CloseProcesses:
CreateRestorePoint:
EmptyTemp:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA
HKU\S-1-5-21-4072360709-3975811897-1143505246-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-4072360709-3975811897-1143505246-1000\...\MountPoints2: D - D:\PlayDiskStart.exe
HKU\S-1-5-21-4072360709-3975811897-1143505246-1000\...\MountPoints2: E - E:\setup.exe
HKU\S-1-5-21-4072360709-3975811897-1143505246-1000\...\MountPoints2: F - F:\setup.exe
HKU\S-1-5-21-4072360709-3975811897-1143505246-1000\...\MountPoints2: G - G:\setup.exe
HKU\S-1-5-21-4072360709-3975811897-1143505246-1000\...\MountPoints2: {013fc615-2c7d-11e9-92d2-b482fec069b1} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-4072360709-3975811897-1143505246-1000\...\MountPoints2: {01d95e86-56e6-11e9-bf37-b482fee5b82d} - H:\AutoRun.exe
HKU\S-1-5-21-4072360709-3975811897-1143505246-1000\...\MountPoints2: {01d95e8b-56e6-11e9-bf37-b482fee5b82d} - H:\AutoRun.exe
HKU\S-1-5-21-4072360709-3975811897-1143505246-1000\...\MountPoints2: {01d95e90-56e6-11e9-bf37-b482fee5b82d} - H:\AutoRun.exe
HKU\S-1-5-21-4072360709-3975811897-1143505246-1000\...\MountPoints2: {2ca0148d-fea0-11e7-a5af-b482fec069b1} - D:\_AUTORUN\AUTORUN.EXE
HKU\S-1-5-21-4072360709-3975811897-1143505246-1000\...\MountPoints2: {2ca0149a-fea0-11e7-a5af-b482fec069b1} - _AUTORUN\AUTORUN.EXE
HKU\S-1-5-21-4072360709-3975811897-1143505246-1000\...\MountPoints2: {4f518348-6567-11ea-b203-b482fec069b1} - E:\AUTORUN.EXE
HKU\S-1-5-21-4072360709-3975811897-1143505246-1000\...\MountPoints2: {4f51834b-6567-11ea-b203-b482fec069b1} - F:\Autorun.exe
HKU\S-1-5-21-4072360709-3975811897-1143505246-1000\...\MountPoints2: {6186698a-011c-11e7-aa8d-b482fec069b1} - E:\LG_PC_Programs.exe
HKU\S-1-5-21-4072360709-3975811897-1143505246-1000\...\MountPoints2: {77bd9ece-0dfb-11e5-b8ff-b482fec069b1} - E:\stp-fmt2017.exe
HKU\S-1-5-21-4072360709-3975811897-1143505246-1000\...\MountPoints2: {b009d947-092a-11e5-bd44-806e6f6e6963} - D:\Autorun.exe
HKU\S-1-5-21-4072360709-3975811897-1143505246-1000\...\MountPoints2: {d2396e77-1448-11e5-b803-00266c648591} - G:\setup.exe
HKU\S-1-5-21-4072360709-3975811897-1143505246-1000\...\MountPoints2: {d40dcc14-4d56-11e8-96d2-b482fee5b82d} - F:\setup.exe
HKU\S-1-5-21-4072360709-3975811897-1143505246-1000\...\MountPoints2: {fbe15c2b-7c1c-11ea-9704-b482fec069b1} - F:\HiSuiteDownLoader.exe
BootExecute: autocheck autochk /k:C
GroupPolicy: Ograniczenia ? <==== UWAGA
Policies: C:\ProgramData\NTUSER.pol: Ograniczenia <==== UWAGA
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA
HKLM\SOFTWARE\Policies\Google: Ograniczenia <==== UWAGA
Task: {01A3A0F0-0F4F-4D25-A99F-96BEB95B6B96} - System32\Tasks\Uninstaller_SkipUac_PC => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [6435088 2020-08-19] (IObit Information Technology -> IObit)
Task: {0F8EB489-CB55-42A1-9150-F0C83DEE4D87} - System32\Tasks\{7523BA44-3EB5-4463-8B2C-16663B9EAE92} => C:\Users\PC\Desktop\65UT_SETUP\65UT_SETUP.exe
Task: {308B0C0D-6075-4151-9DC6-6DC3F7C17D45} - System32\Tasks\{41FA510C-2161-4F26-9B78-E2D6AC45BA2D} => C:\Program Files (x86)\Mozilla Firefox\firefox.exe 0
