CloseProcesses:
CreateRestorePoint:
EmptyTemp:
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== UWAGA
SearchScopes: HKU\S-1-5-21-3648233584-2452870982-3689133122-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ofoeigeaodhbjogdigckajfhjbonaofg] - hxxps://clients2.google.com/service/update2/crx
Task: {50412AFD-1523-41F6-9057-3DC676003BDC} - System32\Tasks\Opera scheduled Autoupdate 1507489814 => c:\program files\opera\launcher.exe [2017-12-18] (Opera Software)
AlternateDataStreams: C:\Users\Public\AppData:CSM [476]
FirewallRules: [{98293D28-4A73-4FA0-9548-E5035DC3755E}] => (Allow) c:\program files\opera\49.0.2725.47\opera.exe
FirewallRules: [UDP Query User{444C2FF2-199B-4215-BF48-9558D02383F0}C:\program files (x86)\java\jre1.8.0_151\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_151\bin\javaw.exe
FirewallRules: [TCP Query User{BE5B1A49-514B-441B-A531-68B43BC3AC1F}C:\program files (x86)\java\jre1.8.0_151\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_151\bin\javaw.exe
FirewallRules: [UDP Query User{917E0559-781A-4F75-A7AB-506707D8825B}D:\oxygennotincluded\oxygennotincluded.exe] => (Allow) D:\oxygennotincluded\oxygennotincluded.exe
FirewallRules: [TCP Query User{278A9F26-A713-4447-9E86-48C2310975C0}D:\oxygennotincluded\oxygennotincluded.exe] => (Allow) D:\oxygennotincluded\oxygennotincluded.exe
FirewallRules: [UDP Query User{64D65870-FB63-4405-AEB1-06A4A3C4D93E}D:\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Block) D:\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{352BE26C-4C14-44EE-BA56-C382EBE08787}D:\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Block) D:\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
Task: {B2A0F921-DF64-410E-9097-45603CA9EE1F} - System32\Tasks\Toolbox.exe_{BC850D31-3DD4-4B74-BCBC-D58576AAAA5A} => C:\Program Files\HP\HP Deskjet 3510 series\Bin\Toolbox.exe [2012-10-17] (Hewlett-Packard Co.)
Powershell: wevtutil el | Foreach-Object {wevtutil cl "$_"}