JustPaste.it

stary frst


==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [122592 2021-05-25] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9181696 2016-12-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [THXCfg64] => C:\Windows\system32\THXCfg64.dll [26624 2011-05-13] (Creative Technology Ltd.) [File not signed]
HKLM-x32\...\Run: [Samsung PanelMgr] => C:\Windows\Samsung\PanelMgr\SSMMgr.exe [688128 2011-07-13] () [File not signed]
HKLM-x32\...\Run: [SCX4623_Scan2Pc] => C:\Windows\Twain_32\Samsung\SCX4623\Scan2pc.exe [2043392 2012-03-13] () [File not signed]
HKLM-x32\...\Run: [4623 Scan2PC] => C:\Windows\twain_32\Samsung\SCX4623\Scan2Pc.exe [2043392 2012-03-13] () [File not signed]
HKLM-x32\...\Run: [PNAgent] => C:\Program Files (x86)\PhatNoise Music Manager\PNAgent.exe [40960 2003-09-24] (PhatNoise, Inc) [File not signed]
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation -> Renesas Electronics Corporation)
HKLM-x32\...\Run: [ControlCenterCount] => C:\Program Files (x86)\MSI\ControlCenter\ControlCenterCount.exe [872448 2012-03-26] (MSI CO.,LTD.) [File not signed]
HKLM-x32\...\Run: [Super Charger] => C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [1028280 2017-11-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM-x32\...\Run: [THX Audio Control Panel] => C:\Program Files (x86)\Creative\THX TruStudio Pro\THXAudioCP\THXAudio.exe [1517056 2011-08-29] (Creative Technology Ltd) [File not signed]
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.) [File not signed]
HKLM-x32\...\Run: [Live Update] => C:\Program Files (x86)\MSI\Live Update\Live Update.exe [26327864 2021-04-08] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [MSIRegister] => C:\Program Files (x86)\MSI\MSIRegister\MSIRegister.exe [1266864 2019-08-28] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2503187994-2676281761-2874965436-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [371304 2019-11-29] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-2503187994-2676281761-2874965436-1000\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [8520168 2021-05-18] (LAVASOFT SOFTWARE CANADA INC -> Lavasoft)
HKLM\...\Windows x64\Print Processors\Samsung Network PC Fax Print Processor: C:\Windows\System32\spool\prtprocs\x64\NetFaxProc64.dll [146944 2019-06-25] (HP Printing Korea Co., Ltd.) [File not signed]
HKLM\...\Windows x64\Print Processors\sso4mPC: C:\Windows\System32\spool\prtprocs\x64\sso4mpc.dll [33792 2009-10-29] (Windows (R) Server 2003 DDK provider) [File not signed]
HKLM\...\Print\Monitors\Samsung Network PC Fax Port: C:\Windows\system32\NetFaxPort64.dll [586240 2019-06-25] (HP Printing Korea Co., Ltd.) [File not signed]
HKLM\...\Print\Monitors\sso4m Langmon: C:\Windows\system32\sso4ml6.dll [27648 2009-10-29] () [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Samsung Network PC Fax.lnk [2020-12-20]
ShortcutTarget: Samsung Network PC Fax.lnk -> C:\Windows\System32\spool\drivers\x64\3\NetFaxTray64.exe (HP Printing Korea Co., Ltd.) [File not signed]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {05DB271F-06D3-4DD1-BC4C-DE21FC6C5848} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [757184 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {08DE4712-F105-4B13-A6B4-BFB68C69B71A} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [976832 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {103AE4EA-4A76-454F-9A93-AC811797F739} - System32\Tasks\Opera scheduled Autoupdate 1573813697 => C:\Users\Druss\AppData\Local\Programs\Opera\launcher.exe
Task: {1E6909DF-8081-49B6-BF6A-FA2EEFB63CF2} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {209A3C5D-4C41-4BA1-A23D-2B2EEA9C8114} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {50FC023F-223E-4FF6-B057-FC9935C4D95C} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2069952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {53FD6B32-87B3-4D44-8C9E-AEF5071E2E61} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4808928 2021-05-25] (Avast Software s.r.o. -> AVAST Software)
Task: {592B5977-A95C-4497-B440-37D54B82C920} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {699AB50B-28DC-41DD-9EFB-6E3702C348A3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {70D97A35-AE59-4E94-A5AA-291467263EA8} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [782320 2019-10-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {830130EF-D2DE-45B9-AD9B-11726BFD5270} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [696304 2021-05-06] (Mozilla Corporation -> Mozilla Foundation)
Task: {951B03F0-0CBF-4E50-BF11-FF3CE4DA0E25} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {981D7B5D-B564-4062-B5FC-7422DA76FC7A} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1790184 2021-05-04] (Avast Software s.r.o. -> Avast Software)
Task: {9C16F332-D7F7-4867-8C4C-25F89C2B26ED} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Druss\Desktop\esetonlinescanner.exe
Task: {9CD30C65-36EE-475C-8BC7-0F54A0A26AC6} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Druss\Desktop\esetonlinescanner.exe
Task: {AA7DFADF-541D-4B1A-B5E8-D155B9F4049C} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [469952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files (x86)\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {B16DBC13-7AD4-4E42-8CE9-29F1F121730B} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {DD76FE96-770E-4D0D-A80C-0C3ECC4167B3} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [510912 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E03A948A-EB30-4BFC-BD70-F8307D8E6897} - System32\Tasks\Opera scheduled assistant Autoupdate 1573813699 => C:\Users\Druss\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Druss\AppData\Local\Programs\Opera\assistant" $(Arg0)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{3CD68031-29F0-45AF-ABFB-57E4A9C537E1}: [DhcpNameServer] 192.168.1.1

Edge: 
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Druss\AppData\Local\Microsoft\Edge\User Data\Default [2021-05-06]
Edge HomePage: Default -> hxxp://www.nav-pl.com/

FireFox:
========
FF DefaultProfile: p1f9hsf6.default
FF ProfilePath: C:\Users\Druss\AppData\Roaming\Mozilla\Firefox\Profiles\p1f9hsf6.default [2021-05-18]
FF Homepage: Mozilla\Firefox\Profiles\p1f9hsf6.default -> hxxps://poshukach.com?fr=ps&gp=496722&altserp=1
FF NewTab: Mozilla\Firefox\Profiles\p1f9hsf6.default -> hxxps://poshukach.com?fr=ps&gp=496722&altserp=1
FF Extension: (Avast Online Security) - C:\Users\Druss\AppData\Roaming\Mozilla\Firefox\Profiles\p1f9hsf6.default\Extensions\wrc@avast.com.xpi [2019-11-01]
FF ProfilePath: C:\Users\Druss\AppData\Roaming\Mozilla\Firefox\Profiles\m61njiea.default-release [2021-05-30]
FF DownloadDir: C:\Users\Druss\Desktop
FF Homepage: Mozilla\Firefox\Profiles\m61njiea.default-release -> hxxps://www.google.pl/
FF NewTab: Mozilla\Firefox\Profiles\m61njiea.default-release -> hxxps://poshukach.com?fr=ps&gp=496722&altserp=1
FF Extension: (AdBlocker Ultimate) - C:\Users\Druss\AppData\Roaming\Mozilla\Firefox\Profiles\m61njiea.default-release\Extensions\adblockultimate@adblockultimate.net.xpi [2020-12-07]
FF Extension: (Enhancer for YouTube™) - C:\Users\Druss\AppData\Roaming\Mozilla\Firefox\Profiles\m61njiea.default-release\Extensions\enhancerforyoutube@maximerf.addons.mozilla.org.xpi [2021-05-25]
FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\Druss\AppData\Roaming\Mozilla\Firefox\Profiles\m61njiea.default-release\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2021-05-11]
FF Extension: (Avast SafePrice | Porównania, promocje, kupony) - C:\Users\Druss\AppData\Roaming\Mozilla\Firefox\Profiles\m61njiea.default-release\Extensions\sp@avast.com.xpi [2020-07-06]
FF Extension: (Avast Online Security) - C:\Users\Druss\AppData\Roaming\Mozilla\Firefox\Profiles\m61njiea.default-release\Extensions\wrc@avast.com.xpi [2021-02-17]
FF Extension: (Easy Youtube Video Downloader Express) - C:\Users\Druss\AppData\Roaming\Mozilla\Firefox\Profiles\m61njiea.default-release\Extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi [2021-05-25]
FF Extension: (Video DownloadHelper) - C:\Users\Druss\AppData\Roaming\Mozilla\Firefox\Profiles\m61njiea.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2020-12-16]
FF Extension: (YouTube Video and Audio Downloader (Dev Edt.)) - C:\Users\Druss\AppData\Roaming\Mozilla\Firefox\Profiles\m61njiea.default-release\Extensions\{f73df109-8fb4-453e-8373-f59e61ca4da3}.xpi [2021-05-27]
FF SearchPlugin: C:\Users\Druss\AppData\Roaming\Mozilla\Firefox\Profiles\m61njiea.default-release\searchplugins\Poshukach Engin Search.xml [2021-05-18]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-04-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8150552 2021-05-25] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [622816 2021-05-25] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [370400 2021-05-25] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-25] (Avast Software s.r.o. -> AVAST Software)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4452456 2019-11-29] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2020-05-14] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 GSService; C:\Windows\SysWOW64\GSService.exe [444640 2014-07-28] (cyan soft ltd -> )
S3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [File not signed]
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-02-26] (Malwarebytes Inc -> Malwarebytes)
R2 MSIREGISTER_MR; C:\Program Files (x86)\MSI\MSIRegister\MSIRegisterService.exe [2019504 2019-08-28] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2210104 2021-04-08] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [183472 2020-03-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [8102192 2019-05-12] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
S3 Rockstar Service; D:\Gry\GTA\Launcher\RockstarService.exe [1716632 2021-05-30] (Rockstar Games, Inc. -> Rockstar Games)
R2 Samsung Network Fax Server; C:\Windows\system32\spool\drivers\x64\3\NetFaxServer64.exe [700928 2019-06-25] (HP Printing Korea Co., Ltd.) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 Aspi32; C:\Windows\SysWOW64\drivers\aspi32.sys [16512 2003-06-11] (Adaptec) [File not signed]
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [35664 2021-05-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [216360 2021-05-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [365536 2021-05-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [250336 2021-05-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [99296 2021-05-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [41296 2021-05-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [180944 2021-05-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [522824 2021-05-25] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2020-04-14] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [107792 2021-05-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [82856 2021-05-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851144 2021-05-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [471352 2021-05-25] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [215336 2021-05-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [326976 2021-05-25] (Avast Software s.r.o. -> AVAST Software)
S3 cpuz148; C:\Windows\temp\cpuz148\cpuz148_x64.sys [35360 2021-01-11] (CPUID S.A.R.L.U. -> CPUID)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [42256 2019-11-29] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [59360 2019-11-29] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 GENERICDRV; C:\Program Files (x86)\MSI\ControlCenter\amifldrv64.sys [13864 2009-10-23] (American Megatrends, Inc. -> )
