Preventivní kontrola, nemohu se dostat do EUFI
Napsal: 22 kvě 2021 10:46
Ahoj, všem. Prosím o kontrolu logů. V týdnu se přestaly točit ventilátory ve skříni. GPU ventilátor jede a reaguje i na speedfan. Ostatní ale nejedou a nehybně stojí, nejsou ani ovládat. Zkoušel jsem se dostat do UEFI, jestli není tam něco DISABLED, ale nemohu se tam pohybovat. Klávesnice USB, myš, PS2... prostě nic, Ventilátory jsou nehybné. Je to vcelku problém, protože když renderuji vizualizace, tak to pak vcelku topí a nemám jak odhánět ....
Díky
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-05-2021
Ran by Martin (administrator) on MARTIN-KUBES-PC (22-05-2021 11:42:49)
Running from G:\Programy\Diagnostika počítače
Loaded Profiles: Martin
Platform: Windows 10 Home Version 20H2 19042.985 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files (x86)\Hewlett-Packard\HP UT\bin\hppusg.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0366490.inf_amd64_c0dea8a43cb81731\B366217\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0366490.inf_amd64_c0dea8a43cb81731\B366217\atiesrxx.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ASRock Incorporation -> ) C:\Program Files (x86)\ASRock Utility\APP Shop\AsrAPPShop.exe
(Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\Martin\AppData\Local\WebEx\ciscowebexstart.exe
(Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\Martin\AppData\Local\WebEx\WebEx\Meetings\atmgr.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <40>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Martin\AppData\Local\Microsoft\BingWallpaperApp\BingWallpaperApp.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.621.4222.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.621.4222.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\NisSrv.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(SOKNO S.R.L. -> ) C:\Program Files (x86)\SpeedFan\speedfan.exe
(Spotify AB -> Spotify Ltd) C:\Users\Martin\AppData\Roaming\Spotify\Spotify.exe <6>
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Viber Media S.à r.l. -> Viber Media S.Ã r.l.) C:\Users\Martin\AppData\Local\Viber\Viber.exe
(WESTERN DIGITAL TECHNOLOGIES -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
(Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
(WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe
(WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16781824 2017-01-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2013-04-09] (Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [340440 2021-04-16] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320568 2016-09-20] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM-x32\...\Run: [WD Quick View] => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [5571944 2016-04-19] (WESTERN DIGITAL TECHNOLOGIES -> Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [DriveUtilitiesHelper] => C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe [2309008 2018-06-01] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [HPUsageTracking] => "C:\Program Files (x86)\Hewlett-Packard\HP UT\bin\hppusg.exe" "C:\Program Files (x86)\Hewlett-Packard\HP UT\"
HKU\S-1-5-21-2029197391-1874142438-1355967279-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4701888 2017-02-02] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-2029197391-1874142438-1355967279-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4087528 2021-05-19] (Valve -> Valve Corporation)
HKU\S-1-5-21-2029197391-1874142438-1355967279-1001\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [153136 2007-03-12] (Nero AG -> Nero AG)
HKU\S-1-5-21-2029197391-1874142438-1355967279-1001\...\Run: [uTorrent] => C:\Users\Martin\AppData\Roaming\uTorrent\utorrent.exe [416168 2015-02-22] (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
HKU\S-1-5-21-2029197391-1874142438-1355967279-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91667312 2020-05-12] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2029197391-1874142438-1355967279-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5536440 2021-04-27] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-2029197391-1874142438-1355967279-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31019504 2020-06-09] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-2029197391-1874142438-1355967279-1001\...\Run: [Viber] => C:\Users\Martin\AppData\Local\Viber\Viber.exe [52607192 2021-05-13] (Viber Media S.à r.l. -> Viber Media S.Ã r.l.)
HKU\S-1-5-21-2029197391-1874142438-1355967279-1001\...\Run: [Launcher] => F:\GTA\Launcher\LauncherPatcher.exe [505472 2020-12-02] (Rockstar Games, Inc. -> Rockstar Games)
HKU\S-1-5-21-2029197391-1874142438-1355967279-1001\...\Run: [AIMP] => C:\Program Files (x86)\AIMP3\AIMP.exe [5188464 2021-03-18] (IP Izmaylov Artem Andreevich -> AIMP DevTeam)
HKU\S-1-5-21-2029197391-1874142438-1355967279-1001\...\Run: [CiscoMeetingDaemon] => C:\Users\Martin\AppData\Local\WebEx\ciscowebexstart.exe [3711704 2021-05-14] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-2029197391-1874142438-1355967279-1001\...\Run: [Spotify] => C:\Users\Martin\AppData\Roaming\Spotify\Spotify.exe [23924352 2021-05-22] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2029197391-1874142438-1355967279-1001\...\Run: [BingWallpaperApp] => C:\Users\Martin\AppData\Local\Microsoft\BingWallpaperApp\BingWallpaperApp.exe [13120912 2021-04-09] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2029197391-1874142438-1355967279-1001\...\Run: [ASRockRuefi] => [X]
HKU\S-1-5-21-2029197391-1874142438-1355967279-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Ribbons.scr [153600 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\HP1005PrintProc: C:\Windows\System32\spool\prtprocs\x64\HP1005PP.dll [65024 2013-04-01] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\HP1005LM: C:\WINDOWS\system32\HP1005LM.DLL [178688 2013-04-01] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.212\Installer\chrmstp.exe [2021-05-11] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk [2021-04-16]
ShortcutTarget: CodeMeter Control Center.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Network Server.lnk [2021-04-16]
ShortcutTarget: Network Server.lnk -> C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {01545CF4-1EA6-4351-986C-E33BE00A422B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2017-02-05] (Google Inc -> Google Inc.)
Task: {0967D40E-84D5-40B0-9AEC-9FC9912515BD} - System32\Tasks\AsrAPPShop => C:\Program Files (x86)\ASRock Utility\APP Shop\AsrAPPShop.exe [6147544 2020-03-20] (ASRock Incorporation -> )
Task: {0D70747F-C78B-4879-9C3E-57DC9F4D0A50} - System32\Tasks\AMD ThankingURL => C:\Program Files\AMD\CIM\Bin64\Setup.exe [1126176 2021-04-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {2EC488D0-3CD9-4661-B3A1-6857108BE9B7} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [268576 2021-04-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {31CCA92D-5226-4B1A-A120-EE5AA804DD6B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [595288 2021-05-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {39D2BF8C-845C-4473-95D7-3ACDC6548F42} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2017-02-05] (Google Inc -> Google Inc.)
Task: {3EA744B7-5934-4545-BF99-6BE4BBD43479} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1713952 2021-04-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {3F44CE0D-1BFF-4C5B-90B2-92E84C84DCA5} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1713952 2021-04-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {4FB05CEE-D7D5-42A6-88E2-9384715CBBA4} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [62752 2021-04-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {55390A21-5CB1-41EC-B680-7C059F508979} - System32\Tasks\update-S-1-5-21-2029197391-1874142438-1355967279-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {5CC25B37-9429-4867-B768-EF0066C207F9} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {74EA89FE-03B1-4ECE-80AC-7D94E3A5B451} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [595288 2021-05-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8010E69F-5FAB-4195-B7C4-191E898441B7} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [972184 2021-03-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {88674BB5-A412-4EB5-843F-270009848D33} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {936E4763-8292-4944-8260-D18070AA90FA} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {C898AA23-1DAF-459D-B983-BA17C9A8086F} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {C8FCE3A2-ECD3-44DF-B247-F4991222DC77} - System32\Tasks\SpeedFan\SpeedFan => C:\Program Files (x86)\SpeedFan\speedfan.exe [8166536 2016-06-29] (SOKNO S.R.L. -> )
Task: {D314C81F-0661-47D4-83B7-B8BD0864693A} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40432 2020-06-09] (Garmin International, Inc. -> )
Task: {D974A126-4986-498D-8B73-ABE2E799B142} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [595288 2021-05-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DB07C2AD-D0DC-4260-A9DF-B32BD5469FD5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [595288 2021-05-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E235955E-364D-4F51-B151-3D580A909522} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [972184 2021-03-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {E6319BBC-042C-402C-BAB7-A8D19BE218D4} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
Task: {F4FFBB89-7D80-4926-8DDA-F94B8023BDC0} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1713952 2021-04-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Intel PTT EK Recertification.job => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe
Task: C:\WINDOWS\Tasks\update-S-1-5-21-2029197391-1874142438-1355967279-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.88.1 192.168.168.1
Tcpip\..\Interfaces\{35c361cf-36ee-4239-b909-c4269252a47d}: [DhcpNameServer] 192.168.168.1
Tcpip\..\Interfaces\{e66fb324-3a0c-4e00-b2aa-cbdef529bf6f}: [DhcpNameServer] 192.168.88.1 192.168.168.1
Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Martin\AppData\Local\Microsoft\Edge\User Data\Default [2021-05-22]
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_23_0_0_205.dll [2018-02-08] (Adobe Systems Incorporated -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_205.dll [2018-02-08] (Adobe Systems Incorporated -> )
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2018-10-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-04-27] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default [2021-05-22]
CHR DownloadDir: G:\
CHR Notifications: Default -> hxxps://brgl9.etocallusat.fun; hxxps://calendar.google.com; hxxps://drive.google.com; hxxps://forum.kingdomcomerpg.com; hxxps://meet.google.com; hxxps://tinder.com; hxxps://www.djforum.cz; hxxps://www.facebook.com; hxxps://www.hrkgame.com; hxxps://www.instagram.com; hxxps://www.kupi.cz; hxxps://www.letemsvetemapplem.eu; hxxps://www.letgo.cz; hxxps://www.youtube.com; hxxps://www.zive.cz
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24]
CHR Extension: (YouTube) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-02-05]
CHR Extension: (Adobe Acrobat) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-03-12]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-11-09]
CHR Extension: (Tabulky) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-19]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-05-02]
CHR Extension: (Plugins) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmcblfncjaclajmegihojiekebofjcen [2019-02-01]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-25]
CHR Extension: (RSS Feed Reader) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp [2020-09-05]
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-11-15]
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\System Profile [2020-11-15]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [99104 2021-03-16] (Apple Inc. -> Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3052952 2021-03-17] (Microsoft Corporation -> Microsoft Corporation)
R2 CmWebAdmin.exe; C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe [9760664 2018-12-19] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2017-02-02] (Disc Soft Ltd -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2020-03-22] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 FACEITService; C:\Program Files\FACEIT AC\faceitservice.exe [20156816 2021-03-18] (FACE IT LIMITED -> )
S3 NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [774144 2007-01-15] (Nero AG) [File not signed]
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [271920 2007-03-12] (Nero AG -> Nero AG)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2545752 2021-04-09] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3485784 2021-04-09] (Electronic Arts, Inc. -> Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2017-02-07] (Even Balance, Inc. -> )
S3 Rockstar Service; F:\GTA\Launcher\RockstarService.exe [1631360 2020-12-02] (Rockstar Games, Inc. -> Rockstar Games)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12720144 2020-11-18] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [1049464 2016-04-19] (WESTERN DIGITAL TECHNOLOGIES -> Western Digital Technologies, Inc.)
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [363888 2018-06-01] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\NisSrv.exe [2599328 2021-05-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MsMpEng.exe [128376 2021-05-14] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_8e2568524f674315\amdsafd.sys [100768 2021-03-29] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0366490.inf_amd64_c0dea8a43cb81731\B366217\amdkmdag.sys [82677888 2021-04-19] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R3 AppShopDrv103; C:\WINDOWS\SysWOW64\Drivers\AppShopDrv103.sys [34568 2021-05-22] (ASROCK Incorporation -> ASRock Incorporation) [File not signed]
R1 AsrAppCharger; C:\WINDOWS\system32\DRIVERS\AsrAppCharger.sys [17192 2011-11-07] (ASROCK Incorporation -> Windows (R) Win 7 DDK provider)
S3 AsrDrv101; C:\WINDOWS\SysWOW64\Drivers\AsrDrv101.sys [22280 2021-05-22] (ASROCK Incorporation -> ASRock Incorporation)
S3 AVerPola; C:\WINDOWS\system32\DRIVERS\AVerPola.sys [871048 2016-12-13] (Microsoft Windows Hardware Compatibility Publisher -> AVerMedia TECHNOLOGIES, Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 cpuz150; C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [44832 2021-05-20] (CPUID S.A.R.L.U. -> CPUID)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-02-05] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-02-05] (Disc Soft Ltd -> Disc Soft Ltd)
R0 FACEIT; C:\WINDOWS\System32\Drivers\FACEIT.sys [11090360 2021-03-25] (FACE IT LIMITED -> )
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO64A.SYS [27552 2017-12-03] (Martin Malik - REALiX -> REALiX(tm))
R3 MpKsl71c1b9a7; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{7CC98284-27AC-4590-BE25-6085C97D1592}\MpKslDrv.sys [107744 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
R3 TotRec8; C:\WINDOWS\system32\drivers\TotRec8.sys [124176 2012-11-30] (High Criteria Inc -> High Criteria inc.)
R3 t_mouse.sys; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [6144 2013-04-09] (Microsoft Windows Hardware Compatibility Publisher -> )
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-05-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [26880 2015-11-12] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [421112 2021-05-14] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [73960 2021-05-14] (Microsoft Windows -> Microsoft Corporation)
R2 WIBUKEY; C:\WINDOWS\System32\DRIVERS\WibuKey64.sys [118200 2019-06-21] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
S3 WsAudio_Device; C:\WINDOWS\system32\drivers\VirtualAudio.sys [48424 2018-06-08] (Wondershare Technology Co.,Ltd -> Wondershare)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-05-22 11:38 - 2021-05-22 11:38 - 000000004 ____H C:\ProgramData\cm-lock
2021-05-22 11:35 - 2021-05-22 11:35 - 000022280 _____ (ASRock Incorporation) C:\WINDOWS\SysWOW64\Drivers\AsrDrv101.sys
2021-05-22 11:30 - 2021-05-22 11:30 - 000001372 _____ C:\Users\Public\Desktop\ASRock Restart to UEFI.lnk
2021-05-22 11:30 - 2021-05-22 11:30 - 000000000 ____D C:\Program Files\ASRock Utility
2021-05-22 11:30 - 2011-11-07 10:13 - 000017192 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\AsrAppCharger.sys
2021-05-22 11:29 - 2021-05-22 11:29 - 001720012 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2021-05-22 11:29 - 2021-05-22 11:29 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2021-05-22 11:29 - 2021-05-22 11:29 - 000000000 ____D C:\Users\Martin\Intel
2021-05-22 11:29 - 2021-05-22 11:29 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Intel Corporation
2021-05-22 11:29 - 2021-05-22 11:29 - 000000000 ____D C:\ProgramData\Intel
2021-05-22 11:28 - 2021-05-22 11:29 - 000000000 ____D C:\Program Files\Intel
2021-05-22 11:25 - 2021-05-22 11:38 - 000034568 _____ (ASRock Incorporation) C:\WINDOWS\SysWOW64\Drivers\AppShopDrv103.sys
2021-05-22 11:25 - 2021-05-22 11:38 - 000003040 _____ C:\WINDOWS\system32\Tasks\AsrAPPShop
2021-05-22 11:25 - 2021-05-22 11:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASRock Utility
2021-05-22 11:25 - 2021-05-22 11:30 - 000000000 ____D C:\Program Files (x86)\ASRock Utility
2021-05-22 11:25 - 2021-05-22 11:25 - 000001275 _____ C:\Users\Public\Desktop\APP Shop.lnk
2021-05-22 11:25 - 2021-05-22 11:25 - 000000000 ____D C:\ProgramData\ASRock
2021-05-20 22:02 - 2021-05-20 22:02 - 000001080 _____ C:\Users\Martin\Desktop\SpeedFan.lnk
2021-05-20 22:02 - 2021-05-20 22:02 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
2021-05-20 21:58 - 2021-05-22 11:38 - 000003128 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2021-05-20 21:58 - 2021-05-22 11:38 - 000003080 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2021-05-20 21:58 - 2021-05-20 21:58 - 000003488 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2021-05-20 21:58 - 2021-05-20 21:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Software
2021-05-20 21:58 - 2021-05-20 21:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Link For Windows
2021-05-20 21:58 - 2021-05-20 21:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool
2021-05-20 21:57 - 2021-05-20 21:57 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2021-05-19 18:59 - 2021-05-19 18:59 - 000000000 ____D C:\Users\Martin\AppData\Local\Viber
2021-05-13 21:50 - 2021-05-13 21:50 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-05-13 21:50 - 2021-05-13 21:50 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-05-13 21:50 - 2021-05-13 21:50 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-05-13 21:50 - 2021-05-13 21:50 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-05-13 21:49 - 2021-05-13 21:49 - 001823816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-05-13 21:49 - 2021-05-13 21:49 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-05-13 21:49 - 2021-05-13 21:49 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-05-13 21:49 - 2021-05-13 21:49 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-05-13 21:49 - 2021-05-13 21:49 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-05-13 21:49 - 2021-05-13 21:49 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-05-13 21:49 - 2021-05-13 21:49 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-05-13 21:49 - 2021-05-13 21:49 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-05-03 20:23 - 2021-05-03 20:23 - 000001816 _____ C:\Users\Public\Desktop\iTunes.lnk
2021-05-03 20:23 - 2021-05-03 20:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2021-05-03 20:23 - 2021-05-03 20:23 - 000000000 ____D C:\Program Files\iTunes
2021-05-03 20:02 - 2021-05-03 20:03 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Apple Computer
2021-05-03 20:02 - 2021-05-03 20:02 - 000002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2021-05-03 20:02 - 2021-05-03 20:02 - 000000000 ____D C:\WINDOWS\system32\Tasks\Apple
2021-05-03 20:02 - 2021-05-03 20:02 - 000000000 ____D C:\Users\Martin\AppData\Local\Apple Computer
2021-05-03 20:02 - 2021-05-03 20:02 - 000000000 ____D C:\Users\Martin\AppData\Local\Apple
2021-05-03 20:02 - 2021-05-03 20:02 - 000000000 ____D C:\Program Files\Common Files\Apple
2021-05-03 20:02 - 2021-05-03 20:02 - 000000000 ____D C:\Program Files\Bonjour
2021-05-03 20:02 - 2021-05-03 20:02 - 000000000 ____D C:\Program Files (x86)\Bonjour
2021-05-03 20:02 - 2021-05-03 20:02 - 000000000 ____D C:\Program Files (x86)\Apple Software Update
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-05-22 11:43 - 2020-11-12 20:24 - 000000000 ____D C:\FRST
2021-05-22 11:39 - 2020-06-30 20:40 - 000008192 _____ C:\WINDOWS\SysWOW64\WDPABKP.dat
2021-05-22 11:38 - 2021-03-20 11:49 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Spotify
2021-05-22 11:38 - 2020-12-03 18:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-05-22 11:38 - 2020-12-03 18:44 - 000008192 ___SH C:\DumpStack.log.tmp
2021-05-22 11:38 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-05-22 11:38 - 2018-11-19 19:57 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-05-22 11:38 - 2017-02-05 16:18 - 000000000 ____D C:\Program Files (x86)\SpeedFan
2021-05-22 11:36 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-05-22 11:36 - 2017-04-11 17:21 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2021-05-22 11:30 - 2020-04-01 11:43 - 000000000 ____D C:\Users\Martin\AppData\Roaming\ViberPC
