. DěkujiScan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-10-2020
Ran by norst (administrator) on DESKTOP-EE21DUM (Micro-Star International Co., Ltd MS-7B86) (13-10-2020 19:59:34)
Running from C:\Users\norst\OneDrive\Plocha
Loaded Profiles: norst
Platform: Windows 10 Pro Version 2004 19041.508 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files (x86)\BloodyToneMaker\BloodyToneMaker\Bloody ToneMaker1.exe
() [File not signed] C:\Program Files (x86)\BloodyToneMaker\BloodyToneMaker\SDK\CM_LibraryIO.exe
(Advanced Micro Devices, Inc. -> ) C:\Program Files\AMD\Performance Profile Client\RyzenMaster\AUEPRyzenMasterAC.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPLauncher.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPUF.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0359518.inf_amd64_ddc5c961c2795261\B359297\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0359518.inf_amd64_ddc5c961c2795261\B359297\atiesrxx.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <10>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\avp.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\avpui.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.45.11001.0_x64__8wekyb3d8bbwe\GamingServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.45.11001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12010.1001.2.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [710776 2020-06-18] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-1957376853-3360443333-2721091683-1006\...\Run: [BloodyToneMaker] => C:\Program Files (x86)\BloodyToneMaker\BloodyToneMaker\Bloody ToneMaker1.exe [8555008 2017-10-16] () [File not signed]
HKU\S-1-5-21-1957376853-3360443333-2721091683-1006\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [104586376 2020-09-16] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-1957376853-3360443333-2721091683-1006\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [30870200 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5600 series: CNMLMCA.DLL
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5600 series XPS: C:\WINDOWS\system32\CNMXLMCA.DLL [408576 2014-03-18] (CANON INC.) [File not signed]
HKLM\...\Print\Monitors\Canon BJNP Port: C:\WINDOWS\system32\CNMN6PPM.DLL [375296 2014-03-17] (CANON INC.) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.75\Installer\chrmstp.exe [2020-10-08] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1C6139F8-7E9B-406C-8548-1836B74C3A25} - System32\Tasks\StartCNBM => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-09-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {1F016E36-A542-478E-9A7A-89B5EBA9E906} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [25492152 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {225495CE-5C56-443E-A764-E6701E99F488} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-09-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {22644B36-DAD9-4986-AD92-65E09EA6CDFE} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe
Task: {28C03987-0F63-4970-A105-52DCC3323688} - System32\Tasks\Opera scheduled assistant Autoupdate 1578932433 => C:\Users\norst\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\norst\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {2B39C103-4D08-40AA-892B-276F76CB0027} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {301C4F66-5C0A-464A-AFF6-EE40F6FC74ED} - System32\Tasks\Opera scheduled Autoupdate 1578932429 => C:\Users\norst\AppData\Local\Programs\Opera\launcher.exe
Task: {369DC468-1797-4EBA-9E8C-BCC404D7FDEF} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [752136 2020-10-08] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {3E5DD7C3-8654-4228-9104-3936EEA5F3AD} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe [791232 2020-06-26] (Kaspersky Lab -> AO Kaspersky Lab)
Task: {4B49EA0C-C5DB-4BC9-922F-78FEF842E710} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1645240 2020-09-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {6D446367-9A1A-4C0F-B7E2-EAF12C234087} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe
Task: {776C11D6-A312-4C06-9AB5-14F3F059EDFD} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {96750DF5-A1CF-4AD6-8D31-E90BC8718C7A} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1642672 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {9C109C0D-CC2C-4044-8CCE-090542F1316C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-01-13] (Google LLC -> Google LLC)
Task: {B4C2ECE5-F208-4D3A-A00A-FF970FDC3883} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-01-13] (Google LLC -> Google LLC)
Task: {C21542E8-1144-4B38-AC80-DF97F716F95E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {C7759254-19C3-4043-B6F6-EAEC916449D2} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1645240 2020-09-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {CCABB30C-1C33-4567-BA8C-2DC18FA66905} - System32\Tasks\AdwCleaner_onReboot => C:\Users\norst\OneDrive\Plocha\adwcleaner_8.0.6.exe
Task: {D6E559AA-1845-48BE-AE71-86F4E0655564} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1341008 2020-09-06] (Adobe Inc. -> Adobe Inc.)
Task: {E5244FD6-C3BE-400B-AF98-84FAE1A49ED1} - System32\Tasks\Microsoft Office 15 Sync Maintenance for DESKTOP-EE21DUM-norst DESKTOP-EE21DUM => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [469640 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {EBC84B1A-BA74-4C62-906E-AF7C6AE97506} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1645240 2020-09-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {ECC0B3AA-00DC-47D7-ACA2-512C712073C8} - System32\Tasks\Agent Activation Runtime\S-1-5-21-1957376853-3360443333-2721091683-1006 => C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe [13312 2020-06-12] (Microsoft Windows -> )
Task: {FB768E82-D8C8-4358-972C-D0B2EFFEB1C6} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [69304 2020-09-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll => No File
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll => No File
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{0633f68a-5932-46fa-b504-4ad5e168613f}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{07e268a3-dbf0-408d-9600-988267faa0c5}: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{7a985afa-9063-429c-a2a0-b31657f79488}: [DhcpNameServer] 192.168.0.1
Edge:
======
DownloadDir: C:\Users\norst\Downloads
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-08-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-08-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-09-11] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\norst\AppData\Local\Google\Chrome\User Data\Default [2020-10-13]
CHR DownloadDir: E:\Chrome
CHR Notifications: Default -> hxxps://aternos.org; hxxps://kfc.cz
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR NewTab: Default -> Not-active:"chrome-extension://cepmfckfppjpbkjgnpokojedlngflnca/newtab.html"
CHR Extension: (Prezentace) - C:\Users\norst\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-01-13]
CHR Extension: (Dokumenty) - C:\Users\norst\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-01-13]
CHR Extension: (Disk Google) - C:\Users\norst\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-01-13]
CHR Extension: (YouTube) - C:\Users\norst\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-01-13]
CHR Extension: (Les Háttérképek) - C:\Users\norst\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepmfckfppjpbkjgnpokojedlngflnca [2020-01-23]
CHR Extension: (Tabulky) - C:\Users\norst\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-01-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\norst\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-09-12]
CHR Extension: (Mountain Lake) - C:\Users\norst\AppData\Local\Google\Chrome\User Data\Default\Extensions\longgbnofmdadlfgpklfagfimlefidmo [2020-01-24]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\norst\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-01-13]
CHR Extension: (Gmail) - C:\Users\norst\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-01-13]
CHR Extension: (Chrome Media Router) - C:\Users\norst\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-08]
CHR HKLM\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk
CHR HKLM-x32\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169544 2020-09-06] (Adobe Inc. -> Adobe Inc.)
R2 AUEPLauncher; C:\Program Files\AMD\CIM\..\Performance Profile Client\AUEPLauncher.exe [61624 2020-09-23] (Advanced Micro Devices, Inc. -> AMD)
R2 AVP20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\avp.exe [357416 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8686928 2020-09-03] (BattlEye Innovations e.K. -> )
S4 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803952 2019-08-02] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S4 EQU8_13; C:\ProgramData\EQU8\Diabotical\bin\anticheat.x64.equ8.exe [5542592 2020-09-23] (Int3 Software AB -> Int3 Software AB)
S4 HnGEpicService; E:\Epic Games\HeroesGeneralsWWII\hngservice.exe [788776 2020-10-13] (Reto-Moto ApS -> Reto-Moto ApS)
S3 klvssbridge64_20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\x64\vssbridge64.exe [438928 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
S4 KSDE4.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe [619752 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11139720 2020-09-16] (Logitech Inc -> Logitech, Inc.)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7185288 2020-10-04] (Malwarebytes Inc -> Malwarebytes)
S3 mracsvc; C:\WINDOWS\System32\mracsvc.exe [20504728 2020-05-08] (Mail.Ru LLC -> LLC Mail.Ru)
S4 Rockstar Service; E:\RockStars Launcher\Launcher\RockstarService.exe [1629312 2020-09-30] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5097896 2020-09-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\NisSrv.exe [2496144 2020-07-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MsMpEng.exe [104192 2020-07-12] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 anvsnddrv; C:\WINDOWS\system32\drivers\anvsnddrv.sys [33872 2011-11-28] (AnvSoft Co., Ltd. -> AnvSoft Inc.)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-09-21] (Bluestack Systems, Inc -> Bluestack System Inc.)
R3 CMUAC; C:\WINDOWS\system32\DRIVERS\Headset6400x1.SYS [387072 2013-10-03] (C-MEDIA ELECTRONICS INC. -> A4Tech Inc.)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [246912 2019-02-16] (Kaspersky Lab -> AO Kaspersky Lab)
S3 EQU8_HELPER_13; C:\WINDOWS\system32\DRIVERS\EQU8_HELPER_13.sys [38032 2020-09-23] (Int3 Software AB -> )
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115600 2010-01-29] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [79768 2020-05-20] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [145504 2020-05-20] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [93312 2019-03-12] (Kaspersky Lab -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [37816 2020-05-20] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [251800 2020-08-15] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [643840 2020-06-26] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [1277704 2020-06-26] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\klids.sys [240728 2020-09-08] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [998808 2020-08-15] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [58192 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [79760 2020-05-20] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [59512 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [51328 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab)
S3 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [45904 2019-03-10] (Kaspersky Lab -> AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [48592 2018-03-16] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [256760 2020-08-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [99152 2020-06-26] (Kaspersky Lab -> AO Kaspersky Lab)
S3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [309768 2020-08-16] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [117512 2020-08-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [206888 2020-08-16] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [105600 2019-03-05] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [211048 2020-05-20] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [233368 2020-08-15] (Kaspersky Lab -> AO Kaspersky Lab)
R2 LGHUBTemperatureService; C:\ProgramData\LGHUB\depots\66043\driver_cpu_temperature\logi_core_temp.sys [25448 2020-09-16] (Logitech Inc. -> Logitech)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [38136 2020-03-25] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [26672 2020-05-21] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66808 2020-03-25] (Logitech Inc -> Logitech)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-10-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-10-04] (Malwarebytes Inc -> Malwarebytes)
S3 mracdrv; C:\WINDOWS\System32\drivers\mracdrv.sys [19736824 2020-05-08] (Mail.Ru LLC -> LLC Mail.Ru)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45976 2020-07-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [408816 2020-07-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64224 2020-07-12] (Microsoft Windows -> Microsoft Corporation)
U3 aswbdisk; no ImagePath
S3 BRDriver64_1_3_3_E02B25FC; \??\C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-10-13 19:48 - 2020-10-13 19:48 - 000000000 ____D C:\WINDOWS\pss
2020-10-13 18:38 - 2020-10-13 18:38 - 000003946 _____ C:\WINDOWS\system32\Tasks\BlueStacksHelper
2020-10-13 18:34 - 2020-10-13 18:34 - 000002045 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks Multi-Instance Manager.lnk
2020-10-13 18:34 - 2020-10-13 18:34 - 000002033 _____ C:\ProgramData\Plocha\BlueStacks Multi-Instance Manager.lnk
2020-10-13 18:34 - 2020-10-13 18:34 - 000001884 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks.lnk
2020-10-13 18:34 - 2020-10-13 18:34 - 000001872 _____ C:\ProgramData\Plocha\BlueStacks.lnk
2020-10-13 18:33 - 2020-10-13 18:34 - 000000000 ____D C:\ProgramData\BlueStacks
2020-10-13 18:33 - 2020-10-13 18:33 - 000000000 ____D C:\Program Files\BlueStacks
2020-10-13 18:31 - 2020-10-13 18:32 - 000000000 ____D C:\Users\norst\AppData\Local\BlueStacksSetup
2020-10-13 18:31 - 2020-10-13 18:32 - 000000000 ____D C:\Users\norst\AppData\Local\Bluestacks
2020-10-13 15:25 - 2020-10-13 19:39 - 000000000 ____D C:\Users\norst\AppData\Local\Roblox
2020-10-13 15:25 - 2020-10-13 15:25 - 000000096 _____ C:\Users\norst\AppData\LocalLow\rbxcsettings.rbx
2020-10-13 14:08 - 2020-10-13 19:40 - 000000000 ____D C:\ProgramData\Gaijin
2020-10-13 14:08 - 2020-10-13 14:08 - 000000000 ____D C:\Users\norst\AppData\Local\Gaijin
2020-10-13 13:48 - 2020-10-13 13:48 - 000000000 ____D C:\Games
2020-10-12 13:24 - 2020-10-12 13:24 - 000000000 ____D C:\Users\norst\AppData\LocalLow\mestiez
2020-10-11 15:46 - 2020-10-11 15:46 - 000000000 __SHD C:\found.003
2020-10-11 15:25 - 2020-10-11 15:25 - 000000000 ____D C:\Users\norst\AppData\Local\AbzuGame
2020-10-04 15:24 - 2020-10-04 15:24 - 000003304 _____ C:\WINDOWS\system32\Tasks\StartCNBM
2020-10-04 15:23 - 2020-10-04 15:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Software
2020-10-04 15:22 - 2020-10-04 15:22 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2020-10-04 15:18 - 2020-09-29 15:12 - 001754336 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-10-04 15:18 - 2020-09-29 15:12 - 001754336 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-10-04 15:18 - 2020-09-29 15:12 - 001360096 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-10-04 15:18 - 2020-09-29 15:12 - 001360096 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-10-04 15:18 - 2020-09-29 15:12 - 001048416 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-10-04 15:18 - 2020-09-29 15:12 - 001048416 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-10-04 15:18 - 2020-09-29 15:12 - 000910872 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-10-04 15:18 - 2020-09-29 15:12 - 000910872 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-10-04 15:18 - 2020-09-29 15:12 - 000762080 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2020-10-04 15:18 - 2020-09-29 15:12 - 000737504 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2020-10-04 15:18 - 2020-09-29 15:12 - 000621792 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2020-10-04 15:18 - 2020-09-29 15:12 - 000497376 _____ C:\WINDOWS\system32\GameManager64.dll
2020-10-04 15:18 - 2020-09-29 15:12 - 000493792 _____ C:\WINDOWS\system32\dgtrayicon.exe
2020-10-04 15:18 - 2020-09-29 15:12 - 000469216 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2020-10-04 15:18 - 2020-09-29 15:12 - 000456928 _____ C:\WINDOWS\system32\atieah64.exe
2020-10-04 15:18 - 2020-09-29 15:12 - 000433376 _____ C:\WINDOWS\system32\EEURestart.exe
2020-10-04 15:18 - 2020-09-29 15:12 - 000380640 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2020-10-04 15:18 - 2020-09-29 15:12 - 000352480 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2020-10-04 15:18 - 2020-09-29 15:12 - 000340192 _____ C:\WINDOWS\system32\clinfo.exe
2020-10-04 15:18 - 2020-09-29 15:12 - 000245984 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2020-10-04 15:18 - 2020-09-29 15:12 - 000213728 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2020-10-04 15:18 - 2020-09-29 15:12 - 000187616 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2020-10-04 15:18 - 2020-09-29 15:12 - 000183016 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2020-10-04 15:18 - 2020-09-29 15:12 - 000167648 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2020-10-04 15:18 - 2020-09-29 15:12 - 000167136 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2020-10-04 15:18 - 2020-09-29 15:12 - 000157408 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2020-10-04 15:18 - 2020-09-29 15:12 - 000143072 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2020-10-04 15:18 - 2020-09-29 15:12 - 000141536 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2020-10-04 15:18 - 2020-09-29 15:12 - 000136416 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2020-10-04 15:18 - 2020-09-29 15:12 - 000126176 _____ C:\WINDOWS\system32\atidxx64.dll
2020-10-04 15:18 - 2020-09-29 15:12 - 000108256 _____ C:\WINDOWS\SysWOW64\atidxx32.dll
2020-10-04 15:18 - 2020-09-29 15:12 - 000091360 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mcl64.dll
2020-10-04 15:18 - 2020-09-29 15:12 - 000076000 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mcl32.dll
2020-10-04 15:18 - 2020-09-29 15:12 - 000047328 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2020-10-04 15:18 - 2020-09-29 15:12 - 000044256 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2020-10-04 15:18 - 2020-09-29 15:12 - 000020408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2020-10-04 15:18 - 2020-09-29 15:12 - 000020408 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2020-10-04 15:18 - 2020-09-29 15:11 - 072724192 _____ C:\WINDOWS\system32\amd_comgr.dll
2020-10-04 15:18 - 2020-09-29 15:11 - 071742176 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdhip64.dll
2020-10-04 15:18 - 2020-09-29 15:11 - 060137696 _____ C:\WINDOWS\SysWOW64\amd_comgr32.dll
2020-10-04 15:18 - 2020-09-29 15:11 - 004632288 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2020-10-04 15:18 - 2020-09-29 15:11 - 004156640 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2020-10-04 15:18 - 2020-09-29 15:11 - 001345248 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2020-10-04 15:18 - 2020-09-29 15:11 - 001345248 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2020-10-04 15:18 - 2020-09-29 15:11 - 000941792 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2020-10-04 15:18 - 2020-09-29 15:11 - 000769248 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2020-10-04 15:18 - 2020-09-29 15:11 - 000554208 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmcl64.dll
2020-10-04 15:18 - 2020-09-29 15:11 - 000490208 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2020-10-04 15:18 - 2020-09-29 15:11 - 000467168 _____ C:\WINDOWS\system32\amdlogum.exe
2020-10-04 15:18 - 2020-09-29 15:11 - 000384224 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmcl32.dll
2020-10-04 15:18 - 2020-09-29 15:11 - 000380640 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2020-10-04 15:18 - 2020-09-29 15:11 - 000159280 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2020-10-04 15:18 - 2020-09-29 15:11 - 000135392 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-10-04 15:18 - 2020-09-29 15:11 - 000123104 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll
2020-10-04 15:18 - 2020-09-29 15:11 - 000121056 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-10-04 15:18 - 2020-09-29 15:11 - 000107744 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll
2020-10-04 15:18 - 2020-09-29 15:11 - 000070880 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll
2020-10-04 15:18 - 2020-09-29 15:10 - 001686632 _____ (AMD) C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll
2020-10-04 15:18 - 2020-09-29 15:10 - 001365992 _____ (AMD) C:\WINDOWS\SysWOW64\amf-mft-mjpeg-decoder32.dll
2020-10-04 15:18 - 2020-09-29 15:10 - 000547408 _____ C:\WINDOWS\system32\amdmiracast.dll
2020-10-04 15:18 - 2020-09-29 15:10 - 000136536 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2020-10-04 15:18 - 2020-09-29 15:10 - 000130856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2020-10-04 15:18 - 2020-09-29 15:10 - 000130856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2020-10-04 15:18 - 2020-09-29 15:10 - 000120880 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2020-10-04 15:18 - 2020-09-29 15:10 - 000108872 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2020-10-04 15:18 - 2020-09-29 15:10 - 000108872 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2020-10-04 15:18 - 2020-09-23 09:16 - 003471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2020-10-04 15:18 - 2020-09-23 09:16 - 003437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2020-10-04 15:18 - 2020-09-23 04:57 - 000549352 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2020-10-04 15:18 - 2020-09-23 04:57 - 000549352 _____ C:\WINDOWS\system32\atiapfxx.blb
2020-10-04 15:14 - 2020-10-04 15:14 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-10-04 15:14 - 2020-10-04 15:13 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-09-29 17:28 - 2020-09-29 17:29 - 000000000 ____D C:\Users\norst\Downloads\menyooStuff
2020-09-29 13:22 - 2020-09-29 13:22 - 000000000 ____D C:\Users\norst\OneDrive\Dokumenty\My Cheat Tables
2020-09-25 17:13 - 2020-09-25 17:13 - 000000000 __SHD C:\found.002
2020-09-25 14:29 - 2020-09-25 14:30 - 000000000 ____D C:\Users\norst\OneDrive\Dokumenty\RCT3
2020-09-25 14:29 - 2020-09-25 14:29 - 000000000 ____D C:\Users\norst\AppData\Roaming\Frontier
2020-09-25 13:26 - 2020-10-13 13:51 - 000000000 ____D C:\Users\norst\AppData\LocalLow\Heroes and Generals
2020-09-25 13:26 - 2020-09-25 13:26 - 000000000 ____D C:\Users\norst\AppData\Roaming\HeroesAndGeneralsDesktop
2020-09-24 18:14 - 2020-09-24 18:14 - 000000000 ____D C:\Users\norst\OneDrive\Dokumenty\CPY_SAVES
2020-09-24 18:14 - 2020-09-24 18:14 - 000000000 ____D C:\Users\norst\OneDrive\Dokumenty\Assassin's Creed Odyssey
2020-09-23 20:34 - 2020-09-23 20:34 - 000038032 _____ C:\WINDOWS\system32\Drivers\EQU8_HELPER_13.sys
2020-09-23 20:34 - 2020-09-23 20:34 - 000000000 ____D C:\Users\norst\AppData\Roaming\Diabotical
2020-09-23 20:34 - 2020-09-23 20:34 - 000000000 ____D C:\ProgramData\EQU8
2020-09-22 19:34 - 2020-09-22 19:34 - 000000000 __SHD C:\found.001
2020-09-22 16:48 - 2020-10-10 15:56 - 000000000 ____D C:\Users\norst\AppData\LocalLow\KingArt
2020-09-21 13:07 - 2020-09-21 13:07 - 000000000 ____D C:\Users\norst\AppData\Roaming\KF2
2020-09-20 19:05 - 2020-09-20 19:05 - 000002249 _____ C:\ProgramData\Plocha\HP DeskJet 5000 series.lnk
2020-09-20 19:05 - 2020-09-20 19:05 - 000001273 _____ C:\ProgramData\Plocha\HP DeskJet 5000 series-HP Scan.lnk
2020-09-20 19:05 - 2020-09-20 19:05 - 000001196 _____ C:\ProgramData\Plocha\Objednání spotřebního materiálu - HP DeskJet 5000 series.lnk
2020-09-20 19:01 - 2020-09-20 19:01 - 000218783 _____ C:\Users\norst\OneDrive\Dokumenty\tt.pdf
2020-09-20 18:57 - 2020-09-20 18:57 - 000068053 _____ C:\Users\norst\OneDrive\Dokumenty\ttt.pdf
2020-09-20 18:46 - 2020-09-20 18:46 - 000000000 ____D C:\Users\norst\AppData\LocalLow\Temp
2020-09-19 13:04 - 2020-09-19 13:04 - 000000000 ____D C:\Users\norst\AppData\LocalLow\South East Games
2020-09-17 10:36 - 2020-09-17 10:36 - 000000000 ____D C:\Users\norst\AppData\Roaming\CreamAPI
2020-09-17 10:36 - 2020-09-17 10:36 - 000000000 ____D C:\Users\norst\AppData\LocalLow\Milkstone Studios
2020-09-16 11:45 - 2020-09-16 11:45 - 000000650 _____ C:\ProgramData\Plocha\Logitech G HUB.lnk
2020-09-16 11:45 - 2020-09-16 11:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2020-09-16 10:46 - 2020-01-23 09:06 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts.check
2020-09-16 10:46 - 2020-01-23 09:06 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts.backup
2020-09-15 11:29 - 2020-09-15 11:36 - 000000000 ____D C:\Users\norst\AppData\Roaming\MedievalEngineers
2020-09-15 10:11 - 2020-09-15 10:11 - 000000000 ____D C:\Users\norst\AppData\Roaming\HOODLUM
2020-09-15 10:11 - 2020-09-15 10:11 - 000000000 ____D C:\Users\norst\AppData\LocalLow\Cheesecake Dev
2020-09-15 10:10 - 2020-09-15 10:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool
2020-09-13 09:34 - 2020-09-13 09:34 - 000000000 ____D C:\Users\norst\AppData\Roaming\Kalypso Media
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-10-13 19:59 - 2020-07-12 19:56 - 000000000 ____D C:\FRST
2020-10-13 19:58 - 2020-05-18 07:22 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2020-10-13 19:56 - 2020-07-06 17:58 - 000000000 ____D C:\Users\norst\AppData\Roaming\LGHUB
2020-10-13 19:56 - 2020-07-06 17:58 - 000000000 ____D C:\Users\norst\AppData\Local\LGHUB
2020-10-13 19:55 - 2020-02-05 09:53 - 000003126 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2020-10-13 19:55 - 2020-02-05 09:52 - 000003112 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2020-10-13 19:55 - 2020-01-13 13:41 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2020-10-13 19:55 - 2020-01-13 13:41 - 000008192 ___SH C:\DumpStack.log.tmp
