CloseProcesses:
CreateRestorePoint:
EmptyTemp:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA
HKU\S-1-5-21-2638180242-4181920410-2505535066-1001\...\MountPoints2: {a91e11eb-c722-11e8-85e7-b0359f16879d} - "I:\AutoRun.exe" 
Tcpip\..\Interfaces\{34e6fa82-7383-4903-8484-ef6b89d1098f}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{39606aab-3941-43c2-9248-39cb464daed3}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{517e3799-e4c5-4ea7-afa2-5d39fa1a8239}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{90efcb7b-0d99-4b95-968f-7d3e983817e0}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{a3506c0f-e5e1-4513-b67f-d1074d20d1ae}: [NameServer] 192.168.0.1
Tcpip\..\Interfaces\{b3976010-db02-4bef-9a55-59b5f5231462}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{cd9e06f9-ad1a-4881-a4a6-aaa0e2fcf6ec}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{e1b6680a-6f2a-4a96-ba61-4f7c8f82c6b1}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{e616d50a-294e-4418-8436-654aa14644be}: [NameServer] 213.158.199.1 213.158.199.5
SearchScopes: HKU\S-1-5-21-2638180242-4181920410-2505535066-1001 -> DefaultScope {2C34A6D9-1925-4C16-ACF0-FDBDAE7217AE} URL = 
SearchScopes: HKU\S-1-5-21-2638180242-4181920410-2505535066-1001 -> {2C34A6D9-1925-4C16-ACF0-FDBDAE7217AE} URL = 
FF Extension: (Brak nazwy) - C:\Users\WIKARA\AppData\Roaming\Mozilla\Firefox\Profiles\bccj9jxe.default-1511900345299\extensions\{ed5a5d58-4e89-4ade-903c-34f4b64265cd}.xpi [nie znaleziono]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [jmolcgpienlcieaajfkkdamlngancncm] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2013-01-09]
CHR HKLM-x32\...\Chrome\Extension: [pbjikboenpfhbbejgkoklgkhjpfogcam] - hxxps://clients2.google.com/service/update2/crx
2019-01-18 16:39 - 2018-12-08 09:04 - 001943328 _____ (Microsoft Corporation) C:\Users\WIKARA\AppData\Local\Temp\dllnt_dump.dll
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> Brak pliku
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> Brak pliku
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Brak pliku
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> Brak pliku
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Brak pliku
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Brak pliku
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Brak pliku
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Brak pliku
ContextMenuHandlers1_S-1-5-21-2638180242-4181920410-2505535066-1001: [GGDriveMenu] -> {E68D0A55-3C40-4712-B90D-DCFA93FF2534} =>  -> Brak pliku
ContextMenuHandlers4_S-1-5-21-2638180242-4181920410-2505535066-1001: [GGDriveMenu] -> {E68D0A55-3C40-4712-B90D-DCFA93FF2534} =>  -> Brak pliku
ContextMenuHandlers5_S-1-5-21-2638180242-4181920410-2505535066-1001: [GGDriveMenu] -> {E68D0A55-3C40-4712-B90D-DCFA93FF2534} =>  -> Brak pliku
Task: {17988F14-9D06-499C-8145-A8223FDA75D7} - \Microsoft\Windows\UNP\RunCampaignManager -> Brak pliku <==== UWAGA
Task: {25EFB11B-2E89-4403-AFD5-1C320291DA20} - System32\Tasks\Opera scheduled Autoupdate 1509819565 => C:\Users\WIKARA\AppData\Local\Programs\Opera\launcher.exe [2019-01-09] (Opera Software)
Task: {5E7CF80B-706A-4F57-BECF-6A5F69423D0A} - System32\Tasks\{8503DF56-28DA-44B7-8876-81E4AEE1DB32} => C:\Windows\system32\pcalua.exe -a "D:\Instalki 1\E3131\Driver Version 5.01.13.00\DriverUninstall.exe" -d "D:\Instalki 1\E3131\Driver Version 5.01.13.00"
Task: {6141B70E-FE7E-4E02-8E30-54AD4856E54F} - System32\Tasks\{C3D3DDED-73D6-4541-83AC-B07DD5BFEFFD} => C:\Windows\system32\pcalua.exe -a "D:\Instalki 1\Hyperionics.Hypersnap.v6.90.03-rG\HyperSnap-DX.6.13.02.full.exe" -d "D:\Instalki 1\Hyperionics.Hypersnap.v6.90.03-rG"
Task: {731B13AE-11E0-47BF-B4D5-7EAFFB0DA9CC} - System32\Tasks\Opera scheduled assistant Autoupdate 1547226160 => C:\Users\WIKARA\AppData\Local\Programs\Opera\launcher.exe [2019-01-09] (Opera Software)
Task: {79C7D399-1A8E-452E-B834-954A7C013987} - System32\Tasks\Opera scheduled Autoupdate 1512073011 => C:\Users\WIKARA\AppData\Local\Programs\Opera\launcher.exe [2019-01-09] (Opera Software)
Task: {94428196-54B8-4E72-8AD8-845B91BEE83E} - System32\Tasks\User Boot Experience Task => C:\OEM\Preload\FUBService\FUBService.exe [2015-05-14] ()
Task: {98383D31-79B6-42E8-B1A1-3336DC915896} - System32\Tasks\AmazonAssistantHelper => C:\ProgramData\OEM\Transactional\amazonx@hermes\AmazonX.exe [2017-08-02] ()
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe] => Enabled:Flashget3
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 10 Update Assistant.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator\Licenses\AFPL License.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator\Licenses\FairPlay License.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator\Licenses\GPL License.lnk
C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
RemoveProxy:
Powershell: wevtutil el | Foreach-Object {wevtutil cl "$_"}