Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-02-2022 01
Ran by domin (administrator) on DESKTOP-86VOCOF (ATComputers ALZA) (19-02-2022 14:30:46)
Running from C:\Users\domin\Downloads
Loaded Profiles: domin
Platform: Microsoft Windows 10 Home Version 21H2 19044.1526 (X64) Language: Čeština (Česká republika) -> Slovenčina (Slovensko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files (x86)\Avira\Antivirus\avguard.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <2>
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\ProgramData\Wargaming.net\GameCenter\wgc.exe ->) (Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer_host.exe <3>
(C:\ProgramData\Wargaming.net\GameCenter\wgc.exe ->) (Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wargamingerrormonitor.exe
(explorer.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(explorer.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <11>
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(explorer.exe ->) (TomTom) [File not signed] C:\Program Files (x86)\TomTom\MySportsConnect\TomTom MySports Connect.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(explorer.exe ->) (Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wgc.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(RuntimeBroker.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2111.12605.0_x64__8wekyb3d8bbwe\Win32Bridge.Server.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\protectedservice.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_210a1fe35426e7b5\RstMwService.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_19c79fb6254e3b11\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(svchost.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2111.12605.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9270776 2019-04-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-17] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-66758953-1109747645-2361655009-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2151360 2022-02-18] (Wargaming.net Limited -> Wargaming.net)
HKU\S-1-5-21-66758953-1109747645-2361655009-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33650656 2022-02-16] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-66758953-1109747645-2361655009-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4268456 2022-01-16] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-66758953-1109747645-2361655009-1001\...\Run: [MyDriveConnect.exe] => C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe -startwithoutDA (No File)
HKU\S-1-5-21-66758953-1109747645-2361655009-1001\...\Run: [TomTom MySports Connect.exe] => C:\Program Files (x86)\TomTom\MySportsConnect\TomTom MySports Connect.exe [638464 2018-09-03] (TomTom) [File not signed]
HKU\S-1-5-21-66758953-1109747645-2361655009-1001\...\Run: [MicrosoftEdgeAutoLaunch_83497DAD29FF071D0AEDF40311C6C56D] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKU\S-1-5-21-66758953-1109747645-2361655009-1001\...\Run: [nvcontainer] => "C:\drivers\lan\nvcontainer.exe" (No File)
HKU\S-1-5-21-66758953-1109747645-2361655009-1001\...\Run: [BreeZip] => "C:\install\TESTRES\BreeZip.exe" (No File)
HKU\S-1-5-21-66758953-1109747645-2361655009-1001\...\Run: [System] => "C:\OneDriveTemp\S-1-5-21-66758953-1109747645-2361655009-1001\System.exe" (No File) <==== ATTENTION
HKU\S-1-5-21-66758953-1109747645-2361655009-1001\...\Run: [smartscreen] => "C:\drivers\iRST17\smartscreen.exe" (No File)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\98.0.4758.102\Installer\chrmstp.exe [2022-02-16] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems, Inc.)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0659B845-1270-47A0-B15A-470928C9E4D2} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0AC52F44-9F28-4D99-9B35-C9C57762EB25} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {23CFBC15-3BB9-4E6E-93B1-B597CB050D14} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {26A1CF3D-6368-4B06-BC6A-60E4EFD7D51C} - System32\Tasks\Avira_Security_Maintenance => Command(1): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> FallbackTelemetry
Task: {26A1CF3D-6368-4B06-BC6A-60E4EFD7D51C} - System32\Tasks\Avira_Security_Maintenance => Command(2): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> ServiceWatchdog
Task: {26A1CF3D-6368-4B06-BC6A-60E4EFD7D51C} - System32\Tasks\Avira_Security_Maintenance => Command(3): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> CrashCollector
Task: {301BE008-E0B0-4A11-84A7-51BEC68F8370} - System32\Tasks\Avira_Security_Service_SCM_Watchdog => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe [255416 2022-02-11] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {3AC36E76-CDF7-48F0-B92A-02910528BD6B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-09-26] (Google Inc -> Google LLC)
Task: {47AC6C00-B371-4F32-B5A7-56DC9631F469} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4A8EE7BE-0E44-4755-A12E-A29C1676B0E0} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2648424 2021-10-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {4F3419F6-4C58-4A42-A7D5-DF9C98F80B57} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {50DC04FD-A902-4A5C-AD50-B9B0599E05D7} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {67BC3781-6DF3-4475-A737-833F0BCAA047} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [754472 2021-04-05] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {936BC9C1-93F4-4BEE-AA6E-49D722DFB232} - System32\Tasks\Avira_Security_Systray => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe [1667096 2022-02-11] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {98A061C9-EA8D-48AA-86D0-C5CD6524A5F6} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9C84D4B5-9F5B-4E1C-A707-A1A971048FBD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-09-26] (Google Inc -> Google LLC)
Task: {A290F9C0-5CCE-4BD6-9493-9540C349F54B} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {A838255F-9C90-4A2A-AD76-42050F140A14} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [30208384 2022-02-19] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {AC59FBF8-A909-4FA2-8824-BF8C4A4E2A68} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-06-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BFE04709-C0BB-4C81-86BC-77770C74847B} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation)
Task: {CD38F8B2-03D1-4839-BA77-22F7BF246D23} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\PLUGScheduler => C:\Program Files\RUXIM\PLUGscheduler.exe [369512 2022-01-12] (Microsoft Windows -> Microsoft Corporation)
Task: {F2BDE6AE-A527-4E84-981D-96429BAC8C1E} - System32\Tasks\Avira_Security_Update => C:\WINDOWS\system32\net.exe [59904 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {F727E343-5845-4881-B7D4-1B314E02DB16} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F8436674-6671-4634-B848-6BFB57C1110C} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a4817035-29d7-409d-bfa6-61608268de64}: [DhcpNameServer] 192.168.1.1

Edge: 
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\domin\AppData\Local\Microsoft\Edge\User Data\Default [2022-02-19]
Edge Notifications: Default -> hxxps://surviv.io
Edge Extension: (Outlook) - C:\Users\domin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2020-10-18]
Edge Extension: (Word) - C:\Users\domin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2020-10-18]
Edge Extension: (Excel) - C:\Users\domin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2020-10-18]
Edge Extension: (PowerPoint) - C:\Users\domin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2020-10-18]
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2020-12-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2020-12-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files (x86)\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2020-12-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files (x86)\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2020-12-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome: 
=======
CHR DefaultProfile: Profile 4
CHR Profile: C:\Users\domin\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-11-28]
CHR Profile: C:\Users\domin\AppData\Local\Google\Chrome\User Data\Profile 2 [2022-02-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\domin\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-28]
CHR Profile: C:\Users\domin\AppData\Local\Google\Chrome\User Data\Profile 3 [2022-02-19]
CHR Notifications: Profile 3 -> hxxps://us04web.zoom.us
CHR Extension: (Prezentace) - C:\Users\domin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-11-28]
CHR Extension: (Dokumenty) - C:\Users\domin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2021-11-28]
CHR Extension: (Disk Google) - C:\Users\domin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-11-28]
CHR Extension: (YouTube) - C:\Users\domin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-11-28]
CHR Extension: (Tabulky) - C:\Users\domin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-11-28]
CHR Extension: (Dokumenty Google offline) - C:\Users\domin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-02-16]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\domin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-28]
CHR Extension: (Gmail) - C:\Users\domin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-11-28]
CHR Profile: C:\Users\domin\AppData\Local\Google\Chrome\User Data\Profile 4 [2022-02-19]
CHR Notifications: Profile 4 -> hxxps://surviv.io
CHR Extension: (Prezentace) - C:\Users\domin\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-12-06]
CHR Extension: (Dokumenty) - C:\Users\domin\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aohghmighlieiainnegkcijnfilokake [2021-12-06]
CHR Extension: (Disk Google) - C:\Users\domin\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-12-06]
CHR Extension: (YouTube) - C:\Users\domin\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-12-06]
CHR Extension: (Tabulky) - C:\Users\domin\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-12-06]
CHR Extension: (Dokumenty Google offline) - C:\Users\domin\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-02-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\domin\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-12-06]
CHR Extension: (Gmail) - C:\Users\domin\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-12-06]
CHR Profile: C:\Users\domin\AppData\Local\Google\Chrome\User Data\System Profile [2022-02-16]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1206648 2021-06-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntivirProtectedService; C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe [538000 2021-06-25] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [485048 2021-06-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [485048 2021-06-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [574832 2022-01-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2998096 2021-11-23] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [382944 2022-01-25] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraSecurity; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [265008 2022-02-11] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AviraSecurityUpdater; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe [266120 2022-02-11] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8901968 2021-02-24] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [812520 2021-12-14] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2447152 2022-02-01] (Rockstar Games, Inc. -> Rockstar Games)
S3 uncheater_bgl; C:\Program Files\Common Files\Uncheater\uncheater_bgl.exe [2097008 2019-11-24] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\NisSrv.exe [2909208 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MsMpEng.exe [128376 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_19c79fb6254e3b11\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_19c79fb6254e3b11\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [78936 2019-06-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S0 avelam; C:\WINDOWS\System32\drivers\avelam.sys [22848 2021-06-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [209088 2021-10-22] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [199312 2021-02-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [46704 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [89736 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [45472 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-10-04] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R3 SteamStreamingMicrophone; C:\WINDOWS\system32\drivers\SteamStreamingMicrophone.sys [40736 2017-07-28] (Valve Corp. -> )
R3 SteamStreamingSpeakers; C:\WINDOWS\system32\drivers\SteamStreamingSpeakers.sys [40736 2017-07-21] (Valve Corp. -> )
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2022-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [438520 2022-02-10] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90360 2022-02-10] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\Windows\xhunter1.sys [74552 2019-11-24] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-02-19 14:30 - 2022-02-19 14:31 - 000027649 _____ C:\Users\domin\Downloads\FRST.txt
2022-02-19 14:30 - 2022-02-19 14:30 - 000000000 ____D C:\FRST
2022-02-19 14:29 - 2022-02-19 14:29 - 002312192 _____ (Farbar) C:\Users\domin\Downloads\FRST64.exe
2022-02-19 14:07 - 2022-02-19 14:07 - 000000000 ____D C:\WINDOWS\SysWOW64\statReporter
2022-02-19 14:07 - 2022-02-19 14:07 - 000000000 ____D C:\Users\Public\Security Sessions
2022-02-19 14:05 - 2022-02-19 14:07 - 000000000 ____D C:\Users\domin\AppData\Local\Avira
2022-02-19 14:05 - 2022-02-19 14:05 - 000003888 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Maintenance
2022-02-19 14:05 - 2022-02-19 14:05 - 000003780 _____ C:\WINDOWS\system32\Tasks\AviraSystemSpeedupUpdate
2022-02-19 14:05 - 2022-02-19 14:05 - 000003638 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Update
2022-02-19 14:05 - 2022-02-19 14:05 - 000003428 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Service_SCM_Watchdog
2022-02-19 14:05 - 2022-02-19 14:05 - 000003374 _____ C:\WINDOWS\system32\Tasks\Avira_Antivirus_Systray
2022-02-19 14:05 - 2022-02-19 14:05 - 000002818 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Systray
2022-02-19 14:05 - 2022-02-19 14:05 - 000001117 _____ C:\Users\Public\Desktop\Avira.lnk
2022-02-19 14:05 - 2022-02-19 14:05 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2022-02-19 14:05 - 2022-02-19 14:05 - 000000000 ____D C:\Users\Public\Speedup Sessions
2022-02-19 14:05 - 2022-02-19 14:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2022-02-19 14:05 - 2022-02-19 14:05 - 000000000 ____D C:\Program Files (x86)\Avira
2022-02-19 14:05 - 2021-10-22 08:45 - 000209088 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2022-02-19 14:05 - 2021-06-25 13:59 - 000022848 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avelam.sys
2022-02-19 14:05 - 2021-02-09 18:03 - 000199312 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2022-02-19 14:05 - 2019-06-07 14:09 - 000078936 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avdevprot.sys
2022-02-19 14:05 - 2019-03-20 18:50 - 000089736 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2022-02-19 14:05 - 2019-03-20 18:50 - 000046704 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2022-02-19 14:05 - 2019-03-20 18:50 - 000045472 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avusbflt.sys
2022-02-19 14:04 - 2022-02-19 14:07 - 000000000 ____D C:\ProgramData\Avira
2022-02-19 14:04 - 2022-02-19 14:04 - 005547256 _____ (Avira Operations GmbH & Co. KG) C:\Users\domin\Downloads\avira_en_sptl1_1772109375-1645275861__phpws-spotlight-release.exe
2022-02-18 17:30 - 2022-02-18 17:30 - 000000000 ___HD C:\$WinREAgent
2022-02-18 17:24 - 2022-02-19 10:48 - 000000000 ____D C:\Program Files\RUXIM
2022-02-15 09:56 - 2022-02-15 09:56 - 010020738 _____ C:\Users\domin\Downloads\10. Voda a jej okolie – 1. časť.pptx
2022-02-11 18:11 - 2022-02-11 18:11 - 313197369 _____ C:\Users\domin\Desktop\Legálne podvádzanie.mp4
2022-02-11 18:03 - 2022-02-11 18:03 - 003981761 _____ C:\Users\domin\Desktop\2022-02-11 18-03-21.mp4
2022-02-11 17:57 - 2022-02-11 17:57 - 002461195 _____ C:\Users\domin\Desktop\2022-02-11 17-56-38.mp4
2022-02-11 17:53 - 2022-02-11 17:53 - 000447012 _____ C:\Users\domin\Desktop\2022-02-11 17-53-10.mp4
2022-02-11 17:41 - 2022-02-11 17:41 - 139831512 _____ C:\Users\domin\Desktop\2022-02-07 14-54-20.mp4
2022-02-11 17:41 - 2022-02-11 17:41 - 137505304 _____ C:\Users\domin\Desktop\2022-02-07 14-51-43.mp4
2022-02-11 17:41 - 2022-02-11 17:41 - 111306895 _____ C:\Users\domin\Desktop\2022-02-07 14-50-45.mp4
2022-02-11 17:39 - 2022-02-11 17:39 - 039559835 _____ C:\Users\domin\Desktop\2022-02-11 17-35-26.mp4
2022-02-11 17:39 - 2022-02-11 17:39 - 034286832 _____ C:\Users\domin\Desktop\2022-02-11 17-38-31.mp4
2022-02-11 17:39 - 2022-02-11 17:39 - 022888628 _____ C:\Users\domin\Desktop\2022-02-11 17-37-15.mp4
2022-02-11 04:42 - 2022-02-11 04:42 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2022-02-11 04:42 - 2022-02-11 04:42 - 000011813 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-02-11 04:41 - 2022-02-11 04:41 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-02-11 04:41 - 2022-02-11 04:41 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2022-02-11 04:41 - 2022-02-11 04:41 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-02-10 04:57 - 2022-02-10 04:57 - 000000000 ____D C:\Users\domin\AppData\Local\Yandex
2022-02-07 19:53 - 2022-02-07 19:53 - 000155608 _____ C:\Users\domin\Downloads\NN DDS_Potvrdenie na uplatnenie nezdanitelnych casti zakladu dane_1258450957.pdf
2022-02-03 11:00 - 2022-02-03 11:34 - 001608814 _____ C:\Users\domin\Desktop\20220203_1126_germany-G140_HWK_30_07_lakeville.wotreplay
2022-02-03 11:00 - 2022-02-03 11:24 - 001666956 _____ C:\Users\domin\Desktop\20220203_1116_germany-G140_HWK_30_36_fishing_bay.wotreplay
2022-02-03 11:00 - 2022-02-03 11:15 - 002061729 _____ C:\Users\domin\Desktop\20220203_1102_germany-G140_HWK_30_05_prohorovka.wotreplay
2022-02-03 08:06 - 2022-02-03 08:06 - 009118092 _____ C:\Users\domin\Downloads\Príklady na mierku mapy.pptx
2022-02-03 08:00 - 2022-02-03 08:00 - 005698684 _____ C:\Users\domin\Downloads\MAPA__A_Glóbus.pptx
2022-02-03 07:55 - 2022-02-03 07:55 - 000981120 _____ C:\Users\domin\Downloads\20220202_160219.heic
2022-02-01 15:53 - 2022-02-01 15:53 - 002158011 _____ C:\Users\domin\Desktop\20220131_0855_germany-G16_PzVIB_Tiger_II_99_poland.wotreplay
2022-02-01 15:53 - 2022-02-01 15:53 - 001565364 _____ C:\Users\domin\Desktop\20220131_1312_japan-J16_ST_B1_83_kharkiv.wotreplay
2022-02-01 15:53 - 2022-02-01 15:53 - 001267365 _____ C:\Users\domin\Desktop\20220131_0956_germany-G16_PzVIB_Tiger_II_115_sweden.wotreplay

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-02-19 14:30 - 2019-10-04 19:40 - 000000000 ____D C:\Program Files (x86)\Steam
2022-02-19 14:26 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-02-19 14:11 - 2019-09-17 14:16 - 000000000 ____D C:\ProgramData\NVIDIA
2022-02-19 14:05 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-02-19 14:03 - 2019-10-19 09:44 - 000000000 ____D C:\Users\domin\AppData\Roaming\Discord
2022-02-19 14:03 - 2019-10-19 09:44 - 000000000 ____D C:\Users\domin\AppData\Local\Discord
2022-02-19 13:57 - 2019-09-26 12:54 - 000000000 ____D C:\Program Files (x86)\Google
2022-02-19 12:04 - 2020-02-25 07:34 - 000000000 ____D C:\Users\domin\AppData\Roaming\.minecraft
2022-02-19 11:42 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-02-19 11:41 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-02-19 11:28 - 2020-06-08 07:19 - 000002403 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-02-19 11:28 - 2020-06-08 07:19 - 000002241 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-02-19 10:48 - 2020-10-02 18:47 - 000004208 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{9D260916-1274-4B8E-B983-C3477F963C5C}
2022-02-19 10:47 - 2020-10-02 18:50 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-02-19 10:47 - 2019-12-07 15:41 - 000716764 _____ C:\WINDOWS\system32\perfh005.dat
2022-02-19 10:47 - 2019-12-07 15:41 - 000144942 _____ C:\WINDOWS\system32\perfc005.dat
2022-02-19 10:47 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-02-19 10:41 - 2020-10-02 18:47 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-02-19 10:41 - 2020-10-02 18:42 - 000008192 ___SH C:\DumpStack.log.tmp
2022-02-19 10:41 - 2019-09-26 12:52 - 000000000 ___RD C:\Users\domin\OneDrive
2022-02-18 19:50 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-02-18 17:30 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-02-18 17:24 - 2019-10-19 09:44 - 000002234 _____ C:\Users\domin\Desktop\Discord.lnk
2022-02-16 19:18 - 2020-10-02 18:42 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-02-15 07:02 - 2021-12-11 13:50 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-66758953-1109747645-2361655009-1001
2022-02-15 07:02 - 2020-10-02 18:47 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-66758953-1109747645-2361655009-1001
2022-02-15 07:02 - 2020-10-02 18:43 - 000002374 _____ C:\Users\domin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-02-11 18:04 - 2020-11-09 17:24 - 000000000 ____D C:\Users\domin\AppData\Roaming\obs-studio
2022-02-11 12:28 - 2020-10-02 18:42 - 000314024 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-02-11 07:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-02-11 07:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-02-11 07:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-02-11 07:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-02-11 07:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-02-11 07:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-02-11 07:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-02-11 07:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-02-11 07:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-02-11 07:17 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2022-02-11 04:41 - 2020-10-02 18:47 - 002877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-02-11 04:34 - 2019-09-26 15:01 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-02-11 04:33 - 2019-09-26 15:01 - 149611728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-02-10 12:33 - 2019-09-17 14:11 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-02-10 05:04 - 2019-11-24 18:28 - 000000000 ____D C:\Users\domin\AppData\Local\CrashDumps
2022-02-06 18:49 - 2020-01-27 06:53 - 000000000 ____D C:\Program Files\Rockstar Games
2022-02-06 18:49 - 2020-01-27 06:53 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2022-02-04 19:38 - 2019-09-26 13:11 - 000001652 _____ C:\Users\domin\Desktop\World of Tanks.lnk
2022-02-04 11:50 - 2019-09-26 12:51 - 000000000 ____D C:\Users\domin\AppData\Local\Packages
2022-01-31 22:15 - 2020-10-02 18:43 - 000000000 ____D C:\Users\domin
2022-01-30 19:44 - 2021-12-06 07:32 - 000002371 _____ C:\Users\domin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2022-01-30 19:44 - 2019-10-19 09:44 - 000000000 ____D C:\Users\domin\AppData\Local\SquirrelTemp
2022-01-30 19:44 - 2019-09-17 14:17 - 000000000 __RHD C:\Users\Public\AccountPictures
2022-01-28 16:22 - 2020-10-02 18:47 - 000003576 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-01-28 16:22 - 2020-10-02 18:47 - 000003452 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-01-25 16:25 - 2021-05-06 14:00 - 000000000 ____D C:\Program Files (x86)\Minecraft Launcher
2022-01-24 05:25 - 2020-01-27 07:00 - 000000000 ____D C:\Users\domin\AppData\Local\Rockstar Games
2022-01-21 15:52 - 2020-10-02 18:47 - 000003458 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-01-21 15:52 - 2020-10-02 18:47 - 000003334 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================