CloseProcesses: CreateRestorePoint: EmptyTemp: HKU\S-1-5-21-647964441-4261651909-2036231660-1000\...\Policies\Explorer: [] CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <==== UWAGA Tcpip\..\Interfaces\{4a367bba-1e3f-4636-a629-57e05be2fad1}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{4c7e3c66-0438-4db0-9742-a3353b482110}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{e54e265f-a9f5-440d-acdc-b5ab38f87721}: [NameServer] 0.0.0.0 Tcpip\..\Interfaces\{fb375183-77dd-4af1-8da7-915a3944ee24}: [NameServer] 8.8.8.8,8.8.4.4 HKU\S-1-5-21-647964441-4261651909-2036231660-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <==== UWAGA SearchScopes: HKLM -> {7FAB9671-F979-47FD-AF6C-194A2B4F9304} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox SearchScopes: HKLM-x32 -> {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-647964441-4261651909-2036231660-1000 -> {7FAB9671-F979-47FD-AF6C-194A2B4F9304} URL = Toolbar: HKU\S-1-5-21-647964441-4261651909-2036231660-1000 -> Brak nazwy - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Brak pliku Toolbar: HKU\S-1-5-21-647964441-4261651909-2036231660-1000 -> Brak nazwy - {093F479D-712E-46CD-9E06-62E734A05F68} - Brak pliku Toolbar: HKU\S-1-5-21-647964441-4261651909-2036231660-1000 -> Brak nazwy - {4853DF44-7D6B-48E9-9258-D800EEE54AF6} - Brak pliku Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - Brak pliku FF ProfilePath: C:\ProgramData\Kaspersky Lab\SafeBrowser\S-1-5-21-647964441-4261651909-2036231660-1000\FireFox [nie znaleziono] <==== UWAGA FF HKLM-x32\...\Firefox\Extensions: [{D19CA586-DD6C-4a0a-96F8-14644F340D60}] - C:\Program Files (x86)\Common Files\McAfee\SystemCore => nie znaleziono FF HKLM-x32\...\Firefox\Extensions: [virtualKeyboard@kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\virtualKeyboard@kaspersky.ru => nie znaleziono FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\mcafee\msc\NPMCSN~1.DLL [Brak pliku] FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\mcafee\msc\npmcsn~1.dll [Brak pliku] FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2018-12-04] <==== UWAGA (Linkuje do pliku *.cfg) FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2018-12-04] <==== UWAGA CHR HKLM\...\Chrome\Extension: [amkpcclbbgegoafihnpgomddadjhcadd] - hxxps://chrome.google.com/webstore/detail/amkpcclbbgegoafihnpgomddadjhcadd CHR HKLM-x32\...\Chrome\Extension: [amkpcclbbgegoafihnpgomddadjhcadd] - hxxps://chrome.google.com/webstore/detail/amkpcclbbgegoafihnpgomddadjhcadd U3 idsvc; Brak ImagePath 2013-01-10 15:01 - 2013-01-10 15:01 - 000002414 _____ () C:\Program Files (x86)\config.ini 2013-01-10 15:01 - 2013-01-10 15:01 - 000000607 _____ () C:\Program Files (x86)\readme.txt 2014-01-16 13:24 - 2014-03-26 14:56 - 001170306 _____ () C:\Program Files (x86)\Setup.exe 2013-09-24 20:27 - 2013-09-24 20:27 - 000000024 ___SH () C:\Users\DELL\AppData\Roaming\System5908ConfigCollection.dat 2013-01-26 21:45 - 2017-05-16 21:20 - 000006144 _____ () C:\Users\DELL\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2014-04-16 20:34 - 2014-04-16 20:34 - 000004653 _____ () C:\Users\DELL\AppData\Local\recently-used.xbel 2016-08-10 22:24 - 2016-08-10 22:24 - 000000003 _____ () C:\Users\DELL\AppData\Local\updater.log 2016-08-10 22:24 - 2017-05-19 14:00 - 000000425 _____ () C:\Users\DELL\AppData\Local\UserProducts.xml 2012-04-12 19:45 - 2012-04-12 19:45 - 000017408 _____ () C:\Users\DELL\AppData\Local\WebpageIcons.db C:\ProgramData\TuneUp Software\TU2012\StartUp Manager\Wyłącz obiekty dla wszystkich użytkowników\Adobe Acrobat Synchronizer.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Asystent aktualizacji do systemu Windows 10.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 10 Update Assistant.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator\Licenses\AFPL License.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator\Licenses\FairPlay License.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator\Licenses\GPL License.lnk C:\ProgramData\Dell\Dell Stage\DellStage.lnk C:\Users\DELL\Desktop\Windows 10 Update Assistant.lnk C:\Users\DELL\AppData\Roaming\Autodesk\AutoCAD 2015\R20.0\plk\Plotters\Pliki PC3 AutoCAD 2015 — Polski (Polish)\.lnk C:\Users\DELL\AppData\Roaming\Autodesk\AutoCAD 2014\R19.1\plk\Plotters\Pliki PC3 AutoCAD 2014 — Polski (Polish)\.lnk ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> Brak pliku Task: {03DD623C-E0F0-409A-A388-DC7F506FE279} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Brak pliku <==== UWAGA Task: {069FC36E-9570-4783-B37A-6D67E00EC364} - \Program aktualizacji online firmy Adobe. -> Brak pliku <==== UWAGA Task: {0F830165-205F-45AE-8884-0B79814358EC} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {1D7B0E4E-C464-445B-B496-4AF692E26C5A} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Brak pliku <==== UWAGA Task: {1FA745AA-3D5D-45D7-923C-C94A13FCD2ED} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {228B9B42-6E85-4C8B-98FB-07E15A86B13D} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Brak pliku <==== UWAGA Task: {24EDDB09-CA60-450E-BE47-D15C8D20ED24} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe Task: {265F9FCF-5627-4E8E-9696-9DF89D655278} - System32\Tasks\{915980B4-1048-416F-A503-ACD0E2E4B798} => C:\Windows\system32\pcalua.exe -a E:\solidpdftools.exe -d E:\ Task: {2B0C4A93-46D9-4D2C-BD22-19E8063272AB} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Brak pliku <==== UWAGA Task: {2E6A9858-5019-4210-B9C9-87609CDB3071} - \Safer-Networking\Spybot - Search and Destroy\Check for updates -> Brak pliku <==== UWAGA Task: {34BFCDE6-4FF3-4E0C-83D0-6462272ED807} - System32\Tasks\Driver Booster SkipUAC (DELL) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe Task: {389C852A-FA05-427F-AB6E-0ADC4B0AA55A} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2017-04-12] (TODO: ) Task: {52C97515-DB1A-4054-9253-81D64C240964} - System32\Tasks\{8A611B65-8E46-48D2-87A9-6DA942CF4220} => C:\Windows\system32\pcalua.exe -a C:\Users\DELL\Downloads\coreaacSetup.exe -d C:\Users\DELL\Downloads Task: {554892C8-A111-424D-AE66-C5330B7F9CC4} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {5D819130-0255-4E41-B07F-19FAEE1DF076} - \Safer-Networking\Spybot - Search and Destroy\Refresh immunization -> Brak pliku <==== UWAGA Task: {5DC659D2-1874-44AF-B967-A8756E753779} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe Task: {5F62670E-E465-4B45-A749-EBBFA9C34C43} - System32\Tasks\{8DE77A37-024A-44D2-A241-B7B3BA7C6A91} => C:\Windows\system32\pcalua.exe -a E:\SetupSonelPE5_1.0.0.17F281S01-001.exe -d E:\ Task: {6327E9D7-C62D-41BE-8AB0-F32D3EA238AA} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Brak pliku <==== UWAGA Task: {6AFF3F8F-516C-4C74-B43A-19C08C569859} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {70360C40-9433-4242-AAD2-19DBE010A0D2} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Brak pliku <==== UWAGA Task: {84C1D92C-2FFE-4F70-A9A1-CA41C9A69CA2} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe Task: {89F180C9-E2E2-4305-B52B-AE1639912086} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe Task: {8E0E3900-389D-46C0-BFDD-754A52DB371D} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Brak pliku <==== UWAGA Task: {8EC2597C-B5CE-44E9-BE27-C5FD20D0A68E} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Brak pliku <==== UWAGA Task: {8FA29D21-B5A1-4197-B9C3-4BFDD6D5E0E1} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe Task: {9537F75D-369C-40ED-BFE4-D815A094E8D9} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Brak pliku <==== UWAGA Task: {96395226-BBBB-485E-82FC-84082DD5FD9D} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe Task: {99EF8A4F-7AB4-4503-AA09-630A6C233C3F} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe Task: {9B82C103-546D-4E20-BA84-CA9593D18997} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {9B8DC7CE-FA51-459E-AE4A-7BA5002277D7} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Brak pliku <==== UWAGA Task: {9DB2F07B-4B25-47C5-8D96-BC19A2C8F82E} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe Task: {A60C31CB-FB7B-48B0-A8A2-8E988CF629F1} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Brak pliku <==== UWAGA Task: {ACD61AB2-684B-4C53-85F4-06A7C8B427A3} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe Task: {B066847A-66CF-45A3-9AFB-A59BBEDD872E} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe Task: {C32C6A53-8E49-4E61-94CB-511E86256762} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe Task: {C8AE62A7-8F71-4657-B47C-DD64C8C28468} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {D0A93481-1727-4C45-BFDA-001C7AB2141C} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe Task: {DB994C4B-BCA7-4DE4-A0E5-9943194B7A79} - System32\Tasks\update-S-1-5-21-647964441-4261651909-2036231660-1000 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2017-04-12] (TODO: ) Task: {DE3A2EB2-668E-4F85-9F6C-E258F082CA42} - \Safer-Networking\Spybot - Search and Destroy\Scan the system -> Brak pliku <==== UWAGA Task: {E6773EF4-F9A2-42C2-B737-4B90636EA2F2} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {E9077FE4-C86E-492F-966F-3BA451AA52D9} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {EB093318-6A50-48F1-BCF0-A822E86F2DD8} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {EE3E91FF-C87C-4F4F-91AA-9607F08B1CD2} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe Task: {EF591734-A255-4AD4-B87A-168BEF072FA6} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe Task: {F5987D1D-534A-4A4C-A05F-BD75A57AC267} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Brak pliku <==== UWAGA Task: {FA365FE1-8EEE-4E17-9E2C-7A75AC7F8161} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe AlternateDataStreams: C:\ProgramData\Temp:02B2B479 [209] AlternateDataStreams: C:\ProgramData\Temp:A1EDB939 [116] AlternateDataStreams: C:\ProgramData\Temp:D57FAB99 [95] HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Brak pliku) FirewallRules: [{4391AB18-D30F-4286-A277-800627CE0074}] => (Allow) LPort=5000 FirewallRules: [{8C3BAFF3-2314-4DBA-8C14-84D6B72436B3}] => (Allow) LPort=51750 FirewallRules: [{A592791A-2CE6-4424-B545-E52F7F5AB6F7}] => (Allow) LPort=50248 Powershell: wevtutil el | Foreach-Object {wevtutil cl "$_"}