
mohl bych Vás poprosit o scan logů? Mamka si stěžuje, že ji údajně někdo hackl FB účet a změnil heslo.
Přikládám logy, třeba objevíte něco podezřelého

K útoku mělo dojít 6.11.2021
Děkuji
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09-11-2021
Ran by Mamka (administrator) on DESKTOP-OGIC5MD (LENOVO 80QQ) (13-11-2021 23:04:36)
Running from E:\
Loaded Profiles: Mamka
Platform: Microsoft Windows 10 Home Version 20H2 19042.1237 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> ) C:\Program Files\Google\Drive File Stream\52.0.6.0\crashpad_handler.exe <3>
(Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\52.0.6.0\GoogleDriveFS.exe <7>
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <8>
(Spotify AB -> Spotify Ltd) C:\Users\Mamka\AppData\Roaming\Spotify\Spotify.exe <6>
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Viber Media S.à r.l. -> Viber Media S.Ã r.l.) C:\Users\Mamka\AppData\Local\Viber\Viber.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [916184 2014-07-02] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [134936 2021-10-04] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\52.0.6.0\GoogleDriveFS.exe [54107992 2021-10-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\52.0.6.0\GoogleDriveFS.exe [54107992 2021-10-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3872312061-3272177402-513021564-1001\...\Run: [Viber] => C:\Users\Mamka\AppData\Local\Viber\Viber.exe [41192976 2020-04-21] (Viber Media S.à r.l. -> Viber Media S.Ã r.l.)
HKU\S-1-5-21-3872312061-3272177402-513021564-1001\...\Run: [Spotify] => C:\Users\Mamka\AppData\Roaming\Spotify\Spotify.exe [18750392 2021-11-13] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-3872312061-3272177402-513021564-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\52.0.6.0\GoogleDriveFS.exe [54107992 2021-10-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\52.0.6.0\GoogleDriveFS.exe [54107992 2021-10-18] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\Canon MG2500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBX.DLL [30208 2013-03-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG2500 series: C:\WINDOWS\system32\CNMLMBX.DLL [391168 2013-03-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\95.0.4638.69\Installer\chrmstp.exe [2021-11-07] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {121B735C-F2B4-49DD-9470-CDA6B4724335} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [682936 2021-11-07] (Mozilla Corporation -> Mozilla Foundation)
Task: {300683B8-4809-412F-B3B5-5FBA913D831F} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {764AD9C0-7193-415A-9950-23131FCA0667} - System32\Tasks\GoogleUpdateTaskMachineCore1d57e9fe6ab81db => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-03-31] (Google Inc -> Google LLC)
Task: {79C656DD-B42A-4ECD-8C86-DF1D7880FF70} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4974872 2021-11-12] (Avast Software s.r.o. -> AVAST Software)
Task: {7EF2F7DF-3FE6-47B1-9DA9-50FBEA9E953F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-03-31] (Google Inc -> Google LLC)
Task: {91822AC3-BBCB-49FE-813E-7DE7B458F63B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-03-31] (Google Inc -> Google LLC)
Task: {AD81831D-46F8-4896-ABB1-65D77869A69C} - System32\Tasks\PostponeDeviceSetupToast_S-1-5-21-3872312061-3272177402-513021564-1001_0 => {5ded83ef-1e99-48cf-bf83-676d2a6db408} C:\Windows\System32\oobe\UserOOBE.dll [421376 2021-06-12] (Microsoft Windows -> Microsoft Corporation)
Task: {D190A7A0-CD70-4807-A2DB-0EE129F9F123} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1790184 2021-05-24] (Avast Software s.r.o. -> Avast Software)
Task: {E3F046B1-0837-491F-9353-1EE7FFCE0994} - System32\Tasks\GoogleUpdateTaskMachineUA1d57e9fe6b19699 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-03-31] (Google Inc -> Google LLC)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.50.1
Tcpip\..\Interfaces\{06972778-15b9-4b92-8e2b-e65061ed31e5}: [DhcpNameServer] 10.0.0.1 10.0.1.1
Tcpip\..\Interfaces\{077f89fd-7e24-421d-9da1-5f5d1b7b0d04}: [DhcpNameServer] 192.168.50.1
Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Mamka\AppData\Local\Microsoft\Edge\User Data\Default [2021-11-07]
FireFox:
========
FF DefaultProfile: yfwkzjmb.default
FF ProfilePath: C:\Users\Mamka\AppData\Roaming\Mozilla\Firefox\Profiles\yfwkzjmb.default [2021-11-13]
FF Homepage: Mozilla\Firefox\Profiles\yfwkzjmb.default -> hxxps://www.seznam.cz/
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\Mamka\AppData\Local\Google\Chrome\User Data\Default [2020-03-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Mamka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-03-09]
CHR Extension: (Chrome Media Router) - C:\Users\Mamka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-03-09]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8323664 2021-10-04] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [630040 2021-10-04] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [377624 2021-10-04] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-01] (Avast Software s.r.o. -> AVAST Software)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2019-12-07] (Macrovision Europe Ltd.) [File not signed]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2020-02-22] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2020-02-22] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35704 2021-11-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [222112 2021-11-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [372232 2021-11-12] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [250392 2021-11-12] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [99344 2021-11-12] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [21936 2021-10-04] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41344 2021-11-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [184648 2021-11-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [107848 2021-11-12] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [82904 2021-11-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [852216 2021-11-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [557648 2021-11-12] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215392 2021-10-04] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [317696 2021-11-12] (Avast Software s.r.o. -> AVAST Software)
R3 glavcam; C:\WINDOWS\system32\DRIVERS\glavcam.sys [3476736 2015-10-16] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
R1 googledrivefs3525; C:\WINDOWS\System32\DRIVERS\googledrivefs3525.sys [389640 2021-09-09] (Google LLC -> Google, Inc.)
S3 REN2CAP_DRIVER; C:\WINDOWS\system32\drivers\ren2cap.sys [39568 2016-06-14] (Prosoft Engineering, Inc. -> )
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2020-02-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2020-02-22] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2020-02-22] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-11-13 23:04 - 2021-11-13 23:05 - 000000000 ____D C:\FRST
2021-11-12 15:08 - 2021-11-12 15:08 - 000000000 ___HD C:\$WinREAgent
2021-11-12 15:07 - 2021-11-12 15:07 - 000340248 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2021-11-12 15:07 - 2021-11-12 15:07 - 000214384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw74126ec0a1b146b8.tmp
2021-11-12 15:04 - 2021-11-12 15:04 - 000004036 _____ C:\WINDOWS\system32\Tasks\PostponeDeviceSetupToast_S-1-5-21-3872312061-3272177402-513021564-1001_0
2021-11-07 13:41 - 2021-11-07 14:39 - 000000000 ____D C:\Program Files\Mozilla Firefox
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-11-13 23:04 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-11-13 23:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-11-13 23:03 - 2020-06-19 20:09 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-11-13 23:03 - 2020-06-19 20:09 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-11-13 23:03 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-11-13 23:03 - 2019-03-31 09:50 - 000000000 ____D C:\Program Files (x86)\Google
2021-11-13 23:03 - 2019-03-31 09:13 - 000000000 ____D C:\ProgramData\Mozilla
2021-11-13 23:02 - 2021-04-16 16:24 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-11-13 23:02 - 2019-03-31 09:13 - 000000000 ____D C:\Users\Mamka\AppData\LocalLow\Mozilla
2021-11-13 23:01 - 2020-01-18 09:57 - 000000000 ____D C:\Users\Mamka\AppData\Local\Spotify
2021-11-13 23:01 - 2020-01-18 09:56 - 000000000 ____D C:\Users\Mamka\AppData\Roaming\Spotify
2021-11-13 23:01 - 2019-03-31 09:52 - 000000000 ____D C:\Users\Mamka\AppData\Local\D3DSCache
2021-11-13 23:00 - 2019-03-31 09:17 - 000000000 __SHD C:\Users\Mamka\IntelGraphicsProfiles
2021-11-13 22:59 - 2019-03-31 09:17 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2021-11-12 17:03 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-11-12 16:38 - 2021-04-16 16:12 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-11-12 15:36 - 2021-06-12 14:19 - 000000000 ____D C:\Users\Mamka\AppData\Local\Avast Software
2021-11-12 15:16 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-11-12 15:11 - 2021-04-16 16:22 - 001605602 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-11-12 15:11 - 2019-12-07 15:41 - 000683426 _____ C:\WINDOWS\system32\perfh005.dat
2021-11-12 15:11 - 2019-12-07 15:41 - 000137206 _____ C:\WINDOWS\system32\perfc005.dat
2021-11-12 15:07 - 2020-10-20 19:05 - 000184648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2021-11-12 15:07 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-11-12 15:07 - 2019-03-31 09:48 - 000852216 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2021-11-12 15:07 - 2019-03-31 09:48 - 000557648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-11-12 15:07 - 2019-03-31 09:48 - 000372232 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2021-11-12 15:07 - 2019-03-31 09:48 - 000317696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-11-12 15:07 - 2019-03-31 09:48 - 000316616 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys.163672607245308
2021-11-12 15:07 - 2019-03-31 09:48 - 000250392 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2021-11-12 15:07 - 2019-03-31 09:48 - 000222112 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2021-11-12 15:07 - 2019-03-31 09:48 - 000107848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2021-11-12 15:07 - 2019-03-31 09:48 - 000099344 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2021-11-12 15:07 - 2019-03-31 09:48 - 000082904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2021-11-12 15:07 - 2019-03-31 09:48 - 000041344 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2021-11-12 15:07 - 2019-03-31 09:48 - 000035704 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2021-11-12 15:04 - 2019-03-31 09:46 - 000000000 ____D C:\ProgramData\AVAST Software
2021-11-12 15:03 - 2021-04-16 16:24 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-11-12 15:03 - 2021-04-16 16:12 - 000008192 ___SH C:\DumpStack.log.tmp
2021-11-07 14:39 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-11-07 14:39 - 2019-03-31 09:13 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-11-07 14:01 - 2019-03-31 07:55 - 000000000 ____D C:\Users\Mamka\AppData\Local\Packages
2021-11-07 13:45 - 2021-10-13 11:09 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-11-07 13:45 - 2019-03-31 09:13 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-11-07 13:42 - 2019-12-15 15:10 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-11-07 13:42 - 2019-12-15 15:10 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-11-07 13:40 - 2021-10-06 09:43 - 000002057 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2021-11-07 13:40 - 2021-10-06 09:43 - 000001899 _____ C:\Users\Default\Desktop\Google Slides.lnk
2021-11-07 13:40 - 2021-10-06 09:43 - 000001899 _____ C:\Users\Default\Desktop\Google Sheets.lnk
2021-11-07 13:40 - 2021-10-06 09:43 - 000001887 _____ C:\Users\Default\Desktop\Google Docs.lnk
2021-11-07 13:37 - 2019-03-31 10:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2021-10-15 18:29 - 2020-10-14 14:32 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-10-15 18:29 - 2019-03-31 09:35 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-10-15 18:18 - 2019-03-31 09:35 - 139806512 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-10-15 18:16 - 2019-03-31 10:30 - 000000000 ____D C:\Users\Mamka\AppData\Local\Google
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================