CloseProcesses:
CreateRestorePoint:
EmptyTemp:
VirusTotal: C:\Users\Zbigniew\mxih.exe
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA
Tcpip\..\Interfaces\{3FE1D9B7-3AA0-4D62-B638-827036C7B3F5}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{C12D30BF-0178-418D-ABF8-A66B900F08C2}: [DhcpNameServer] 192.168.1.1
FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku]
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Brak pliku]
FF Plugin-x32: JFGuide -> C:\Program Files (x86)\NetSurveillance\CMS\npGuide.dll [Brak pliku]
FF Plugin-x32: JFWeb -> C:\Program Files (x86)\NetSurveillance\CMS\npWebPlugin.dll [Brak pliku]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3745327632-729625131-1389168109-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx
2018-08-16 04:39 - 2018-03-26 15:24 - 000045152 ___SH (Microsoft Corporation) C:\Users\Zbigniew\mxih.exe
2018-12-01 10:36 - 2018-12-01 10:36 - 000040448 ____N () C:\Users\Zbigniew\AppData\Local\Temp\proxy_vole7223619957646358229.dll
2018-12-01 10:36 - 2018-12-01 10:36 - 000040448 ____N () C:\Users\Zbigniew\AppData\Local\Temp\proxy_vole8733077807952113431.dll
2019-01-08 15:32 - 2018-08-16 09:59 - 000099895 _____ () C:\Users\Zbigniew\AppData\Local\Temp\Uninstall.exe
CustomCLSID: HKU\S-1-5-21-3745327632-729625131-1389168109-1000_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\Zbigniew\AppData\Local\Microsoft\OneDrive\17.3.6743.1212\amd64\FileCoAuthLib64.dll => Brak pliku
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Brak pliku
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Brak pliku
Task: {17FA47EC-F034-4472-A352-1BC067A63695} - System32\Tasks\{F3A2BF88-413D-4705-9C19-C9D510C90D7C} => C:\Windows\system32\pcalua.exe -a C:\Ross-Tech\VCDS\kn64.exe -d C:\Ross-Tech\VCDS
Task: {1E96D667-F2FE-4AAF-ABEF-2FF39D8611CA} - System32\Tasks\{FF69F4FD-5EF7-4DBF-9CA2-FB46BC250C41} => C:\Windows\system32\pcalua.exe -a D:\setup.exe -d D:\
Task: {22B91CC1-83DC-4D59-A438-4D09226AF22A} - System32\Tasks\{629D7E4F-7D1F-41B7-B4AE-DE40FD5EC25E} => C:\Windows\system32\pcalua.exe -a "C:\Users\Zbigniew\Downloads\Active (1).exe" -d C:\Users\Zbigniew\Downloads
Task: {5E7A7B40-66E6-47DA-8DFC-ACF02959C69B} - System32\Tasks\{FEC5E1F2-06F4-4562-871C-69240D94FF82} => C:\Windows\system32\pcalua.exe -a C:\Users\Zbigniew\Downloads\Active.exe -d C:\Users\Zbigniew\Downloads
Task: {7119DD7E-2F29-45E6-8273-0256D1CAC7B6} - System32\Tasks\djjuena => C:\Users\Zbigniew\djjuena\mxih.exe [2016-10-09] (AutoIt Team)
Task: {D8B4E3DD-1B21-419C-9970-F608929AE799} - System32\Tasks\{EFA43808-6D1B-4F7C-BB73-E180CEFC3D5F} => C:\Windows\system32\pcalua.exe -a "C:\Users\Zbigniew\Downloads\kapitan pazur.exe" -d C:\Users\Zbigniew\Downloads
FirewallRules: [UDP Query User{3D42CCFE-2B77-4DF9-9138-5262A6D3A258}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe Brak pliku
FirewallRules: [TCP Query User{51131081-4E33-46EA-A00F-A4DC7F2A0FC7}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe Brak pliku
FirewallRules: [UDP Query User{970C8AD7-AF22-487A-8C27-C0841EE83167}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe Brak pliku
FirewallRules: [TCP Query User{1654224A-C56B-48B3-9B17-57A8707E2095}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe Brak pliku
FirewallRules: [UDP Query User{537B1D53-2F0A-4887-A23B-150E9BAA77C8}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe Brak pliku
FirewallRules: [TCP Query User{C392293F-891A-40BE-8C35-B67FE16DAB71}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe Brak pliku
