API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Feb 26th, 2021
212
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 41.73 KB | None | 0 0
raw download clone embed print report
  1. Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 24-02-2021
  2. Ran by liltu (administrator) on TUMSTHIRDHOME (Komplett Komplett PC) (26-02-2021 17:44:20)
  3. Running from C:\Users\liltu\Downloads
  4. Loaded Profiles: liltu
  5. Platform: Windows 10 Home Version 1909 18363.1379 (X64) Language: English (United States)
  6. Default browser: Chrome
  7. Boot Mode: Normal
  8.  
  9. ==================== Processes (Whitelisted) =================
  10.  
  11. (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
  12.  
  13. (Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
  14. (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
  15. (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
  16. (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
  17. (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
  18. (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud Helper.exe
  19. (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
  20. (Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe <4>
  21. (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
  22. (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
  23. (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
  24. (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
  25. (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
  26. (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
  27. (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
  28. (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
  29. (Apple Inc. -> Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
  30. (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
  31. (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler64.exe
  32. (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
  33. (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
  34. (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
  35. (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
  36. (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <3>
  37. (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
  38. (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
  39. (Discord Inc. -> Discord Inc.) C:\Users\liltu\AppData\Local\Discord\app-0.0.309\Discord.exe <6>
  40. (Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe <2>
  41. (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
  42. (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginClientService.exe
  43. (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
  44. (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <2>
  45. (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
  46. (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <26>
  47. (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe
  48. (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe
  49. (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
  50. (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
  51. (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
  52. (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\WirelessKB850NotificationService.exe
  53. (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
  54. (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
  55. (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
  56. (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
  57. (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
  58. (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
  59. (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\usocoreworker.exe
  60. (Mojang AB -> Mojang) C:\Program Files (x86)\Minecraft Launcher\MinecraftLauncher.exe <2>
  61. (Node.js Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
  62. (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
  63. (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
  64. (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
  65. (Skillbrains) [File not signed] C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.35\Lightshot.exe
  66. (Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.153.608.0_x86__zpdnekdrzrea0\Spotify.exe <5>
  67. (Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
  68. (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
  69. (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
  70. (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
  71. (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
  72. (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
  73. (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
  74. (Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
  75.  
  76. ==================== Registry (Whitelisted) ===================
  77.  
  78. (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
  79.  
  80. HKLM\...\Run: [RtkAudUService] => C:\windows\System32\RtkAudUService64.exe [835136 2018-11-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
  81. HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [117352 2020-12-10] (Avast Software s.r.o. -> AVAST Software)
  82. HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
  83. HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [225944 2017-04-11] (OOO Lightshot -> )
  84. HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2091064 2020-07-17] (Adobe Inc. -> Adobe Inc.)
  85. HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-06-05] (Adobe Inc. -> )
  86. HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation)
  87. HKU\S-1-5-21-773241431-1664840815-4020896010-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3412696 2021-02-13] (Valve -> Valve Corporation)
  88. HKU\S-1-5-21-773241431-1664840815-4020896010-1002\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2020-09-08] (Apple Inc. -> Apple Inc.)
  89. HKU\S-1-5-21-773241431-1664840815-4020896010-1002\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2020-09-08] (Apple Inc. -> Apple Inc.)
  90. HKU\S-1-5-21-773241431-1664840815-4020896010-1002\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2020-09-08] (Apple Inc. -> Apple Inc.)
  91. HKU\S-1-5-21-773241431-1664840815-4020896010-1002\...\Run: [com.squirrel.Teams.Teams] => C:\Users\liltu\AppData\Local\Microsoft\Teams\Update.exe [2452664 2021-01-09] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
  92. HKU\S-1-5-21-773241431-1664840815-4020896010-1002\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32907168 2021-02-24] (Epic Games Inc. -> Epic Games, Inc.)
  93. HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.190\Installer\chrmstp.exe [2021-02-26] (Google LLC -> Google LLC)
  94. HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\88.2.8118.183\Installer\chrmstp.exe [2021-02-22] (Avast Software s.r.o. -> AVAST Software)
  95. HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
  96.  
  97. ==================== Scheduled Tasks (Whitelisted) ============
  98.  
  99. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  100.  
  101. Task: {04162E64-1DFB-40D5-AF80-E3995582CB0A} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [142152 2021-02-21] (Microsoft Corporation -> Microsoft Corporation)
  102. Task: {158B3CB6-56FE-4723-8FDC-40E2C784C540} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2192896 2021-02-17] (Avast Software s.r.o. -> AVAST Software)
  103. Task: {1B86CD31-6898-42C1-8537-D291683C437D} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-01-26] (Avast Software s.r.o. -> AVAST Software)
  104. Task: {3492757F-B6CA-4D29-A7F5-CD7F7E530744} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
  105. Task: {3AFA3230-1A1D-42A6-A73D-969BBB7FB0F3} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-01-26] (Avast Software s.r.o. -> AVAST Software)
  106. Task: {4E99DFD3-843F-4499-B1CA-E7BE56735951} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
  107. Task: {516118C1-D8B0-4BC7-BDCE-690B0716C884} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-05-09] (Google Inc -> Google LLC)
  108. Task: {5B084852-BCA1-4009-B214-5571D974C9AE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5199792 2021-02-15] (Microsoft Corporation -> Microsoft Corporation)
  109. Task: {5DAB2E9A-574F-46DA-80F2-50920A1458A6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-05-09] (Google Inc -> Google LLC)
  110. Task: {64C79DD2-1CC9-493F-B5CC-F7565196EBFC} - System32\Tasks\update-S-1-5-21-773241431-1664840815-4020896010-1002 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
  111. Task: {77975193-03E5-421F-A9FD-8B84F6D43306} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
  112. Task: {851EC1B9-AB64-4A29-A6AC-A7C77B41B5C0} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4682976 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
  113. Task: {92151F56-5869-45D0-84DB-2AE5CC2AC700} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
  114. Task: {9C79C442-750D-4E14-8A83-20763ABBFC64} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2192896 2021-02-17] (Avast Software s.r.o. -> AVAST Software)
  115. Task: {B49DEC4F-7C5A-4500-86BC-09DDC5ABCC33} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [142152 2021-02-21] (Microsoft Corporation -> Microsoft Corporation)
  116. Task: {B6D93DB0-B451-43BC-8F32-7BE47B9C864A} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1791712 2021-02-23] (Avast Software s.r.o. -> Avast Software)
  117. Task: {BF2BA65A-7F4D-486E-8DEC-0A32CBB85728} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\Adobe Acrobat Update Task" /ENABLE
  118. Task: {BF2BA65A-7F4D-486E-8DEC-0A32CBB85728} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\AdobeGCInvoker-1.0" /ENABLE
  119. Task: {BF2BA65A-7F4D-486E-8DEC-0A32CBB85728} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
  120. Task: {BF2BA65A-7F4D-486E-8DEC-0A32CBB85728} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
  121. Task: {BF2BA65A-7F4D-486E-8DEC-0A32CBB85728} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore" /ENABLE
  122. Task: {BF2BA65A-7F4D-486E-8DEC-0A32CBB85728} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineUA" /ENABLE
  123. Task: {BF2BA65A-7F4D-486E-8DEC-0A32CBB85728} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-773241431-1664840815-4020896010-1002" /ENABLE
  124. Task: {BF2BA65A-7F4D-486E-8DEC-0A32CBB85728} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-773241431-1664840815-4020896010-500" /ENABLE
  125. Task: {BF2BA65A-7F4D-486E-8DEC-0A32CBB85728} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\update-S-1-5-21-773241431-1664840815-4020896010-1002" /ENABLE
  126. Task: {BF2BA65A-7F4D-486E-8DEC-0A32CBB85728} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(10): schtasks.exe -> /Change /TN "\update-sys" /ENABLE
  127. Task: {BF2BA65A-7F4D-486E-8DEC-0A32CBB85728} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(11): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
  128. Task: {D0878E40-4076-4300-B476-C9B7B35AC2C2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5199792 2021-02-15] (Microsoft Corporation -> Microsoft Corporation)
  129. Task: {DEA28144-AA70-4881-9CFC-705AF328F15C} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22993800 2021-02-15] (Microsoft Corporation -> Microsoft Corporation)
  130. Task: {F146A7B0-10B3-4BDA-983C-D4B50F8F67DE} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22993800 2021-02-15] (Microsoft Corporation -> Microsoft Corporation)
  131.  
  132. (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
  133.  
  134. Task: C:\WINDOWS\Tasks\update-S-1-5-21-773241431-1664840815-4020896010-1002.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
  135. Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
  136.  
  137. ==================== Internet (Whitelisted) ====================
  138.  
  139. (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
  140.  
  141. Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
  142. Tcpip\..\Interfaces\{77bb75bb-e197-49b9-9fda-116c8000f3db}: [DhcpNameServer] 192.168.1.1
  143.  
  144. Edge:
  145. =======
  146. Edge Profile: C:\Users\liltu\AppData\Local\Microsoft\Edge\User Data\Default [2021-02-08]
  147.  
  148. FireFox:
  149. ========
  150. FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-02-01] (Microsoft Corporation -> Microsoft Corporation)
  151. FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2020-07-17] (Adobe Inc. -> Adobe Systems)
  152. FF Plugin-x32: @2-update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.7.915.0\npAvastBrowserUpdate3.dll [No File]
  153. FF Plugin-x32: @2-update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.7.915.0\npAvastBrowserUpdate3.dll [No File]
  154. FF Plugin-x32: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-01-21] (Oracle America, Inc. -> Oracle Corporation)
  155. FF Plugin-x32: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-01-21] (Oracle America, Inc. -> Oracle Corporation)
  156. FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-02-01] (Microsoft Corporation -> Microsoft Corporation)
  157. FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-02-01] (Microsoft Corporation -> Microsoft Corporation)
  158. FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2021-01-26] (Avast Software s.r.o. -> AVAST Software)
  159. FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2021-01-26] (Avast Software s.r.o. -> AVAST Software)
  160. FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-02-20] (Adobe Inc. -> Adobe Systems Inc.)
  161. FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2020-07-17] (Adobe Inc. -> Adobe Systems)
  162.  
  163. Chrome:
  164. =======
  165. CHR Profile: C:\Users\liltu\AppData\Local\Google\Chrome\User Data\Default [2021-02-26]
  166. CHR Notifications: Default -> hxxps://a.bestcaptcharesolver.com; hxxps://www.lagerhaus.se
  167. CHR HomePage: Default -> hxxp://search.installmac.com/?c=5&v=insMac
  168. CHR NewTab: Default -> Active:"chrome-extension://mefhakmgclhhfbdadeojlkbllmecialg/public/index.html"
  169. CHR Extension: (Slides) - C:\Users\liltu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-05-09]
  170. CHR Extension: (BetterTTV) - C:\Users\liltu\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2020-12-18]
  171. CHR Extension: (Docs) - C:\Users\liltu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-05-09]
  172. CHR Extension: (Google Drive) - C:\Users\liltu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24]
  173. CHR Extension: (YouTube) - C:\Users\liltu\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-05-09]
  174. CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\liltu\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-01-28]
  175. CHR Extension: (Sheets) - C:\Users\liltu\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-05-09]
  176. CHR Extension: (Google Docs Offline) - C:\Users\liltu\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-02-26]
  177. CHR Extension: (AdBlock — best ad blocker) - C:\Users\liltu\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-02-25]
  178. CHR Extension: (Tabby Cat) - C:\Users\liltu\AppData\Local\Google\Chrome\User Data\Default\Extensions\mefhakmgclhhfbdadeojlkbllmecialg [2021-01-28]
  179. CHR Extension: (Chrome Web Store Payments) - C:\Users\liltu\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
  180. CHR Extension: (Material Dark) - C:\Users\liltu\AppData\Local\Google\Chrome\User Data\Default\Extensions\npadhaijchjemiifipabpmeebeelbmpd [2020-02-19]
  181. CHR Extension: (Gmail) - C:\Users\liltu\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22]
  182. CHR Extension: (Chrome Media Router) - C:\Users\liltu\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-21]
  183.  
  184. ==================== Services (Whitelisted) ===================
  185.  
  186. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  187.  
  188. R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
  189. R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [844856 2020-06-20] (Adobe Inc. -> Adobe Inc.)
  190. R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3739728 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
  191. R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3511376 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
  192. R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8477080 2020-12-10] (Avast Software s.r.o. -> AVAST Software)
  193. S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-01-26] (Avast Software s.r.o. -> AVAST Software)
  194. R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [621728 2020-12-10] (Avast Software s.r.o. -> AVAST Software)
  195. R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [351848 2020-12-10] (Avast Software s.r.o. -> AVAST Software)
  196. S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-01-26] (Avast Software s.r.o. -> AVAST Software)
  197. S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\88.2.8118.183\elevation_service.exe [1456376 2021-02-17] (Avast Software s.r.o. -> AVAST Software)
  198. R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [58048 2020-12-10] (Avast Software s.r.o. -> AVAST Software)
  199. S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8895512 2021-01-20] (BattlEye Innovations e.K. -> )
  200. R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8905608 2021-02-13] (Microsoft Corporation -> Microsoft Corporation)
  201. R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7269976 2020-11-30] (Malwarebytes Inc -> Malwarebytes)
  202. R3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2533952 2021-02-10] (Electronic Arts, Inc. -> Electronic Arts)
  203. R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3479624 2021-02-10] (Electronic Arts, Inc. -> Electronic Arts)
  204. S3 Rockstar Service; D:\Launcher\RockstarService.exe [1347464 2021-02-24] (Rockstar Games, Inc. -> Rockstar Games)
  205. S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\NisSrv.exe [2496144 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
  206. S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MsMpEng.exe [104192 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
  207. R2 WirelessKB850NotificationService; C:\WINDOWS\system32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation)
  208.  
  209. ===================== Drivers (Whitelisted) ===================
  210.  
  211. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  212.  
  213. R3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
  214. R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35648 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
  215. R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [208024 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
  216. R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [357320 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
  217. R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [249304 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
  218. R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [98760 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
  219. R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16832 2020-12-10] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
  220. R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41272 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
  221. R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175248 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
  222. R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [521336 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
  223. R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [107784 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
  224. R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [83360 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
  225. R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [850112 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
  226. R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [465656 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
  227. R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [214808 2021-01-07] (Avast Software s.r.o. -> AVAST Software)
  228. R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326976 2021-02-23] (Avast Software s.r.o. -> AVAST Software)
  229. R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220160 2021-02-12] (Malwarebytes Inc -> Malwarebytes)
  230. S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-11-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
  231. R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-11-30] (Malwarebytes Inc -> Malwarebytes)
  232. S3 rtwlane_13; C:\WINDOWS\System32\drivers\rtwlane_13.sys [3717120 2019-03-19] (Microsoft Windows -> Realtek Semiconductor Corporation)
  233. S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45976 2020-07-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
  234. S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [408816 2020-07-02] (Microsoft Windows -> Microsoft Corporation)
  235. S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64224 2020-07-02] (Microsoft Windows -> Microsoft Corporation)
  236.  
  237. ==================== NetSvcs (Whitelisted) ===================
  238.  
  239. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  240.  
  241.  
  242. ==================== One month (created) (Whitelisted) =========
  243.  
  244. (If an entry is included in the fixlist, the file/folder will be moved.)
  245.  
  246. 2021-02-26 17:44 - 2021-02-26 17:44 - 000028672 _____ C:\Users\liltu\Downloads\FRST.txt
  247. 2021-02-26 17:43 - 2021-02-26 17:44 - 000000000 ____D C:\FRST
  248. 2021-02-26 17:42 - 2021-02-26 17:42 - 002301440 _____ (Farbar) C:\Users\liltu\Downloads\FRST64.exe
  249. 2021-02-26 15:15 - 2021-02-26 15:24 - 000000000 ____D C:\Users\liltu\Desktop\More
  250. 2021-02-26 15:13 - 2021-02-26 15:13 - 000000000 ____D C:\Users\liltu\Desktop\Modos
  251. 2021-02-23 21:55 - 2021-02-24 14:07 - 000000044 _____ C:\Users\liltu\jagex_cl_oldschool_LIVE.dat
  252. 2021-02-23 21:55 - 2021-02-24 14:07 - 000000024 _____ C:\Users\liltu\random.dat
  253. 2021-02-23 21:55 - 2021-02-23 21:55 - 000000000 ____D C:\Users\liltu\jagexcache
  254. 2021-02-23 21:54 - 2021-02-24 14:27 - 000000000 ____D C:\Users\liltu\.runelite
  255. 2021-02-23 21:54 - 2021-02-23 21:54 - 000000585 _____ C:\Users\liltu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RuneLite.lnk
  256. 2021-02-23 21:53 - 2021-02-23 21:53 - 023368408 _____ (RuneLite ) C:\Users\liltu\Downloads\RuneLiteSetup32.exe
  257. 2021-02-23 18:47 - 2021-02-23 18:47 - 000339680 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
  258. 2021-02-23 18:47 - 2021-02-23 18:47 - 000215328 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw411dcc86858863b9.tmp
  259. 2021-02-19 13:33 - 2021-02-19 13:33 - 226750613 _____ C:\Users\liltu\Downloads\7. HBTQ+.pptx
  260. 2021-02-18 16:29 - 2021-02-18 16:29 - 000054490 _____ C:\Users\liltu\Downloads\7. HBTQ+.docx.pdf
  261. 2021-02-13 20:39 - 2021-02-13 20:44 - 000000000 ____D C:\Users\liltu\Desktop\Emote
  262. 2021-02-13 13:06 - 2021-02-13 13:06 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
  263. 2021-02-13 13:06 - 2021-02-13 13:06 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
  264. 2021-02-13 13:06 - 2021-02-13 13:06 - 000232752 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
  265. 2021-02-13 13:06 - 2021-02-13 13:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
  266. 2021-02-13 13:06 - 2021-02-13 13:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
  267. 2021-02-13 13:06 - 2021-02-13 13:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
  268. 2021-02-13 13:06 - 2021-02-13 13:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
  269. 2021-02-13 13:06 - 2021-02-13 13:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
  270. 2021-02-13 13:06 - 2021-02-13 13:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
  271. 2021-02-13 13:06 - 2021-02-13 13:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
  272. 2021-02-13 13:06 - 2021-02-13 13:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
  273. 2021-02-13 13:06 - 2021-02-13 13:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth18.bin
  274. 2021-02-13 13:06 - 2021-02-13 13:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth17.bin
  275. 2021-02-13 13:06 - 2021-02-13 13:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth16.bin
  276. 2021-02-13 13:06 - 2021-02-13 13:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth15.bin
  277. 2021-02-13 13:06 - 2021-02-13 13:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
  278. 2021-02-13 13:06 - 2021-02-13 13:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
  279. 2021-02-13 13:06 - 2021-02-13 13:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
  280. 2021-02-13 13:06 - 2021-02-13 13:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
  281. 2021-02-12 09:36 - 2021-02-12 09:36 - 000220160 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
  282. 2021-02-11 13:50 - 2021-02-11 13:50 - 000001678 _____ C:\Users\liltu\Downloads\announce.txt
  283.  
  284. ==================== One month (modified) ==================
  285.  
  286. (If an entry is included in the fixlist, the file/folder will be moved.)
  287.  
  288. 2021-02-26 17:44 - 2019-05-09 18:14 - 000000000 ____D C:\Users\liltu\AppData\Roaming\Discord
  289. 2021-02-26 17:41 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
  290. 2021-02-26 16:41 - 2019-05-09 18:42 - 000000000 ____D C:\Users\liltu\AppData\Local\D3DSCache
  291. 2021-02-26 16:31 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness
  292. 2021-02-26 15:44 - 2020-09-14 16:01 - 000002672 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
  293. 2021-02-26 15:44 - 2020-07-07 18:20 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
  294. 2021-02-26 15:44 - 2020-06-17 11:38 - 000003468 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
  295. 2021-02-26 15:44 - 2020-06-17 11:38 - 000003244 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
  296. 2021-02-26 15:44 - 2020-02-27 12:46 - 000003542 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
  297. 2021-02-26 15:44 - 2020-02-27 12:46 - 000003406 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
  298. 2021-02-26 15:44 - 2020-02-27 12:46 - 000003182 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
  299. 2021-02-26 15:44 - 2020-02-27 12:46 - 000003108 _____ C:\WINDOWS\system32\Tasks\update-S-1-5-21-773241431-1664840815-4020896010-1002
  300. 2021-02-26 15:44 - 2020-02-27 12:46 - 000002918 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-773241431-1664840815-4020896010-1002
  301. 2021-02-26 15:44 - 2020-02-27 12:46 - 000002912 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-773241431-1664840815-4020896010-500
  302. 2021-02-26 15:44 - 2020-02-27 12:46 - 000002856 _____ C:\WINDOWS\system32\Tasks\update-sys
  303. 2021-02-26 15:44 - 2019-05-18 13:08 - 000000416 _____ C:\WINDOWS\Tasks\update-sys.job
  304. 2021-02-26 15:44 - 2019-05-18 13:08 - 000000416 _____ C:\WINDOWS\Tasks\update-S-1-5-21-773241431-1664840815-4020896010-1002.job
  305. 2021-02-26 15:43 - 2019-05-09 18:39 - 000000000 ____D C:\Users\liltu\AppData\Roaming\.minecraft
  306. 2021-02-26 14:59 - 2019-05-09 18:41 - 000000000 ____D C:\Users\liltu\AppData\Roaming\Origin
  307. 2021-02-26 14:37 - 2020-02-19 13:34 - 000000000 ____D C:\Users\liltu\AppData\Roaming\WTablet
  308. 2021-02-26 14:15 - 2020-02-27 12:39 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
  309. 2021-02-26 12:39 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
  310. 2021-02-26 12:21 - 2019-05-10 16:07 - 000000000 ____D C:\Program Files (x86)\Origin Games
  311. 2021-02-26 12:21 - 2019-05-09 18:41 - 000000000 ____D C:\Users\liltu\AppData\Local\Origin
  312. 2021-02-26 12:21 - 2019-05-09 18:41 - 000000000 ____D C:\ProgramData\Origin
  313. 2021-02-26 12:20 - 2020-09-14 15:58 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
  314. 2021-02-26 12:18 - 2019-05-09 18:10 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
  315. 2021-02-26 12:17 - 2020-02-19 15:20 - 000000000 ___RD C:\Users\liltu\iCloudDrive
  316. 2021-02-26 12:17 - 2019-05-09 18:44 - 000000000 ____D C:\Program Files (x86)\Steam
  317. 2021-02-25 23:41 - 2019-05-08 07:11 - 000000000 ____D C:\ProgramData\NVIDIA
  318. 2021-02-25 12:31 - 2019-06-26 11:45 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
  319. 2021-02-24 21:12 - 2020-05-23 16:40 - 000000000 ____D C:\Program Files\Rockstar Games
  320. 2021-02-24 21:12 - 2020-05-23 16:40 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
  321. 2021-02-24 14:28 - 2019-05-09 18:42 - 000000000 ____D C:\Program Files (x86)\Origin
  322. 2021-02-23 21:55 - 2020-02-27 12:42 - 000000000 ____D C:\Users\liltu
  323. 2021-02-23 18:48 - 2020-10-14 18:44 - 000175248 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
  324. 2021-02-23 18:48 - 2020-07-07 18:20 - 000465656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
  325. 2021-02-23 18:47 - 2020-07-07 18:20 - 000850112 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
  326. 2021-02-23 18:47 - 2020-07-07 18:20 - 000521336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
  327. 2021-02-23 18:47 - 2020-07-07 18:20 - 000357320 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
  328. 2021-02-23 18:47 - 2020-07-07 18:20 - 000326976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
  329. 2021-02-23 18:47 - 2020-07-07 18:20 - 000249304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
  330. 2021-02-23 18:47 - 2020-07-07 18:20 - 000208024 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
  331. 2021-02-23 18:47 - 2020-07-07 18:20 - 000107784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
  332. 2021-02-23 18:47 - 2020-07-07 18:20 - 000098760 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
  333. 2021-02-23 18:47 - 2020-07-07 18:20 - 000083360 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
  334. 2021-02-23 18:47 - 2020-07-07 18:20 - 000041272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
  335. 2021-02-23 18:47 - 2020-07-07 18:20 - 000035648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
  336. 2021-02-23 18:47 - 2020-07-07 18:20 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
  337. 2021-02-23 18:47 - 2019-03-19 05:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
  338. 2021-02-22 19:37 - 2020-07-07 18:22 - 000002505 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
  339. 2021-02-21 14:03 - 2020-07-07 18:19 - 000000000 ____D C:\ProgramData\Avast Software
  340. 2021-02-21 13:56 - 2020-02-23 21:10 - 000000000 ____D C:\Program Files\Microsoft Office
  341. 2021-02-21 13:54 - 2020-02-27 21:23 - 000713484 _____ C:\WINDOWS\system32\perfh01D.dat
  342. 2021-02-21 13:54 - 2020-02-27 21:23 - 000145676 _____ C:\WINDOWS\system32\perfc01D.dat
  343. 2021-02-21 13:54 - 2020-02-27 12:48 - 001690844 _____ C:\WINDOWS\system32\PerfStringBackup.INI
  344. 2021-02-21 13:54 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
  345. 2021-02-21 13:48 - 2020-02-27 12:46 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
  346. 2021-02-21 13:47 - 2019-03-19 05:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
  347. 2021-02-21 13:03 - 2020-06-17 11:38 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
  348. 2021-02-20 13:49 - 2020-10-02 16:33 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
  349. 2021-02-16 21:06 - 2021-01-21 16:40 - 000000000 ____D C:\Users\liltu\Desktop\Emotes
  350. 2021-02-15 11:57 - 2019-12-05 13:44 - 000000000 ____D C:\Users\liltu\Desktop\Tjejjouren
  351. 2021-02-14 11:47 - 2020-02-27 12:39 - 000437144 _____ C:\WINDOWS\system32\FNTCACHE.DAT
  352. 2021-02-14 11:47 - 2019-05-09 18:05 - 000000000 ___RD C:\Users\liltu\3D Objects
  353. 2021-02-13 22:48 - 2020-02-27 21:22 - 000000000 ____D C:\WINDOWS\system32\Drivers\en-GB
  354. 2021-02-13 22:48 - 2019-03-19 05:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
  355. 2021-02-13 22:48 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
  356. 2021-02-13 22:48 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources
  357. 2021-02-13 22:48 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\oobe
