CloseProcesses: CreateRestorePoint: EmptyTemp: HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKU\S-1-5-21-3196752085-2409263366-3226412750-1000\...\MountPoints2: {15c21278-26fd-11e6-a14c-b010416455ee} - E:\HiSuiteDownLoader.exe HKU\S-1-5-21-3196752085-2409263366-3226412750-1000\...\MountPoints2: {5c4a3c1d-c759-11e6-9df2-b010416455ee} - E:\HiSuiteDownLoader.exe HKU\S-1-5-21-3196752085-2409263366-3226412750-1000\...\MountPoints2: {9791f708-0e40-11e6-8f13-b010416455ee} - E:\HTC_Sync_Manager_PC.exe HKU\S-1-5-21-3196752085-2409263366-3226412750-1000\...\MountPoints2: {f39066c8-581d-11e6-9a74-3417eb5d2621} - E:\HiSuiteDownLoader.exe Tcpip\..\Interfaces\{15088267-C4B5-4E4E-B3D1-869A40596C64}: [DhcpNameServer] 62.179.1.60 62.179.1.61 Tcpip\..\Interfaces\{C3DD2C18-1F50-4370-A40D-0FC14B82A789}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{EE96DF28-FD92-4F68-85B8-4E7EA7CEDD05}: [DhcpNameServer] 62.179.1.62 62.179.1.63 Tcpip\..\Interfaces\{FFCC1FEC-C33E-44DB-B644-6BAAA9633461}: [DhcpNameServer] 62.179.1.62 62.179.1.63 SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Brak nazwy -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> Brak pliku BHO-x32: Brak nazwy -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> Brak pliku FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => nie znaleziono FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku] CHR DefaultSearchURL: Default -> hxxps://defaultsearch.co/?q={searchTerms} CHR DefaultSearchKeyword: Default -> Adaware Secure CHR HKU\S-1-5-21-3196752085-2409263366-3226412750-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx CHR HKLM-x32\...\Chrome\Extension: [nladljmabboanhihfkjacnnkgjhnokhj] - hxxps://clients2.google.com/service/update2/crx S3 btmhsf; system32\DRIVERS\btmhsf.sys [X] S3 cpuz139; \??\C:\Users\Dell\AppData\Local\Temp\cpuz139\cpuz139_x64.sys [X] <==== UWAGA S3 CtClsFlt; system32\DRIVERS\CtClsFlt.sys [X] U3 DfSdkS; Brak ImagePath S3 SmbDrvI; system32\DRIVERS\Smb_driver_Intel.sys [X] Update for PriceFountain (HKU\S-1-5-21-3196752085-2409263366-3226412750-1000\...\PriceFountainUpdateVer) (Version: - Update for PriceFountain) <==== UWAGA Task: {0CD4463C-8DFC-45A7-8637-50D98B342DEC} - \Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline -> Brak pliku <==== UWAGA Task: {265506C5-3BCD-420E-B969-E5CB90E35108} - System32\Tasks\{626B362E-BCBB-4060-8CAA-7791C3EE149D} => C:\Windows\system32\pcalua.exe -a D:\SETUP.EXE -d D:\ Task: {2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} - \Microsoft\Windows\WindowsBackup\ConfigNotification -> Brak pliku <==== UWAGA Task: {530E469C-8531-45B1-80D7-66266E3FD85D} - System32\Tasks\{FFD75852-F590-479E-8D27-20BBF5FF2FF9} => C:\Windows\system32\pcalua.exe -a D:\Realtek_CardReader_W74_X00_A00_Setup-X56D4_ZPE.exe -d D:\ Task: {5650D548-1DF2-4955-BE1D-AD90E0CA6135} - \Microsoft\Windows\Windows Activation Technologies\ValidationTask -> Brak pliku <==== UWAGA Task: {6FAB414B-1C3F-424B-BC85-0BC1545C92D1} - System32\Tasks\DellPseudointellectualWrongfulnessV2 => rundll32.exe RopyPantomimists.dll,main 7 1 <==== UWAGA Task: {7084D980-560F-4ADF-9E8F-65708D76C5D4} - System32\Tasks\Opera scheduled Autoupdate 1546122534 => C:\Users\Dell\AppData\Local\Programs\Opera\launcher.exe Task: {91DF429F-3E2E-4F46-9FCE-3F9B376565AB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.) Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - \Microsoft\Windows\Application Experience\AitAgent -> Brak pliku <==== UWAGA Task: {B6C3115E-C18C-40B7-861D-1C4C3DEB6728} - System32\Tasks\GoogleUpdateTaskMachineCore1d1e97529144470 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.) Task: {CEE64558-E1A7-4D9D-80A7-2001912BE5B5} - \Microsoft\Windows\MemoryDiagnostic\CorruptionDetector -> Brak pliku <==== UWAGA Task: {E48E2A9C-EE4E-403E-90F9-A80D3CA48AD6} - System32\Tasks\Opera scheduled assistant Autoupdate 1546122537 => C:\Users\Dell\AppData\Local\Programs\Opera\launcher.exe Task: {EFF47297-D9FD-4AEA-9085-BC1B93A10634} - System32\Tasks\GoogleUpdateTaskMachineUA1d1e9752956eaf7 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.) Task: {F23D7B99-F008-4131-A549-11CDAA10AC44} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.) Task: {FA2BC0A6-8D4B-458A-85C8-2B8C72487513} - \Microsoft\Windows\MemoryDiagnostic\DecompressionFailureDetector -> Brak pliku <==== UWAGA AlternateDataStreams: C:\Windows\SysWOW64\MSIHANDLE:3204 [0] AlternateDataStreams: C:\Windows\SysWOW64\MSIHANDLE:3258 [0] AlternateDataStreams: C:\Windows\SysWOW64\MSIHANDLE:3359 [0] FirewallRules: [{ED7D8358-2281-4A9D-BC8A-8B6F0A2F5F77}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe Brak pliku FirewallRules: [{7DBE16D5-2172-4DE9-88A7-1EA8C6ED1485}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Brak pliku FirewallRules: [{D2F017E5-EF52-4210-86C1-19861B146F54}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Brak pliku FirewallRules: [{173A1623-9F97-4E39-9178-CD934D4A3C83}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Football Manager 2019\fm.exe (Sports Interactive) FirewallRules: [{A1D1A46C-EDB9-4F8F-BD43-1355E5550124}] => (Allow) C:\Users\Dell\AppData\Local\Programs\Opera\57.0.3098.106\opera.exe Brak pliku C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator\Licenses\AFPL License.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator\Licenses\FairPlay License.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator\Licenses\GPL License.lnk C:\Users\Dell\Desktop\skróty\Avast SafeZone Browser.lnk C:\Users\Dell\Desktop\skróty\Inkscape.lnk C:\Users\Dell\Desktop\skróty\Opera developer.lnk C:\Users\Dell\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Avast Secure Browser.lnk RemoveProxy: