CreateRestorePoint:
CloseProcesses:
File: C:\Users\mlezo\Downloads\Programs\7d28u1xd.exe
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA
U3 kwgdipow; \??\C:\Users\mlezo\AppData\Local\Temp\kwgdipow.sys [X] <==== UWAGA
FCheck: C:\Windows\system32\SECOPatcher.dll [2022-01-05] [simlink -> D:\MS.Office.2019.Professional.Plus.PL.Retail.x86.x64-darkw.pl\MS.Office.2019.Professional.Plus.PL.Retail.x86.x64\KMS-VL-ALL-7.2RC2\KMS-VL-ALL-7.2RC2\64-bit\SECOPatcher.dll] [] <==== UWAGA
HKU\S-1-5-21-3463709397-3113255809-3463221662-1001\...\Run: [DAEMON Tools Ultra Automount] => "C:\Program Files\DAEMON Tools Ultra\DTAgent.exe" -autorun (Brak pliku)
HKU\S-1-5-21-3463709397-3113255809-3463221662-1001\...\Run: [DAEMON Tools Ultra Agent] => "C:\Program Files\DAEMON Tools Ultra\DTAgent.exe" -autorun (Brak pliku)
HKU\S-1-5-21-3463709397-3113255809-3463221662-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [23153344 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3463709397-3113255809-3463221662-1001\...\MountPoints2: {6a7ea479-627f-11eb-81ff-7085c2c9230a} - "J:\autorun.exe" 
HKU\S-1-5-21-3463709397-3113255809-3463221662-1001\...\MountPoints2: {d85cbd72-7921-11eb-8221-7085c2c9230a} - "K:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-3463709397-3113255809-3463221662-1001\...\MountPoints2: {d85cbe14-7921-11eb-8221-7085c2c9230a} - "K:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-3463709397-3113255809-3463221662-1001\...\MountPoints2: {da50e35e-6277-11eb-81fe-7085c2c9230a} - "G:\startmenu.exe"
Task: {908B2099-85D8-4F4A-BF9C-81D774B4E9F7} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {C3C6266D-744A-47AF-BA3D-23910B125848} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {C42FDED0-FEA7-45C2-A500-2E46ACEC4ACE} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2296088 2022-03-07] (Avast Software s.r.o. -> Avast Software)
Task: {E69AC9D0-76B4-4753-96A8-CDA5CC7A579B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{ca8a1b43-2a33-40a9-8983-ae8fefa3f6c9}: [DhcpNameServer] 192.168.0.1
Edge HKU\S-1-5-21-3463709397-3113255809-3463221662-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [llbjbkhnmlidjebalopleeepgdfgcpec] - C:\Program Files (x86)\Internet Download Manager\IDMEdgeExt.crx [2020-12-25]
FF HKU\S-1-5-21-3463709397-3113255809-3463221662-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-12-25]
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-12-25]
AlternateDataStreams: C:\ProgramData\TEMP:15B79D44 [195]
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VEGAS\VEGAS Pro 15.0\VEGAS Pro 15.0 Readme.lnk -> C:\Program Files\VEGAS\VEGAS Pro 15.0\readme\Vegas_readme.htm (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VEGAS\VEGAS Pro 15.0\Video Capture 6.0 Readme.lnk -> C:\Program Files\VEGAS\VEGAS Pro 15.0\readme\Videocapture_readme.htm (Brak pliku)
Shortcut: C:\Users\mlezo\AppData\Local\Microsoft\Edge\User Data\Default\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Brak pliku)
Shortcut: C:\Users\mlezo\AppData\Local\Microsoft\Edge\User Data\Default\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Brak pliku)
Shortcut: C:\Users\mlezo\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Outlook.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Native Instruments\Guitar Rig 5\Native Instruments Homepage.lnk -> C:\Windows\Installer\{01D57CF6-B5BC-4D03-AFF5-7960CFBD05A9}\et20Explorer5ciexplore.exe0.ico (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VEGAS\VEGAS Pro 15.0\Video Capture 6.0 Readme.lnk -> C:\Program Files\VEGAS\VEGAS Pro 15.0\readme\Videocapture_readme.htm (Brak pliku)
2022-04-03 11:07 - 2021-01-29 22:16 - 000000000 ____D C:\Program Files\DAEMON Tools Ultra
Hosts:
CMD: netsh advfirewall reset
CMD: ipconfig /flushdns
Powershell: wevtutil el | Foreach-Object {wevtutil cl "$_"}
EmptyTemp: