CreateRestorePoint: CloseProcesses: EmptyTemp: HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKU\S-1-5-21-984863219-2318425901-2986402997-1001\...\MountPoints2: F - F:\setup.exe HKU\S-1-5-21-984863219-2318425901-2986402997-1001\...\MountPoints2: {41fe7dde-15c5-11ee-b974-9dcf7692e978} - F:\setup.exe HKU\S-1-5-21-984863219-2318425901-2986402997-1001\...\MountPoints2: {68311aa8-be45-11eb-ac97-e62075728977} - "F:\WD SmartWare.exe" autoplay=true HKU\S-1-5-21-984863219-2318425901-2986402997-1001\...\MountPoints2: {6d9a6c00-1690-11ee-8568-f14d4fa36f63} - F:\setup.exe HKU\S-1-5-21-984863219-2318425901-2986402997-1001\...\MountPoints2: {6d9a6c47-1690-11ee-8568-f14d4fa36f63} - F:\setup.exe HKU\S-1-5-21-984863219-2318425901-2986402997-1001\...\MountPoints2: {9a2aa884-cd64-11e7-b38e-b354eb6dcf76} - F:\HiSuiteDownLoader.exe HKU\S-1-5-21-984863219-2318425901-2986402997-1001\...\MountPoints2: {cba9440f-c411-11e8-b91c-bb46b7215776} - F:\HiSuiteDownLoader.exe HKU\S-1-5-21-984863219-2318425901-2986402997-1001\...\MountPoints2: {cba94425-c411-11e8-b91c-bb46b7215776} - F:\HiSuiteDownLoader.exe HKU\S-1-5-21-984863219-2318425901-2986402997-1001\...\MountPoints2: {e02df9a8-aeb0-11e4-9c98-806e6f6e6963} - E:\LV5T_Deluxe.exe HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA Task: {1A2EDEBF-FC3E-4E10-B19F-EEA312627BCA} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe /c (Brak pliku) Task: {1AA94790-F6BD-497D-9365-09AEF225A199} - \RecoveryCDWin7 -> Brak pliku <==== UWAGA Task: {337E559F-934E-40CA-BE5A-0E59DC48DE9A} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2135448 2023-06-27] (Avast Software s.r.o. -> Avast Software) Task: {509D0140-05EE-41BA-A587-6E2BF920D6B9} - System32\Tasks\{8BE4013A-46D7-4EFD-B074-1E76F7A79E7D} => c:\program files (x86)\google\chrome\application\chrome.exe [3151128 2023-01-24] (Google LLC -> Google LLC) -> hxxp://ui.skype.com/ui/0/4.2.0.166.321/pl/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;notincluded,google-chrome:notoffered;notincluded Task: {598553DD-F034-4C7A-93B1-4BD471BDCF49} - System32\Tasks\{A1C6A17B-B0D2-49DA-B66A-54D8B72192E3} => c:\program files (x86)\google\chrome\application\chrome.exe [3151128 2023-01-24] (Google LLC -> Google LLC) -> hxxp://ui.skype.com/ui/0/4.2.0.166.321/pl/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;notincluded,google-chrome:notoffered;notincluded Task: {69A3CC68-3C31-4A05-BE93-B12758356765} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs (Brak pliku) Task: {999025A3-F215-4D37-BD1E-A6CD70732D2E} - System32\Tasks\Symantec\Norton Error Analyzer 18.7.2.3 => C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\SymErr.exe /analyze (Brak pliku) Task: {BD19B26E-115F-4226-B405-718D6DA13079} - System32\Tasks\{E821111A-5591-4A0C-8AD7-44844C1BB15D} => c:\program files (x86)\google\chrome\application\chrome.exe [3151128 2023-01-24] (Google LLC -> Google LLC) -> hxxp://ui.skype.com/ui/0/7.2.0.103/pl/abandoninstall?page=tsMain Task: {CB15D86A-C803-4647-8B6A-77E11C929A62} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe /ua /installsource scheduler (Brak pliku) Task: {D7B66F50-0A0F-4C74-9229-03A6739AB862} - System32\Tasks\Symantec\Norton Error Processor 18.7.2.3 => C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\SymErr.exe /submit (Brak pliku) Tcpip\..\Interfaces\{AA243820-1347-4884-ACD9-5C30A4E5C842}: [DhcpNameServer] 192.168.0.1 FF Extension: (Symantec IPS) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.0.0.128\IPSFFPlgn [2015-02-07] [Przestarzałe] [Brak podpisu cyfrowego] FF Extension: (Norton Toolbar) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.0.0.128\coFFPlgn_2011_7_13_2 [2015-04-18] [Przestarzałe] [Brak podpisu cyfrowego] FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx R1 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.0.0.128\Definitions\BASHDefs\20150321.001\BHDrvx64.sys [1622744 2015-02-03] (Symantec Corporation -> Symantec Corporation) R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [487216 2015-02-07] (Symantec Corporation -> Symantec Corporation) R1 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.0.0.128\Definitions\IPSDefs\20150407.001\IDSvia64.sys [671448 2015-03-24] (Symantec Corporation -> Symantec Corporation) S3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.0.0.128\Definitions\VirusDefs\20150407.017\ENG64.SYS [129752 2015-02-07] (Symantec Corporation -> Symantec Corporation) S3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.0.0.128\Definitions\VirusDefs\20150407.017\EX64.SYS [2137304 2015-02-07] (Symantec Corporation -> Symantec Corporation) S3 SRTSP; C:\Windows\System32\Drivers\NISx64\1207020.003\SRTSP64.SYS [744568 2011-03-31] (Symantec Corporation -> Symantec Corporation) R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1207020.003\SRTSPX64.SYS [40568 2011-03-31] (Symantec Corporation -> Symantec Corporation) R0 SymDS; C:\Windows\System32\drivers\NISx64\1207020.003\SYMDS64.SYS [450680 2011-01-27] (Symantec Corporation -> Symantec Corporation) R0 SymEFA; C:\Windows\System32\drivers\NISx64\1207020.003\SYMEFA64.SYS [912504 2011-03-15] (Symantec Corporation -> Symantec Corporation) R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [174200 2015-02-07] (Symantec Corporation -> Symantec Corporation) R1 SymIRON; C:\Windows\system32\drivers\NISx64\1207020.003\Ironx64.SYS [171128 2011-01-27] (Symantec Corporation -> Symantec Corporation) R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1207020.003\SYMNETS.SYS [386168 2011-04-21] (Symantec Corporation -> Symantec Corporation) FCheck: C:\Windows\SysWOW64\olepro32.dll [2010-11-20] <==== UWAGA (zerobajtowy plik/folder) ContextMenuHandlers1: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files (x86)\Norton Internet Security\Engine64\18.7.2.3\NavShExt.dll [2012-06-08] (Symantec Corporation -> Symantec Corporation) ContextMenuHandlers2: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files (x86)\Norton Internet Security\Engine64\18.7.2.3\NavShExt.dll [2012-06-08] (Symantec Corporation -> Symantec Corporation) ContextMenuHandlers6: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files (x86)\Norton Internet Security\Engine64\18.7.2.3\NavShExt.dll [2012-06-08] (Symantec Corporation -> Symantec Corporation) ContextMenuHandlers1_S-1-5-21-984863219-2318425901-2986402997-1001: [GGDriveMenu] -> {E68D0A55-3C40-4712-B90D-DCFA93FF2534} => -> Brak pliku ContextMenuHandlers4_S-1-5-21-984863219-2318425901-2986402997-1001: [GGDriveMenu] -> {E68D0A55-3C40-4712-B90D-DCFA93FF2534} => -> Brak pliku ContextMenuHandlers5_S-1-5-21-984863219-2318425901-2986402997-1001: [GGDriveMenu] -> {E68D0A55-3C40-4712-B90D-DCFA93FF2534} => -> Brak pliku HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = HKU\S-1-5-21-984863219-2318425901-2986402997-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/ HKU\S-1-5-21-984863219-2318425901-2986402997-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM -> {1DFC806D-5BD7-4D12-9D76-E7D1E7D946D2} URL = hxxp://pl.wikipedia.org/wiki/Special:Search?search={searchTerms} SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> {1DFC806D-5BD7-4D12-9D76-E7D1E7D946D2} URL = hxxp://pl.wikipedia.org/wiki/Special:Search?search={searchTerms} SearchScopes: HKU\S-1-5-21-984863219-2318425901-2986402997-1001 -> {1DFC806D-5BD7-4D12-9D76-E7D1E7D946D2} URL = hxxp://pl.wikipedia.org/wiki/Special:Search?search={searchTerms} BHO-x32: Symantec NCO BHO -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll => Brak pliku BHO-x32: Symantec Intrusion Prevention -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\IPS\IPSBHO.DLL => Brak pliku Toolbar: HKU\S-1-5-21-984863219-2318425901-2986402997-1001 -> Brak nazwy - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Brak pliku MSCONFIG\startupreg: Norton Online Backup => C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe FirewallRules: [{DD3D9395-6987-42B3-A792-99C32012CE95}] => (Allow) C:\Program Files (x86)\EasyBits For Kids\Programs\My First Browser\MyFirstBrowser.exe () <==== UWAGA [zerobajtowy plik/folder] FirewallRules: [{A94027DE-FD04-4634-A99F-4B75456350A0}] => (Allow) C:\Program Files (x86)\EasyBits For Kids\Programs\My First Browser\MyFirstBrowser.exe () <==== UWAGA [zerobajtowy plik/folder] FirewallRules: [{F2A9802B-4FE7-4C3F-AE7D-83A054C28267}] => (Allow) LPort=54925