﻿Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 10-07-2019
Ran by marys (administrator) on DESKTOP-TOP8B4Q (12-07-2019 17:46:30)
Running from D:\Download
Loaded Profiles: marys (Available Profiles: marys & Administrator)
Platform: Windows 10 Pro Version 1809 17763.557 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.48.51.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19041.16510.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.XboxApp_48.55.9001.0_x64__8wekyb3d8bbwe\XboxApp.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19061.410.0_x64__8wekyb3d8bbwe\YourPhone.exe
() [File not signed] D:\Program Files (x86)\PC Remote Receiver\MonectServer.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.00.38\atkexComSvc.exe
(Discord Inc. -> Discord Inc.) C:\Users\marys\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\marys\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\marys\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\marys\AppData\Local\Discord\app-0.0.305\Discord.exe
(Electronic Arts, Inc. -> Electronic Arts) D:\Origin\OriginWebHelperService.exe
(Epic Games Inc. -> Epic Games, Inc.) D:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\UnrealCEFSubProcess.exe
(Epic Games Inc. -> Epic Games, Inc.) D:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(ESET, spol. s r.o. -> ESET spol. s r.o.) D:\Download\esetonlinescanner_csy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Ghisler Software GmbH -> Ghisler Software GmbH) D:\totalcmd\TOTALCMD64.EXE
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
(Google Inc -> Google LLC) C:\Users\marys\AppData\Local\Google\Update\1.3.34.11\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Users\marys\AppData\Local\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Jan Fiala -> Jan Fiala) C:\Program Files (x86)\PSPad editor\PSPad.exe
(Janos Mathe -> H.D.S. Hungary) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.48.51.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.48.51.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.WindowsStore_11905.1001.4.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\pacjsworker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\perfmon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®) D:\Program Files (x86)\Thrustmaster\Thrustmaster FFB Driver\drivers\amd64\tmGAInstall.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\MSI\MSIRegister\MSIRegisterService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Toast Server\MSIToastServer.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) D:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
(Monect) [File not signed] D:\Program Files (x86)\PC Remote Receiver\MonectServerService.exe
(Nota Inc. -> Nota Inc.) C:\Program Files (x86)\Gyazo\GyStation.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) D:\Program Files (x86)\Steam\Steam.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\WargamingErrorMonitor.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wgc.exe
(win.rar GmbH -> Alexander Roshal) D:\Program Files\WinRAR\WinRAR.exe
(win.rar GmbH -> Alexander Roshal) D:\Program Files\WinRAR\WinRAR.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8899592 2016-08-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmdS.exe [177928 2019-04-18] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [Live Update] => d:\Program Files (x86)\MSI\Live Update\Live Update.exe [26254008 2019-02-14] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [MSIRegister] => C:\MSI\MSIRegister\MSIRegister.exe [1264312 2019-01-03] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-1410936417-1045171731-3576322853-1001\...\Run: [Google Update] => C:\Users\marys\AppData\Local\Google\Update\1.3.34.11\GoogleUpdateCore.exe [410920 2019-05-16] (Google Inc -> Google LLC)
HKU\S-1-5-21-1410936417-1045171731-3576322853-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [53646912 2019-05-24] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-1410936417-1045171731-3576322853-1001\...\Run: [GoogleChromeAutoLaunch_3D937A5087EB950738AFC75D317B47B4] => C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe [1555952 2019-06-18] (Google LLC -> Google LLC)
HKU\S-1-5-21-1410936417-1045171731-3576322853-1001\...\Run: [Steam] => D:\Program Files (x86)\Steam\steam.exe [3148576 2019-06-18] (Valve -> Valve Corporation)
HKU\S-1-5-21-1410936417-1045171731-3576322853-1001\...\Run: [EpicGamesLauncher] => D:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [35527568 2019-07-10] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1410936417-1045171731-3576322853-1001\...\Run: [Discord] => C:\Users\marys\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-1410936417-1045171731-3576322853-1001\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [911752 2019-06-19] (Nota Inc. -> Nota Inc.)
HKU\S-1-5-21-1410936417-1045171731-3576322853-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22515488 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1410936417-1045171731-3576322853-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [46993264 2019-06-27] (Google LLC -> )
HKU\S-1-5-21-1410936417-1045171731-3576322853-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2554232 2019-06-29] (Wargaming.net Limited -> Wargaming.net)
HKU\S-1-5-21-1410936417-1045171731-3576322853-1001\...\Run: [uTorrent] => C:\Users\marys\AppData\Roaming\uTorrent\uTorrent.exe [1818352 2019-06-29] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-1410936417-1045171731-3576322853-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\marys\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-1410936417-1045171731-3576322853-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\marys\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-1410936417-1045171731-3576322853-1001\...\RunOnce: [Uninstall 19.086.0502.0006\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\marys\AppData\Local\Microsoft\OneDrive\19.086.0502.0006\amd64"
HKU\S-1-5-21-1410936417-1045171731-3576322853-1001\...\RunOnce: [Uninstall 19.086.0502.0006] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\marys\AppData\Local\Microsoft\OneDrive\19.086.0502.0006"
HKLM\Software\...\AppCompatFlags\Custom\SWEP1RCR.EXE: [{ac41225e-dadc-45c1-9f7e-00e45ae19efe}.sdb] -> Star Wars Episode 1 Racer
HKLM\Software\...\AppCompatFlags\InstalledSDB\{ac41225e-dadc-45c1-9f7e-00e45ae19efe}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{ac41225e-dadc-45c1-9f7e-00e45ae19efe}.sdb [2019-03-20]
Startup: C:\Users\marys\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2019-06-11]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {09119B3C-02E0-42B5-80D1-996779AF525B} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1410936417-1045171731-3576322853-1001UA => C:\Users\marys\AppData\Local\Google\Update\GoogleUpdate.exe [156968 2019-03-11] (Google Inc -> Google Inc.)
Task: {0CA8635C-AD5F-471E-A135-10527E5284F2} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [648504 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0E57D6B8-A410-4D7A-B5DD-52EBDE66D22F} - System32\Tasks\HardDiskSentinel\Hard Disk Sentinel_marys => C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe [5273176 2018-07-17] (Janos Mathe -> H.D.S. Hungary)
Task: {1248F51A-DD4E-4F1B-94A7-2AE8190042B1} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6441536 2019-07-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {188E614D-27FB-4DE5-9728-07F4789B698C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [897008 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {278D1DC2-ED40-41DB-B7C8-70544B962146} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {426F3C9A-4945-4DE1-8A2C-00AD50DF2058} - System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-maryskam@jsembuh.cz => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {436E491E-66CB-4D16-BA6C-282286F7D095} - System32\Tasks\ASUS\Ez Update => C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe [1509424 2019-04-09] (ASUSTeK Computer Inc. -> )
Task: {50425C20-196D-4672-88B9-E4C8CC562B2E} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-03-06] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5AD7F09C-5C5A-439E-BB02-7F99CAE5DA84} - System32\Tasks\SamsungMagician => d:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [1146048 2018-10-05] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co. Ltd.)
Task: {5E5A049B-ADA6-4E70-A9CC-11EBDC8F1797} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-12] (Google Inc -> Google LLC)
Task: {5F423807-A88A-41C1-B04A-2342C0AF5AE3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-12] (Google Inc -> Google LLC)
Task: {5F4BFAA7-91F4-4FDF-91C7-59D3A88AB64F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6441536 2019-07-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {64345841-ABEB-48AF-A05F-023D31C73F25} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16509040 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {67191F0C-C1DA-482F-A00C-ADD8EA60E27E} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6FE550F0-AAA9-405D-B1FB-94DE144E72B0} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [1456688 2019-04-09] (ASUSTeK Computer Inc. -> )
Task: {7C9A1798-BAC4-4E27-A2C5-F9C6708B3C35} - System32\Tasks\MSI_Toast_Server => C:\Program Files (x86)\MSI\MSI Toast Server\MSIToastServer.exe [31904 2018-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
Task: {7CB00ABB-2120-48C5-BB1C-6A81EDE788BA} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2110000 2019-04-09] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {7FFC9A04-C07D-454C-87A6-5AE5ADD3D9C6} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1410936417-1045171731-3576322853-1001Core => C:\Users\marys\AppData\Local\Google\Update\GoogleUpdate.exe [156968 2019-03-11] (Google Inc -> Google Inc.)
Task: {80A385E6-5325-4F70-A793-C1EB4E59A583} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {83DA6049-49D8-4DCD-A79C-AE436A6A7E94} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3788144 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {98A5F97B-4848-457A-9622-18D2B949DD83} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-03-06] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {998FBACE-1A11-477C-BE55-E6FDDB065577} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2208400 2019-07-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {999681FA-E5C9-4B99-B46C-93A9E1C3F876} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {9CD6F94F-BC27-4B0F-8700-37935CEAD643} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [152104 2019-07-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {A12BB252-99D7-44A5-A93E-7B97A7468E2B} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26804232 2019-06-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {A894C791-94B0-4A65-BF38-708A2F3ACD61} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [152104 2019-07-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {ABF631CE-C01A-4DCC-B8A8-88D870D83E66} - System32\Tasks\ASUS\GpuFanHelper => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe [4329008 2019-04-09] (ASUSTeK Computer Inc. -> TODO: <Company name>)
Task: {B2A1EEBE-412A-4AC9-BC83-8E61D218161C} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [6785448 2019-06-19] (Nota Inc. -> Nota Inc.)
Task: {BED5B1B3-4B27-4147-8945-E6FFCE13589E} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2208400 2019-07-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {C0526437-E5C6-4ED7-BC42-004E4E146B54} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {C4AB81CD-0C4A-4882-A210-A28FFCC8F461} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [814872 2018-03-02] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {CB50BB53-44A9-48AC-BD75-7EFF5490E2A7} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CF8837A3-ECAD-4DB1-9852-54BDC77AF862} - System32\Tasks\Opera scheduled Autoupdate 1553208583 => d:\Users\marys\AppData\Local\Programs\Opera\launcher.exe [1519640 2019-07-03] (Opera Software AS -> Opera Software)
Task: {E5B9A115-091B-4171-AA73-7484751587ED} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [6785448 2019-06-19] (Nota Inc. -> Nota Inc.)
Task: {EF70B894-58CF-4FFE-B944-2F39B23A852B} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26804232 2019-06-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {FEEE1BCE-9AA5-4B51-9F7E-479ECBB075ED} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [897008 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{2327238c-dee1-46b7-9dbd-422e3b4df2df}: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{502cd46e-d196-4534-a973-ce432cc3e984}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-05-25] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Java\bin\ssv.dll [2019-03-31] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Java\bin\jp2ssv.dll [2019-03-31] (Oracle America, Inc. -> Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-07-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-07-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-07-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-07-02] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: 8pu8t9u8.default
FF ProfilePath: C:\Users\marys\AppData\Roaming\Mozilla\Firefox\Profiles\8pu8t9u8.default [2019-07-03]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-07-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> d:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @java.com/DTPlugin,version=11.201.2 -> D:\Java\bin\dtplugin\npDeployJava1.dll [2019-03-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.201.2 -> D:\Java\bin\plugin2\npjp2.dll [2019-03-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-05-25] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin HKU\S-1-5-21-1410936417-1045171731-3576322853-1001: @tools.google.com/Google Update;version=3 -> C:\Users\marys\AppData\Local\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-16] (Google Inc -> Google LLC)
FF Plugin HKU\S-1-5-21-1410936417-1045171731-3576322853-1001: @tools.google.com/Google Update;version=9 -> C:\Users\marys\AppData\Local\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-16] (Google Inc -> Google LLC)

Chrome: 
=======
CHR HomePage: Default -> hxxps://www.google.com/
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default [2019-07-12]
CHR Extension: (Prezentace) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-03-11]
CHR Extension: (BetterTTV) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2019-03-12]
CHR Extension: (Dokumenty) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-03-11]
CHR Extension: (Disk Google) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-03-11]
CHR Extension: (YouTube) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-03-11]
CHR Extension: (Tab Scissors) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\cdochbecpfdpjobpgnacnbepkgcfhoek [2019-03-12]
CHR Extension: (Multiple Account Checker for Gmail™) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnimhgelcnggigekhdjlifjpndgmnglm [2019-03-12]
CHR Extension: (ADB) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpngiggdglpdnjdoaefidgiigpemgage [2019-03-12]
CHR Extension: (Streamkeys) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekpipjofdicppbepocohdlgenahaneen [2019-07-03]
CHR Extension: (Full Page Screen Capture) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdpohaocaechififmbbbbbknoalclacl [2019-04-22]
CHR Extension: (Dokumenty Google offline) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-03-11]
CHR Extension: (AdBlock) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-07-09]
CHR Extension: (Note Board - Sticky Notes App) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\goficmpcgcnombioohjcgdhbaloknabb [2019-06-13]
CHR Extension: (Todoist: To-Do list and Task Manager) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\jldhpllghnbhlbpcmnajkpdmadaolakh [2019-03-12]
CHR Extension: (The Great Suspender) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\klbibkeccnjlkjkiokjodocebajanakg [2019-03-12]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2019-04-30]
CHR Extension: (BrowserStack Local) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfiddfehmfdojjfdpfngagldgaaafcfo [2019-04-10]
CHR Extension: (Screencastify - Screen Video Recorder) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmeijimgabbpbgpdklnllpncmdofkcpn [2019-07-09]
CHR Extension: (Twitch Now) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk [2019-03-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-03-11]
CHR Extension: (Checker Plus for Gmail™) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\oeopbcgkkoapgobdbedcemjljbihmemj [2019-07-10]
CHR Extension: (Gmail) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-15]
CHR Extension: (Chrome Media Router) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-06-06]
CHR Profile: C:\Users\marys\AppData\Local\Google\Chrome\User Data\System Profile [2019-06-06]
CHR HKU\S-1-5-21-1410936417-1045171731-3576322853-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3117648 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2888272 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.38\atkexComSvc.exe [440368 2019-04-09] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2017-06-21] (ASUSTeK Computer Inc. -> ) [File not signed]
S2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\2.00.76\AsusFanControlService.exe [2061872 2019-04-09] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8473200 2019-03-27] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11413600 2019-06-26] (Microsoft Corporation -> Microsoft Corporation)
S4 Cofee gay; E:\SteamLibrary\steamapps\common\SpaceEngineersDedicatedServer\DedicatedServer64\SpaceEngineersDedicated.exe [56832 2019-05-23] (Keen Software House) [File not signed]
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803456 2019-05-09] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2359312 2019-04-18] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2359312 2019-04-18] (ESET, spol. s r.o. -> ESET)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe [758552 2018-03-02] (Intel(R) Trust Services -> Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe [719640 2018-03-02] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [205968 2017-12-03] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
R2 MonectServerService; D:\Program Files (x86)\PC Remote Receiver\MonectServerService.exe [400384 2019-03-13] (Monect) [File not signed]
R2 MSIREGISTER_MR; C:\MSI\MSIRegister\MSIRegisterService.exe [2020024 2019-01-03] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_LiveUpdate_Service; d:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2191032 2018-12-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-03-06] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-03-06] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; D:\Origin\OriginClientService.exe [2329392 2019-06-11] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [3203888 2019-06-11] (Electronic Arts, Inc. -> Electronic Arts)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5382448 2019-04-24] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 tmGAInstall; d:\Program Files (x86)\Thrustmaster\Thrustmaster FFB Driver\drivers\amd64\tmGAInstall.EXE [48344 2018-12-03] (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3831576 2019-05-27] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [110944 2018-09-15] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2017-04-15] (ASUSTeK Computer Inc. -> )
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2019-03-22] (ASUSTeK Computer Inc. -> )
R1 Asusgio2; C:\WINDOWS\system32\drivers\AsIO2.sys [33832 2019-04-09] (ASUSTeK Computer Inc. -> )
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [145600 2019-03-31] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [107744 2019-03-31] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15800 2019-04-11] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [188240 2019-03-31] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [50280 2019-03-31] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [82472 2019-03-31] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [110000 2019-03-31] (ESET, spol. s r.o. -> ESET)
R4 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [34064 2017-05-08] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-02-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [275232 2019-07-12] (Malwarebytes Corporation -> Malwarebytes)
R3 monectdevices; C:\WINDOWS\System32\drivers\monectdevices.sys [15768 2013-12-03] (Kasherlab Technology Inc. -> )
S3 netr28ux; C:\WINDOWS\System32\drivers\netr28ux.sys [2224128 2018-09-15] (Microsoft Windows -> MediaTek Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_b49751b9038af669\nvlddmkm.sys [21836032 2019-05-23] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-06-13] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-03-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [75600 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [605696 2018-09-15] (Microsoft Windows -> Realtek )
S3 RTCore64; D:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2017-08-27] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46584 2018-09-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [340008 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [61992 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [74552 2019-07-05] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-07-12 17:43 - 2019-07-12 17:43 - 000002939 _____ C:\Users\marys\Desktop\malwarebytes.txt
2019-07-12 17:40 - 2019-07-12 17:40 - 000000648 _____ C:\Users\marys\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2019-07-12 17:40 - 2019-07-12 17:40 - 000000579 _____ C:\Users\marys\Desktop\ESET Online Scanner.lnk
2019-07-12 17:32 - 2019-07-12 17:32 - 000275232 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2019-07-12 15:28 - 2019-07-12 15:28 - 000000000 ____D C:\Users\marys\AppData\Roaming\Microsoft Games
2019-07-12 14:20 - 2019-07-12 14:20 - 000000899 _____ C:\Users\Public\Desktop\Rise.Of.Nations.EE.REPACK-KaOs.lnk
2019-07-12 14:20 - 2019-07-12 14:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KaOs
2019-07-12 12:50 - 2019-07-12 13:09 - 000000098 _____ C:\Users\marys\Desktop\Pendler.txt
2019-07-11 23:40 - 2019-07-11 23:40 - 000000000 ____D C:\Users\marys\AppData\Local\id Software
2019-07-11 23:28 - 2019-07-11 23:28 - 000000687 _____ C:\Users\Public\Desktop\Doom 2016 (Vulkan).lnk
2019-07-11 23:28 - 2019-07-11 23:28 - 000000679 _____ C:\Users\Public\Desktop\Doom 2016 (OpenGL).lnk
2019-07-11 23:28 - 2019-07-11 23:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Doom 2016
2019-07-11 19:11 - 2019-07-11 19:11 - 000000000 ____D C:\Users\marys\AppData\Roaming\11bitstudios
2019-07-11 18:47 - 2019-07-11 18:47 - 000000715 _____ C:\Users\Public\Desktop\Frostpunk.lnk
2019-07-11 18:47 - 2019-07-11 18:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Frostpunk
2019-07-11 00:02 - 2019-07-11 00:02 - 000000000 ____D C:\Users\marys\AppData\LocalLow\Fictiorama Studios
2019-07-09 18:10 - 2019-07-11 23:42 - 000000000 ____D C:\Users\marys\AppData\LocalLow\uTorrent
2019-07-09 09:02 - 2019-07-09 09:02 - 000000000 ____D C:\Users\marys\AppData\Roaming\EasyAntiCheat
2019-07-08 17:45 - 2019-07-08 17:45 - 000001447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2019-07-08 17:45 - 2019-07-08 17:45 - 000001378 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2019-07-08 17:45 - 2019-07-08 17:45 - 000000000 ____D C:\WINDOWS\PCHEALTH
2019-07-08 17:45 - 2019-07-08 17:45 - 000000000 ____D C:\WINDOWS\cs
2019-07-08 17:45 - 2019-07-08 17:45 - 000000000 ____D C:\Program Files (x86)\Windows Live
2019-07-08 17:45 - 2019-07-08 17:45 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2019-07-08 17:44 - 2019-07-08 17:45 - 000000000 ____D C:\Users\marys\AppData\Local\Windows Live
2019-07-08 17:39 - 2019-07-08 17:39 - 000000000 ____D C:\Users\marys\Documents\Aiseesoft Studio
2019-07-08 17:39 - 2019-07-08 17:39 - 000000000 ____D C:\Users\marys\AppData\Local\Aiseesoft Studio
2019-07-08 17:38 - 2019-07-08 17:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aiseesoft
2019-07-08 17:38 - 2019-07-08 17:38 - 000000000 ____D C:\ProgramData\Aiseesoft Studio
2019-07-08 17:38 - 2019-07-08 17:38 - 000000000 ____D C:\Program Files (x86)\Aiseesoft Studio
2019-07-08 17:34 - 2019-07-08 17:34 - 000000000 ____D C:\Users\marys\Documents\FLVtoMP4.co
2019-07-08 17:33 - 2019-07-08 17:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FLV to MP4 Encoder
2019-07-08 16:38 - 2019-07-08 16:38 - 000001281 _____ C:\Users\marys\Desktop\Prohlížeč Opera.lnk
2019-07-07 11:59 - 2019-07-07 11:59 - 000001672 _____ C:\Users\marys\Desktop\World_of_Warships_EU.lnk
2019-07-06 23:08 - 2019-07-06 23:08 - 000000222 _____ C:\Users\marys\Desktop\Warframe.url
2019-07-06 16:11 - 2019-07-06 16:48 - 000000000 ____D C:\Users\marys\AppData\Local\IdleMaster
2019-07-06 15:20 - 2019-07-06 15:20 - 000000000 ____D C:\Users\marys\AppData\Local\clientrunner
2019-07-06 11:18 - 2019-07-06 11:18 - 000000222 _____ C:\Users\marys\Desktop\Company of Heroes 2.url
2019-07-05 23:50 - 2019-07-05 23:50 - 000000000 ____D C:\Users\marys\AppData\Local\Introversion
2019-07-04 17:59 - 2019-07-04 17:59 - 000000000 _____ C:\WINDOWS\SysWOW64\Drivers\1043_ASUSTeK_H110M-K.alu
2019-07-04 17:54 - 2019-07-04 17:54 - 000003794 _____ C:\WINDOWS\System32\Tasks\Intel PTT EK Recertification
2019-07-04 17:51 - 2019-03-22 12:22 - 000014464 _____ C:\WINDOWS\SysWOW64\Drivers\AsUpIO.sys
2019-07-04 17:50 - 2019-07-04 17:50 - 000000000 ____D C:\Program Files\Intel
2019-07-04 17:50 - 2019-04-09 12:27 - 000033832 _____ C:\WINDOWS\system32\Drivers\AsIO2.sys
2019-07-04 17:50 - 2019-04-09 11:22 - 000120880 _____ C:\WINDOWS\system32\AsIO2.dll
2019-07-04 17:50 - 2019-04-09 11:22 - 000095280 _____ C:\WINDOWS\SysWOW64\AsIO2.dll
2019-07-04 17:49 - 2019-07-04 17:50 - 000000000 ____D C:\ProgramData\Intel
2019-07-04 17:49 - 2019-07-04 17:49 - 000000000 ____D C:\Users\marys\Intel
2019-07-04 07:58 - 2019-07-04 07:58 - 000001070 _____ C:\Users\Public\Desktop\Gyazo Replay.lnk
2019-07-03 23:43 - 2019-07-03 23:43 - 000000000 ____D C:\Users\marys\AppData\LocalLow\Black Eye Games Sp_ z o_ o_
2019-07-03 23:43 - 2019-07-03 23:43 - 000000000 ____D C:\Users\marys\AppData\LocalLow\Black Eye Games Sp. z o. o_
2019-07-03 23:36 - 2019-07-03 23:36 - 000000222 _____ C:\Users\marys\Desktop\Gloria Victis.url
2019-07-03 15:07 - 2019-07-03 15:09 - 000000000 ____D C:\Users\marys\Documents\Battlefield V
2019-07-03 15:07 - 2019-07-03 15:07 - 000000000 ____D C:\Users\marys\AppData\Local\Battlefield V
2019-07-03 14:05 - 2019-07-04 17:09 - 000000715 _____ C:\Users\Public\Desktop\Battlefield™ V.lnk
2019-07-03 14:05 - 2019-07-03 14:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield™ V
2019-07-03 13:27 - 2019-07-03 13:35 - 000000000 ____D C:\Users\marys\AppData\Local\DayZ Launcher
2019-07-03 13:27 - 2019-07-03 13:27 - 000000000 ____D C:\Users\marys\AppData\Local\Bohemia_Interactive
2019-06-30 09:34 - 2019-06-30 09:34 - 000000000 ____D C:\Program Files\UNP
2019-06-29 23:32 - 2019-06-29 23:32 - 000000000 ____D C:\Users\marys\Documents\Warm Lamp Games
2019-06-29 23:32 - 2019-06-29 23:32 - 000000000 ____D C:\Users\marys\AppData\LocalLow\Warm Lamp Games
2019-06-29 22:20 - 2019-06-29 22:20 - 000000722 _____ C:\Users\Public\Desktop\Beholder 2.lnk
2019-06-29 22:20 - 2019-06-29 22:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Beholder 2
2019-06-29 21:55 - 2019-06-29 21:55 - 000012554 _____ C:\ProgramData\{ybvuwci.uhn
2019-06-29 21:55 - 2019-06-29 21:55 - 000000000 _____ C:\ProgramData\678759991
2019-06-29 17:25 - 2019-06-29 17:25 - 000000223 _____ C:\Users\marys\Desktop\Dota Underlords.url
2019-06-13 20:26 - 2019-06-13 20:26 - 000000000 ____D C:\Users\marys\AppData\LocalLow\Dodge Roll
2019-06-13 19:09 - 2019-06-13 19:09 - 000000278 _____ C:\Users\marys\Desktop\Enter the Gungeon.url
2019-06-13 14:26 - 2019-06-13 14:26 - 026808320 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 023438336 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 022114960 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 020816384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 018999296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 012869120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 012162048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 009682744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-06-13 14:26 - 2019-06-13 14:26 - 007875072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 007687576 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 006547144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 006309256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 006068224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 005588184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 005210904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 004997096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 004883968 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 004661760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-06-13 14:26 - 2019-06-13 14:26 - 003906560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 003743744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 003637248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-06-13 14:26 - 2019-06-13 14:26 - 003385344 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 003363640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-06-13 14:26 - 2019-06-13 14:26 - 003091968 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 002926096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-06-13 14:26 - 2019-06-13 14:26 - 002653696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 002469440 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 002422272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-06-13 14:26 - 2019-06-13 14:26 - 002323696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 002189312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 002085168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 001929216 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 001903616 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 001899160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 001701888 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 001670840 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 001616384 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 001605120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 001485312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 001466496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 001387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 001331536 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 001223168 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 001219424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 001098136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 001054712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-06-13 14:26 - 2019-06-13 14:26 - 000998912 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000863544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-06-13 14:26 - 2019-06-13 14:26 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000756736 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000749568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000730592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2019-06-13 14:26 - 2019-06-13 14:26 - 000679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000676048 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000651576 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-06-13 14:26 - 2019-06-13 14:26 - 000604344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-06-13 14:26 - 2019-06-13 14:26 - 000594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000553664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-06-13 14:26 - 2019-06-13 14:26 - 000540720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000531968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000522752 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000513904 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000506192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000496128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\DDDS.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000478720 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskcomp.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000474936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-06-13 14:26 - 2019-06-13 14:26 - 000462136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\system32\SDDS.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000419368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmicmiplugin.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000404792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2019-06-13 14:26 - 2019-06-13 14:26 - 000398208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000389120 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingASDS.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000386576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000362496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskcomp.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpnServiceDS.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\FilterDS.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000156984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000152896 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000137056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000122680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000101176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingFilterDS.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000087864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2019-06-13 14:26 - 2019-06-13 14:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-06-13 14:26 - 2019-06-13 14:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-06-13 14:26 - 2019-06-13 14:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-06-13 14:26 - 2019-06-13 14:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-06-13 14:26 - 2019-06-13 14:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-06-13 14:26 - 2019-06-13 14:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-06-13 14:26 - 2019-06-13 14:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-06-13 14:26 - 2019-06-13 14:26 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-06-13 14:25 - 2019-06-13 14:26 - 002707968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-06-13 14:25 - 2019-06-13 14:25 - 001253688 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-06-13 14:25 - 2019-06-13 14:25 - 001229824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-06-13 14:25 - 2019-06-13 14:25 - 001048592 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-06-13 14:25 - 2019-06-13 14:25 - 000773632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-06-13 14:25 - 2019-06-13 14:25 - 000752144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-06-13 14:25 - 2019-06-13 14:25 - 000090424 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-06-13 14:25 - 2019-06-13 14:25 - 000080400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-06-13 12:19 - 2019-06-13 12:19 - 000000000 ____D C:\WINDOWS\system32\appmgmt
2019-06-13 11:50 - 2019-06-13 11:50 - 000000000 ____D C:\ProgramData\TEMP
2019-06-13 11:50 - 2019-06-13 11:50 - 000000000 ____D C:\ProgramData\Binarysense
2019-06-12 15:35 - 2019-06-12 15:35 - 000012300 _____ C:\ProgramData\kpcuamxa.hhk
2019-06-12 15:35 - 2019-06-12 15:35 - 000000000 _____ C:\ProgramData\1675693006
2019-06-12 14:46 - 2019-06-12 14:46 - 001993528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-07-12 17:46 - 2019-03-31 15:57 - 000000000 ____D C:\FRST
2019-07-12 17:40 - 2019-03-11 21:56 - 000000000 ____D C:\Users\marys\AppData\Local\ESET
2019-07-12 17:36 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-07-12 17:21 - 2019-03-12 10:54 - 000000000 ____D C:\Users\marys\AppData\Roaming\Discord
2019-07-12 17:10 - 2019-04-24 01:17 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-07-12 16:27 - 2019-03-13 02:00 - 000000000 ____D C:\Users\marys\AppData\Local\CrashDumps
2019-07-12 15:30 - 2019-03-11 23:50 - 000000000 ____D C:\Users\marys\Documents\my games
2019-07-12 12:25 - 2019-03-11 19:41 - 000000000 ____D C:\ProgramData\NVIDIA
2019-07-12 11:43 - 2019-03-11 23:50 - 000000000 ____D C:\Users\marys\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2019-07-12 10:50 - 2019-04-24 01:23 - 000004210 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-07-12 10:36 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-07-12 10:03 - 2018-09-15 09:31 - 000000000 ____D C:\WINDOWS\INF
2019-07-11 23:42 - 2019-05-30 17:12 - 000000000 ____D C:\Users\marys\AppData\Roaming\uTorrent
2019-07-11 23:41 - 2019-03-12 02:05 - 000000000 ____D C:\Users\marys\AppData\Roaming\Origin
2019-07-11 23:41 - 2019-03-12 02:05 - 000000000 ____D C:\ProgramData\Origin
2019-07-11 22:54 - 2019-06-03 22:25 - 000000000 ____D C:\Users\marys\AppData\Local\BitTorrentHelper
2019-07-11 18:47 - 2019-03-12 23:56 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2019-07-11 16:59 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-07-11 16:55 - 2019-03-11 23:45 - 000001480 _____ C:\Users\marys\AppData\Local\Adobe Uložit pro web 13.0 Prefs
2019-07-11 16:40 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-07-10 22:57 - 2019-04-24 01:23 - 000003380 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1410936417-1045171731-3576322853-1001
2019-07-10 22:57 - 2019-04-24 01:18 - 000002365 _____ C:\Users\marys\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-07-10 22:57 - 2019-03-11 19:43 - 000000000 ___RD C:\Users\marys\OneDrive
2019-07-10 19:11 - 2019-04-15 01:24 - 000007604 _____ C:\Users\marys\AppData\Local\resmon.resmoncfg
2019-07-10 18:58 - 2019-05-29 14:34 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-07-10 18:58 - 2019-05-29 14:34 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-07-10 18:58 - 2019-05-29 14:34 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-07-10 18:58 - 2019-05-29 14:34 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-07-10 18:58 - 2019-04-24 01:23 - 000004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-07-10 18:58 - 2019-04-24 01:23 - 000004106 _____ C:\WINDOWS\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-07-10 18:58 - 2019-04-24 01:23 - 000003976 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-07-10 18:58 - 2019-04-24 01:23 - 000003940 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-07-10 18:58 - 2019-04-24 01:23 - 000003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-07-10 18:58 - 2019-04-24 01:23 - 000003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-07-10 18:58 - 2019-03-11 19:41 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2019-07-10 18:58 - 2019-03-11 19:41 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-07-10 18:58 - 2019-03-11 19:41 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-07-10 17:17 - 2019-04-30 15:42 - 000000000 ___RD C:\Users\marys\Disk Google
2019-07-10 16:00 - 2019-04-12 08:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2019-07-10 14:22 - 2019-03-11 22:48 - 000000000 ____D C:\Users\marys\AppData\Local\D3DSCache
2019-07-10 12:21 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-07-10 12:20 - 2019-03-11 22:35 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-07-10 12:16 - 2019-03-11 22:35 - 136618864 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-07-10 10:02 - 2019-03-11 22:33 - 000000000 ____D C:\ProgramData\ASUS
2019-07-10 10:01 - 2019-04-24 01:23 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-07-10 10:01 - 2018-09-15 08:09 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2019-07-09 23:43 - 2019-05-28 15:58 - 000000000 ____D C:\Users\marys\AppData\Roaming\vlc
2019-07-09 18:03 - 2019-05-13 18:38 - 000000000 ____D C:\Users\marys\.chatty
2019-07-08 18:47 - 2019-04-07 13:53 - 000000000 ____D C:\Users\marys\AppData\Roaming\obs-studio
2019-07-08 17:45 - 2018-09-15 09:33 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-07-08 17:02 - 2019-03-17 23:16 - 000000000 ____D C:\Users\marys\AppData\Local\Warframe
2019-07-08 16:38 - 2019-04-24 01:23 - 000004206 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1553208583
2019-07-08 16:38 - 2019-03-22 00:49 - 000001281 _____ C:\Users\marys\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2019-07-07 11:59 - 2019-05-10 10:12 - 000000000 ____D C:\Games
2019-07-07 01:31 - 2019-03-11 19:43 - 000000000 ____D C:\Users\marys\AppData\Local\PlaceholderTileLogoFolder
2019-07-07 00:23 - 2019-03-11 19:41 - 000000000 ____D C:\Users\marys\AppData\Local\Packages
2019-07-05 22:34 - 2019-06-07 19:46 - 000000000 ____D C:\Users\marys\AppData\Local\DayZ
2019-07-05 10:38 - 2019-06-05 16:29 - 000074552 _____ (Wellbia.com Co., Ltd.) C:\WINDOWS\xhunter1.sys
2019-07-04 17:53 - 2019-06-06 23:03 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-07-04 17:53 - 2019-04-27 13:59 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-07-04 17:53 - 2019-04-24 01:27 - 001702000 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-07-04 17:53 - 2018-09-15 19:39 - 000720158 _____ C:\WINDOWS\system32\perfh005.dat
2019-07-04 17:53 - 2018-09-15 19:39 - 000146266 _____ C:\WINDOWS\system32\perfc005.dat
2019-07-04 17:52 - 2019-04-24 01:23 - 000000000 ____D C:\WINDOWS\System32\Tasks\ASUS
2019-07-04 17:52 - 2019-03-11 22:35 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2019-07-04 17:50 - 2019-03-11 22:26 - 000000000 ____D C:\ProgramData\Package Cache
2019-07-04 17:49 - 2019-04-24 01:18 - 000000000 ____D C:\Users\marys
2019-07-04 17:49 - 2019-03-19 19:35 - 000000000 ____D C:\Program Files (x86)\Intel
2019-07-04 07:58 - 2019-04-24 01:23 - 000003544 _____ C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachineDaily
2019-07-04 07:58 - 2019-04-24 01:23 - 000003408 _____ C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachine
2019-07-04 07:58 - 2019-03-13 18:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gyazo
2019-07-04 07:58 - 2019-03-13 18:18 - 000000000 ____D C:\Program Files (x86)\Gyazo
2019-07-04 00:07 - 2019-03-20 00:47 - 000000000 ____D C:\Users\marys\AppData\Local\Ubisoft Game Launcher
2019-07-03 21:55 - 2019-04-27 13:59 - 000000000 ____D C:\Users\marys\AppData\LocalLow\Mozilla
2019-07-03 21:53 - 2019-04-27 13:59 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-07-03 17:11 - 2019-06-06 22:33 - 000000000 ____D C:\Users\marys\Zomboid
2019-07-03 01:54 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-07-02 19:33 - 2019-03-12 13:02 - 000000000 ____D C:\Users\marys\AppData\Local\Battle.net
2019-07-02 15:00 - 2019-03-13 02:08 - 000000000 ____D C:\Program Files\Microsoft Office
2019-06-30 00:19 - 2019-03-11 19:58 - 000000000 ____D C:\ProgramData\Packages
2019-06-29 17:18 - 2019-03-11 19:46 - 000002502 _____ C:\Users\marys\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-06-29 16:44 - 2019-06-07 20:59 - 000000000 ____D C:\Users\marys\Documents\The Witcher 3
2019-06-29 16:06 - 2019-04-24 01:16 - 000447208 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-06-29 16:06 - 2019-03-11 19:41 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-06-29 16:06 - 2019-03-11 19:41 - 000000000 ___RD C:\Users\marys\3D Objects
2019-06-29 16:04 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\migwiz
2019-06-29 16:04 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-06-18 10:59 - 2019-03-12 17:26 - 002785776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2019-06-18 10:59 - 2019-03-12 17:26 - 002164080 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2019-06-18 10:59 - 2019-03-12 17:26 - 001316664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2019-06-18 10:56 - 2019-03-12 17:25 - 000001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2019-06-13 05:37 - 2019-03-12 17:25 - 000179184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2019-06-13 05:37 - 2019-03-12 17:25 - 000154608 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2019-06-12 22:01 - 2019-06-07 19:50 - 000000000 ____D C:\Users\marys\AppData\Roaming\TS3Client
2019-06-12 12:17 - 2019-04-17 15:44 - 000000000 ____D C:\Users\marys\AppData\Roaming\slobs-client

==================== Files in the root of some directories ================

2019-03-11 23:45 - 2019-07-11 16:55 - 000001480 _____ () C:\Users\marys\AppData\Local\Adobe Uložit pro web 13.0 Prefs
2019-03-13 17:11 - 2019-03-13 17:11 - 000000000 _____ () C:\Users\marys\AppData\Local\oobelibMkey.log
2019-04-15 01:24 - 2019-07-10 19:11 - 000007604 _____ () C:\Users\marys\AppData\Local\resmon.resmoncfg

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================