﻿Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 13-07-2019
Ran by marys (administrator) on DESKTOP-TOP8B4Q (14-07-2019 20:02:29)
Running from D:\Download
Loaded Profiles: marys (Available Profiles: marys & Administrator)
Platform: Windows 10 Pro Version 1809 17763.615 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files\WindowsApps\Microsoft.XboxApp_48.55.9001.0_x64__8wekyb3d8bbwe\XboxApp.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19061.410.0_x64__8wekyb3d8bbwe\YourPhone.exe
() [File not signed] D:\Program Files (x86)\PC Remote Receiver\MonectServer.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\2.00.76\AsusFanControlService.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.00.38\atkexComSvc.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\marys\AppData\Roaming\uTorrent\helper\helper.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\marys\AppData\Roaming\uTorrent\updates\3.5.5_45291\utorrentie.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\marys\AppData\Roaming\uTorrent\updates\3.5.5_45291\utorrentie.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\marys\AppData\Roaming\uTorrent\uTorrent.exe
(Discord Inc. -> Discord Inc.) C:\Users\marys\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\marys\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\marys\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\marys\AppData\Local\Discord\app-0.0.305\Discord.exe
(Electronic Arts, Inc. -> Electronic Arts) D:\Origin\OriginWebHelperService.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Ghisler Software GmbH -> Ghisler Software GmbH) D:\totalcmd\TOTALCMD64.EXE
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Jan Fiala -> Jan Fiala) C:\Program Files (x86)\PSPad editor\PSPad.exe
(Janos Mathe -> H.D.S. Hungary) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Users\marys\Desktop\adwcleaner_7.3 (2).exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.WindowsStore_11905.1001.4.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®) D:\Program Files (x86)\Thrustmaster\Thrustmaster FFB Driver\drivers\amd64\tmGAInstall.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\MSI\MSIRegister\MSIRegisterService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Toast Server\MSIToastServer.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) D:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
(Monect) [File not signed] D:\Program Files (x86)\PC Remote Receiver\MonectServerService.exe
(Nota Inc. -> Nota Inc.) C:\Program Files (x86)\Gyazo\GyStation.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) D:\Program Files (x86)\Steam\Steam.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\WargamingErrorMonitor.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wgc.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8899592 2016-08-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmdS.exe [177928 2019-04-18] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [Live Update] => d:\Program Files (x86)\MSI\Live Update\Live Update.exe [26254008 2019-02-14] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [MSIRegister] => C:\MSI\MSIRegister\MSIRegister.exe [1264312 2019-01-03] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-1410936417-1045171731-3576322853-1001\...\Run: [Google Update] => C:\Users\marys\AppData\Local\Google\Update\1.3.34.11\GoogleUpdateCore.exe [410920 2019-05-16] (Google Inc -> Google LLC)
HKU\S-1-5-21-1410936417-1045171731-3576322853-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [53646912 2019-05-24] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-1410936417-1045171731-3576322853-1001\...\Run: [GoogleChromeAutoLaunch_3D937A5087EB950738AFC75D317B47B4] => C:\Users\marys\AppData\Local\Google\Chrome\Application\chrome.exe [1555952 2019-06-18] (Google LLC -> Google LLC)
HKU\S-1-5-21-1410936417-1045171731-3576322853-1001\...\Run: [Steam] => D:\Program Files (x86)\Steam\steam.exe [3148576 2019-06-18] (Valve -> Valve Corporation)
HKU\S-1-5-21-1410936417-1045171731-3576322853-1001\...\Run: [EpicGamesLauncher] => D:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [35527568 2019-07-10] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1410936417-1045171731-3576322853-1001\...\Run: [Discord] => C:\Users\marys\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-1410936417-1045171731-3576322853-1001\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [911752 2019-06-19] (Nota Inc. -> Nota Inc.)
HKU\S-1-5-21-1410936417-1045171731-3576322853-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22515488 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1410936417-1045171731-3576322853-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [46993264 2019-06-27] (Google LLC -> )
HKU\S-1-5-21-1410936417-1045171731-3576322853-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2554232 2019-06-29] (Wargaming.net Limited -> Wargaming.net)
HKU\S-1-5-21-1410936417-1045171731-3576322853-1001\...\Run: [uTorrent] => C:\Users\marys\AppData\Roaming\uTorrent\uTorrent.exe [1820392 2019-07-14] (BitTorrent Inc -> BitTorrent Inc.)
HKLM\Software\...\AppCompatFlags\Custom\SWEP1RCR.EXE: [{ac41225e-dadc-45c1-9f7e-00e45ae19efe}.sdb] -> Star Wars Episode 1 Racer
HKLM\Software\...\AppCompatFlags\InstalledSDB\{ac41225e-dadc-45c1-9f7e-00e45ae19efe}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{ac41225e-dadc-45c1-9f7e-00e45ae19efe}.sdb [2019-03-20]
Startup: C:\Users\marys\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2019-06-11]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {09119B3C-02E0-42B5-80D1-996779AF525B} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1410936417-1045171731-3576322853-1001UA => C:\Users\marys\AppData\Local\Google\Update\GoogleUpdate.exe [156968 2019-03-11] (Google Inc -> Google Inc.)
Task: {0CA8635C-AD5F-471E-A135-10527E5284F2} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [648504 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0E57D6B8-A410-4D7A-B5DD-52EBDE66D22F} - System32\Tasks\HardDiskSentinel\Hard Disk Sentinel_marys => C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe [5273176 2018-07-17] (Janos Mathe -> H.D.S. Hungary)
Task: {107F4E6A-A94C-4C18-BD23-46E5B7C761AE} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2208400 2019-07-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {188E614D-27FB-4DE5-9728-07F4789B698C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [897008 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {278D1DC2-ED40-41DB-B7C8-70544B962146} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2F50CFC7-1133-417B-9C0E-F16D0FEE32BB} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2208400 2019-07-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {3099E3FE-71AD-4563-9013-FC46CEC78377} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26804232 2019-06-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {426F3C9A-4945-4DE1-8A2C-00AD50DF2058} - System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-maryskam@jsembuh.cz => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {436E491E-66CB-4D16-BA6C-282286F7D095} - System32\Tasks\ASUS\Ez Update => C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe [1509424 2019-04-09] (ASUSTeK Computer Inc. -> )
Task: {50425C20-196D-4672-88B9-E4C8CC562B2E} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-03-06] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {51A6AD3A-8292-423A-8783-A32CC84E58F0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6441536 2019-07-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {5AD7F09C-5C5A-439E-BB02-7F99CAE5DA84} - System32\Tasks\SamsungMagician => d:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [1146048 2018-10-05] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co. Ltd.)
Task: {5E5A049B-ADA6-4E70-A9CC-11EBDC8F1797} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-12] (Google Inc -> Google LLC)
Task: {5F423807-A88A-41C1-B04A-2342C0AF5AE3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-12] (Google Inc -> Google LLC)
Task: {64345841-ABEB-48AF-A05F-023D31C73F25} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16509040 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {67191F0C-C1DA-482F-A00C-ADD8EA60E27E} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6FE550F0-AAA9-405D-B1FB-94DE144E72B0} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [1456688 2019-04-09] (ASUSTeK Computer Inc. -> )
Task: {7C9A1798-BAC4-4E27-A2C5-F9C6708B3C35} - System32\Tasks\MSI_Toast_Server => C:\Program Files (x86)\MSI\MSI Toast Server\MSIToastServer.exe [31904 2018-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
Task: {7CB00ABB-2120-48C5-BB1C-6A81EDE788BA} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2110000 2019-04-09] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {7FFC9A04-C07D-454C-87A6-5AE5ADD3D9C6} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1410936417-1045171731-3576322853-1001Core => C:\Users\marys\AppData\Local\Google\Update\GoogleUpdate.exe [156968 2019-03-11] (Google Inc -> Google Inc.)
Task: {80A385E6-5325-4F70-A793-C1EB4E59A583} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {83DA6049-49D8-4DCD-A79C-AE436A6A7E94} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3788144 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {98A5F97B-4848-457A-9622-18D2B949DD83} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-03-06] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9934F94A-59AC-4BB1-9293-105AA072DFBD} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [152112 2019-07-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {999681FA-E5C9-4B99-B46C-93A9E1C3F876} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {ABF631CE-C01A-4DCC-B8A8-88D870D83E66} - System32\Tasks\ASUS\GpuFanHelper => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe [4329008 2019-04-09] (ASUSTeK Computer Inc. -> TODO: <Company name>)
Task: {AF9C5784-2726-4842-9DAF-C1824975E7E1} - System32\Tasks\EOSv3 Scheduler onLogOn => D:\Download\esetonlinescanner_csy.exe [7971352 2019-07-12] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {B2A1EEBE-412A-4AC9-BC83-8E61D218161C} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [6785448 2019-06-19] (Nota Inc. -> Nota Inc.)
Task: {BDBCD3D6-522A-4B05-BFF0-1E8FC50A047F} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26804232 2019-06-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {C0526437-E5C6-4ED7-BC42-004E4E146B54} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {C4AB81CD-0C4A-4882-A210-A28FFCC8F461} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [814872 2018-03-02] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {CB50BB53-44A9-48AC-BD75-7EFF5490E2A7} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CF8837A3-ECAD-4DB1-9852-54BDC77AF862} - System32\Tasks\Opera scheduled Autoupdate 1553208583 => d:\Users\marys\AppData\Local\Programs\Opera\launcher.exe [1519640 2019-07-03] (Opera Software AS -> Opera Software)
Task: {E5B9A115-091B-4171-AA73-7484751587ED} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [6785448 2019-06-19] (Nota Inc. -> Nota Inc.)
Task: {F03D0ABB-0DE8-49A0-9F05-567BBBCBD466} - System32\Tasks\EOSv3 Scheduler onTime => D:\Download\esetonlinescanner_csy.exe [7971352 2019-07-12] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {F87B8FDA-452A-4C38-9790-EC80F4F4AAB3} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [152112 2019-07-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {FEEE1BCE-9AA5-4B51-9F7E-479ECBB075ED} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [897008 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FF0E9F73-BE1F-4168-9BC3-910F6B76DE7A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6441536 2019-07-02] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{2327238c-dee1-46b7-9dbd-422e3b4df2df}: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{502cd46e-d196-4534-a973-ce432cc3e984}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-05-25] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Java\bin\ssv.dll [2019-03-31] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Java\bin\jp2ssv.dll [2019-03-31] (Oracle America, Inc. -> Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-14] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-07-14] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-14] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-07-14] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-14] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-07-14] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-14] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-07-14] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: 8pu8t9u8.default
FF ProfilePath: C:\Users\marys\AppData\Roaming\Mozilla\Firefox\Profiles\8pu8t9u8.default [2019-07-03]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-07-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> d:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @java.com/DTPlugin,version=11.201.2 -> D:\Java\bin\dtplugin\npDeployJava1.dll [2019-03-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.201.2 -> D:\Java\bin\plugin2\npjp2.dll [2019-03-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-05-25] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin HKU\S-1-5-21-1410936417-1045171731-3576322853-1001: @tools.google.com/Google Update;version=3 -> C:\Users\marys\AppData\Local\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-16] (Google Inc -> Google LLC)
FF Plugin HKU\S-1-5-21-1410936417-1045171731-3576322853-1001: @tools.google.com/Google Update;version=9 -> C:\Users\marys\AppData\Local\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-16] (Google Inc -> Google LLC)

Chrome: 
=======
CHR HomePage: Default -> hxxps://www.google.com/
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default [2019-07-14]
CHR Extension: (Prezentace) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-03-11]
CHR Extension: (BetterTTV) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2019-03-12]
CHR Extension: (Dokumenty) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-03-11]
CHR Extension: (Disk Google) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-03-11]
CHR Extension: (YouTube) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-03-11]
CHR Extension: (Tab Scissors) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\cdochbecpfdpjobpgnacnbepkgcfhoek [2019-03-12]
CHR Extension: (Multiple Account Checker for Gmail™) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnimhgelcnggigekhdjlifjpndgmnglm [2019-03-12]
CHR Extension: (ADB) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpngiggdglpdnjdoaefidgiigpemgage [2019-03-12]
CHR Extension: (Streamkeys) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekpipjofdicppbepocohdlgenahaneen [2019-07-03]
CHR Extension: (Full Page Screen Capture) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdpohaocaechififmbbbbbknoalclacl [2019-04-22]
CHR Extension: (Dokumenty Google offline) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-03-11]
CHR Extension: (AdBlock) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-07-09]
CHR Extension: (Note Board - Sticky Notes App) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\goficmpcgcnombioohjcgdhbaloknabb [2019-06-13]
CHR Extension: (Todoist: To-Do list and Task Manager) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\jldhpllghnbhlbpcmnajkpdmadaolakh [2019-03-12]
CHR Extension: (The Great Suspender) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\klbibkeccnjlkjkiokjodocebajanakg [2019-03-12]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2019-04-30]
CHR Extension: (BrowserStack Local) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfiddfehmfdojjfdpfngagldgaaafcfo [2019-04-10]
CHR Extension: (Screencastify - Screen Video Recorder) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmeijimgabbpbgpdklnllpncmdofkcpn [2019-07-09]
CHR Extension: (Twitch Now) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk [2019-03-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-03-11]
CHR Extension: (Checker Plus for Gmail™) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\oeopbcgkkoapgobdbedcemjljbihmemj [2019-07-10]
CHR Extension: (Gmail) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-15]
CHR Extension: (Chrome Media Router) - C:\Users\marys\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-06-06]
CHR Profile: C:\Users\marys\AppData\Local\Google\Chrome\User Data\System Profile [2019-06-06]
CHR HKU\S-1-5-21-1410936417-1045171731-3576322853-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3117648 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2888272 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.38\atkexComSvc.exe [440368 2019-04-09] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2017-06-21] (ASUSTeK Computer Inc. -> ) [File not signed]
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\2.00.76\AsusFanControlService.exe [2061872 2019-04-09] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8473200 2019-03-27] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11413600 2019-06-26] (Microsoft Corporation -> Microsoft Corporation)
S4 Cofee gay; E:\SteamLibrary\steamapps\common\SpaceEngineersDedicatedServer\DedicatedServer64\SpaceEngineersDedicated.exe [56832 2019-05-23] (Keen Software House) [File not signed]
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803456 2019-05-09] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2359312 2019-04-18] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2359312 2019-04-18] (ESET, spol. s r.o. -> ESET)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe [758552 2018-03-02] (Intel(R) Trust Services -> Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe [719640 2018-03-02] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [205968 2017-12-03] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
R2 MonectServerService; D:\Program Files (x86)\PC Remote Receiver\MonectServerService.exe [400384 2019-03-13] (Monect) [File not signed]
R2 MSIREGISTER_MR; C:\MSI\MSIRegister\MSIRegisterService.exe [2020024 2019-01-03] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_LiveUpdate_Service; d:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2191032 2018-12-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-03-06] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-03-06] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; D:\Origin\OriginClientService.exe [2329392 2019-06-11] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [3203888 2019-06-11] (Electronic Arts, Inc. -> Electronic Arts)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5356848 2019-07-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 tmGAInstall; d:\Program Files (x86)\Thrustmaster\Thrustmaster FFB Driver\drivers\amd64\tmGAInstall.EXE [48344 2018-12-03] (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3831576 2019-05-27] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [110944 2018-09-15] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2017-04-15] (ASUSTeK Computer Inc. -> )
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2019-03-22] (ASUSTeK Computer Inc. -> )
R1 Asusgio2; C:\WINDOWS\system32\drivers\AsIO2.sys [33832 2019-04-09] (ASUSTeK Computer Inc. -> )
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [145600 2019-03-31] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [107744 2019-03-31] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15800 2019-07-14] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [188240 2019-03-31] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [50280 2019-03-31] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [82472 2019-03-31] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [110000 2019-03-31] (ESET, spol. s r.o. -> ESET)
R4 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [34064 2017-05-08] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-06-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [275232 2019-07-14] (Malwarebytes Corporation -> Malwarebytes)
R3 monectdevices; C:\WINDOWS\System32\drivers\monectdevices.sys [15768 2013-12-03] (Kasherlab Technology Inc. -> )
S3 netr28ux; C:\WINDOWS\System32\drivers\netr28ux.sys [2224128 2018-09-15] (Microsoft Windows -> MediaTek Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_b49751b9038af669\nvlddmkm.sys [21836032 2019-05-23] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-06-13] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-03-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [75600 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [605696 2018-09-15] (Microsoft Windows -> Realtek )
S3 RTCore64; D:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2017-08-27] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46584 2018-09-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [340008 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [61992 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [74552 2019-07-05] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-07-14 19:02 - 2019-07-14 19:02 - 000275232 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2019-07-14 18:59 - 2019-07-14 18:58 - 007025360 _____ (Malwarebytes) C:\Users\marys\Desktop\adwcleaner_7.3 (2).exe
2019-07-13 13:30 - 2019-07-13 13:55 - 000309546 _____ C:\TDSSKiller.3.1.0.28_13.07.2019_13.30.13_log.txt
2019-07-13 05:18 - 2019-07-13 05:18 - 000003786 _____ C:\WINDOWS\System32\Tasks\EOSv3 Scheduler onLogOn
2019-07-13 05:18 - 2019-07-13 05:18 - 000003344 _____ C:\WINDOWS\System32\Tasks\EOSv3 Scheduler onTime
2019-07-12 19:32 - 2019-07-12 19:32 - 000001912 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-07-12 19:32 - 2019-07-12 19:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-07-12 19:32 - 2019-06-26 13:00 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2019-07-12 19:32 - 2019-01-08 16:32 - 000153328 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-07-12 19:24 - 2019-07-12 19:24 - 000000863 _____ C:\Users\Public\Desktop\Judgment Apocalypse Survival Simulation.lnk
2019-07-12 17:53 - 2019-07-12 17:53 - 000037027 _____ C:\Users\marys\Desktop\FRST a ADDITION.zip
2019-07-12 17:40 - 2019-07-12 17:40 - 000000648 _____ C:\Users\marys\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2019-07-12 17:40 - 2019-07-12 17:40 - 000000579 _____ C:\Users\marys\Desktop\ESET Online Scanner.lnk
2019-07-12 15:28 - 2019-07-12 15:28 - 000000000 ____D C:\Users\marys\AppData\Roaming\Microsoft Games
2019-07-12 14:20 - 2019-07-12 14:20 - 000000899 _____ C:\Users\Public\Desktop\Rise.Of.Nations.EE.REPACK-KaOs.lnk
2019-07-12 14:20 - 2019-07-12 14:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KaOs
2019-07-12 12:50 - 2019-07-12 13:09 - 000000098 _____ C:\Users\marys\Desktop\Pendler.txt
2019-07-11 23:40 - 2019-07-11 23:40 - 000000000 ____D C:\Users\marys\AppData\Local\id Software
2019-07-11 23:28 - 2019-07-11 23:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Doom 2016
2019-07-11 19:11 - 2019-07-11 19:11 - 000000000 ____D C:\Users\marys\AppData\Roaming\11bitstudios
2019-07-11 18:47 - 2019-07-11 18:47 - 000000715 _____ C:\Users\Public\Desktop\Frostpunk.lnk
2019-07-11 18:47 - 2019-07-11 18:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Frostpunk
2019-07-11 00:02 - 2019-07-11 00:02 - 000000000 ____D C:\Users\marys\AppData\LocalLow\Fictiorama Studios
2019-07-10 12:15 - 2019-07-10 12:15 - 007727336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2019-07-10 12:15 - 2019-07-10 12:15 - 005436696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-07-10 12:15 - 2019-07-10 12:15 - 005115384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2019-07-10 12:15 - 2019-07-10 12:15 - 003550384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-07-10 12:15 - 2019-07-10 12:15 - 002469432 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-07-10 12:15 - 2019-07-10 12:15 - 002323688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-07-10 12:15 - 2019-07-10 12:15 - 001266192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-07-10 12:15 - 2019-07-10 12:15 - 001254400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2019-07-10 12:15 - 2019-07-10 12:15 - 000898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2019-07-10 12:15 - 2019-07-10 12:15 - 000798736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2019-07-10 12:15 - 2019-07-10 12:15 - 000747568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2019-07-10 12:15 - 2019-07-10 12:15 - 000743216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2019-07-10 12:15 - 2019-07-10 12:15 - 000687896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2019-07-10 12:15 - 2019-07-10 12:15 - 000673520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2019-07-10 12:15 - 2019-07-10 12:15 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2019-07-10 12:15 - 2019-07-10 12:15 - 000573440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfh264enc.dll
2019-07-10 12:15 - 2019-07-10 12:15 - 000560128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfh264enc.dll
2019-07-10 12:15 - 2019-07-10 12:15 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2019-07-10 12:15 - 2019-07-10 12:15 - 000317456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys
2019-07-10 12:15 - 2019-07-10 12:15 - 000311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2019-07-10 12:15 - 2019-07-10 12:15 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscobj.dll
2019-07-10 12:15 - 2019-07-10 12:15 - 000263360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-07-10 12:15 - 2019-07-10 12:15 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscobj.dll
2019-07-10 12:15 - 2019-07-10 12:15 - 000092592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2019-07-10 12:14 - 2019-07-10 12:14 - 026808320 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 023454208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 022115472 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 020816384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 019012096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 015221248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 012938752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 012243968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 009683472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-07-10 12:14 - 2019-07-10 12:14 - 008900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 007921664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 007876096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 006925312 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 006545304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 006441472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 006308232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 006068224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 005764608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 005587976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 005566464 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 005528064 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 005297664 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 004880896 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 004588752 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-07-10 12:14 - 2019-07-10 12:14 - 004303872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 004056576 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 003818416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-07-10 12:14 - 2019-07-10 12:14 - 003738624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 003656192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 003636224 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-07-10 12:14 - 2019-07-10 12:14 - 003630592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 003427328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 003363640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-07-10 12:14 - 2019-07-10 12:14 - 003081728 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 002982400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 002942464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 002871816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-07-10 12:14 - 2019-07-10 12:14 - 002778760 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 002714624 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 002701000 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 002693120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 002626872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-07-10 12:14 - 2019-07-10 12:14 - 002421760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-07-10 12:14 - 2019-07-10 12:14 - 002393088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 002278784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 002096128 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2019-07-10 12:14 - 2019-07-10 12:14 - 002073472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 002050048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 002017280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2019-07-10 12:14 - 2019-07-10 12:14 - 002013696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 001994760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 001966904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-07-10 12:14 - 2019-07-10 12:14 - 001903616 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 001863168 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 001837136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 001794048 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 001763328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 001721352 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 001702088 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-07-10 12:14 - 2019-07-10 12:14 - 001701888 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 001668752 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 001622016 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 001516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2019-07-10 12:14 - 2019-07-10 12:14 - 001484800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 001477648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 001472808 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-07-10 12:14 - 2019-07-10 12:14 - 001465464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 001427592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 001345168 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-07-10 12:14 - 2019-07-10 12:14 - 001316352 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 001259520 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 001223168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 001182448 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-07-10 12:14 - 2019-07-10 12:14 - 001162320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 001160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 001159168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 001145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 001132032 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 001125416 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 001075712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 001052672 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 001010688 _____ (Microsoft Corporation) C:\WINDOWS\system32\refsutil.exe
2019-07-10 12:14 - 2019-07-10 12:14 - 000998928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2019-07-10 12:14 - 2019-07-10 12:14 - 000988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000964608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000956416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000863544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-07-10 12:14 - 2019-07-10 12:14 - 000833536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000828728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2019-07-10 12:14 - 2019-07-10 12:14 - 000810504 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000807480 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-07-10 12:14 - 2019-07-10 12:14 - 000804744 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioIso.exe
2019-07-10 12:14 - 2019-07-10 12:14 - 000800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000771584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-07-10 12:14 - 2019-07-10 12:14 - 000742912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000740664 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000730936 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000682496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000664064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000660032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-07-10 12:14 - 2019-07-10 12:14 - 000652528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedRealitySvc.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000637968 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000626176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000617784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000553992 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuietHours.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-07-10 12:14 - 2019-07-10 12:14 - 000519168 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000514136 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000487936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000485376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2019-07-10 12:14 - 2019-07-10 12:14 - 000464912 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000463872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2019-07-10 12:14 - 2019-07-10 12:14 - 000439096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-07-10 12:14 - 2019-07-10 12:14 - 000436024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2019-07-10 12:14 - 2019-07-10 12:14 - 000431416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2019-07-10 12:14 - 2019-07-10 12:14 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2019-07-10 12:14 - 2019-07-10 12:14 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2019-07-10 12:14 - 2019-07-10 12:14 - 000414208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000397688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000362496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-07-10 12:14 - 2019-07-10 12:14 - 000351432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000333128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000324624 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2019-07-10 12:14 - 2019-07-10 12:14 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MbbCx.sys
2019-07-10 12:14 - 2019-07-10 12:14 - 000279920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmd.exe
2019-07-10 12:14 - 2019-07-10 12:14 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\DesktopSwitcherDataModel.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmd.exe
2019-07-10 12:14 - 2019-07-10 12:14 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000219448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-07-10 12:14 - 2019-07-10 12:14 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMPushRouterCore.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\fsutil.exe
2019-07-10 12:14 - 2019-07-10 12:14 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmvdsitf.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcaSvc.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000164368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-07-10 12:14 - 2019-07-10 12:14 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2019-07-10 12:14 - 2019-07-10 12:14 - 000157024 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Radios.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmvdsitf.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000149232 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingUI.exe
2019-07-10 12:14 - 2019-07-10 12:14 - 000148480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fsutil.exe
2019-07-10 12:14 - 2019-07-10 12:14 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000137864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe
2019-07-10 12:14 - 2019-07-10 12:14 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000121896 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000115120 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2019-07-10 12:14 - 2019-07-10 12:14 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2019-07-10 12:14 - 2019-07-10 12:14 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompMgmtLauncher.exe
