Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 31-07-2021
Ran by Tommy (administrator) on DESKTOP-AIAQR78 (LENOVO 82JU) (01-08-2021 07:59:45)
Running from C:\Users\Tommy\Desktop
Loaded Profiles: Tommy
Platform: Windows 10 Home Version 21H1 19043.1151 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Users\Tommy\AppData\Roaming\ServiceApi\DESKTOP-AIAQR78Tommye.exe
() [File not signed] C:\Windows\Client.exe
() [File not signed] C:\Windows\System32\Microsoft\Telemetry\sihost32.exe
(Advanced Micro Devices Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.20.40028.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSServ.exe
(Advanced Micro Devices Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.20.40028.0_x64__0a9344xs7nr4m\radeonsoftware\RadeonSoftware.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0365804.inf_amd64_296b8495a06c8561\B365783\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0365804.inf_amd64_296b8495a06c8561\B365783\atiesrxx.exe
(A-Volute SAS -> A-Volute) C:\Users\Tommy\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe
(A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe
(Discord Inc. -> Discord Inc.) C:\Users\Tommy\AppData\Local\Discord\app-1.0.9002\Discord.exe <6>
(Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_2fcf64020e032ea8\LenovoUtilityService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Tommy\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2106.14307.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12105.1001.23.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1145_none_7e2e1aee7c75684d\TiWorker.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\NisSrv.exe
(Microsoft) [File not signed] C:\Users\Tommy\AppData\Roaming\ServiceApi\MicrosoftApi.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <9>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvlt.inf_amd64_05446f0fad2a10a4\Display.NvContainer\NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_74518f403e753586\RtkAudUService64.exe <2>
(www.xmrig.com) [File not signed] C:\Users\Tommy\AppData\Roaming\ServiceApi\DESKTOP-AIAQR78Tommym.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_74518f403e753586\RtkAudUService64.exe [1219312 2020-12-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKU\S-1-5-21-1033715435-2987295261-2775021943-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4110568 2021-07-21] (Valve -> Valve Corporation)
HKU\S-1-5-21-1033715435-2987295261-2775021943-1001\...\Run: [Discord] => C:\Users\Tommy\AppData\Local\Discord\Update.exe [1512104 2021-05-24] (Discord Inc. -> GitHub)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {209363A4-1B16-4E28-8138-A3E69E6206BB} - System32\Tasks\services32 => C:\Windows\system32\services32.exe [59392 2021-08-01] (Microsoft® Windows® Operating System) [File not signed]
Task: {335BD33D-6880-4ACA-B06E-A29694061BBF} - System32\Tasks\MicrosoftApi => C:\Users\Tommy\AppData\Roaming\ServiceApi\MicrosoftApi.exe [644608 2021-07-31] (Microsoft) [File not signed]
Task: {4B6E71EB-BE34-425C-821B-C79BA06238C5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {538255C1-A799-43A7-804F-25A9706885D0} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [681400 2021-07-22] (Mozilla Corporation -> Mozilla Foundation)
Task: {76833CC4-80DC-4FA2-B19F-F604A79E563A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A433F78D-7603-484B-A5B7-974633EE30C9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CF79A960-DC50-4074-8C5D-F511D6CCCA62} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.1.138
Tcpip\..\Interfaces\{7e9df0d0-cacd-4caf-89b6-9213c1738fd2}: [DhcpNameServer] 10.0.1.138
Tcpip\..\Interfaces\{f25e5186-8d30-4f65-98a4-bc720aa54122}: [DhcpNameServer] 10.0.1.138

Edge: 
=======
Edge Profile: C:\Users\Tommy\AppData\Local\Microsoft\Edge\User Data\Default [2021-08-01]

FireFox:
========
FF DefaultProfile: 9bxl5a97.default
FF ProfilePath: C:\Users\Tommy\AppData\Roaming\Mozilla\Firefox\Profiles\9bxl5a97.default [2021-07-25]
FF ProfilePath: C:\Users\Tommy\AppData\Roaming\Mozilla\Firefox\Profiles\appa5up7.default-release [2021-08-01]
FF DownloadDir: C:\Users\Tommy\Desktop

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 LenovoFnAndFunctionKeys; C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_2fcf64020e032ea8\LenovoUtilityService.exe [531360 2021-02-23] (Lenovo -> Lenovo(beijing) Limited)
R2 NahimicService; C:\Windows\system32\NahimicService.exe [1633288 2020-12-09] (A-Volute SAS -> Nahimic)
R2 Service; C:\Windows\Client.exe [5259264 2021-07-18] () [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2106.6-0\NisSrv.exe [2665432 2021-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2106.6-0\MsMpEng.exe [136640 2021-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvlt.inf_amd64_05446f0fad2a10a4\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvlt.inf_amd64_05446f0fad2a10a4\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
R3 Nahimic_Mirroring; C:\Windows\System32\drivers\Nahimic_Mirroring.sys [85592 2020-06-16] (A-Volute -> Windows (R) Win 7 DDK provider)
R3 nvpcf; C:\Windows\System32\drivers\nvpcf.sys [212688 2021-07-02] (NVIDIA Corporation -> NVIDIA Corporation)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49560 2021-07-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [425192 2021-07-26] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [76008 2021-07-26] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-08-01 07:59 - 2021-08-01 08:00 - 000009859 _____ C:\Users\Tommy\Desktop\FRST.txt
2021-08-01 07:59 - 2021-08-01 07:59 - 002300416 _____ (Farbar) C:\Users\Tommy\Desktop\FRST64.exe
2021-08-01 07:59 - 2021-08-01 07:59 - 000000000 ____D C:\FRST
2021-08-01 07:58 - 2021-08-01 07:58 - 008553680 _____ (Malwarebytes) C:\Users\Tommy\Desktop\AdwCleaner.exe
2021-08-01 07:54 - 2021-08-01 07:54 - 000000000 ____D C:\AdwCleaner
2021-08-01 07:38 - 2021-08-01 07:38 - 001823280 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2021-08-01 07:38 - 2021-08-01 07:38 - 001393480 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2021-08-01 07:38 - 2021-08-01 07:38 - 001333760 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll
2021-08-01 07:38 - 2021-08-01 07:38 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll
2021-08-01 07:38 - 2021-08-01 07:38 - 000011461 _____ C:\Windows\system32\DrtmAuthTxt.wim
2021-08-01 07:33 - 2021-08-01 07:33 - 000000000 ____D C:\Users\Tommy\AppData\Local\OneDrive
2021-08-01 07:27 - 2021-08-01 07:27 - 000000038 _____ C:\Windows\grap_hashrate.json
2021-07-31 21:00 - 2021-07-31 21:09 - 000000000 ____D C:\Winruntimedhcp
2021-07-31 21:00 - 2021-07-31 21:00 - 000000230 _____ C:\Windows\gpu_name.txt
2021-07-31 20:49 - 2021-07-31 21:09 - 000000000 __SHD C:\Users\Tommy\AppData\Roaming\ServiceApi
2021-07-31 20:49 - 2021-07-31 20:49 - 000003608 _____ C:\Windows\system32\Tasks\MicrosoftApi
2021-07-31 20:40 - 2021-07-31 20:40 - 000000000 ____D C:\Users\Tommy\AppData\Local\Yandex
2021-07-31 20:35 - 2021-08-01 07:51 - 000059392 _____ (Microsoft® Windows® Operating System) C:\Windows\system32\services32.exe
2021-07-31 20:35 - 2021-08-01 07:51 - 000003304 _____ C:\Windows\system32\Tasks\services32
2021-07-31 20:35 - 2021-07-31 20:35 - 000000000 ____D C:\Users\Tommy\AppData\Roaming\NVIDIA
2021-07-31 19:39 - 2021-07-31 20:35 - 000000000 ____D C:\Program Files\Cheat Engine 7.2
2021-07-31 19:39 - 2021-07-31 19:39 - 000000931 _____ C:\Users\Tommy\Desktop\Cheat Engine.lnk
2021-07-31 19:39 - 2021-07-31 19:39 - 000000000 ____D C:\Users\Tommy\Documents\My Cheat Tables
2021-07-31 19:39 - 2021-07-31 19:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 7.2
2021-07-31 01:10 - 2021-07-31 01:10 - 000000910 _____ C:\Users\Tommy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2021-07-31 01:10 - 2021-07-31 01:10 - 000000862 _____ C:\Users\Tommy\Desktop\Start Tor Browser.lnk
2021-07-31 01:04 - 2021-07-31 01:05 - 000000000 ____D C:\Users\Tommy\Desktop\Tor Browser
2021-07-30 19:36 - 2021-07-30 19:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2021-07-30 19:36 - 2021-07-30 19:36 - 000000000 ____D C:\Program Files\7-Zip
2021-07-30 19:20 - 2021-08-01 07:34 - 000004212 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{CA360F5E-846B-4AE7-AAB5-506F88081488}
2021-07-30 19:17 - 2021-07-30 19:18 - 000000000 ____D C:\Users\Tommy\Documents\My Games
2021-07-30 19:17 - 2021-07-30 19:17 - 000000000 ____D C:\Program Files (x86)\Microsoft XNA
2021-07-29 19:28 - 2021-07-29 19:28 - 000001587 _____ C:\Users\Tommy\Desktop\FiveM - Cfx.re Development Kit (FxDK).lnk
2021-07-29 19:28 - 2021-07-29 19:28 - 000000433 _____ C:\Users\Tommy\Desktop\FiveM.VisualElementsManifest.xml
2021-07-27 19:32 - 2021-07-27 20:02 - 000000000 ____D C:\Users\Tommy\web
2021-07-27 17:10 - 2021-07-30 19:19 - 000000000 ____D C:\Users\Tommy\AppData\Roaming\Code
2021-07-27 17:10 - 2021-07-27 17:10 - 000000000 ____D C:\Users\Tommy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Visual Studio Code
2021-07-27 17:10 - 2021-07-27 17:10 - 000000000 ____D C:\Users\Tommy\.vscode
2021-07-26 22:27 - 2021-08-01 07:35 - 000000000 ____D C:\Users\Tommy\AppData\Local\PlaceholderTileLogoFolder
2021-07-26 22:13 - 2021-08-01 07:44 - 000000000 ____D C:\Users\Tommy\AppData\Roaming\discord
2021-07-26 22:13 - 2021-08-01 07:44 - 000000000 ____D C:\Users\Tommy\AppData\Local\Discord
2021-07-26 22:13 - 2021-07-26 22:13 - 000000000 ____D C:\Users\Tommy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2021-07-26 22:13 - 2021-07-26 22:13 - 000000000 ____D C:\Users\Tommy\AppData\Local\SquirrelTemp
2021-07-26 21:23 - 2021-07-26 21:23 - 000000000 ____D C:\Users\Tommy\AppData\Roaming\WinRAR
2021-07-26 21:19 - 2021-07-26 21:19 - 000000000 ____D C:\Users\Tommy\AppData\Local\citizenfx
2021-07-26 21:03 - 2021-07-26 21:03 - 000002377 _____ C:\Users\Tommy\Documents\MumbleAutomaticCertificateBackup.p12
2021-07-26 21:02 - 2021-07-26 21:21 - 000000000 ____D C:\Users\Tommy\AppData\Roaming\Mumble
2021-07-26 20:27 - 2021-07-26 20:27 - 000000008 _____ C:\Users\Tommy\Desktop\Nový textový dokument.txt
2021-07-26 20:12 - 2021-07-26 20:29 - 000000000 ____D C:\Users\Tommy\AppData\Roaming\CitizenFX
2021-07-26 20:12 - 2021-07-26 20:12 - 000000000 ____D C:\Users\Tommy\Documents\Rockstar Games
2021-07-26 20:12 - 2021-07-26 20:12 - 000000000 ____D C:\Users\Tommy\AppData\Local\Rockstar Games
2021-07-26 20:12 - 2021-07-26 20:12 - 000000000 ____D C:\ProgramData\Rockstar Games
2021-07-26 20:10 - 2021-07-27 17:13 - 000000000 ____D C:\Users\Tommy\AppData\Local\DigitalEntitlements
2021-07-26 20:09 - 2021-07-31 21:18 - 000000000 ____D C:\Users\Tommy\AppData\Local\FiveM
2021-07-26 20:09 - 2021-07-29 19:28 - 000002136 _____ C:\Users\Tommy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FiveM.lnk
2021-07-26 20:09 - 2021-07-29 19:28 - 000001635 _____ C:\Users\Tommy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FiveM - Cfx.re Development Kit (FxDK).lnk
2021-07-26 20:09 - 2021-07-29 19:19 - 007433704 _____ (Cfx.re) C:\Users\Tommy\Desktop\FiveM.exe
2021-07-26 19:51 - 2021-07-26 19:51 - 000000000 ____D C:\Users\Tommy\AppData\Local\NVIDIA Corporation
2021-07-26 19:51 - 2021-07-26 19:51 - 000000000 ____D C:\Users\Tommy\AppData\Local\NVIDIA
2021-07-26 19:22 - 2021-07-26 19:22 - 000000000 ____D C:\Users\Tommy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-07-26 19:22 - 2021-07-26 19:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-07-26 19:22 - 2021-07-26 19:22 - 000000000 ____D C:\Program Files\WinRAR
2021-07-26 18:11 - 2021-07-26 18:11 - 000002386 _____ C:\Users\Tommy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nahimic Companion.lnk
2021-07-26 18:11 - 2021-07-26 18:11 - 000000000 ____D C:\Users\Tommy\AppData\Local\NhNotifSys
2021-07-26 18:10 - 2021-07-26 18:10 - 000000000 ____D C:\ProgramData\A-Volute
2021-07-26 18:09 - 2020-12-15 20:40 - 000030870 _____ C:\Windows\system32\Drivers\Gen3p1pKey.dat
2021-07-26 04:45 - 2021-07-28 19:31 - 000000000 ____D C:\Windows\Panther
2021-07-26 03:59 - 2021-07-26 03:59 - 000000000 ____D C:\Windows\system32\Tasks\Agent Activation Runtime
2021-07-26 03:55 - 2021-07-30 19:10 - 000003380 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1033715435-2987295261-2775021943-1001
2021-07-26 03:55 - 2021-07-30 19:10 - 000000000 ___RD C:\Users\Tommy\OneDrive
2021-07-26 03:55 - 2021-07-26 03:55 - 000000000 ____D C:\Users\Tommy\AppData\Local\Comms
2021-07-26 03:55 - 2021-07-26 03:55 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2021-07-26 03:53 - 2021-07-28 19:18 - 000000000 ____D C:\ProgramData\Packages
2021-07-26 03:53 - 2021-07-27 18:38 - 000000000 ____D C:\Users\Tommy\AppData\Local\Packages
2021-07-26 03:53 - 2021-07-26 03:53 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-07-26 03:53 - 2021-07-26 03:53 - 000000000 ___RD C:\Users\Tommy\3D Objects
2021-07-26 03:53 - 2021-07-26 03:53 - 000000000 ____D C:\Users\Tommy\AppData\Roaming\Adobe
2021-07-26 03:53 - 2021-07-26 03:53 - 000000000 ____D C:\Users\Tommy\AppData\Local\VirtualStore
2021-07-26 03:53 - 2021-07-26 03:53 - 000000000 ____D C:\Users\Tommy\AppData\Local\Publishers
2021-07-26 03:53 - 2021-07-26 03:53 - 000000000 ____D C:\Users\Tommy\AppData\Local\ConnectedDevicesPlatform
2021-07-26 03:52 - 2021-07-30 19:10 - 000002381 _____ C:\Users\Tommy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-07-26 03:52 - 2021-07-27 19:32 - 000000000 ____D C:\Users\Tommy
2021-07-26 03:52 - 2021-07-26 03:52 - 000000020 ___SH C:\Users\Tommy\ntuser.ini
2021-07-26 03:52 - 2021-07-26 03:52 - 000000000 _SHDL C:\Users\Tommy\Šablony
2021-07-26 03:52 - 2021-07-26 03:52 - 000000000 _SHDL C:\Users\Tommy\Soubory cookie
2021-07-26 03:52 - 2021-07-26 03:52 - 000000000 _SHDL C:\Users\Tommy\Poslední
2021-07-26 03:52 - 2021-07-26 03:52 - 000000000 _SHDL C:\Users\Tommy\Okolní tiskárny
2021-07-26 03:52 - 2021-07-26 03:52 - 000000000 _SHDL C:\Users\Tommy\Okolní síť
2021-07-26 03:52 - 2021-07-26 03:52 - 000000000 _SHDL C:\Users\Tommy\Nabídka Start
2021-07-26 03:52 - 2021-07-26 03:52 - 000000000 _SHDL C:\Users\Tommy\Dokumenty
2021-07-26 03:52 - 2021-07-26 03:52 - 000000000 _SHDL C:\Users\Tommy\Documents\Obrázky
2021-07-26 03:52 - 2021-07-26 03:52 - 000000000 _SHDL C:\Users\Tommy\Documents\Hudba
2021-07-26 03:52 - 2021-07-26 03:52 - 000000000 _SHDL C:\Users\Tommy\Documents\Filmy
2021-07-26 03:52 - 2021-07-26 03:52 - 000000000 _SHDL C:\Users\Tommy\Data aplikací
2021-07-26 03:52 - 2021-07-26 03:52 - 000000000 _SHDL C:\Users\Tommy\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2021-07-26 03:52 - 2021-07-26 03:52 - 000000000 _SHDL C:\Users\Tommy\AppData\Local\Data aplikací
2021-07-26 03:51 - 2021-08-01 07:50 - 001605602 _____ C:\Windows\system32\PerfStringBackup.INI
2021-07-26 03:46 - 2021-07-26 03:46 - 000000000 _SHDL C:\Users\Public\Documents\Obrázky
2021-07-26 03:46 - 2021-07-26 03:46 - 000000000 _SHDL C:\Users\Public\Documents\Hudba
2021-07-26 03:46 - 2021-07-26 03:46 - 000000000 _SHDL C:\Users\Public\Documents\Filmy
2021-07-26 03:46 - 2021-07-26 03:46 - 000000000 _SHDL C:\Users\Default\Šablony
2021-07-26 03:46 - 2021-07-26 03:46 - 000000000 _SHDL C:\Users\Default\Soubory cookie
2021-07-26 03:46 - 2021-07-26 03:46 - 000000000 _SHDL C:\Users\Default\Poslední
2021-07-26 03:46 - 2021-07-26 03:46 - 000000000 _SHDL C:\Users\Default\Okolní tiskárny
2021-07-26 03:46 - 2021-07-26 03:46 - 000000000 _SHDL C:\Users\Default\Okolní síť
2021-07-26 03:46 - 2021-07-26 03:46 - 000000000 _SHDL C:\Users\Default\Nabídka Start
2021-07-26 03:46 - 2021-07-26 03:46 - 000000000 _SHDL C:\Users\Default\Dokumenty
2021-07-26 03:46 - 2021-07-26 03:46 - 000000000 _SHDL C:\Users\Default\Documents\Obrázky
2021-07-26 03:46 - 2021-07-26 03:46 - 000000000 _SHDL C:\Users\Default\Documents\Hudba
2021-07-26 03:46 - 2021-07-26 03:46 - 000000000 _SHDL C:\Users\Default\Documents\Filmy
2021-07-26 03:46 - 2021-07-26 03:46 - 000000000 _SHDL C:\Users\Default\Data aplikací
2021-07-26 03:46 - 2021-07-26 03:46 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2021-07-26 03:46 - 2021-07-26 03:46 - 000000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2021-07-26 03:46 - 2021-07-26 03:46 - 000000000 _SHDL C:\ProgramData\Šablony
2021-07-26 03:46 - 2021-07-26 03:46 - 000000000 _SHDL C:\ProgramData\Plocha
2021-07-26 03:46 - 2021-07-26 03:46 - 000000000 _SHDL C:\ProgramData\Nabídka Start
2021-07-26 03:46 - 2021-07-26 03:46 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy
2021-07-26 03:46 - 2021-07-26 03:46 - 000000000 _SHDL C:\ProgramData\Dokumenty
2021-07-26 03:46 - 2021-07-26 03:46 - 000000000 _SHDL C:\ProgramData\Data aplikací
2021-07-26 03:46 - 2021-07-26 03:46 - 000000000 _SHDL C:\Documents and Settings
2021-07-26 03:45 - 2021-08-01 07:43 - 000258096 _____ C:\Windows\system32\FNTCACHE.DAT
2021-07-26 03:45 - 2021-08-01 07:43 - 000008192 ___SH C:\DumpStack.log.tmp
2021-07-26 03:45 - 2021-08-01 07:43 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-07-26 03:45 - 2021-08-01 07:27 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-07-26 03:45 - 2021-07-31 12:20 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-07-26 03:45 - 2021-07-30 17:34 - 000003584 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-07-26 03:45 - 2021-07-30 17:34 - 000003460 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-07-26 03:45 - 2021-07-26 18:19 - 000000000 ____D C:\Windows\system32\Drivers\wd
2021-07-26 03:45 - 2021-07-26 03:45 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2021-07-26 03:45 - 2021-07-26 03:45 - 000000000 ____D C:\Windows\ServiceProfiles
2021-07-25 22:29 - 2021-07-25 22:29 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2021-07-25 22:29 - 2021-07-25 22:29 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2021-07-25 22:29 - 2021-07-25 22:29 - 002371072 _____ C:\Windows\system32\rdpnano.dll
2021-07-25 22:29 - 2021-07-25 22:29 - 002260992 _____ C:\Windows\system32\TextInputMethodFormatter.dll
2021-07-25 22:29 - 2021-07-25 22:29 - 002260480 _____ (The ICU Project) C:\Windows\system32\icu.dll
2021-07-25 22:29 - 2021-07-25 22:29 - 001864192 _____ (The ICU Project) C:\Windows\SysWOW64\icu.dll
2021-07-25 22:29 - 2021-07-25 22:29 - 001687040 _____ C:\Windows\system32\libcrypto.dll
2021-07-25 22:29 - 2021-07-25 22:29 - 001314128 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2021-07-25 22:29 - 2021-07-25 22:29 - 001163776 _____ C:\Windows\system32\MBR2GPT.EXE
2021-07-25 22:29 - 2021-07-25 22:29 - 000700928 _____ C:\Windows\system32\FsNVSDeviceSource.dll
2021-07-25 22:29 - 2021-07-25 22:29 - 000657464 _____ C:\Windows\system32\WindowManagementAPI.dll
2021-07-25 22:29 - 2021-07-25 22:29 - 000570880 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2021-07-25 22:29 - 2021-07-25 22:29 - 000563712 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2021-07-25 22:29 - 2021-07-25 22:29 - 000468440 _____ C:\Windows\SysWOW64\WindowManagementAPI.dll
2021-07-25 22:29 - 2021-07-25 22:29 - 000452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2021-07-25 22:29 - 2021-07-25 22:29 - 000423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2021-07-25 22:29 - 2021-07-25 22:29 - 000287232 _____ C:\Windows\system32\CoreMas.dll
2021-07-25 22:29 - 2021-07-25 22:29 - 000272384 _____ C:\Windows\system32\TpmTool.exe
2021-07-25 22:29 - 2021-07-25 22:29 - 000223744 _____ C:\Windows\SysWOW64\TpmTool.exe
2021-07-25 22:29 - 2021-07-25 22:29 - 000165888 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2021-07-25 22:29 - 2021-07-25 22:29 - 000097792 _____ C:\Windows\system32\Drivers\cimfs.sys
2021-07-25 22:29 - 2021-07-25 22:29 - 000084992 _____ (Microsoft Corporation) C:\Windows\system32\wscui.cpl
2021-07-25 22:29 - 2021-07-25 22:29 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscui.cpl
2021-07-25 22:29 - 2021-07-25 22:29 - 000060928 _____ C:\Windows\system32\runexehelper.exe
2021-07-25 22:29 - 2021-07-25 22:29 - 000013312 _____ C:\Windows\system32\agentactivationruntimestarter.exe
2021-07-25 22:29 - 2021-07-25 22:29 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsraLegacy.tlb
2021-07-25 22:29 - 2021-07-25 22:29 - 000007680 _____ (Microsoft Corporation) C:\Windows\system32\MsraLegacy.tlb
2021-07-25 22:29 - 2021-07-25 22:29 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rendezvousSession.tlb
2021-07-25 22:29 - 2021-07-25 22:29 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\rendezvousSession.tlb
2021-07-25 22:25 - 2021-07-25 22:25 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-07-25 22:24 - 2021-07-25 22:25 - 000000000 ____D C:\Windows\system32\MRT
2021-07-25 22:19 - 2021-07-30 19:38 - 000000000 ____D C:\Users\Tommy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2021-07-25 22:18 - 2021-07-25 22:18 - 000000000 ____D C:\Users\Tommy\AppData\Local\Steam
2021-07-25 22:18 - 2021-07-25 22:18 - 000000000 ____D C:\Users\Tommy\AppData\Local\CEF
2021-07-25 22:17 - 2021-08-01 07:44 - 000000000 ____D C:\Program Files (x86)\Steam
2021-07-25 22:17 - 2021-07-25 22:17 - 000001036 _____ C:\Users\Public\Desktop\Steam.lnk
2021-07-25 22:17 - 2021-07-25 22:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2021-07-25 22:15 - 2021-08-01 07:45 - 000000000 ____D C:\ProgramData\Mozilla
2021-07-25 22:15 - 2021-08-01 07:44 - 000000000 ____D C:\Users\Tommy\AppData\LocalLow\Mozilla
2021-07-25 22:15 - 2021-07-25 22:15 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-07-25 22:15 - 2021-07-25 22:15 - 000000993 _____ C:\Users\Public\Desktop\Firefox.lnk
2021-07-25 22:15 - 2021-07-25 22:15 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2021-07-25 22:15 - 2021-07-25 22:15 - 000000000 ____D C:\Users\Tommy\AppData\Roaming\Mozilla
2021-07-25 22:15 - 2021-07-25 22:15 - 000000000 ____D C:\Users\Tommy\AppData\Local\Mozilla
2021-07-25 22:15 - 2021-07-25 22:15 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-07-25 22:15 - 2021-07-25 22:15 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-07-25 22:14 - 2021-07-25 22:14 - 000000000 ____D C:\Users\Tommy\AppData\LocalLow\AMD
2021-07-25 22:10 - 2021-07-25 22:10 - 000000000 ____D C:\ProgramData\Propagation
2021-07-25 22:08 - 2021-07-31 20:35 - 000000000 ____D C:\Users\Tommy\AppData\Local\D3DSCache
2021-07-25 22:08 - 2021-07-25 22:10 - 000000000 ____D C:\Users\Tommy\AppData\Local\AMD
2021-07-25 22:08 - 2021-07-25 22:08 - 000000000 ____D C:\Windows\system32\AMD
2021-07-25 22:08 - 2021-07-25 22:08 - 000000000 ____D C:\Program Files\AMD
2021-07-25 22:06 - 2021-08-01 07:43 - 000000000 ____D C:\ProgramData\NVIDIA
2021-07-25 22:06 - 2021-07-26 20:12 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2021-07-25 22:06 - 2021-07-26 18:09 - 000000000 ____D C:\ProgramData\Realtek
2021-07-25 22:06 - 2021-07-25 22:06 - 000000000 ___HD C:\$WinREAgent
2021-07-25 22:06 - 2021-07-25 22:06 - 000000000 ____D C:\Windows\system32\lxss
2021-07-25 22:06 - 2021-07-25 22:06 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation
2021-07-25 22:06 - 2021-07-25 22:06 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-07-25 22:06 - 2020-11-17 04:16 - 018351872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RsDMFT64.dll
