Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-05-2015
Ran by sylwester at 2015-05-05 16:41:38
Running from C:\Users\sylwester\Downloads
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2770005542-1391010283-3734432884-500 - Administrator - Disabled)
Gość (S-1-5-21-2770005542-1391010283-3734432884-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2770005542-1391010283-3734432884-1002 - Limited - Enabled)
sylwester (S-1-5-21-2770005542-1391010283-3734432884-1000 - Administrator - Enabled) => C:\Users\sylwester

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: 电脑管家系统防护 (Enabled - Up to date) {6F9C3F92-B625-0E47-F0B1-447602EC65F5}
AV: 百度杀毒 (Enabled - Up to date) {FDA918B3-27C7-3B2B-33D0-343EAE5EB318}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: 百度杀毒 (Enabled - Up to date) {46C8F957-01FD-34A5-0960-0F4CD5D9F9A5}
AS: 电脑管家系统防护 (Enabled - Up to date) {D4FDDE76-901F-01C9-CA01-7F04796B2F48}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2770005542-1391010283-3734432884-1000\...\uTorrent) (Version: 3.4.2.37951 - BitTorrent Inc.)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Aktualizacje NVIDIA 2.4.3.22 (Version: 2.4.3.22 - NVIDIA Corporation) Hidden
Assassins Creed Unity (HKLM-x32\...\QXNzYXNzaW5zQ3JlZWRVbml0eQ==_is1) (Version: 1 - )
Assassins Creed Unity v.1.4.0 (HKLM-x32\...\Assassins Creed Unity_is1) (Version:  - )
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.2.2218 - AVAST Software)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.01 - Piriform)
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
Dragon Age™: Inkwizycja (HKLM-x32\...\{DC4C36DC-4E5B-4262-B0C7-157DF534B969}) (Version: 1.0.0.5 - Electronic Arts)
GamesDesktop 008.109 (HKLM-x32\...\gmsd_pl_109_is1) (Version:  - GAMESDESKTOP) <==== ATTENTION
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 42.0.2311.135 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Gothic (HKLM-x32\...\{DB858BBA-104E-40DD-BDC0-A12391F67C2E}) (Version: 1.08 - Piranha Bytes)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
Huawei E5372 (HKLM-x32\...\Huawei E5372) (Version: 1.12.01.69 - Huawei Technologies Co.,Ltd)
Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{0EC7F9CC-4741-45AE-9F55-6E9343F726F5}) (Version: 1.1.0.36960 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.31.1000 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3960 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) 4.0 (HKLM-x32\...\{D91E3947-528C-4AC3-B26F-A283F2B79983}) (Version: 3.0.1342.02 - Intel Corporation)
Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Java(TM) 6 Update 22 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216022FF}) (Version: 6.0.220 - Oracle)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10269 - Realtek Semiconductor Corp.)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Mozilla Firefox 37.0.2 (x86 pl) (HKLM-x32\...\Mozilla Firefox 37.0.2 (x86 pl)) (Version: 37.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 35.0 - Mozilla)
NVIDIA GeForce Experience 2.4.3.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.3.22 - NVIDIA Corporation)
NVIDIA Oprogramowanie systemu PhysX 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
NVIDIA Sterownik 3D Vision 347.25 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 347.25 - NVIDIA Corporation)
NVIDIA Sterownik graficzny 347.25 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.25 - NVIDIA Corporation)
Odinstaluj drukarkę EPSON SX130 Series (HKLM\...\EPSON SX130 Series) (Version:  - SEIKO EPSON Corporation)
OpenOffice.org 3.3 (HKLM-x32\...\{EB87675F-5281-4767-A54B-31931794C23D}) (Version: 3.3.9567 - OpenOffice.org)
Opera Stable 29.0.1795.47 (HKLM-x32\...\Opera 29.0.1795.47) (Version: 29.0.1795.47 - Opera Software ASA)
Oprogramowanie Intel® PROSet/Wireless (HKLM-x32\...\{7e493493-a430-4b7b-b8a2-48d61599e220}) (Version: 17.0.0 - Intel Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.5.3.636 - Electronic Arts, Inc.)
Panel sterowania NVIDIA 347.25 (Version: 347.25 - NVIDIA Corporation) Hidden
Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile PLK Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Polski pakiet językowy dla programu Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended PLK Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
SHIELD Streaming (Version: 4.1.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.3.22 - NVIDIA Corporation) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype™ 7.3 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.3.101 - Skype Technologies S.A.)
StarCraft II (HKLM-x32\...\StarCraft II) (Version:  - Blizzard Entertainment)
Support PL 1.1 (HKLM-x32\...\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{be0fb33b}) (Version:  - riceLes) <==== ATTENTION
WinRAR 5.20 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
百度卫士4.0 (HKLM-x32\...\百度卫士) (Version: 4.0.0.5166 - 百度在线网络技术（北京）有限公司)
百度杀毒3.0 (HKLM-x32\...\百度杀毒) (Version: 3.0.0.4605 - 百度在线网络技术（北京）有限公司)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-2770005542-1391010283-3734432884-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)

==================== Restore Points  =========================

22-04-2015 16:17:40 Zaplanowany punkt kontrolny
28-04-2015 21:09:27 Zainstalowane Gothic
28-04-2015 21:13:32 Zainstalowany program DirectX
04-05-2015 20:38:05 Zainstalowany program DirectX

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2015-01-21 09:04 - 00000921 ____N C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 genuine.microsoft.com
127.0.0.1 mpa.one.microsoft.com
127.0.0.1 sls.microsoft.com


==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {2FCAFB02-9473-4DD3-8A06-04321DE29513} - System32\Tasks\ba6afebe-441e-49b1-b747-d99be83e7b16-7 => C:\Program Files (x86)\iWebar\ba6afebe-441e-49b1-b747-d99be83e7b16-7.exe <==== ATTENTION
Task: {30619AD9-B1B8-4ECF-A6FE-C3835FFF5822} - System32\Tasks\ba6afebe-441e-49b1-b747-d99be83e7b16-6 => C:\Program Files (x86)\iWebar\ba6afebe-441e-49b1-b747-d99be83e7b16-6.exe <==== ATTENTION
Task: {3FB65684-A46B-404D-A92A-463BFA6C2996} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-01-30] (Google Inc.)
Task: {60CED6DA-70EC-4C18-819A-5DB55B2A5A5E} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2013-03-07] (Intel Corporation)
Task: {69CB5582-B808-45F2-9FCA-AFD7E1C47390} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-01-30] (Google Inc.)
Task: {6AC99ECF-8C64-4DFF-BC7C-42DA8B59FAFA} - System32\Tasks\YTDownloaderUpd => C:\Program Files (x86)\YTDownloader\updater.exe <==== ATTENTION
Task: {756652E3-BAE3-4AE0-9C93-D72337257920} - System32\Tasks\GoogleUpdateTaskMachineUA1d04057e810189 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-01-30] (Google Inc.)
Task: {75A384B9-BB10-4A37-9D4F-3F95281DF1DB} - System32\Tasks\89d90637-1f52-4aec-bef1-c9717c432fe7-11 => C:\Program Files (x86)\Object Browser\89d90637-1f52-4aec-bef1-c9717c432fe7-11.exe <==== ATTENTION
Task: {A7E810BB-19E6-40CD-BAF2-391500C02F05} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-12-12] (Piriform Ltd)
Task: {A9676940-C980-4679-9E1D-3ACEFB92CFFA} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2013-03-07] (Intel Corporation)
Task: {ABE1A366-A202-44CF-8222-8C2AE2CF54EC} - System32\Tasks\Opera scheduled Autoupdate 1422003325 => C:\Program Files (x86)\Opera\launcher.exe [2015-04-17] (Opera Software)
Task: {C2888F08-D8ED-4D63-852A-80FDCBFEF8A0} - System32\Tasks\ShopperProJSUpd => C:\Program Files (x86)\ShopperPro\updater.exe <==== ATTENTION
Task: {C7A1E98C-C370-414A-9409-F5D394DD6882} - System32\Tasks\ba6afebe-441e-49b1-b747-d99be83e7b16-11 => C:\Program Files (x86)\iWebar\ba6afebe-441e-49b1-b747-d99be83e7b16-11.exe <==== ATTENTION
Task: {CBEF023B-9039-48F9-BFAF-8A93C5C8030C} - System32\Tasks\{763A0328-264A-486E-8B59-A950A9949513} => pcalua.exe -a C:\Users\sylwester\Downloads\LeagueofLegends_EUW_Installer_9_15_2014.exe -d C:\Windows\SysWOW64 -c /groupsextract:100;101;102; /out:"C:\Users\sylwester\AppData\Roaming\Riot Games\League of Legends\prerequisites" /callbackid:2532
Task: {EE578877-89E8-45FD-9A15-7F782A23CDBB} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-16] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d04057e810189.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\temp_ba6afebe-441e-49b1-b747-d99be83e7b16-6.job => C:\Program Files (x86)\iWebar\ba6afebe-441e-49b1-b747-d99be83e7b16-6.exe <==== ATTENTION

==================== Loaded Modules (whitelisted) ==============

2015-01-23 11:02 - 2015-01-10 10:07 - 00012104 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2015-01-23 11:03 - 2015-01-10 01:29 - 00117392 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-05-05 10:48 - 2014-11-06 09:38 - 00124296 _____ () C:\Program Files (x86)\Baidu\BaiduSd\3.0.0.4605\BDKVDeskBand64.dll
2015-05-04 11:57 - 2015-05-04 11:57 - 00112560 _____ () C:\Program Files (x86)\YTDownloader\BrowserHelperSrv.exe
2013-04-10 07:58 - 2013-04-10 07:58 - 00351824 _____ () C:\ProgramData\DatacardService\HWDeviceService64.exe
2015-05-05 10:49 - 2015-05-05 10:49 - 00282624 _____ () C:\Users\sylwester\AppData\Roaming\1F97B14F-1430815727-E411-B2A0-F0761C0D1586\jnsvE064.tmp
2015-05-05 10:49 - 2015-05-05 10:49 - 00318976 _____ () C:\Users\sylwester\AppData\Roaming\1F97B14F-1430815727-E411-B2A0-F0761C0D1586\nsv96F0.tmpfs
2014-10-03 18:36 - 2014-10-03 18:36 - 00457616 _____ () C:\Windows\system32\igfxTray.exe
2015-05-05 16:17 - 2015-05-03 13:53 - 03319976 _____ () C:\Users\sylwester\AppData\Local\gmsd_pl_109\upgmsd_pl_109.exe
2015-05-05 10:48 - 2015-04-06 22:32 - 00065536 ____H () C:\Program Files (x86)\baidu\baidu.exe
2014-12-13 00:25 - 2014-12-13 00:25 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1045.dll
2015-05-05 10:49 - 2015-04-03 07:01 - 00309640 _____ () C:\Program Files (x86)\Baidu\BaiduAn\4.0.0.5166\BDMFrameWork.dll
2015-05-05 10:52 - 2015-05-05 10:52 - 00481632 _____ () C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\sqlite.dll
2015-05-05 10:52 - 2015-05-05 10:52 - 00100704 _____ () C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\tinyxml.dll
2015-05-05 10:52 - 2015-05-05 10:52 - 00088416 _____ () C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\zlib.dll
2015-05-05 10:52 - 2015-05-05 10:52 - 00063840 _____ () C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\plugins\qmiemalrtpplugin\qmiemalrtpplugin.dll
2015-05-05 10:52 - 2015-05-05 10:52 - 00051552 _____ () C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\plugins\sysspeeduprtpplugin\SysSpeedupRtpPlugin.dll
2015-05-05 10:52 - 2015-05-05 10:52 - 00018784 _____ () C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\oDayProtect.dll
2015-05-05 10:52 - 2015-05-05 10:52 - 00203104 _____ () C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\QQFileFlt.dll
2015-05-05 11:41 - 2015-05-05 11:41 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-05-05 11:41 - 2015-05-05 11:41 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-05-05 11:54 - 2015-05-05 11:54 - 02926592 _____ () C:\Program Files\AVAST Software\Avast\defs\15050500\algo.dll
2015-05-04 20:37 - 2015-05-01 18:52 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-01-23 11:02 - 2015-01-10 10:07 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
2015-05-05 10:52 - 2015-05-05 10:52 - 00137568 _____ () C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\libexpatw.dll
2015-05-05 10:52 - 2015-05-05 10:52 - 00092184 _____ () C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\xGraphic32.dll
2015-05-05 10:52 - 2015-05-05 10:52 - 00342040 _____ () C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\arkGraphic.dll
2015-05-05 10:52 - 2015-05-05 10:52 - 00045920 _____ () C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\jgImage.dll
2015-05-05 10:52 - 2015-05-05 10:52 - 00158048 _____ () C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\libpng.dll
2015-05-05 10:52 - 2015-05-05 10:52 - 00285024 _____ () C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\libjpegturbo.dll
2015-05-05 10:52 - 2015-05-05 10:52 - 00014176 _____ () C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\jgIOStub.dll
2015-05-05 10:52 - 2015-05-05 10:52 - 00194912 _____ () C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\xImage.dll
2015-05-05 10:52 - 2015-05-05 10:52 - 00076128 _____ () C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\MemDefrag.dll
2015-05-05 10:52 - 2015-05-05 10:52 - 00502168 _____ () C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\QMLoader\QQPCDetector.dll
2015-05-05 10:52 - 2015-05-05 10:52 - 00268640 _____ () C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\plugins\StartupMgr\SoftMon.dll
2015-03-03 05:35 - 2015-03-03 05:35 - 00295264 _____ () C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\QMAndroidServer\1.0.0.1\Log4cplus.dll
2015-05-05 10:52 - 2015-05-05 10:52 - 00235872 _____ () C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\QMWlanMacDll.dll
2015-05-05 10:48 - 2014-11-06 09:35 - 00403848 _____ () C:\Program Files (x86)\Baidu\BaiduSd\3.0.0.4605\BDMCommon.dll
2015-05-05 11:41 - 2015-05-05 11:41 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2011-01-17 16:19 - 2015-04-14 21:51 - 00985088 _____ () C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll
2014-11-10 13:12 - 2014-11-10 13:12 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Users\sylwester\Downloads\The Witcher 3 Wild Hunt Key Ge Downloader__3687_i1509675887_il225070.exe:typelib

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\QQPCRTP => ""="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\QQPCRTP => ""="service"

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, the associated entry will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2770005542-1391010283-3734432884-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\sylwester\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.175.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: EADM => "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart

==================== FirewallRules (whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

FirewallRules: [{48699420-A987-4D7C-970D-1082D490A892}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{0C81A22C-EF64-412F-BDD6-FEA0C212B341}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{E3742393-1DC0-4B54-AABA-CDDE78086516}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{EE90A5F4-A98E-4350-B104-809A401D5A3A}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{90EC8B06-0589-4B54-84E4-483AB0E6EA37}] => (Allow) C:\Users\sylwester\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{61C143FC-840D-46DF-B84E-CCE512A498BA}] => (Allow) C:\Users\sylwester\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{7D41B5BD-BD06-4976-BE97-D78D4DC162DE}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{12C192EE-4D38-46E3-A176-41452EA3EED6}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{24A1E021-D684-419F-B76D-99CFB3707D05}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{C2EBBC55-E37C-49F8-A7B6-7FD17A717237}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{FE8B0E2D-30B3-44C7-9718-76D2947E8EB7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{DE6EBB1E-C723-4254-BC9F-F3A3F08C704B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{6BD5592E-C79E-4584-B738-5DB0D1957E0B}] => (Allow) C:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{A441406B-6C12-4F4D-9AFB-860E0DDD9B58}] => (Allow) C:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{0C9205AB-9774-40BE-9C38-9B3C85FB9D9F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{86A8C976-38EA-4690-9287-85BEAE89474C}] => (Allow) C:\Program Files (x86)\baidu\BaiduSd\3.0.0.4605\BaiduSdSvc.exe
FirewallRules: [{5C49D33F-604E-4E77-BB63-EACDC03D3AFA}] => (Allow) C:\Program Files (x86)\baidu\BaiduSd\3.0.0.4605\BaiduSdSvc.exe
FirewallRules: [{BCE5D801-EECC-4D95-A32D-30E49500FF94}] => (Allow) C:\Program Files (x86)\baidu\BaiduSd\3.0.0.4605\BaiduSdSvc.exe
FirewallRules: [{92A07637-9089-458D-83FB-D448B87A6A31}] => (Allow) C:\Program Files (x86)\baidu\BaiduSd\3.0.0.4605\BaiduSdSvc.exe
FirewallRules: [{E1A1098A-578A-4E78-B3AA-8975C6E7EA93}] => (Allow) C:\Program Files (x86)\baidu\BaiduSd\3.0.0.4605\BaiduSdSvc.exe
FirewallRules: [{43F4AC4E-0B31-47C8-8D2C-ADC58A364BDD}] => (Allow) C:\Program Files (x86)\baidu\BaiduSd\3.0.0.4605\BaiduSdSvc.exe
FirewallRules: [{BDBE143F-7122-4A7C-81A1-E68EBEE19189}] => (Allow) C:\Program Files (x86)\baidu\BaiduSd\3.0.0.4605\BaiduSd.exe
FirewallRules: [{A8FFEBBA-609D-431B-A4CC-C0BE68A78AD4}] => (Allow) C:\Program Files (x86)\baidu\BaiduSd\3.0.0.4605\BaiduSd.exe
FirewallRules: [{BC6E31A3-9191-473C-89E8-892FB0C751AF}] => (Allow) C:\Program Files (x86)\baidu\BaiduSd\3.0.0.4605\BaiduSd.exe
FirewallRules: [{D7F16EAB-7937-4AA9-8352-6754B790CF74}] => (Allow) C:\Program Files (x86)\baidu\BaiduSd\3.0.0.4605\BaiduSd.exe
FirewallRules: [{8D4E4280-DBA0-4A2F-A3AD-695A95043C43}] => (Allow) C:\Program Files (x86)\baidu\BaiduSd\3.0.0.4605\BaiduSd.exe
FirewallRules: [{44AF35C8-C9EB-4CCC-A093-B8670783F17C}] => (Allow) C:\Program Files (x86)\baidu\BaiduSd\3.0.0.4605\BaiduSd.exe
FirewallRules: [{75CF7985-8D4D-4888-9DF8-43AE7DCC012A}] => (Allow) C:\Program Files (x86)\baidu\BaiduSd\3.0.0.4605\BaiduSdTray.exe
FirewallRules: [{5F35BEC9-ED8F-400D-BA0A-9FF053A948BC}] => (Allow) C:\Program Files (x86)\baidu\BaiduSd\3.0.0.4605\BaiduSdTray.exe
FirewallRules: [{E8D76A6B-0E09-4348-9624-901B40514D25}] => (Allow) C:\Program Files (x86)\baidu\BaiduSd\3.0.0.4605\BaiduSdTray.exe
FirewallRules: [{A23C1CFB-65B8-4165-A989-C411F6F8FA08}] => (Allow) C:\Program Files (x86)\baidu\BaiduSd\3.0.0.4605\BaiduSdTray.exe
FirewallRules: [{BE891434-45D3-419D-BABE-57C8BB13AAEA}] => (Allow) C:\Program Files (x86)\baidu\BaiduSd\3.0.0.4605\BaiduSdTray.exe
FirewallRules: [{EA7868AF-842E-46B1-8879-D321328D505E}] => (Allow) C:\Program Files (x86)\baidu\BaiduSd\3.0.0.4605\BaiduSdTray.exe
FirewallRules: [{1340D41F-3D76-419E-8BE1-ADD7D6A2E445}] => (Allow) C:\Program Files (x86)\baidu\BaiduSd\3.0.0.4605\BaiduSdUpdate.exe
FirewallRules: [{19FB22FB-FCFC-4FEB-BB74-DD0774BEE85C}] => (Allow) C:\Program Files (x86)\baidu\BaiduSd\3.0.0.4605\BaiduSdUpdate.exe
FirewallRules: [{09ECF9D0-0BB5-46E6-8D91-666BAEA8A3A6}] => (Allow) C:\Program Files (x86)\baidu\BaiduSd\3.0.0.4605\BaiduSdUpdate.exe
FirewallRules: [{5F0E51D8-3AD7-41D0-A22A-C3F5CB08C5D9}] => (Allow) C:\Program Files (x86)\baidu\BaiduSd\3.0.0.4605\BaiduSdUpdate.exe
FirewallRules: [{15346BB5-A3F2-48F2-974E-FF11D7BDA98D}] => (Allow) C:\Program Files (x86)\baidu\BaiduSd\3.0.0.4605\BaiduSdUpdate.exe
FirewallRules: [{EDCFD65E-C0D1-41EC-B48F-6FCFC2C39A1C}] => (Allow) C:\Program Files (x86)\baidu\BaiduSd\3.0.0.4605\BaiduSdUpdate.exe
FirewallRules: [{3F5CC983-3342-477E-A3A1-F440242DC1A6}] => (Allow) C:\Program Files (x86)\baidu\BaiduSd\3.0.0.4605\BaiduSdBugRpt.exe
FirewallRules: [{F4B6A52B-0D2B-44C1-8418-D079F08AA3BF}] => (Allow) C:\Program Files (x86)\baidu\BaiduSd\3.0.0.4605\BaiduSdBugRpt.exe
FirewallRules: [{CD58E8F2-DC0A-481A-ACE0-229C3BA6492D}] => (Allow) C:\Program Files (x86)\baidu\BaiduSd\3.0.0.4605\BaiduSdBugRpt.exe
FirewallRules: [{A900E629-9509-4EDA-BDC3-1E0E49EBE618}] => (Allow) C:\Program Files (x86)\baidu\BaiduSd\3.0.0.4605\BaiduSdBugRpt.exe
FirewallRules: [{532FA830-FC87-42A6-A45B-1AE28FB9C7BA}] => (Allow) C:\Program Files (x86)\baidu\BaiduSd\3.0.0.4605\BaiduSdBugRpt.exe
FirewallRules: [{412E21AB-00B9-4642-A367-9C1C215E6B3F}] => (Allow) C:\Program Files (x86)\baidu\BaiduSd\3.0.0.4605\BaiduSdBugRpt.exe
FirewallRules: [{970DDA07-995E-4D19-B8D4-E53326523B28}] => (Allow) C:\program files (x86)\common files\baidu\bddownload\109\bddownloader.exe
FirewallRules: [{9B53EED4-C673-4B9A-842E-CD033A60763D}] => (Allow) C:\Program Files (x86)\baidu\BaiduAn\4.0.0.5166\BaiduAnSvc.exe
FirewallRules: [{B585ADA8-9FE6-45ED-BD8F-F5396171D8F0}] => (Allow) C:\Program Files (x86)\baidu\BaiduAn\4.0.0.5166\BaiduAnSvc.exe
FirewallRules: [{E6B3B312-65CF-4438-847F-4F325B151E0D}] => (Allow) C:\Program Files (x86)\baidu\BaiduAn\4.0.0.5166\BaiduAnSvc.exe
FirewallRules: [{A4CA5965-0CA6-45E2-85D2-B51B29734B0B}] => (Allow) C:\Program Files (x86)\baidu\BaiduAn\4.0.0.5166\BaiduAnSvc.exe
FirewallRules: [{B68640BA-EA9A-4749-8E22-D506D1DFEBA0}] => (Allow) C:\Program Files (x86)\baidu\BaiduAn\4.0.0.5166\BaiduAnSvc.exe
FirewallRules: [{91BCA302-0102-4ECB-B794-AE5FB183AAE4}] => (Allow) C:\Program Files (x86)\baidu\BaiduAn\4.0.0.5166\BaiduAnSvc.exe
FirewallRules: [{75E8C894-8A90-460C-A071-3EFA0DA6DC8D}] => (Allow) C:\Program Files (x86)\baidu\BaiduAn\4.0.0.5166\BaiduAn.exe
FirewallRules: [{0134E414-319F-4C14-A940-1CBE772E606D}] => (Allow) C:\Program Files (x86)\baidu\BaiduAn\4.0.0.5166\BaiduAn.exe
FirewallRules: [{2AE1D1A4-3183-4F95-BBD7-2D07FF1EF877}] => (Allow) C:\Program Files (x86)\baidu\BaiduAn\4.0.0.5166\BaiduAn.exe
FirewallRules: [{8BC271E3-124A-4942-8CA4-F78F0DA50E95}] => (Allow) C:\Program Files (x86)\baidu\BaiduAn\4.0.0.5166\BaiduAn.exe
FirewallRules: [{F269CCB4-132A-4FE7-BDD4-36A64DC4AC1A}] => (Allow) C:\Program Files (x86)\baidu\BaiduAn\4.0.0.5166\BaiduAn.exe
FirewallRules: [{C9AACAEB-63FB-4F84-B58A-E9A5923B57CE}] => (Allow) C:\Program Files (x86)\baidu\BaiduAn\4.0.0.5166\BaiduAn.exe
FirewallRules: [{D03713BF-21AD-415F-A176-86A382433816}] => (Allow) C:\Program Files (x86)\baidu\BaiduAn\4.0.0.5166\BaiduAnTray.exe
FirewallRules: [{C555B12F-C8C8-4628-84D2-446554AA8C5A}] => (Allow) C:\Program Files (x86)\baidu\BaiduAn\4.0.0.5166\BaiduAnTray.exe
FirewallRules: [{D2B2C33D-A01C-4103-A55A-F89340C38413}] => (Allow) C:\Program Files (x86)\baidu\BaiduAn\4.0.0.5166\BaiduAnTray.exe
FirewallRules: [{EF1DCF59-0D58-4EA9-AD18-C385DA3F5E8E}] => (Allow) C:\Program Files (x86)\baidu\BaiduAn\4.0.0.5166\BaiduAnTray.exe
FirewallRules: [{39EFFC1F-E2B3-4034-A781-05269DDA5B7C}] => (Allow) C:\Program Files (x86)\baidu\BaiduAn\4.0.0.5166\BaiduAnTray.exe
FirewallRules: [{9A5C7D15-E22C-4B76-821B-9768A4883C75}] => (Allow) C:\Program Files (x86)\baidu\BaiduAn\4.0.0.5166\BaiduAnTray.exe
FirewallRules: [{24A0F4A1-33A7-42FC-B22E-FCE9C0B51B72}] => (Allow) C:\Program Files (x86)\baidu\BaiduAn\4.0.0.5166\BaiduAnUpdate.exe
FirewallRules: [{DC581E41-7103-49D6-9332-1DFA52AC4358}] => (Allow) C:\Program Files (x86)\baidu\BaiduAn\4.0.0.5166\BaiduAnUpdate.exe
FirewallRules: [{D87B5E6D-A72C-4AE5-919F-2CF953D934FC}] => (Allow) C:\Program Files (x86)\baidu\BaiduAn\4.0.0.5166\BaiduAnUpdate.exe
FirewallRules: [{5F045EBE-4AFA-4C64-8BE8-19C8CA5AAFAF}] => (Allow) C:\Program Files (x86)\baidu\BaiduAn\4.0.0.5166\BaiduAnUpdate.exe
FirewallRules: [{609AD6EF-9BE1-4A39-8C1D-93E249EF5AD8}] => (Allow) C:\Program Files (x86)\baidu\BaiduAn\4.0.0.5166\BaiduAnUpdate.exe
FirewallRules: [{AA21179A-65E4-4958-AF98-9D63007B9C54}] => (Allow) C:\Program Files (x86)\baidu\BaiduAn\4.0.0.5166\BaiduAnUpdate.exe
FirewallRules: [{6055DDE1-39D5-47C2-9FBB-65261C32C8E7}] => (Allow) C:\Program Files (x86)\baidu\BaiduAn\4.0.0.5166\BaiduAnBugRpt.exe
FirewallRules: [{E7F25DD3-7668-4B43-B33A-5A337C7424D1}] => (Allow) C:\Program Files (x86)\baidu\BaiduAn\4.0.0.5166\BaiduAnBugRpt.exe
FirewallRules: [{510AE628-3120-490C-95FE-4BF8F98B2DDA}] => (Allow) C:\Program Files (x86)\baidu\BaiduAn\4.0.0.5166\BaiduAnBugRpt.exe
FirewallRules: [{5FF8E8D1-FEF2-4340-8A17-4FD8E7DD1EC2}] => (Allow) C:\Program Files (x86)\baidu\BaiduAn\4.0.0.5166\BaiduAnBugRpt.exe
FirewallRules: [{2C21FB38-8091-418F-80E3-0321FBF5C737}] => (Allow) C:\Program Files (x86)\baidu\BaiduAn\4.0.0.5166\BaiduAnBugRpt.exe
FirewallRules: [{B9EE1A27-230C-461B-9DA7-C5FC01C9D70F}] => (Allow) C:\Program Files (x86)\baidu\BaiduAn\4.0.0.5166\BaiduAnBugRpt.exe
FirewallRules: [{28539BAF-9E3A-4389-82F7-BA61F60659EC}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\QQPCmgrInstallGuide.exe
FirewallRules: [{C3241337-BDF1-4175-888E-4A4602A9F20C}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\QQPCTray.exe
FirewallRules: [{AE032C2B-4A13-4E5A-B67C-BEC91E367EDE}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\QQPCMgr.exe
FirewallRules: [{CB1B18A5-F40D-44B7-A8AF-C5040D5F2860}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\QQPCRTP.exe
FirewallRules: [{681DA16C-FE3B-4D2F-B2B0-1D35F2A8CBF9}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\QMDL.exe
FirewallRules: [{37AF57B4-E420-45BF-AECB-4B499EB663E9}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\bugreport.exe
FirewallRules: [{33F3CFC7-FEEB-4BBB-9C60-70A77CC85086}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\QQPCFileOpen.exe
FirewallRules: [{048CF2BC-B7B4-4D5A-9089-B2EDF966BF1F}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\QQPCLeakScan.exe
FirewallRules: [{A6C8142D-DA6C-43FF-BD11-C48BD55F1963}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\QQPConfig.exe
FirewallRules: [{A5AC5327-8D11-4F6E-9430-A1300AE79012}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\QQPCSoftMgr.exe
FirewallRules: [{F3E29010-EBF6-4B26-80BD-10A3DCADE767}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\plugins\QMNetMon\QQPCNetFlow.exe
FirewallRules: [{259E821A-B3F4-4F83-BF7C-7D217BF7D4AE}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\QQPCBTU.exe
FirewallRules: [{F99248CF-790A-4E45-BD61-CF620F1F3486}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\QQPCClinic.exe
FirewallRules: [{F5AB799E-7C1F-48A3-9F1E-8D72B170DA13}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\QQPCLaunch.exe
FirewallRules: [{60CE84A2-6EAE-48EF-83DD-9A972717F0C2}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\QMUpdate\QQPCMgrUpdate.exe
FirewallRules: [{CDD2F7D2-05CF-4A4A-8337-DCC0ABF35012}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\QQPCSoftGame.exe
FirewallRules: [{9A9518A9-E672-494C-904D-90875DADEDDB}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\QQPCSysOptimize.exe
FirewallRules: [{9C361BD0-F010-46AE-8F84-56C50E5FFA2A}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\QQPCUpdateAVLib.exe
FirewallRules: [{929FA328-ED49-49F8-8E2E-B2A05FDDBA1A}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\QQRepair.exe
FirewallRules: [{87B5F6C5-8605-4F6C-8784-E7899318D494}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\Uninst.exe
FirewallRules: [{C6807486-4AAE-45BB-B02B-47AF5A1846F5}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\QQPCPatch.exe
FirewallRules: [{DBE99BEE-45D4-40AE-87A6-5E90338F6267}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\TpkUpdate.exe
FirewallRules: [{6EA9F814-31EC-4A82-8EB4-C135F4199DC4}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\QMRouterMgr.exe
FirewallRules: [{4BE8DE9A-8081-48FE-9D87-7E6570867266}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\QMAccountProtection.exe
FirewallRules: [{9001AAFF-BF6C-4217-830B-C9CC1E234743}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\130\tencentdl.exe
FirewallRules: [{91107747-30BF-4927-ABFF-41440EC7005A}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\130\bugreport_xf.exe

==================== Faulty Device Manager Devices =============

Name: Kontroler Ethernet
Description: Kontroler Ethernet
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Teredo Tunneling Pseudo-Interface
Description: Karta tunelowania Teredo firmy Microsoft
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Urządzenie PCI
Description: Urządzenie PCI
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Kontroler Uniwersalnej magistrali szeregowej (USB)
Description: Kontroler Uniwersalnej magistrali szeregowej (USB)
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (05/05/2015 04:29:14 PM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x00000000.

Error: (05/05/2015 04:29:14 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Wystąpił błąd aktywacji licencji (slui.exe), kod błędu: 
0x800401F9

Error: (05/05/2015 03:43:31 PM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x00000000.

Error: (05/05/2015 03:43:31 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Wystąpił błąd aktywacji licencji (slui.exe), kod błędu: 
0x800401F9

Error: (05/05/2015 01:45:15 PM) (Source: EventSystem) (EventID: 4621) (User: )
Description: 80070005EventSystem.EventSubscription{F55E4282-CE4F-4785-B5C8-29D60709F8AF}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}SENS Logon Subscription

Error: (05/05/2015 01:40:11 PM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x00000000.

Error: (05/05/2015 01:40:11 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Wystąpił błąd aktywacji licencji (slui.exe), kod błędu: 
0x800401F9

Error: (05/05/2015 11:45:00 AM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x00000000.

Error: (05/05/2015 11:45:00 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Wystąpił błąd aktywacji licencji (slui.exe), kod błędu: 
0x800401F9

Error: (05/05/2015 11:41:12 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Nie można utworzyć punktu przywracania (Proces = C:\Users\SYLWES~1\AppData\Local\Temp\_av_iup.tm~a02488\instup.exe  /edition:1 /ga_code:0x69c9b210ec5020e9 /prod:ais /sfx /sfxstorage:C:\Users\SYLWES~1\AppData\Local\Temp\_av_iup.tm~a02488; Opis = avast! antivirus system restore point; Błąd = 0x8007043c).


System errors:
=============
Error: (05/05/2015 04:32:00 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: Wywołanie ScRegSetValueExW dla Start nie powiodło się i wystąpił następujący błąd: 
%%5.

Error: (05/05/2015 04:31:50 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: Wywołanie ScRegSetValueExW dla Start nie powiodło się i wystąpił następujący błąd: 
%%5.

Error: (05/05/2015 04:30:38 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: 
cdrom

Error: (05/05/2015 04:29:56 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi Util Solution Real z powodu następującego błędu: 
%%2

Error: (05/05/2015 04:29:56 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi Update Solution Real z powodu następującego błędu: 
%%2

Error: (05/05/2015 04:29:56 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi ShopperPro Update z powodu następującego błędu: 
%%2

Error: (05/05/2015 04:29:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi IHProtect Service z powodu następującego błędu: 
%%2

Error: (05/05/2015 04:29:51 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Supporter.

Error: (05/05/2015 04:29:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi WindowsMangerProtect Service z powodu następującego błędu: 
%%2

Error: (05/05/2015 04:29:05 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Poprzednie zamknięcie systemu przy 16:27:39 na ‎2015-‎05-‎05 było nieoczekiwane.


Microsoft Office Sessions:
=========================
Error: (05/05/2015 04:29:14 PM) (Source: Winlogon) (EventID: 4103) (User: )
Description: 0x000000000x00000001

Error: (05/05/2015 04:29:14 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: 0x800401F9

Error: (05/05/2015 03:43:31 PM) (Source: Winlogon) (EventID: 4103) (User: )
Description: 0x000000000x00000001

Error: (05/05/2015 03:43:31 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: 0x800401F9

Error: (05/05/2015 01:45:15 PM) (Source: EventSystem) (EventID: 4621) (User: )
Description: 80070005EventSystem.EventSubscription{F55E4282-CE4F-4785-B5C8-29D60709F8AF}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}SENS Logon Subscription

Error: (05/05/2015 01:40:11 PM) (Source: Winlogon) (EventID: 4103) (User: )
Description: 0x000000000x00000001

Error: (05/05/2015 01:40:11 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: 0x800401F9

Error: (05/05/2015 11:45:00 AM) (Source: Winlogon) (EventID: 4103) (User: )
Description: 0x000000000x00000001

Error: (05/05/2015 11:45:00 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: 0x800401F9

Error: (05/05/2015 11:41:12 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: C:\Users\SYLWES~1\AppData\Local\Temp\_av_iup.tm~a02488\instup.exe  /edition:1 /ga_code:0x69c9b210ec5020e9 /prod:ais /sfx /sfxstorage:C:\Users\SYLWES~1\AppData\Local\Temp\_av_iup.tm~a02488avast! antivirus system restore point0x8007043c


CodeIntegrity Errors:
===================================
  Date: 2015-05-05 16:40:32.006
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-05-05 16:29:07.086
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-05-05 15:43:18.213
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-05-05 13:38:40.702
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-05-05 12:55:01.292
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-05-05 12:31:57.679
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-05-05 12:08:42.502
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-05-05 11:56:23.252
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-05-05 11:44:53.714
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-05-05 11:29:22.172
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-4210H CPU @ 2.90GHz
Percentage of memory in use: 55%
Total physical RAM: 4012.36 MB
Available physical RAM: 1781.11 MB
Total Pagefile: 8022.86 MB
Available Pagefile: 5527.37 MB
Total Virtual: 8192 MB
Available Virtual: 8191.79 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.53 GB) (Free:783.99 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: D9FA2484)
Partition 1: (Active) - (Size=1000 MB) - (Type=0B)
Partition 2: (Not Active) - (Size=930.5 GB) - (Type=07 NTFS)

==================== End Of Log ============================