CloseProcesses:
CreateRestorePoint:
EmptyTemp:
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== UWAGA
HKLM\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-367478599-2953826314-2425126797-1001\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-367478599-2953826314-2425126797-1001\...\Policies\Explorer: [NoInternetOpenWith] 1
HKU\S-1-5-21-367478599-2953826314-2425126797-1001\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKU\S-1-5-21-367478599-2953826314-2425126797-1001\...\Policies\Explorer: [NoResolveSearch] 1
HKU\S-1-5-21-367478599-2953826314-2425126797-1001\...\Policies\Explorer: [NoCDBurning] 1
HKU\S-1-5-21-367478599-2953826314-2425126797-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-367478599-2953826314-2425126797-1001\...\Policies\Explorer: [HideSCAVolume] 0
HKU\S-1-5-21-367478599-2953826314-2425126797-1001\...\MountPoints2: {5dfb03d4-cbd6-11e8-8392-806e6f6e6963} - "E:\vcd_play.exe" 
HKU\S-1-5-21-367478599-2953826314-2425126797-1001\...\MountPoints2: {5e858cef-3386-11ea-83d3-d05099356802} - "W:\setup.exe" 
HKU\S-1-5-21-367478599-2953826314-2425126797-1001\...\MountPoints2: {70557365-6ac7-11ea-83db-d05099356802} - "W:\setup.exe" 
GroupPolicy: Ograniczenia ? <==== UWAGA
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA
CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <==== UWAGA
Task: {1B40E500-3B72-417C-A9B5-9D91E3FEB145} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Brak pliku <==== UWAGA
Task: {23F5EB68-01BE-47B1-B885-3CF12F346913} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Brak pliku <==== UWAGA
Task: {2611107E-0E09-46BF-8C40-21C4F2962E9E} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> Brak pliku <==== UWAGA
Task: {282C89A1-2FDA-4486-AD49-496794CCF1B3} - System32\Tasks\Opera scheduled Autoupdate 1518970523 => c:\program files\opera\launcher.exe [1517592 2020-06-10] (Opera Software AS -> Opera Software)
Task: {42D321FF-309B-4AFD-ACF0-1AD097CFFE1C} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Brak pliku <==== UWAGA
Task: {537F157D-7D39-4789-8F1F-6703CE0D97E1} - System32\Tasks\{CC89F31C-5F03-4E40-BE2A-AC98EF92015F} => C:\Windows\system32\pcalua.exe -a W:\Setup.exe -d W:\
Task: {53D07A7D-6209-41C7-94CA-E28971F4C857} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Brak pliku <==== UWAGA
Task: {56BB90A5-C5F5-4679-AA1F-3FE71328469F} - \Microsoft\Windows\UNP\RunCampaignManager -> Brak pliku <==== UWAGA
Task: {585BF4DF-011F-429B-8F3B-43B603EEEA2C} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Brak pliku <==== UWAGA
Task: {5A463AF7-867E-4AC3-B6D2-B2E61D3EEBAE} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Brak pliku <==== UWAGA
Task: {74054BC1-F4D2-4A8B-88D8-A8E7B4AACF33} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Brak pliku <==== UWAGA
Task: {7E95AD43-7E61-4C02-8BD6-DCB0E57AB94A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Brak pliku <==== UWAGA
Task: {844C6999-59FD-4944-B1CE-BCB9EC4B0647} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe
Task: {848AD62B-33A7-42BF-8607-D878ECD6BF2D} - \Microsoft\Windows\Setup\EOONotify -> Brak pliku <==== UWAGA
Task: {8B33A4F0-D3AA-4692-BB5E-198450850876} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1660520 2020-02-28] (Avast Software s.r.o. -> Avast Software)
Task: {98A290E3-BF53-4872-A630-A925BA2386AE} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Brak pliku <==== UWAGA
Task: {A74F145D-2C21-4A1C-8A35-58D5E91F902F} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Brak pliku <==== UWAGA
Task: {B3338C40-97C7-4E30-8002-B8FC4D225696} - System32\Tasks\{6AEDB9AC-0078-4AB1-AAED-BC13F74D1BFA} => C:\Windows\system32\pcalua.exe -a C:\Users\NoNoNoNo\Downloads\instalator.exe -d C:\Users\NoNoNoNo\Downloads
Task: {D8C60F7E-A3C2-4192-B9F7-DB77096F6F1B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Brak pliku <==== UWAGA
Task: {E152C295-2E52-4E59-92F7-B83882B4D5BA} - System32\Tasks\{795EF729-0685-4673-9B6F-D1B5F3B3B2D2} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\JoWooD\Gothic II\System\Gothic2.exe" -d "C:\Program Files (x86)\JoWooD\Gothic II\System"
Task: {E5EDF0CF-A20A-44D9-8962-D547B0876227} - System32\Tasks\{A6AA2ABF-FA43-4DA8-9B65-9AD411099A41} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\EA GAMES\Battlefield 1942\BF1942.exe" -d "C:\Program Files (x86)\EA GAMES\Battlefield 1942"
Task: {F190FE98-FD3A-4FB1-86E4-3CC3F39808DE} - \Microsoft\Windows\Setup\gwx\rundetector -> Brak pliku <==== UWAGA
Task: {F99C3C60-9EAD-476A-AAE6-618F12D4733E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Brak pliku <==== UWAGA
Task: {FD561879-703E-4FA2-9A4E-2D5F0EE06142} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Brak pliku <==== UWAGA
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Tcpip\..\Interfaces\{0ef69299-5876-401b-9e11-8a7537f4a2b7}: [DhcpNameServer] 37.8.214.2 31.11.202.254
Tcpip\..\Interfaces\{1d690b99-9cb4-4e55-804b-d94daa535af2}: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{ce67997f-52aa-47b6-bfc2-36d7d82ee218}: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{d22ba5cf-3f1a-4684-9500-e705049fec61}: [DhcpNameServer] 192.168.8.1
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <==== UWAGA
HKU\S-1-5-21-367478599-2953826314-2425126797-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <==== UWAGA
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?bcutc=sp-006
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKU\S-1-5-21-367478599-2953826314-2425126797-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?bcutc=sp-006
HKU\S-1-5-21-367478599-2953826314-2425126797-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\.DEFAULT -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\.DEFAULT -> {637D6E3C-DF93-48A5-8362-159A8AC56B11} URL = hxxp://www.google.com/search?hl=en&q={searchTerms}&meta=
SearchScopes: HKU\S-1-5-21-367478599-2953826314-2425126797-1001 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-367478599-2953826314-2425126797-1001 -> {52B32DF5-BA14-40DB-AE27-945428672E8A} URL = hxxp://www.web-pl.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-367478599-2953826314-2425126797-1001 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
Edge HomeButtonPage: HKU\S-1-5-21-367478599-2953826314-2425126797-1001 -> hxxp://www.web-pl.com/
Edge HomePage: Default -> hxxp://www.web-pl.com/
Edge StartupUrls: Default -> "hxxp://www.web-pl.com/"
Edge DefaultSearchURL: Default -> hxxp://www.web-pl.com/search?q={searchTerms}
Edge DefaultSearchKeyword: Default -> web-pl.com
CHR HomePage: Default -> hxxp://www.web-pl.com/
CHR DefaultSearchKeyword: Default -> google.pl_
S3 VBAudioVACMME; \SystemRoot\System32\drivers\vbaudio_cable64_win7.sys [X]
2020-07-24 19:51 - 2019-09-22 04:02 - 000003326 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1518970523
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> Brak pliku
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> Brak pliku
AlternateDataStreams: C:\ProgramData\TEMP:56E2E879 [118]
FirewallRules: [2d989baa-87db-479b-9f93-edcd967f0c45] => (Allow) @p2psvc.dll,8006 => Brak pliku
FirewallRules: [9c258530-c2e3-4027-ab4e-0d187d9509ad] => (Allow) @p2psvc.dll,8006 => Brak pliku
RemoveProxy: