﻿Additional scan result of Farbar Recovery Scan Tool (x64) Version:27-01-2016
Ran by marek (2016-02-04 22:41:51)
Running from C:\Users\marek\Desktop
Windows 10 Home (X64) (2016-01-29 15:00:04)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-653876959-1138201133-1128213178-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-653876959-1138201133-1128213178-503 - Limited - Disabled)
Guest (S-1-5-21-653876959-1138201133-1128213178-501 - Limited - Disabled)
marek (S-1-5-21-653876959-1138201133-1128213178-1001 - Administrator - Enabled) => C:\Users\marek

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Smart Security 9.0.351.2 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 9.0.351.2 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personálny firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Illustrator CS6 (HKLM-x32\...\{4869414E-7AEA-4C8E-BE1C-8D40977FD517}) (Version: 16.0 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Aktualizácie NVIDIA 2.9.1.35 (Version: 2.9.1.35 - NVIDIA Corporation) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.14 - Piriform)
Components (x32 Version: 1.0.023.00 - Lenovo) Hidden
Composer - Php Dependency Manager (HKLM-x32\...\{7315AF68-E777-496A-A6A2-4763A98ED35A}_is1) (Version:  - getcomposer.org)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.5521 - CyberLink Corp.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.2.0.0115 - Disc Soft Ltd)
Dazzle Video Capture DVC100 X64 Driver 1.08 (HKLM-x32\...\{FB4B9EB9-68B2-4C42-8C38-B65F8FE5A5CA}) (Version: 1.08.0000 - Pinnacle)
Dolby Audio X2 Windows API SDK (HKLM\...\{6A478BF2-F67F-4ABC-A7F1-B6B5BA862371}) (Version: 0.5.2.32 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{7DA57EF8-9D20-4126-AF15-D0CC97D0C017}) (Version: 0.4.0.22 - Dolby Laboratories, Inc.)
ESET Smart Security (HKLM\...\{AAF926D8-FC24-4932-8542-4CD2C259E765}) (Version: 9.0.351.2 - ESET, spol. s r.o.)
Football Manager 2016 (HKLM-x32\...\Steam App 378120) (Version:  - SEGA)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 48.0.2564.97 - Spoločnosť Google Inc.)
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Intel(R) Chipset Device Software (x32 Version: 10.1.1.9 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.15.4271 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.6.0.1029 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{7830A022-4C4C-4776-B1BA-220D75FCB9D4}) (Version: 18.1.1538.2273 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{4c8b7360-62a2-4339-b745-41323055d0bb}) (Version: 18.20.0 - Intel Corporation)
Intel® RealSense™ Depth Camera Manager Beta (x86): dptf_com (x32 Version: 2.2.0.48405 - Intel Corporation) Hidden
Intel® RealSense™ Depth Camera Manager F200 (HKLM-x32\...\ARP_for_prd_dcm_runtime_1.4.27.48405) (Version: 1.4.27.48405 - Intel Corporation)
Intel® RealSense™ Depth Camera Manager F200 Gold (x86): Intel® RealSense™ 3D camera IO module (x32 Version: 1.4.27.48405 - Intel Corporation) Hidden
Intel® RealSense™ Depth Camera Manager F200 Gold (x86): Intel® RealSense™ Depth Camera Manager Service (x32 Version: 1.4.27.48405 - Intel Corporation) Hidden
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
JetBrains PhpStorm 10.0.3 (HKLM-x32\...\PhpStorm 10.0.3) (Version: 143.1770 - JetBrains s.r.o.)
Lenovo Accelerator Application (HKLM-x32\...\{10672FE6-3D50-4F79-B0C7-A5573A5D415D}) (Version: 2.2.0.0701 - Lenovo)
Lenovo BatteryGauge (HKLM\...\{B8D3ED8D-A295-44C2-8AE1-56823D44AD1F}) (Version: 1.0.007.00 - Lenovo)
Lenovo Experience Improvement (HKLM\...\LenovoExperienceImprovement) (Version: 2.0.9.0 - Lenovo)
Lenovo FusionEngine  (HKLM-x32\...\Lenovo FusionEngine) (Version: 1.0.13.0 - Lenovo, Inc.)
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.4501 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 8.1.0.4501 - CyberLink Corp.) Hidden
Lenovo Photo Master (HKLM-x32\...\{BC94C56A-3649-420C-8756-2ADEBE399D33}) (Version: 2.1.3128.01 - CyberLink Corp.)
Lenovo PowerDVD12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.5328.55 - CyberLink Corp.)
Lenovo PowerDVD12 (x32 Version: 12.0.5328.55 - CyberLink Corp.) Hidden
Lenovo Product Demo (HKLM-x32\...\{DEF9172A-9D54-450B-9202-E121CE85BD08}) (Version: 1.0.3 - Lenovo)
Lenovo QuickOptimizer (HKLM\...\{8D2C871B-1B9F-45AC-9C43-2BB18089CDFA}) (Version: 1.0.006.00 - Lenovo)
Lenovo Solution Center (HKLM\...\{A5591EC4-8AD6-48EE-9F8D-FACFA8BA4E35}) (Version: 3.0.003.00 - Lenovo)
Lenovo System Interface Foundation (HKLM\...\{C2E5CA37-C862-4A69-AC6D-24F450A20C16}) (Version: 1.0.054.00 - Lenovo)
LenovoUtility (HKLM-x32\...\InstallShield_{6ADA7E88-8D16-4D0D-BC90-2B93AC5E56DA}) (Version: 3.0.0.4 - Lenovo)
LenovoUtility (x32 Version: 3.0.0.4 - Lenovo) Hidden
MAMP & MAMP PRO version 3.2.0 (HKLM-x32\...\{A62E77D4-9B74-4CA0-A254-EFE711F7A298}_is1) (Version: 3.2.0 - appsolute Gmbh)
Metric Collection SDK (x32 Version: 1.1.0012.00 - Lenovo Group Limited) Hidden
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23019 (HKLM-x32\...\{2883cce3-040d-45b1-a27a-07934a6d47ec}) (Version: 14.0.23019.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Node.js (HKLM\...\{0A0387EF-9B43-4255-939B-AC8C8982F735}) (Version: 5.5.0 - Node.js Foundation)
NVIDIA GeForce Experience 2.9.1.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.9.1.35 - NVIDIA Corporation)
NVIDIA Grafický ovládač 361.75 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 361.75 - NVIDIA Corporation)
NVIDIA Ovládač 3D Vision 361.75 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 361.75 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
O2Micro Flash Memory Card Windows Driver (HKLM-x32\...\InstallShield_{A6668863-B0A3-4812-AAF2-E47749ECFE0E}) (Version: 3.3.00.145 - O2Micro International LTD.)
O2Micro Flash Memory Card Windows Driver (Version: 3.3.00.145 - O2Micro International LTD.) Hidden
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Ovládací panel NVIDIA 361.75 (Version: 361.75 - NVIDIA Corporation) Hidden
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Pinnacle MyDVD (HKLM-x32\...\{E6D07A42-38B7-4AAF-A857-2DF7177244D7}) (Version: 1.0 - Pinnacle)
Pinnacle MyDVD (x32 Version: 1.0.089 - Corel Corporation) Hidden
Pinnacle Studio 19 - Install Manager (HKLM\...\{891ED714-E54D-4BE1-8DE8-4EE54D9BB402}) (Version: 19.1.245 - Corel Corporation)
Pinnacle Studio 19 - Standard Content Pack (HKLM\...\{91D1B712-604F-49C8-943F-FD257D647161}) (Version: 19.0 - Corel Corporation)
Pinnacle Studio 19 (HKLM\...\{CF91A83C-B84F-43CE-BCCE-7247E6137173}) (Version: 19.0.1.245 - Corel Corporation)
REACHit (HKLM-x32\...\{4532E4C5-C84D-4040-A044-ECFCC5C6995B}) (Version: 2.5.002.10 - Lenovo)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7624 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 4.1.0260 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.9.1.35 - NVIDIA Corporation) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Sublime Text Build 3083 (HKLM\...\Sublime Text 3_is1) (Version:  - Sublime HQ Pty Ltd)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.17.26 - Synaptics Incorporated)
User Manuals (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 4.0.0.1 - Lenovo)
User Manuals (x32 Version: 4.0.0.1 - Lenovo) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WinRAR 5.30 (64-bitová verzia) (HKLM\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-653876959-1138201133-1128213178-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\marek\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileCoAuth.exe (Microsoft Corporation)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0AFB315B-2505-419C-89A6-B6D4955E6336} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2015-07-08] (Lenovo)
Task: {149FFA0D-212D-4442-88AA-10C1F749B8C0} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_TVSUUpdateTask => add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler  /v start /t reg_dword /d 1 /f /reg:32
Task: {22E3D9AF-9556-4444-B1B2-1FD262D6E242} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-01-15] (Piriform Ltd)
Task: {251EEE59-0155-4C02-9C60-EE33B7059EBE} - System32\Tasks\PDVDServ12 Task => C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe [2015-05-28] (CyberLink Corp.)
Task: {3AD3EE4D-C452-4DEC-81BA-6389DF471EA1} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {470A1D5F-0E9B-4D55-8620-397838A6428D} - System32\Tasks\Lenovo\Experience Improvement => C:\Program Files\Lenovo\ExperienceImprovement\LenovoExperienceImprovement.exe [2016-01-29] (Lenovo)
Task: {63BE207D-1FDE-4D6A-8FDA-D049E6316D0E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {65C73A85-4737-4BB3-A5EC-474FB4280A2F} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2015-07-17] ()
Task: {89D94245-4F3C-41BD-973F-995F43A6AB8C} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [2015-07-17] (Lenovo)
Task: {A20B2CAE-96B0-4388-B8C9-A8AC43E1FEAA} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {A29A808F-B00D-457D-B9E2-975563E2DA4A} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2016-01-30] (Microsoft Corporation)
Task: {A9C1FA86-39AC-43BF-89A5-259F34FD5304} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => control iMControllerService 128
Task: {B11481BC-F4A7-4092-95D1-4CDB21F77F4D} - System32\Tasks\Lenovo\BatteryGauge => C:\Program Files\lenovo\BatteryGauge\BatteryGaugeIcon.exe [2015-07-11] (Lenovo)
Task: {C147CA37-3C73-4296-A86C-B0278CD1B970} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2015-07-17] ()
Task: {CF4FB1F9-BD17-4EB1-ADBE-3B754621D58E} - System32\Tasks\CyberLink\Photo Master Gadget startup => C:\Program
Task: {D31884F9-08E3-4BD2-99F0-19606B4ECA24} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-29] (Google Inc.)
Task: {ED6AD858-180C-4376-903A-664CC122910B} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [2015-07-17] (Lenovo)
Task: {F909B999-E3BE-4F7F-8A49-68A569A42712} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-29] (Google Inc.)
Task: {FA8C75B0-3E29-42EF-9733-9EAC968D1585} - System32\Tasks\Microsoft Office 15 Sync Maintenance for LAPTOP-A9AFG5JQ-marek LAPTOP-A9AFG5JQ => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [2012-10-01] (Microsoft Corporation)
Task: {FDBBDFBB-9EDD-4D64-8B72-1C9BF84399F2} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2015-07-10 12:00 - 2015-07-10 12:00 - 00028160 _____ () C:\Windows\SYSTEM32\efsext.dll
2015-12-11 03:46 - 2015-12-11 03:46 - 00032768 _____ () C:\Windows\SYSTEM32\licensemanagerapi.dll
2015-12-11 03:32 - 2016-01-23 02:01 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-01-30 14:53 - 2015-08-11 10:14 - 00404480 _____ () C:\Windows\System32\diagtrack_wininternal.dll
2015-09-15 01:58 - 2015-09-15 01:58 - 00176640 _____ () C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
2015-12-11 04:00 - 2015-12-11 04:00 - 00024312 _____ () C:\Program Files (x86)\Lenovo\LenovoPortal\LenovoPortalService.exe
2016-01-29 16:31 - 2016-01-23 03:55 - 00291264 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2015-12-11 04:00 - 2015-12-11 04:00 - 00226216 _____ () C:\Program Files\update\UpdateAgent.exe
2016-01-30 14:54 - 2015-09-17 07:48 - 02494712 _____ () C:\Windows\system32\CoreUIComponents.dll
2016-01-30 14:54 - 2015-09-17 07:48 - 02494712 _____ () C:\Windows\System32\CoreUIComponents.dll
2012-10-01 20:36 - 2012-10-01 20:36 - 06522480 _____ () C:\Program Files\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2016-01-30 14:53 - 2015-09-17 06:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-01-30 14:55 - 2015-11-25 05:20 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-01-30 14:55 - 2015-11-25 05:17 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-01-30 14:55 - 2015-11-25 05:17 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-01-30 14:55 - 2015-09-17 06:43 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 12:00 - 2015-07-10 14:15 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2015-12-11 02:53 - 2015-12-11 02:53 - 00791848 _____ () C:\Program Files\Lenovo\LenovoUtility\utility.exe
2015-12-11 02:53 - 2015-12-11 02:53 - 00097048 _____ () C:\Program Files\Lenovo\LenovoUtility\kbdhook.dll
2015-06-16 03:53 - 2015-06-16 03:53 - 00628736 _____ () C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe
2015-12-11 03:32 - 2016-01-23 03:55 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-01-29 16:35 - 2015-12-15 06:54 - 00782336 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2016-01-29 16:35 - 2015-07-03 17:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2016-01-29 16:35 - 2016-02-02 21:30 - 02546768 _____ () C:\Program Files (x86)\Steam\video.dll
2016-01-29 16:35 - 2015-09-24 01:33 - 02549248 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2016-01-29 16:35 - 2015-09-24 01:33 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2016-01-29 16:35 - 2015-09-24 01:33 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2016-01-29 16:35 - 2015-09-24 01:33 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2016-01-29 16:35 - 2015-09-24 01:33 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2016-01-29 16:35 - 2015-07-03 17:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2016-01-29 16:35 - 2015-07-03 17:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2016-01-29 16:35 - 2016-02-02 21:29 - 00802896 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-01-29 16:35 - 2015-12-30 02:51 - 00208896 _____ () C:\Program Files (x86)\Steam\bin\openvr_api.dll
2015-12-11 02:55 - 2014-07-04 05:35 - 00627672 _____ () C:\Program Files (x86)\Lenovo\Power2Go\CLMediaLibrary.dll
2014-07-04 21:35 - 2014-07-04 21:35 - 00016856 _____ () C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvcPS.dll
2016-01-29 16:35 - 2016-01-06 02:52 - 48387872 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2015-12-11 02:52 - 2015-07-28 05:05 - 00875960 _____ () C:\Program Files (x86)\Lenovo\Lenovo Photo Master\subsys\Kernel\Boomerang\UNO.dll
2015-12-11 02:52 - 2015-07-28 04:47 - 00081920 _____ () C:\Program Files (x86)\Lenovo\Lenovo Photo Master\koan\_ctypes.pyd
2015-12-11 02:52 - 2015-07-28 04:47 - 00053248 _____ () C:\Program Files (x86)\Lenovo\Lenovo Photo Master\koan\_socket.pyd
2015-12-11 02:52 - 2015-07-28 04:47 - 00655360 _____ () C:\Program Files (x86)\Lenovo\Lenovo Photo Master\koan\_ssl.pyd
2015-12-11 02:52 - 2015-07-28 04:47 - 00753664 _____ () C:\Program Files (x86)\Lenovo\Lenovo Photo Master\koan\_bsddb.pyd
2015-12-11 02:53 - 2015-02-13 01:02 - 00224696 _____ () C:\Program Files (x86)\Lenovo\CCSDK\SDKClient.dll
2015-08-07 10:09 - 2015-08-07 10:09 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-07-10 12:04 - 2015-07-10 12:02 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-653876959-1138201133-1128213178-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\marek\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img1.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKU\S-1-5-21-653876959-1138201133-1128213178-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-653876959-1138201133-1128213178-1001\...\StartupApproved\Run: => "Steam"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{2FDCB4AF-B307-4BCA-9514-1C14A52C7206}] => (Allow) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoPlus.exe
FirewallRules: [{01436F4A-F736-4B78-A5EE-10D26A510868}] => (Allow) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\subsys\AdvPhotoEditor\PhotoDirector5.exe
FirewallRules: [{0F8C930F-D86D-4F30-8061-C785BDBD5288}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{3450DEC1-391B-4FEB-A2AC-64265DE15046}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{518937EA-EB67-44FD-9C4A-66D88ED8995C}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{401F41F6-DC04-4B17-BC45-51E082081426}] => (Allow) C:\Program Files (x86)\Lenovo\LenovoPortal\Lenovo.Portal.exe
FirewallRules: [{54A24FC0-B3B5-45BB-8198-66B8A1A2877A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{22FBA905-FE4D-4FFA-88F4-8A68083174FC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{CAACA117-C62C-4E8A-8A36-0CB4E37A51E3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{84EA8F8D-3E9B-4CA7-96DE-CA7A5E6B522B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{5604B097-8748-434D-9A3A-3355079FA414}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{E40C01B1-4BDE-479E-9BDB-13D4DA29B0BD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{864D06E8-1A59-4C21-8F98-508974D67835}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{CFCC38DD-180A-43B1-8BEE-F270087ED3FE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{D80E52B8-0BCC-4F56-8182-206FDF374218}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{D512EE0F-F0E5-487C-BC3B-9390EAD655BE}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{E9754387-F364-4D9E-8AA4-4D47121E9CC3}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{0933F9B5-92C0-4299-8F7D-310656800887}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{63F66F91-FA18-4BA8-8814-546C83C06F0F}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{585C7661-243B-42A4-BA35-FB8BB9C331C9}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [TCP Query User{4A8BA238-CBA7-4818-8481-F1937EB190C3}C:\users\marek\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\marek\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{2477273B-0EFF-4B23-A0C8-E58A8BEF5805}C:\users\marek\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\marek\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{4C5F60E6-9A97-4C1F-A7FF-59FF22297696}] => (Block) M:\adobe photoshop\Adobe Photoshop CS6 (64 Bit)\Photoshop.exe
FirewallRules: [{D17BA2D5-8AC4-4FFC-BE8B-BFD0FA0A25F5}] => (Block) M:\adobe illustrator\Adobe Bridge CS6 (64 Bit)\Bridge.exe
FirewallRules: [{3B08FFA2-7D4A-4A61-B709-1DD06A004AD1}] => (Allow) M:\pinnacle studio\programs\RM.exe
FirewallRules: [{2B626C8F-2DB0-44EA-BF32-63514A37FDEE}] => (Allow) M:\pinnacle studio\programs\RM.exe
FirewallRules: [{57097EDB-7591-4331-A280-9EB42FA988C9}] => (Allow) M:\pinnacle studio\programs\NGStudio.exe
FirewallRules: [{1EBA1686-9035-49D2-946B-15C657251738}] => (Allow) M:\pinnacle studio\programs\NGStudio.exe
FirewallRules: [{0B6344E3-4C17-4DD0-980F-56B3F0FB2272}] => (Allow) M:\pinnacle studio\programs\UMI.exe
FirewallRules: [{CA2E5168-60DE-465C-9995-D9A43F4187CF}] => (Allow) M:\pinnacle studio\programs\UMI.exe
FirewallRules: [{D5D0125A-F364-42E4-893F-2854BB90883A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{ADAAD7FD-237E-4A14-92AF-6C6D19498E19}] => (Allow) D:\Football manager 2016\steamapps\common\Football Manager 2016\fm.exe
FirewallRules: [{580C314F-DA8E-4152-B5AF-9CBADEA1228D}] => (Allow) D:\Football manager 2016\steamapps\common\Football Manager 2016\fm.exe

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (02/04/2016 06:26:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: AUDIODG.EXE, verzia: 10.0.10240.16384, časová značka: 0x559f3a8d
Názov chybujúceho modulu: ntdll.dll, verzia: 10.0.10240.16603, časová značka: 0x5655363f
Kód výnimky: 0xc0000005
Odstup chyby: 0x0000000000034f4d
Identifikácia chybujúceho procesu: 0x1f90
Čas spustenia chybujúcej aplikácie: 0xAUDIODG.EXE0
Cesta chybujúcej aplikácie: AUDIODG.EXE1
Cesta chybujúceho modulu: AUDIODG.EXE2
Identifikácia hlásenia: AUDIODG.EXE3
Celé meno chybujúceho balíka: AUDIODG.EXE4
Identifikácia chybujúcej aplikácie vzhľadom na balík: AUDIODG.EXE5

Error: (02/04/2016 06:08:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: AUDIODG.EXE, verzia: 10.0.10240.16384, časová značka: 0x559f3a8d
Názov chybujúceho modulu: ntdll.dll, verzia: 10.0.10240.16603, časová značka: 0x5655363f
Kód výnimky: 0xc0000005
Odstup chyby: 0x0000000000034f4d
Identifikácia chybujúceho procesu: 0x1ac0
Čas spustenia chybujúcej aplikácie: 0xAUDIODG.EXE0
Cesta chybujúcej aplikácie: AUDIODG.EXE1
Cesta chybujúceho modulu: AUDIODG.EXE2
Identifikácia hlásenia: AUDIODG.EXE3
Celé meno chybujúceho balíka: AUDIODG.EXE4
Identifikácia chybujúcej aplikácie vzhľadom na balík: AUDIODG.EXE5

Error: (02/04/2016 12:30:16 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP-A9AFG5JQ)
Description: Aktivácia aplikácie Microsoft.WindowsStore_8wekyb3d8bbwe!App zlyhala pre chybu: -2144927150 Ďalšie informácie nájdete v denníku Microsoft-Windows-TWinUI/Operational.

Error: (02/04/2016 11:09:52 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP-A9AFG5JQ)
Description: Aktivácia aplikácie Microsoft.WindowsStore_8wekyb3d8bbwe!App zlyhala pre chybu: -2144927150 Ďalšie informácie nájdete v denníku Microsoft-Windows-TWinUI/Operational.

Error: (02/04/2016 10:16:47 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP-A9AFG5JQ)
Description: Aktivácia aplikácie LenovoCorporation.LenovoSettings_3.53.0.0_x86__4642shxvsv8s2:App.AppX2v13vrf647c31yc6xf2ksz58d9hr2m9f.mca zlyhala pre chybu: -2144927150 Ďalšie informácie nájdete v denníku Microsoft-Windows-TWinUI/Operational.

Error: (02/04/2016 10:16:44 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP-A9AFG5JQ)
Description: Aktivácia aplikácie LenovoCorporation.LenovoSettings_3.53.0.0_x86__4642shxvsv8s2:App.AppX2v13vrf647c31yc6xf2ksz58d9hr2m9f.mca zlyhala pre chybu: -2144927150 Ďalšie informácie nájdete v denníku Microsoft-Windows-TWinUI/Operational.

Error: (02/04/2016 10:12:43 AM) (Source: ESENT) (EventID: 455) (User: )
Description: SettingSyncHost (2844) {F9882215-2E9D-4661-9DA6-85726C0DE393}: Error -1032 (0xfffffbf8) occurred while opening logfile C:\Users\marek\AppData\Local\Microsoft\Windows\SettingSync\metastore\edb.log.

Error: (02/04/2016 10:12:43 AM) (Source: ESENT) (EventID: 490) (User: )
Description: SettingSyncHost (2844) {F9882215-2E9D-4661-9DA6-85726C0DE393}: An attempt to open the file "C:\Users\marek\AppData\Local\Microsoft\Windows\SettingSync\metastore\edb.log" for read / write access failed with system error 32 (0x00000020): "The process cannot access the file because it is being used by another process. ".  The open file operation will fail with error -1032 (0xfffffbf8).

Error: (02/04/2016 09:49:14 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP-A9AFG5JQ)
Description: Aktivácia aplikácie Microsoft.WindowsStore_8wekyb3d8bbwe!App zlyhala pre chybu: -2144927150 Ďalšie informácie nájdete v denníku Microsoft-Windows-TWinUI/Operational.

Error: (02/04/2016 08:30:37 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: AUDIODG.EXE, verzia: 10.0.10240.16384, časová značka: 0x559f3a8d
Názov chybujúceho modulu: ntdll.dll, verzia: 10.0.10240.16603, časová značka: 0x5655363f
Kód výnimky: 0xc0000005
Odstup chyby: 0x0000000000034f4d
Identifikácia chybujúceho procesu: 0x1e6c
Čas spustenia chybujúcej aplikácie: 0xAUDIODG.EXE0
Cesta chybujúcej aplikácie: AUDIODG.EXE1
Cesta chybujúceho modulu: AUDIODG.EXE2
Identifikácia hlásenia: AUDIODG.EXE3
Celé meno chybujúceho balíka: AUDIODG.EXE4
Identifikácia chybujúcej aplikácie vzhľadom na balík: AUDIODG.EXE5


System errors:
=============
Error: (02/04/2016 10:16:20 PM) (Source: Schannel) (EventID: 4102) (User: NT AUTHORITY)
Description: A fatal error occurred when attempting to access the SSL server credential private key. The error code returned from the cryptographic module is 0x8009030d. The internal error state is 10001.

Error: (02/04/2016 10:14:32 PM) (Source: Schannel) (EventID: 4102) (User: NT AUTHORITY)
Description: A fatal error occurred when attempting to access the SSL server credential private key. The error code returned from the cryptographic module is 0x8009030d. The internal error state is 10001.

Error: (02/04/2016 10:14:32 PM) (Source: Schannel) (EventID: 4102) (User: NT AUTHORITY)
Description: A fatal error occurred when attempting to access the SSL server credential private key. The error code returned from the cryptographic module is 0x8009030d. The internal error state is 10001.

Error: (02/04/2016 09:17:23 PM) (Source: Schannel) (EventID: 4102) (User: NT AUTHORITY)
Description: A fatal error occurred when attempting to access the SSL server credential private key. The error code returned from the cryptographic module is 0x8009030d. The internal error state is 10001.

Error: (02/04/2016 09:04:54 PM) (Source: Schannel) (EventID: 4102) (User: NT AUTHORITY)
Description: A fatal error occurred when attempting to access the SSL server credential private key. The error code returned from the cryptographic module is 0x8009030d. The internal error state is 10001.

Error: (02/04/2016 09:01:43 PM) (Source: Schannel) (EventID: 4102) (User: NT AUTHORITY)
Description: A fatal error occurred when attempting to access the SSL server credential private key. The error code returned from the cryptographic module is 0x8009030d. The internal error state is 10001.

Error: (02/04/2016 08:57:07 PM) (Source: Schannel) (EventID: 4102) (User: NT AUTHORITY)
Description: A fatal error occurred when attempting to access the SSL server credential private key. The error code returned from the cryptographic module is 0x8009030d. The internal error state is 10001.

Error: (02/04/2016 08:57:07 PM) (Source: Schannel) (EventID: 4102) (User: NT AUTHORITY)
Description: A fatal error occurred when attempting to access the SSL server credential private key. The error code returned from the cryptographic module is 0x8009030d. The internal error state is 10001.

Error: (02/04/2016 08:23:36 PM) (Source: Schannel) (EventID: 4102) (User: NT AUTHORITY)
Description: A fatal error occurred when attempting to access the SSL server credential private key. The error code returned from the cryptographic module is 0x8009030d. The internal error state is 10001.

Error: (02/04/2016 08:17:14 PM) (Source: Schannel) (EventID: 4102) (User: NT AUTHORITY)
Description: A fatal error occurred when attempting to access the SSL server credential private key. The error code returned from the cryptographic module is 0x8009030d. The internal error state is 10001.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-6700HQ CPU @ 2.60GHz
Percentage of memory in use: 14%
Total physical RAM: 16243.78 MB
Available physical RAM: 13917.88 MB
Total Virtual: 19187.78 MB
Available Virtual: 16788.16 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:96.09 GB) (Free:39.95 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: () (Fixed) (Total:443.23 GB) (Free:437.02 GB) NTFS
Drive m: (Nový zväzok) (Fixed) (Total:488.28 GB) (Free:482.14 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: E1DCCD58)

Partition: GPT.

========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: DC99E855)

Partition: GPT.

==================== End of Addition.txt ============================