FirewallRules: [UDP Query User{5BB22727-FEAA-4A4C-9855-3B886979DBB4}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe Brak pliku
FirewallRules: [TCP Query User{BBF7539A-7DE3-49A0-96EA-B96321F332C0}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe Brak pliku
FirewallRules: [{A4D2E2F0-CCA0-425A-B3C1-578403FB09B3}] => (Allow) LPort=5357
FirewallRules: [UDP Query User{51817840-E0B0-4E65-881C-63C2181F9C74}C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe] => (Block) C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe Brak pliku
FirewallRules: [TCP Query User{C530CE12-455D-4446-810A-862B89F50215}C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe] => (Block) C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe Brak pliku
FirewallRules: [UDP Query User{65B74EE2-0414-4183-86EC-7223F9CD3C77}C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe] => (Allow) C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe Brak pliku
FirewallRules: [TCP Query User{63FB4D12-D957-4951-A59C-534F04546B07}C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe] => (Allow) C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe Brak pliku
FirewallRules: [{1BE40E44-FA51-4A35-A3F2-73B8941EF1E6}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe Brak pliku
FirewallRules: [{C4EF91DD-7E2C-4E46-B903-BD35E5E6CF38}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe Brak pliku
FirewallRules: [UDP Query User{776F805F-17F1-4543-BB01-2072A1A30477}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe Brak pliku
FirewallRules: [TCP Query User{3353A3F6-5016-4277-A85C-652559B69C01}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe Brak pliku
FirewallRules: [UDP Query User{E617AF1C-84E6-4D59-8DEC-3A1238E31CA4}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe Brak pliku
FirewallRules: [TCP Query User{2C119A36-AAF1-4E59-8947-C79A66FA0298}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe Brak pliku
FirewallRules: [TCP Query User{95ED9C2A-DD6A-4363-B2A6-06CD79937BF6}C:\users\zbigniew\downloads\blobby\volley.exe] => (Allow) C:\users\zbigniew\downloads\blobby\volley.exe Brak pliku
FirewallRules: [UDP Query User{F6179EDB-6F48-43D7-8EB4-70FEC1AB71A9}C:\users\zbigniew\downloads\blobby\volley.exe] => (Allow) C:\users\zbigniew\downloads\blobby\volley.exe Brak pliku
FirewallRules: [TCP Query User{01D24376-4182-468E-A7B5-F9C46F4C6C5F}C:\users\zbigniew\downloads\blobby\volley.exe] => (Allow) C:\users\zbigniew\downloads\blobby\volley.exe Brak pliku
FirewallRules: [UDP Query User{9D5E17C5-D03F-4F59-A2E6-ACBE69D2D711}C:\users\zbigniew\downloads\blobby\volley.exe] => (Allow) C:\users\zbigniew\downloads\blobby\volley.exe Brak pliku
FirewallRules: [TCP Query User{7249793D-920C-4056-9D5D-9B9C400B5414}C:\users\zbigniew\documents\desktop\blobby\volley.exe] => (Allow) C:\users\zbigniew\documents\desktop\blobby\volley.exe Brak pliku
FirewallRules: [UDP Query User{2ECBCB8A-9E8A-4BC3-9BA6-7C03712F8579}C:\users\zbigniew\documents\desktop\blobby\volley.exe] => (Allow) C:\users\zbigniew\documents\desktop\blobby\volley.exe Brak pliku
FirewallRules: [TCP Query User{81DCCA5D-2223-4CD8-BC7A-E27EF1DAC832}C:\program files (x86)\acclaim\revolt\revolt.exe] => (Allow) C:\program files (x86)\acclaim\revolt\revolt.exe Brak pliku
FirewallRules: [UDP Query User{301F5382-2CB2-41F5-B8B8-AD3AC3A83B09}C:\program files (x86)\acclaim\revolt\revolt.exe] => (Allow) C:\program files (x86)\acclaim\revolt\revolt.exe Brak pliku