2019-07-10 12:14 - 2019-07-10 12:14 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000071696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerUI.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000054272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerUI.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-07-10 12:14 - 2019-07-10 12:14 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpgradeResultsUI.exe
2019-07-10 12:14 - 2019-07-10 12:14 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\spaceman.exe
2019-07-10 12:13 - 2019-07-10 12:14 - 007884288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 017484800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 007687784 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 007645600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 005561312 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 004351448 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-07-10 12:13 - 2019-07-10 12:13 - 003385856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 003335216 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 002766136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 002706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-07-10 12:13 - 2019-07-10 12:13 - 002645504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 002633216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 002593336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 002406928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.AppAgent.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 002200080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 002189312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 002085376 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 001929728 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 001893376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 001715000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 001713976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.AppAgent.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 001676288 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 001674752 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 001662480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 001605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 001522488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 001466368 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 001397048 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 001321784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 001308672 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 001253688 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-07-10 12:13 - 2019-07-10 12:13 - 001225216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-07-10 12:13 - 2019-07-10 12:13 - 001208320 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 001199616 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 001054928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-07-10 12:13 - 2019-07-10 12:13 - 001052984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-07-10 12:13 - 2019-07-10 12:13 - 001048592 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-07-10 12:13 - 2019-07-10 12:13 - 001043968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2019-07-10 12:13 - 2019-07-10 12:13 - 001038336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 001007616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000987736 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000895552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000871784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000865272 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000850992 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2019-07-10 12:13 - 2019-07-10 12:13 - 000799776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2019-07-10 12:13 - 2019-07-10 12:13 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000770096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000768224 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000758896 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-07-10 12:13 - 2019-07-10 12:13 - 000756224 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000749568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000738816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Office2013CustomActions.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000731104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2019-07-10 12:13 - 2019-07-10 12:13 - 000680176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000652296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-07-10 12:13 - 2019-07-10 12:13 - 000651792 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-07-10 12:13 - 2019-07-10 12:13 - 000607744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000580024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000541184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2019-07-10 12:13 - 2019-07-10 12:13 - 000527872 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-07-10 12:13 - 2019-07-10 12:13 - 000525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.Office2013CustomActions.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000511504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000506408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000482104 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2019-07-10 12:13 - 2019-07-10 12:13 - 000470528 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2019-07-10 12:13 - 2019-07-10 12:13 - 000425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000423480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000415752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-07-10 12:13 - 2019-07-10 12:13 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.internal.shellcommon.shareexperience.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000310288 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000298296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2019-07-10 12:13 - 2019-07-10 12:13 - 000294000 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000292152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2019-07-10 12:13 - 2019-07-10 12:13 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiCloudStore.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000241944 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPHLPAPI.DLL
2019-07-10 12:13 - 2019-07-10 12:13 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2019-07-10 12:13 - 2019-07-10 12:13 - 000216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000212792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-07-10 12:13 - 2019-07-10 12:13 - 000203272 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000198456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-07-10 12:13 - 2019-07-10 12:13 - 000197832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IPHLPAPI.DLL
2019-07-10 12:13 - 2019-07-10 12:13 - 000192824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-07-10 12:13 - 2019-07-10 12:13 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000141216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2019-07-10 12:13 - 2019-07-10 12:13 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000117720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2019-07-10 12:13 - 2019-07-10 12:13 - 000095544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2019-07-10 12:13 - 2019-07-10 12:13 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys
2019-07-10 12:13 - 2019-07-10 12:13 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2019-07-10 12:13 - 2019-07-10 12:13 - 000036360 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-07-10 12:13 - 2019-07-10 12:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-07-10 12:13 - 2019-07-10 12:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-07-10 12:13 - 2019-07-10 12:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-07-10 12:13 - 2019-07-10 12:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-07-10 12:13 - 2019-07-10 12:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-07-10 12:13 - 2019-07-10 12:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-07-10 12:13 - 2019-07-10 12:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-07-10 12:13 - 2019-07-10 12:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-07-09 18:10 - 2019-07-14 19:04 - 000000000 ____D C:\Users\marys\AppData\LocalLow\uTorrent
2019-07-09 09:02 - 2019-07-09 09:02 - 000000000 ____D C:\Users\marys\AppData\Roaming\EasyAntiCheat
2019-07-08 17:45 - 2019-07-08 17:45 - 000001447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2019-07-08 17:45 - 2019-07-08 17:45 - 000001378 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2019-07-08 17:45 - 2019-07-08 17:45 - 000000000 ____D C:\WINDOWS\PCHEALTH
2019-07-08 17:45 - 2019-07-08 17:45 - 000000000 ____D C:\WINDOWS\cs
2019-07-08 17:45 - 2019-07-08 17:45 - 000000000 ____D C:\Program Files (x86)\Windows Live
2019-07-08 17:45 - 2019-07-08 17:45 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2019-07-08 17:44 - 2019-07-08 17:45 - 000000000 ____D C:\Users\marys\AppData\Local\Windows Live
2019-07-08 17:39 - 2019-07-08 17:39 - 000000000 ____D C:\Users\marys\Documents\Aiseesoft Studio
2019-07-08 17:39 - 2019-07-08 17:39 - 000000000 ____D C:\Users\marys\AppData\Local\Aiseesoft Studio
2019-07-08 17:38 - 2019-07-08 17:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aiseesoft
2019-07-08 17:38 - 2019-07-08 17:38 - 000000000 ____D C:\ProgramData\Aiseesoft Studio
2019-07-08 17:38 - 2019-07-08 17:38 - 000000000 ____D C:\Program Files (x86)\Aiseesoft Studio
2019-07-08 17:34 - 2019-07-08 17:34 - 000000000 ____D C:\Users\marys\Documents\FLVtoMP4.co
2019-07-08 17:33 - 2019-07-08 17:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FLV to MP4 Encoder
2019-07-08 16:38 - 2019-07-08 16:38 - 000001281 _____ C:\Users\marys\Desktop\Prohlížeč Opera.lnk
2019-07-07 11:59 - 2019-07-07 11:59 - 000001672 _____ C:\Users\marys\Desktop\World_of_Warships_EU.lnk
2019-07-06 23:08 - 2019-07-06 23:08 - 000000222 _____ C:\Users\marys\Desktop\Warframe.url
2019-07-06 16:11 - 2019-07-06 16:48 - 000000000 ____D C:\Users\marys\AppData\Local\IdleMaster
2019-07-06 15:20 - 2019-07-06 15:20 - 000000000 ____D C:\Users\marys\AppData\Local\clientrunner
2019-07-06 11:18 - 2019-07-06 11:18 - 000000222 _____ C:\Users\marys\Desktop\Company of Heroes 2.url
2019-07-05 23:50 - 2019-07-05 23:50 - 000000000 ____D C:\Users\marys\AppData\Local\Introversion
2019-07-04 17:59 - 2019-07-04 17:59 - 000000000 _____ C:\WINDOWS\SysWOW64\Drivers\1043_ASUSTeK_H110M-K.alu
2019-07-04 17:54 - 2019-07-04 17:54 - 000003794 _____ C:\WINDOWS\System32\Tasks\Intel PTT EK Recertification
2019-07-04 17:51 - 2019-03-22 12:22 - 000014464 _____ C:\WINDOWS\SysWOW64\Drivers\AsUpIO.sys
2019-07-04 17:50 - 2019-07-04 17:50 - 000000000 ____D C:\Program Files\Intel
2019-07-04 17:50 - 2019-04-09 12:27 - 000033832 _____ C:\WINDOWS\system32\Drivers\AsIO2.sys
2019-07-04 17:50 - 2019-04-09 11:22 - 000120880 _____ C:\WINDOWS\system32\AsIO2.dll
2019-07-04 17:50 - 2019-04-09 11:22 - 000095280 _____ C:\WINDOWS\SysWOW64\AsIO2.dll
2019-07-04 17:49 - 2019-07-04 17:50 - 000000000 ____D C:\ProgramData\Intel
2019-07-04 17:49 - 2019-07-04 17:49 - 000000000 ____D C:\Users\marys\Intel
2019-07-04 07:58 - 2019-07-04 07:58 - 000001070 _____ C:\Users\Public\Desktop\Gyazo Replay.lnk
2019-07-03 23:43 - 2019-07-03 23:43 - 000000000 ____D C:\Users\marys\AppData\LocalLow\Black Eye Games Sp_ z o_ o_
2019-07-03 23:43 - 2019-07-03 23:43 - 000000000 ____D C:\Users\marys\AppData\LocalLow\Black Eye Games Sp. z o. o_
2019-07-03 23:36 - 2019-07-03 23:36 - 000000222 _____ C:\Users\marys\Desktop\Gloria Victis.url
2019-07-03 15:07 - 2019-07-03 15:09 - 000000000 ____D C:\Users\marys\Documents\Battlefield V
2019-07-03 15:07 - 2019-07-03 15:07 - 000000000 ____D C:\Users\marys\AppData\Local\Battlefield V
2019-07-03 14:05 - 2019-07-04 17:09 - 000000715 _____ C:\Users\Public\Desktop\Battlefield™ V.lnk
2019-07-03 14:05 - 2019-07-03 14:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield™ V
2019-07-03 13:27 - 2019-07-03 13:35 - 000000000 ____D C:\Users\marys\AppData\Local\DayZ Launcher
2019-07-03 13:27 - 2019-07-03 13:27 - 000000000 ____D C:\Users\marys\AppData\Local\Bohemia_Interactive
2019-06-30 09:34 - 2019-06-30 09:34 - 000000000 ____D C:\Program Files\UNP
2019-06-29 23:32 - 2019-06-29 23:32 - 000000000 ____D C:\Users\marys\Documents\Warm Lamp Games
2019-06-29 23:32 - 2019-06-29 23:32 - 000000000 ____D C:\Users\marys\AppData\LocalLow\Warm Lamp Games
2019-06-29 22:20 - 2019-06-29 22:20 - 000000722 _____ C:\Users\Public\Desktop\Beholder 2.lnk
2019-06-29 22:20 - 2019-06-29 22:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Beholder 2
2019-06-29 21:55 - 2019-06-29 21:55 - 000012554 _____ C:\ProgramData\{ybvuwci.uhn
2019-06-29 21:55 - 2019-06-29 21:55 - 000000000 _____ C:\ProgramData\678759991
2019-06-29 17:25 - 2019-06-29 17:25 - 000000223 _____ C:\Users\marys\Desktop\Dota Underlords.url

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-07-14 20:02 - 2019-05-30 17:12 - 000000000 ____D C:\Users\marys\AppData\Roaming\uTorrent
2019-07-14 20:02 - 2019-03-31 15:57 - 000000000 ____D C:\FRST
2019-07-14 19:59 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-07-14 19:35 - 2019-03-17 23:16 - 000000000 ____D C:\Users\marys\AppData\Local\Warframe
2019-07-14 19:22 - 2019-03-12 10:54 - 000000000 ____D C:\Users\marys\AppData\Roaming\Discord
2019-07-14 19:22 - 2019-03-11 22:48 - 000000000 ____D C:\Users\marys\AppData\Local\D3DSCache
2019-07-14 19:05 - 2019-03-12 23:19 - 000000000 ____D C:\Users\marys\AppData\Roaming\PSpad
2019-07-14 19:04 - 2019-06-03 22:25 - 000000000 ____D C:\Users\marys\AppData\Local\BitTorrentHelper
2019-07-14 19:04 - 2019-04-30 15:42 - 000000000 ___RD C:\Users\marys\Disk Google
2019-07-14 19:04 - 2019-03-11 19:41 - 000000000 ____D C:\ProgramData\NVIDIA
2019-07-14 19:04 - 2018-09-15 09:31 - 000000000 ____D C:\WINDOWS\INF
2019-07-14 19:03 - 2019-03-11 22:33 - 000000000 ____D C:\ProgramData\ASUS
2019-07-14 19:02 - 2019-04-24 01:23 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-07-14 19:02 - 2018-09-15 08:09 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2019-07-14 19:01 - 2019-03-13 02:08 - 000000000 ____D C:\Program Files\Microsoft Office
2019-07-14 18:59 - 2019-04-24 01:27 - 001702000 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-07-14 18:59 - 2018-09-15 19:39 - 000720158 _____ C:\WINDOWS\system32\perfh005.dat
2019-07-14 18:59 - 2018-09-15 19:39 - 000146266 _____ C:\WINDOWS\system32\perfc005.dat
2019-07-14 18:54 - 2019-03-11 19:41 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-07-14 18:54 - 2019-03-11 19:41 - 000000000 ___RD C:\Users\marys\3D Objects
2019-07-14 18:54 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-07-14 18:53 - 2019-04-24 01:16 - 000447208 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-07-14 18:53 - 2019-03-11 19:41 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-07-14 18:52 - 2018-09-15 19:40 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2019-07-14 18:52 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2019-07-14 18:52 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-07-14 18:52 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-07-14 18:52 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-07-14 18:52 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-07-14 18:52 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\ShellComponents
2019-07-14 18:52 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\Provisioning
2019-07-14 18:52 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-07-14 18:52 - 2018-09-15 08:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-07-14 18:49 - 2019-03-14 14:53 - 000000000 ____D C:\Users\marys\Documents\Euro Truck Simulator 2
2019-07-14 17:05 - 2019-04-24 01:17 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-07-14 10:11 - 2017-10-11 21:46 - 000015800 _____ (ESET) C:\WINDOWS\system32\Drivers\eelam.sys
2019-07-14 00:20 - 2019-04-15 01:24 - 000007615 _____ C:\Users\marys\AppData\Local\resmon.resmoncfg
2019-07-13 21:52 - 2019-03-11 19:41 - 000000000 ____D C:\Users\marys\AppData\Local\Packages
2019-07-13 19:40 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-07-13 10:22 - 2019-03-12 02:05 - 000000000 ____D C:\Users\marys\AppData\Roaming\Origin
2019-07-12 19:32 - 2018-09-15 09:33 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-07-12 19:31 - 2019-05-24 14:04 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-07-12 19:23 - 2019-03-12 02:05 - 000000000 ____D C:\ProgramData\Origin
2019-07-12 17:40 - 2019-03-11 21:56 - 000000000 ____D C:\Users\marys\AppData\Local\ESET
2019-07-12 16:27 - 2019-03-13 02:00 - 000000000 ____D C:\Users\marys\AppData\Local\CrashDumps
2019-07-12 15:30 - 2019-03-11 23:50 - 000000000 ____D C:\Users\marys\Documents\my games
2019-07-12 11:43 - 2019-03-11 23:50 - 000000000 ____D C:\Users\marys\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2019-07-12 10:50 - 2019-04-24 01:23 - 000004210 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-07-12 10:36 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-07-11 18:47 - 2019-03-12 23:56 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2019-07-11 16:55 - 2019-03-11 23:45 - 000001480 _____ C:\Users\marys\AppData\Local\Adobe Uložit pro web 13.0 Prefs
2019-07-10 22:57 - 2019-04-24 01:23 - 000003380 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1410936417-1045171731-3576322853-1001
2019-07-10 22:57 - 2019-04-24 01:18 - 000002365 _____ C:\Users\marys\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-07-10 22:57 - 2019-03-11 19:43 - 000000000 ___RD C:\Users\marys\OneDrive
2019-07-10 18:58 - 2019-05-29 14:34 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-07-10 18:58 - 2019-05-29 14:34 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-07-10 18:58 - 2019-05-29 14:34 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-07-10 18:58 - 2019-05-29 14:34 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-07-10 18:58 - 2019-04-24 01:23 - 000004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-07-10 18:58 - 2019-04-24 01:23 - 000004106 _____ C:\WINDOWS\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-07-10 18:58 - 2019-04-24 01:23 - 000003976 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-07-10 18:58 - 2019-04-24 01:23 - 000003940 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-07-10 18:58 - 2019-04-24 01:23 - 000003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-07-10 18:58 - 2019-04-24 01:23 - 000003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-07-10 18:58 - 2019-03-11 19:41 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2019-07-10 18:58 - 2019-03-11 19:41 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-07-10 16:00 - 2019-04-12 08:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2019-07-10 12:21 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-07-10 12:20 - 2019-03-11 22:35 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-07-10 12:16 - 2019-03-11 22:35 - 136618864 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-07-09 23:43 - 2019-05-28 15:58 - 000000000 ____D C:\Users\marys\AppData\Roaming\vlc
2019-07-09 18:03 - 2019-05-13 18:38 - 000000000 ____D C:\Users\marys\.chatty
2019-07-08 18:47 - 2019-04-07 13:53 - 000000000 ____D C:\Users\marys\AppData\Roaming\obs-studio
2019-07-08 17:45 - 2018-09-15 09:33 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-07-08 16:38 - 2019-04-24 01:23 - 000004206 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1553208583
2019-07-08 16:38 - 2019-03-22 00:49 - 000001281 _____ C:\Users\marys\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2019-07-07 11:59 - 2019-05-10 10:12 - 000000000 ____D C:\Games
2019-07-07 01:31 - 2019-03-11 19:43 - 000000000 ____D C:\Users\marys\AppData\Local\PlaceholderTileLogoFolder
2019-07-05 22:34 - 2019-06-07 19:46 - 000000000 ____D C:\Users\marys\AppData\Local\DayZ
2019-07-05 10:38 - 2019-06-05 16:29 - 000074552 _____ (Wellbia.com Co., Ltd.) C:\WINDOWS\xhunter1.sys
2019-07-04 17:53 - 2019-06-06 23:03 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-07-04 17:53 - 2019-04-27 13:59 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-07-04 17:52 - 2019-04-24 01:23 - 000000000 ____D C:\WINDOWS\System32\Tasks\ASUS
2019-07-04 17:52 - 2019-03-11 22:35 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2019-07-04 17:50 - 2019-03-11 22:26 - 000000000 ____D C:\ProgramData\Package Cache
2019-07-04 17:49 - 2019-04-24 01:18 - 000000000 ____D C:\Users\marys
2019-07-04 17:49 - 2019-03-19 19:35 - 000000000 ____D C:\Program Files (x86)\Intel
2019-07-04 07:58 - 2019-04-24 01:23 - 000003544 _____ C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachineDaily
2019-07-04 07:58 - 2019-04-24 01:23 - 000003408 _____ C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachine
2019-07-04 07:58 - 2019-03-13 18:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gyazo
2019-07-04 07:58 - 2019-03-13 18:18 - 000000000 ____D C:\Program Files (x86)\Gyazo
2019-07-04 00:07 - 2019-03-20 00:47 - 000000000 ____D C:\Users\marys\AppData\Local\Ubisoft Game Launcher
2019-07-03 21:55 - 2019-04-27 13:59 - 000000000 ____D C:\Users\marys\AppData\LocalLow\Mozilla
2019-07-03 21:53 - 2019-04-27 13:59 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-07-03 17:11 - 2019-06-06 22:33 - 000000000 ____D C:\Users\marys\Zomboid
2019-07-03 01:54 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-07-02 19:33 - 2019-03-12 13:02 - 000000000 ____D C:\Users\marys\AppData\Local\Battle.net
2019-06-30 00:19 - 2019-03-11 19:58 - 000000000 ____D C:\ProgramData\Packages
2019-06-29 17:18 - 2019-03-11 19:46 - 000002502 _____ C:\Users\marys\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-06-29 16:44 - 2019-06-07 20:59 - 000000000 ____D C:\Users\marys\Documents\The Witcher 3
2019-06-29 16:04 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\migwiz
2019-06-18 10:59 - 2019-03-12 17:26 - 002785776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2019-06-18 10:59 - 2019-03-12 17:26 - 002164080 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2019-06-18 10:59 - 2019-03-12 17:26 - 001316664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2019-06-18 10:56 - 2019-03-12 17:25 - 000001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat

==================== Files in the root of some directories ================

2019-03-11 23:45 - 2019-07-11 16:55 - 000001480 _____ () C:\Users\marys\AppData\Local\Adobe Uložit pro web 13.0 Prefs
2019-03-13 17:11 - 2019-03-13 17:11 - 000000000 _____ () C:\Users\marys\AppData\Local\oobelibMkey.log
2019-04-15 01:24 - 2019-07-14 00:20 - 000007615 _____ () C:\Users\marys\AppData\Local\resmon.resmoncfg

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================