Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 10-01-2022 01
Ran by ZALMAN (administrator) on DESKTOP-T24R4MM (Gigabyte Technology Co., Ltd. B560M H) (14-01-2022 15:09:09)
Running from C:\Users\ZALMAN\Desktop
Loaded Profiles: ZALMAN
Platform: Microsoft Windows 10 Pro Version 21H1 19043.1466 (X64) Language: Slovenčina (Slovensko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Autodesk, Inc. -> Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\11.0.0.4854\AdskLicensingService\AdskLicensingService.exe
(Autodesk, Inc. -> Autodesk) C:\ProgramData\Autodesk\Genuine Service\x64\GenuineService.exe
(Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corp.) E:\Súbory\SOLIDWORKS Corp\SOLIDWORKS\sldworks_fs.exe
(Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avp.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avpui.exe
(Logitech -> Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(LogMeIn, Inc. -> LogMeIn Inc.) E:\Súbory\LogMeIn Hamachi\x64\hamachi-2.exe
(LogMeIn, Inc. -> LogMeIn, Inc.) E:\Súbory\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(Mentor Graphics Corp -> Mentor Graphics Corporation) E:\Súbory\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\dispatcher.exe
(Mentor Graphics Corp -> Mentor Graphics Corporation) E:\Súbory\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\HelpPane.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_697983dd21312b3c\Display.NvContainer\NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_bc81681eb27bc1ae\RtkAudUService64.exe <2>
(Trace Software International -> ) E:\Súbory\SOLIDWORKS Corp\SOLIDWORKS Electrical\server\EwServer.exe
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(Valve Corp. -> Valve Corporation) D:\Programy\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <8>
(Valve Corp. -> Valve Corporation) D:\Programy\Steam\steam.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_bc81681eb27bc1ae\RtkAudUService64.exe [1231864 2021-02-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [339000 2021-10-26] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech -> Logitech Inc.)
HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [668376 2021-05-11] (Autodesk, Inc. -> Autodesk, Inc.)
HKLM-x32\...\Run: [Autodesk Genuine Service ] => C:\ProgramData\Autodesk\Genuine Service\x64\GenuineService.exe [2913648 2021-05-10] (Autodesk, Inc. -> Autodesk)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => E:\Súbory\LogMeIn Hamachi\hamachi-2-ui.exe [5890504 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
HKU\S-1-5-21-1376666150-4259590915-1670796979-1001\...\Run: [Steam] => D:\Programy\Steam\steam.exe [4267432 2021-12-16] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1376666150-4259590915-1670796979-1001\...\Run: [EpicGamesLauncher] => D:\Programy\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33620960 2022-01-11] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1376666150-4259590915-1670796979-1001\...\Run: [Discord] => C:\Users\ZALMAN\AppData\Local\Discord\Update.exe [1512104 2021-05-24] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1376666150-4259590915-1670796979-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\ZALMAN\AppData\Local\Microsoft\Teams\Update.exe [2459304 2021-12-15] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-1376666150-4259590915-1670796979-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35373696 2021-12-07] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1376666150-4259590915-1670796979-1001\...\Run: [com.blitz.app] => C:\Users\ZALMAN\AppData\Local\Programs\Blitz\Blitz.exe [121828104 2022-01-11] (Swift Media Entertainment, Inc. -> Blitz, Inc.)
HKU\S-1-5-21-1376666150-4259590915-1670796979-1001\...\Policies\Explorer: [] 
HKU\S-1-5-21-1376666150-4259590915-1670796979-1001\...\MountPoints2: {339d1103-0345-11ec-be6a-18c04df9641d} - "F:\Lenovo_Suite.exe" 
HKU\S-1-5-21-1376666150-4259590915-1670796979-1001\...\MountPoints2: {e2b1281c-4d01-11ec-be89-18c04df9641d} - "F:\HiSuiteDownLoader.exe" 
HKLM\...\Windows x64\Print Processors\Canon MG3600 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCT.DLL [30208 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3600 series: C:\Windows\system32\CNMLMCT.DLL [406528 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS 2016 Fast Start.lnk [2021-10-14]
ShortcutTarget: SOLIDWORKS 2016 Fast Start.lnk -> C:\Windows\Installer\{768F3B65-1695-47B7-9002-B11400CB111D}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe (Flexera Software LLC) [File not signed]

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {090A0A3E-563A-45CB-9647-C400FC9D3158} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649216 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {0CBDDCBC-E0D7-4AE7-B4C8-6D7D6CA3A384} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8413176 2022-01-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {1D1E467F-DC2E-4D33-91A4-DC80AEF7C46D} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-12-07] (Piriform Software Ltd -> Piriform)
Task: {1F49D1AB-8A96-449E-8AB1-63AF83A9F578} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {25D3F8E0-C477-48F4-A61F-03F634F6D251} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe [743488 2021-08-20] (Kaspersky Lab JSC -> AO Kaspersky Lab)
Task: {262E344B-9985-4A6E-9A79-02B7935084F6} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {316144A1-14D4-42CB-8BAD-836C365A595F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22844272 2022-01-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {4C1C6FF7-7DF1-499A-B505-D54D517F5B8A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8413176 2022-01-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {4E349A5B-7572-41BF-9093-B6B2D62240E7} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-11-16] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {61F49450-3316-4561-83E8-C0143916B851} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {7610B590-E69B-4B1C-A04A-D98ED403923C} - System32\Tasks\CCleanerSkipUAC - ZALMAN => C:\Program Files\CCleaner\CCleaner.exe [29442688 2021-12-07] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {80110671-B358-4FC1-9295-CA10D1C31772} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22844272 2022-01-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {83D66A56-8FC7-496E-9362-1D18C802B19E} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {87452EC6-6DCC-4596-A3C1-86BD567E4EB9} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {9AFE7080-0D62-4EBE-930F-06FCF0234A19} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138592 2022-01-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {A08D1F24-BA04-4CBA-B61F-E5EC7017A357} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {A9943920-F41C-421A-948C-50733F02428B} - System32\Tasks\Intel PTT EK Recertification => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation)
Task: {AD67B880-BD8E-4B59-94F0-E9EFAC5EE7AF} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3341312 2021-12-09] (Nvidia Corporation -> NVIDIA Corporation)
Task: {AF0D853B-416C-421C-A61C-72EE58C6338D} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {B40D4BE7-23B8-4BF2-AFC1-14B8C437FDB8} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138592 2022-01-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {B5042B70-BD78-43BC-833C-49CF3DC020E6} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1613720 2022-01-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {EB3F98FB-592A-4871-A008-A02251FB5F53} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {F21B5FE3-6FC9-4381-9031-1AB82AAF528C} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{2dc7ba16-4201-4404-998a-36a6f6b680c8}: [DhcpNameServer] 192.168.1.1 195.146.128.62

Edge: 
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\ZALMAN\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-14]
Edge HKU\S-1-5-21-1376666150-4259590915-1670796979-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]

FireFox:
========
FF DefaultProfile: uswc131q.default
FF ProfilePath: C:\Users\ZALMAN\AppData\Roaming\Mozilla\Firefox\Profiles\uswc131q.default [2021-08-20]
FF ProfilePath: C:\Users\ZALMAN\AppData\Roaming\Mozilla\Firefox\Profiles\rcfitc31.default-release [2022-01-14]
FF Extension: (AdGuard blokovač reklamy) - C:\Users\ZALMAN\AppData\Roaming\Mozilla\Firefox\Profiles\rcfitc31.default-release\Extensions\adguardadblocker@adguard.com.xpi [2021-12-17]
FF Extension: (HTTPS Everywhere) - C:\Users\ZALMAN\AppData\Roaming\Mozilla\Firefox\Profiles\rcfitc31.default-release\Extensions\https-everywhere@eff.org.xpi [2021-08-22]
FF Extension: (Kaspersky Protection) - C:\Users\ZALMAN\AppData\Roaming\Mozilla\Firefox\Profiles\rcfitc31.default-release\Extensions\light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com.xpi [2021-12-22]
FF Extension: (Surfshark VPN Extension) - C:\Users\ZALMAN\AppData\Roaming\Mozilla\Firefox\Profiles\rcfitc31.default-release\Extensions\{732216ec-0dab-43bb-ac85-4b5e1977599d}.xpi [2021-12-06]
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\FFExt\light_plugin_firefox\addon.xpi => not found
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\FFExt\light_plugin_firefox\addon.xpi => not found
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2021-08-20] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2021-08-20] <==== ATTENTION

Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1050920 2021-05-11] (Autodesk, Inc. -> Autodesk Inc.)
R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [18673448 2020-11-17] (Autodesk, Inc. -> Autodesk)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [99104 2021-08-20] (Apple Inc. -> Apple Inc.)
R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avp.exe [184768 2021-08-20] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8901960 2022-01-13] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12119432 2022-01-14] (Microsoft Corporation -> Microsoft Corporation)
S3 CoordinatorServiceHost; E:\Súbory\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe [80792 2016-02-10] (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [805488 2021-08-22] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 ewserver; E:\Súbory\SOLIDWORKS Corp\SOLIDWORKS Electrical\server\EwServer.exe [179208 2016-02-10] (Trace Software International -> )
R2 Hamachi2Svc; E:\Súbory\LogMeIn Hamachi\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 MSSQL$TEW_SQLEXPRESS; C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe [372416 2015-04-20] (Microsoft Corporation -> Microsoft Corporation)
R2 RemoteSolverDispatcher; E:\Súbory\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe [238848 2016-02-10] (Mentor Graphics Corp -> Mentor Graphics Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6137040 2022-01-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2021-10-14] (SolidWorks) [File not signed]
S4 SQLAgent$TEW_SQLEXPRESS; C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [613056 2015-04-20] (Microsoft Corporation -> Microsoft Corporation)
S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe [7152880 2022-01-12] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2107.4-0\NisSrv.exe [2727416 2021-08-19] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2107.4-0\MsMpEng.exe [136656 2021-08-19] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [8631496 2022-01-12] (PUBG CORPORATION -> PUBG Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_697983dd21312b3c\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_697983dd21312b3c\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [250032 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
R3 iaLPSS2_GPIO2_TGL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_cb8dd04b85ac9a58\iaLPSS2_GPIO2_TGL.sys [128680 2020-12-23] (Intel Corporation -> Intel Corporation)
R1 klbackupdisk; C:\Windows\system32\DRIVERS\klbackupdisk.sys [110336 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [211704 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [126216 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R1 klflt; C:\Windows\system32\DRIVERS\klflt.sys [514840 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klgse; C:\Windows\System32\DRIVERS\klgse.sys [689976 2021-11-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [1507648 2021-11-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [272168 2021-12-20] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1042712 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klim6; C:\Windows\system32\DRIVERS\klim6.sys [98040 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [112392 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [112904 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [85256 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpnpflt; C:\Windows\system32\DRIVERS\klpnpflt.sys [96008 2021-08-20] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R0 klupd_klif_arkmon; C:\Windows\System32\Drivers\klupd_klif_arkmon.sys [276064 2021-11-22] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\Windows\System32\Drivers\klupd_klif_klark.sys [314040 2021-11-22] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\Windows\System32\Drivers\klupd_klif_klbg.sys [113976 2021-11-22] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\Windows\System32\Drivers\klupd_klif_mark.sys [225648 