

Otwórz notatnik systemowy i wklej:

CustomCLSID: HKU\S-1-5-21-963773927-1593815082-163700310-1000_Classes\CLSID\{D45F043D-F17F-4e8a-8435-70971D9FA46D}\InprocServer32 -> C:\Program Files\Blender Foundation\Blender\BlendThumb64.dll => Brak pliku
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
GroupPolicy: Ograniczenia - Chrome <==== UWAGA
HKU\S-1-5-21-963773927-1593815082-163700310-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid=%7BD728DDBC-B0FA-4A77-9A73-DF64AEC77E98%7D&mid=6a57b2bbaaee47ce996ad1543be71d01-5012b3c05bc657a6e9ce8f2aa63e607cbd33cdba&lang=pl/finishurl=hxxp://toolbar.avg.com/p-install?lang=pl&ds=ht011&coid=avgtbdisht&cmpid=0717tb&pr=sa&d=2017-07-30%2003:08:10&v=19.7.0.632&pid=safeguard&sg=&sap=hp
SearchScopes: HKU\S-1-5-21-963773927-1593815082-163700310-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={D728DDBC-B0FA-4A77-9A73-DF64AEC77E98}&mid=6a57b2bbaaee47ce996ad1543be71d01-5012b3c05bc657a6e9ce8f2aa63e607cbd33cdba&lang=pl/finishurl=hxxp://toolbar.avg.com/p-install?lang=pl&ds=ht011&coid=avgtbdisht&cmpid=0717tb&pr=sa&d=2017-07-30 03:08:10&v=19.7.0.632&pid=safeguard&sg=&sap=dsp&q={searchTerms}
BHO-x32: AVG SafeGuard toolbar -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG SafeGuard toolbar\19.7.0.632\AVG SafeGuard toolbar_toolbar.dll => Brak pliku
Toolbar: HKLM-x32 - AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\19.7.0.632\AVG SafeGuard toolbar_toolbar.dll Brak pliku
CHR StartupUrls: Default -> "hxxp://www.google.pl/","hxxp://websearch.searchdwebs.info/?pid=512&r=2013/06/25&hid=2954616199&lg=EN&cc=PL&unqvl=22"
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation) <==== UWAGA (Brak ServiceDLL)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S2 regi; \??\C:\Windows\system32\drivers\regi.sys [X]
2017-10-28 16:37 - 2017-10-28 16:37 - 000000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignb2a73bc63f347224
2017-10-28 16:36 - 2017-10-28 16:36 - 000000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignabfb61aab79685b8
2017-10-28 16:36 - 2017-10-28 16:36 - 000000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign80b24cccf3c77009
2017-10-28 14:22 - 2017-10-28 14:22 - 000000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignb3c4c6a0036e62b7
2017-10-28 14:21 - 2017-10-28 14:21 - 000000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigna0aec8907a3c235d
2017-10-28 14:21 - 2017-10-28 14:21 - 000000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign2559fb30c8a3d11e
2017-10-27 19:11 - 2017-10-27 19:11 - 000000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign8b8902a5786ac043
2017-10-27 19:11 - 2017-10-27 19:11 - 000000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign5506fdb79a46ff43
2017-10-27 19:11 - 2017-10-27 19:11 - 000000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign3e68a0376b167db6
2017-10-27 17:07 - 2017-10-27 17:07 - 000000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigna4a51d203af06fec
2017-10-27 17:06 - 2017-10-27 17:06 - 000000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign6fe14687ed0d26d2
2017-10-27 17:06 - 2017-10-27 17:06 - 000000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign397419e27026a62a
2017-10-26 22:13 - 2017-10-26 22:13 - 000000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign1e6c1d2b9ebc0b26
2017-10-26 22:12 - 2017-10-26 22:12 - 000000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigndb79be1b515699f8
2017-10-26 22:12 - 2017-10-26 22:12 - 000000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign7d868a20a87dca81
2017-10-26 03:57 - 2017-10-26 03:57 - 000000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign8df60b79bc3d30a1
2017-10-26 03:56 - 2017-10-26 03:56 - 000000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignfe4a1819207f2220
2017-10-26 03:56 - 2017-10-26 03:56 - 000000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign9ab649c37dea8fef
2017-10-24 21:15 - 2017-10-24 21:15 - 000000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigned9d0ebdbb3e1b82
2017-10-24 21:15 - 2017-10-24 21:15 - 000000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignd5c0de031dd131c4
2017-10-24 21:15 - 2017-10-24 21:15 - 000000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigncc9ea6826a8f8e5f
2017-10-24 18:13 - 2017-10-24 18:13 - 000000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigne58a68f126a1ecb7
2017-10-24 18:13 - 2017-10-24 18:13 - 000000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignd3e6ee5ac25cdebc
2017-10-24 18:13 - 2017-10-24 18:13 - 000000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign9003e5f45bfec3da
2017-10-24 11:42 - 2017-10-24 11:42 - 000000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigndde92fed2c562619
2017-10-24 11:42 - 2017-10-24 11:42 - 000000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign715a7a946b7cfc92
2017-10-24 11:42 - 2017-10-24 11:42 - 000000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign335a1a16ac0082f0
2017-10-22 17:24 - 2017-10-22 17:24 - 000000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignfe55fa4077e9ada2
2017-10-22 17:24 - 2017-10-22 17:24 - 000000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigne81a2f44b1c42bb0
2017-10-22 17:24 - 2017-10-22 17:24 - 000000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign2b3e6646bc8da228
2017-10-17 11:53 - 2017-10-17 14:39 - 000000000 ____D C:\AdwCleaner
EmptyTemp:

Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze. 
Uruchom jako administrator FRST i kliknij w Fix/Napraw.