CreateRestorePoint: CloseProcesses: EmptyTemp: HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Ograniczenia <==== UWAGA HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Ograniczenia <==== UWAGA HKU\S-1-5-21-567188319-3212162908-614204914-1001\...\Run: [Advanced SystemCare] => "C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe" /Auto (Brak pliku) HKU\S-1-5-21-567188319-3212162908-614204914-1001\...\Run: [Wojtek] => cmd.exe /c start www.dipladoks.org (Brak pliku) Task: {39B2F08F-8CE6-4B96-8115-87D856E7611B} - System32\Tasks\Wojtek => cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v Wojtek /t REG_SZ /d "cmd.exe /c start www.dipladoks.org" Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Brak pliku) Task: {CE3492AF-3CAC-42B5-9A6E-053B6A9750E2} - System32\Tasks\ASC_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe /Task (Brak pliku) Task: {E1868343-F0B3-49FE-8F18-B6F7AD94EDFB} - System32\Tasks\ASC_SkipUac_Wojtek => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe /SkipUac (Brak pliku) HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxySettingsPerUser] 1 <==== UWAGA (Ograniczenia - ProxySettings) Tcpip\..\Interfaces\{ae2d5da4-5083-4a81-88f8-aeb29eb20538}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{c243ce2a-b34d-4554-bbb3-53f7c4edd90f}: [DhcpNameServer] 192.168.43.1 S2 AdvancedSystemCareService15; "C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe" [X] S3 AscFileFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys [X] S3 AscRegistryFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys [X] S3 iobit_monitor_server2021; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win10_x64.sys [X] FCheck: C:\WINDOWS\SysWOW64\version_IObitDel.dll [2021-12-25] <==== UWAGA (zerobajtowy plik/folder) ContextMenuHandlers3: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => -> Brak pliku AlternateDataStreams: C:\WINDOWS\system32\msln.exe:3acf328767756092c753c8ea3ab3b17b [642] HKU\S-1-5-21-567188319-3212162908-614204914-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.gazeta.pl/0,0.html?p=190 FirewallRules: [{7F9B38EB-7A57-4B0C-A069-1608DA41B7D6}] => (Allow) C:\Program Files (x86)\MediatekWiFi\Common\RaUI.exe => Brak pliku FirewallRules: [{0CDBB733-3C9D-4478-B415-5F77D6BAC424}] => (Allow) L:\Network\EpsonNetSetup\ENEasyApp.exe => Brak pliku FirewallRules: [{ACC472B8-8451-4E54-A5D7-C471BD88BDB8}] => (Allow) L:\Network\EpsonNetSetup\ENEasyApp.exe => Brak pliku FirewallRules: [{692B719A-AB90-4B71-AA56-8B62DC27A222}] => (Allow) C:\Users\Wojtek\AppData\Roaming\uTorrent\uTorrent.exe => Brak pliku FirewallRules: [{47D33C9E-74F8-44C8-80B1-A24CEC5A2C72}] => (Allow) C:\Users\Wojtek\AppData\Roaming\uTorrent\uTorrent.exe => Brak pliku RemoveProxy: Hosts: