Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19-01-2021
Ran by BLAyEn (administrator) on PIXLA2 (19-01-2021 20:16:26)
Running from E:\
Loaded Profiles: BLAyEn
Platform: Windows 7 Home Premium (X64) Language: Čeština (Česká republika)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
(Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Creative Labs Inc -> Creative Technology Ltd) C:\Windows\SysWOW64\CtHelper.exe
(Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(Dennis A. Babkin -> www.dennisbabkin.com) C:\Program Files Selfinstall\CompactTrayMeter\Compact Tray Meter.exe
(Ghisler Software GmbH -> Ghisler Software GmbH) C:\totalcmd\TOTALCMD64.EXE
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <10>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe
(Lexmark International, Inc. -> ) C:\Windows\System32\lxczcoms.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(SOKNO S.R.L. -> ) C:\Program Files (x86)\SpeedFan\speedfan.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [246120 2017-12-22] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [AsioThk32Reg] => REGSVR32.EXE /S CTASIO.DLL
HKLM-x32\...\Run: [CTHelper] => C:\Windows\SysWOW64\CTHELPER.EXE* [19456 2010-03-18] () [File not signed]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2833598272-1562470095-653523719-1000\...\Run: [Compact Tray Meter] => C:\Program Files Selfinstall\CompactTrayMeter\Compact Tray Meter.exe [3094384 2018-11-14] (Dennis A. Babkin -> www.dennisbabkin.com)
HKU\S-1-5-21-2833598272-1562470095-653523719-1000\...\MountPoints2: {8653028c-1431-11e8-b3b4-806e6f6e6963} - H:\Autorun.exe
HKLM\...\Windows x64\Print Processors\BJ Print Processor4: C:\Windows\System32\spool\prtprocs\x64\CNBPP4.DLL [84992 2009-07-14] (Microsoft Windows -> CANON INC.)
HKLM\...\Print\Monitors\1200 Series Port: C:\Windows\system32\lxczlmpm.dll [487424 2006-12-20] () [File not signed]
HKLM\...\Print\Monitors\BJ Language Monitor4: C:\Windows\system32\CNBLM4.DLL [267776 2009-07-14] (Microsoft Windows -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.141\Installer\chrmstp.exe [2021-01-06] (Google LLC -> Google LLC)
Startup: C:\Users\BLAyEn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\speedfan.exe – zástupce.lnk [2019-05-24]
ShortcutTarget: speedfan.exe – zástupce.lnk -> C:\Program Files (x86)\SpeedFan\speedfan.exe (SOKNO S.R.L. -> )

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0045DD53-E04A-42DD-B333-AAF2325D8BCF} - System32\Tasks\{E5649D4B-BB63-42DA-B9E3-BA9E47F26BD7} => C:\Windows\system32\pcalua.exe -a F:\Setup.EXE -d F:\
Task: {5E42FF1B-5A26-4EDA-BF97-416F763D6194} - System32\Tasks\{7D9B0056-7954-4A01-BFEF-52FAC81AE505} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Origin\vcredist_x64_vs2010.exe"
Task: {73A3861E-CEAD-49B7-974C-3C4087577E77} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-12-22] (Google Inc -> Google Inc.)
Task: {AA4B09B4-BC2C-4FD2-8C7B-6DF202600C68} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-12-22] (Google Inc -> Google Inc.)
Task: {C71A2453-5A9E-4796-9FF0-29E08CAD23C6} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2736056 2018-08-23] (AVAST Software s.r.o. -> AVAST Software)
Task: {FAB5C552-588F-4EE8-BCCC-4B4E683BA7C1} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2020-09-17] (Avast Software s.r.o. -> Avast Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{1DB28151-CDFA-469F-BA04-EF28F65DA342}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{8747E4C6-177D-46EF-BA00-9D92BBB55AFA}: [DhcpNameServer] 10.0.0.138

FireFox:
========
FF DefaultProfile: 74ocfg61.default
FF ProfilePath: C:\Users\BLAyEn\AppData\Roaming\Mozilla\Firefox\Profiles\74ocfg61.default [2020-12-09]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_28_0_0_137.dll [2018-01-26] (Adobe Systems Incorporated -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_137.dll [2018-01-26] (Adobe Systems Incorporated -> )
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2010-04-15] (CANON INC.) [File not signed]

Chrome: 
=======
CHR Profile: C:\Users\BLAyEn\AppData\Local\Google\Chrome\User Data\Default [2021-01-19]
CHR DownloadDir: G:\
CHR Extension: (Prezentace) - C:\Users\BLAyEn\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-12-22]
CHR Extension: (Dokumenty) - C:\Users\BLAyEn\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-22]
CHR Extension: (Disk Google) - C:\Users\BLAyEn\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21]
CHR Extension: (YouTube) - C:\Users\BLAyEn\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-12-22]
CHR Extension: (OneTab) - C:\Users\BLAyEn\AppData\Local\Google\Chrome\User Data\Default\Extensions\chphlpgkkbolifaimnlloiipkdnihall [2020-09-14]
CHR Extension: (Tabulky) - C:\Users\BLAyEn\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-12-22]
CHR Extension: (Dokumenty Google offline) - C:\Users\BLAyEn\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-11]
CHR Extension: (InstaG Downloader) - C:\Users\BLAyEn\AppData\Local\Google\Chrome\User Data\Default\Extensions\jnkdcmgmnegofdddphijckfagibepdlb [2018-07-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\BLAyEn\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Gmail) - C:\Users\BLAyEn\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\BLAyEn\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-08]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 AEADIFilters; C:\Windows\system32\AEADISRV.EXE [111616 2009-06-05] (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation)
S2 appdrvrem01; C:\Windows\System32\appdrvrem01.exe [538000 2019-08-11] (Protection Technology, Ltd. -> Protection Technology)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [90112 2009-04-02] () [File not signed]
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7538536 2017-12-22] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [301168 2017-12-22] (AVAST Software s.r.o. -> AVAST Software)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2018-02-19] (Creative Labs) [File not signed]
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2018-02-17] (Creative Labs) [File not signed]
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [286720 2010-02-12] (Creative Technology Ltd) [File not signed]
R2 lxcz_device; C:\Windows\system32\lxczcoms.exe [566192 2007-04-19] (Lexmark International, Inc. -> )
R2 lxcz_device; C:\Windows\SysWOW64\lxczcoms.exe [537520 2007-04-19] (Lexmark International, Inc. -> )
S4 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2475312 2020-02-01] (Electronic Arts, Inc. -> Electronic Arts)
S4 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3352376 2020-02-01] (Electronic Arts, Inc. -> Electronic Arts)
R2 RapiMgr; C:\Windows\WindowsMobile\rapimgr.dll [225672 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
R2 WcesComm; C:\Windows\WindowsMobile\wcescomm.dll [443784 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 ADIHdAudAddService; C:\Windows\System32\drivers\ADIHdAud.sys [475136 2009-06-05] (Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.)
R1 appdrv01; C:\Windows\System32\Drivers\appdrv01.sys [2687592 2019-08-11] (Protection Technology, Ltd. -> Protection Technology)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [14392 2007-12-17] (ASUSTeK Computer Inc. -> )
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [185096 2017-12-22] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdrivera.sys [321512 2017-12-22] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsha.sys [199448 2017-12-22] (AVAST Software s.r.o. -> AVAST Software)
R0 aswblog; C:\Windows\System32\drivers\aswbloga.sys [343768 2017-12-22] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniva.sys [57696 2017-12-22] (AVAST Software s.r.o. -> AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [149344 2017-12-22] (AVAST Software s.r.o. -> AVAST Software)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [46976 2017-12-22] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [146648 2018-01-19] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [110336 2017-12-22] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84384 2017-12-22] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1025176 2017-12-22] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [457896 2018-01-19] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [204456 2017-12-22] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [358672 2017-12-22] (AVAST Software s.r.o. -> AVAST Software)
S3 atikmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [10207232 2011-10-12] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-28] (Microsoft Windows Hardware Compatibility Publisher -> )
R0 mv61xx; C:\Windows\System32\DRIVERS\mv61xx.sys [178728 2009-05-11] (Marvell Semiconductor -> Marvell Semiconductor, Inc.)
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\Legacy\RTCore64.sys [14496 2019-10-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x64.sys [393728 2009-05-20] (Microsoft Windows Hardware Compatibility Publisher -> Marvell)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-19 20:16 - 2021-01-19 20:17 - 000000000 ____D C:\FRST
2021-01-19 19:31 - 2021-01-19 19:31 - 000000000 ____D C:\ProgramData\SWCUTemp
2021-01-19 16:55 - 2021-01-19 17:04 - 000000000 ____D C:\KRD2018_Data
2021-01-19 13:16 - 2021-01-19 13:18 - 000000000 ____D C:\AdwCleaner
2021-01-19 12:47 - 2021-01-19 12:47 - 000255928 _____ (Malwarebytes) C:\Windows\system32\Drivers\1373B699.sys
2021-01-19 12:47 - 2021-01-19 12:47 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-01-19 12:45 - 2021-01-19 13:11 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2021-01-19 12:45 - 2021-01-19 12:45 - 000192952 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2021-01-13 22:04 - 2021-01-13 23:49 - 1887436800 _____ C:\Mantis Burn Racing & 3 DLC.part1.rar
2021-01-09 20:39 - 2021-01-09 22:24 - 000000000 ____D C:\Users\BLAyEn\AppData\Roaming\Train Fever
2021-01-07 20:27 - 2021-01-07 20:27 - 000000000 ____D C:\Users\BLAyEn\AppData\Local\Ori and the Will of The Wisps
2021-01-07 20:23 - 2021-01-07 20:23 - 000000000 ____D C:\Users\BLAyEn\AppData\LocalLow\Moon Studios
2021-01-05 20:54 - 2021-01-05 20:54 - 000000000 ____D C:\Users\BLAyEn\Documents\Anno 2205-DIS-VERZE1.0 V D
2020-12-30 18:08 - 2020-12-30 18:08 - 000000000 ____D C:\Users\BLAyEn\Documents\Anno 2205
2020-12-30 17:49 - 2020-12-30 17:49 - 000000967 _____ C:\Users\Public\Desktop\Anno 2205. Gold Edition.lnk
2020-12-30 17:49 - 2020-12-30 17:49 - 000000967 _____ C:\ProgramData\Desktop\Anno 2205. Gold Edition.lnk
2020-12-30 17:49 - 2020-12-30 17:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anno 2205. Gold Edition
2020-12-28 17:43 - 2020-12-28 17:43 - 000000000 ____D C:\Users\BLAyEn\AppData\Roaming\11603
2020-12-24 17:39 - 2020-12-24 17:39 - 000000000 ____D C:\Users\BLAyEn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
2020-12-23 14:56 - 2020-12-28 20:04 - 000000000 ____D C:\Users\BLAyEn\AppData\Roaming\FiraxisLive
2020-12-23 14:56 - 2020-12-23 14:56 - 000000000 ____D C:\Users\BLAyEn\AppData\Roaming\Steam
2020-12-22 21:26 - 2020-12-22 21:26 - 000000896 _____ C:\Users\BLAyEn\Desktop\XCOM 2.lnk
2020-12-20 10:24 - 2020-12-20 10:45 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2020-12-20 10:24 - 2020-12-20 10:24 - 000001092 _____ C:\Users\BLAyEn\Desktop\MSI Afterburner.lnk
2020-12-20 10:24 - 2020-12-20 10:24 - 000000000 ____D C:\Users\BLAyEn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2020-12-20 09:18 - 2020-12-20 09:18 - 000000000 ____D C:\ProgramData\ATI
2020-12-20 09:15 - 2020-12-20 09:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
2020-12-20 09:15 - 2020-12-20 09:15 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies
2020-12-20 09:15 - 2020-12-20 09:15 - 000000000 ____D C:\Program Files (x86)\AMD APP
2020-12-20 09:14 - 2020-12-20 09:14 - 000000000 ____D C:\Program Files\ATI
2020-12-20 09:14 - 2020-12-20 09:14 - 000000000 ____D C:\Program Files (x86)\ATI Technologies
2020-12-20 09:12 - 2020-12-20 09:15 - 000000000 ____D C:\Program Files\ATI Technologies
2020-12-20 09:11 - 2020-12-20 09:11 - 000000000 ____D C:\ATI

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-19 20:08 - 2018-02-10 20:42 - 000000000 ____D C:\Users\BLAyEn\AppData\Roaming\eM Client
2021-01-19 19:47 - 2017-12-22 20:48 - 000000000 ____D C:\Program Files (x86)\SpeedFan
2021-01-19 19:38 - 2009-07-14 05:45 - 000016624 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-01-19 19:38 - 2009-07-14 05:45 - 000016624 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-01-19 19:35 - 2009-07-14 16:18 - 000667324 _____ C:\Windows\system32\perfh005.dat
2021-01-19 19:35 - 2009-07-14 16:18 - 000140502 _____ C:\Windows\system32\perfc005.dat
2021-01-19 19:35 - 2009-07-14 06:13 - 001581618 _____ C:\Windows\system32\PerfStringBackup.INI
2021-01-19 19:35 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2021-01-19 19:31 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-01-19 19:25 - 2018-02-17 23:34 - 004931577 _____ C:\Windows\{00000005-00000000-00000000-00001102-00000008-10011102}.BAK
2021-01-19 19:25 - 2018-02-17 23:34 - 000033712 _____ C:\Windows\system32\BMXStateBkp-{00000005-00000000-00000000-00001102-00000008-10011102}.rfx
2021-01-19 19:25 - 2018-02-17 23:34 - 000033712 _____ C:\Windows\system32\BMXState-{00000005-00000000-00000000-00001102-00000008-10011102}.rfx
2021-01-19 19:25 - 2018-02-17 23:34 - 000029772 _____ C:\Windows\system32\BMXCtrlState-{00000005-00000000-00000000-00001102-00000008-10011102}.rfx
2021-01-19 19:25 - 2018-02-17 23:34 - 000029772 _____ C:\Windows\system32\BMXBkpCtrlState-{00000005-00000000-00000000-00001102-00000008-10011102}.rfx
2021-01-19 19:25 - 2018-02-17 23:34 - 000011564 _____ C:\Windows\system32\DVCState-{00000005-00000000-00000000-00001102-00000008-10011102}.rfx
2021-01-19 19:25 - 2018-02-17 23:32 - 004931577 _____ C:\Windows\{00000005-00000000-00000000-00001102-00000008-10011102}.CDF
2021-01-17 21:16 - 2009-07-14 05:45 - 000270496 _____ C:\Windows\system32\FNTCACHE.DAT
2021-01-17 21:10 - 2018-01-30 22:11 - 000000000 ____D C:\Program Files (x86)\DVDFab 10
2021-01-14 03:45 - 2018-01-20 23:50 - 000007631 _____ C:\Users\BLAyEn\AppData\Local\Resmon.ResmonCfg
2021-01-13 05:09 - 2018-11-17 20:59 - 000000000 ____D C:\Users\BLAyEn\AppData\Roaming\Audacity
2021-01-09 20:19 - 2020-10-30 20:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2021-01-09 20:19 - 2009-07-14 06:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2021-01-09 19:51 - 2020-10-24 02:32 - 000000026 _____ C:\Users\BLAyEn\AppData\Local\isoworkshop.ini
2021-01-06 23:43 - 2017-12-22 20:34 - 000002360 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-01-05 21:41 - 2020-10-28 23:17 - 000000000 ____D C:\Users\BLAyEn\AppData\Roaming\uplay
2021-01-05 03:34 - 2020-01-25 17:54 - 000000000 ____D C:\Program Files (x86)\Steam
2020-12-30 18:47 - 2018-03-02 22:05 - 000000000 ____D C:\Users\BLAyEn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2020-12-28 17:50 - 2018-01-30 22:11 - 000000000 ____D C:\Users\BLAyEn\AppData\Roaming\DVDFab10
2020-12-27 00:38 - 2017-12-22 20:31 - 000000000 ____D C:\Users\BLAyEn
2020-12-26 16:11 - 2009-07-14 06:08 - 000032532 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2020-12-24 17:35 - 2017-12-22 20:39 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-12-23 14:56 - 2020-06-30 22:14 - 000000000 ____D C:\Users\BLAyEn\Documents\My Games
2020-12-21 19:06 - 2018-02-03 20:30 - 000000000 ____D C:\Users\BLAyEn\AppData\Local\ElevatedDiagnostics
2020-12-20 09:10 - 2018-01-26 21:20 - 000000000 ____D C:\-DISABLED-

==================== Files in the root of some directories ========

2019-08-10 19:59 - 2019-08-10 20:00 - 000004350 _____ () C:\Program Files (x86)\Empire Interactive.sfv
2018-01-20 22:23 - 2018-12-11 23:32 - 000082988 _____ () C:\Users\BLAyEn\AppData\Local\FSDownloader.err
2018-01-20 22:20 - 2019-03-16 08:58 - 000004712 _____ () C:\Users\BLAyEn\AppData\Local\FSDownloader.nast
2020-10-24 02:32 - 2021-01-09 19:51 - 000000026 _____ () C:\Users\BLAyEn\AppData\Local\isoworkshop.ini
2018-01-20 22:45 - 2018-01-20 22:45 - 000000120 _____ () C:\Users\BLAyEn\AppData\Local\MRDownloader.err
2018-01-20 22:45 - 2018-01-20 22:45 - 000001024 _____ () C:\Users\BLAyEn\AppData\Local\MRDownloader.nast
2018-01-20 23:50 - 2021-01-14 03:45 - 000007631 _____ () C:\Users\BLAyEn\AppData\Local\Resmon.ResmonCfg
2020-09-23 09:35 - 2020-09-23 09:35 - 000000000 _____ () C:\Users\BLAyEn\AppData\Local\{2C819251-E1F0-4AA2-844F-5C2673FAFC24}
2020-09-16 10:34 - 2020-09-16 10:34 - 000000000 _____ () C:\Users\BLAyEn\AppData\Local\{95322AB7-78A7-44A1-99D1-FC1C563A942C}

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2021-01-12 02:21
==================== End of FRST.txt ========================