Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-03-2017
Ran by Wojtelllo (06-04-2017 18:02:54)
Running from C:\Users\Wojtelllo\Downloads
Windows 8.1 (Update) (X64) (2015-10-12 18:19:27)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1181477252-4154694367-2884869693-500 - Administrator - Enabled) => C:\Users\Administrator
ASPNET (S-1-5-21-1181477252-4154694367-2884869693-1005 - Limited - Enabled)
Guest (S-1-5-21-1181477252-4154694367-2884869693-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1181477252-4154694367-2884869693-1004 - Limited - Enabled)
Wojtelllo (S-1-5-21-1181477252-4154694367-2884869693-1002 - Administrator - Enabled) => C:\Users\Wojtelllo

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Bitdefender Ochrona antywirusowa (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Antyszpieg (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Bitdefender Zapora sieciowa (Enabled) {A23392FD-84B9-F933-2C71-81E751F6EF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

4K YouTube to MP3 3.0 (HKLM-x32\...\4K YouTube to MP3_is1) (Version: 3.0.0.1616 - Open Media LLC)
Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 15.023.20070 - Adobe Systems Incorporated)
Adobe Digital Editions 3.0 (HKLM-x32\...\Adobe Digital Editions 3.0) (Version: 3.0.1 - Adobe Systems Incorporated)
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.127 - Adobe Systems Incorporated)
Advertising Center (x32 Version: 0.0.0.1 - Nero AG) Hidden
AIMP3 (HKLM-x32\...\AIMP3) (Version: v3.60.1497, 15.07.2015 - AIMP DevTeam)
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 20.2.1245.53580 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 20.2.1245.53580 - Alcor Micro Corp.) Hidden
ALLPlayer Remote Control (HKLM-x32\...\{146BDBDD-ACD9-4B04-A286-C27471841E8E}_is1) (Version: 1.2 - ALLPlayer Group, Ltd.)
ALLPlayer V6.X (HKLM-x32\...\ALLPlayer_is1) (Version:  - ALLPlayer Group, Ltd.)
Ashampoo WinOptimizer 2014 v.1.0.0 (HKLM-x32\...\{4209F371-99CD-68CB-1C29-9910F8F9BD96}_is1) (Version: 1.0.0 - Ashampoo GmbH & Co. KG)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Benutzerhandbuch (x32 Version: 1.0.0.15 - Lenovo) Hidden
BitComet 1.40 (HKLM-x32\...\BitComet) (Version: 1.40 - CometNetwork)
Bitdefender Total Security 2015 (HKLM\...\Bitdefender) (Version: 18.14.0.1088 - Bitdefender)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: 1.5.1.4 - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.4.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.5.14 - Canon Inc.)
Canon MX530 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX530_series) (Version: 1.01 - Canon Inc.)
Canon MX530 series On-screen Manual (HKLM-x32\...\Canon MX530 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Canon MX530 series User Registration (HKLM-x32\...\Canon MX530 series User Registration) (Version:  - ‭Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.2.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.7.0 - Canon Inc.)
Canon Speed Dial Utility (HKLM-x32\...\Speed Dial Utility) (Version: 1.4.0 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.12 - Piriform)
ChomikBox (HKLM-x32\...\{C7B52FAF-58D8-438C-B810-F78C3C927504}) (Version: 2.0.8.0 - Chomikuj.pl)
ClickOnceSetup (HKU\S-1-5-21-1181477252-4154694367-2884869693-1002\...\5b017c06d007acff) (Version: 1.0.0.0 - ClickOnceSetup)
Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.8000.17 - Dolby Laboratories Inc)
Dropbox (HKLM-x32\...\Dropbox) (Version: 22.4.24 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.59.1 - Dropbox, Inc.) Hidden
Efficient Sticky Notes 5.0 (HKLM-x32\...\Efficient Sticky Notes_is1) (Version:  - Efficient Software)
Energy Manager (HKLM-x32\...\InstallShield_{AC768037-7079-4658-AC24-2897650E0ABE}) (Version: 1.0.0.28 - Lenovo)
Energy Manager (x32 Version: 1.0.0.28 - Lenovo) Hidden
e-pity 6.2 za rok 2014 (HKLM-x32\...\{80D8170E-5590-218-B9ED-E24E4C99A18C}_is1) (Version:  - e-file sp. z o.o.)
e-pity 7.0.22 za rok 2015 (HKLM-x32\...\{80D8170E-5590-218-B9ED-E24E4C99A18D}_is1) (Version: 7.0.22 - e-file sp. z o.o.)
Free Download Manager (HKLM\...\{43781dff-e0df-49ce-a6d2-47da96a485e7}}_is1) (Version:  - FreeDownloadManager.ORG)
Free Hide IP (HKLM-x32\...\FreeHideIP) (Version: 4.1.1.6 - )
GameRanger (HKU\S-1-5-21-1181477252-4154694367-2884869693-1002\...\GameRanger) (Version:  - GameRanger Technologies)
GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 57.0.2987.133 - Google Inc.)
Google Drive (HKLM-x32\...\{A1238426-ECDF-4639-BE2F-8D12A97AE23C}) (Version: 2.34.5075.1619 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Huawei E3272 (HKLM-x32\...\Huawei E3272) (Version: 22.001.22.00.1202 - Huawei Technologies Co.,Ltd)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6486.0 - IDT)
IL-2 Sturmovik 1946 (HKLM-x32\...\{FD2661A4-B9E9-4457-8E7E-3C512DC131A6}) (Version: 4.11.1 - Ubisoft)
Intel AppUp(SM) center (HKLM-x32\...\Intel AppUp(SM) center 33057) (Version: 3.6.1.33057.10 - Intel)
Intel Collaborative Processor Performance Control (HKLM-x32\...\0E7DAF70-FB54-4B91-B192-7E771C25AEEB) (Version: 1.0.0.1010 - Intel Corporation)
Intel(R) Driver Update Utility 2.5 (x32 Version: 2.5.0.22 - Intel) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.10.1372 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4264 - Intel Corporation)
Intel(R) Product Improvement Program (x32 Version: 2.1.27.3 - Intel) Hidden
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{444400C1-6BDF-4FD1-1306-148929CC1385}) (Version: 3.0.1306.0342 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.6.0.1033 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.66956 - Intel Corporation)
Intel® Driver Update Utility (HKLM-x32\...\{aa1dec3b-dc4b-4db0-8c18-9157457eff1f}) (Version: 2.5.0.22 - Intel)
Intel® PROSet/Wireless Software (HKLM-x32\...\{d5572863-793c-4ec8-872a-43cccc68b948}) (Version: 18.40.0 - Intel Corporation)
Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
L.A.Noire (HKLM-x32\...\L.A.Noire_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, spider91)
Lenovo Bluetooth with Enhanced Data Rate Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.7000 - Broadcom Corporation)
Lenovo EasyCamera (HKLM-x32\...\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}) (Version: 3.13.531.1 - Vimicro)
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.1219 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 8.0.0.1219 - CyberLink Corp.) Hidden
Lenovo Photos (HKLM-x32\...\Lenovo Photos) (Version: 4.8.5 - CEWE COLOR AG u Co. OHG)
Lenovo PowerDVD10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5108.52 - CyberLink Corp.)
Lenovo PowerDVD10 (x32 Version: 10.0.5108.52 - CyberLink Corp.) Hidden
Lenovo Service Bridge (HKU\S-1-5-21-1181477252-4154694367-2884869693-1002\...\cbe8636f7dd0cf1d) (Version: 1.4.0.0 - Lenovo)
Lenovo VeriFace (HKLM\...\Lenovo VeriFace) (Version: 5.0.13.5261 - Lenovo)
Lenovo YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 4.1.3423 - CyberLink Corp.)
Lenovo YouCam (x32 Version: 4.1.3423 - CyberLink Corp.) Hidden
Lenovo_Wireless_Driver (HKLM-x32\...\{5D642A72-8194-4A22-80DA-11FE610CCA8E}) (Version: 6.30.223.75 - Lenovo)
LibreOffice 4.4.4.3 (HKLM-x32\...\{5B6D82BB-CC1A-431E-8991-3E57855F99C5}) (Version: 4.4.4.3 - The Document Foundation)
Mafia III (HKLM\...\Steam App 360430) (Version:  - Hangar 13)
Manager (x32 Version: 5.0.15.31893 - 2017 pdfforge GmbH. All rights reserved) Hidden
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.163.2 - McAfee, Inc.)
MEGAsync (HKLM-x32\...\MEGAsync) (Version:  - Mega Limited)
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProplusRetail - en-us) (Version: 16.0.7967.2035 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - pl-pl (HKLM\...\ProplusRetail - pl-pl) (Version: 16.0.7967.2035 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1181477252-4154694367-2884869693-1002\...\OneDriveSetup.exe) (Version: 17.3.6798.0207 - Microsoft Corporation)
Microsoft Project Professional 2016 - en-us (HKLM\...\ProjectProRetail - en-us) (Version: 16.0.7967.2035 - Microsoft Corporation)
Microsoft Project Professional 2016 - pl-pl (HKLM\...\ProjectProRetail - pl-pl) (Version: 16.0.7967.2035 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50905.0 - Microsoft Corporation)
Microsoft Visio Professional 2016 - en-us (HKLM\...\VisioProRetail - en-us) (Version: 16.0.7967.2035 - Microsoft Corporation)
Microsoft Visio Professional 2016 - pl-pl (HKLM\...\VisioProRetail - pl-pl) (Version: 16.0.7967.2035 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24210 (HKLM-x32\...\{23658c02-145e-483d-ba6b-1eb82c580529}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual J# .NET Redistributable Package 1.1 (HKLM-x32\...\{1A655D51-1423-48A3-B748-8F5A0BE294C8}) (Version: 1.1.4322 - Microsoft)
Mozilla Firefox 52.0.2 (x86 pl) (HKLM-x32\...\Mozilla Firefox 52.0.2 (x86 pl)) (Version: 52.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 52.0.2.6291 - Mozilla)
My WIFI Router (HKLM-x32\...\My WIFI Router) (Version: 3.0.064-1201-001 - TxNetwork, Inc.)
Napisy24 (HKLM-x32\...\{D1985DBC-F09E-4317-91B8-932AD0FD4A27}_is1) (Version: 1.2 - Napisy24.pl)
Nero 9 Essentials (HKLM-x32\...\{65334fb2-ec89-4528-aea9-08fa35cbf8b5}) (Version:  - Nero AG)
Nitro Pro 8 (HKLM\...\{34BE77EE-B563-49D7-A8A0-FFD76D29BBD3}) (Version: 8.0.10.7 - Nitro)
NVIDIA GeForce Experience 2.5.12.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.12.11 - NVIDIA Corporation)
NVIDIA Graphics Driver 327.62 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 327.62 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.13.0604 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0604 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7967.2030 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.7927.1012 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7967.2030 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7927.1012 - Microsoft Corporation) Hidden
Onekey Theater (HKLM-x32\...\{91CC5BAE-A098-40D3-A43B-C0DC7CE263FE}) (Version: 3.0.1.2 - Lenovo)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 10.4.5.30491 - Electronic Arts, Inc.)
PDF Architect 5 (HKLM-x32\...\PDF Architect 5) (Version: 5.0.10.31638 - pdfforge GmbH)
PDF Architect 5 Create Module (Version: 5.0.22.32126 - pdfforge GmbH) Hidden
PDF Architect 5 Edit Module (Version: 5.0.22.32126 - pdfforge GmbH) Hidden
PDF Architect 5 View Module (Version: 5.0.22.32126 - pdfforge GmbH) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.5.0 - pdfforge GmbH)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.)
PIT Format 2015 (HKLM-x32\...\PIT Format 2015_is1) (Version:  - Biuro Informatyki Stosowanej FORMAT)
PIT Projekt 2015 (HKLM-x32\...\{84052AB1-4B83-4C93-9ED7-31F4DAEA50E8}}_is1) (Version: 4.1.7 - GP SOFT)
PLAY INTERNET (HKLM-x32\...\PLAY INTERNET) (Version: 23.015.05.05.264 - Huawei Technologies Co.,Ltd)
Reg Organizer version 6.0 (HKLM-x32\...\Reg Organizer_is1) (Version: 6.0 - ChemTable Software)
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.15075.2 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.6.3.15075.2 - Samsung Electronics Co., Ltd.) Hidden
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.55.0 - Samsung Electronics Co., Ltd.)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.12.11 - NVIDIA Corporation) Hidden
Sid Meier's Civilization V (HKLM\...\Steam App 8930) (Version:  - Firaxis Games)
Sid Meier's Civilization V (HKLM-x32\...\steam app 8930) (Version:  - 2K Games, Inc.)
SimCity 4 Deluxe (HKLM-x32\...\{3F0D0ABE-CDAF-431A-00BC-CBBE018EA74E}) (Version:  - )
SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 4.0.98.0213 - Electronic Arts)
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.)
StarCraft II Legacy of the Void (HKLM\...\U3RhckNyYWZ0SUk=_is1) (Version: 1 - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SugarSync Manager (HKLM-x32\...\SugarSync) (Version: 1.9.61.90905 - SugarSync, Inc.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.6.4.19 - Synaptics Incorporated)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
The Sims 4 (HKLM-x32\...\VGhlU2ltczQ=_is1) (Version: 1 - )
Total War: WARHAMMER (HKLM\...\Steam App 364360) (Version:  - Creative Assembly)
Unity Web Player (HKU\S-1-5-21-1181477252-4154694367-2884869693-1002\...\UnityWebPlayer) (Version: 5.3.6f1 - Unity Technologies ApS)
Universal Extractor 1.6.1 (HKLM-x32\...\Universal Extractor_is1) (Version: 1.6.1 - Jared Breland)
UserGuide (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.15 - Lenovo)
Video Download Capture version 5.0.9 (HKLM-x32\...\{3C9D008D-3716-4C3F-90CD-38ED57568FAB}_is1) (Version: 5.0.9 - APOWERSOFT LIMITED)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
War Thunder Launcher 1.0.1.714 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version:  - Gaijin Entertainment)
Windows-Treiberpaket - Lenovo (ACPIVPC) System  (02/17/2013 9.52.0.776) (HKLM\...\35DD26BE48DAF4A9F35F969F3CB1E3E1435E661E) (Version: 02/17/2013 9.52.0.776 - Lenovo)
Windows-Treiberpaket - Lenovo (WUDFRd) LenovoVhid  (06/19/2012 10.13.29.733) (HKLM\...\8A223E56FB1ED4F697B54E5BF96F1EB63B512684) (Version: 06/19/2012 10.13.29.733 - Lenovo)
WinRAR 5.21 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
World of Warships (HKU\S-1-5-21-1181477252-4154694367-2884869693-1002\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version:  - Wargaming.net)
Zeus and Possjdon (HKLM-x32\...\Zeus and Possjdon) (Version:  - )

