﻿Additional scan result of Farbar Recovery Scan Tool (x64) Version:26-07-2015
Ran by Marek at 2015-07-28 21:22:22
Running from C:\Users\Marek\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1736032595-1940929976-456475042-500 - Administrator - Disabled)
Guest (S-1-5-21-1736032595-1940929976-456475042-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1736032595-1940929976-456475042-1003 - Limited - Enabled)
Marek (S-1-5-21-1736032595-1940929976-456475042-1001 - Administrator - Enabled) => C:\Users\Marek
UpdatusUser (S-1-5-21-1736032595-1940929976-456475042-1000 - Limited - Enabled) => C:\Users\UpdatusUser

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-1736032595-1940929976-456475042-1001\...\uTorrent) (Version: 3.4.3.40298 - BitTorrent Inc.)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 18.0.0.144 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.160 - Adobe Systems Incorporated)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.65.17.50 - Conexant)
Create Recovery Media (HKLM-x32\...\{50DC5136-21E8-48BC-97E5-1AD055F6B0B6}) (Version: 1.20.0.00 - Lenovo Group Limited)
CyberLink PowerDVD 10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5428.52 - CyberLink Corp.)
DisplayLink Core Software (HKLM\...\{58F4C39B-D946-4A45-A314-DEFC2AFDF397}) (Version: 7.5.54609.0 - DisplayLink Corp.)
Dolby Advanced Audio v2 (HKLM-x32\...\{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}) (Version: 7.2.8000.17 - Dolby Laboratories Inc)
ExpressCache (HKLM\...\{44EAE7F6-8BBF-4C3F-A573-3CD5A3C067FA}) (Version: 1.3.110.0 - Condusiv Technologies)
F1 2013 (HKLM-x32\...\RjEyMDEz_is1) (Version: 1 - )
FormatFactory 3.5.0.0 (HKLM-x32\...\FormatFactory) (Version: 3.5.0.0 - Format Factory)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 44.0.2403.107 - Google Inc.)
Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden
Integrated Camera (HKLM-x32\...\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}) (Version: 5.13.911.3 - Vimicro)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.10.1372 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.18.10.3272 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology(patch version 17.0.1419.2) (HKLM\...\{302600C1-6BDF-4FD1-1405-148929CC1385}) (Version: 17.0.1405.0462 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.66956 - Intel Corporation)
Intel(R) Update Manager (x32 Version: 1.0.0.36888 - Intel Corporation) Hidden
Intel(R) Update Manager (x32 Version: 1.6.3.70 - Intel Corporation) Hidden
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.2.32 - Intel Corporation)
Intel(R) WiDi (HKLM\...\{F949AE30-83D1-41B2-92D2-F44478DD058A}) (Version: 4.2.24.0 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{75895d95-3e4b-42b6-8440-97a0e234aeb3}) (Version: 17.0.2 - Intel Corporation)
Java 8 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418045F0}) (Version: 8.0.450 - Oracle Corporation)
Lenovo Auto Scroll Utility (HKLM\...\LenovoAutoScrollUtility) (Version: 2.11 - )
Lenovo Communications Utility (HKLM\...\{88C6A6D9-324C-46E8-BA87-563D14021442}_is1) (Version: 3.1.12.0 - Lenovo)
Lenovo Fingerprint Manager (HKLM\...\{D6006D3A-B3F5-48DC-8CC0-D353912379F3}) (Version: 4.5.289.0 - Synaptics)
Lenovo Fingerprint Manager (HKLM\...\{F7AB2C19-6A27-4C75-A92A-8CC7C59E5FA2}) (Version: 4.5.289.0 - )
Lenovo Patch Utility (x32 Version: 1.3.2.6 - Lenovo Group Limited) Hidden
Lenovo Patch Utility 64 bit (Version: 1.3.2.6 - Lenovo Group Limited) Hidden
Lenovo Peer Connect SDK (HKLM\...\{75C87855-9CBB-4892-B1A9-74C73A19CACA}_is1) (Version: 1.0.0.7 - Lenovo)
Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.04.05 - )
Lenovo QuickControl (HKLM-x32\...\{4855C42F-5197-4AAD-A50D-5066D2CC4647}) (Version: 2.20 - Lenovo Group Limited)
Lenovo QuickDisplay (HKLM\...\{ADEEC90C-A033-4596-ACA1-97327055F9CB}) (Version: 1.2.7.0 - Lenovo Group Limited)
Lenovo Registration (HKLM-x32\...\{6707C034-ED6B-4B6A-B21F-969B3606FBDE}) (Version: 1.0.3 - Lenovo Inc.)
Lenovo SHAREit (HKLM-x32\...\Lenovo SHAREit_is1) (Version: 2.0.4.0 - Lenovo Group Limited)
Lenovo Solution Center (HKLM\...\{437CF75F-0102-4D1E-8685-E48D92A61D9B}) (Version: 2.5.002.00 - Lenovo Group Limited)
Lenovo Solutions for Small Business (HKLM-x32\...\{6A6D86CD-B004-46b7-8951-7BB75A776F8C}) (Version: 2.0.32.7350 - Intel(R) Corporation)
Lenovo Solutions for Small Business Customizations (HKLM-x32\...\{AFD7B869-3B70-40C7-8983-769256BA3BD2}) (Version: 2.0.0005.00 - Lenovo Group Limited)
Lenovo System Update (HKLM-x32\...\{25C64847-B900-48AD-A164-1B4F9B774650}) (Version: 5.06.0037 - Lenovo)
Lenovo USB Graphics (HKLM\...\{E6B1FE9A-CB1E-4096-A0AF-163419CB971C}) (Version: 7.5.54614.0 - Lenovo)
Lenovo USB3.0 to DVI VGA Monitor Adapter (HKLM-x32\...\{454D32AD-C149-49BE-9F2E-8C089C3D6620}) (Version: 1.07.17 - Lenovo)
Lenovo User Guide (HKLM-x32\...\{13F59938-C595-479C-B479-F171AB9AF64F}) (Version: 1.0.0009.00 - Lenovo Group Limited)
Lenovo Warranty Information (HKLM-x32\...\{FD4EC278-C1B1-4496-99ED-C0BE1B0AA521}) (Version: 1.0.0011.00 - Lenovo)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
Message Center Plus (HKLM\...\{3849486C-FF09-4F5D-B491-3E179D58EE15}) (Version: 3.1.0004.00 - Lenovo Group Limited)
Metric Collection SDK (x32 Version: 1.1.0005.00 - Lenovo Group Limited) Hidden
Metric Collection SDK 35 (x32 Version: 1.2.0001.00 - Lenovo Group Limited) Hidden
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 39.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 39.0 (x86 cs)) (Version: 39.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.0.5 - Mozilla)
Neat Video v3.1.0 Pro plug-in for Sony Vegas (64-bit) (HKLM\...\Neat Video for Sony Vegas_is1) (Version:  - Neat Video team, ABSoft)
NVIDIA Graphics Driver 327.62 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 327.62 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.13.0725 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA Update 1.14.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.14.17 - NVIDIA Corporation)
On Screen Display (HKLM\...\OnScreenDisplay) (Version: 8.33.00 - )
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Power Manager (HKLM-x32\...\{DAC01CEE-5BAE-42D5-81FC-B687E84E8405}) (Version: 6.64.4 - Lenovo Group Limited)
PowerDVD Create (HKLM-x32\...\InstallShield_{DE485075-8CD3-4A1E-9ABC-6412EBA44872}) (Version: 10.0 - CyberLink Corp.)
PowerDVD Create 10 (x32 Version: 10.0.1.2704 - CyberLink Corp.) Hidden
RapidBoot HDD Accelerator (HKLM-x32\...\Fastboot) (Version: 1.1.1.1 - Lenovo)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.21234 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.73.618.2013 - Realtek)
Seznam Software (HKU\S-1-5-21-1736032595-1940929976-456475042-1001\...\SeznamInstall) (Version:  - Seznam.cz)
ThinkPad OneLink Dock (HKLM-x32\...\{8E1CACF5-2493-4950-9AD5-189903FE57E7}) (Version: 1.08.26 - Lenovo)
ThinkPad UltraNav Driver (HKLM\...\SynTPDeinstKey) (Version: 18.0.7.40 - Synaptics Incorporated)
Thinkpad USB 3.0 Ethernet Adapter Driver (HKLM-x32\...\{D8102684-7BA1-4948-88B9-535F84E6E588}) (Version: 7.4.911.2013 - Lenovo)
ThinkVantage Active Protection System (HKLM\...\{46A84694-59EC-48F0-964C-7E76E9F8A2ED}) (Version: 1.79.00.03 - Lenovo)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 8.51 - Ghisler Software GmbH)
USB Enhanced Performance Keyboard (HKLM\...\{989DC5D9-A776-430D-9E16-D36E5B81CD86}) (Version: 2.0.2.2 - Lenovo)
Vegas Pro 11.0 (64-bit) (HKLM\...\{314DDDC0-E935-11E0-8F9F-F04DA23A5C58}) (Version: 11.0.371 - Sony)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.7.0 - Elaborate Bytes)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WaveEditor (x32 Version: 1.0.1.4514 - CyberLink Corp.) Hidden
Windows Driver Package - Intel Corporation (iaStorA) HDC  (08/01/2013 12.8.0.1016) (HKLM\...\C8A921233C0C441A4E4EAABC2AB08C872FD77A6E) (Version: 08/01/2013 12.8.0.1016 - Intel Corporation)
Windows Driver Package - Lenovo 1.67.04.05 (12/17/2013 1.67.04.05) (HKLM\...\68ECF461D6E85BB67AFC110D2FEBF1955C9F26B5) (Version: 12/17/2013 1.67.04.05 - Lenovo)
WinRAR 5.21 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Restore Points =========================

20-07-2015 20:51:09 Installed Microsoft Office Professional Plus 2013
20-07-2015 20:51:23 PROPLUS
21-07-2015 16:28:16 Windows Update
22-07-2015 16:03:07 Windows Update
28-07-2015 15:40:23 Windows Update

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2015-07-28 16:53 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {071D287F-220C-451E-B9EC-DBB1FD67B318} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2014-07-01] ()
Task: {0B9B2F30-2DE9-4471-AB07-9392BF19E9A0} - System32\Tasks\ISM-UpdateService-e57b59e7-5862-4250-9ce0-76fb411dc0d2 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\Bootstrap.exe [2013-07-18] (Intel Corporation)
Task: {200EFCE2-2401-47A5-9929-FE22784634CD} - System32\Tasks\Lenovo\Message Center Plus Launcher => C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe [2012-05-16] (Lenovo)
Task: {241755B4-380E-4580-A46B-FA540C22ABB6} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2014-02-14] (Lenovo)
Task: {2B32606C-9FA2-4A52-B30F-8E6E88B2357D} - System32\Tasks\Intel(R) Small Business Advantage\Notifier => C:\Program Files\Intel\Intel(R) Small Business Advantage\UI\SBA_Notifier.exe [2013-04-11] (Intel Corporation)
Task: {318CB583-9D63-4C8D-B657-0187F012D96A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-20] (Google Inc.)
Task: {36F48657-CF99-464E-A682-B2A4A9C00504} - System32\Tasks\CLMLSvc => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2013-03-07] (CyberLink)
Task: {3DFEA14B-0EEE-44DB-B9D0-50396BAA28AF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {47A984E5-48A3-4747-9CC6-A32AF416E4AA} - System32\Tasks\StartPowerDVDService => C:\PROGRAM FILES (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe [2013-06-29] (CyberLink Corp.)
Task: {5787E8E8-C08D-4598-9345-3FA995D150BA} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [2014-05-30] (Lenovo)
Task: {64691743-0B0C-4097-8CD6-822C879B89BC} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2015-05-15] ()
Task: {71071161-B68D-4725-AA43-3F41FE71D3ED} - System32\Tasks\ISM-UpdateService-e57b59e7-5862-4250-9ce0-76fb411dc0d2-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\Bootstrap.exe [2013-07-18] (Intel Corporation)
Task: {865275A7-474D-4049-9481-2D9AA93C3E74} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2014-07-01] ()
Task: {8FB03015-537F-49DD-A268-6D2374C37BA6} - System32\Tasks\PMTask => C:\Program Files (x86)\ThinkPad\Utilities\PwmIdTsv.exe [2014-03-07] (Lenovo Group Limited)
Task: {90B8AC76-836B-4AE6-9462-A4CC8D763B7A} - System32\Tasks\RsDelayLauncher_{8A34248E-7D35-4832-8378-7659E0B0A380} => C:\PROGRAM FILES (X86)\RISING\RAV\rsdelaylauncher.exe
Task: {90DCA88D-A438-428B-B260-BC50DB040E8A} - System32\Tasks\DiskUpdate => C:\SWTOOLS\OSFIXES\DISKUPDT\DiskUpdate.exe [2009-02-10] ()
Task: {91CA3325-E761-4D7F-81AD-36FADA02BABA} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [2014-07-01] (Lenovo)
Task: {956CEDCF-8851-4DC7-B22B-809233147F45} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)
Task: {95CE85F1-F94D-46F0-8157-3A7723C0CF16} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-20] (Google Inc.)
Task: {9FD2354C-7944-4E77-9081-AC3694BB0259} - System32\Tasks\TVT\Lenovo QuickDisplay Agent => C:\Program Files\Lenovo\QuickDisplay\QuickDisplayAgent.exe [2014-04-10] (Lenovo Corporation)
Task: {B7D509DB-9658-4126-A5B3-FC8A0396E156} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2013-04-27] (Lenovo)
Task: {B8C42BCB-0196-49CE-A000-8B14ABA7944E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {D1BEEF6D-452F-4211-ABE1-727C57C52796} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [2014-07-01] (Lenovo)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2014-12-06 16:38 - 2013-10-29 01:38 - 00097568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-12-06 16:38 - 2013-10-31 09:13 - 00013088 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2014-12-06 16:43 - 2010-10-26 06:40 - 00049056 _____ () C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
2014-12-06 16:39 - 2013-11-14 03:48 - 00915968 ____N () C:\Program Files (x86)\Lenovo\OneLink Dock\onelinkpromgn.exe
2014-12-06 16:50 - 2014-03-07 00:04 - 00104448 ____N () C:\Program Files (x86)\ThinkPad\Utilities\US\PWMRT64V.DLL
2012-10-01 20:36 - 2012-10-01 20:36 - 06522480 _____ () C:\Program Files\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2014-12-06 16:53 - 2013-08-15 06:26 - 00033520 ____N () C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBServiceps.dll
2014-12-06 16:52 - 2011-08-03 06:58 - 02201088 _____ () C:\Program Files\Lenovo\Communications Utility\cxcore210.dll
2014-12-06 16:52 - 2011-08-03 06:58 - 02085888 _____ () C:\Program Files\Lenovo\Communications Utility\cv210.dll
2013-03-07 07:49 - 2013-03-07 07:49 - 00626240 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
2013-03-07 07:52 - 2013-03-07 07:52 - 00015424 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
2014-12-06 16:35 - 2013-05-16 10:05 - 01199576 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Marek\Downloads\DivX.Web.Player.Installer__8420_i1561426396_il24578 (2).exe:typelib

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1736032595-1940929976-456475042-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{62EBDE28-E81E-44F9-97D6-E693BC04BFBC}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{9C20BCE7-9EDB-4EE3-ACDD-F56D8B18646B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{3F06DF10-2CED-4C61-9CB3-FEF30ADFB1C6}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{8F461FD4-3EF6-418B-B772-9CD265B32E7B}] => (Allow) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe
FirewallRules: [{06FDE7ED-0262-48B8-84BB-C85028C0115D}] => (Allow) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe
FirewallRules: [{4FAAB68E-6EC1-4E2D-8656-D37278B31218}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{AE2FC1F3-F2AE-4B74-9D35-F161E14523EE}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{FA8C501B-7E28-4362-BEC9-5D52E5308332}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe
FirewallRules: [{19F4D07F-CAB9-4536-B176-811B968DBB08}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe
FirewallRules: [{54A1B684-5121-4256-8FAE-ABBA07C48BB9}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiApp.exe
FirewallRules: [{0B05FF73-FE80-45B8-9BF9-FF61E174037A}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
FirewallRules: [{8E2A45D8-1D11-4504-94FA-A0945BC9E754}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
FirewallRules: [{49248FEB-FCBE-4A64-8F3C-349B8E4DEA2C}] => (Allow) C:\Users\Marek\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{926B3E74-7E64-4CA2-94AF-8EF7064F2092}] => (Allow) C:\Users\Marek\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{A015509C-23C3-4247-9893-6F224AC8D7EC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{4B50E143-16D8-490A-8EDF-643DD5C20F9F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{850191B8-BECB-4EA2-8FD2-8A66713FE8D5}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{04CF40BD-9FEF-478E-A5A0-13871FC470F8}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{610F5E1D-D9CE-4F96-BBC2-FF5237FEA000}] => (Allow) C:\Program Files (x86)\F1 2013\F1_2013.exe
FirewallRules: [{0DC2D153-D910-4A59-A982-47CA3E26B9CF}] => (Allow) C:\Program Files (x86)\F1 2013\F1_2013.exe
FirewallRules: [{1C78C90E-26E9-43BE-9FCF-4DC4A4416A08}] => (Allow) C:\Program Files (x86)\F1 2013\F1_2013.exe
FirewallRules: [{E1E9A5C5-58B4-427C-BA2B-5D9735BF6764}] => (Allow) C:\Program Files (x86)\F1 2013\F1_2013.exe
FirewallRules: [{83037245-C426-40D3-AE37-C10C9BD41204}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{75895F1C-E16A-44A8-9672-400789872719}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{C9EECC8E-74C7-4E67-9DDD-AC9E30EEA7AE}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{3F63D496-51F8-4C93-9E43-163431CCCDBF}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{2FA9A1FB-45D0-41B4-883D-036624065A58}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{00753B05-0916-4157-A356-609F4DD324F2}] => (Allow) C:\Users\Marek\AppData\Roaming\IQIYI Video\LStyle\GpUpdate.exe
FirewallRules: [{51693E3C-26A8-4E01-86D3-62EC4C1132FE}] => (Allow) C:\IQIYI Video\GeePlayer\GeePlayer.exe
FirewallRules: [{82AEA62A-7929-40DF-ACA2-04D1C0E3BED2}] => (Allow) C:\Users\Marek\AppData\Roaming\IQIYI Video\LStyle\QyUpdate.exe
FirewallRules: [{42286707-C0FD-4A81-B3A5-94D720169D41}] => (Allow) C:\IQIYI Video\LStyle\QyClient.exe
FirewallRules: [{BFCB2867-BF78-43E1-9206-940886BE5D2D}] => (Allow) C:\IQIYI Video\LStyle\QyWebPlayer.exe
FirewallRules: [{8867C855-71A3-4525-A9AB-3FCBF92F619B}] => (Allow) C:\IQIYI Video\Common\QyKernel.exe
FirewallRules: [{B157DA76-9139-4A80-82ED-84BA7381220C}] => (Allow) C:\IQIYI Video\LStyle\QyPlayer.exe
FirewallRules: [{0E2D0874-7731-4E1E-939D-6656E2A553F3}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\QQPCmgrInstallGuide.exe
FirewallRules: [{8C2B38EB-13D6-4A1C-89F4-0958E46EB629}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\QQPCTray.exe
FirewallRules: [{13188436-4EC0-4F88-8FD1-E589CA1B94E7}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\QQPCMgr.exe
FirewallRules: [{8AE596CA-3B7E-4866-BF1F-AC7A632C9F9B}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\QQPCRTP.exe
FirewallRules: [{C1F064B3-3657-4EA7-AF35-BFE4F75727B3}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\QMDL.exe
FirewallRules: [{C049F9B8-9F90-4F5F-A598-7DFBBBFF87E1}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\bugreport.exe
FirewallRules: [{972CD8D4-F497-480F-87D1-8F145E3AAE58}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\QQPCFileOpen.exe
FirewallRules: [{44868238-4D54-4311-A9D3-0D6091F5474A}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\QQPCLeakScan.exe
FirewallRules: [{FB85C0C5-F71D-4F3C-9851-DC310B92D03C}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\QQPConfig.exe
FirewallRules: [{959192A7-6DC5-457D-9B29-F0C5A2F393C6}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\QQPCSoftMgr.exe
FirewallRules: [{4495A2FD-A377-49FC-A738-74EB34B49C0B}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\plugins\QMNetMon\QQPCNetFlow.exe
FirewallRules: [{17A543A2-0D54-43BE-94A2-0D0C3EE6398E}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\QQPCBTU.exe
FirewallRules: [{9377BAF8-8453-4EA5-BB54-B074715C6441}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\QQPCClinic.exe
FirewallRules: [{C2FEA097-67F6-4F38-8854-7092B9AE4B93}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\QQPCLaunch.exe
FirewallRules: [{2136818B-CBE9-40BD-A033-74AF06200C20}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\QMUpdate\QQPCMgrUpdate.exe
FirewallRules: [{885DCE4C-2087-4B9A-AE1D-BD34EC8A83FA}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\QQPCSoftGame.exe
FirewallRules: [{20FF3183-7052-4D2A-9290-6C5E6C83C28B}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\QQPCSysOptimize.exe
FirewallRules: [{FD72123F-5D9E-4B1D-9C5B-B7AD39C967D2}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\QQPCUpdateAVLib.exe
FirewallRules: [{330C4499-B2CC-453E-9706-CEC014248ED3}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\QQRepair.exe
FirewallRules: [{FCDDEC9F-A79C-4938-A123-F196D3BF2BFB}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\Uninst.exe
FirewallRules: [{5B318333-C462-4EB8-8BF8-20D5C65D6884}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\QQPCPatch.exe
FirewallRules: [{ED18ABD1-9C1B-4CDF-AE5A-C8C2631EBFDC}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\TpkUpdate.exe
FirewallRules: [{B2E99333-C4C2-4D02-9D85-BBDE26B27A32}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\QMRouterMgr.exe
FirewallRules: [{8CB7A243-2317-4A20-AEA4-65F4F2A1E8C7}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\QMAccountProtection.exe
FirewallRules: [{C5FE1C90-A45A-44A6-8F54-EEA1C35A692B}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\QMAdBlock.exe
FirewallRules: [{AE2E3C32-D44D-46F6-8C43-2020C3D50051}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\130\bugreport_xf.exe
FirewallRules: [{3D8AC129-9DA8-4244-867D-A04D9E8DBBD0}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\130\tencentdl.exe
FirewallRules: [{90BA7A1A-D601-49F3-A53B-5558C3051E51}] => (Allow) C:\Program Files (x86)\Rising\RAV\ravmond.exe
FirewallRules: [{708BD72A-00E7-4447-961C-B248EF2B0D21}] => (Allow) C:\Program Files (x86)\Rising\RAV\ravmond.exe
FirewallRules: [{FEE71BD7-AF3A-4967-A450-FA0ED6E12AB3}] => (Allow) C:\IQIYI Video\LStyle\QyPlayer.exe
FirewallRules: [{AE54A72B-8D40-4CCD-BD8F-8200E7A545D4}] => (Allow) C:\Users\Marek\AppData\Roaming\IQIYI Video\LStyle\QyUpdate.exe
FirewallRules: [{8F65C0D1-4215-437C-8C4B-840AFA74BCCE}] => (Allow) C:\IQIYI Video\LStyle\QyClient.exe
FirewallRules: [{AF5F6210-64A4-4CA3-9AF1-DE3F455CA958}] => (Allow) C:\IQIYI Video\LStyle\QyWebPlayer.exe
FirewallRules: [{C5CBB29F-2762-4FE6-B6BF-3008D6F1DD9A}] => (Allow) C:\IQIYI Video\Common\QyKernel.exe
FirewallRules: [{DA5DBAF2-CE7A-4574-90AA-FE5274404186}] => (Allow) C:\IQIYI Video\LStyle\QyPlayer.exe
FirewallRules: [{EB635956-7CD7-40CC-9736-571D832A52DD}] => (Allow) C:\Users\Marek\AppData\Roaming\IQIYI Video\LStyle\GpUpdate.exe
FirewallRules: [{50A90838-15BF-46A1-808F-1BCD61A7E811}] => (Allow) C:\IQIYI Video\GeePlayer\GeePlayer\GeePlayer.exe
FirewallRules: [{0153401D-DC5F-4BEF-A577-DF35456976A9}] => (Allow) C:\Users\Marek\AppData\Roaming\IQIYI Video\LStyle\QyUpdate.exe
FirewallRules: [{14AA99A9-9AB7-48E3-8A9E-AD607D552430}] => (Allow) C:\IQIYI Video\LStyle\QyClient.exe
FirewallRules: [{191AA4F5-D654-49C1-B3EA-C47F7CB07FB0}] => (Allow) C:\IQIYI Video\LStyle\QyWebPlayer.exe
FirewallRules: [{FC3165D1-E96D-4F7F-91D5-EC7C3A089967}] => (Allow) C:\IQIYI Video\Common\QyKernel.exe
FirewallRules: [{FA63517C-6CEE-4D52-A898-39A015EDC0FC}] => (Allow) C:\IQIYI Video\LStyle\QyPlayer.exe
FirewallRules: [{7E0710BA-20EB-4E83-958F-7F0D39B1EC85}] => (Allow) C:\Users\Marek\AppData\Roaming\IQIYI Video\LStyle\QyUpdate.exe
FirewallRules: [{ECEC9A82-449A-4346-AD29-C702C64B7297}] => (Allow) C:\IQIYI Video\LStyle\QyClient.exe
FirewallRules: [{A4D5C4A3-EF25-44E3-9FF0-5027D135D550}] => (Allow) C:\IQIYI Video\LStyle\QyWebPlayer.exe
FirewallRules: [{FA5DED6A-D883-45B8-BA92-39B0A2A31239}] => (Allow) C:\IQIYI Video\Common\QyKernel.exe
FirewallRules: [{F14E64D3-B004-4E46-A546-B183D3AB5498}] => (Allow) C:\IQIYI Video\LStyle\QyPlayer.exe
FirewallRules: [{1F32ECFC-4F10-4FF3-82D2-3C7627A0883C}] => (Allow) C:\Program Files (x86)\UnHackMe\Unhackme.exe
FirewallRules: [{D85724C2-BEA5-4C21-8B7B-C3D5618046D3}] => (Allow) C:\Program Files (x86)\UnHackMe\Unhackme.exe

==================== Faulty Device Manager Devices =============

Name: TsDefenseBt
Description: TsDefenseBt
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: TSDefenseBt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (07/28/2015 04:46:49 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/28/2015 04:29:26 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/28/2015 04:26:11 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/28/2015 03:35:10 PM) (Source: ESENT) (EventID: 215) (User: )
Description: WinMail (6108) WindowsMail0: Zálohování bylo ukončeno, protože bylo zastaveno klientem nebo protože se nezdařilo připojení ke klientovi.

Error: (07/28/2015 03:34:40 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/27/2015 10:49:29 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program reanimator.exe verze 7.70.0.170 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 2a0c

Čas spuštění: 01d0c8ab9ad394e5

Čas ukončení: 0

Cesta k aplikaci: C:\Program Files (x86)\UnHackMe\reanimator.exe

ID hlášení: f6b87d2a-34a0-11e5-abdc-4851b74a68c9

Error: (07/27/2015 10:41:41 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: QyClient.exe, verze: 3.9.26.2911, časové razítko: 0x554c770a
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.18798, časové razítko: 0x5507b3e0
Kód výjimky: 0xc00000fd
Posun chyby: 0x0003fa5a
ID chybujícího procesu: 0x1ab4
Čas spuštění chybující aplikace: 0xQyClient.exe0
Cesta k chybující aplikaci: QyClient.exe1
Cesta k chybujícímu modulu: QyClient.exe2
ID zprávy: QyClient.exe3

Error: (07/27/2015 10:34:07 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program reanimator.exe verze 7.70.0.170 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: aac

Čas spuštění: 01d0c8a964b09485

Čas ukončení: 10

Cesta k aplikaci: C:\Program Files (x86)\UnHackMe\reanimator.exe

ID hlášení: d07661c9-349e-11e5-abdc-4851b74a68c9

Error: (07/27/2015 10:31:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Uninstall.exe_unknown, verze: 0.0.0.0, časové razítko: 0x55b575a8
Název chybujícího modulu: Uninstall.exe, verze: 0.0.0.0, časové razítko: 0x55b575a8
Kód výjimky: 0xc0000005
Posun chyby: 0x0000416f
ID chybujícího procesu: 0x2944
Čas spuštění chybující aplikace: 0xUninstall.exe_unknown0
Cesta k chybující aplikaci: Uninstall.exe_unknown1
Cesta k chybujícímu modulu: Uninstall.exe_unknown2
ID zprávy: Uninstall.exe_unknown3

Error: (07/27/2015 10:29:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Uninstall.exe_unknown, verze: 0.0.0.0, časové razítko: 0x55b61048
Název chybujícího modulu: Uninstall.exe, verze: 0.0.0.0, časové razítko: 0x55b61048
Kód výjimky: 0xc0000005
Posun chyby: 0x00006fac
ID chybujícího procesu: 0x1ed0
Čas spuštění chybující aplikace: 0xUninstall.exe_unknown0
Cesta k chybující aplikaci: Uninstall.exe_unknown1
Cesta k chybujícímu modulu: Uninstall.exe_unknown2
ID zprávy: Uninstall.exe_unknown3


System errors:
=============
Error: (07/28/2015 04:53:35 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (07/28/2015 04:53:14 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Načtení \??\C:\ComboFix\catchme.sys bylo zablokováno kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru
o kompatibilní verzi ovladače.

Error: (07/28/2015 04:50:55 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (07/28/2015 04:46:50 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo: 
TSDefenseBt

Error: (07/28/2015 04:46:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba QQPCMgr RTP Service neuspěla při spuštění v důsledku následující chyby: 
%%2

Error: (07/28/2015 04:44:16 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (07/28/2015 04:29:26 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo: 
TSDefenseBt

Error: (07/28/2015 04:29:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba QQPCMgr RTP Service neuspěla při spuštění v důsledku následující chyby: 
%%2

Error: (07/28/2015 04:25:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba QQPCMgr RTP Service neuspěla při spuštění v důsledku následující chyby: 
%%2

Error: (07/28/2015 04:25:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Windows Media Player Network Sharing neuspěla při spuštění v důsledku následující chyby: 
%%1069


Microsoft Office:
=========================
Error: (07/28/2015 04:46:49 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/28/2015 04:29:26 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/28/2015 04:26:11 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/28/2015 03:35:10 PM) (Source: ESENT) (EventID: 215) (User: )
Description: WinMail6108WindowsMail0:

Error: (07/28/2015 03:34:40 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/27/2015 10:49:29 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: reanimator.exe7.70.0.1702a0c01d0c8ab9ad394e50C:\Program Files (x86)\UnHackMe\reanimator.exef6b87d2a-34a0-11e5-abdc-4851b74a68c9

Error: (07/27/2015 10:41:41 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: QyClient.exe3.9.26.2911554c770antdll.dll6.1.7601.187985507b3e0c00000fd0003fa5a1ab401d0c8aca0735c9cC:\IQIYI Video\LStyle\QyClient.exeC:\Windows\SysWOW64\ntdll.dlle239a655-349f-11e5-abdc-4851b74a68c9

Error: (07/27/2015 10:34:07 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: reanimator.exe7.70.0.170aac01d0c8a964b0948510C:\Program Files (x86)\UnHackMe\reanimator.exed07661c9-349e-11e5-abdc-4851b74a68c9

Error: (07/27/2015 10:31:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Uninstall.exe_unknown0.0.0.055b575a8Uninstall.exe0.0.0.055b575a8c00000050000416f294401d0c8ab34f06ddfC:\Program Files (x86)\CinemaP-1.9cV27.07\Uninstall.exeC:\Program Files (x86)\CinemaP-1.9cV27.07\Uninstall.exe74875438-349e-11e5-abdc-4851b74a68c9

Error: (07/27/2015 10:29:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Uninstall.exe_unknown0.0.0.055b61048Uninstall.exe0.0.0.055b61048c000000500006fac1ed001d0c8aaf4806db4C:\Program Files (x86)\CinemaPlus-4.5vV27.07\Uninstall.exeC:\Program Files (x86)\CinemaPlus-4.5vV27.07\Uninstall.exe33d70ee6-349e-11e5-abdc-4851b74a68c9


CodeIntegrity Error:
===================================
  Date: 2015-07-28 16:53:14.704
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-07-28 16:53:14.672
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-4210M CPU @ 2.60GHz
Percentage of memory in use: 40%
Total physical RAM: 7906.47 MB
Available physical RAM: 4686.61 MB
Total Virtual: 15811.14 MB
Available Virtual: 12587.54 MB

==================== Drives ================================

Drive c: (Windows7_OS) (Fixed) (Total:911.86 GB) (Free:785.76 GB) NTFS ==>[system with boot components (obtained from reading drive)]
Drive e: (F1 2013) (CDROM) (Total:5.51 GB) (Free:0 GB) CDFS
Drive q: (Lenovo_Recovery) (Fixed) (Total:18.19 GB) (Free:0.01 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: AF7E1B88)
Partition 1: (Active) - (Size=1.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=911.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=18.2 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 14.9 GB) (Disk ID: AF7E15A2)
Partition 1: (Not Active) - (Size=14.9 GB) - (Type=73)

==================== End of log ============================