﻿Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-02-2015
Ran by Jan (administrator) on LENOVO-E540 on 03-02-2015 22:22:14
Running from C:\Users\Jan\Desktop
Loaded Profiles: UpdatusUser & Jan (Available profiles: UpdatusUser & Jan & Administrator)
Platform: Windows 8.1 Pro (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\avfaudiosw.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Intel® Corporation) C:\Program Files\Intel\CAM\bin\CAMService.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Condusiv Technologies) C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe
(LENOVO INCORPORATED.) C:\Program Files\Lenovo\SystemAgent\SystemAgentService.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\n360.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel) C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
() C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\n360.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControl.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tposd.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\extapsup.exe
(Lenovo.) C:\Windows\System32\TpShocks.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Password Manager\password_manager.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\Password Manager\pwm_ie_helper_desktop.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\Password Manager\pwm_ie_helper_metro.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\Password Manager\password_manager.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
() C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
(Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
() C:\Program Files (x86)\EaseUS\TrayPopup\TrayTipAgent.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(LENOVO INCORPORATED.) C:\Program Files\Lenovo\QuickSnipService\QuickSnipService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Lenovo) C:\Program Files\Lenovo\QuickSnipService\QuickSnipInput.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Peer Connect\LenovoDiscoverySvc.exe
() C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
() C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Lenovo) C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(forum.viry.cz) C:\Users\Jan\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [LenovoOptMouseUpdate] => C:\Program Files\Lenovo\HOTKEY\extapsup.exe [255480 2013-06-20] (Lenovo Group Limited)
HKLM\...\Run: [TpShocks] => C:\WINDOWS\system32\TpShocks.exe [555736 2014-09-18] (Lenovo.)
HKLM\...\Run: [LnvMobHotspotClient] => C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe [937928 2014-12-10] (Lenovo)
HKLM\...\Run: [LENOVO.TPKNRRES] => rundll32.exe "C:\Program Files\Lenovo\Communications Utility\LibStartStub.dll",AVStartupStub
HKLM\...\Run: [PasswordManager] => C:\Program Files\Lenovo\Password Manager\password_manager.exe [1792800 2014-10-21] (Lenovo Group Limited)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [907480 2013-09-04] (Conexant Systems, Inc.)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [552960 2013-05-14] (Vimicro)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-09-16] (Intel Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1021128 2014-11-20] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [EaseUS TB Tray Agent] => C:\Program Files (x86)\EaseUS\TrayPopup\TrayTipAgent.exe [253960 2014-10-14] ()
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-2268427526-2148276325-141241930-1001\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2014-10-29] (Microsoft Corporation)
HKU\S-1-5-21-2268427526-2148276325-141241930-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [30877280 2014-12-11] (Skype Technologies S.A.)
HKU\S-1-5-21-2268427526-2148276325-141241930-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7404312 2015-01-20] (Piriform Ltd)
HKU\S-1-5-21-2268427526-2148276325-141241930-1002\...\MountPoints2: {0fd87bdb-a8ab-11e4-bea0-28d2446fa341} - "G:\WD SmartWare.exe" autoplay=true
AppInit_DLLs: C:\windows\system32\nvinitx.dll => C:\windows\system32\nvinitx.dll [184048 2013-12-26] (NVIDIA Corporation)
AppInit_DLLs: ,C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [184048 2013-12-26] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [156256 2013-12-26] (NVIDIA Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ISCTSystray.lnk
ShortcutTarget: ISCTSystray.lnk -> C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe (Intel Corporation)
ShellIconOverlayIdentifiers: [OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\buShell.dll (Symantec Corporation)
ShellIconOverlayIdentifiers: [OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\buShell.dll (Symantec Corporation)
ShellIconOverlayIdentifiers: [OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\buShell.dll (Symantec Corporation)
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} =>  No File
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} =>  No File
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} =>  No File
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} =>  No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
HKU\S-1-5-21-2268427526-2148276325-141241930-1002\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
HKU\S-1-5-21-2268427526-2148276325-141241930-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13-comm.msn.com/?pc=LNJB
HKU\S-1-5-21-2268427526-2148276325-141241930-1002\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.lenovo.com/welcome/thinkpad
URLSearchHook: [S-1-5-21-2268427526-2148276325-141241930-1001] ATTENTION ==> Default URLSearchHook is missing.
SearchScopes: HKU\S-1-5-21-2268427526-2148276325-141241930-1002 -> DefaultScope {FA02B741-0CCD-42D9-B2A7-DA301C8E17B2} URL = 
SearchScopes: HKU\S-1-5-21-2268427526-2148276325-141241930-1002 -> {FA02B741-0CCD-42D9-B2A7-DA301C8E17B2} URL = 
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\coIEPlg.dll (Symantec Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\coIEPlg.dll (Symantec Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Hosts: 127.0.0.1 activation.acronis.com 
Tcpip\Parameters: [DhcpNameServer] 188.116.64.5 188.116.65.5

FireFox:
========
FF ProfilePath: C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\5zkay6r5.default
FF Homepage: hxxp://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_16_0_0_296.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_296.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin -> C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Extension: Firebug - C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\5zkay6r5.default\Extensions\firebug@software.joehewitt.com.xpi [2014-11-08]
FF Extension: Adblock Plus - C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\5zkay6r5.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-07-18]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-01-26]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.0.2.1\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.0.2.1\coFFPlgn [2015-02-03]
FF HKU\S-1-5-21-2268427526-2148276325-141241930-1002\...\Firefox\Extensions: [{F74D5734-46F5-4B16-96F0-1E7FBF41B750}] - C:\Program Files (x86)\Lenovo\Password Manager\PWM Firefox Extension\2.0b12
FF Extension: ThinkVantage Password Manager - C:\Program Files (x86)\Lenovo\Password Manager\PWM Firefox Extension\2.0b12 [2014-07-20]

Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - No Path
CHR HKLM\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\Exts\Chrome.crx [2014-09-24]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - No Path
CHR HKLM-x32\...\Chrome\Extension: [lpdfbkehegfmedglgemnhbnpmfmioggj] - No Path
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\Exts\Chrome.crx [2014-09-24]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVControlCenter; C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe [639944 2014-12-01] (Lenovo Corporation)
R2 BrcmSetSecurity; C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe [101536 2013-04-12] (Intel)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
R2 CAMService; C:\Program Files\Intel\CAM\bin\CAMService.exe [1243344 2014-09-03] (Intel® Corporation)
R2 EaseUS Agent; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [37384 2014-10-14] (CHENGDU YIWO Tech Development Co., Ltd)
R2 ExpressCache; C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe [107792 2013-07-03] (Condusiv Technologies)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [329104 2014-10-03] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [198120 2013-11-07] ()
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-02-28] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 Lenovo QuickSnip Service; C:\Program Files\lenovo\QuickSnipService\QuickSnipService.exe [219976 2013-06-05] (LENOVO INCORPORATED.)
R2 Lenovo Settings Service; C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe [2017736 2014-12-09] (Lenovo Group Limited)
R2 Lenovo System Agent Service; C:\Program Files\lenovo\SystemAgent\SystemAgentService.exe [562504 2013-06-05] (LENOVO INCORPORATED.)
S3 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [714696 2014-12-01] (Lenovo Corporation)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [115184 2014-07-08] (Lenovo Group Limited)
R2 lnvDiscoveryWinSvc; C:\Program Files\Lenovo\Lenovo Peer Connect\LenovoDiscoverySvc.exe [22576 2014-02-21] (Lenovo)
S3 LnvHotSpotSvc; C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe [474568 2014-12-10] (Lenovo)
R2 LocationTaskManager; C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe [470472 2014-12-09] ()
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [272776 2014-10-16] ()
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [265936 2014-10-29] ()
R2 N360; C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\N360.exe [265040 2014-09-21] (Symantec Corporation)
S2 QuickControlMasterSvc; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe [61232 2014-10-01] (Lenovo Group Limited)
R3 QuickControlService; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe [328488 2014-10-01] (Lenovo Group Limited)
S3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [49648 2015-01-15] ()
R2 valWBFPolicyService; C:\Windows\system32\valWBFPolicyService.exe [49968 2015-01-29] (Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3818704 2014-10-29] (Intel® Corporation)
S2 CxAudMsg; No ImagePath
S2 nvsvc; No ImagePath

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 anvsnddrv; C:\Windows\system32\drivers\anvsnddrv.sys [33872 2011-11-28] (AnvSoft Inc.)
R1 BHDrvx64; C:\Program Files (x86)\Norton 360\NortonData\21.0.2.1\Definitions\BASHDefs\20150106.001\BHDrvx64.sys [1622744 2015-01-06] (Symantec Corporation)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
S3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [140600 2014-03-26] (Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1424184 2014-04-22] (Motorola Solutions, Inc.)
R1 ccSet_N360; C:\Windows\system32\drivers\N360x64\1506000.020\ccSetx64.sys [162392 2014-02-21] (Symantec Corporation)
U3 dtscsidrv; C:\Windows\System32\Drivers\dtscsidrv.sys [309248 2014-10-29] (Disc Soft Ltd)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [487216 2014-12-11] (Symantec Corporation)
U3 EraserUtilDrv11411; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilDrv11411.sys [142640 2014-12-11] (Symantec Corporation)
R0 EUBKMON; C:\Windows\System32\drivers\EUBKMON.sys [48136 2014-10-14] ()
R1 excfs; C:\Windows\System32\DRIVERS\excfs.sys [25872 2013-07-03] (Condusiv Technologies)
R0 excsd; C:\Windows\System32\DRIVERS\excsd.sys [112912 2013-07-03] (Condusiv Technologies)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [192456 2014-05-30] (Intel Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton 360\NortonData\21.0.2.1\Definitions\IPSDefs\20150130.001\IDSvia64.sys [668888 2015-01-12] (Symantec Corporation)
R3 ikbevent; C:\Windows\system32\DRIVERS\ikbevent.sys [21408 2013-08-08] ()
R3 imsevent; C:\Windows\system32\DRIVERS\imsevent.sys [21920 2013-08-08] ()
R3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [29088 2013-08-07] ()
R0 IntelHSWPcc; C:\Windows\System32\drivers\IntelPcc.sys [77456 2013-08-19] (Intel Corporation)
R3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [46568 2013-08-07] ()
R3 LnvHIDHW; C:\Windows\System32\drivers\LnvHIDHW.sys [29496 2014-04-07] (Lenovo)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R3 NAVENG; C:\Program Files (x86)\Norton 360\NortonData\21.0.2.1\Definitions\VirusDefs\20150202.034\ENG64.SYS [129752 2015-01-20] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton 360\NortonData\21.0.2.1\Definitions\VirusDefs\20150202.034\EX64.SYS [2137304 2015-01-20] (Symantec Corporation)
R3 NETwNb64; C:\Windows\system32\DRIVERS\Netwbw02.sys [3482600 2014-11-17] (Intel Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\Netwew02.sys [4649440 2013-06-18] (Intel Corporation)
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [418008 2013-06-24] (Realsil Semiconductor Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33008 2014-11-11] (Synaptics Incorporated)
R1 SMIDriver; C:\Windows\System32\drivers\smi.sys [19760 2014-07-21] (Windows (R) Win 7 DDK provider)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-10-29] (Duplex Secure Ltd.)
R3 SRTSP; C:\Windows\System32\Drivers\N360x64\1506000.020\SRTSP64.SYS [876248 2014-08-26] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\N360x64\1506000.020\SRTSPX64.SYS [37592 2014-08-26] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\N360x64\1506000.020\SYMDS64.SYS [493656 2013-08-01] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\N360x64\1506000.020\SYMEFA64.SYS [1148120 2014-03-04] (Symantec Corporation)
S0 SymELAM; C:\Windows\System32\drivers\N360x64\1506000.020\SymELAM.sys [23568 2013-08-01] (Symantec Corporation)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [177752 2014-07-20] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\N360x64\1506000.020\Ironx64.SYS [266968 2014-08-06] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\N360x64\1506000.020\SYMNETS.SYS [593112 2014-02-18] (Symantec Corporation)
R3 usb3Hub; C:\Windows\System32\drivers\usb3Hub.sys [207256 2013-04-12] (Windows (R) Win 7 DDK provider)
R3 vm331avs; C:\Windows\System32\Drivers\vm331avs.sys [1065344 2013-09-11] (Vimicro Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
R3 WUDFWpdComp; C:\Windows\system32\DRIVERS\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-03 22:22 - 2015-02-03 22:22 - 00026500 _____ () C:\Users\Jan\Desktop\FRST.txt
2015-02-03 22:21 - 2015-02-03 22:22 - 00000000 ____D () C:\FRST
2015-02-03 22:21 - 2015-02-03 22:21 - 00000000 ___SH () C:\DkHyperbootSync
2015-02-03 22:18 - 2015-02-03 22:20 - 00112640 _____ (forum.viry.cz) C:\Users\Jan\Desktop\FRSTLauncher.exe
2015-02-03 22:17 - 2015-02-03 22:17 - 02131456 _____ (Farbar) C:\Users\Jan\Desktop\FRST64.exe
2015-02-03 21:24 - 2015-02-03 21:24 - 00000000 ____D () C:\SWTOOLS
2015-02-03 20:59 - 2015-02-03 20:59 - 00000121 _____ () C:\WINDOWS\SynInst.log
2015-02-03 20:49 - 2015-02-03 20:49 - 00001099 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel® WiFi HotSpot Assistant.lnk
2015-02-03 20:49 - 2015-02-03 20:49 - 00000000 ____D () C:\Program Files\Common Files\Intel
2015-02-03 20:49 - 2015-02-03 20:49 - 00000000 ____D () C:\Program Files (x86)\Cisco
2015-02-03 20:48 - 2015-02-03 20:48 - 00008832 _____ () C:\WINDOWS\DPINST.LOG
2015-02-03 20:34 - 2015-02-03 21:00 - 00000000 ____D () C:\WINDOWS\LastGood
2015-02-03 18:42 - 2015-02-03 19:06 - 00011320 _____ () C:\WINDOWS\PFRO.log
2015-02-03 18:28 - 2015-02-03 18:28 - 00000000 ____D () C:\ProgramData\Weskysoft
2015-02-03 18:22 - 2015-02-03 18:22 - 00000000 ____D () C:\Program Files (x86)\DLLSuite
2015-02-03 11:24 - 2015-02-03 11:24 - 00013312 ___SH () C:\Users\Jan\Downloads\Thumbs.db
2015-02-03 11:23 - 2015-02-03 11:23 - 11478790 _____ () C:\Users\Jan\Desktop\Karel Gola.bmp
2015-02-02 18:57 - 2015-02-03 22:00 - 00018711 _____ () C:\WINDOWS\setupact.log
2015-02-02 18:57 - 2015-02-03 21:49 - 00299845 _____ () C:\WINDOWS\WindowsUpdate.log
2015-02-02 18:57 - 2015-02-02 18:57 - 00000000 _____ () C:\WINDOWS\setuperr.log
2015-02-02 09:48 - 2015-02-02 09:48 - 00054274 _____ () C:\Users\Jan\Desktop\prilohy_41104.zip
2015-02-01 13:02 - 2015-02-03 19:05 - 00002212 _____ () C:\WINDOWS\system32\ASOROSet.bin
2015-02-01 13:02 - 2015-02-03 19:03 - 00000000 ____D () C:\WINDOWS\system32\config\RCCBakup
2015-02-01 12:58 - 2015-02-03 19:32 - 00000000 ____D () C:\Users\Jan\AppData\Roaming\Solvusoft
2015-02-01 12:58 - 2012-10-15 17:02 - 00019888 _____ (solvusoft) C:\WINDOWS\system32\roboot64.exe
2015-02-01 11:31 - 2015-02-01 11:31 - 00000000 ____D () C:\WINDOWS\LastGood.Tmp
2015-01-31 19:55 - 2015-01-31 19:56 - 00000000 ____D () C:\Users\Jan\Desktop\Pohovky mp3
2015-01-31 17:50 - 2009-03-17 09:07 - 00000000 ____D () C:\Users\Jan\Desktop\AUDIO_TS
2015-01-31 17:46 - 2015-01-31 17:46 - 00000000 ____D () C:\Users\Jan\Desktop\foto
2015-01-31 17:41 - 2015-01-31 17:49 - 00000000 ____D () C:\Users\Jan\Desktop\VIDEO_TS
2015-01-31 17:37 - 2015-01-31 17:53 - 00000000 ____D () C:\Users\Jan\Desktop\KINO
2015-01-31 06:55 - 2015-01-31 06:55 - 00000840 _____ () C:\Users\Jan\AppData\Local\recently-used.xbel
2015-01-30 21:46 - 2015-01-30 22:13 - 00000000 ____D () C:\Users\Jan\AppData\Roaming\Subtitle Edit
2015-01-30 21:46 - 2015-01-30 21:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Subtitle Edit
2015-01-30 21:46 - 2015-01-30 21:46 - 00000000 ____D () C:\Program Files (x86)\Subtitle Edit
2015-01-29 11:39 - 2015-01-29 11:39 - 03655472 _____ (Synaptics Incorporated) C:\WINDOWS\system32\vcsAPIFORWBF.dll
2015-01-29 11:39 - 2015-01-29 11:39 - 00049968 _____ (Synaptics Incorporated) C:\WINDOWS\system32\valWBFPolicyService.exe
2015-01-29 11:39 - 2015-01-29 11:39 - 00031744 _____ (Synaptics Incorporated) C:\WINDOWS\system32\LenovoSysCheck.dll
2015-01-29 09:26 - 2015-01-29 09:26 - 00267229 _____ () C:\Users\Jan\Desktop\prilohy_40942.zip
2015-01-29 03:24 - 2015-01-29 03:24 - 00000000 ____D () C:\Users\Jan\AppData\Local\4kdownload.com
2015-01-29 03:22 - 2015-01-29 03:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4K Download
2015-01-29 03:22 - 2015-01-29 03:22 - 00000000 ____D () C:\Program Files (x86)\4KDownload
2015-01-28 23:31 - 2015-01-28 23:31 - 00000000 ____D () C:\Users\Jan\.dvdcss
2015-01-28 20:30 - 2015-02-03 18:46 - 00000000 ____D () C:\Users\Jan\AppData\Roaming\uTorrent
2015-01-28 20:23 - 2015-01-28 20:23 - 00000000 ____D () C:\Users\Jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2015-01-28 20:16 - 2015-01-28 20:20 - 00000000 ____D () C:\Users\Jan\AppData\Local\NPE
2015-01-28 20:01 - 2015-01-28 20:01 - 00000000 ____D () C:\Users\Jan\Documents\Any Video Converter Ultimate
2015-01-28 20:00 - 2011-11-28 14:51 - 00033872 _____ (AnvSoft Inc.) C:\WINDOWS\system32\Drivers\anvsnddrv.sys
2015-01-28 19:43 - 2015-01-28 19:43 - 00000000 ____D () C:\Users\Public\Documents\Baidu
2015-01-28 19:43 - 2015-01-28 19:43 - 00000000 ____D () C:\Users\Jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2015-01-28 19:43 - 2015-01-28 19:43 - 00000000 ____D () C:\ProgramData\Baidu
2015-01-28 19:42 - 2015-01-28 19:42 - 00000000 ____D () C:\Program Files (x86)\FreeTime
2015-01-26 22:58 - 2015-01-27 09:20 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-01-26 22:05 - 2015-01-26 22:05 - 00265437 _____ () C:\Users\Jan\Desktop\prilohy_40782.zip
2015-01-25 21:34 - 2015-01-26 09:26 - 00000000 ____D () C:\Users\Jan\Desktop\Základy učednictví
2015-01-25 21:17 - 2015-01-25 21:17 - 00007597 _____ () C:\Users\Jan\AppData\Local\Resmon.ResmonCfg
2015-01-25 20:02 - 2014-04-07 17:02 - 00029496 _____ (Lenovo) C:\WINDOWS\system32\Drivers\LnvHIDHW.sys
2015-01-25 20:01 - 2015-01-25 20:01 - 00000000 ____D () C:\Users\Jan\AppData\Roaming\Innovative Solutions
2015-01-25 20:00 - 2015-01-25 20:00 - 00000000 ____D () C:\Users\Jan\AppData\Local\Innovative Solutions
2015-01-14 08:36 - 2014-12-19 07:26 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2015-01-14 08:36 - 2014-12-12 03:04 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2015-01-14 08:36 - 2014-12-12 01:51 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2015-01-14 08:36 - 2014-12-09 02:50 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2015-01-14 08:36 - 2014-12-06 04:17 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-01-14 08:36 - 2014-12-06 02:41 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2015-01-14 08:35 - 2014-12-08 20:42 - 00535640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-01-14 08:35 - 2014-12-08 20:42 - 00531616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-01-14 08:35 - 2014-12-08 20:42 - 00448792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2015-01-14 08:35 - 2014-12-08 20:42 - 00413248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2015-01-14 08:35 - 2014-12-08 20:42 - 00372408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2015-01-14 08:35 - 2014-12-08 20:42 - 00108944 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2015-01-14 08:35 - 2014-12-08 20:42 - 00038264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2015-01-14 08:35 - 2014-12-08 20:42 - 00033584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2015-01-14 08:35 - 2014-12-06 02:35 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-01-06 17:42 - 2015-01-06 17:42 - 00000000 ____D () C:\Users\Jan\AppData\Local\Symbian-Toys.com
2015-01-06 17:21 - 2015-01-06 21:09 - 00000000 ____D () C:\WINDOWS\Minidump
2015-01-06 17:04 - 2015-01-06 17:04 - 00000000 ____D () C:\Users\Jan\Documents\Nokia Suite
2015-01-06 16:53 - 2015-01-06 16:53 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_wpdcomp_01_11_00.Wdf
2015-01-04 18:45 - 2015-01-04 18:45 - 00000000 ____D () C:\Users\Jan\Documents\Moje přijaté soubory

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-03 22:21 - 2014-07-18 21:22 - 00000000 ____D () C:\Users\Jan\AppData\Roaming\Skype
2015-02-03 22:11 - 2014-10-17 21:37 - 00004972 _____ () C:\WINDOWS\System32\Tasks\Microsoft Office 15 Sync Maintenance for LENOVO-E540-Jan Lenovo-E540
2015-02-03 22:05 - 2014-07-19 21:48 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-02-03 22:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-02-03 21:55 - 2014-07-18 12:11 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2268427526-2148276325-141241930-1002
2015-02-03 21:55 - 2014-03-18 16:33 - 01745984 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-02-03 21:55 - 2014-03-18 15:54 - 00739924 _____ () C:\WINDOWS\system32\perfh005.dat
2015-02-03 21:55 - 2014-03-18 15:54 - 00151610 _____ () C:\WINDOWS\system32\perfc005.dat
2015-02-03 21:51 - 2014-07-18 14:01 - 00000000 ____D () C:\Users\Jan\AppData\Local\CrashDumps
2015-02-03 21:50 - 2014-07-18 17:43 - 00000000 __RDO () C:\Users\Jan\OneDrive
2015-02-03 21:50 - 2014-07-18 11:57 - 00000290 _____ () C:\Users\Jan\AppData\Local\RegisteredPackageInformation.xml
2015-02-03 21:50 - 2014-07-10 07:51 - 00000000 ____D () C:\ProgramData\Validity
2015-02-03 21:50 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-02-03 21:50 - 2013-08-22 14:25 - 01310720 ___SH () C:\WINDOWS\system32\config\BBI
2015-02-03 21:49 - 2014-07-18 13:21 - 06381242 _____ () C:\Users\Public\CAFADEBUG.log
2015-02-03 21:49 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\WinBioPlugIns
2015-02-03 21:40 - 2014-07-18 16:45 - 00000000 ____D () C:\Program Files\Synaptics
2015-02-03 20:59 - 2014-12-29 18:08 - 00000000 ____D () C:\ProgramData\Synaptics
2015-02-03 20:58 - 2014-07-10 07:50 - 00000000 ____D () C:\WINDOWS\System32\Tasks\TVT
2015-02-03 20:49 - 2014-07-20 10:15 - 00000000 ____D () C:\ProgramData\Package Cache
2015-02-03 20:49 - 2014-07-18 16:45 - 00000000 ____D () C:\Program Files\Intel
2015-02-03 20:49 - 2014-07-10 07:34 - 00000000 ____D () C:\ProgramData\Intel
2015-02-03 20:49 - 2014-07-10 07:33 - 00000000 ____D () C:\Program Files (x86)\Intel
2015-02-03 20:34 - 2014-07-10 08:06 - 00000000 ____D () C:\ProgramData\Lenovo
2015-02-03 20:31 - 2014-07-10 07:48 - 00000000 ___HD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools
2015-02-03 20:31 - 2014-07-10 07:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2015-02-03 20:31 - 2014-07-10 07:37 - 00000000 ____D () C:\Program Files (x86)\Lenovo
2015-02-03 19:06 - 2014-07-18 16:53 - 00000000 ____D () C:\Users\Jan
2015-02-03 19:05 - 2013-08-22 14:25 - 83361792 _____ () C:\WINDOWS\system32\config\SOFTWARE.bak
2015-02-03 19:05 - 2013-08-22 14:25 - 14680064 _____ () C:\WINDOWS\system32\config\SYSTEM.bak
2015-02-03 19:05 - 2013-08-22 14:25 - 00028672 _____ () C:\WINDOWS\system32\config\SECURITY.bak
2015-02-03 19:04 - 2013-08-22 14:25 - 00036864 _____ () C:\WINDOWS\system32\config\SAM.bak
2015-02-03 18:45 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2015-02-03 18:07 - 2014-07-18 21:29 - 00003974 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{DD148CF6-B19E-41E2-A70A-CBE0DCB736DF}
2015-02-03 07:25 - 2014-11-27 14:19 - 01326592 ___SH () C:\Users\Jan\Desktop\Thumbs.db
2015-02-02 09:58 - 2014-07-18 11:56 - 00000000 ____D () C:\Users\Jan\AppData\Local\Packages
2015-02-01 15:18 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2015-02-01 11:29 - 2013-08-22 16:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-02-01 11:29 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\PolicyDefinitions
2015-02-01 11:29 - 2012-07-26 08:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-02-01 09:44 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-01-31 19:35 - 2014-07-19 00:55 - 00000000 ____D () C:\Users\Jan\AppData\Roaming\vlc
2015-01-31 17:51 - 2014-12-19 15:31 - 00000000 ____D () C:\Users\Jan\AppData\Roaming\dvdcss
2015-01-31 06:56 - 2014-11-26 19:04 - 00000000 ____D () C:\Users\Jan\.gimp-2.8
2015-01-31 06:55 - 2014-11-26 19:09 - 00000000 ____D () C:\Users\Jan\AppData\Local\gtk-2.0
2015-01-30 19:09 - 2014-07-18 13:26 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-01-28 20:16 - 2014-07-10 07:58 - 00000000 ____D () C:\ProgramData\Norton
2015-01-28 20:08 - 2014-07-19 00:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2015-01-28 20:08 - 2014-07-19 00:49 - 00000000 ____D () C:\ProgramData\Freemake
2015-01-28 20:00 - 2014-12-10 20:15 - 00000000 ____D () C:\Users\Jan\AppData\Roaming\AnvSoft
2015-01-28 20:00 - 2014-12-10 20:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AnvSoft
2015-01-28 20:00 - 2014-12-10 20:15 - 00000000 ____D () C:\Program Files (x86)\AnvSoft
2015-01-28 19:57 - 2014-11-26 19:02 - 00098216 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-01-28 19:57 - 2014-11-26 19:02 - 00000000 ____D () C:\ProgramData\Oracle
2015-01-28 19:57 - 2014-11-26 19:01 - 00000000 ____D () C:\Program Files (x86)\Java
2015-01-28 19:55 - 2014-07-18 23:59 - 00000000 ____D () C:\Program Files\CCleaner
2015-01-25 21:12 - 2014-07-10 07:48 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Lenovo
2015-01-25 20:01 - 2013-08-22 16:36 - 00000000 __RSD () C:\WINDOWS\Media
2015-01-25 09:05 - 2014-07-19 21:48 - 00003802 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-01-24 21:20 - 2013-08-22 16:38 - 00714720 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-01-24 21:20 - 2013-08-22 16:38 - 00106976 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-01-16 15:28 - 2014-07-18 12:55 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-01-16 15:25 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2015-01-16 15:24 - 2014-07-18 12:54 - 113365784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-01-16 01:53 - 2014-07-18 21:22 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-01-16 01:53 - 2014-07-18 21:22 - 00000000 ____D () C:\ProgramData\Skype
2015-01-06 20:42 - 2014-12-29 18:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nokia
2015-01-06 20:40 - 2014-07-19 01:00 - 00000000 ____D () C:\Program Files (x86)\Nokia
2015-01-06 20:37 - 2014-07-10 07:37 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-01-06 20:37 - 2013-08-22 15:44 - 00491000 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-01-06 20:33 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\Registration
2015-01-06 18:10 - 2014-07-19 01:01 - 00000000 ____D () C:\ProgramData\Nokia
2015-01-06 18:10 - 2014-07-18 11:56 - 00000000 ____D () C:\Users\Jan\AppData\Local\VirtualStore
2015-01-06 16:53 - 2014-07-19 01:01 - 00000000 ____D () C:\Users\Jan\AppData\Roaming\PC Suite