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1181477252-4154694367-2884869693-1002_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\Wojtelllo\AppData\Local\Microsoft\OneDrive\17.3.6798.0207\amd64\FileCoAuthLib64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1181477252-4154694367-2884869693-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {14B704BA-04BC-4B4B-9348-B6185E2F2777} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {388737D7-8B15-4350-BB1E-C425A6FB4B01} - System32\Tasks\Dolby Selector => C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [2012-08-31] (Dolby Laboratories Inc.)
Task: {3E9D1B71-B4FC-4BD1-8FE7-850516F49472} - System32\Tasks\{65B408D7-E016-4A51-8029-2502A513FB90} => pcalua.exe -a "C:\Gry\Cod 2\cod2mp_s.exe" -d "C:\Gry\Cod 2\"
Task: {46186AF7-0515-4C43-8630-5287D2F1BC51} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-1181477252-4154694367-2884869693-1002 => Rundll32.exe dfshim.dll,ShOpenVerbShortcut C:\Users\Wojtelllo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo\Lenovo Service Bridge.appref-ms
Task: {476260F4-F2CF-4B2A-8EEC-759ADFD627C0} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [2016-03-17] (Intel Corporation)
Task: {4C5D56EA-E856-4E13-B7A2-48C4688981AF} - System32\Tasks\USER_ESRV_SVC_WILLAMETTE => Wscript.exe //B //NoLogo "C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\task.vbs"
Task: {4CBC3BFF-2D17-47E3-BA1F-5E64A609ACC1} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-03-23] (Microsoft Corporation)
Task: {4FC945E8-FF1E-4E56-B168-BD41C2ED8D95} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-04-06] (Microsoft Corporation)
Task: {66E602CA-1E55-42AE-89CC-07F21D185BC1} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-03-14] (Adobe Systems Incorporated)
Task: {79241630-3161-47DD-AB5E-472EA9368D9D} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-05] (Dropbox, Inc.)
Task: {8B3D0145-272D-4DC1-A472-0BE082AE0BB4} - System32\Tasks\{FBACF594-1B01-431E-B012-DFC601346984} => pcalua.exe -a "C:\ProgramData\Battle.net\Agent\Blizzard Uninstaller.exe" -c --lang=plPL --uid=diablo3_plpl --displayname="Diablo III"
Task: {9A705CC4-7392-4C28-B82F-E930C83E144F} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-05] (Dropbox, Inc.)
Task: {9E1F48D3-002A-469C-817D-191D00599917} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-29] (Google Inc.)
Task: {9F2EDAE5-693B-4E6F-9343-F76A3E69DD13} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-29] (Google Inc.)
Task: {A2DEB551-6A50-4A5C-8AC9-A4601ABF5A67} - System32\Tasks\{B598CE26-ED1B-4440-A6C0-76630BDE2D3A} => Chrome.exe hxxp://ui.skype.com/ui/0/7.23.0.105/pl/abandoninstall?page=tsMain
Task: {A91BA2C8-1FCD-42E9-A05C-4F24F831C567} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-11-16] (Piriform Ltd)
Task: {B2E36455-1862-476A-9144-37A44B7F6861} - System32\Tasks\{5B9E9F92-C857-4EA3-A57A-2D0F1C882A01} => Chrome.exe hxxp://ui.skype.com/ui/0/7.12.0.101/pl/abandoninstall?source=lightinstaller&amp;page=tsBing
Task: {B468118D-CEF2-428A-B398-D9C9112FF742} - System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 => C:\Program Files\Bitdefender\Bitdefender 2015\bdproductdata.exe [2015-07-29] (Bitdefender)
Task: {C262D4BC-DE9A-49F9-BBB0-7FC86D47790C} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-03-23] (Microsoft Corporation)
Task: {C275A89C-01DD-4DB2-821A-3A5B27A9FCBA} - System32\Tasks\{B0EC5D5E-E7C4-40A2-8B0A-A3F290BDB358} => pcalua.exe -a F:\setup.exe -d F:\
Task: {CF47A8D9-84AD-42CE-96CB-3E8B9062F4EA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-04-06] (Microsoft Corporation)
Task: {E3CDF7DA-CF26-4D9B-9B41-EF4D6C89EC0A} - System32\Tasks\RegOrganizerQuickLaunch => C:\Program Files (x86)\Reg Organizer\RegOrganizer.exe -RegistryEditor -ForceForeground -NoSplash

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Software Deals.lnk -> C:\ProgramData\Ashampoo\YourDeals.exe () -> hxxp://linktarget.ashampoo.com/linktarget/?target=marketplace&edition=eid=15300&utm_medium=desktop&x-pos=Metro

==================== Loaded Modules (Whitelisted) ==============

2015-07-29 21:45 - 2015-07-29 23:01 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\txmlutil.dll
2015-07-29 21:45 - 2013-09-03 14:29 - 00101328 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdmetrics.dll
2015-07-29 21:45 - 2014-09-04 15:24 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\UI\accessl.ui
2015-07-29 21:45 - 2012-10-29 14:22 - 00152816 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdfwcore.dll
2017-02-28 14:02 - 2017-02-28 14:02 - 01008448 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_02451_016\ashttpbr.mdl
2017-02-28 14:02 - 2017-02-28 14:03 - 00541952 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_02451_016\ashttpdsp.mdl
2017-02-28 14:02 - 2017-02-28 14:03 - 03243920 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_02451_016\ashttpph.mdl
2017-02-28 14:02 - 2017-02-28 14:03 - 01544568 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_02451_016\ashttprbl.mdl
2017-02-28 14:02 - 2017-02-28 14:03 - 03654344 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_02451_016\ashttpf.mdl
2013-05-28 16:55 - 2013-05-28 16:55 - 00049368 _____ () C:\Program Files\Lenovo\Bluetooth Software\btwleapi.dll
2016-02-27 00:42 - 2013-12-03 08:09 - 00240720 _____ () C:\ProgramData\MobileBrServ\mbbservice.exe
2014-01-15 05:42 - 2014-01-15 05:42 - 00351824 _____ () C:\ProgramData\DatacardService\HWDeviceService64.exe
2014-11-18 04:59 - 2014-11-18 04:59 - 00047464 _____ () C:\Program Files (x86)\Wi-Fi\WiFiGxSvc.exe
2015-07-28 22:58 - 2013-10-26 11:45 - 00651856 _____ () C:\ProgramData\PLAY INTERNET\OnlineUpdate\ouc.exe
2015-07-29 21:45 - 2013-03-25 15:16 - 01117920 _____ () C:\Program Files\Bitdefender\Bitdefender SafeBox\System.Data.SQLite.dll
2013-09-02 21:21 - 2013-09-02 21:21 - 00068368 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe
2013-09-02 21:21 - 2013-09-02 21:21 - 00669288 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfDataStorageInterface.dll
2015-08-09 04:50 - 2015-08-09 04:50 - 00404376 _____ () C:\WINDOWS\system32\igfxTray.exe
2016-06-23 22:46 - 2016-03-09 20:43 - 00460952 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv.exe
2016-06-23 22:46 - 2016-03-09 20:43 - 00709272 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_modeler.dll
2016-06-23 22:46 - 2016-03-09 20:43 - 00188568 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\foreground_window_input.dll
2016-06-23 22:46 - 2016-03-09 20:43 - 00416408 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
2016-06-23 22:46 - 2016-03-09 20:43 - 00130712 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_process_input.dll
2016-06-23 22:46 - 2016-03-09 20:43 - 00025752 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_system_power_state_input.dll
2016-06-23 22:46 - 2016-03-09 20:43 - 00059544 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_quality_and_reliability_input.dll
2016-06-23 22:46 - 2016-03-09 20:43 - 00194712 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\acpi_battery_input.dll
2016-06-23 22:46 - 2016-03-09 20:43 - 00159896 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\sema_thermal_input.dll
2016-06-23 22:46 - 2016-03-09 20:43 - 00158360 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\wifi_input.dll
2016-06-23 22:46 - 2016-03-09 20:43 - 00050840 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\devices_use_input.dll
2016-06-23 22:46 - 2016-03-09 20:43 - 00032920 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_disktrace_input.dll
2017-04-06 17:54 - 2017-03-29 10:47 - 02885464 _____ () C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\libglesv2.dll
2017-04-06 17:54 - 2017-03-29 10:47 - 00099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\libegl.dll
2015-08-09 04:52 - 2015-08-09 04:52 - 17973744 _____ () C:\WINDOWS\SYSTEM32\igd11dxva64.dll
2017-02-06 23:23 - 2017-01-20 18:43 - 00997576 _____ () C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\browsernativehost.exe
2016-08-21 11:45 - 2016-08-21 11:44 - 01270248 _____ () C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 2014\unins000.exe
2017-04-06 17:54 - 2016-08-21 11:44 - 01270248 ____N () C:\Users\Wojtelllo\AppData\Local\Temp\_iu14D2N.tmp
2015-07-28 22:58 - 2013-08-31 07:44 - 02417152 _____ () C:\ProgramData\PLAY INTERNET\OnlineUpdate\QtCore4.dll
2015-07-28 22:58 - 2013-08-31 07:46 - 01148416 _____ () C:\ProgramData\PLAY INTERNET\OnlineUpdate\QtNetwork4.dll
2015-07-28 22:58 - 2009-01-10 20:32 - 00011362 _____ () C:\ProgramData\PLAY INTERNET\OnlineUpdate\mingwm10.dll
2015-07-28 22:58 - 2009-06-23 04:42 - 00043008 _____ () C:\ProgramData\PLAY INTERNET\OnlineUpdate\libgcc_s_dw2-1.dll
2013-09-02 21:01 - 2013-05-17 01:06 - 01199576 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-12-05 13:49 - 2014-12-05 13:49 - 04374016 _____ () C:\WINDOWS\SYSTEM32\ffdshow.ax

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Administrator\Downloads\XperiaCompanion.exe:BDU [0]
AlternateDataStreams: C:\Users\Wojtelllo\Desktop\ChromeSetup.exe:BDU [0]
AlternateDataStreams: C:\Users\Wojtelllo\Downloads\adwcleaner_6.045.exe:BDU [0]
AlternateDataStreams: C:\Users\Wojtelllo\Downloads\ashampoo_winoptimizer_2014_1.0.0_15300.exe:BDU [0]
AlternateDataStreams: C:\Users\Wojtelllo\Downloads\Detection.exe:BDU [0]
AlternateDataStreams: C:\Users\Wojtelllo\Downloads\fdm5_x64_setup.exe:BDU [0]
AlternateDataStreams: C:\Users\Wojtelllo\Downloads\Firefox Setup Stub 48.0.2.exe:BDU [0]
AlternateDataStreams: C:\Users\Wojtelllo\Downloads\FRST.exe:BDU [0]
AlternateDataStreams: C:\Users\Wojtelllo\Downloads\FRST64.exe:BDU [0]
AlternateDataStreams: C:\Users\Wojtelllo\Downloads\Intel Driver Update Utility Installer.exe:BDU [0]
AlternateDataStreams: C:\Users\Wojtelllo\Downloads\MEGAsyncSetup.exe:BDU [0]
AlternateDataStreams: C:\Users\Wojtelllo\Downloads\OriginThinSetup.exe:BDU [0]
AlternateDataStreams: C:\Users\Wojtelllo\Downloads\PDFCreator-2_5_0-Setup.exe:BDU [0]
AlternateDataStreams: C:\Users\Wojtelllo\Downloads\PitProjekt2015Setup.exe:BDU [0]
AlternateDataStreams: C:\Users\Wojtelllo\Downloads\qm__-win-2_7_0-ea31_2.exe:BDU [0]
AlternateDataStreams: C:\Users\Wojtelllo\Downloads\RegOrganizer6.exe:BDU [0]
AlternateDataStreams: C:\Users\Wojtelllo\Downloads\SkypeSetupFull.exe:BDU [0]
AlternateDataStreams: C:\Users\Wojtelllo\Downloads\TATW_3.0_Part1of2.exe:BDU [0]
AlternateDataStreams: C:\Users\Wojtelllo\Downloads\UnityWebPlayer.exe:BDU [0]
AlternateDataStreams: C:\Users\Wojtelllo\Downloads\Universal-USB-Installer-1.9.7.0.exe:BDU [0]
AlternateDataStreams: C:\Users\Wojtelllo\Downloads\win-mx530-1_1-mcd (1).exe:BDU [0]
AlternateDataStreams: C:\Users\Wojtelllo\Downloads\win-mx530-1_1-mcd.exe:BDU [0]
AlternateDataStreams: C:\Users\Wojtelllo\Downloads\wt_launcher_1.0.1.702 (1).exe:BDU [0]
AlternateDataStreams: C:\Users\Wojtelllo\Downloads\wt_launcher_1.0.1.702 (2).exe:BDU [0]
AlternateDataStreams: C:\Users\Wojtelllo\Downloads\wt_launcher_1.0.1.702.exe:BDU [0]
AlternateDataStreams: C:\Users\Wojtelllo\Downloads\wt_launcher_1.0.1.714.exe:BDU [0]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2012-07-26 07:26 - 2015-10-10 14:45 - 00000856 ____A C:\WINDOWS\system32\Drivers\etc\hosts

0.0.0.1	mssplus.mcafee.com

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1181477252-4154694367-2884869693-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Wojtelllo\AppData\Roaming\Microsoft\Windows Photo Viewer\Windows Photo Viewer Wallpaper.jpg
DNS Servers: 153.19.1.254 - 153.19.250.100
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

HKLM\...\StartupApproved\StartupFolder: => "Bluetooth.lnk"
HKLM\...\StartupApproved\StartupFolder: => "McAfee Security Scan Plus.lnk"
HKLM\...\StartupApproved\Run: => "Connectify Hotspot"
HKLM\...\StartupApproved\Run: => "BTMTrayAgent"
HKLM\...\StartupApproved\Run32: => "YouCam Tray"
HKLM\...\StartupApproved\Run32: => "RemoteControl10"
HKLM\...\StartupApproved\Run32: => "KiesTrayAgent"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "IJNetworkScannerSelectorEX"
HKLM\...\StartupApproved\Run32: => "CanonQuickMenu"
HKU\S-1-5-21-1181477252-4154694367-2884869693-1002\...\StartupApproved\Run: => "ALLUpdate"
HKU\S-1-5-21-1181477252-4154694367-2884869693-1002\...\StartupApproved\Run: => "ALLPlayer WiFi Remote"
HKU\S-1-5-21-1181477252-4154694367-2884869693-1002\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-1181477252-4154694367-2884869693-1002\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1181477252-4154694367-2884869693-1002\...\StartupApproved\Run: => "Free Download Manager"
HKU\S-1-5-21-1181477252-4154694367-2884869693-1002\...\StartupApproved\Run: => "Gaijin.Net Agent"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{04FA00BA-2BB8-475C-BFC7-930D600F2119}] => (Allow) C:\Program Files (x86)\BitComet\BitComet.exe
FirewallRules: [{B79A8E83-1593-49EE-983D-E47D112DC915}] => (Allow) C:\Program Files (x86)\BitComet\BitComet.exe
FirewallRules: [{16445244-9474-4A7B-899A-BEA4F200145D}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{5DEABA3B-2978-4AEB-A0B4-609AE0DD3D71}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{0094E076-0D0A-41AE-9E1C-5E2A39CF128B}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{AE6B200C-FA19-4B4E-9C47-FA9DE1AFF2E7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{441C70F7-365F-48E9-AB6A-4AA4AB385B1B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{B1084278-330D-4FE5-971A-3D622980635E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{4AB4EB11-B41A-4F83-8772-2EB63A567CF0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{8EB23F0C-95AB-4DC6-9039-548D41683E9D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{2953AA7B-0479-4BBB-96F0-CCD3AFFC085D}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{91C3AA27-4D21-4395-A624-44BC85573E3E}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{F855D2D3-ED65-4419-94EA-837D536BB4DE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{F2662C13-E0D9-40C9-B1A1-AFAB7513B32D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{E33D8B67-FE0A-4283-B1BE-42358B2D33B4}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{6380B614-417D-493A-A718-6A9A9FEEB590}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{104236E9-B2A7-47DF-8F47-8B712D87E677}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\Video Download Capture.exe
FirewallRules: [{A5F385E7-31DE-4142-ADE9-087F2A78AE99}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\Video Download Capture.exe
FirewallRules: [{72F6A007-07C9-4B22-95EB-587BD5E683E6}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftSrv.dll
FirewallRules: [{AA598152-A3C5-4C47-B9BB-E67AF2B14C62}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftSrv.dll
FirewallRules: [{EFF41DEB-EEBB-40A5-A970-D90F5E10289E}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDump.dll
FirewallRules: [{BC0D9C17-D445-4FBA-A1C3-C34C83C377D4}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDump.dll
FirewallRules: [{10CF468B-D193-4D22-8769-33315B48B6E9}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftAC.dll
FirewallRules: [{72384AAC-5DB0-4D51-B84E-779429589E39}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftAC.dll
FirewallRules: [{017F42FE-C007-4034-86AA-FC65AD342FAC}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftPlayer.dll
FirewallRules: [{95BD98B6-3373-4E54-B089-1BA1A4FECDFD}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftPlayer.dll
FirewallRules: [{3951AA2B-3D48-451D-9CFC-606B07BE84FB}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll
FirewallRules: [{90DB0126-7810-4D89-9526-46C1CCB426B1}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll
FirewallRules: [{9F2E5543-1DB8-49FE-A6B4-E0A54F7C6C3B}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll
FirewallRules: [{509C9E99-E135-4A1C-9AE8-8B376D625EB8}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll
FirewallRules: [{FDDA0AA9-8AFA-4052-883C-6D61CFA4CB58}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{2EAA49C6-5913-481F-AA4D-394D3876A06A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{C0760C8F-C513-4F23-BBA7-7DF10F16020F}] => (Allow) C:\Users\Wojtelllo\AppData\Local\Microsoft\OneDrive\OneDrive.exe
FirewallRules: [{66010CF5-270B-4154-8443-82231566E796}] => (Allow) C:\Gry\StarCraft II\Versions\Base38996\SC2.exe
FirewallRules: [{D3414C72-6D88-464E-81E0-8C560733548B}] => (Allow) C:\Gry\StarCraft II\Versions\Base38996\SC2.exe
FirewallRules: [{DA77BBF0-8AD0-428F-80C0-9C001EF87EFB}] => (Allow) C:\Program Files (x86)\Wi-Fi\Wi-Fi.exe
FirewallRules: [TCP Query User{4EA3EA7D-D8DF-4A7D-8991-11F2B1C80F01}C:\program files (x86)\diablo iii\diablo iii.exe] => (Block) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{BBA6F8E5-9FCD-4B54-9C72-1469F73F1DCB}C:\program files (x86)\diablo iii\diablo iii.exe] => (Block) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [{E704F865-C4E8-4802-9FB1-38D1E50CF6C3}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{A83B35D3-8401-4B0F-9C31-BE52992DE351}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe
FirewallRules: [{9FDC999F-7CAC-41F0-BD71-D9C7A7F22533}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe
FirewallRules: [{575079FC-D816-4AC2-A7DA-B2B076129CE1}] => (Allow) C:\Games\World_of_Warships\worldofwarships.exe
FirewallRules: [{7CB21866-725E-4576-A183-FD09AA0186E1}] => (Allow) C:\Games\World_of_Warships\worldofwarships.exe
FirewallRules: [{6BF683F9-29E1-4296-A8E7-07BDDBDB6955}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{E8CEE308-4220-4A53-B126-0EE627888C6B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{10FD2A78-927E-4FB3-B52B-679B54CACB9C}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{CF076487-3D1E-4E90-A42C-62523A90E70B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dragon Age Origins\bin_ship\daupdatersvc.service.exe
FirewallRules: [{0084F21F-F9C0-450F-AB90-E42959B56CC3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dragon Age Origins\bin_ship\daupdatersvc.service.exe
FirewallRules: [TCP Query User{33555A5E-8199-4739-B007-1A0167B3733D}C:\program files (x86)\steam\steamapps\common\total war warhammer\warhammer.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\total war warhammer\warhammer.exe
FirewallRules: [UDP Query User{DC0D84B1-9FA7-45BF-B067-C7991B0AAF48}C:\program files (x86)\steam\steamapps\common\total war warhammer\warhammer.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\total war warhammer\warhammer.exe
FirewallRules: [{F96A0DEC-89D2-44EA-ABE8-D4DC56512D30}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{0690F54D-8E9A-4172-B311-ADAEFD04ADC7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{A1586B83-B0B5-48CD-8DAF-C40802433325}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mafia III\launcher.exe
FirewallRules: [{A84FDB50-9579-4E38-BE3A-A895EF222781}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mafia III\launcher.exe
FirewallRules: [{1C8E3740-AD2C-4724-84EB-A06EE9C14FB7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Total War WARHAMMER\launcher\launcher.exe
FirewallRules: [{FC1F7C0B-51C4-445E-BE62-A0EDD3FBCB94}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Total War WARHAMMER\launcher\launcher.exe
FirewallRules: [{6CECCBE7-6842-40C1-BDBA-92A09DDEA234}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{3D8C2AB8-E777-4DEC-84CF-7C541C2793AE}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{ED508EF3-32A7-4613-A6D5-69C3AE6A531E}] => (Allow) C:\WarThunder\launcher.exe
FirewallRules: [{F0AA52DF-986B-4625-977E-5CB71DE7BA21}] => (Allow) C:\WarThunder\launcher.exe
FirewallRules: [{76A042CC-74E9-42C9-BADF-3F388A65F23E}] => (Allow) C:\Users\Wojtelllo\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe
FirewallRules: [{4E43F535-7490-466B-AFF1-F34F710C971F}] => (Allow) C:\Users\Wojtelllo\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe
FirewallRules: [{4CEE3197-ED54-457E-8111-8449D1C0806B}] => (Allow) C:\WarThunder\run.exe
FirewallRules: [{EB9758D4-51A6-4426-89C0-3AD1374B9B14}] => (Allow) C:\WarThunder\run.exe
FirewallRules: [{96E40BFF-F7C1-4785-A72A-F59D4C56AB30}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{E0A028DE-6A38-4457-8ECF-8B69CBC0897A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [TCP Query User{ED17AA6B-CEC8-4C83-BF3D-D5C112D665A2}C:\warthunder\win64\aces.exe] => (Allow) C:\warthunder\win64\aces.exe
FirewallRules: [UDP Query User{DE314404-E036-4B38-903B-85AB250D3D71}C:\warthunder\win64\aces.exe] => (Allow) C:\warthunder\win64\aces.exe
FirewallRules: [{A1228A83-2357-40D6-ACEE-DB7BC691C37C}] => (Allow) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe
FirewallRules: [{344E5419-D48A-4C23-95CE-BF1DDB8BD387}] => (Allow) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe
FirewallRules: [{8983B990-C249-472B-BAE5-69A7D8F1323F}] => (Allow) C:\Users\Wojtelllo\Desktop\SimCity Deluxe Edition 10.1.0.0\SimCity\SimCity\SimCity.exe
FirewallRules: [{B2A016DC-BF33-4552-AFB2-ADD1C8E30D45}] => (Allow) C:\Users\Wojtelllo\Desktop\SimCity Deluxe Edition 10.1.0.0\SimCity\SimCity\SimCity.exe
FirewallRules: [{6B615358-EF19-437B-83DD-8AA2F6F00756}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{53E14B28-5712-4B0E-B1FD-3F5D312A935D}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{A7074D79-2F1F-4C9B-B406-CB8833AABAD5}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{688D5D89-F159-457A-8414-AD6E344ABE76}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

18-03-2017 05:10:26 Scheduled Checkpoint
06-04-2017 15:37:37 Windows Update

==================== Faulty Device Manager Devices =============

Name: Intel(R) Wireless Bluetooth(R) 4.0 + HS Adapter
Description: Intel(R) Wireless Bluetooth(R) 4.0 + HS Adapter
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Intel Corporation
Service: BTHUSB
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (04/06/2017 06:00:16 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: KOMPUTERIUSZ)
Description: Activation of app Microsoft.BingNews_8wekyb3d8bbwe!AppexNews failed with error: -2144927148 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (04/06/2017 05:11:38 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest".Error in manifest or policy file "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" on line 1.
Component identity found in manifest does not match the identity of the component requested.
Reference is UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition is UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Please use sxstrace.exe for detailed diagnosis.

Error: (04/06/2017 05:11:06 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program LiveComm.exe version 17.5.9600.20911 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1c78

Start Time: 01d2aee7461236c5

Termination Time: 4294967295

Application Path: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe

Report Id: 39b58bd3-1adb-11e7-bee6-0c54a5142d6d

Faulting package full name: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe

Faulting package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1

Error: (04/06/2017 04:08:10 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: KOMPUTERIUSZ)
Description: Activation of app Microsoft.BingNews_8wekyb3d8bbwe!AppexNews failed with error: -2144927148 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (04/06/2017 03:56:54 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "WmiApRpl" in DLL "C:\WINDOWS\system32\wbem\wmiaprpl.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.

Error: (04/06/2017 02:08:09 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: KOMPUTERIUSZ)
Description: Activation of app Microsoft.BingNews_8wekyb3d8bbwe!AppexNews failed with error: -2144927148 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (04/06/2017 01:48:52 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest".Error in manifest or policy file "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" on line 1.
Component identity found in manifest does not match the identity of the component requested.
Reference is UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition is UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Please use sxstrace.exe for detailed diagnosis.

Error: (04/06/2017 12:06:04 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: KOMPUTERIUSZ)
Description: Activation of app Microsoft.BingNews_8wekyb3d8bbwe!AppexNews failed with error: -2144927148 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (04/06/2017 10:10:43 AM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: KOMPUTERIUSZ)
Description: Application or service 'Microsoft Office Document Cache Sync Client Interface' could not be shut down.

Error: (04/06/2017 10:08:15 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: KOMPUTERIUSZ)
Description: Activation of app Microsoft.BingNews_8wekyb3d8bbwe!AppexNews failed with error: -2144927148 See the Microsoft-Windows-TWinUI/Operational log for additional information.


System errors:
=============
Error: (04/06/2017 05:48:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Windows Presentation Foundation Font Cache 3.0.0.0 service failed to start due to the following error: 
The service did not respond to the start or control request in a timely fashion.

Error: (04/06/2017 05:48:20 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Presentation Foundation Font Cache 3.0.0.0 service to connect.

Error: (04/06/2017 05:48:18 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SafeBox service.

Error: (04/06/2017 05:47:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Intel(R) System Usage Report Service SystemUsageReportSvc_WILLAMETTE service failed to start due to the following error: 
The service did not respond to the start or control request in a timely fashion.

Error: (04/06/2017 05:47:17 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Intel(R) System Usage Report Service SystemUsageReportSvc_WILLAMETTE service to connect.

Error: (04/06/2017 05:46:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The PLAY INTERNET. OUC service failed to start due to the following error: 
The service did not respond to the start or control request in a timely fashion.

Error: (04/06/2017 05:46:46 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the PLAY INTERNET. OUC service to connect.

Error: (04/06/2017 05:46:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Origin Web Helper Service service failed to start due to the following error: 
The service did not respond to the start or control request in a timely fashion.

Error: (04/06/2017 05:46:40 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Origin Web Helper Service service to connect.

Error: (04/06/2017 04:41:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Intel(R) System Usage Report Service SystemUsageReportSvc_WILLAMETTE service failed to start due to the following error: 
The service did not respond to the start or control request in a timely fashion.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-4200M CPU @ 2.50GHz
Percentage of memory in use: 40%
Total physical RAM: 8116.27 MB
Available physical RAM: 4806.86 MB
Total Virtual: 12980.27 MB
Available Virtual: 9199.2 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:890.68 GB) (Free:56.04 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:24.87 GB) NTFS
Drive e: (gru 30 2016) (CDROM) (Total:4.38 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 230827A2)

Partition: GPT.

==================== End of Addition.txt ============================