CloseProcesses:
CreateRestorePoint:
EmptyTemp:
File: C:\Program Files (x86)\hexeiyoblh.dat
HKU\S-1-5-21-4271311259-2584010815-2306355792-1001\...\MountPoints2: {547be681-fbbb-11e8-ac4a-84a6c8046c75} - "G:\Setup.exe" 
HKU\S-1-5-21-4271311259-2584010815-2306355792-1001\...\MountPoints2: {547be7e2-fbbb-11e8-ac4a-84a6c8046c75} - "E:\Setup.exe" 
HKU\S-1-5-21-4271311259-2584010815-2306355792-1001\...\MountPoints2: {618dfb1f-4e38-11e9-acf5-50465de34571} - "E:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-4271311259-2584010815-2306355792-1001\...\MountPoints2: {a7f53713-08de-11e9-ac5d-50465de34571} - "E:\startme.exe" 
HKU\S-1-5-21-4271311259-2584010815-2306355792-1001\...\MountPoints2: {cd7fc33f-91a0-11e9-ade9-50465de34571} - "E:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-4271311259-2584010815-2306355792-1001\...\MountPoints2: {cd7fc377-91a0-11e9-ade9-50465de34571} - "E:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-4271311259-2584010815-2306355792-1001\...\MountPoints2: {f6c4c890-c3dc-11e8-abf2-84a6c8046c75} - "E:\HiSuiteDownLoader.exe" 
BootExecute: autocheck autochk * SmartDefragBootTime.exe
GroupPolicy: Ograniczenia ? <==== UWAGA
Task: {887CCB51-93AC-497D-94A8-E3FB69C6C0DD} - System32\Tasks\Opera scheduled Autoupdate 1530900203 => C:\Program Files\Opera\launcher.exe [1493592 2019-06-14] (Opera Software AS -> Opera Software)
Tcpip\..\Interfaces\{87f9a4a6-af29-4c49-8d71-0617827e2398}: [NameServer] 1.1.1.1,208.67.220.220
Tcpip\..\Interfaces\{87f9a4a6-af29-4c49-8d71-0617827e2398}: [DhcpNameServer] 192.168.1.1
SearchScopes: HKU\S-1-5-21-4271311259-2584010815-2306355792-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
2019-06-18 14:28 - 2019-01-12 21:38 - 000003992 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1530900203
2019-02-20 15:18 - 2019-02-20 15:18 - 000000048 ____H () C:\Program Files (x86)\hexeiyoblh.dat
ContextMenuHandlers1: [FormatFactoryShell] -> [CC]{A3888923-CFD3-4A6B-89BF-08E6B95716E8} =>  -> Brak pliku
ContextMenuHandlers1: [WinCDEmu] -> [CC]{D0E37FD2-F675-426F-B09A-2CF37BA46FD5} =>  -> Brak pliku
ContextMenuHandlers2: [WinCDEmu] -> [CC]{A9901FCD-B4DF-43A1-BD5D-6C9F88679497} =>  -> Brak pliku
ContextMenuHandlers4: [FormatFactoryShell] -> [CC]{A3888923-CFD3-4A6B-89BF-08E6B95716E8} =>  -> Brak pliku
ContextMenuHandlers6: [WinCDEmu] -> [CC]{A9901FCD-B4DF-43A1-BD5D-6C9F88679497} =>  -> Brak pliku
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [476]
FirewallRules: [TCP Query User{107BD696-AB53-4E52-B9F4-A7930A2B249F}C:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe Brak pliku
FirewallRules: [UDP Query User{A085BC41-D772-4D88-B360-37A5292C0DC4}C:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe Brak pliku
FirewallRules: [TCP Query User{D2EEAA25-E73D-40B8-B831-9A2ED10ED7C0}C:\program files\windowsapps\deezer.62021768415af_4.7.1.0_x86__q7m17pa7q8kj0\app\deezer.exe] => (Allow) C:\program files\windowsapps\deezer.62021768415af_4.7.1.0_x86__q7m17pa7q8kj0\app\deezer.exe Brak pliku
FirewallRules: [UDP Query User{CB0467D1-17CD-43E8-9B86-2DE9F45FFCEA}C:\program files\windowsapps\deezer.62021768415af_4.7.1.0_x86__q7m17pa7q8kj0\app\deezer.exe] => (Allow) C:\program files\windowsapps\deezer.62021768415af_4.7.1.0_x86__q7m17pa7q8kj0\app\deezer.exe Brak pliku
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IrfanView\About IrfanView.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IrfanView\Available Languages.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IrfanView\Available PlugIns.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IrfanView\What's New.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avidemux (64 bits)\VS Proxy GUI 2.7.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Activision\Transformers - War for Cybertron\Transformers(TM) - War for Cybertron(TM) Help\Readme.lnk
C:\Users\ASUS\AppData\Roaming\Microsoft\Word\JP2-2307422902107416882\JP2-2.docx.lnk
C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView\About IrfanView.lnk
C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView\Available Languages.lnk
C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView\Available PlugIns.lnk
C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView\What's New.lnk
C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GitHub, Inc\Atom.lnk
C:\Users\Public\Documents\SGP Examples\SGP Baltie 4 DEMO\SGP Baltie 4 C# DEMO.lnk
HOSTS:

FilesInDirectory: C:\Users\ASUS\AppData\Local\*.exe;*.dll;*.ini;*.dat
FilesInDirectory: C:\Users\User\AppData\Roaming\*.exe;*.dll;*.ini;*.dat
FilesInDirectory: C:\Program Files (x86)\*.exe;*.dll;*.ini;*.dat