  358. 2021-02-13 22:48 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\es-MX
  359. 2021-02-13 22:48 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Dism
  360. 2021-02-13 22:48 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
  361. 2021-02-13 22:48 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
  362. 2021-02-13 22:48 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr
  363. 2021-02-13 22:48 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Common Files\System
  364. 2021-02-13 21:34 - 2019-12-29 19:32 - 000000000 ____D C:\Users\liltu\AppData\Roaming\obs-studio
  365. 2021-02-13 13:09 - 2019-03-19 07:20 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
  366. 2021-02-13 13:09 - 2019-03-19 07:20 - 000019469 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
  367. 2021-02-13 13:09 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp
  368. 2021-02-12 20:48 - 2020-07-08 13:53 - 000000000 ____D C:\Users\liltu\AppData\Local\CrashDumps
  369. 2021-02-12 20:42 - 2019-05-09 18:38 - 000000000 ____D C:\Program Files (x86)\Minecraft Launcher
  370. 2021-02-12 09:49 - 2020-09-21 13:28 - 000000000 ____D C:\Users\liltu\Desktop\Duck
  371. 2021-02-11 12:52 - 2019-03-25 09:56 - 000000000 ____D C:\WINDOWS\system32\MRT
  372. 2021-02-11 12:51 - 2019-03-25 09:56 - 130141752 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
  373. 2021-02-10 11:26 - 2020-09-26 19:45 - 000000000 ____D C:\GTAV
  374. 2021-02-08 21:54 - 2020-02-27 12:42 - 000002370 _____ C:\Users\liltu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
  375. 2021-02-08 21:54 - 2019-05-09 18:07 - 000000000 ___RD C:\Users\liltu\OneDrive
  376. 2021-02-07 16:48 - 2020-04-22 20:14 - 000000000 ____D C:\Users\liltu\AppData\Local\TeamSpeak 3 Client
  377. 2021-02-07 16:45 - 2019-05-29 12:20 - 000000000 ____D C:\Users\liltu\AppData\Roaming\TeamViewer
  378. 2021-02-07 16:45 - 2019-05-29 12:19 - 000000000 ____D C:\Program Files (x86)\TeamViewer
  379. 2021-02-05 20:30 - 2020-10-02 16:33 - 000437056 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll
  380. 2021-02-05 20:30 - 2020-02-19 13:37 - 000916288 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll
  381. 2021-01-28 17:26 - 2019-05-09 18:05 - 000000000 ____D C:\Users\liltu\AppData\Local\Packages
  382.  
  383. ==================== Files in the root of some directories ========
  384.  
  385. 2020-09-14 16:42 - 2020-09-14 16:42 - 000000028 _____ () C:\Users\liltu\AppData\Roaming\kulerdata.json
  386. 2020-04-10 12:03 - 2020-04-17 14:54 - 000002387 _____ () C:\Users\liltu\AppData\Local\krita-sysinfo.log
  387. 2020-04-10 12:03 - 2020-04-17 15:02 - 000007587 _____ () C:\Users\liltu\AppData\Local\krita.log
  388. 2020-04-17 15:02 - 2020-04-17 15:02 - 000000152 _____ () C:\Users\liltu\AppData\Local\kritadisplayrc
  389. 2020-04-10 12:03 - 2020-04-17 15:02 - 000024164 _____ () C:\Users\liltu\AppData\Local\kritarc
  390. 2020-09-14 16:05 - 2020-09-14 16:05 - 000000000 _____ () C:\Users\liltu\AppData\Local\oobelibMkey.log
  391. 2019-05-18 13:08 - 2019-05-18 13:08 - 000000003 _____ () C:\Users\liltu\AppData\Local\updater.log
  392. 2019-05-18 13:08 - 2019-05-18 13:08 - 000000425 _____ () C:\Users\liltu\AppData\Local\UserProducts.xml
  393.  
  394. ==================== SigCheck ============================
  395.  
  396. (There is no automatic fix for files that do not pass verification.)
  397.  
  398. ==================== End of FRST.txt ========================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!