R1 HWiNFO_152; C:\Windows\system32\drivers\HWiNFO64A_152.SYS [63208 2020-12-30] (Martin Malik - REALiX -> REALiX(tm))
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-05-21] (Malwarebytes Inc -> Malwarebytes)
S3 NTIOLib_1_0_2; C:\Program Files (x86)\MSI\ControlCenter\NTIOLib_X64.sys [13328 2012-02-14] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 NTIOLib_MSISMB_CC; C:\Program Files (x86)\MSI\ControlCenter\Sleep\NTIOLib_X64.sys [13368 2012-11-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 nusb3hub; C:\Windows\System32\DRIVERS\nusb3hub.sys [82432 2011-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
R3 nusb3xhc; C:\Windows\System32\DRIVERS\nusb3xhc.sys [181760 2011-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
S3 HWiNFO_153; \??\C:\Users\Druss\AppData\Local\Temp\HWiNFO64A_153.SYS [X] <==== ATTENTION

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-05-30 02:05 - 2021-05-30 02:05 - 000019592 _____ C:\Users\Druss\Desktop\FRST.txt
2021-05-30 02:04 - 2021-05-30 02:05 - 000000000 ____D C:\FRST
2021-05-30 02:04 - 2021-05-30 02:04 - 002299904 _____ (Farbar) C:\Users\Druss\Desktop\FRST64.exe
2021-05-26 21:09 - 2021-05-26 21:09 - 000011634 _____ C:\Users\Druss\Desktop\gmer.txt
2021-05-26 21:03 - 2021-05-26 21:03 - 000371282 _____ C:\Users\Druss\Desktop\gmer.zip
2021-05-26 21:03 - 2016-03-11 15:53 - 000380928 _____ C:\Users\Druss\Desktop\gmer.exe
2021-05-26 20:41 - 2021-05-26 20:41 - 000000000 ____D C:\Users\Druss\AppData\Local\Avast Software
2021-05-25 19:24 - 2021-05-25 19:23 - 000339680 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2021-05-25 19:23 - 2021-05-25 19:23 - 000215336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2021-05-18 21:36 - 2021-05-21 13:33 - 000000000 ____D C:\Users\Druss\AppData\Local\Lavasoft
2021-05-18 21:36 - 2021-05-21 13:33 - 000000000 ____D C:\ProgramData\Lavasoft
2021-05-18 21:36 - 2021-05-19 20:47 - 000000000 ____D C:\Users\Druss\AppData\Roaming\Lavasoft
2021-05-18 21:36 - 2021-05-19 20:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2021-05-18 21:36 - 2021-05-18 21:36 - 000000000 ____D C:\Program Files (x86)\Lavasoft
2021-05-18 21:35 - 2021-05-18 21:35 - 000000000 ____D C:\Users\Druss\AppData\Local\UT008
2021-05-07 20:47 - 2021-05-07 20:47 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2021-05-06 20:50 - 2021-05-10 14:36 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-05-06 20:26 - 2021-05-06 20:26 - 000042629 _____ C:\Users\Druss\Downloads\rachunki.xlsx
2021-05-04 00:20 - 2021-05-21 13:39 - 000248992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-05-30 02:04 - 2009-07-14 06:45 - 000035552 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-05-30 02:04 - 2009-07-14 06:45 - 000035552 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-05-30 02:02 - 2021-04-25 13:48 - 000003022 _____ C:\Windows\system32\Tasks\MSIAfterburner
2021-05-30 02:02 - 2019-10-31 22:42 - 000000000 ____D C:\Users\Druss\AppData\LocalLow\Mozilla
2021-05-30 02:02 - 2019-10-31 22:42 - 000000000 ____D C:\ProgramData\Mozilla
2021-05-30 01:58 - 2021-04-15 16:43 - 000003704 _____ C:\Windows\system32\Tasks\EOSv3 Scheduler onLogOn
2021-05-30 01:58 - 2021-04-15 16:43 - 000003264 _____ C:\Windows\system32\Tasks\EOSv3 Scheduler onTime
2021-05-30 01:58 - 2021-01-20 21:46 - 000003410 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-05-30 01:58 - 2021-01-20 21:46 - 000003282 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-05-30 01:58 - 2020-12-30 01:16 - 000003814 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-05-30 01:58 - 2020-12-30 01:14 - 000003922 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-05-30 01:58 - 2020-12-26 01:01 - 000003798 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-05-30 01:58 - 2020-12-26 01:00 - 000004146 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-05-30 01:58 - 2020-12-26 00:59 - 000003738 _____ C:\Windows\system32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-05-30 01:58 - 2020-12-26 00:59 - 000003738 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-05-30 01:58 - 2020-12-26 00:59 - 000003730 _____ C:\Windows\system32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-05-30 01:58 - 2020-12-26 00:59 - 000003494 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-05-30 01:58 - 2019-11-15 12:28 - 000004292 _____ C:\Windows\system32\Tasks\Opera scheduled assistant Autoupdate 1573813699