2021-11-22] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [155912 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [327936 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [300808 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S4 RsFx0310; C:\Windows\System32\DRIVERS\RsFx0310.sys [249024 2015-04-20] (Microsoft Corporation -> Microsoft Corporation)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2021-03-18] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [49568 2021-08-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [434424 2021-08-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [78072 2021-08-19] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\Windows\xhunter1.sys [2522256 2022-01-13] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-01-14 15:09 - 2022-01-14 15:09 - 000026383 _____ C:\Users\ZALMAN\Desktop\FRST.txt
2022-01-14 10:56 - 2022-01-14 10:56 - 002653086 _____ C:\Users\ZALMAN\Downloads\Uloha_12 1.rar
2022-01-14 10:01 - 2022-01-14 10:01 - 001666302 _____ C:\Users\ZALMAN\Downloads\Uloha_12.rar
2022-01-13 16:16 - 2022-01-14 15:06 - 000000000 ____D C:\Users\ZALMAN\Desktop\Bakalárka
2022-01-12 21:15 - 2022-01-12 21:15 - 000000000 ____D C:\Users\ZALMAN\AppData\Local\TslGame
2022-01-12 21:14 - 2022-01-13 23:15 - 000000000 ____D C:\Program Files\Common Files\PUBG
2022-01-12 21:14 - 2022-01-13 22:40 - 002522256 _____ (Wellbia.com Co., Ltd.) C:\Windows\xhunter1.sys
2022-01-12 21:14 - 2022-01-12 21:14 - 000000000 ____D C:\Users\ZALMAN\AppData\Local\WELLBIA
2022-01-12 21:14 - 2022-01-12 21:14 - 000000000 ____D C:\Users\ZALMAN\AppData\Local\BattlEye
2022-01-12 21:14 - 2022-01-12 21:14 - 000000000 ____D C:\Program Files\Common Files\UNCHEATER
2022-01-12 12:10 - 2022-01-12 12:10 - 001386615 _____ C:\Users\ZALMAN\Downloads\Screen_Recording_1-12-2022_12-04-01_PM.wmv
2022-01-12 08:41 - 2022-01-12 08:41 - 049243904 _____ C:\Users\ZALMAN\Downloads\OSS Spojene(1).pdf
2022-01-12 08:40 - 2022-01-13 07:26 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-01-12 08:33 - 2022-01-12 08:33 - 000523776 _____ (curl, hxxps://curl.se/) C:\Windows\system32\curl.exe
2022-01-12 08:33 - 2022-01-12 08:33 - 000464384 _____ (curl, hxxps://curl.se/) C:\Windows\SysWOW64\curl.exe
2022-01-12 08:33 - 2022-01-12 08:33 - 000011797 _____ C:\Windows\system32\DrtmAuthTxt.wim
2022-01-12 08:29 - 2022-01-12 08:29 - 000000000 ___HD C:\$WinREAgent
2022-01-11 16:43 - 2022-01-11 16:43 - 008982245 _____ C:\Users\ZALMAN\Downloads\tekutinove mechanizmy komplet prednasky.pdf
2022-01-11 14:35 - 2022-01-11 14:35 - 000000000 ____D C:\Users\Public\Documents\TB Client
2022-01-11 14:35 - 2022-01-11 14:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TrucksBook Client
2022-01-11 14:34 - 2022-01-11 14:34 - 027772397 _____ C:\Users\ZALMAN\Downloads\TB_Client_1_4_0.zip
2022-01-10 21:31 - 2022-01-14 15:09 - 000000000 ____D C:\FRST
2022-01-10 21:30 - 2022-01-10 21:30 - 002311680 _____ (Farbar) C:\Users\ZALMAN\Desktop\FRST64.exe
2022-01-10 19:28 - 2022-01-10 19:28 - 010203955 _____ C:\Users\ZALMAN\Downloads\roboty_merged.pdf
2022-01-10 17:03 - 2022-01-10 17:03 - 008540344 _____ (Malwarebytes) C:\Users\ZALMAN\Downloads\adwcleaner_8.3.1(1).exe
2022-01-10 16:28 - 2022-01-10 16:28 - 035080496 _____ (TeamViewer Germany GmbH) C:\Users\ZALMAN\Downloads\TeamViewer_Setup_x64.exe
2022-01-09 13:53 - 2022-01-09 13:53 - 000000000 ____D C:\Users\ZALMAN\AppData\Local\Logitech
2022-01-08 23:10 - 2022-01-08 23:14 - 000000000 ____D C:\Users\ZALMAN\Documents\ETS2MP
2022-01-08 23:09 - 2022-01-08 23:09 - 000000000 ____D C:\ProgramData\TruckersMP
2022-01-08 23:09 - 2022-01-08 23:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TruckersMP Launcher
2022-01-08 23:08 - 2022-01-08 23:08 - 000667351 _____ C:\Users\ZALMAN\Downloads\launcher_1004.zip
2022-01-08 17:27 - 2022-01-11 16:27 - 000000000 ____D C:\Users\ZALMAN\Documents\Euro Truck Simulator 2
2022-01-08 17:03 - 2022-01-08 17:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2022-01-08 17:03 - 2022-01-08 17:03 - 000000000 ____D C:\Program Files\Logitech
2022-01-08 17:03 - 2022-01-08 17:03 - 000000000 ____D C:\Program Files\Common Files\Logitech
2022-01-08 17:02 - 2022-01-08 17:02 - 016082320 _____ (Logitech Inc.) C:\Users\ZALMAN\Downloads\lgs510_x64.exe
2022-01-08 17:02 - 2022-01-08 17:02 - 000000000 ____D C:\Users\ZALMAN\AppData\Roaming\Logitech
2022-01-08 17:02 - 2022-01-08 17:02 - 000000000 ____D C:\Users\ZALMAN\AppData\Roaming\Logishrd
2022-01-07 19:58 - 2022-01-07 19:58 - 009972163 _____ C:\Users\ZALMAN\Downloads\ROBOTY_PDF_vsetko.pdf
2022-01-03 11:48 - 2022-01-03 21:34 - 000000000 ____D C:\Users\ZALMAN\AppData\Roaming\paradox-launcher-v2
2022-01-02 20:54 - 2022-01-02 20:54 - 000000000 ____D C:\Users\ZALMAN\AppData\Roaming\Paradox Interactive
2022-01-02 20:53 - 2022-01-02 20:53 - 000000000 ____D C:\Users\ZALMAN\AppData\Local\Paradox Interactive
2022-01-02 20:53 - 2022-01-02 20:53 - 000000000 ____D C:\Users\ZALMAN\AppData\Local\Introversion
2021-12-21 17:59 - 2021-12-21 17:59 - 000000000 ____D C:\Users\ZALMAN\AppData\LocalLow\Playsport Games
2021-12-20 18:50 - 2021-12-15 21:58 - 001450200 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-12-20 18:50 - 2021-12-15 21:58 - 001450200 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2021-12-20 18:50 - 2021-12-15 21:57 - 001874648 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2021-12-20 18:50 - 2021-12-15 21:57 - 001874648 _____ C:\Windows\system32\vulkaninfo.exe
2021-12-20 18:50 - 2021-12-15 21:57 - 001466024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2021-12-20 18:50 - 2021-12-15 21:57 - 001209312 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2021-12-20 18:50 - 2021-12-15 21:57 - 001112336 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2021-12-20 18:50 - 2021-12-15 21:57 - 001112336 _____ C:\Windows\system32\vulkan-1.dll
2021-12-20 18:50 - 2021-12-15 21:57 - 000966416 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2021-12-20 18:50 - 2021-12-15 21:57 - 000966416 _____ C:\Windows\SysWOW64\vulkan-1.dll
2021-12-20 18:50 - 2021-12-15 21:54 - 001524392 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2021-12-20 18:50 - 2021-12-15 21:54 - 000802216 _____ C:\Windows\system32\nvofapi64.dll
2021-12-20 18:50 - 2021-12-15 21:54 - 000679384 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2021-12-20 18:50 - 2021-12-15 21:54 - 000658344 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2021-12-20 18:50 - 2021-12-15 21:54 - 000636840 _____ C:\Windows\SysWOW64\nvofapi.dll
2021-12-20 18:50 - 2021-12-15 21:54 - 000565416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2021-12-20 18:50 - 2021-12-15 21:53 - 002116520 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2021-12-20 18:50 - 2021-12-15 21:53 - 001597552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2021-12-20 18:50 - 2021-12-15 21:53 - 001175512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2021-12-20 18:50 - 2021-12-15 21:53 - 000982952 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2021-12-20 18:50 - 2021-12-15 21:53 - 000708776 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2021-12-20 18:50 - 2021-12-15 21:52 - 008725160 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2021-12-20 18:50 - 2021-12-15 21:52 - 007843968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2021-12-20 18:50 - 2021-12-15 21:52 - 005732320 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2021-12-20 18:50 - 2021-12-15 21:52 - 004938880 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2021-12-20 18:50 - 2021-12-15 21:52 - 002852280 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2021-12-20 18:50 - 2021-12-15 21:52 - 000452224 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2021-12-20 18:50 - 2021-12-15 21:51 - 000851936 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2021-12-20 18:50 - 2021-12-15 21:50 - 006438112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2021-12-20 18:50 - 2021-12-15 13:16 - 000085698 _____ C:\Windows\system32\nvinfo.pb
2021-12-17 13:55 - 2022-01-12 18:16 - 000000000 ____D C:\Users\ZALMAN\AppData\Roaming\vlc
2021-12-17 13:02 - 2021-12-17 13:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2021-12-17 13:02 - 2021-12-17 13:02 - 000000000 ____D C:\Program Files (x86)\VideoLAN
2021-12-17 12:58 - 2021-12-17 13:01 - 041372992 _____ C:\Users\ZALMAN\Downloads\vlc-3.0.16-win32.exe
2021-12-16 08:54 - 2021-12-16 08:54 - 007379809 _____ C:\Users\ZALMAN\Downloads\TPV_odpovede_na_test_na_99-converted.pdf
2021-12-15 22:27 - 2021-12-15 22:27 - 000000000 ____D C:\Windows\SystemTemp
2021-12-15 14:07 - 2021-12-15 14:07 - 000272384 _____ C:\Windows\system32\TpmTool.exe
2021-12-15 14:07 - 2021-12-15 14:07 - 000223744 _____ C:\Windows\SysWOW64\TpmTool.exe
2021-12-15 14:07 - 2021-12-15 14:07 - 000162816 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-01-14 15:07 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2022-01-14 15:06 - 2021-10-14 07:35 - 000000000 ____D C:\Users\ZALMAN\Desktop\Veci
2022-01-14 15:05 - 2019-12-07 07:59 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-01-14 14:50 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-01-14 14:50 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2022-01-14 14:44 - 2021-08-20 14:55 - 000000000 ____D C:\Users\ZALMAN\AppData\LocalLow\Mozilla
2022-01-14 14:44 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-01-14 14:39 - 2021-08-20 14:55 - 000000000 ____D C:\ProgramData\Mozilla
2022-01-14 13:32 - 2021-08-20 17:43 - 000000000 ____D C:\Users\ZALMAN\AppData\Roaming\discord
2022-01-14 13:04 - 2021-08-20 17:43 - 000000000 ____D C:\Users\ZALMAN\AppData\Local\Discord
2022-01-14 12:34 - 2019-12-07 08:01 - 000000000 ____D C:\Users\ZALMAN\AppData\Local\Packages
2022-01-14 12:25 - 2021-08-19 15:32 - 000000000 ____D C:\ProgramData\NVIDIA
2022-01-14 11:15 - 2021-09-23 08:51 - 000000000 ____D C:\Program Files\CCleaner
2022-01-14 11:05 - 2021-09-07 18:46 - 000000000 ____D C:\Program Files\Microsoft Office
2022-01-14 09:06 - 2021-10-30 14:28 - 000000000 ____D C:\Users\ZALMAN\AppData\Local\LogMeIn Hamachi
2022-01-14 09:06 - 2021-10-27 08:58 - 000000000 ____D C:\Users\ZALMAN\AppData\Roaming\Blitz
2022-01-14 08:04 - 2021-10-27 08:58 - 000000032 _____ C:\Users\ZALMAN\AppData\Roaming\.machineId
2022-01-13 23:23 - 2019-12-07 08:01 - 000000000 ____D C:\Users\ZALMAN
2022-01-13 18:28 - 2021-08-22 13:38 - 000000000 ____D C:\Users\ZALMAN\AppData\Roaming\qBittorrent
2022-01-13 12:59 - 2021-11-27 11:59 - 000000000 ____D C:\Users\ZALMAN\AppData\Roaming\TeamViewer
2022-01-13 07:33 - 2021-10-23 16:58 - 000049064 _____ C:\Windows\system32\perfh01B.dat
2022-01-13 07:33 - 2021-10-23 16:58 - 000012206 _____ C:\Windows\system32\perfc01B.dat
2022-01-13 07:33 - 2021-08-19 14:40 - 001027750 _____ C:\Windows\system32\PerfStringBackup.INI
2022-01-13 07:26 - 2021-08-20 14:55 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-01-13 07:26 - 2019-12-07 07:59 - 000008192 ___SH C:\DumpStack.log.tmp
2022-01-13 07:26 - 2019-12-07 07:59 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-01-12 22:14 - 2019-12-07 10:03 - 000262144 _____ C:\Windows\system32\config\BBI
2022-01-12 21:15 - 2021-08-20 15:08 - 000000000 ____D C:\Users\ZALMAN\AppData\Local\UnrealEngine
2022-01-12 21:14 - 2021-08-20 15:00 - 000000000 ____D C:\ProgramData\Package Cache
2022-01-12 18:11 - 2021-08-27 15:10 - 000000000 ___RD C:\Users\ZALMAN\Desktop\Games
2022-01-12 08:44 - 2021-09-24 15:12 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2022-01-12 08:44 - 2021-08-20 14:55 - 000001008 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-01-12 08:43 - 2019-12-07 07:59 - 001490808 _____ C:\Windows\system32\FNTCACHE.DAT
2022-01-12 08:42 - 2019-12-07 15:41 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-01-12 08:42 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2022-01-12 08:42 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2022-01-12 08:42 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2022-01-12 08:42 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup
2022-01-12 08:42 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2022-01-12 08:42 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2022-01-12 08:42 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2022-01-12 08:38 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2022-01-12 08:23 - 2021-08-19 15:21 - 000000000 ____D C:\Windows\system32\MRT
2022-01-12 08:22 - 2021-08-19 15:21 - 145765912 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-01-11 15:08 - 2021-08-20 16:17 - 000000000 ____D C:\Users\ZALMAN\Documents\My Games
2022-01-10 20:23 - 2021-08-20 15:09 - 000000000 ____D C:\Users\ZALMAN\AppData\Local\CrashDumps
2022-01-10 18:25 - 2019-12-07 10:03 - 000032768 _____ C:\Windows\system32\config\ELAM
2022-01-09 09:39 - 2021-08-20 16:39 - 000000000 ____D C:\Users\ZALMAN\AppData\Roaming\Apple Computer
2022-01-08 16:27 - 2019-12-07 07:59 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-01-08 16:19 - 2021-08-19 15:31 - 000003840 _____ C:\Windows\system32\Tasks\Intel PTT EK Recertification
2021-12-23 18:43 - 2021-08-20 15:11 - 000000000 ____D C:\Users\ZALMAN\AppData\Local\D3DSCache
2021-12-20 18:58 - 2021-08-20 15:00 - 000000000 ____D C:\Users\ZALMAN\AppData\Local\NVIDIA
2021-12-20 18:27 - 2021-08-20 15:00 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-20 18:27 - 2021-08-20 15:00 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-20 18:27 - 2021-08-20 15:00 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-20 18:27 - 2021-08-20 15:00 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-20 18:27 - 2021-08-20 15:00 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-20 18:27 - 2021-08-20 15:00 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-20 18:27 - 2021-08-20 15:00 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-20 18:27 - 2021-08-20 15:00 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-20 18:27 - 2021-08-20 15:00 - 000003654 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-20 18:27 - 2021-08-20 15:00 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2021-12-20 18:27 - 2021-08-19 15:16 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2021-12-20 18:27 - 2021-08-19 15:16 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-12-19 20:47 - 2021-10-23 16:56 - 000000000 ____D C:\ProgramData\Riot Games
2021-12-15 22:27 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-12-15 22:27 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lv-LV
2021-12-15 22:27 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lt-LT
2021-12-15 22:27 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\et-EE
2021-12-15 22:27 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX
2021-12-15 22:27 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning
2021-12-15 22:27 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2021-12-15 21:53 - 2021-10-23 12:11 - 000794024 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2021-12-15 21:50 - 2021-08-19 15:16 - 007586784 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2021-12-15 11:30 - 2021-09-08 17:48 - 000002376 _____ C:\Users\ZALMAN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2021-12-15 11:15 - 2021-09-23 08:51 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update

==================== Files in the root of some directories ========

2021-10-27 08:58 - 2022-01-14 08:04 - 000000032 _____ () C:\Users\ZALMAN\AppData\Roaming\.machineId
2021-11-01 12:04 - 2021-11-27 15:17 - 000000000 _____ () C:\Users\ZALMAN\AppData\Local\Temptable.xml

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================