Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09-06-2021
Ran by Martin (administrator) on MARTINSDATOR (Exertis_CapTech Z97P-D3) (12-06-2021 10:18:48)
Running from C:\Users\Martin\Downloads
Loaded Profiles: Martin
Platform: Windows 7 Professional Service Pack 1 (X64) Language: English (United States)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
(Adlice -> ) C:\Program Files\RogueKiller\RogueKiller64.exe
(Adlice -> ) C:\Program Files\RogueKiller\RogueKillerSvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atiesrxx.exe
(Discord Inc. -> Discord Inc.) C:\Users\Martin\AppData\Local\Discord\app-1.0.9002\Discord.exe <6>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\schtasks.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <8>
(NortonLifeLock Inc. -> Broadcom) C:\Program Files (x86)\Norton Internet Security\Engine\22.21.5.44\NortonSecurity.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8484056 2015-06-12] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706288 2021-04-09] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-1797278217-2899522699-3514268358-1000\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\91.0.4472.77\Installer\chrmstp.exe [2021-06-04] (Google LLC -> Google LLC)
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0ED778E1-6B5E-4038-B81C-37C6F774CDFA} - System32\Tasks\Norton Internet Security\Norton Internet Security Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\22.21.5.44\SymErr.exe [115696 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {2916AFD1-FCA9-452F-813F-4B4A4C1CA24E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-10-31] (Google LLC -> Google LLC)
Task: {495D1483-1186-4851-AFF5-A73A04A03F4F} - System32\Tasks\Norton Internet Security\Norton Internet Security Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\22.21.5.44\SymErr.exe [115696 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {63C211F3-B87F-4B6C-A3EC-65001232DEC4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-10-31] (Google LLC -> Google LLC)
Task: {69208CDE-B41E-4304-AA91-A091B4DFECCF} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\BIN64\InstallManagerApp.exe [468992 2019-05-22] (Advanced Micro Devices, Inc.) [File not signed]
Task: {6F5F2343-A4EB-4444-AC39-BF98E3177B9A} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\22.21.5.44\WSCStub.exe [643584 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {7772F8A3-7833-42F7-BF55-8F65B1A122AF} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [690616 2021-06-01] (Mozilla Corporation -> Mozilla Foundation)
Task: {84E2FE7B-1953-427D-A2EE-3A0B18FA1F7F} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [66952 2019-05-22] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {876554A9-B8E5-4C1F-9FD8-9ADC1A9939FE} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Internet Security\Upgrade.exe [2345120 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {B4DABFA9-C7FD-4B86-ACD3-28648E1E1D98} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [468992 2019-05-22] (Advanced Micro Devices, Inc.) [File not signed]
Task: {D31932FC-CF63-4176-8A30-039A8DA516D2} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-19] (Adobe Inc. -> Adobe)
Task: {F18CCF9B-27C0-4CF9-9F6B-5B2182C15D93} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [58760 2019-05-22] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {F53CACBC-6505-47BE-B2C6-5E923E8FC171} - System32\Tasks\AMD ThankingURL => C:\Program Files\AMD\CIM\Bin64\Setup.exe [890248 2019-05-22] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 79.138.0.180 85.8.31.209
Tcpip\..\Interfaces\{2C36A584-A784-48D0-A2B2-2FBED0687DE1}: [DhcpNameServer] 79.138.0.180 85.8.31.209
FireFox:
========
FF DefaultProfile: f5wy0fyk.default
FF ProfilePath: C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\f5wy0fyk.default [2021-06-12]
FF Homepage: Mozilla\Firefox\Profiles\f5wy0fyk.default -> hxxp://forum.travian.se/
FF Notifications: Mozilla\Firefox\Profiles\f5wy0fyk.default -> hxxps://play.pokemonshowdown.com
FF Extension: (Firefox Hotfix) - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\f5wy0fyk.default\Extensions\
firefox-hotfix@mozilla.org.xpi [2017-03-10] [Legacy]
FF Extension: (Norton Safe Web) - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\f5wy0fyk.default\Extensions\
nortonsafeweb@symantec.com.xpi [2021-05-04]
FF Extension: (Shinigami Eyes) - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\f5wy0fyk.default\Extensions\
shinigamieyes@shinigamieyes.xpi [2021-03-18]
FF Extension: (Adblock Plus - gratis annonsblockerare) - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\f5wy0fyk.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-05-19]
FF Plugin: @java.com/DTPlugin,version=11.291.2 -> C:\Program Files\Java\jre1.8.0_291\bin\dtplugin\npDeployJava1.dll [2021-06-10] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.291.2 -> C:\Program Files\Java\jre1.8.0_291\bin\plugin2\npjp2.dll [2021-06-10] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
Chrome:
=======
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default [2021-06-12]
CHR Extension: (Presentationer) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-10-31]
CHR Extension: (Dokument) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-10-31]
CHR Extension: (Google Drive) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-31]
CHR Extension: (YouTube) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-10-31]
CHR Extension: (Kalkylark) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-10-31]
CHR Extension: (Google Dokument Offline) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-04]
CHR Extension: (Betalning via Chrome Web Store) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-03-04]
CHR Extension: (Gmail) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-31]
CHR Extension: (Chrome Media Router) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-12]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Internet Security\Engine\22.21.5.44\Exts\Chrome.crx <not found>
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Internet Security\Engine\22.21.5.44\Exts\Chrome.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-19] (Adobe Inc. -> Adobe)
R2 amdacpusrsvc; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [190464 2019-05-22] () [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7391408 2021-06-12] (Malwarebytes Inc -> Malwarebytes)
R2 NortonSecurity; C:\Program Files (x86)\Norton Internet Security\Engine\22.21.5.44\NortonSecurity.exe [343336 2021-05-31] (NortonLifeLock Inc. -> Broadcom)
R2 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [13688656 2021-03-24] (Adlice -> )
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2014-02-18] (Microsoft Windows -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\22.8.0.50\Definitions\BASHDefs\20210608.011\BHDrvx64.sys [1995864 2021-03-15] (Symantec Corporation -> Broadcom)
R1 ccSet_NGC; C:\Windows\System32\drivers\NGCx64\1615050.02C\ccSetx64.sys [192248 2021-05-31] (Symantec Corporation -> Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [516168 2021-01-28] (Symantec Corporation -> Broadcom)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [153672 2021-01-29] (Symantec Corporation -> Broadcom)
S3 hidkmdf; C:\Windows\System32\DRIVERS\hidkmdf.sys [26184 2016-10-05] (SteelSeries ApS -> Windows (R) Win 7 DDK provider)
R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\22.8.0.50\Definitions\IPSDefs\20210611.061\IDSvia64.sys [1488976 2021-04-06] (Symantec Corporation -> Broadcom)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [220752 2021-06-12] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-06-12] (Malwarebytes Inc -> Malwarebytes)
S3 nsvst_NGC; C:\Windows\System32\drivers\NGCx64\1615050.02C\nsvst.sys [54848 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
R1 SRTSP; C:\Windows\System32\drivers\NGCx64\1615050.02C\SRTSP64.SYS [890464 2021-05-31] (Symantec Corporation -> Broadcom)
R1 SRTSPX; C:\Windows\System32\drivers\NGCx64\1615050.02C\SRTSPX64.SYS [50272 2021-05-31] (Symantec Corporation -> Broadcom)
S3 sshid; C:\Windows\System32\DRIVERS\sshid.sys [52960 2016-10-05] (SteelSeries ApS -> SteelSeries ApS)
R0 SymEFASI; C:\Windows\System32\drivers\NGCx64\1615050.02C\SYMEFASI64.SYS [2062424 2021-05-31] (Symantec Corporation -> Broadcom)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [100064 2019-03-15] (Symantec Corporation -> Symantec Corporation)
R3 SymEvnt; C:\Program Files (x86)\Norton Internet Security\NortonData\22.8.0.50\SymPlatform\SymEvnt.sys [712368 2020-01-12] (Symantec Corporation -> Symantec Corporation)
R1 SymIRON; C:\Windows\System32\drivers\NGCx64\1615050.02C\Ironx64.SYS [316488 2021-05-31] (Symantec Corporation -> Symantec Corporation)
R1 SymNetS; C:\Windows\System32\drivers\NGCx64\1615050.02C\symnets.sys [575328 2021-05-31] (Symantec Corporation -> Symantec Corporation)
U3 TrueSight; C:\Windows\System32\drivers\truesight.sys [38032 2021-06-12] (Adlice -> )
S3 wpCtrlDrv_NGC; C:\Windows\System32\drivers\NGCx64\1615050.02C\wpCtrlDrv.sys [1013792 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
S3 NAVENG; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.8.0.50\Definitions\SDSDefs\20170227.019\ENG64.SYS [X]
S3 NAVEX15; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.8.0.50\Definitions\SDSDefs\20170227.019\EX64.SYS [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-06-12 09:42 - 2021-06-12 09:42 - 008534696 _____ (Malwarebytes) C:\Users\Martin\Downloads\AdwCleaner.exe
2021-06-12 09:42 - 2021-06-12 09:42 - 000000000 ____D C:\AdwCleaner
2021-06-12 09:33 - 2021-06-12 09:33 - 000220752 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2021-06-12 09:27 - 2021-06-12 09:27 - 000038032 _____ C:\Windows\system32\Drivers\truesight.sys
2021-06-12 09:26 - 2021-06-12 09:32 - 000000000 ____D C:\ProgramData\RogueKiller
2021-06-12 09:26 - 2021-06-12 09:26 - 000000875 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2021-06-12 09:26 - 2021-06-12 09:26 - 000000875 _____ C:\ProgramData\Desktop\RogueKiller.lnk
2021-06-12 09:26 - 2021-06-12 09:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2021-06-12 09:26 - 2021-06-12 09:26 - 000000000 ____D C:\Program Files\RogueKiller
2021-06-12 09:24 - 2021-06-12 09:24 - 040488656 _____ (Adlice Software ) C:\Users\Martin\Downloads\RogueKiller_setup.exe
2021-06-12 09:02 - 2021-06-12 10:19 - 000015511 _____ C:\Users\Martin\Downloads\FRST.txt
2021-06-12 09:02 - 2021-06-12 10:18 - 000000000 ____D C:\FRST
2021-06-12 09:02 - 2021-06-12 09:03 - 000045941 _____ C:\Users\Martin\Downloads\Addition.txt
2021-06-12 09:01 - 2021-06-12 09:01 - 002300416 _____ (Farbar) C:\Users\Martin\Downloads\FRST64.exe
2021-06-12 08:42 - 2021-06-12 08:42 - 000000000 ____D C:\Windows\system32\Tasks\Remediation
2021-06-12 08:17 - 2021-06-12 08:17 - 000248992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2021-06-12 08:17 - 2021-06-12 08:17 - 000199128 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2021-06-12 08:17 - 2021-06-12 08:17 - 000001979 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-06-12 08:17 - 2021-06-12 08:17 - 000001967 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-06-12 08:17 - 2021-06-12 08:17 - 000001967 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2021-06-12 08:17 - 2021-06-12 08:17 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-06-12 08:16 - 2021-06-12 08:16 - 002080712 _____ (Malwarebytes) C:\Users\Martin\Downloads\MBSetup.exe
2021-06-12 08:16 - 2021-06-12 08:16 - 000000000 ____D C:\Program Files\Malwarebytes
2021-06-10 20:43 - 2021-06-10 20:43 - 084613384 _____ (Oracle Corporation) C:\Users\Martin\Downloads\jre-8u291-windows-x64.exe
2021-06-06 11:48 - 2021-06-06 11:48 - 000000222 _____ C:\Users\Martin\Desktop\Darkest Dungeon®.url
2021-06-06 00:41 - 2021-06-06 00:41 - 000003236 _____ C:\Windows\system32\Tasks\Norton WSC Integration
2021-06-06 00:41 - 2021-06-06 00:41 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2021-06-06 00:41 - 2021-06-06 00:41 - 000000000 ____D C:\Windows\system32\Tasks\Norton Internet Security
2021-06-03 19:28 - 2021-06-03 19:28 - 000000000 ____D C:\Users\Martin\AppData\Roaming\2K
2021-06-03 19:27 - 2021-06-03 19:27 - 000000000 ____D C:\Users\Martin\AppData\Local\cache
2021-06-03 19:27 - 2021-06-03 19:27 - 000000000 ____D C:\Users\Martin\AppData\Local\2K
2021-06-03 19:13 - 2021-06-03 19:13 - 000000220 _____ C:\Users\Martin\Desktop\Sid Meier's Civilization V.url
2021-06-03 16:33 - 2021-06-03 16:34 - 000001972 _____ C:\Users\Martin\Desktop\medieval2.exe - Shortcut.lnk
2021-06-02 19:59 - 2021-06-02 19:59 - 000000220 _____ C:\Users\Martin\Desktop\Total War MEDIEVAL II - Definitive Edition.url
2021-06-01 21:12 - 2021-06-01 21:12 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2021-06-01 20:18 - 2021-06-02 08:03 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-05-30 13:40 - 2021-05-30 13:40 - 000000000 ____D C:\Users\Martin\AppData\Local\Gas Powered Games
2021-05-30 13:27 - 2021-05-30 13:27 - 000000220 _____ C:\Users\Martin\Desktop\Supreme Commander Forged Alliance.url
2021-05-29 12:50 - 2021-06-03 16:32 - 000000000 ____D C:\Users\Martin\Downloads\Medieval 2 gilded vanilla
2021-05-23 09:11 - 2021-05-23 09:11 - 000000222 _____ C:\Users\Martin\Desktop\Slay the Spire.url
2021-05-20 07:51 - 2021-05-20 07:51 - 000000222 _____ C:\Users\Martin\Desktop\Total War WARHAMMER II.url
2021-05-14 08:41 - 2021-05-14 09:31 - 000000000 ____D C:\Users\Martin\AppData\Roaming\ikenfell
2021-05-14 08:08 - 2021-05-14 08:08 - 000000222 _____ C:\Users\Martin\Desktop\Ikenfell.url
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-06-12 10:04 - 2016-03-25 16:11 - 000000000 ____D C:\Users\Martin\AppData\Roaming\discord
2021-06-12 10:02 - 2016-03-25 16:10 - 000000000 ____D C:\Users\Martin\AppData\Local\Discord
2021-06-12 09:40 - 2017-03-25 15:06 - 000000000 ____D C:\Users\Martin\Documents\Derpstuff
2021-06-12 09:33 - 2016-11-16 23:24 - 000000000 ____D C:\Users\Martin\AppData\LocalLow\Mozilla
2021-06-12 09:25 - 2016-02-22 15:28 - 000000000 ____D C:\Program Files (x86)\Steam
2021-06-12 08:52 - 2009-07-14 06:45 - 000035424 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-06-12 08:52 - 2009-07-14 06:45 - 000035424 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-06-12 08:14 - 2009-07-14 07:13 - 000781790 _____ C:\Windows\system32\PerfStringBackup.INI
2021-06-12 08:14 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2021-06-12 08:08 - 2019-06-04 15:45 - 000003112 _____ C:\Windows\system32\Tasks\AMDLinkUpdate
2021-06-12 08:08 - 2016-02-22 14:50 - 000000000 __SHD C:\Users\Martin\IntelGraphicsProfiles
2021-06-12 08:08 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-06-12 08:07 - 2016-03-20 03:06 - 000000000 ____D C:\Users\Martin\AppData\Local\NPE
2021-06-12 08:07 - 2016-02-18 12:19 - 000065536 _____ C:\Windows\system32\spu_storage.bin
2021-06-10 20:48 - 2016-05-05 10:19 - 000000000 ____D C:\Users\Martin\Downloads\Potato
2021-06-10 20:45 - 2016-02-22 18:21 - 000000000 ____D C:\Program Files\Java
2021-06-10 20:45 - 2016-02-22 18:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2021-06-10 20:43 - 2016-02-22 18:21 - 000191776 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2021-06-09 23:20 - 2016-09-30 23:39 - 000000000 ____D C:\Windows\system32\MRT
2021-06-09 23:19 - 2016-09-30 23:39 - 132447432 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-06-06 09:31 - 2016-02-23 15:19 - 000000000 ____D C:\Program Files\Common Files\AV
2021-06-06 00:41 - 2018-02-05 07:14 - 000002529 _____ C:\Users\Public\Desktop\Norton Security.lnk
2021-06-06 00:41 - 2018-02-05 07:14 - 000002529 _____ C:\ProgramData\Desktop\Norton Security.lnk
2021-06-06 00:41 - 2018-02-05 07:12 - 000000000 ____D C:\Windows\system32\Drivers\NGCx64
2021-06-05 21:46 - 2020-12-16 09:30 - 000000000 ____D C:\Users\Martin\Documents\Hardcoded derp frog
2021-06-04 06:27 - 2020-10-31 20:47 - 000002179 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-06-04 06:27 - 2020-10-31 20:47 - 000002138 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-06-04 06:27 - 2020-10-31 20:47 - 000002138 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2021-06-02 08:03 - 2016-02-22 15:12 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-06-01 21:12 - 2019-01-30 11:41 - 000000000 ____D C:\ProgramData\Mozilla
2021-05-30 13:40 - 2016-02-23 05:40 - 000000000 ____D C:\Users\Martin\Documents\My Games
2021-05-29 21:20 - 2020-07-08 17:12 - 000000000 ____D C:\Users\Martin\AppData\Local\User Data
2021-05-26 08:55 - 2016-03-25 16:11 - 000002132 _____ C:\Users\Martin\Desktop\Discord.lnk
2021-05-20 11:10 - 2020-07-25 22:36 - 000000000 ____D C:\Users\Martin\Documents\Beware the Forest
2021-05-18 20:33 - 2020-07-08 18:16 - 000000000 ____D C:\Users\Martin\Downloads\Fairies nicked this stuff
2021-05-17 11:43 - 2017-06-25 02:43 - 000000000 ____D C:\Users\Martin\AppData\Roaming\The Creative Assembly
2021-05-13 13:24 - 2016-04-07 10:27 - 000000000 ____D C:\Users\Martin\AppData\Local\CrashDumps
==================== Files in the root of some directories ========
2017-01-13 18:11 - 2017-01-19 18:11 - 002612224 _____ () C:\Users\Martin\AppData\Local\file__0.localstorage
2020-07-13 12:42 - 2020-07-13 12:42 - 000001492 _____ () C:\Users\Martin\AppData\Local\recently-used.xbel
2016-12-25 23:51 - 2017-01-11 19:50 - 000007597 _____ () C:\Users\Martin\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2021-06-11 09:02
==================== End of FRST.txt ========================