2021-05-22 11:29 - 2020-12-03 18:46 - 000000000 ____D C:\Users\Martin
2021-05-22 11:29 - 2019-12-07 16:41 - 000717818 _____ C:\WINDOWS\system32\perfh005.dat
2021-05-22 11:29 - 2019-12-07 16:41 - 000145494 _____ C:\WINDOWS\system32\perfc005.dat
2021-05-22 11:29 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-05-22 11:28 - 2021-03-03 16:45 - 000000000 ____D C:\Users\Martin\AppData\Local\WebEx
2021-05-22 11:28 - 2020-12-03 18:44 - 000720536 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-05-22 11:28 - 2020-04-02 07:37 - 000000000 ____D C:\Users\Martin\AppData\Local\CrashDumps
2021-05-22 11:27 - 2017-02-05 16:42 - 000000000 ____D C:\ProgramData\Package Cache
2021-05-22 11:26 - 2020-12-03 18:47 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-05-22 11:13 - 2021-03-20 11:50 - 000000000 ____D C:\Users\Martin\AppData\Local\Spotify
2021-05-22 11:08 - 2020-06-08 16:17 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-05-22 11:08 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-05-22 11:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-05-22 11:07 - 2021-03-03 16:45 - 000000000 ____D C:\Users\Martin\AppData\LocalLow\WebEx
2021-05-21 22:23 - 2018-01-05 22:37 - 000000000 ____D C:\Users\Martin\AppData\Roaming\TS3Client
2021-05-21 21:26 - 2017-02-05 22:50 - 000000000 ____D C:\Program Files (x86)\Steam
2021-05-21 21:22 - 2020-12-03 18:44 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-05-20 22:02 - 2017-02-05 16:18 - 000000045 _____ C:\WINDOWS\SysWOW64\initdebug.nfo
2021-05-20 21:59 - 2020-02-29 09:05 - 000000000 ____D C:\ProgramData\AMD
2021-05-20 21:59 - 2019-07-13 10:32 - 000000000 ____D C:\Users\Martin\AppData\LocalLow\AMD
2021-05-20 21:59 - 2017-04-11 17:21 - 000000000 ____D C:\Program Files\AMD
2021-05-20 21:58 - 2020-12-03 18:51 - 000003160 _____ C:\WINDOWS\system32\Tasks\StartCN
2021-05-20 21:58 - 2020-12-03 18:51 - 000003080 _____ C:\WINDOWS\system32\Tasks\StartDVR
2021-05-20 21:58 - 2017-02-11 10:40 - 000000000 ____D C:\Users\Martin\Documents\Soubory aplikace Outlook
2021-05-20 21:57 - 2020-02-29 09:07 - 000000000 ____D C:\Users\Martin\AppData\Local\AMD
2021-05-20 21:33 - 2021-04-06 16:58 - 000000000 ____D C:\Users\Martin\AppData\Local\AMD_Common
2021-05-19 22:08 - 2017-02-24 18:13 - 000000000 ____D C:\Users\Martin\AppData\Roaming\vlc
2021-05-19 21:07 - 2018-07-28 22:40 - 000000000 ____D C:\Users\Martin\AppData\Local\D3DSCache
2021-05-19 19:08 - 2018-09-16 09:16 - 000000000 ____D C:\Users\Martin\AppData\Roaming\AIMP
2021-05-19 18:45 - 2020-07-11 15:45 - 000000000 ____D C:\Users\Martin\Documents\ViberDownloads
2021-05-19 12:26 - 2017-12-03 02:19 - 000000000 ____D C:\Users\Martin\AppData\Local\Packages
2021-05-18 19:01 - 2018-10-13 07:17 - 000000000 ____D C:\Program Files\Microsoft Office 15
2021-05-16 21:40 - 2020-04-08 16:59 - 000000000 ____D C:\Users\Martin\AppData\Roaming\WhatsApp
2021-05-15 20:47 - 2020-04-08 16:59 - 000000000 ____D C:\Users\Martin\AppData\Local\WhatsApp
2021-05-14 15:03 - 2018-02-26 12:28 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-05-14 14:52 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-05-13 22:21 - 2019-12-07 16:42 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-05-13 21:52 - 2019-12-07 16:44 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-05-13 21:52 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-05-13 21:42 - 2017-02-05 22:09 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-05-13 21:37 - 2017-02-05 22:09 - 132732536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-05-13 20:34 - 2017-02-25 00:23 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-05-13 19:01 - 2017-02-06 19:35 - 000000000 ____D C:\Users\Martin\AppData\Local\ElevatedDiagnostics
2021-05-13 18:59 - 2020-12-03 18:51 - 000003382 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2029197391-1874142438-1355967279-1001
2021-05-13 18:59 - 2020-12-03 18:46 - 000002368 _____ C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-05-13 18:59 - 2017-02-05 16:15 - 000000000 ___RD C:\Users\Martin\OneDrive
2021-05-11 20:54 - 2017-02-05 18:54 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-05-11 20:54 - 2017-02-05 18:54 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-05-05 19:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-05-03 20:02 - 2021-01-20 09:27 - 000000000 ____D C:\ProgramData\Apple Computer
2021-05-03 20:02 - 2021-01-20 09:27 - 000000000 ____D C:\ProgramData\Apple
2021-05-03 15:45 - 2020-10-02 17:21 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-05-02 20:00 - 2017-02-05 22:21 - 000000000 ____D C:\Program Files (x86)\Origin
2021-05-02 20:00 - 2017-02-05 22:17 - 000000000 ____D C:\Users\Martin\AppData\Local\Origin
2021-05-02 20:00 - 2017-02-05 22:17 - 000000000 ____D C:\ProgramData\Origin
2021-05-02 08:49 - 2018-07-15 16:40 - 000000000 ____D C:\Users\Martin\Graphisoft
2021-05-02 08:49 - 2018-07-15 16:40 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Graphisoft
2021-05-02 08:49 - 2018-07-15 16:40 - 000000000 ____D C:\Users\Martin\AppData\Local\Graphisoft
2021-04-28 19:02 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-04-28 16:50 - 2017-02-25 00:21 - 000000000 ____D C:\Users\Martin\AppData\Local\Adobe
2021-04-26 18:01 - 2021-01-20 09:24 - 000003490 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6c99451ba85ea
2021-04-26 18:01 - 2020-12-03 18:51 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-04-23 10:20 - 2019-05-27 17:07 - 000000000 ____D C:\Users\Martin\AppData\Local\SquirrelTemp
2021-04-22 19:01 - 2017-02-11 08:01 - 000000000 ____D C:\Users\Martin\AppData\Roaming\uTorrent
==================== Files in the root of some directories ========
2017-03-14 19:08 - 2021-02-19 16:51 - 000007604 _____ () C:\Users\Martin\AppData\Local\Resmon.ResmonCfg
2017-09-26 21:09 - 2017-09-26 21:09 - 000000062 _____ () C:\Users\Martin\AppData\Local\TempGameCenter.main.download.log
2021-01-04 19:46 - 2021-01-04 19:46 - 000000003 _____ () C:\Users\Martin\AppData\Local\updater.log
2021-01-04 19:46 - 2021-01-12 16:33 - 000000059 _____ () C:\Users\Martin\AppData\Local\UserProducts.xml
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Díky
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-05-2021
Ran by Martin (administrator) on MARTIN-KUBES-PC (22-05-2021 11:42:49)
Running from G:\Programy\Diagnostika počítače
Loaded Profiles: Martin
Platform: Windows 10 Home Version 20H2 19042.985 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files (x86)\Hewlett-Packard\HP UT\bin\hppusg.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0366490.inf_amd64_c0dea8a43cb81731\B366217\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0366490.inf_amd64_c0dea8a43cb81731\B366217\atiesrxx.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ASRock Incorporation -> ) C:\Program Files (x86)\ASRock Utility\APP Shop\AsrAPPShop.exe
(Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\Martin\AppData\Local\WebEx\ciscowebexstart.exe
(Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\Martin\AppData\Local\WebEx\WebEx\Meetings\atmgr.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <40>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Martin\AppData\Local\Microsoft\BingWallpaperApp\BingWallpaperApp.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.621.4222.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.621.4222.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\NisSrv.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(SOKNO S.R.L. -> ) C:\Program Files (x86)\SpeedFan\speedfan.exe
(Spotify AB -> Spotify Ltd) C:\Users\Martin\AppData\Roaming\Spotify\Spotify.exe <6>
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Viber Media S.à r.l. -> Viber Media S.Ã r.l.) C:\Users\Martin\AppData\Local\Viber\Viber.exe
(WESTERN DIGITAL TECHNOLOGIES -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
(Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
(WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe
(WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16781824 2017-01-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2013-04-09] (Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [340440 2021-04-16] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320568 2016-09-20] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM-x32\...\Run: [WD Quick View] => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [5571944 2016-04-19] (WESTERN DIGITAL TECHNOLOGIES -> Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [DriveUtilitiesHelper] => C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe [2309008 2018-06-01] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [HPUsageTracking] => "C:\Program Files (x86)\Hewlett-Packard\HP UT\bin\hppusg.exe" "C:\Program Files (x86)\Hewlett-Packard\HP UT\"
HKU\S-1-5-21-2029197391-1874142438-1355967279-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4701888 2017-02-02] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-2029197391-1874142438-1355967279-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4087528 2021-05-19] (Valve -> Valve Corporation)
HKU\S-1-5-21-2029197391-1874142438-1355967279-1001\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [153136 2007-03-12] (Nero AG -> Nero AG)
HKU\S-1-5-21-2029197391-1874142438-1355967279-1001\...\Run: [uTorrent] => C:\Users\Martin\AppData\Roaming\uTorrent\utorrent.exe [416168 2015-02-22] (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
HKU\S-1-5-21-2029197391-1874142438-1355967279-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91667312 2020-05-12] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2029197391-1874142438-1355967279-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5536440 2021-04-27] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-2029197391-1874142438-1355967279-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31019504 2020-06-09] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-2029197391-1874142438-1355967279-1001\...\Run: [Viber] => C:\Users\Martin\AppData\Local\Viber\Viber.exe [52607192 2021-05-13] (Viber Media S.à r.l. -> Viber Media S.Ã r.l.)
HKU\S-1-5-21-2029197391-1874142438-1355967279-1001\...\Run: [Launcher] => F:\GTA\Launcher\LauncherPatcher.exe [505472 2020-12-02] (Rockstar Games, Inc. -> Rockstar Games)
HKU\S-1-5-21-2029197391-1874142438-1355967279-1001\...\Run: [AIMP] => C:\Program Files (x86)\AIMP3\AIMP.exe [5188464 2021-03-18] (IP Izmaylov Artem Andreevich -> AIMP DevTeam)
HKU\S-1-5-21-2029197391-1874142438-1355967279-1001\...\Run: [CiscoMeetingDaemon] => C:\Users\Martin\AppData\Local\WebEx\ciscowebexstart.exe [3711704 2021-05-14] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-2029197391-1874142438-1355967279-1001\...\Run: [Spotify] => C:\Users\Martin\AppData\Roaming\Spotify\Spotify.exe [23924352 2021-05-22] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2029197391-1874142438-1355967279-1001\...\Run: [BingWallpaperApp] => C:\Users\Martin\AppData\Local\Microsoft\BingWallpaperApp\BingWallpaperApp.exe [13120912 2021-04-09] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2029197391-1874142438-1355967279-1001\...\Run: [ASRockRuefi] => [X]
HKU\S-1-5-21-2029197391-1874142438-1355967279-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Ribbons.scr [153600 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\HP1005PrintProc: C:\Windows\System32\spool\prtprocs\x64\HP1005PP.dll [65024 2013-04-01] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\HP1005LM: C:\WINDOWS\system32\HP1005LM.DLL [178688 2013-04-01] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.212\Installer\chrmstp.exe [2021-05-11] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk [2021-04-16]
ShortcutTarget: CodeMeter Control Center.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Network Server.lnk [2021-04-16]
ShortcutTarget: Network Server.lnk -> C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {01545CF4-1EA6-4351-986C-E33BE00A422B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2017-02-05] (Google Inc -> Google Inc.)
Task: {0967D40E-84D5-40B0-9AEC-9FC9912515BD} - System32\Tasks\AsrAPPShop => C:\Program Files (x86)\ASRock Utility\APP Shop\AsrAPPShop.exe [6147544 2020-03-20] (ASRock Incorporation -> )
Task: {0D70747F-C78B-4879-9C3E-57DC9F4D0A50} - System32\Tasks\AMD ThankingURL => C:\Program Files\AMD\CIM\Bin64\Setup.exe [1126176 2021-04-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {2EC488D0-3CD9-4661-B3A1-6857108BE9B7} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [268576 2021-04-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {31CCA92D-5226-4B1A-A120-EE5AA804DD6B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [595288 2021-05-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {39D2BF8C-845C-4473-95D7-3ACDC6548F42} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2017-02-05] (Google Inc -> Google Inc.)
Task: {3EA744B7-5934-4545-BF99-6BE4BBD43479} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1713952 2021-04-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {3F44CE0D-1BFF-4C5B-90B2-92E84C84DCA5} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1713952 2021-04-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {4FB05CEE-D7D5-42A6-88E2-9384715CBBA4} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [62752 2021-04-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {55390A21-5CB1-41EC-B680-7C059F508979} - System32\Tasks\update-S-1-5-21-2029197391-1874142438-1355967279-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {5CC25B37-9429-4867-B768-EF0066C207F9} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {74EA89FE-03B1-4ECE-80AC-7D94E3A5B451} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [595288 2021-05-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8010E69F-5FAB-4195-B7C4-191E898441B7} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [972184 2021-03-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {88674BB5-A412-4EB5-843F-270009848D33} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {936E4763-8292-4944-8260-D18070AA90FA} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {C898AA23-1DAF-459D-B983-BA17C9A8086F} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {C8FCE3A2-ECD3-44DF-B247-F4991222DC77} - System32\Tasks\SpeedFan\SpeedFan => C:\Program Files (x86)\SpeedFan\speedfan.exe [8166536 2016-06-29] (SOKNO S.R.L. -> )
Task: {D314C81F-0661-47D4-83B7-B8BD0864693A} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40432 2020-06-09] (Garmin International, Inc. -> )
Task: {D974A126-4986-498D-8B73-ABE2E799B142} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [595288 2021-05-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DB07C2AD-D0DC-4260-A9DF-B32BD5469FD5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [595288 2021-05-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E235955E-364D-4F51-B151-3D580A909522} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [972184 2021-03-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {E6319BBC-042C-402C-BAB7-A8D19BE218D4} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
Task: {F4FFBB89-7D80-4926-8DDA-F94B8023BDC0} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1713952 2021-04-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Intel PTT EK Recertification.job => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe
Task: C:\WINDOWS\Tasks\update-S-1-5-21-2029197391-1874142438-1355967279-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.88.1 192.168.168.1
Tcpip\..\Interfaces\{35c361cf-36ee-4239-b909-c4269252a47d}: [DhcpNameServer] 192.168.168.1
Tcpip\..\Interfaces\{e66fb324-3a0c-4e00-b2aa-cbdef529bf6f}: [DhcpNameServer] 192.168.88.1 192.168.168.1
Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Martin\AppData\Local\Microsoft\Edge\User Data\Default [2021-05-22]
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_23_0_0_205.dll [2018-02-08] (Adobe Systems Incorporated -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_205.dll [2018-02-08] (Adobe Systems Incorporated -> )
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2018-10-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-04-27] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default [2021-05-22]
CHR DownloadDir: G:\
CHR Notifications: Default -> hxxps://brgl9.etocallusat.fun; hxxps://calendar.google.com; hxxps://drive.google.com; hxxps://forum.kingdomcomerpg.com; hxxps://meet.google.com; hxxps://tinder.com; hxxps://www.djforum.cz; hxxps://www.facebook.com; hxxps://www.hrkgame.com; hxxps://www.instagram.com; hxxps://www.kupi.cz; hxxps://www.letemsvetemapplem.eu; hxxps://www.letgo.cz; hxxps://www.youtube.com; hxxps://www.zive.cz
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24]
CHR Extension: (YouTube) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-02-05]
CHR Extension: (Adobe Acrobat) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-03-12]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-11-09]
CHR Extension: (Tabulky) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-19]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-05-02]
CHR Extension: (Plugins) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmcblfncjaclajmegihojiekebofjcen [2019-02-01]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-25]
CHR Extension: (RSS Feed Reader) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp [2020-09-05]
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-11-15]
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\System Profile [2020-11-15]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [99104 2021-03-16] (Apple Inc. -> Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3052952 2021-03-17] (Microsoft Corporation -> Microsoft Corporation)
R2 CmWebAdmin.exe; C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe [9760664 2018-12-19] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2017-02-02] (Disc Soft Ltd -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2020-03-22] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 FACEITService; C:\Program Files\FACEIT AC\faceitservice.exe [20156816 2021-03-18] (FACE IT LIMITED -> )
S3 NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [774144 2007-01-15] (Nero AG) [File not signed]
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [271920 2007-03-12] (Nero AG -> Nero AG)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2545752 2021-04-09] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3485784 2021-04-09] (Electronic Arts, Inc. -> Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2017-02-07] (Even Balance, Inc. -> )
S3 Rockstar Service; F:\GTA\Launcher\RockstarService.exe [1631360 2020-12-02] (Rockstar Games, Inc. -> Rockstar Games)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12720144 2020-11-18] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [1049464 2016-04-19] (WESTERN DIGITAL TECHNOLOGIES -> Western Digital Technologies, Inc.)
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [363888 2018-06-01] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\NisSrv.exe [2599328 2021-05-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MsMpEng.exe [128376 2021-05-14] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_8e2568524f674315\amdsafd.sys [100768 2021-03-29] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0366490.inf_amd64_c0dea8a43cb81731\B366217\amdkmdag.sys [82677888 2021-04-19] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R3 AppShopDrv103; C:\WINDOWS\SysWOW64\Drivers\AppShopDrv103.sys [34568 2021-05-22] (ASROCK Incorporation -> ASRock Incorporation) [File not signed]
R1 AsrAppCharger; C:\WINDOWS\system32\DRIVERS\AsrAppCharger.sys [17192 2011-11-07] (ASROCK Incorporation -> Windows (R) Win 7 DDK provider)
S3 AsrDrv101; C:\WINDOWS\SysWOW64\Drivers\AsrDrv101.sys [22280 2021-05-22] (ASROCK Incorporation -> ASRock Incorporation)
S3 AVerPola; C:\WINDOWS\system32\DRIVERS\AVerPola.sys [871048 2016-12-13] (Microsoft Windows Hardware Compatibility Publisher -> AVerMedia TECHNOLOGIES, Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 cpuz150; C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [44832 2021-05-20] (CPUID S.A.R.L.U. -> CPUID)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-02-05] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-02-05] (Disc Soft Ltd -> Disc Soft Ltd)
R0 FACEIT; C:\WINDOWS\System32\Drivers\FACEIT.sys [11090360 2021-03-25] (FACE IT LIMITED -> )
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO64A.SYS [27552 2017-12-03] (Martin Malik - REALiX -> REALiX(tm))
R3 MpKsl71c1b9a7; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{7CC98284-27AC-4590-BE25-6085C97D1592}\MpKslDrv.sys [107744 2021-05-22] (Microsoft Windows -> Microsoft Corporation)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
R3 TotRec8; C:\WINDOWS\system32\drivers\TotRec8.sys [124176 2012-11-30] (High Criteria Inc -> High Criteria inc.)
R3 t_mouse.sys; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [6144 2013-04-09] (Microsoft Windows Hardware Compatibility Publisher -> )
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-05-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [26880 2015-11-12] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [421112 2021-05-14] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [73960 2021-05-14] (Microsoft Windows -> Microsoft Corporation)
R2 WIBUKEY; C:\WINDOWS\System32\DRIVERS\WibuKey64.sys [118200 2019-06-21] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
S3 WsAudio_Device; C:\WINDOWS\system32\drivers\VirtualAudio.sys [48424 2018-06-08] (Wondershare Technology Co.,Ltd -> Wondershare)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-05-22 11:38 - 2021-05-22 11:38 - 000000004 ____H C:\ProgramData\cm-lock
2021-05-22 11:35 - 2021-05-22 11:35 - 000022280 _____ (ASRock Incorporation) C:\WINDOWS\SysWOW64\Drivers\AsrDrv101.sys
2021-05-22 11:30 - 2021-05-22 11:30 - 000001372 _____ C:\Users\Public\Desktop\ASRock Restart to UEFI.lnk
2021-05-22 11:30 - 2021-05-22 11:30 - 000000000 ____D C:\Program Files\ASRock Utility
2021-05-22 11:30 - 2011-11-07 10:13 - 000017192 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\AsrAppCharger.sys
2021-05-22 11:29 - 2021-05-22 11:29 - 001720012 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2021-05-22 11:29 - 2021-05-22 11:29 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2021-05-22 11:29 - 2021-05-22 11:29 - 000000000 ____D C:\Users\Martin\Intel
2021-05-22 11:29 - 2021-05-22 11:29 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Intel Corporation
2021-05-22 11:29 - 2021-05-22 11:29 - 000000000 ____D C:\ProgramData\Intel
2021-05-22 11:28 - 2021-05-22 11:29 - 000000000 ____D C:\Program Files\Intel
2021-05-22 11:25 - 2021-05-22 11:38 - 000034568 _____ (ASRock Incorporation) C:\WINDOWS\SysWOW64\Drivers\AppShopDrv103.sys
2021-05-22 11:25 - 2021-05-22 11:38 - 000003040 _____ C:\WINDOWS\system32\Tasks\AsrAPPShop
2021-05-22 11:25 - 2021-05-22 11:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASRock Utility
2021-05-22 11:25 - 2021-05-22 11:30 - 000000000 ____D C:\Program Files (x86)\ASRock Utility
2021-05-22 11:25 - 2021-05-22 11:25 - 000001275 _____ C:\Users\Public\Desktop\APP Shop.lnk
2021-05-22 11:25 - 2021-05-22 11:25 - 000000000 ____D C:\ProgramData\ASRock
2021-05-20 22:02 - 2021-05-20 22:02 - 000001080 _____ C:\Users\Martin\Desktop\SpeedFan.lnk
2021-05-20 22:02 - 2021-05-20 22:02 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
2021-05-20 21:58 - 2021-05-22 11:38 - 000003128 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2021-05-20 21:58 - 2021-05-22 11:38 - 000003080 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2021-05-20 21:58 - 2021-05-20 21:58 - 000003488 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2021-05-20 21:58 - 2021-05-20 21:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Software
2021-05-20 21:58 - 2021-05-20 21:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Link For Windows
2021-05-20 21:58 - 2021-05-20 21:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool
2021-05-20 21:57 - 2021-05-20 21:57 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2021-05-19 18:59 - 2021-05-19 18:59 - 000000000 ____D C:\Users\Martin\AppData\Local\Viber
2021-05-13 21:50 - 2021-05-13 21:50 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-05-13 21:50 - 2021-05-13 21:50 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-05-13 21:50 - 2021-05-13 21:50 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-05-13 21:50 - 2021-05-13 21:50 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-05-13 21:49 - 2021-05-13 21:49 - 001823816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-05-13 21:49 - 2021-05-13 21:49 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-05-13 21:49 - 2021-05-13 21:49 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-05-13 21:49 - 2021-05-13 21:49 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-05-13 21:49 - 2021-05-13 21:49 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-05-13 21:49 - 2021-05-13 21:49 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-05-13 21:49 - 2021-05-13 21:49 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-05-13 21:49 - 2021-05-13 21:49 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-05-03 20:23 - 2021-05-03 20:23 - 000001816 _____ C:\Users\Public\Desktop\iTunes.lnk
2021-05-03 20:23 - 2021-05-03 20:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2021-05-03 20:23 - 2021-05-03 20:23 - 000000000 ____D C:\Program Files\iTunes
2021-05-03 20:02 - 2021-05-03 20:03 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Apple Computer
2021-05-03 20:02 - 2021-05-03 20:02 - 000002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2021-05-03 20:02 - 2021-05-03 20:02 - 000000000 ____D C:\WINDOWS\system32\Tasks\Apple
2021-05-03 20:02 - 2021-05-03 20:02 - 000000000 ____D C:\Users\Martin\AppData\Local\Apple Computer
2021-05-03 20:02 - 2021-05-03 20:02 - 000000000 ____D C:\Users\Martin\AppData\Local\Apple
2021-05-03 20:02 - 2021-05-03 20:02 - 000000000 ____D C:\Program Files\Common Files\Apple
2021-05-03 20:02 - 2021-05-03 20:02 - 000000000 ____D C:\Program Files\Bonjour
2021-05-03 20:02 - 2021-05-03 20:02 - 000000000 ____D C:\Program Files (x86)\Bonjour
2021-05-03 20:02 - 2021-05-03 20:02 - 000000000 ____D C:\Program Files (x86)\Apple Software Update
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-05-22 11:43 - 2020-11-12 20:24 - 000000000 ____D C:\FRST
2021-05-22 11:39 - 2020-06-30 20:40 - 000008192 _____ C:\WINDOWS\SysWOW64\WDPABKP.dat
2021-05-22 11:38 - 2021-03-20 11:49 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Spotify
2021-05-22 11:38 - 2020-12-03 18:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-05-22 11:38 - 2020-12-03 18:44 - 000008192 ___SH C:\DumpStack.log.tmp
2021-05-22 11:38 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-05-22 11:38 - 2018-11-19 19:57 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-05-22 11:38 - 2017-02-05 16:18 - 000000000 ____D C:\Program Files (x86)\SpeedFan
2021-05-22 11:36 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-05-22 11:36 - 2017-04-11 17:21 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2021-05-22 11:30 - 2020-04-01 11:43 - 000000000 ____D C:\Users\Martin\AppData\Roaming\ViberPC
2021-05-22 11:29 - 2020-12-03 18:46 - 000000000 ____D C:\Users\Martin
2021-05-22 11:29 - 2019-12-07 16:41 - 000717818 _____ C:\WINDOWS\system32\perfh005.dat
2021-05-22 11:29 - 2019-12-07 16:41 - 000145494 _____ C:\WINDOWS\system32\perfc005.dat
2021-05-22 11:29 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-05-22 11:28 - 2021-03-03 16:45 - 000000000 ____D C:\Users\Martin\AppData\Local\WebEx
2021-05-22 11:28 - 2020-12-03 18:44 - 000720536 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-05-22 11:28 - 2020-04-02 07:37 - 000000000 ____D C:\Users\Martin\AppData\Local\CrashDumps
2021-05-22 11:27 - 2017-02-05 16:42 - 000000000 ____D C:\ProgramData\Package Cache
2021-05-22 11:26 - 2020-12-03 18:47 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-05-22 11:13 - 2021-03-20 11:50 - 000000000 ____D C:\Users\Martin\AppData\Local\Spotify
2021-05-22 11:08 - 2020-06-08 16:17 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-05-22 11:08 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-05-22 11:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-05-22 11:07 - 2021-03-03 16:45 - 000000000 ____D C:\Users\Martin\AppData\LocalLow\WebEx
2021-05-21 22:23 - 2018-01-05 22:37 - 000000000 ____D C:\Users\Martin\AppData\Roaming\TS3Client
2021-05-21 21:26 - 2017-02-05 22:50 - 000000000 ____D C:\Program Files (x86)\Steam
2021-05-21 21:22 - 2020-12-03 18:44 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-05-20 22:02 - 2017-02-05 16:18 - 000000045 _____ C:\WINDOWS\SysWOW64\initdebug.nfo
2021-05-20 21:59 - 2020-02-29 09:05 - 000000000 ____D C:\ProgramData\AMD
2021-05-20 21:59 - 2019-07-13 10:32 - 000000000 ____D C:\Users\Martin\AppData\LocalLow\AMD
2021-05-20 21:59 - 2017-04-11 17:21 - 000000000 ____D C:\Program Files\AMD
2021-05-20 21:58 - 2020-12-03 18:51 - 000003160 _____ C:\WINDOWS\system32\Tasks\StartCN
2021-05-20 21:58 - 2020-12-03 18:51 - 000003080 _____ C:\WINDOWS\system32\Tasks\StartDVR
2021-05-20 21:58 - 2017-02-11 10:40 - 000000000 ____D C:\Users\Martin\Documents\Soubory aplikace Outlook
2021-05-20 21:57 - 2020-02-29 09:07 - 000000000 ____D C:\Users\Martin\AppData\Local\AMD
2021-05-20 21:33 - 2021-04-06 16:58 - 000000000 ____D C:\Users\Martin\AppData\Local\AMD_Common
2021-05-19 22:08 - 2017-02-24 18:13 - 000000000 ____D C:\Users\Martin\AppData\Roaming\vlc
2021-05-19 21:07 - 2018-07-28 22:40 - 000000000 ____D C:\Users\Martin\AppData\Local\D3DSCache
2021-05-19 19:08 - 2018-09-16 09:16 - 000000000 ____D C:\Users\Martin\AppData\Roaming\AIMP
2021-05-19 18:45 - 2020-07-11 15:45 - 000000000 ____D C:\Users\Martin\Documents\ViberDownloads
2021-05-19 12:26 - 2017-12-03 02:19 - 000000000 ____D C:\Users\Martin\AppData\Local\Packages
2021-05-18 19:01 - 2018-10-13 07:17 - 000000000 ____D C:\Program Files\Microsoft Office 15
2021-05-16 21:40 - 2020-04-08 16:59 - 000000000 ____D C:\Users\Martin\AppData\Roaming\WhatsApp
2021-05-15 20:47 - 2020-04-08 16:59 - 000000000 ____D C:\Users\Martin\AppData\Local\WhatsApp
2021-05-14 15:03 - 2018-02-26 12:28 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-05-14 14:52 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-05-13 22:21 - 2019-12-07 16:42 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-05-13 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-05-13 21:52 - 2019-12-07 16:44 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-05-13 21:52 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-05-13 21:42 - 2017-02-05 22:09 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-05-13 21:37 - 2017-02-05 22:09 - 132732536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-05-13 20:34 - 2017-02-25 00:23 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-05-13 19:01 - 2017-02-06 19:35 - 000000000 ____D C:\Users\Martin\AppData\Local\ElevatedDiagnostics
2021-05-13 18:59 - 2020-12-03 18:51 - 000003382 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2029197391-1874142438-1355967279-1001
2021-05-13 18:59 - 2020-12-03 18:46 - 000002368 _____ C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-05-13 18:59 - 2017-02-05 16:15 - 000000000 ___RD C:\Users\Martin\OneDrive
2021-05-11 20:54 - 2017-02-05 18:54 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-05-11 20:54 - 2017-02-05 18:54 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-05-05 19:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-05-03 20:02 - 2021-01-20 09:27 - 000000000 ____D C:\ProgramData\Apple Computer
2021-05-03 20:02 - 2021-01-20 09:27 - 000000000 ____D C:\ProgramData\Apple
2021-05-03 15:45 - 2020-10-02 17:21 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-05-02 20:00 - 2017-02-05 22:21 - 000000000 ____D C:\Program Files (x86)\Origin
2021-05-02 20:00 - 2017-02-05 22:17 - 000000000 ____D C:\Users\Martin\AppData\Local\Origin
2021-05-02 20:00 - 2017-02-05 22:17 - 000000000 ____D C:\ProgramData\Origin
2021-05-02 08:49 - 2018-07-15 16:40 - 000000000 ____D C:\Users\Martin\Graphisoft
2021-05-02 08:49 - 2018-07-15 16:40 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Graphisoft
2021-05-02 08:49 - 2018-07-15 16:40 - 000000000 ____D C:\Users\Martin\AppData\Local\Graphisoft
2021-04-28 19:02 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-04-28 16:50 - 2017-02-25 00:21 - 000000000 ____D C:\Users\Martin\AppData\Local\Adobe
2021-04-26 18:01 - 2021-01-20 09:24 - 000003490 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6c99451ba85ea
2021-04-26 18:01 - 2020-12-03 18:51 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-04-23 10:20 - 2019-05-27 17:07 - 000000000 ____D C:\Users\Martin\AppData\Local\SquirrelTemp
2021-04-22 19:01 - 2017-02-11 08:01 - 000000000 ____D C:\Users\Martin\AppData\Roaming\uTorrent
==================== Files in the root of some directories ========
2017-03-14 19:08 - 2021-02-19 16:51 - 000007604 _____ () C:\Users\Martin\AppData\Local\Resmon.ResmonCfg
2017-09-26 21:09 - 2017-09-26 21:09 - 000000062 _____ () C:\Users\Martin\AppData\Local\TempGameCenter.main.download.log
2021-01-04 19:46 - 2021-01-04 19:46 - 000000003 _____ () C:\Users\Martin\AppData\Local\updater.log
2021-01-04 19:46 - 2021-01-12 16:33 - 000000059 _____ () C:\Users\Martin\AppData\Local\UserProducts.xml
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================