2020-10-13 19:55 - 2020-01-13 13:41 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-10-13 19:55 - 2020-01-13 13:15 - 000000000 ____D C:\WINDOWS\ServiceState
2020-10-13 19:55 - 2020-01-13 13:15 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-10-13 19:55 - 2020-01-13 13:11 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-10-13 19:53 - 2020-01-13 13:58 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-10-13 19:53 - 2020-01-13 13:17 - 000716674 _____ C:\WINDOWS\system32\perfh005.dat
2020-10-13 19:53 - 2020-01-13 13:17 - 000144852 _____ C:\WINDOWS\system32\perfc005.dat
2020-10-13 19:53 - 2020-01-13 13:14 - 000000000 ____D C:\WINDOWS\INF
2020-10-13 19:52 - 2020-01-13 18:20 - 000000000 ____D C:\ProgramData\AVAST Software
2020-10-13 19:44 - 2020-05-18 07:08 - 000000000 ____D C:\Program Files (x86)\Steam
2020-10-13 19:43 - 2020-01-15 12:15 - 000000000 ____D C:\Users\norst\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2020-10-13 18:33 - 2020-04-24 18:16 - 000000000 ____D C:\Users\Public\BlueStacks
2020-10-13 17:03 - 2020-08-04 18:13 - 000000000 ____D C:\Users\norst\AppData\Roaming\EasyAntiCheat
2020-10-13 17:03 - 2020-02-14 15:07 - 000000000 ____D C:\Users\norst\OneDrive\Dokumenty\My Games
2020-10-13 17:01 - 2020-01-13 18:22 - 000000000 ____D C:\Users\norst\AppData\Roaming\uTorrent
2020-10-13 17:01 - 2020-01-13 18:22 - 000000000 ____D C:\Users\norst\AppData\Local\CrashDumps
2020-10-13 15:17 - 2020-01-13 13:41 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-10-13 15:16 - 2020-01-13 13:15 - 000000000 ___HD C:\Program Files\WindowsApps
2020-10-13 15:16 - 2020-01-13 13:15 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-10-13 15:13 - 2020-02-09 21:20 - 000005266 _____ C:\WINDOWS\system32\Tasks\Microsoft Office 15 Sync Maintenance for DESKTOP-EE21DUM-norst DESKTOP-EE21DUM
2020-10-13 13:44 - 2020-09-02 10:22 - 000000000 ____D C:\Users\norst\AppData\Roaming\vlc
2020-10-11 16:42 - 2020-01-13 13:56 - 000000000 ____D C:\Users\norst
2020-10-11 16:40 - 2020-03-31 16:53 - 000000000 ____D C:\Program Files\CCleaner
2020-10-11 16:39 - 2020-08-04 17:05 - 000000823 _____ C:\ProgramData\Plocha\CCleaner.lnk
2020-10-11 16:39 - 2020-03-31 16:54 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-10-11 15:25 - 2020-01-13 14:31 - 000000000 ____D C:\Users\norst\AppData\Local\UnrealEngine
2020-10-10 15:57 - 2020-09-02 10:22 - 000000876 _____ C:\ProgramData\Plocha\VLC media player.lnk
2020-10-10 15:57 - 2020-09-02 10:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2020-10-10 15:57 - 2020-01-14 13:31 - 000000000 ____D C:\WINDOWS\Minidump
2020-10-10 15:54 - 2020-05-21 07:54 - 000000000 ____D C:\Riot Games
2020-10-10 15:54 - 2020-05-21 07:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
2020-10-10 15:54 - 2020-05-21 07:53 - 000000000 ____D C:\Users\norst\AppData\Local\Riot Games
2020-10-10 15:49 - 2020-01-13 13:58 - 000000000 ____D C:\Users\norst\AppData\Local\Packages
2020-10-10 15:45 - 2020-01-13 14:00 - 000000000 ____D C:\Users\norst\AppData\Local\PlaceholderTileLogoFolder
2020-10-10 15:37 - 2020-01-13 13:11 - 000065536 _____ C:\WINDOWS\system32\config\ELAM
2020-10-09 20:32 - 2020-01-13 13:15 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-10-08 13:16 - 2020-01-13 20:16 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-10-04 15:24 - 2020-01-14 13:30 - 000000000 ____D C:\Program Files\AMD
2020-10-04 15:23 - 2020-02-05 09:52 - 000003194 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2020-10-04 15:23 - 2020-02-05 09:52 - 000003160 _____ C:\WINDOWS\system32\Tasks\StartCN
2020-10-04 15:23 - 2020-02-05 09:52 - 000003080 _____ C:\WINDOWS\system32\Tasks\StartDVR
2020-10-04 15:22 - 2020-01-13 13:41 - 000000000 ____D C:\WINDOWS\system32\AMD
2020-10-04 15:18 - 2020-01-13 14:15 - 000000000 ____D C:\AMD
2020-10-04 15:14 - 2020-08-05 19:12 - 000001993 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-10-04 15:14 - 2020-08-05 19:12 - 000001981 _____ C:\ProgramData\Plocha\Malwarebytes.lnk
2020-10-04 15:14 - 2020-01-13 13:15 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-10-04 15:13 - 2020-08-05 19:12 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-09-30 15:12 - 2020-01-14 12:50 - 000000000 ____D C:\Program Files\Rockstar Games
2020-09-30 15:12 - 2020-01-14 12:50 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2020-09-29 19:45 - 2020-08-05 18:11 - 000003402 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-09-29 19:45 - 2020-08-05 18:11 - 000003178 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-09-29 19:45 - 2020-05-18 07:23 - 000002486 _____ C:\WINDOWS\system32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901}
2020-09-29 19:45 - 2020-03-31 16:54 - 000002238 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-09-29 19:45 - 2020-02-06 17:49 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-09-29 15:11 - 2020-07-13 11:42 - 000168536 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdihk32.dll
2020-09-29 15:11 - 2020-02-05 09:51 - 001784032 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2020-09-29 15:11 - 2020-02-05 09:51 - 000199456 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdihk64.dll
2020-09-27 16:19 - 2020-04-15 12:22 - 000000000 ____D C:\Users\norst\AppData\Roaming\.minecraft
2020-09-27 15:41 - 2020-02-06 17:49 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-09-24 18:14 - 2020-01-13 13:58 - 000000000 ____D C:\Users\norst\AppData\Local\D3DSCache
2020-09-23 16:43 - 2020-07-13 11:42 - 000510368 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdfendrsr.exe
2020-09-23 16:43 - 2020-07-13 11:42 - 000088992 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdfendr.sys
2020-09-22 16:50 - 2020-05-28 13:08 - 000000000 ____D C:\Users\norst\AppData\Roaming\Goldberg SteamEmu Saves
2020-09-22 16:48 - 2020-03-30 11:23 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2020-09-21 09:37 - 2020-01-13 13:15 - 000000000 ____D C:\WINDOWS\system32\NDF
2020-09-21 09:35 - 2020-01-29 15:25 - 000000000 ____D C:\Users\norst\AppData\Local\ElevatedDiagnostics
2020-09-20 19:01 - 2020-03-02 17:04 - 000000000 ____D C:\ProgramData\HP
2020-09-18 13:04 - 2020-05-20 08:24 - 000166848 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2020-09-18 13:04 - 2020-04-15 12:37 - 001523640 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2020-09-18 13:04 - 2020-04-15 12:37 - 000204728 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameInputRedist.dll
2020-09-18 13:04 - 2020-04-15 12:37 - 000165808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameInputRedist.dll
2020-09-18 13:04 - 2020-04-15 12:37 - 000158640 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2020-09-18 13:04 - 2020-04-15 12:37 - 000150456 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll
2020-09-18 13:04 - 2020-04-15 12:37 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2020-09-18 13:04 - 2020-04-15 12:37 - 000033720 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.exe
2020-09-16 11:58 - 2020-01-13 13:58 - 000000000 ____D C:\ProgramData\Packages
2020-09-16 11:45 - 2020-08-01 14:45 - 000000000 ____D C:\Program Files\LGHUB
2020-09-15 10:10 - 2020-07-13 11:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMDBugReportTool
==================== Files in the root of some directories ========
2020-04-03 10:22 - 2020-09-10 13:22 - 000000097 _____ () C:\Users\norst\AppData\Roaming\LauncherSettings_live.cfg
2020-04-03 10:15 - 2020-04-03 10:15 - 000002513 _____ () C:\Users\norst\AppData\Roaming\TheHunterSettings_live.bin
2020-04-03 10:15 - 2020-09-10 13:09 - 000000050 _____ () C:\Users\norst\AppData\Roaming\TheHunterSettings_steam_live.cfg
2020-05-08 09:00 - 2020-05-21 19:56 - 000002448 _____ () C:\Users\norst\AppData\Local\krita-sysinfo.log
2020-05-08 09:00 - 2020-05-21 20:02 - 000001490 _____ () C:\Users\norst\AppData\Local\krita.log
2020-05-21 20:02 - 2020-05-21 20:02 - 000000039 _____ () C:\Users\norst\AppData\Local\kritadisplayrc
2020-05-08 09:00 - 2020-05-21 20:02 - 000016154 _____ () C:\Users\norst\AppData\Local\kritarc
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Přispějete na provoz fóra?