21:55 - 000014108 _____ C:\Users\O.O\Desktop\FRST.txt
2019-03-12 18:40 - 2019-03-12 21:55 - 000000000 ____D C:\FRST
2019-03-12 18:39 - 2019-03-12 18:39 - 002434560 _____ (Farbar) C:\Users\O.O\Desktop\FRST64.exe
2019-03-12 18:21 - 2019-03-12 18:21 - 007186992 _____ (Microsoft Corporation) C:\Users\O.O\Downloads\vcredist_x64.exe
2019-03-12 18:08 - 2019-03-12 18:08 - 000362888 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2019-03-12 12:57 - 2019-03-12 19:23 - 000000000 ____D C:\Users\O.O\AppData\Roaming\Discord
2019-03-12 12:57 - 2019-03-12 18:01 - 000002223 _____ C:\Users\O.O\Desktop\Discord.lnk
2019-03-12 12:57 - 2019-03-12 18:01 - 000000000 ____D C:\Users\O.O\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2019-03-12 12:57 - 2019-03-12 18:01 - 000000000 ____D C:\Users\O.O\AppData\Local\Discord
2019-03-12 12:57 - 2019-03-12 12:57 - 000000000 ____D C:\Users\O.O\AppData\Local\SquirrelTemp
2019-03-02 23:10 - 2019-03-02 23:10 - 000019696 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_882047988962.dll
2019-03-01 17:18 - 2019-03-01 17:18 - 000000000 ____D C:\Users\O.O\AppData\Local\AirParrot 2
2019-03-01 17:18 - 2019-03-01 17:18 - 000000000 ____D C:\ProgramData\AirParrot 2
2019-03-01 17:14 - 2019-03-01 17:16 - 000000000 ____D C:\Users\O.O\AppData\Roaming\5KPlayer
2019-02-26 17:07 - 2019-02-26 17:07 - 000000000 ____D C:\Users\O.O\AppData\LocalLow\AMD
2019-02-26 16:56 - 2019-03-12 21:54 - 000002374 _____ C:\WINDOWS\System32\Tasks\StartCNBM
2019-02-26 16:56 - 2019-03-12 21:54 - 000002202 _____ C:\WINDOWS\System32\Tasks\StartCN
2019-02-26 16:56 - 2019-03-12 21:54 - 000002116 _____ C:\WINDOWS\System32\Tasks\StartDVR
2019-02-26 16:56 - 2019-02-26 16:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Settings
2019-02-26 16:56 - 2019-02-26 16:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\##ID_STRING16##
2019-02-26 16:56 - 2019-02-26 16:56 - 000000000 ____D C:\ProgramData\AMD
2019-02-26 16:56 - 2019-02-26 16:56 - 000000000 ____D C:\Program Files (x86)\AMD
2019-02-25 19:29 - 2019-02-25 19:29 - 000000000 ____D C:\Users\O.O\AppData\Local\Plex Media Server
2019-02-25 12:57 - 2019-02-25 12:57 - 001210488 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2019-02-25 12:57 - 2019-02-25 12:57 - 000177784 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2019-02-25 12:57 - 2019-02-25 12:57 - 000154232 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2019-02-25 12:57 - 2019-02-25 12:57 - 000019200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2019-02-25 12:57 - 2019-02-25 12:57 - 000019200 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2019-02-20 15:38 - 2019-02-20 15:38 - 000173432 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdihk64.dll
2019-02-20 15:38 - 2019-02-20 15:38 - 000145104 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdihk32.dll
2019-02-18 22:51 - 2019-02-18 22:51 - 000000000 ____D C:\Users\O.O\AppData\Roaming\EasyAntiCheat
2019-02-18 22:50 - 2019-02-18 22:50 - 000000000 ____D C:\ProgramData\Electronic Arts
2019-02-18 22:16 - 2019-02-26 20:09 - 000000762 _____ C:\Users\Public\Desktop\Apex Legends.lnk
2019-02-18 22:16 - 2019-02-18 22:51 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2019-02-18 22:16 - 2019-02-18 22:16 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2019-02-18 21:56 - 2019-02-18 21:57 - 000000000 ____D C:\Apex Legends
2019-02-18 20:44 - 2019-02-18 20:44 - 000000582 _____ C:\Users\Public\Desktop\Origin.lnk
2019-02-18 20:44 - 2019-02-18 20:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2019-02-18 20:41 - 2019-03-12 21:54 - 000000000 ____D C:\ProgramData\Origin
2019-02-18 20:41 - 2019-03-12 19:09 - 000000000 ____D C:\Users\O.O\AppData\Roaming\Origin
2019-02-18 20:41 - 2019-02-18 22:51 - 000000000 ____D C:\Users\O.O\AppData\Local\Origin
2019-02-18 20:41 - 2019-02-18 20:41 - 000000000 ____D C:\Users\O.O\.QtWebEngineProcess
2019-02-18 20:41 - 2019-02-18 20:41 - 000000000 ____D C:\Users\O.O\.Origin
2019-02-16 14:35 - 2019-02-16 14:35 - 000000000 _____ C:\WINDOWS\system32\last.dump
2019-02-15 11:47 - 2019-03-12 18:08 - 000249152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2019-02-13 21:52 - 2017-06-07 01:36 - 000138296 _____ (Power Software Ltd) C:\WINDOWS\system32\Drivers\scdemu.sys

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-03-12 21:54 - 2019-02-08 01:22 - 000002454 _____ C:\WINDOWS\System32\Tasks\AMDLinkUpdate
2019-03-12 21:54 - 2019-02-08 01:22 - 000002392 _____ C:\WINDOWS\System32\Tasks\ModifyLinkUpdate
2019-03-12 21:54 - 2019-01-05 02:56 - 000003400 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-03-12 21:54 - 2019-01-05 02:56 - 000003176 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-03-12 21:54 - 2019-01-05 02:56 - 000002988 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-03-12 21:54 - 2019-01-05 02:56 - 000002768 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2019-03-12 21:54 - 2019-01-05 02:56 - 000002590 _____ C:\WINDOWS\System32\Tasks\AMDAutoUpdate
2019-03-12 21:54 - 2019-01-05 02:56 - 000002236 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2019-03-12 21:54 - 2019-01-05 02:56 - 000002148 _____ C:\WINDOWS\System32\Tasks\MSISW_Host
2019-03-12 21:54 - 2019-01-05 02:56 - 000000000 ____D C:\WINDOWS\System32\Tasks\Avast Software
2019-03-12 20:35 - 2019-01-05 02:56 - 000002136 _____ C:\WINDOWS\System32\Tasks\MSILEDKeeper_Host
2019-03-12 20:15 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-03-12 19:06 - 2019-01-05 03:01 - 001693636 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-03-12 19:06 - 2019-01-05 02:40 - 000716886 _____ C:\WINDOWS\system32\perfh005.dat
2019-03-12 19:06 - 2019-01-05 02:40 - 000144986 _____ C:\WINDOWS\system32\perfc005.dat
2019-03-12 19:06 - 2018-09-15 08:31 - 000000000 ____D C:\WINDOWS\INF
2019-03-12 19:01 - 2019-01-05 02:56 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-03-12 19:01 - 2018-09-15 07:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-03-12 18:56 - 2019-01-05 13:13 - 000000000 ____D C:\Users\O.O\AppData\Roaming\uTorrent
2019-03-12 18:36 - 2019-01-05 02:54 - 000000248 ____H C:\WINDOWS\Tasks\MSILEDKeeper_Host.job
2019-03-12 18:08 - 2019-01-27 16:51 - 000254408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2019-03-12 18:08 - 2019-01-05 02:56 - 000003990 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2019-03-12 18:08 - 2019-01-05 00:40 - 001034640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2019-03-12 18:08 - 2019-01-05 00:40 - 000476256 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2019-03-12 18:08 - 2019-01-05 00:40 - 000380160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2019-03-12 18:08 - 2019-01-05 00:40 - 000320904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswblog.sys
2019-03-12 18:08 - 2019-01-05 00:40 - 000220632 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2019-03-12 18:08 - 2019-01-05 00:40 - 000205608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2019-03-12 18:08 - 2019-01-05 00:40 - 000196304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2019-03-12 18:08 - 2019-01-05 00:40 - 000169104 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2019-03-12 18:08 - 2019-01-05 00:40 - 000112520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2019-03-12 18:08 - 2019-01-05 00:40 - 000088152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2019-03-12 18:08 - 2019-01-05 00:40 - 000058168 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2019-03-12 18:08 - 2019-01-05 00:40 - 000042496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2019-03-12 18:08 - 2019-01-05 00:40 - 000037320 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2019-03-12 18:08 - 2018-09-15 08:33 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-03-12 18:06 - 2019-01-27 22:43 - 000000000 ____D C:\Users\O.O\AppData\Local\CrashDumps
2019-03-11 22:10 - 2019-01-05 02:52 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-03-09 11:32 - 2018-09-15 08:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-03-06 20:12 - 2019-02-06 11:28 - 000000000 ____D C:\Users\O.O\AppData\Roaming\TS3Client
2019-03-05 20:42 - 2019-01-05 00:37 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-03-05 20:42 - 2019-01-05 00:37 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-03-04 17:44 - 2019-01-05 02:57 - 000000000 ____D C:\Users\O.O\AppData\Local\D3DSCache
2019-03-03 13:22 - 2019-01-05 02:53 - 000000000 ____D C:\Users\O.O
2019-02-26 17:06 - 2019-01-05 02:52 - 000257904 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-02-26 16:56 - 2019-01-05 00:29 - 000000000 ____D C:\Program Files\AMD
2019-02-26 16:55 - 2019-01-05 01:05 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2019-02-26 16:55 - 2019-01-05 00:29 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies
2019-02-26 16:52 - 2019-01-05 01:16 - 000000060 _____ C:\ProgramData\SoftwareUpdateTemp.xml
2019-02-26 16:52 - 2019-01-05 00:29 - 000000000 ____D C:\AMD
2019-02-25 19:32 - 2019-01-05 00:30 - 000000000 ____D C:\ProgramData\Package Cache
2019-02-25 15:33 - 2019-01-13 14:35 - 000000024 _____ C:\WINDOWS\system32\WinUpdates105.dat
2019-02-25 12:58 - 2019-01-17 20:48 - 000570784 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2019-02-25 12:58 - 2019-01-17 20:48 - 000481696 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2019-02-25 12:58 - 2019-01-17 20:48 - 000183712 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2019-02-25 12:58 - 2019-01-17 20:48 - 000162720 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2019-02-25 12:58 - 2019-01-17 20:48 - 000137632 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2019-02-25 12:58 - 2019-01-17 20:48 - 000045984 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2019-02-25 12:58 - 2019-01-17 20:48 - 000042912 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2019-02-25 12:57 - 2019-02-08 01:21 - 000103456 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdkmpfd.sys
2019-02-25 12:57 - 2019-01-17 20:48 - 001587616 _____ (AMD) C:\WINDOWS\system32\coinst_18.50.dll
2019-02-25 12:57 - 2019-01-17 20:48 - 000492448 _____ C:\WINDOWS\system32\dgtrayicon.exe
2019-02-25 12:57 - 2019-01-17 20:48 - 000480160 _____ C:\WINDOWS\system32\GameManager64.dll
2019-02-25 12:57 - 2019-01-17 20:48 - 000382368 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2019-02-25 12:57 - 2019-01-17 20:48 - 000340896 _____ C:\WINDOWS\system32\clinfo.exe
2019-02-25 12:57 - 2019-01-17 20:48 - 000151968 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2019-02-25 12:57 - 2019-01-17 20:47 - 003735688 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2019-02-25 12:57 - 2019-01-17 20:47 - 003363960 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2019-02-25 12:57 - 2019-01-17 20:47 - 001664112 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2019-02-25 12:57 - 2019-01-17 20:47 - 001210488 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2019-02-25 12:57 - 2019-01-17 20:47 - 000922744 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2019-02-25 12:57 - 2019-01-17 20:47 - 000759408 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2019-02-25 12:57 - 2019-01-17 20:47 - 000752760 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2019-02-25 12:57 - 2019-01-17 20:47 - 000553080 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmcl64.dll
2019-02-25 12:57 - 2019-01-17 20:47 - 000474232 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2019-02-25 12:57 - 2019-01-17 20:47 - 000468080 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2019-02-25 12:57 - 2019-01-17 20:47 - 000439928 _____ C:\WINDOWS\system32\atieah64.exe
2019-02-25 12:57 - 2019-01-17 20:47 - 000383112 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmcl32.dll
2019-02-25 12:57 - 2019-01-17 20:47 - 000382584 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2019-02-25 12:57 - 2019-01-17 20:47 - 000353400 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2019-02-25 12:57 - 2019-01-17 20:47 - 000240248 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2019-02-25 12:57 - 2019-01-17 20:47 - 000211568 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2019-02-25 12:57 - 2019-01-17 20:47 - 000169272 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2019-02-25 12:57 - 2019-01-17 20:47 - 000158840 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2019-02-25 12:57 - 2019-01-17 20:47 - 000148120 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2019-02-25 12:57 - 2019-01-17 20:47 - 000135792 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2019-02-25 12:57 - 2019-01-17 20:47 - 000125040 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2019-02-25 12:57 - 2019-01-17 20:47 - 000123504 _____ C:\WINDOWS\system32\atidxx64.dll
2019-02-25 12:57 - 2019-01-17 20:47 - 000119928 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll
2019-02-25 12:57 - 2019-01-17 20:47 - 000106104 _____ C:\WINDOWS\SysWOW64\atidxx32.dll
2019-02-25 12:57 - 2019-01-17 20:47 - 000105080 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll
2019-02-25 12:57 - 2019-01-17 20:47 - 000069752 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll
2019-02-25 12:57 - 2019-01-17 20:46 - 000546880 _____ C:\WINDOWS\system32\amdmiracast.dll
2019-02-25 12:57 - 2019-01-17 20:46 - 000190088 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll
2019-02-25 12:57 - 2019-01-17 20:46 - 000167208 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll
2019-02-25 12:57 - 2019-01-17 20:46 - 000133960 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2019-02-25 12:57 - 2019-01-17 20:46 - 000127760 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2019-02-25 12:57 - 2019-01-17 20:46 - 000127544 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2019-02-25 12:57 - 2019-01-17 20:46 - 000118872 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2019-02-25 12:57 - 2019-01-17 20:46 - 000106856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2019-02-25 12:57 - 2019-01-17 20:46 - 000106856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2019-02-24 16:47 - 2019-01-05 00:43 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-02-21 00:39 - 2019-01-17 16:11 - 000906872 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2019-02-21 00:39 - 2019-01-17 16:11 - 000906872 _____ C:\WINDOWS\system32\atiapfxx.blb
2019-02-20 21:27 - 2019-01-17 16:11 - 003471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2019-02-20 21:27 - 2019-01-17 16:11 - 003437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2019-02-18 21:55 - 2019-01-05 17:22 - 000000000 ____D C:\HRATELNÉ HRY
2019-02-18 20:20 - 2019-02-09 22:50 - 000000000 ____D C:\Users\O.O\Documents\The Witcher 3
2019-02-18 20:20 - 2019-01-05 00:28 - 000000000 ____D C:\Users\O.O\AppData\Local\Packages
2019-02-18 20:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\AppReadiness

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\dllhost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\dllhost.exe => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================