Task: {35F1FB38-67E6-4576-833B-26200D69B080} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2020-09-17] (Avast Software s.r.o. -> Avast Software)
Task: {3D7E3944-E4A5-471F-A8BC-6E54A037E5A8} - System32\Tasks\{87E6BA0D-85B9-4980-9185-E2EFE7F6E4DB} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\THPS3\THPS3Setup.exe" -d "C:\Program Files (x86)\THPS3"
Task: {472AC035-36EF-41A9-BC0F-DCFC7ED42F0C} - System32\Tasks\{54E1FA87-379E-482A-9D38-03BD65EEE4F0} => C:\Program Files (x86)\Mozilla Firefox\firefox.exe 0
Task: {4C715F48-3071-406C-B770-9D5763817443} - System32\Tasks\{AEBBFAA7-384F-488C-B906-C7710305C2D2} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\bestadblocker\hrISI0XlJqoZgY.exe" -c /s /n /i:"ExecuteCommands;UninstallCommands" ""
Task: {595D79B9-333C-4613-AB38-44FFE79AC8A3} - System32\Tasks\{8DD7C7F9-315F-4469-815E-2E7894C4BD42} => C:\Windows\system32\pcalua.exe -a C:\Download\setup\Setup.exe -d C:\Download\setup
Task: {6F48CF45-213B-443B-BD25-6BC5D1302962} - System32\Tasks\{20369A5E-231E-4428-89F9-7C6520700C5B} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\THPS3\THPS3Setup.exe" -d "C:\Program Files (x86)\THPS3"
Task: {79245918-2239-48F9-AE5F-471E322CDB24} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\7.3.0\AutoUpdate.exe [2369808 2020-03-06] (IObit Information Technology -> IObit)
Task: {7B36B19B-AFE3-49F2-BAD5-9BEAC596A98B} - System32\Tasks\{2C23F10E-4499-4147-A753-CE7D9DD61342} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\FootballManager2002\SETUP\3Dsetup.exe" -d "C:\Program Files (x86)\FootballManager2002\SETUP"
Task: {7E7D55A8-3ADB-4718-8749-D8DE4D3E568C} - System32\Tasks\{7F10FEED-49BE-4E12-947B-0552059A7DDD} => C:\Windows\system32\pcalua.exe -a C:\Users\PC\Desktop\th\THPS2Setup.exe -d C:\Users\PC\Desktop\th
Task: {8DB70DFD-6A80-41E5-B5FD-6F9F7D727848} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [734208 2017-10-05] () [Brak podpisu cyfrowego]
Task: {A7F76C25-FE65-4DFF-9E3D-2B90498153F2} - System32\Tasks\{67979CD4-0DE0-4D6E-956E-808BA3B845FC} => C:\Program Files (x86)\FootballManager2002\FootballManager.EXE [4767744 2001-09-10] () [Brak podpisu cyfrowego]
Task: {AC583983-B970-4567-9636-9FF1DC199FAD} - System32\Tasks\{CB2EACEA-AB8D-4B59-9E82-2D327A4F9C03} => C:\Users\PC\Desktop\65UT_SETUP\65UT_SETUP.exe
Task: {B8EBCB96-D347-4617-856B-DC424D4095EB} - System32\Tasks\{B364D18A-26D1-473E-BB7D-5C5025FABACB} => C:\Windows\system32\pcalua.exe -a D:\Setup.exe -d D:\
Task: {D2CCBAE5-6C2E-42BC-A801-FC0BCACA1A4D} - System32\Tasks\{1B42089C-8F76-4F52-A9A0-5F69A6375270} => C:\Windows\system32\pcalua.exe -a "F:\Starter Pack\setup.exe" -d "F:\Starter Pack"
Task: {DBA00CAE-314D-4A13-9733-512B226E03F5} - System32\Tasks\{323036FC-A964-41E5-8667-1475ACBAC015} => C:\Download\setup\Setup.exe
Task: {E4BC736B-DEC7-4202-B455-B8664889AAFF} - System32\Tasks\{2F22B41F-21B6-4021-8E26-CDAD80C1BD04} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Electronic Arts\The Godfather The Game\EAUninstall.exe"
Task: {FC74567A-CEE5-4572-B2CB-B413AF80E035} - System32\Tasks\{80E116A8-5313-4F97-9FB3-2B72553C59CE} => C:\Windows\system32\pcalua.exe -a "C:\Users\PC\Desktop\Games\GTA III\grand-theft-auto-3-spolszczenie.exe" -d "C:\Users\PC\Desktop\Games\GTA III"
Task: C:\Windows\Tasks\AutoKMS.job => C:\Windows\AutoKMS\AutoKMS.exe
Tcpip\..\Interfaces\{05CA3460-5D2C-46F9-8090-E135678D9BA5}: [DhcpNameServer] 172.20.10.1
FF Homepage: Mozilla\Firefox\Profiles\qlg67cwt.default-release -> hxxps://securesearch.org/homepage?hp=2&pId=BT170603&iDate=2020-08-17 05:38:30&bName=
FF NewTab: Mozilla\Firefox\Profiles\qlg67cwt.default-release -> hxxps://securesearch.org/homepage?hp=2&pId=BT170603&iDate=2020-08-17 05:38:30&bName=
FF HKU\S-1-5-21-4072360709-3975811897-1143505246-1000\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\PC\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => nie znaleziono
FF HKU\S-1-5-21-4072360709-3975811897-1143505246-1000\...\Firefox\Extensions: [eagleget_ffext@eagleget.com] - C:\Program Files (x86)\EagleGet\addon\eagleget_ffext@eagleget.com.xpi => nie znaleziono
FF HKU\S-1-5-21-4072360709-3975811897-1143505246-1000\...\SeaMonkey\Extensions: [eagleget_ffext@eagleget.com] - C:\Program Files (x86)\EagleGet\addon\eagleget_ffext@eagleget.com.xpi => nie znaleziono
CHR HKLM\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] - C:\Program Files (x86)\EagleGet\addon\eagleget_cext@eagleget.com.crx <nie znaleziono>
S3 cpuz143; \??\C:\Windows\temp\cpuz143\cpuz143_x64.sys [X]
S3 cpuz145; \??\C:\Windows\temp\cpuz145\cpuz145_x64.sys [X]
S4 IMFMBRProtect; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\IMFMBRProtect.sys [X]
S4 IMFSafeBox; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\IMFSafeBox.sys [X]
ContextMenuHandlers2-x32: [AlcoholShellEx] -> {32020A01-506E-484D-A2A8-BE3CF17601C3} => C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxShlex.dll [2013-09-17] (Alcohol Soft -> Alcohol Soft Development Team)
ContextMenuHandlers2: [AlcoholShellEx64] -> {AF67B665-D752-424E-9A03-C7C218F2844F} => C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxShlEx64.dll [2013-09-17] (Alcohol Soft -> Alcohol Soft Development Team)
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
AlternateDataStreams: C:\ProgramData\TEMP:56E2E879 [135]
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKU\S-1-5-21-4072360709-3975811897-1143505246-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-4072360709-3975811897-1143505246-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://securesearch.org/homepage?hp=2&pId=BT170603&iDate=2020-08-17 05:38:30&bName=
HKU\S-1-5-21-4072360709-3975811897-1143505246-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-4072360709-3975811897-1143505246-1000 -> DefaultScope Yahoo! URL = hxxp://us.search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=iobit-trans
SearchScopes: HKU\S-1-5-21-4072360709-3975811897-1143505246-1000 -> Yahoo! URL = hxxp://us.search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=iobit-trans
SearchScopes: HKU\S-1-5-21-4072360709-3975811897-1143505246-1000 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://pl.search.yahoo.com/search?fr=vmn&type=vmn__webcompa__1_0__ya__ch_WCYID10099_swoc_campaign_150608__yaie&p={searchTerms}
BHO-x32: Brak nazwy -> {451C804F-C205-4F03-B48E-537EC94937BF} -> Brak pliku
Handler: WSWSVCUchrome - Brak wartości CLSID
RemoveProxy:
Hosts: