CloseProcesses:
CreateRestorePoint:
EmptyTemp:
VirusTotal: C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSNYE.EXE
HKU\S-1-5-21-1306913016-1850766916-1665871449-1001\...\Run: [ProductAuthenticationService] => C:\Users\Mateusz\AppData\Roaming\ProductAuthenticationService\pas.exe [1003024 2019-06-28] (DVJ LIMITED -> DVJ LIMITED)
HKU\S-1-5-21-1306913016-1850766916-1665871449-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-1306913016-1850766916-1665871449-1001\...\MountPoints2: {a700a1e4-22a5-11ea-af0d-3010b390232d} - "I:\setup.exe" 
HKU\S-1-5-21-1306913016-1850766916-1665871449-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04072020225207137\...\Run: [ProductAuthenticationService] => C:\Users\Mateusz\AppData\Roaming\ProductAuthenticationService\pas.exe [1003024 2019-06-28] (DVJ LIMITED -> DVJ LIMITED)
HKU\S-1-5-21-1306913016-1850766916-1665871449-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04072020225207137\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-1306913016-1850766916-1665871449-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04072020225207137\...\MountPoints2: {a700a1e4-22a5-11ea-af0d-3010b390232d} - "I:\setup.exe" 
BootExecute: autocheck autochk * sdnclean64.exe
Task: {3CF1D441-9E3B-432A-89A4-14C51584D99C} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [6944304 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {C698C591-5203-4FED-B8CC-47C86C42775E} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [7192192 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {EB41DD63-691B-480E-8298-263DA29AF7E0} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [7651984 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Tcpip\..\Interfaces\{56fcc7dd-c037-4ad5-97de-803fbe0ea3c0}: [DhcpNameServer] 192.168.33.1
Tcpip\..\Interfaces\{8b66e20c-1942-4b9a-a8e2-33524f922c6d}: [DhcpNameServer] 192.168.33.1
CHR HomePage: Default -> hxxp://%66%65%65%64.%73%6E%61%70%64%6F.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoGk3GzeHhcr-ccYrVZt9IZ6VMb9dSyS-pNWJIo55Z3ZlC_AlhLIlBXKYjoBuYfOZykhbjJ8UwNEALzxRqZL2jcRlvtV0OjRR0F1o-PKOi5u8ftx5JZ3By8vkbwaElRZJa7Ytgjr9AMqn_kL8NjYLNTzcDnAD64Ua9S2PQ3h0Sw,,
2018-10-13 10:44 - 2018-10-13 10:44 - 165944248 _____ (GOG.com                                                     ) C:\Users\Mateusz\Heroes of Might & Magic III Complete.exe
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Brak pliku
FirewallRules: [TCP Query User{9DAB10C8-F87E-4B16-959E-B0E108133609}D:\gry\nes\citra\nightly-mingw\citra-qt.exe] => (Allow) D:\gry\nes\citra\nightly-mingw\citra-qt.exe Brak pliku
FirewallRules: [UDP Query User{348A4549-4FE3-4C70-BAB2-F2225F02879F}D:\gry\nes\citra\nightly-mingw\citra-qt.exe] => (Allow) D:\gry\nes\citra\nightly-mingw\citra-qt.exe Brak pliku
FirewallRules: [TCP Query User{CB97E170-95B6-47B0-AE2A-7B9D5D5EF179}D:\gry\nes\citra\nightly-mingw\citra-qt.exe] => (Allow) D:\gry\nes\citra\nightly-mingw\citra-qt.exe Brak pliku
FirewallRules: [UDP Query User{E4F33EE6-A5B9-4A2E-8B1D-A963B88F7FAC}D:\gry\nes\citra\nightly-mingw\citra-qt.exe] => (Allow) D:\gry\nes\citra\nightly-mingw\citra-qt.exe Brak pliku
FirewallRules: [TCP Query User{96AD67B6-B920-4945-98B2-831A81FF5FBD}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe Brak pliku
FirewallRules: [UDP Query User{E32A5036-9E91-4E43-A790-4D3A249A892A}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe Brak pliku
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnView\XnView - Homepage.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnView\XnView.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft Classic\World of Warcraft Classic.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft\World of Warcraft.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPlayCity.com\MyPlayCity Games.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPlayCity.com\Play Online Games.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GfK\Deinstalacja programu GfK Client.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GfK\GfK Client.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\3DO\Support.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\3DO\System Information.lnk
C:\ProgramData\Microsoft\Windows\GameExplorer\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}\PlayTasks\3\Centrum Pomocy.lnk
C:\ProgramData\Microsoft\Windows\GameExplorer\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}\PlayTasks\2\Umowa Użytkownika.lnk
C:\ProgramData\Microsoft\Windows\GameExplorer\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}\PlayTasks\1\Przeczytaj.lnk
C:\ProgramData\Microsoft\Windows\GameExplorer\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}\PlayTasks\0\Play.lnk
C:\Users\Mateusz\Desktop\Gry\World_of_Warships_EU.lnk
C:\Users\Mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\MyPlayCity Games.lnk
C:\Users\Mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargaming.net\Wargaming.net Game Center.lnk
C:\Users\Mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navitel Navigator update center\Navitel Navigator update service.lnk
C:\Users\Mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Citra\Citra Nightly.lnk
C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data
RemoveProxy:
Hosts: