Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-10-2021
Ran by Jaroslak W10 (administrator) on DESKTOP-14SLUCN (Gigabyte Technology Co., Ltd. Z490 AORUS ELITE AC) (19-10-2021 17:24:15)
Running from C:\Users\Jaroslak W10\OneDrive\Plocha
Loaded Profiles: Jaroslak W10
Platform: Microsoft Windows 10 Pro Version 21H1 19043.1288 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Advanced Micro Devices Inc. -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ROG Armoury\Live Update\ArmouryLiveUpdate.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ROG Armoury\MacroAgent.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ROG Armoury\Mouse\ROG STRIX CARRY\P508PowerAgent.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <2>
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ROG Armoury\Live Update\LiveUpdateSyncCheck.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ROG Armoury\Protocol\AudioLEDControl\ledcontrolservice3.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.UserSessionHelper.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\ASUS_Aac_DRAM\Aac3572DramHal_x86.exe
(ASUSTeK Computer Inc. -> TODO: <Company name>) C:\Program Files (x86)\ASUS\ROG Armoury\Tools\Mutually Exclusive AURA Agent.exe
(A-Volute -> NahimicAPI) C:\Program Files\NahimicAPI\NahimicAPISvc64.exe
(A-Volute -> NahimicAPI) C:\Program Files\NahimicAPI\x86\NahimicAPISvc32.exe
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMSWCS.EXE
(GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\GIGABYTE\RGBFusion\RGBFusion.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> Gigabyte Technology CO.) C:\Program Files\GIGABYTE\Smart Backup\RPMDaemon.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngine.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGABYTE Technology Co.,Ltd.) C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\AORUS.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(KYE) [File not signed] C:\Program Files (x86)\Genius\Manticore\MTHid.exe
(Lespeed Technology Co., Ltd -> WiseCleaner.com) C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <4>
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\logi_crashpad_handler.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Jaroslak W10\AppData\Local\Microsoft\OneDrive\21.196.0921.0007\FileCoAuth.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2109.6305.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.9022.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.9022.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <7>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(ORANGE VIEW LIMITED -> iTop Inc.) C:\Program Files (x86)\iFun Screen Recorder\iScrRec.exe
(ORANGE VIEW LIMITED -> iTop Inc.) C:\Program Files (x86)\iTop Screenshot\iScrShot.exe
(ORANGE VIEW LIMITED -> iTop Inc.) C:\Program Files (x86)\iTop VPN\iTopVPN.exe
(ORANGE VIEW LIMITED -> iTop Inc.) C:\Program Files (x86)\iTop VPN\iTopVPNMini.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7b66b6662cf6d72b\RtkAudUService64.exe
(Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung DeX\SamsungDeX.exe
(Sony Imaging Products & Solutions Inc. -> Sony Corporation) E:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(Valve -> Valve Corporation) F:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Valve -> Valve Corporation) F:\Program Files (x86)\Steam\steam.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7b66b6662cf6d72b\RtkAudUService64.exe [1220312 2021-02-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Windows Mobile Device Center] => C:\WINDOWS\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [Asus Headset Svc64] => C:\Program Files\NahimicAPI\NahimicAPISvc64.exe [744320 2020-03-23] (A-Volute -> NahimicAPI)
HKLM\...\Run: [Asus Headset Svc32] => C:\Program Files\NahimicAPI\x86\NahimicAPISvc32.exe [583552 2020-03-23] (A-Volute -> NahimicAPI)
HKLM-x32\...\Run: [Manticore] => C:\Program Files (x86)\Genius\Manticore\MThid.exe [293376 2013-10-29] (KYE) [File not signed]
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1273448 2012-04-03] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [PMBVolumeWatcher] => E:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [868328 2018-12-21] (Sony Imaging Products & Solutions Inc. -> Sony Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-06-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\RunOnce: [RPMKickstart] => C:\Program Files\GIGABYTE\Smart Backup\RPMKickstartEx.exe [2320384 2014-04-01] (TODO: <Company name>) [File not signed]
HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\GIGABYTE\AppCenter\PreRun.exe [14632 2016-02-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
HKLM-x32\...\RunOnce: [SelLed] => C:\Program Files (x86)\GIGABYTE\RGBFusion\RunLed.exe [50096 2019-04-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
HKU\S-1-5-21-2775533619-830361710-3132715996-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [123792288 2021-04-17] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-2775533619-830361710-3132715996-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5397216 2021-10-05] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-2775533619-830361710-3132715996-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35093120 2021-09-10] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2775533619-830361710-3132715996-1001\...\Run: [Samsung DeX] => C:\Program Files (x86)\Samsung\Samsung DeX\SamsungDeX.exe [10484392 2021-07-01] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
HKU\S-1-5-21-2775533619-830361710-3132715996-1001\...\Run: [Steam] => f:\Program Files (x86)\Steam\steam.exe [4267928 2021-10-13] (Valve -> Valve Corporation)
HKU\S-1-5-21-2775533619-830361710-3132715996-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-2775533619-830361710-3132715996-1004\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\jarok\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-2775533619-830361710-3132715996-1004\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\jarok\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-2775533619-830361710-3132715996-1004\...\RunOnce: [Uninstall 21.062.0328.0001\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\jarok\AppData\Local\Microsoft\OneDrive\21.062.0328.0001\amd64"
HKU\S-1-5-21-2775533619-830361710-3132715996-1004\...\RunOnce: [Uninstall 21.062.0328.0001] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\jarok\AppData\Local\Microsoft\OneDrive\21.062.0328.0001"
HKU\S-1-5-21-2775533619-830361710-3132715996-1004\...\MountPoints2: {298884b0-664e-11eb-885e-806e6f6e6963} - "G:\startdvd.exe" 
HKU\S-1-5-21-2775533619-830361710-3132715996-1008\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\kosma\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-2775533619-830361710-3132715996-1008\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\kosma\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-2775533619-830361710-3132715996-1008\...\RunOnce: [Uninstall 21.062.0328.0001\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\kosma\AppData\Local\Microsoft\OneDrive\21.062.0328.0001\amd64"
HKU\S-1-5-21-2775533619-830361710-3132715996-1008\...\RunOnce: [Uninstall 21.062.0328.0001] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\kosma\AppData\Local\Microsoft\OneDrive\21.062.0328.0001"
HKU\S-1-5-21-2775533619-830361710-3132715996-1008\...\MountPoints2: {298884b0-664e-11eb-885e-806e6f6e6963} - "G:\startdvd.exe" 
HKLM\...\Windows x64\Print Processors\Canon iP7200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBA.DLL [30208 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\Perfect PDF 9 Premium Print Processor: C:\Windows\System32\spool\prtprocs\x64\sx_p9_p.dll [264136 2021-05-03] (soft Xpansion GmbH & Co.KG -> soft Xpansion)
HKLM\...\Print\Monitors\Canon BJ Language Monitor iP7200 series: C:\WINDOWS\system32\CNMLMBA.DLL [389120 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\WINDOWS\system32\CNMN6PPM.DLL [359936 2012-06-14] (CANON INC.) [File not signed]
Startup: C:\Users\Jaroslak W10\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AORUS ENGINE.lnk [2021-02-07]
ShortcutTarget: AORUS ENGINE.lnk -> C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\autorun.exe () [File not signed]
Startup: C:\Users\Jaroslak W10\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2021-05-02]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {041636A4-FD86-4BAC-A42F-77E1B3A00CC9} - System32\Tasks\Abelssoft\Abelssoft AntiRansomware_82 => e:\Program Files (x86)\ErpresservirenStopper\AbLauncher.exe
Task: {07163770-F55A-43DE-817C-8C75C83ACECC} - System32\Tasks\iTop Screenshot Update => C:\Program Files (x86)\iTop Screenshot\AutoUpdate.exe [2800640 2021-07-21] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {0C7BD36E-790E-4E13-BDF9-013EB3B7387A} - System32\Tasks\NCH Software\VideoPadCacheDeleteAll => C:\Program Files (x86)\NCH Software\VideoPad\VideoPad.exe [10993640 2021-09-30] (NCH Software, Inc. -> NCH Software)
Task: {11A00D5F-9184-47FC-8643-AE8085CB7161} - System32\Tasks\Wise Turbo Checker.job => C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe [6768984 2021-03-03] (Lespeed Technology Co., Ltd -> wisecleaner.com)
Task: {18AFF779-B097-494D-BF83-CD1D18D80438} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {27CD8945-073E-4899-84BD-98E2EA2E7004} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1715672 2021-06-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {2936EF95-78FF-44E5-9891-C9FB2365E4B6} - System32\Tasks\ASUS\ArmouryLiveUpdate => C:\Program Files (x86)\ASUS\ROG Armoury\Live Update\ArmouryLiveUpdate.exe [1462760 2020-03-31] (ASUSTeK Computer Inc. -> )
Task: {2A85615A-B26C-4F89-BB73-FE27014858B8} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [269272 2021-06-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {3828CCCB-C98B-4DFB-BABA-3C5F2FC5FD46} - System32\Tasks\iTop Screen Recorder Startup => C:\Program Files (x86)\iFun Screen Recorder\IScrRec.exe [7315456 2021-07-26] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {388BD003-4CE7-4113-9676-A19271938A0D} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [110424 2021-10-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {42415169-AF3D-4560-9C78-9C7A12813EAD} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21978504 2021-10-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {4A3EDB7D-F7E3-4A88-9BDA-DC197C560BC1} - System32\Tasks\NCH Software\VideoPadSevenDays => C:\Program Files (x86)\NCH Software\VideoPad\VideoPad.exe [10993640 2021-09-30] (NCH Software, Inc. -> NCH Software)
Task: {4B31D836-F46E-41A0-85EE-4B1B33D2F866} - System32\Tasks\iTop Screenshot Startup => C:\Program Files (x86)\iTop Screenshot\iScrShot.exe [7622656 2021-07-21] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {4C5EBED7-C80E-4ED2-8286-56544189F036} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [45540760 2021-01-13] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {4CF6476B-0CAC-471C-A423-AB4865260525} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1715672 2021-06-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {511360E4-7BA0-4FAF-9EDC-61077772A553} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [680888 2021-10-10] (Mozilla Corporation -> Mozilla Foundation)
Task: {527954F0-AC6E-4785-B287-17A5B82B03AD} - System32\Tasks\iTop Screen Recorder Update => C:\Program Files (x86)\iFun Screen Recorder\AutoUpdate.exe [2815488 2021-07-01] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {543B0E51-642F-4021-8B1F-8DFE2AD6B781} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-03-16] (Google LLC -> Google LLC)
Task: {5763B3F6-C1A6-476B-8EA8-FE67F0ABCBD1} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [233184 2020-12-16] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {5905C11F-38C5-4D6B-8FAA-DDBE58D61E4E} - System32\Tasks\iTop Screen Recorder SkipUAC (Jaroslak W10) => C:\Program Files (x86)\iFun Screen Recorder\IScrRec.exe [7315456 2021-07-26] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {64231F8C-2E3E-4AC1-8F37-2ABAFE07F54C} - System32\Tasks\SIV-VGA => C:\Program Files (x86)\GIGABYTE\SIV\sensord.exe [252984 2021-01-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {67294774-87CD-4052-8F29-128CC4302307} - System32\Tasks\iTopVPN_SkipUAC_Jaroslak W10 => C:\Program Files (x86)\iTop VPN\iTopVPN.exe [5808128 2021-08-17] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {68B49E55-DAA1-4E36-952D-48B6F9E98B22} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-09-10] (Piriform Software Ltd -> Piriform)
Task: {6A26FE3F-8351-4D1F-A3E1-A267302DE107} - System32\Tasks\SIV => C:\Program Files (x86)\GIGABYTE\SIV\thermald.exe [387992 2021-01-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {6C334BF0-C243-4F67-B2CC-074AB86334F3} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {6CE2FE96-837B-4E86-9DCC-DB28696CFE4B} - System32\Tasks\StartAUEP => C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe [622040 2021-06-17] (Advanced Micro Devices Inc. -> AMD)
Task: {70119299-1CEE-4F59-BC7B-527F9398FFA3} - System32\Tasks\iTop Screen Recorder UAC => C:\Program Files (x86)\iFun Screen Recorder\iScrInit.exe [952832 2021-07-16] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {74FE452D-0A22-4E1F-BB0C-DB1306EA7EC9} - System32\Tasks\EasyTune => C:\Program Files (x86)\GIGABYTE\EasyTune\etinit.exe [15768 2021-01-14] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {7BA1C679-C26C-4BFC-B1A4-E741CDE518AE} - System32\Tasks\StartCNBM => C:\Program Files\AMD\CNext\CNext\cncmd.exe [63448 2021-06-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {7CF52ABB-3F1D-4CB7-B9F6-8DE85BD5F6BC} - System32\Tasks\NCH Software\GoldenSevenDays => C:\Program Files (x86)\NCH Software\Golden\Golden.exe [1702480 2018-10-18] (NCH Software Pty Ltd -> NCH Software)
Task: {7DD37AE2-1E59-40EF-93B6-373764482E51} - System32\Tasks\ASUS\ledcontrolservice3 => C:\Program Files (x86)\ASUS\ROG Armoury\Protocol\AudioLEDControl\ledcontrolservice3.exe [2557744 2020-01-08] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {84C6A650-3AF6-4D18-95AB-D705582B0D2E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [29155968 2021-09-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {873B03F5-B2F4-488D-9FB0-F2D89C992B5E} - System32\Tasks\Launcher GIGABYTE AORUS GRAPHICS ENGINE => C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\AORUS.exe [33937464 2021-02-03] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGABYTE Technology Co.,Ltd.)
Task: {8CC54814-7148-4101-8B28-7ABA9F86AC48} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [63448 2021-06-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {9182546F-73E9-45FE-A426-1740B2B36989} - System32\Tasks\iTopVPN_Scheduler_Jaroslak W10 => C:\Program Files (x86)\iTop VPN\iTopVPN.exe [5808128 2021-08-17] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {93879DE0-99C5-4FC0-8290-20CC79C65A7D} - System32\Tasks\CCleanerSkipUAC - Jaroslak W10 => C:\Program Files\CCleaner\CCleaner.exe [29155968 2021-09-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {98336519-D1BF-48BB-B3E9-8D4951B052CE} - System32\Tasks\EasyTune 1 => C:\Program Files (x86)\GIGABYTE\EasyTune\etocfile.exe [18328 2021-01-14] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {99BBC9C9-EC16-4EEE-A267-59DD144953C9} - System32\Tasks\ASUS\P508PowerAgent => C:\Program Files (x86)\ASUS\ROG Armoury\Mouse\ROG STRIX CARRY\P508PowerAgent.exe [51120 2019-11-01] (ASUSTeK Computer Inc. -> )
Task: {9CF08BE0-7709-42B9-B85D-7C56A9494CEF} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1715672 2021-06-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {A2D4FAD7-2380-4D14-AA72-2CBBE4AF811D} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [2025488 2021-01-22] (ASUSTeK Computer Inc. -> ASUS)
Task: {A9E16025-1B66-4B94-9029-016E7A85B7A9} - System32\Tasks\iTopVPN_Update_Jaroslak W10 => C:\Program Files (x86)\iTop VPN\atud.exe [2956800 2021-08-12] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {A9FF7A8C-DFC1-44E1-A5C4-5E0591BE8938} - System32\Tasks\ASUS\MacroAgent => C:\Program Files (x86)\ASUS\ROG Armoury\MacroAgent.exe [77960 2020-03-31] (ASUSTeK Computer Inc. -> )
Task: {ACA563E8-CD66-43F4-8300-9571F83208CA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {B82D35C6-C5FE-4DEC-9818-7F83BCDC2BDB} - System32\Tasks\Wise Care 365.job => C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe [6902576 2021-07-16] (Lespeed Technology Co., Ltd -> WiseCleaner.com)
Task: {CD1F4ED5-CC1D-4BDC-BEC3-4C15EE2E7A93} - System32\Tasks\NahimicAPISvc32Run => C:\Program Files\NahimicAPI\x86\NahimicAPISvc32.exe [583552 2020-03-23] (A-Volute -> NahimicAPI)
Task: {D6AED01D-C9D2-444C-BFF3-6C6FDC827ECE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D7349301-5EB0-43E3-8C9D-A75A04052776} - System32\Tasks\NahimicAPISvc64Run => C:\Program Files\NahimicAPI\NahimicAPISvc64.exe [744320 2020-03-23] (A-Volute -> NahimicAPI)
Task: {DCAB65AF-1523-41B4-90EB-83876CB5AF10} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-03-16] (Google LLC -> Google LLC)
Task: {DD80C0E5-FC8E-4BF2-8B12-09D8D712842E} - System32\Tasks\Uninstaller_SkipUac_Jaroslak_W10 => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: {DE398EDA-3B2F-4F98-8DC6-50E28015C2B0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DEDD8316-D54D-4300-88C3-F9B010412F21} - System32\Tasks\NCH Software\VideoPadLikeSurvey => C:\Program Files (x86)\NCH Software\VideoPad\VideoPad.exe [10993640 2021-09-30] (NCH Software, Inc. -> NCH Software)
Task: {E19BB4AB-EC08-4960-A336-70ACE3F929C3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E1BB51EE-CD17-48F3-B87F-D00312C75895} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21978504 2021-10-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {E24828DF-21B6-4E49-B48A-321CB3FDC031} - System32\Tasks\AMD ThankingURL => C:\Program Files\AMD\CIM\Bin64\Setup.exe [1126872 2021-06-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {E737A302-DDB9-4D5E-9E1E-C8D981E938A2} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [110424 2021-10-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {EB2C0ACB-C151-4484-ABEA-8323188099BC} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1d6fe77fb115b98 => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [163176 2021-02-09] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {ECA4F8B8-8915-4C3F-9193-663F59CDEF63} - System32\Tasks\NCH Software\ExpressBurnSevenDays => C:\Program Files (x86)\NCH Software\ExpressBurn\ExpressBurn.exe [2158624 2021-09-16] (NCH Software, Inc. -> NCH Software)
Task: {EFA4B7F2-6629-41A6-B10A-4CFFB3AAB966} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [163176 2021-02-09] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {F9DAF714-6F9B-4F7E-AB68-8E1E75D6461C} - System32\Tasks\iTop Screenshot SkipUAC (Jaroslak W10) => C:\Program Files (x86)\iTop Screenshot\iScrShot.exe [7622656 2021-07-21] (ORANGE VIEW LIMITED -> iTop Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\..\Interfaces\{56087f3d-3fdd-40c9-a5dc-b9211e2687e1}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{cefab0fe-28e1-47aa-808f-0c9c7aa5e46c}: [DhcpNameServer] 192.168.1.1

Edge: 
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Jaroslak W10\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-17]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Jaroslak W10\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-10-17]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

FireFox:
========
FF DefaultProfile: yjp2rqwn.default
FF ProfilePath: C:\Users\Jaroslak W10\AppData\Roaming\Mozilla\Firefox\Profiles\05ewzbfw.default-release-1 [2021-10-18]
FF user.js: detected! => C:\Users\Jaroslak W10\AppData\Roaming\Mozilla\Firefox\Profiles\05ewzbfw.default-release-1\user.js [2021-04-07]
FF ProfilePath: C:\Users\Jaroslak W10\AppData\Roaming\Mozilla\Firefox\Profiles\yjp2rqwn.default [2021-08-09]
FF user.js: detected! => C:\Users\Jaroslak W10\AppData\Roaming\Mozilla\Firefox\Profiles\yjp2rqwn.default\user.js [2021-04-07]
FF ProfilePath: C:\Users\Jaroslak W10\AppData\Roaming\Mozilla\Firefox\Profiles\2fdrg39k.default-release [2021-10-19]
FF user.js: detected! => C:\Users\Jaroslak W10\AppData\Roaming\Mozilla\Firefox\Profiles\2fdrg39k.default-release\user.js [2021-04-07]
FF Session Restore: Mozilla\Firefox\Profiles\2fdrg39k.default-release -> is enabled.
FF Notifications: Mozilla\Firefox\Profiles\2fdrg39k.default-release -> hxxps//geek.wish.com; hxxps//www.wish.com; hxxps//www.chip.cz; hxxps//www.ashampoo.com; hxxps//aukro.cz
FF Plugin: @java.com/DTPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\dtplugin\npDeployJava1.dll [2021-07-28] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\plugin2\npjp2.dll [2021-07-28] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.) [File not signed]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
S3 AppleChargerSrv; C:\WINDOWS\System32\AppleChargerSrv.exe [31272 2010-04-06] (Giga-Byte Technology -> )
R2 ArmouryCrateService; C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe [344184 2021-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [163176 2021-02-09] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [313008 2020-12-17] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [163176 2021-02-09] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S2 AUEPLauncher; C:\Program Files\AMD\CIM\..\Performance Profile Client\AUEPDU.exe [510936 2021-06-17] (Advanced Micro Devices Inc. -> AMD)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9251696 2021-10-18] (Microsoft Corporation -> Microsoft Corporation)
R2 EasyTuneEngineService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [142904 2021-02-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S2 gadjservice; C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe [18944 2021-04-08] () [File not signed]
S2 Gservice; C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe [19888 2016-12-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft)
S3 HwmRecordService; C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe [128920 2021-01-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140456 2012-03-28] (Canon Inc. -> )
R3 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10605472 2021-04-17] (Logitech Inc -> Logitech, Inc.)
R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [3053656 2021-01-11] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
S2 OcButtonService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe [125664 2020-12-16] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 PMBDeviceInfoProvider; E:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [493544 2018-12-21] (Sony Imaging Products & Solutions Inc. -> Sony Corporation)
R2 RapiMgr; C:\WINDOWS\WindowsMobile\rapimgr.dll [225672 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
S3 ROG Live Service; C:\Program Files (x86)\ASUS\ROG Live Service\ROGLiveService.exe [5463128 2021-01-18] (ASUSTEK COMPUTER INCORPORATION -> ASUSTek COMPUTER INC.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5414976 2021-10-14] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [183816 2020-12-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2020-11-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [919992 2020-11-26] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
S3 SXDS10; C:\Program Files (x86)\Common Files\soft Xpansion\sxds10.exe [234824 2021-05-03] (soft Xpansion GmbH & Co.KG -> soft Xpansion)
S2 WcesComm; C:\WINDOWS\WindowsMobile\wcescomm.dll [443784 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\NisSrv.exe [2855512 2021-10-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MsMpEng.exe [128392 2021-10-14] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 WiseBootAssistant; C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe [662472 2020-12-04] (Lespeed Technology Co., Ltd -> WiseCleaner.com)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [40512 2021-06-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [49448 2016-08-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_8e2568524f674315\amdsafd.sys [100768 2021-03-29] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 AmdTools64; C:\WINDOWS\System32\drivers\AmdTools64.sys [63392 2020-06-16] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0372232.inf_amd64_1e947f831d2ae36a\B372131\amdkmdag.sys [80502200 2021-10-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R1 AppleCharger; C:\WINDOWS\System32\DRIVERS\AppleCharger.sys [22240 2013-10-28] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [33832 2019-05-02] (ASUSTeK Computer Inc. -> )
R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [43920 2020-12-17] (ASUSTeK Computer Inc. -> )
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [161288 2020-12-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 etocdrv; C:\WINDOWS\etocdrv.sys [15584 2013-10-31] (GIGA-BYTE TECHNOLOGY CO., LTD. -> Giga-Byte Technology CO., LTD.)
R3 gdrv2; C:\Windows\gdrv2.sys [32600 2021-02-04] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R3 gdrv3; C:\WINDOWS\gdrv3.sys [36352 2021-05-07] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R1 GLCKIO2; C:\Windows\system32\drivers\GLCKIO2.sys [29368 2019-04-24] (ASUSTeK Computer Inc. -> )
R2 LGHUBTemperatureService; C:\Program Files\LGHUB\logi_core_temp.sys [22864 2021-04-17] (Logitech Inc -> Logitech)
R3 logi_audio_surround; C:\WINDOWS\system32\drivers\logi_audio_surround.sys [43856 2021-03-24] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [37200 2021-03-24] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [25928 2021-03-24] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66896 2021-03-24] (Logitech Inc -> Logitech)
S1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [168968 2020-12-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [45064 2020-12-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S1 UsbCharger; C:\WINDOWS\System32\DRIVERS\UsbCharger.sys [22240 2013-10-24] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-10-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [434424 2021-10-14] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-10-14] (Microsoft Windows -> Microsoft Corporation)
S3 WiseRegNotify; C:\WINDOWS\WiseRegNotify.sys [51272 2021-06-13] (Beijing Lang Xingda Network Technology Co., Ltd -> WiseCleaner.com)
U3 avgbdisk; no ImagePath
S3 igfx; \SystemRoot\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_65f8df980f884228\igdkmd64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-10-19 17:17 - 2021-10-19 17:17 - 000003132 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2021-10-19 17:17 - 2021-10-19 17:17 - 000003092 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2021-10-18 22:22 - 2021-10-18 22:22 - 001770744 _____ C:\Users\Jaroslak W10\Downloads\SteamSetup(3).exe
2021-10-18 22:22 - 2021-10-18 22:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2021-10-17 23:01 - 2021-10-17 23:01 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\Ashampoo
2021-10-17 22:59 - 2021-10-17 22:59 - 064918320 _____ (Ashampoo GmbH & Co. KG ) C:\Users\Jaroslak W10\Downloads\ashampoo_burning_studio_free_24045.exe
2021-10-17 22:54 - 2021-10-17 22:54 - 000001349 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoPad Video Editor.lnk
2021-10-17 22:54 - 2021-10-17 22:54 - 000000000 ____D C:\Users\Jaroslak W10\NCH Software Suite
2021-10-17 22:47 - 2021-10-17 22:47 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\Glorylogic
2021-10-17 22:47 - 2021-10-17 22:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ISO Workshop
2021-10-17 22:45 - 2021-10-17 22:45 - 004556376 _____ (Glorylogic ) C:\Users\Jaroslak W10\Downloads\isoworkshop_10.6.exe
2021-10-17 22:27 - 2021-10-17 22:27 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVStoDVD
2021-10-17 22:27 - 2021-10-17 22:27 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AviSynth
2021-10-17 22:27 - 2021-10-17 22:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AviSynth
2021-10-17 22:27 - 2021-10-17 22:27 - 000000000 ____D C:\Program Files (x86)\AviSynth
2021-10-17 22:26 - 2021-10-17 22:26 - 000002173 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Suite.lnk
2021-10-17 22:26 - 2021-10-17 22:26 - 000001283 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Express Burn Disc Burning Software.lnk
2021-10-17 21:31 - 2021-10-17 21:31 - 000980000 _____ (NCH Software) C:\Users\Jaroslak W10\Downloads\ExpressBurnDiscBurner.exe
2021-10-17 19:41 - 2021-10-17 19:42 - 000000000 ____D C:\Program Files (x86)\AVStoDVD
2021-10-17 19:40 - 2021-10-17 19:40 - 056934612 _____ C:\Users\Jaroslak W10\Downloads\AVStoDVD_286_Install.exe
2021-10-16 17:28 - 2021-10-16 17:28 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free MP3 CD Ripper
2021-10-16 17:27 - 2021-10-16 17:27 - 001506553 _____ C:\Users\Jaroslak W10\Downloads\FMCRSetup.exe
2021-10-16 17:21 - 2021-10-16 17:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Radio Profesional
2021-10-16 17:18 - 2021-10-17 22:54 - 000000000 ____D C:\WINDOWS\system32\Tasks\NCH Software
2021-10-16 17:18 - 2021-10-17 22:54 - 000000000 ____D C:\Program Files (x86)\NCH Software
2021-10-16 17:18 - 2021-10-17 18:58 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\NCH Software
2021-10-16 17:18 - 2021-10-16 17:18 - 000001229 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Golden Records Vinyl to CD Converter.lnk
2021-10-16 17:17 - 2021-10-16 17:17 - 000791120 _____ (NCH Software) C:\Users\Jaroslak W10\Downloads\grsetup.exe
2021-10-16 16:57 - 2021-10-16 16:57 - 001867256 _____ (Radek Hemelík ) C:\Users\Jaroslak W10\Downloads\cdrsetup.exe
2021-10-16 16:17 - 2021-10-16 18:05 - 1992602014 _____ C:\Users\Jaroslak W10\Downloads\Riddick 2013 CZ.avi
2021-10-14 22:40 - 2021-10-14 22:40 - 000000000 ____D C:\WINDOWS\Tasks\ImCleanDisabled
2021-10-14 20:53 - 2021-10-14 20:53 - 001823296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-10-14 20:53 - 2021-10-14 20:53 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-10-14 20:53 - 2021-10-14 20:53 - 000706536 _____ C:\WINDOWS\system32\TextShaping.dll
2021-10-14 20:53 - 2021-10-14 20:53 - 000611960 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-10-14 20:53 - 2021-10-14 20:53 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-10-14 20:53 - 2021-10-14 20:53 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-10-14 20:53 - 2021-10-14 20:53 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-10-14 20:53 - 2021-10-14 20:53 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-10-14 20:53 - 2021-10-14 20:53 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2021-10-14 20:53 - 2021-10-14 20:53 - 000203264 _____ C:\WINDOWS\system32\uwfcfgmgmt.dll
2021-10-14 20:53 - 2021-10-14 20:53 - 000158208 _____ C:\WINDOWS\system32\uwfcsp.dll
2021-10-14 20:53 - 2021-10-14 20:53 - 000098304 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-10-14 20:53 - 2021-10-14 20:53 - 000040960 _____ C:\WINDOWS\system32\uwfservicingapi.dll
2021-10-14 20:53 - 2021-10-14 20:53 - 000011495 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-10-14 20:53 - 2021-10-14 20:53 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2021-10-14 20:53 - 2021-10-14 20:53 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdxm.ocx
2021-10-14 20:49 - 2021-10-14 20:49 - 000000000 ___HD C:\$WinREAgent
2021-10-13 01:08 - 2021-10-13 01:08 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-10-13 01:06 - 2021-10-13 01:06 - 024933720 _____ C:\WINDOWS\system32\Drivers\Netwfw10.dat
2021-10-13 01:06 - 2021-10-13 01:06 - 005162048 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\Netwtw10.sys
2021-10-13 01:06 - 2021-10-13 01:06 - 001545392 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorAC.sys
2021-10-13 01:06 - 2021-10-13 01:06 - 001529408 _____ (Intel Corporation) C:\WINDOWS\system32\IntelIHVRouter08.dll
2021-10-13 01:06 - 2021-10-13 01:06 - 000028336 _____ (Intel Corporation) C:\WINDOWS\system32\RstMwEventLogMsg.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 084037048 _____ C:\WINDOWS\system32\amd_comgr.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 069799872 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdhip64.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 069075920 _____ C:\WINDOWS\SysWOW64\amd_comgr32.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 058410136 _____ C:\WINDOWS\system32\amdxc64.so
2021-10-13 01:03 - 2021-10-13 01:03 - 003471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2021-10-13 01:03 - 2021-10-13 01:03 - 003437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2021-10-13 01:03 - 2021-10-13 01:03 - 001860048 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-10-13 01:03 - 2021-10-13 01:03 - 001860048 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-10-13 01:03 - 2021-10-13 01:03 - 001839056 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 001688768 _____ (AMD) C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 001527760 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiacm64.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 001439680 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-10-13 01:03 - 2021-10-13 01:03 - 001439680 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-10-13 01:03 - 2021-10-13 01:03 - 001385936 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 001385936 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 001367608 _____ (AMD) C:\WINDOWS\SysWOW64\amf-mft-mjpeg-decoder32.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 001106552 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 001106552 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000959232 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000959232 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000932792 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000839120 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2021-10-13 01:03 - 2021-10-13 01:03 - 000787904 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000760256 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000665040 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000562656 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2021-10-13 01:03 - 2021-10-13 01:03 - 000562656 _____ C:\WINDOWS\system32\atiapfxx.blb
2021-10-13 01:03 - 2021-10-13 01:03 - 000548288 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000548280 _____ C:\WINDOWS\system32\GameManager64.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000534936 _____ C:\WINDOWS\system32\amdmiracast.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000515512 _____ C:\WINDOWS\system32\atieah64.exe
2021-10-13 01:03 - 2021-10-13 01:03 - 000491440 _____ C:\WINDOWS\system32\dgtrayicon.exe
2021-10-13 01:03 - 2021-10-13 01:03 - 000482232 _____ C:\WINDOWS\system32\EEURestart.exe
2021-10-13 01:03 - 2021-10-13 01:03 - 000459728 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000457656 _____ C:\WINDOWS\system32\amdlogum.exe
2021-10-13 01:03 - 2021-10-13 01:03 - 000411584 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000409528 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000383952 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2021-10-13 01:03 - 2021-10-13 01:03 - 000334776 _____ C:\WINDOWS\system32\clinfo.exe
2021-10-13 01:03 - 2021-10-13 01:03 - 000251312 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000210352 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000202048 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdihk64.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000192832 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000192448 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000171968 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000169600 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdihk32.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000169392 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000157624 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000156752 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000149448 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000148944 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000139088 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000139088 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000133584 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000132024 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000129968 _____ C:\WINDOWS\system32\atidxx64.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000124968 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000124368 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000110448 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000110432 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000103864 _____ C:\WINDOWS\SysWOW64\atidxx32.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000100816 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000081856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mcl64.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000066496 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mcl32.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000061392 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000037840 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000034752 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000019312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2021-10-13 01:03 - 2021-10-13 01:03 - 000019312 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2021-10-13 00:59 - 2021-10-13 00:59 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\AWSToolkit
2021-10-12 19:46 - 2021-10-12 19:46 - 002074906 _____ C:\Users\Jaroslak W10\Downloads\Priprava indexace - Muj zivot.pdf
2021-10-10 23:32 - 2021-10-10 23:32 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-10-10 21:26 - 2021-10-14 22:17 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-10-09 23:51 - 2021-10-09 23:51 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2021-10-09 23:51 - 2021-10-09 23:51 - 000000000 ____D C:\Program Files (x86)\AGEIA Technologies
2021-10-09 23:47 - 2021-10-09 23:47 - 000003392 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2775533619-830361710-3132715996-1001
2021-10-09 23:47 - 2021-10-09 23:47 - 000002443 _____ C:\Users\Jaroslak W10\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-10-07 15:39 - 2021-10-07 15:39 - 000038339 _____ C:\Users\Jaroslak W10\Downloads\Downloads.zip
2021-10-07 15:31 - 2021-10-07 15:31 - 000024254 _____ C:\Users\Jaroslak W10\Downloads\Addition.zip
2021-10-07 15:31 - 2021-10-07 15:31 - 000014107 _____ C:\Users\Jaroslak W10\Downloads\FRST.zip
2021-10-07 15:15 - 2021-10-07 15:16 - 000093932 _____ C:\Users\Jaroslak W10\Downloads\Addition.txt
2021-10-07 15:14 - 2021-10-07 15:16 - 000067351 _____ C:\Users\Jaroslak W10\Downloads\FRST.txt
2021-10-07 15:14 - 2021-10-07 15:14 - 002308096 _____ (Farbar) C:\Users\Jaroslak W10\Downloads\FRST64.exe
2021-10-07 00:14 - 2021-10-07 00:16 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\com.n3vgames.trs19
2021-10-07 00:14 - 2021-10-07 00:14 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\N3V Games
2021-10-06 19:52 - 2021-10-06 19:52 - 000001433 _____ C:\Users\Jaroslak W10\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2021-10-06 19:51 - 2021-10-06 19:51 - 014221312 _____ C:\Users\Jaroslak W10\Downloads\WindowsPCHealthCheckSetup(1).msi
2021-10-06 19:15 - 2021-10-06 19:52 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\PCHealthCheck
2021-10-06 19:14 - 2021-10-06 19:14 - 014221312 _____ C:\Users\Jaroslak W10\Downloads\WindowsPCHealthCheckSetup.msi
2021-10-06 19:13 - 2021-10-14 22:17 - 000331752 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-10-04 11:43 - 2021-10-04 11:43 - 000024418 _____ C:\Users\Jaroslak W10\OneDrive\Dokumenty\Samolepky.xlsx
2021-10-03 16:02 - 2021-10-03 16:02 - 000001044 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z.lnk
2021-10-03 16:02 - 2021-10-03 16:02 - 000000000 ____D C:\Program Files (x86)\GPU-Z
2021-09-28 00:27 - 2021-09-28 00:27 - 000137720 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2021-09-28 00:27 - 2021-09-28 00:27 - 000113656 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2021-09-28 00:25 - 2021-09-28 00:25 - 000246200 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\AtihdWT6.sys

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-10-19 17:24 - 2021-02-09 23:03 - 000000000 ____D C:\FRST
2021-10-19 17:21 - 2021-07-17 21:46 - 000000000 ____D C:\Program Files (x86)\iTop VPN
2021-10-19 17:20 - 2021-02-21 01:17 - 000004224 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{FA5A1FBF-86CD-43C1-9B3E-2F1EA397E10D}
2021-10-19 17:20 - 2021-02-03 20:51 - 000000000 ____D C:\ProgramData\Mozilla
2021-10-19 17:19 - 2021-04-23 23:01 - 000000000 ____D C:\Program Files\CCleaner
2021-10-19 17:19 - 2021-02-03 20:51 - 000000000 ____D C:\Users\Jaroslak W10\AppData\LocalLow\Mozilla
2021-10-19 17:18 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-10-19 17:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-10-19 17:17 - 2021-03-16 18:35 - 000000000 ____D C:\Program Files (x86)\Google
2021-10-19 17:17 - 2021-02-04 03:25 - 000000000 ___RD C:\Users\Jaroslak W10\OneDrive
2021-10-19 17:16 - 2021-04-23 23:07 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\CrashDumps
2021-10-19 17:16 - 2021-02-09 02:10 - 000000000 ____D C:\Program Files\NahimicAPI
2021-10-19 17:16 - 2021-02-07 02:59 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\LGHUB
2021-10-19 17:16 - 2021-02-07 02:59 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\LGHUB
2021-10-19 01:23 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-10-18 21:43 - 2021-02-07 00:49 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-10-18 00:00 - 2021-05-14 01:41 - 000760776 _____ C:\WINDOWS\system32\perfh019.dat
2021-10-18 00:00 - 2021-05-14 01:41 - 000151484 _____ C:\WINDOWS\system32\perfc019.dat
2021-10-18 00:00 - 2020-11-19 01:55 - 002606070 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-10-18 00:00 - 2019-12-07 16:43 - 000716874 _____ C:\WINDOWS\system32\perfh005.dat
2021-10-18 00:00 - 2019-12-07 16:43 - 000145052 _____ C:\WINDOWS\system32\perfc005.dat
2021-10-18 00:00 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-10-17 23:44 - 2020-11-19 00:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-10-17 23:00 - 2021-05-23 21:57 - 000000000 ____D C:\ProgramData\Ashampoo
2021-10-17 23:00 - 2021-05-03 22:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2021-10-17 23:00 - 2021-05-03 22:33 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\Ashampoo
2021-10-17 22:55 - 2021-06-14 00:38 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\MPC-HC
2021-10-17 22:54 - 2021-02-21 01:14 - 000000000 ____D C:\Users\Jaroslak W10
2021-10-17 22:26 - 2021-09-16 19:31 - 000000000 ____D C:\ProgramData\NCH Software
2021-10-17 18:58 - 2021-02-21 01:18 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\D3DSCache
2021-10-17 18:54 - 2021-07-14 22:20 - 000000000 ____D C:\WINDOWS\system32\Tasks\Abelssoft
2021-10-16 17:46 - 2021-05-14 00:32 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\MediaMonkey5
2021-10-16 16:46 - 2021-08-08 15:54 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\audacity
2021-10-16 15:59 - 2020-11-19 01:48 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-10-14 22:41 - 2021-06-13 20:43 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\Wise Care 365
2021-10-14 22:41 - 2021-04-23 23:25 - 000000000 ____D C:\Intel
2021-10-14 22:41 - 2021-02-21 01:13 - 000008192 ___SH C:\DumpStack.log.tmp
2021-10-14 22:41 - 2020-11-19 01:46 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-10-14 22:40 - 2021-04-07 19:55 - 000000000 ____D C:\Users\Jaroslak W10\AppData\LocalLow\IObit
2021-10-14 22:40 - 2021-04-07 19:54 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\IObit
2021-10-14 22:40 - 2021-04-07 19:54 - 000000000 ____D C:\ProgramData\IObit
2021-10-14 22:40 - 2021-02-03 20:33 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2021-10-14 22:40 - 2019-12-07 11:03 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2021-10-14 22:39 - 2021-04-07 19:55 - 000000000 ____D C:\ProgramData\ProductData
2021-10-14 22:39 - 2021-04-07 19:54 - 000000000 ____D C:\Program Files (x86)\IObit
2021-10-14 22:37 - 2020-11-19 01:46 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-10-14 22:31 - 2021-04-07 21:31 - 000000000 ____D C:\Users\jarok\AppData\Roaming\IObit
2021-10-14 22:31 - 2021-04-07 21:28 - 000000000 ____D C:\Users\kosma\AppData\LocalLow\IObit
2021-10-14 22:31 - 2021-04-07 21:27 - 000000000 ____D C:\Users\kosma\AppData\Roaming\IObit
2021-10-14 22:17 - 2021-02-03 20:51 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-10-14 22:16 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-10-14 22:16 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-10-14 22:16 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-10-14 22:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-10-14 22:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-10-14 22:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-10-14 22:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-10-14 22:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-10-14 22:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-10-14 22:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-10-14 20:55 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-10-14 20:49 - 2021-02-04 23:22 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-10-14 20:46 - 2021-02-04 23:22 - 139806512 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-10-12 21:02 - 2021-02-25 00:18 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-10-12 18:01 - 2021-02-28 17:26 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\AMD_Common
2021-10-10 23:32 - 2021-02-03 20:51 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-10-09 23:47 - 2021-02-28 17:24 - 000003490 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d707de945c18ee
2021-10-09 23:47 - 2020-11-19 01:48 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-10-06 20:05 - 2021-02-03 21:07 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2021-10-05 13:35 - 2021-08-08 15:59 - 000000000 ____D C:\Program Files (x86)\iFun Screen Recorder
2021-10-04 11:43 - 2021-02-07 02:21 - 000000000 ____D C:\ProgramData\CanonIJPLM
2021-10-01 23:29 - 2021-03-16 18:35 - 000003474 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-10-01 23:29 - 2021-03-16 18:35 - 000003350 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-09-28 00:27 - 2021-02-07 00:23 - 000000000 ____D C:\WINDOWS\system32\AMD
2021-09-28 00:26 - 2021-07-30 01:07 - 000109520 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdkmpfd.sys

==================== Files in the root of some directories ========

2021-07-02 17:16 - 2021-07-02 17:16 - 000000893 _____ () C:\Users\Jaroslak W10\AppData\Local\recently-used.xbel

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================