﻿Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-02-2021
Ran by pocky (administrator) on POCKY-PC (Gigabyte Technology Co., Ltd. GA-78LMT-USB3) (13-03-2021 10:06:56)
Running from C:\Users\pocky\Downloads
Loaded Profiles: pocky
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <10>

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\89.0.4389.90\Installer\chrmstp.exe [2021-03-13] (Google LLC -> Google LLC)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {6CE8CA46-208B-4BEB-84A9-A441780C32F6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2021-03-13] (Google Inc -> Google Inc.)
Task: {B26B8836-2E25-462D-9199-58261F98384E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2021-03-13] (Google Inc -> Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{F0716FD2-E1BA-49BA-9D01-6D22FCE096B0}: [DhcpNameServer] 192.168.0.1

Chrome: 
=======
CHR Profile: C:\Users\pocky\AppData\Local\Google\Chrome\User Data\Default [2021-03-13]
CHR HomePage: Default -> hxxp://mail.ru/cnt/10445?gp=855100
CHR StartupUrls: Default -> "hxxp://mail.ru/cnt/10445?gp=855100"
CHR Extension: (Prezentace) - C:\Users\pocky\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-03-13]
CHR Extension: (Dokumenty) - C:\Users\pocky\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-03-13]
CHR Extension: (Disk Google) - C:\Users\pocky\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-03-13]
CHR Extension: (YouTube) - C:\Users\pocky\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-03-13]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\pocky\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-03-13]
CHR Extension: (Tabulky) - C:\Users\pocky\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-03-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\pocky\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\pocky\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-03-13]
CHR Extension: (Gmail) - C:\Users\pocky\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-03-13]
CHR Extension: (Chrome Media Router) - C:\Users\pocky\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-13]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 atikmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [5020672 2009-07-13] (Microsoft Windows -> ATI Technologies Inc.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-13 10:06 - 2021-03-13 10:07 - 000004962 _____ C:\Users\pocky\Downloads\FRST.txt
2021-03-13 10:06 - 2021-03-13 10:07 - 000000000 ____D C:\FRST
2021-03-13 10:06 - 2021-03-13 10:06 - 002301440 _____ (Farbar) C:\Users\pocky\Downloads\FRST64.exe
2021-03-13 10:01 - 2021-03-13 10:01 - 000002246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-03-13 10:01 - 2021-03-13 10:01 - 000002205 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2021-03-13 10:01 - 2021-03-13 10:01 - 000000000 ____D C:\Program Files\Google
2021-03-13 09:43 - 2021-03-13 10:03 - 000000000 ____D C:\Users\pocky\AppData\Local\Google
2021-03-13 09:43 - 2021-03-13 09:44 - 000003386 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-03-13 09:43 - 2021-03-13 09:44 - 000003258 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-03-13 09:43 - 2021-03-13 09:44 - 000000000 ____D C:\Program Files (x86)\Google
2021-03-13 09:34 - 2010-12-29 03:45 - 000412776 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2021-03-13 09:34 - 2010-12-29 03:45 - 000107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2021-03-13 09:34 - 2010-12-29 03:45 - 000074272 _____ C:\Windows\system32\RtNicProp64.dll
2021-03-13 09:33 - 2021-03-13 09:34 - 000000000 ____D C:\Program Files (x86)\Realtek
2021-03-13 09:33 - 2021-03-13 09:33 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-03-13 09:32 - 2021-03-13 09:32 - 000000000 ____D C:\SWTOOLS
2021-03-13 09:30 - 2021-03-13 09:30 - 000001447 _____ C:\Users\pocky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2021-03-13 09:30 - 2021-03-13 09:30 - 000001413 _____ C:\Users\pocky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2021-03-13 09:29 - 2021-03-13 09:30 - 000000000 ____D C:\Users\pocky
2021-03-13 09:29 - 2021-03-13 09:29 - 000000020 ___SH C:\Users\pocky\ntuser.ini
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\Users\pocky\Šablony
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\Users\pocky\Soubory cookie
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\Users\pocky\Poslední
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\Users\pocky\Okolní tiskárny
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\Users\pocky\Okolní síť
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\Users\pocky\Nabídka Start
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\Users\pocky\Dokumenty
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\Users\pocky\Documents\Obrázky
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\Users\pocky\Documents\Hudba
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\Users\pocky\Documents\Filmy
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\Users\pocky\Data aplikací
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\Users\pocky\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\Users\pocky\AppData\Local\Data aplikací
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\Users\Default\Šablony
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\Users\Default\Soubory cookie
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\Users\Default\Poslední
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\Users\Default\Okolní tiskárny
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\Users\Default\Okolní síť
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\Users\Default\Nabídka Start
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\Users\Default\Dokumenty
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\Users\Default\Documents\Obrázky
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\Users\Default\Documents\Hudba
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\Users\Default\Documents\Filmy
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\Users\Default\Data aplikací
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\ProgramData\Šablony
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\ProgramData\Plocha
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\ProgramData\Oblíbené položky
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\ProgramData\Nabídka Start
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\ProgramData\Dokumenty
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\ProgramData\Documents\Obrázky
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\ProgramData\Documents\Hudba
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\ProgramData\Documents\Filmy
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 _SHDL C:\ProgramData\Data aplikací
2021-03-13 09:29 - 2021-03-13 09:29 - 000000000 ____D C:\Users\pocky\AppData\Local\VirtualStore
2021-03-13 09:29 - 2011-04-12 09:45 - 000000000 ____D C:\Users\pocky\AppData\Roaming\Media Center Programs
2021-03-13 09:26 - 2021-03-13 09:26 - 000001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2021-03-13 09:26 - 2021-03-13 09:26 - 000001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2021-03-13 09:25 - 2021-03-13 09:25 - 000000000 _____ C:\Windows\system32\atiicdxx.dat
2021-03-13 09:25 - 2021-03-13 09:25 - 000000000 _____ C:\Windows\ativpsrm.bin
2021-03-13 09:24 - 2021-03-13 09:24 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2021-03-13 09:22 - 2021-03-13 09:29 - 000000000 ____D C:\Windows\Panther

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-13 09:35 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2021-03-13 09:33 - 2011-04-12 09:34 - 000622422 _____ C:\Windows\system32\perfh005.dat
2021-03-13 09:33 - 2011-04-12 09:34 - 000118604 _____ C:\Windows\system32\perfc005.dat
2021-03-13 09:33 - 2009-07-14 06:13 - 001445734 _____ C:\Windows\system32\PerfStringBackup.INI
2021-03-13 09:29 - 2009-07-14 05:45 - 000020784 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-03-13 09:29 - 2009-07-14 05:45 - 000020784 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-03-13 09:29 - 2009-07-14 04:20 - 000000000 ____D C:\Program Files\Windows NT
2021-03-13 09:28 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\rescache
2021-03-13 09:27 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-03-13 09:26 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\sysprep
2021-03-13 09:23 - 2011-04-12 09:45 - 000000000 ____D C:\Windows\CSC
2021-03-13 09:23 - 2009-07-14 05:45 - 000274736 _____ C:\Windows\system32\FNTCACHE.DAT
2021-03-13 09:22 - 2009-07-14 06:32 - 000028672 _____ C:\Windows\system32\config\BCD-Template

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================