2021-07-25 22:05 - 2021-07-02 02:43 - 001855208 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2021-07-25 22:05 - 2021-07-02 02:43 - 001855208 _____ C:\Windows\system32\vulkaninfo.exe
2021-07-25 22:05 - 2021-07-02 02:43 - 001435880 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-07-25 22:05 - 2021-07-02 02:43 - 001435880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2021-07-25 22:05 - 2021-07-02 02:43 - 001094888 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2021-07-25 22:05 - 2021-07-02 02:43 - 001094888 _____ C:\Windows\system32\vulkan-1.dll
2021-07-25 22:05 - 2021-07-02 02:43 - 000948968 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2021-07-25 22:05 - 2021-07-02 02:43 - 000948968 _____ C:\Windows\SysWOW64\vulkan-1.dll
2021-07-25 22:05 - 2021-07-02 02:42 - 000212688 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpcf.sys
2021-07-25 22:05 - 2021-07-02 02:40 - 001514800 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2021-07-25 22:05 - 2021-07-02 02:40 - 001166624 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2021-07-25 22:05 - 2021-07-02 02:40 - 000715536 _____ C:\Windows\system32\nvofapi64.dll
2021-07-25 22:05 - 2021-07-02 02:40 - 000689968 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2021-07-25 22:05 - 2021-07-02 02:40 - 000675104 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2021-07-25 22:05 - 2021-07-02 02:40 - 000625968 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2021-07-25 22:05 - 2021-07-02 02:40 - 000575792 _____ C:\Windows\SysWOW64\nvofapi.dll
2021-07-25 22:05 - 2021-07-02 02:40 - 000564016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2021-07-25 22:05 - 2021-07-02 02:40 - 000046288 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhdap64.dll
2021-07-25 22:05 - 2021-07-02 02:39 - 008317216 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2021-07-25 22:05 - 2021-07-02 02:39 - 007434528 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2021-07-25 22:05 - 2021-07-02 02:39 - 004795680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2021-07-25 22:05 - 2021-07-02 02:39 - 002823456 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2021-07-25 22:05 - 2021-07-02 02:39 - 002106136 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2021-07-25 22:05 - 2021-07-02 02:39 - 001591056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2021-07-25 22:05 - 2021-07-02 02:39 - 000812304 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2021-07-25 22:05 - 2021-07-02 02:39 - 000656152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2021-07-25 22:05 - 2021-07-02 02:39 - 000280352 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2021-07-25 22:05 - 2021-07-02 02:39 - 000145096 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2021-07-25 22:05 - 2021-07-02 02:38 - 005678896 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2021-07-25 22:05 - 2021-07-02 02:38 - 000848688 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2021-07-25 22:05 - 2021-07-02 02:37 - 007212728 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2021-07-25 22:05 - 2021-07-02 02:37 - 006160176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2021-07-25 22:05 - 2021-07-02 02:12 - 000087365 _____ C:\Windows\system32\nvinfo.pb
2021-07-25 22:04 - 2021-07-25 22:04 - 000000000 ____D C:\Windows\system32\A-Volute
2021-07-25 22:04 - 2020-12-24 00:31 - 006005344 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2021-07-25 22:04 - 2020-12-24 00:31 - 000018824 _____ C:\Windows\system32\RtEventLog.dll
2021-07-25 22:04 - 2020-12-24 00:21 - 043605683 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2021-07-18 16:49 - 2021-07-31 21:00 - 000000259 ____N C:\Windows\parameters.ini
2021-07-18 16:49 - 2021-07-18 16:49 - 005259264 ____N C:\Windows\Client.exe
2021-07-18 16:46 - 2021-07-18 16:46 - 000000101 _____ C:\Windows\proceslist.txt

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-08-01 07:57 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2021-08-01 07:50 - 2019-12-07 16:41 - 000683426 _____ C:\Windows\system32\perfh005.dat
2021-08-01 07:50 - 2019-12-07 16:41 - 000137206 _____ C:\Windows\system32\perfc005.dat
2021-08-01 07:44 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-08-01 07:43 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\system32\UNP
2021-08-01 07:43 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-08-01 07:43 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2021-08-01 07:43 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2021-08-01 07:43 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2021-08-01 07:43 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2021-08-01 07:43 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellComponents
2021-08-01 07:43 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2021-08-01 07:43 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI
2021-08-01 07:43 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\servicing
2021-08-01 07:40 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2021-07-31 14:46 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-07-31 14:46 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2021-07-27 16:35 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\appcompat
2021-07-27 16:33 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\LiveKernelReports
2021-07-26 18:19 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-07-26 18:09 - 2019-12-07 16:42 - 000000000 ____D C:\Windows\system32\OpenSSH
2021-07-26 18:09 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog
2021-07-26 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2021-07-26 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2021-07-26 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2021-07-26 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV
2021-07-26 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT
2021-07-26 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE
2021-07-26 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2021-07-26 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2021-07-26 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2021-07-26 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\setup
2021-07-26 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\migwiz
2021-07-26 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\lv-LV
2021-07-26 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\lt-LT
2021-07-26 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\et-EE
2021-07-26 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\Provisioning
2021-07-26 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2021-07-26 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\DiagTrack
2021-07-26 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-07-26 04:45 - 2019-12-07 11:14 - 000028672 _____ C:\Windows\system32\config\BCD-Template
2021-07-26 04:09 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState
2021-07-26 04:03 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\USOPrivate
2021-07-26 03:52 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioDatabase
2021-07-26 03:49 - 2019-12-07 16:42 - 000000000 ____D C:\Windows\system32\FxsTmp
2021-07-26 03:49 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\spool
2021-07-26 03:46 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows NT
2021-07-26 03:45 - 2019-12-07 11:03 - 000032768 _____ C:\Windows\system32\config\ELAM
2021-07-25 22:31 - 2019-12-07 16:44 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\OEMDefaultAssociations.dll

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================