fixlist.txt

Prośba o sprawdzenie logów FRST - podejrzenie oprogramowania malware

Nic ciekawego. Co się dzieje? Odinstaluj: Avast Free Antivirus CCleaner Zainstaluj wszystkie aktualizacje Windows Update.

CloseProcesses:
CreateRestorePoint:
EmptyTemp:
HKLM\...\Run: [AvastUI.exe] = & gt; C:\Program Files\AVAST Software\Avast\AvLaunch.exe [116960 2021-02-25] (Avast Software s.r.o. - & gt; AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] = & gt; C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [644552 2019-07-04] (Oracle America, Inc. - & gt; Oracle Corporation)
HKU\S-1-5-21-2655230859-3751599246-2725882965-1001\...\Run: [CCleaner Monitoring] = & gt; C:\Program Files\CCleaner\CCleaner64.exe [18385368 2018-06-24] (Piriform Ltd - & gt; Piriform Ltd)
HKU\S-1-5-21-2655230859-3751599246-2725882965-1001\...\MountPoints2: {161a984f-e401-11e7-b8c2-2c337af1c60e} - " D:\setup.exe "
HKU\S-1-5-18\...\Run: [CCleaner Monitoring] = & gt; C:\Program Files\CCleaner\CCleaner64.exe [18385368 2018-06-24] (Piriform Ltd - & gt; Piriform Ltd)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia & lt; ==== UWAGA
HKLM\SOFTWARE\Policies\Google: Ograniczenia & lt; ==== UWAGA
Task: {073C0E67-C433-42BB-AC27-B1EF10F21D41} - System32\Tasks\Avast Emergency Update = & gt; C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4682976 2021-02-25] (Avast Software s.r.o. - & gt; AVAST Software)
Task: {1D23A80A-3B0A-4DEA-A59F-E623823D9102} - System32\Tasks\CCleanerSkipUAC = & gt; C:\Program Files\CCleaner\CCleaner.exe [26896568 2020-12-08] (Piriform Software Ltd - & gt; Piriform Software Ltd)
Task: {33669EBA-8C50-40B4-A667-6132A885F552} - System32\Tasks\Avast Software\Overseer = & gt; C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1791712 2021-02-24] (Avast Software s.r.o. - & gt; Avast Software)
Task: {D5C9B276-67C8-4D09-A59E-F45119389110} - System32\Tasks\CCleaner Update = & gt; C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd - & gt; Piriform Software Ltd)
Tcpip\..\Interfaces\{2a56391c-bb6a-4829-8832-5ba74d6f5704}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{5cc80394-b3d3-4d01-adf9-570f17dd89fb}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{9aeba04e-baab-48e1-82f7-06c7fd2bb71f}: [DhcpNameServer] 172.20.10.1
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
2021-03-03 17:01 - 2021-03-03 17:01 - 000000000 ____D C:\Users\mikol\Downloads\FRST-OlderVersion
2021-03-03 16:38 - 2021-03-03 16:38 - 000000000 _____ C:\Users\mikol\Downloads\Niepotwierdzony 361595.crdownload
2021-03-02 21:49 - 2021-03-02 21:50 - 000000000 ____D C:\AdwCleaner
2021-03-02 21:49 - 2021-03-02 21:49 - 008463216 _____ (Malwarebytes) C:\Users\mikol\Downloads\adwcleaner_8.1.exe
2021-03-03 17:00 - 2020-11-05 19:44 - 000002220 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2018-08-29 22:47 - 2018-08-29 22:47 - 000000017 _____ () C:\Users\mikol\AppData\Local\resmon.resmoncfg
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 21.1.2449 - Avast Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.63 - Piriform)
ShellIconOverlayIdentifiers: [ OneDrive1] - & gt; {BBACC218-34EA-4666-9D7A-C78F2274A524} = & gt; - & gt; Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive2] - & gt; {5AB7172C-9C11-405C-8DD5-AF20F3606282} = & gt; - & gt; Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive3] - & gt; {A78ED123-AB77-406B-9962-2A5D9D2F7F30} = & gt; - & gt; Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive4] - & gt; {F241C880-6982-4CE5-8CF7-7085BA96DA5A} = & gt; - & gt; Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive5] - & gt; {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} = & gt; - & gt; Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive6] - & gt; {9AA2F32D-362A-42D9-9328-24A483E2CCC3} = & gt; - & gt; Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive7] - & gt; {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} = & gt; - & gt; Brak pliku
ShellIconOverlayIdentifiers: [00asw] - & gt; {472083B0-C522-11CF-8763-00608CC02F24} = & gt; C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-25] (Avast Software s.r.o. - & gt; AVAST Software)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] - & gt; {BBACC218-34EA-4666-9D7A-C78F2274A524} = & gt; - & gt; Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive2] - & gt; {5AB7172C-9C11-405C-8DD5-AF20F3606282} = & gt; - & gt; Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive3] - & gt; {A78ED123-AB77-406B-9962-2A5D9D2F7F30} = & gt; - & gt; Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive4] - & gt; {F241C880-6982-4CE5-8CF7-7085BA96DA5A} = & gt; - & gt; Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive5] - & gt; {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} = & gt; - & gt; Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive6] - & gt; {9AA2F32D-362A-42D9-9328-24A483E2CCC3} = & gt; - & gt; Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive7] - & gt; {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} = & gt; - & gt; Brak pliku
ShellIconOverlayIdentifiers-x32: [00asw] - & gt; {472083B0-C522-11CF-8763-00608CC02F24} = & gt; C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-25] (Avast Software s.r.o. - & gt; AVAST Software)
ContextMenuHandlers1: [avast] - & gt; {472083B0-C522-11CF-8763-00608CC02F24} = & gt; C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-25] (Avast Software s.r.o. - & gt; AVAST Software)
ContextMenuHandlers3: [00asw] - & gt; {472083B0-C522-11CF-8763-00608CC02F24} = & gt; C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-25] (Avast Software s.r.o. - & gt; AVAST Software)
ContextMenuHandlers5: [igfxcui] - & gt; {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} = & gt; - & gt; Brak pliku
ContextMenuHandlers6: [avast] - & gt; {472083B0-C522-11CF-8763-00608CC02F24} = & gt; C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-25] (Avast Software s.r.o. - & gt; AVAST Software)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys = & gt; " " = " Driver "
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys = & gt; " " = " Driver "
HKU\S-1-5-21-2655230859-3751599246-2725882965-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://access.statestreet.com/logon/LogonPoint/tmindex.html
HKU\S-1-5-21-2655230859-3751599246-2725882965-1001\...\StartupApproved\Run: = & gt; " CCleaner Monitoring "