==================== Files in the root of some directories =======

2014-07-18 11:57 - 2014-08-25 10:14 - 0010496 _____ () C:\Users\Jan\AppData\Roaming\AbsoluteReminder.xml
2014-08-02 23:32 - 2014-08-25 10:13 - 0076976 _____ () C:\Users\Jan\AppData\Roaming\LoJackSetup.exe
2015-01-31 06:55 - 2015-01-31 06:55 - 0000840 _____ () C:\Users\Jan\AppData\Local\recently-used.xbel
2014-07-18 11:57 - 2015-02-03 21:50 - 0000290 _____ () C:\Users\Jan\AppData\Local\RegisteredPackageInformation.xml
2015-01-25 21:17 - 2015-01-25 21:17 - 0007597 _____ () C:\Users\Jan\AppData\Local\Resmon.ResmonCfg
2014-08-25 10:26 - 2014-08-25 10:43 - 6339968 _____ (Absolute Software Corp.) C:\Users\Jan\AppData\Local\Setup.exe
2014-07-01 23:25 - 2014-07-01 23:25 - 0000003 _____ () C:\ProgramData\AbsoluteNotifier.txt
2014-07-10 07:49 - 2014-07-10 07:49 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-07-10 07:54 - 2014-07-10 07:54 - 0000107 _____ () C:\ProgramData\{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}.log
2014-07-10 07:52 - 2014-07-10 07:53 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2014-07-10 07:53 - 2014-07-10 07:54 - 0000110 _____ () C:\ProgramData\{B7A0CE06-068E-11D6-97FD-0050BACBF861}.log
2014-07-10 07:54 - 2014-07-10 07:54 - 0000115 _____ () C:\ProgramData\{D6E853EC-8960-4D44-AF03-7361BB93227C}.log

Files to move or delete:
====================
C:\Users\Jan\googleupdatesetup.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-02-03 07:48




===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: (Místní disk) (Fixed) (Total:915.25 GB) (Free:857.31 GB) NTFS ==>[System with boot components (obtained from reading drive)]

Available physical RAM: 6314.58 MB
Total physical RAM: 10130.58 MB
Percentage of memory in use: 37%

==================== MBR and Partition Table ==================

2014-10-28 21:02 - 2014-10-14 09:46 - 00193032 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\EmailBackupSize.dll
Disk: 0 (Size: 931.5 GB) (Disk ID: AF6E7F26)
Disk: 1 (Size: 14.9 GB) (Disk ID: AF6E7EDF)

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\Users\Jan\OneDrive:ms-properties
AlternateDataStreams: C:\Users\Jan\OneDrive.old:ms-properties

==================== Security Center ==================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Norton 360 (Disabled - Up to date) {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB}
AS: Norton 360 (Enabled - Up to date) {631E4324-D31C-783F-EC5C-35AD42B18466}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton 360 (Disabled) {E04423E5-BF49-76E9-FDB3-A7EAC7E589A0}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

  
***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Jan\Desktop" je 6588 MB.
 
 
***** Startup Programs *****
 
 
***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
    EnableFirewall    REG_DWORD    0x1
    DisableNotifications    REG_DWORD    0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
    EnableFirewall    REG_DWORD    0x1
    DisableNotifications    REG_DWORD    0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
 
 
***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

 
==================== End Of Log ==============================
