CloseProcesses:
CreateRestorePoint:
EmptyTemp:
HKLM\...\Run: [Seagull Drivers] => ssdal_nc.exe startup
HKLM\...\Policies\Explorer: [NoActiveDesktop] 1 [120320 2018-03-10] ()
HKLM\...\Policies\Explorer: [NoActiveDesktopChanges] 1 [120320 2018-03-10] ()
HKU\S-1-5-21-2545306443-3423281809-2285359965-1000\...\Policies\Explorer: [] 
HKU\S-1-5-21-2545306443-3423281809-2285359965-1000\...\MountPoints2: E - E:\SETUP.EXE
HKU\S-1-5-21-2545306443-3423281809-2285359965-1000\...\MountPoints2: {0b98a12f-9209-11e7-a337-34de1a8607bc} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2545306443-3423281809-2285359965-1000\...\MountPoints2: {330c5bf4-9d03-11e7-aea8-34de1a8607bc} - G:\HiSuiteDownLoader.exe
Startup: C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Wysyłanie do programu OneNote.lnk [2018-01-18]
ShortcutTarget: Wysyłanie do programu OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Brak pliku)
FF HKU\S-1-5-21-2545306443-3423281809-2285359965-1000\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\Sebastian\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => nie znaleziono
FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku]
FF Plugin HKU\S-1-5-21-2545306443-3423281809-2285359965-1000: @acestream.net/acestreamplugin,version=3.1.16.1 -> C:\Users\Sebastian\AppData\Roaming\ACEStream\player\npace_plugin.dll [Brak pliku]
CHR HomePage: Default -> hxxps://%66%65%65%64.%73%6E%61%70%64%6F.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGIjVkxlyIP4NYe17aVLWuxkYK9BNIFBtjCEAkEL3zNp_q8n_9dKk2DBUjuxN6MFRaXkOlg_4I4mw9hzMKO0t1ZxjTfDVRjHMF-U__pELO3ItMayXQvCpG4qADnyqLdP9-vu_TlO_w9IFiUSa8wUsFbCGDS-Fjl5ZqGK_H1I5E9xdAd3NK_jb-ePsE3xu
CHR HKU\S-1-5-21-2545306443-3423281809-2285359965-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CustomCLSID: HKU\S-1-5-21-2545306443-3423281809-2285359965-1000_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\Sebastian\AppData\Local\Microsoft\OneDrive\17.3.6743.1212\amd64\FileCoAuthLib64.dll => Brak pliku
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Brak pliku
Task: {4BAABBF7-FB45-40A0-A1A1-D97A68440E58} - System32\Tasks\Clarman Installer Portable => C:\Windows\system32\rundll32.exe "C:\Program Files\Clarman Installer Portable\Clarman Installer Portable.dll",kyfIQMxJ <==== UWAGA
Task: {88A53D13-1A1A-4FEA-A75E-C0E82ED3CB1B} - System32\Tasks\{B6DE37BA-160F-4C70-965B-D928361D16A2} => C:\Windows\system32\pcalua.exe -a C:\Users\Sebastian\Downloads\jxpiinstall.exe -d C:\Users\Sebastian\Downloads
C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacje Chrome\Vysor.lnk
C:\Users\Sebastian\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
Powershell: wevtutil el | Foreach-Object {wevtutil cl "$_"}
CMD: ipconfig /flushdns