2021-05-30 01:58 - 2019-11-15 12:28 - 000004058 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1573813697
2021-05-30 01:58 - 2019-11-01 19:57 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2021-05-30 01:01 - 2020-12-21 19:27 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2021-05-30 00:47 - 2021-01-20 21:46 - 000002223 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-05-30 00:46 - 2020-06-21 18:31 - 000000000 ____D C:\Program Files\Rockstar Games
2021-05-30 00:46 - 2020-06-21 18:31 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2021-05-30 00:35 - 2019-11-01 19:57 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2021-05-30 00:35 - 2019-10-31 22:33 - 000000000 ____D C:\ProgramData\NVIDIA
2021-05-30 00:33 - 2019-11-01 19:55 - 000000000 ____D C:\ProgramData\AVAST Software
2021-05-30 00:33 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-05-26 20:52 - 2020-08-25 13:52 - 000000000 ____D C:\Users\Druss\Desktop\PMI COA - wersja od 27.01.2020+rewizje od 08.07.2020
2021-05-25 19:23 - 2020-10-14 19:25 - 000180944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2021-05-25 19:23 - 2020-04-14 19:24 - 000522824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2021-05-25 19:23 - 2019-11-01 19:57 - 000471352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2021-05-25 19:23 - 2019-11-01 19:57 - 000326976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2021-05-25 19:23 - 2019-11-01 19:57 - 000107792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2021-05-25 19:23 - 2019-11-01 19:57 - 000082856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2021-05-25 19:23 - 2019-11-01 19:57 - 000041296 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2021-05-25 19:23 - 2019-11-01 19:56 - 000851144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2021-05-25 19:23 - 2019-11-01 19:56 - 000365536 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2021-05-25 19:23 - 2019-11-01 19:56 - 000250336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2021-05-25 19:23 - 2019-11-01 19:56 - 000216360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2021-05-25 19:23 - 2019-11-01 19:56 - 000099296 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2021-05-25 19:23 - 2019-11-01 19:56 - 000035664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2021-05-21 14:50 - 2019-11-15 12:55 - 000000000 ____D C:\Users\Druss\AppData\Roaming\vlc
2021-05-18 22:17 - 2019-11-15 12:27 - 000000000 ____D C:\Users\Druss\AppData\Roaming\uTorrent
2021-05-18 21:44 - 2019-11-15 12:36 - 000000000 ____D C:\Users\Druss\AppData\Local\BitTorrentHelper
2021-05-18 21:36 - 2020-05-04 20:01 - 000000000 ____D C:\Users\Druss\AppData\LocalLow\uTorrent
2021-05-17 19:37 - 2009-07-14 07:08 - 000032608 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2021-05-13 19:16 - 2020-08-25 22:55 - 000000000 ____D C:\Users\Druss\AppData\Local\CrashDumps
2021-05-11 21:54 - 2019-11-01 21:21 - 000000000 ____D C:\Windows\system32\MRT
2021-05-11 21:51 - 2019-11-01 21:20 - 132732536 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-05-10 14:36 - 2019-10-31 22:42 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

==================== Files in the root of some directories ========

2019-11-29 14:13 - 2019-11-29 14:13 - 000791712 _____ (Disc Soft Ltd.) C:\Program Files\DTLiteInstaller.exe

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2021-05-24 14:24
==================== End of FRST.txt ========================