CloseProcesses:
CreateRestorePoint:
EmptyTemp:
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-203745181-3096680873-177298075-1000\...\MountPoints2: {147906c6-d331-11e5-8030-8c89a555ec12} - G:\AutoRun.exe
HKU\S-1-5-21-203745181-3096680873-177298075-1000\...\MountPoints2: {b33f1a65-cda7-11e5-975d-8c89a555ec12} - G:\AutoRun.exe
HKU\S-1-5-21-203745181-3096680873-177298075-1000\...\MountPoints2: {b33f1b20-cda7-11e5-975d-8c89a555ec12} - G:\AutoRun.exe
HKU\S-1-5-21-203745181-3096680873-177298075-1000\...\MountPoints2: {d13f8d78-9790-11e5-b97e-8c89a555ec12} - G:\AutoRun.exe
HKU\S-1-5-21-203745181-3096680873-177298075-1000\...\MountPoints2: {e6b8d6f3-b163-11e5-8523-0c5b8f279a64} - I:\Autorun.exe
HKU\S-1-5-21-203745181-3096680873-177298075-1000\...\MountPoints2: {faf04c48-9b1e-11e5-ab2a-0c5b8f279a64} - H:\setup.exe
GroupPolicy: Ograniczenia - Chrome <==== UWAGA
AutoConfigURL: [S-1-5-21-203745181-3096680873-177298075-1000] => hxxp://stoppblock.me/wpad.dat?023579df5bb611ac68f3286421fcb0593533573
Tcpip\..\Interfaces\{2435A8BE-7429-4E7D-B973-451A113111E4}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{3CACF007-388F-4F3A-A4D1-889D9048CFC2}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{74D745CD-7614-41E7-A871-D7C07E7162A0}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{E170E538-5828-4BF7-B343-B1A31F7AC33C}: [DhcpNameServer] 192.168.8.1 192.168.8.1
ManualProxies: 0hxxp://stoppblock.me/wpad.dat?023579df5bb611ac68f3286421fcb0593533573
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
HKU\S-1-5-21-203745181-3096680873-177298075-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
HKU\S-1-5-21-203745181-3096680873-177298075-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?bcutc=sp-006
SearchScopes: HKLM-x32 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
SearchScopes: HKLM-x32 -> {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxps://search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-203745181-3096680873-177298075-1000 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-203745181-3096680873-177298075-1000 -> {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxps://search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKU\S-1-5-21-203745181-3096680873-177298075-1000 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku]
CHR HKU\S-1-5-21-203745181-3096680873-177298075-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
S3 ewusbmbb; system32\DRIVERS\ewusbwwan.sys [X]
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
2011-04-01 10:57 - 2011-04-01 10:57 - 000247136 _____ () C:\ProgramData\DeleteFile.exe
2016-06-12 11:16 - 2016-07-12 16:49 - 000005632 _____ () C:\Users\Kamil\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-10-30 12:41 - 2016-10-30 12:41 - 000000058 _____ () C:\Users\Kamil\AppData\Local\DonationCoder_ScreenshotCaptor_InstallInfo.dat
2018-01-28 09:57 - 2018-10-16 15:33 - 000007598 _____ () C:\Users\Kamil\AppData\Local\Resmon.ResmonCfg
2018-04-30 11:27 - 2018-04-30 11:30 - 000000000 _____ () C:\Users\Kamil\AppData\Local\{13FA0A5A-8B3C-4CEE-B746-14EA469D7242}
2017-11-15 13:53 - 2017-11-15 13:53 - 000000000 _____ () C:\Users\Kamil\AppData\Local\{450DD8AB-0156-4198-926C-B13C8AFB4572}
2017-02-02 09:56 - 2017-02-02 09:58 - 000000000 _____ () C:\Users\Kamil\AppData\Local\{80B5A479-B52D-4558-B00C-5B85663624F3}
2018-04-16 14:32 - 2018-04-16 14:34 - 000000000 _____ () C:\Users\Kamil\AppData\Local\{E43396D4-D86B-47D2-9E22-0F7BB0737324}
ShellIconOverlayIdentifiers: [  MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [  MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [  MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [  MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [  MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [  MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  -> Brak pliku
ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} =>  -> Brak pliku
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> Brak pliku
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> Brak pliku
ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} =>  -> Brak pliku
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> Brak pliku
Task: {009F5A54-64FF-474B-AEE7-638E118D874C} - System32\Tasks\Browser Updater Task(Core) => C:\Program Files (x86)\QQBrowser\Update\Download\DD98117AD13965A90E0CEB1FA9F54A7F\Update\BrowserUpdate.exe [2016-03-17] (Tencent) <==== UWAGA
Task: {5F195B05-0C57-42D5-9AB7-985D48B8F6FA} - System32\Tasks\Opera scheduled Autoupdate 1526920132 => C:\Program Files\Opera\launcher.exe [2018-11-06] (Opera Software)
Task: {6656E343-FCC6-41A5-989D-055CD2C050B4} - System32\Tasks\{B44BEB8C-4B37-4F62-A59D-57495F5EFD18} => C:\Windows\system32\pcalua.exe -a "C:\Users\Kamil\Desktop\Downloads\Realtek High Definition Audio Codecs R2.79.exe" -d C:\Users\Kamil\Desktop\Downloads
AlternateDataStreams: C:\Users\Kamil:Heroes & Generals [38]
AlternateDataStreams: C:\Users\Public\AppData:CSM [464]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [474]
MSCONFIG\startupfolder: C:^Users^Kamil^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MEGAsync.lnk => C:\Windows\pss\MEGAsync.lnk.Startup
CMD: ipconfig /flushdns
RemoveProxy:
HOSTS: