Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-02-2021
Ran by Pavel (administrator) on DESKTOP-FFA105T (MSI MS-7642) (22-02-2021 19:01:55)
Running from C:\Users\Pavel\Downloads
Loaded Profiles: Pavel
Platform: Windows 10 Home Version 2004 19041.804 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20122.11121.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(OOO Lightshot -> Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.10\Lightshot.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Desktop.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2020-01-18] (Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [117352 2021-01-07] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [225944 2017-04-11] (OOO Lightshot -> )
HKLM-x32\...\Run: [SSBkgdUpdate] => C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [155648 2003-09-30] (Scansoft, Inc.) [File not signed]
HKLM-x32\...\Run: [OpwareSE4] => C:\Program Files (x86)\ScanSoft\OmniPageSE4.0\OpwareSE4.exe [69632 2006-03-21] (ScanSoft, Inc.) [File not signed]
HKU\S-1-5-21-171863584-1344761036-1501396969-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [29271224 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\...\Windows x64\Print Processors\BJ Print Processor4: C:\Windows\System32\spool\prtprocs\x64\CNBPP4.DLL [84992 2011-08-30] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\Canon MP460 Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPD81.DLL [33792 2006-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\BJ Language Monitor4: C:\WINDOWS\system32\CNBLM4.DLL [267776 2011-08-30] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP460: C:\WINDOWS\system32\CNMLM81.DLL [270848 2006-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.182\Installer\chrmstp.exe [2021-02-19] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {10A5D08C-A546-4F11-A804-5B6E327FD368} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [69304 2020-08-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {11E62789-9CA5-4CD6-B81D-F976A543B689} - System32\Tasks\update-S-1-5-21-171863584-1344761036-1501396969-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {1CF9025D-2325-451A-A3C1-0B4108CED0C7} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {250E5A64-3564-4FD6-881A-6DE33888517C} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-09] (Adobe Inc. -> Adobe)
Task: {2B8AE2DF-141A-499E-8ED5-8942C8EDFA71} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4621920 2021-01-07] (Avast Software s.r.o. -> AVAST Software)
Task: {3F823AD6-DB01-4C11-B423-6797C75E45BE} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [468992 2019-04-16] (Advanced Micro Devices, Inc.) [File not signed]
Task: {4DDA2D29-E710-431E-9974-55860881DCF3} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1741416 2020-09-18] (Avast Software s.r.o. -> Avast Software)
Task: {51C3B7A8-9D72-48F7-AFE1-CC11D3816665} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\BIN64\InstallManagerApp.exe [468992 2019-04-16] (Advanced Micro Devices, Inc.) [File not signed]
Task: {73C4E646-F730-4344-99B5-11CD93CF495C} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-09] (Adobe Inc. -> Adobe)
Task: {77AED3D3-A163-4EBF-80F7-5EA2E712569E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2021-01-03] (Google Inc -> Google Inc.)
Task: {82A1D4A8-B4B3-4E08-8C95-942A71177E6B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8D2CF19C-4F33-4A06-B75A-6ADBDB05F929} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2021-01-03] (Google Inc -> Google Inc.)
Task: {9FDB4347-3006-406C-A67B-A53830F706FF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24770744 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {BCE5CE83-8CB0-44F9-8F13-64DCBE363E94} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {CB0A471F-BF48-4B31-AA9E-412C18B565F0} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-08-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\update-S-1-5-21-171863584-1344761036-1501396969-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{84c748ad-5931-4452-a55c-9fae0836d652}: [DhcpNameServer] 192.168.0.1

Edge: 
=======
DownloadDir: C:\Users\Pavel\Desktop
Edge HomeButtonPage: HKU\S-1-5-21-171863584-1344761036-1501396969-1001 -> hxxp://seznam.cz/
Edge DefaultProfile: Default
Edge Profile: C:\Users\Pavel\AppData\Local\Microsoft\Edge\User Data\Default [2021-02-22]
Edge DownloadDir: C:\Users\Pavel\Desktop
Edge Notifications: Default -> hxxps://wwlnws.ru
Edge HomePage: Default -> hxxp://seznam.cz/
Edge StartupUrls: Default -> "hxxps://www.seznam.cz/"
Edge Profile: C:\Users\Pavel\AppData\Local\Microsoft\Edge\User Data\Guest Profile [2020-08-09]

FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2021-02-12] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-09] (Adobe Inc. -> )
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-09] (Adobe Inc. -> )
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-02-15] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-171863584-1344761036-1501396969-1001: pokki.com/PokkiDownloadHelper -> C:\Users\Pavel\AppData\Local\Pokki\Download Helper\npPokkiDownloadHelper.1.2.0.78.dll [No File]

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Pavel\AppData\Local\Google\Chrome\User Data\Default [2021-02-22]
CHR DownloadDir: C:\Users\Pavel\Desktop
CHR Notifications: Default -> hxxps://www.youtube.com
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\Pavel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-02-08]
CHR Extension: (Dokumenty) - C:\Users\Pavel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-02-08]
CHR Extension: (Disk Google) - C:\Users\Pavel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25]
CHR Extension: (YouTube) - C:\Users\Pavel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-02-08]
CHR Extension: (Tabulky) - C:\Users\Pavel\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-02-08]
CHR Extension: (Dokumenty Google offline) - C:\Users\Pavel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-18]
CHR Extension: (Farmerama | Zahraj si farmářskou hru zdarma online) - C:\Users\Pavel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkkchoocmhpnakhkdlijecgadaengdll [2021-02-20]
CHR Extension: (Farmerama CZ) - C:\Users\Pavel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jnpeofkdlnnommkelmjhmidjlmlffamm [2021-02-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Pavel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\Pavel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\Pavel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-26]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-09] (Adobe Inc. -> Adobe)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8477080 2021-01-07] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [621728 2021-01-07] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [58048 2021-01-07] (Avast Software s.r.o. -> AVAST Software)
S2 gupdate1d6e1c264499a7b; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2021-01-03] (Google Inc -> Google Inc.)
S3 gupdatem1d6e1c2644c3149; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2021-01-03] (Google Inc -> Google Inc.)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [959752 2021-02-12] (McAfee, LLC -> McAfee, LLC)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12835096 2021-01-28] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [36792 2021-01-07] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [208672 2021-01-07] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [332880 2021-01-07] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [247888 2021-01-07] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [97360 2021-01-07] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16832 2021-01-07] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42424 2021-01-07] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [176384 2021-01-07] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [108928 2021-01-07] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84496 2021-01-07] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851256 2021-01-07] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [468888 2021-01-08] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [214808 2021-01-07] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [324904 2021-01-07] (Avast Software s.r.o. -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
R3 huawei_enumerator; C:\WINDOWS\System32\drivers\ew_jubusenum.sys [86016 2011-01-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 t_mouse.sys; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [6144 2013-04-09] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 SWDUMon; \SystemRoot\system32\DRIVERS\SWDUMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-02-22 19:01 - 2021-02-22 19:03 - 000017242 _____ C:\Users\Pavel\Downloads\FRST.txt
2021-02-22 18:57 - 2021-02-22 18:57 - 002301440 _____ (Farbar) C:\Users\Pavel\Downloads\FRST64.exe
2021-02-22 14:46 - 2021-02-22 14:46 - 000003112 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2021-02-21 20:03 - 2021-02-21 20:03 - 008463216 _____ (Malwarebytes) C:\Users\Pavel\Desktop\adwcleaner_8.1.exe
2021-02-21 15:55 - 2021-02-21 15:58 - 000037519 _____ C:\Users\Pavel\Desktop\Addition.txt
2021-02-21 15:52 - 2021-02-21 15:58 - 000023861 _____ C:\Users\Pavel\Desktop\FRST.txt
2021-02-21 15:51 - 2021-02-22 19:02 - 000000000 ____D C:\FRST
2021-02-21 15:46 - 2021-02-21 15:46 - 000000000 ____D C:\Program Files\trend micro
2021-02-21 15:45 - 2021-02-21 15:46 - 000000000 ____D C:\rsit
2021-02-19 20:42 - 2021-02-19 20:55 - 000000000 ____D C:\Users\Pavel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome
2021-02-19 20:01 - 2021-02-19 20:01 - 000000000 ____D C:\Users\Pavel\AppData\LocalLow\Bigpoint
2021-02-19 20:00 - 2021-02-19 20:07 - 000000000 ____D C:\Users\Pavel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bigpoint GmbH
2021-02-19 20:00 - 2021-02-19 20:07 - 000000000 ____D C:\Users\Pavel\AppData\Local\Farmerama
2021-02-19 20:00 - 2021-02-19 20:01 - 000000000 ____D C:\Users\Pavel\AppData\Roaming\Farmerama
2021-02-19 19:57 - 2021-02-19 19:57 - 004284928 _____ (Pokki) C:\Users\Pavel\Downloads\PokkiInstaller.exe
2021-02-19 19:26 - 2021-02-20 20:20 - 000000000 ____D C:\Users\Pavel\AppData\Roaming\obs-studio
2021-02-19 19:26 - 2021-02-19 19:26 - 000001052 _____ C:\ProgramData\Desktop\OBS Studio.lnk
2021-02-19 19:26 - 2021-02-19 19:26 - 000000000 ____D C:\ProgramData\obs-studio-hook
2021-02-19 19:26 - 2021-02-19 19:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2021-02-19 19:26 - 2021-02-19 19:26 - 000000000 ____D C:\Program Files\obs-studio
2021-02-19 19:20 - 2021-02-19 19:21 - 075607864 _____ (obsproject.com) C:\Users\Pavel\Desktop\OBS-Studio-26.1.1-Full-Installer-x64.exe
2021-02-14 16:23 - 2021-02-14 16:23 - 000001112 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer.lnk
2021-02-14 16:23 - 2021-02-14 16:23 - 000001100 _____ C:\ProgramData\Desktop\TeamViewer.lnk
2021-02-14 16:22 - 2021-02-21 16:03 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-02-14 11:29 - 2021-02-14 11:29 - 029352480 _____ (TeamViewer Germany GmbH) C:\Users\Pavel\Desktop\TeamViewer_Setup1.exe
2021-02-12 14:16 - 2021-02-12 14:16 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-02-12 14:16 - 2021-02-12 14:16 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-02-12 14:16 - 2021-02-12 14:16 - 001314112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-02-12 14:16 - 2021-02-12 14:16 - 000010892 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-02-12 14:15 - 2021-02-12 14:15 - 000231232 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-02-05 06:25 - 2021-02-05 06:25 - 000003472 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-02-05 06:25 - 2021-02-05 06:25 - 000003348 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-02-22 19:01 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-02-22 18:51 - 2020-11-10 06:43 - 000000000 ____D C:\Users\Pavel
2021-02-22 18:40 - 2020-11-10 16:58 - 000004210 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{62F3AFFB-7B4D-4381-A384-3DD0A4C25656}
2021-02-22 18:36 - 2020-11-10 16:37 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-02-22 17:17 - 2020-01-18 17:43 - 000000000 ____D C:\Users\Pavel\AppData\Roaming\TeamViewer
2021-02-22 16:00 - 2015-03-15 14:15 - 000000000 ____D C:\AdwCleaner
2021-02-22 15:58 - 2020-09-30 11:25 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-02-21 21:10 - 2021-01-05 19:25 - 000000000 ____D C:\Users\Pavel\AppData\Roaming\WhatsApp
2021-02-21 16:11 - 2020-02-02 19:59 - 000000000 ____D C:\Users\Pavel\AppData\Local\Facebook
2021-02-21 15:57 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-02-21 10:45 - 2020-11-11 16:37 - 000000000 ____D C:\Users\Pavel\Desktop\Vína 2019 na odesílání
2021-02-20 20:20 - 2020-03-15 13:18 - 000000000 ____D C:\Users\Pavel\AppData\Roaming\vlc
2021-02-20 11:39 - 2020-01-18 14:29 - 000000000 ____D C:\Users\Pavel\AppData\Local\AMD
2021-02-20 11:17 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-02-20 11:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-02-20 05:30 - 2020-11-10 16:58 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-02-19 20:01 - 2020-01-18 16:30 - 000000000 ____D C:\Users\Pavel\AppData\Local\D3DSCache
2021-02-19 20:00 - 2021-01-05 19:25 - 000000000 ____D C:\Users\Pavel\AppData\Local\SquirrelTemp
2021-02-19 16:02 - 2021-01-07 18:39 - 000000000 ____D C:\Users\Pavel\AppData\Local\WhatsApp
2021-02-19 15:29 - 2020-04-26 14:44 - 000002419 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-02-19 04:03 - 2020-02-08 19:37 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-02-17 12:51 - 2020-01-18 16:23 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-02-14 16:23 - 2020-01-18 17:43 - 000000000 ____D C:\Users\Pavel\AppData\Local\TeamViewer
2021-02-14 11:10 - 2020-01-24 13:42 - 000000000 ____D C:\Users\Pavel\AppData\Local\CrashDumps
2021-02-12 15:26 - 2020-01-18 16:19 - 000000000 ____D C:\ProgramData\AVAST Software
2021-02-12 14:46 - 2020-11-10 16:53 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-02-12 14:46 - 2019-12-07 15:41 - 000716602 _____ C:\WINDOWS\system32\perfh005.dat
2021-02-12 14:46 - 2019-12-07 15:41 - 000144780 _____ C:\WINDOWS\system32\perfc005.dat
2021-02-12 14:41 - 2020-11-10 16:58 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-02-12 14:41 - 2020-11-10 16:37 - 000538560 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-02-12 14:41 - 2020-11-10 16:37 - 000008192 ___SH C:\DumpStack.log.tmp
2021-02-12 14:40 - 2020-01-18 13:22 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2021-02-12 14:40 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-02-12 14:39 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-02-12 14:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2021-02-12 14:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-02-12 14:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-02-12 14:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Keywords
2021-02-12 14:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-02-12 14:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-02-12 14:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-02-12 14:39 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-02-12 14:39 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2021-02-12 14:23 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-02-12 14:15 - 2015-03-07 15:40 - 000413690 __RSH C:\bootmgr
2021-02-12 14:00 - 2020-11-09 06:16 - 000000000 ___HD C:\$WinREAgent
2021-02-11 12:20 - 2020-11-10 16:58 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-02-11 11:58 - 2020-11-30 06:34 - 000003490 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6b7792cc8d8ce
2021-02-11 11:58 - 2020-11-10 16:58 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-02-10 18:54 - 2020-01-18 16:26 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-02-10 18:51 - 2020-01-18 16:26 - 130141752 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-02-05 20:04 - 2020-09-30 11:25 - 000734016 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll
2021-02-05 20:03 - 2020-09-30 11:25 - 000470848 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll
2021-02-03 19:43 - 2020-03-27 17:18 - 000000000 ____D C:\Users\Pavel\Desktop\FARMERAMA
2021-01-28 18:54 - 2020-01-18 14:29 - 000000000 ____D C:\Users\Pavel\AppData\Local\Packages

==================== Files in the root of some directories ========

2020-01-19 10:31 - 2020-01-19 10:31 - 000000003 _____ () C:\Users\Pavel\AppData\Local\updater.log
2020-01-19 10:31 - 2020-01-19 10:34 - 000000425 _____ () C:\Users\Pavel\AppData\Local\UserProducts.xml

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================