Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-12-2016
Ran by DK (04-12-2016 22:56:46)
Running from D:\
Windows 8.1 Pro (Update) (X64) (2014-01-25 07:37:36)
Boot Mode: Safe Mode (minimal)
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-800057701-3447766818-2358033227-500 - Administrator - Disabled)
DK (S-1-5-21-800057701-3447766818-2358033227-1001 - Administrator - Enabled) => C:\Users\DK
Guest (S-1-5-21-800057701-3447766818-2358033227-501 - Limited - Enabled) => C:\Users\Guest
HomeGroupUser$ (S-1-5-21-800057701-3447766818-2358033227-1005 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {C37D8F93-0602-E43C-40AA-47DAD597F308}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {781C6E77-2038-EBB2-7A1A-7CA8AE10B9B5}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-800057701-3447766818-2358033227-1001\...\uTorrent) (Version: 3.4.5.41202 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 21.0.0.215 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.207 - Adobe Systems Incorporated)
AirLive X.USB (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 7.0 - OvisLink)
AMP WinOFF 5.0.1 (HKLM-x32\...\AMP WinOFF) (Version: 5.0.1 - Alberto Martinez Perez)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{cc892976-0919-4ba9-ab52-ae15d2127a12}) (Version: 18.21.0 - Intel Corporation)
Apple Mobile Device Support (HKLM\...\{D4D86CB2-2370-4691-8272-3869EDED6C64}) (Version: 10.0.0.18 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
avast! Free Antivirus (HKLM-x32\...\avast5) (Version: 5.0.462.0 - Alwil Software)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Classic Shell (HKLM\...\{840C85B7-D3D6-4143-9AF9-DAE80FD54CFC}) (Version: 4.1.0 - IvoSoft)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dependency Package Update (Version: 1.6.29.00 - Lenovo Inc.) Hidden
Dependency Package Update (Version: 1.6.38.00 - Lenovo Inc.) Hidden
Dependency Package Update (x32 Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (x32 Version: 1.6.38.00 - Lenovo Group Limited) Hidden
Dependency Package Update (x32 Version: 1.6.38.01 - Lenovo Group Limited) Hidden
Disable AMT Profile Synchronization Pop-up for Windows XP/Vista/7/8 (HKLM\...\DisableAMTPopup) (Version: 1.00 - )
Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.8000.17 - Dolby Laboratories Inc)
EPSON SX420W Series Printer Uninstall (HKLM\...\EPSON SX420W Series) (Version:  - SEIKO EPSON Corporation)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.99 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
i686-6.2.0-posix-dwarf-rt_v5-rev1 (HKLM-x32\...\i686-6.2.0-posix-dwarf-rt_v5-rev1) (Version:  - MinGW-W64)
Inkscape 0.91 (HKLM\...\{81922150-317E-4BB0-A31D-FF1C14F707C5}) (Version: 0.91 - inkscape.org)
Integrated Camera (HKLM-x32\...\Sunplus SPUVCb) (Version: 3.4.7.31 - SunplusIT)
Intel Android Device USB driver (HKLM\...\Intel Android Device USB driver) (Version: 1.9.0 - Intel)
Intel AppUp(R) center (HKLM-x32\...\Intel AppUp(R) center 41651) (Version: 3.8.0.41651.58 - Intel)
Intel Driver Update Utility (HKLM-x32\...\{ca4bc3a8-b99c-4416-90d8-351a8ceab458}) (Version: 2.2.0.2 - Intel)
Intel(R) Driver Update Utility 2.2 (x32 Version: 2.2.0.1 - Intel) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1156 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel(R) WiDi (HKLM\...\{6097158B-0184-4140-BEC3-7885794D2571}) (Version: 3.5.40.0 - Intel Corporation)
Intel® Chipset Device Software (x32 Version: 10.1.1.9 - Intel(R) Corporation) Hidden
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 5.2.1.126 - IObit)
iSocUSB Driver version 1.2.0 (HKLM\...\iSocUSB Driver_is1) (Version: 1.2.0 - Intel Corporation 2013)
iTunes (HKLM\...\{9946A4F7-E0FD-4A33-82D1-06CBFFBBB9F9}) (Version: 12.5.1.21 - Apple Inc.)
Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.15 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Jumpstart Installation Program (HKLM-x32\...\{B0BCDCBD-863D-4CAB-BF68-8D1F6B1BDC13}) (Version:  - Atheros)
Lenovo Auto Scroll Utility (HKLM\...\LenovoAutoScrollUtility) (Version: 2.20 - Lenovo)
Lenovo Dependency Package (HKLM\...\Lenovo Dependency Package_is1) (Version: 1.6.38.00 - Lenovo Group Limited)
Lenovo HID HW Radio Driver 1.0.0.58 (HKLM\...\{E5325F32-D15A-4131-B029-4A5B7609E532}_is1) (Version: 1.0.0.58 - Lenovo)
Lenovo On Screen Display (HKLM\...\OnScreenDisplay) (Version: 8.80.05 - Lenovo)
Lenovo Patch Utility (HKLM-x32\...\{AD32F5E9-6BDD-480A-8B7B-95571D04691C}) (Version: 1.3.1.1 - Lenovo Group Limited)
Lenovo Patch Utility (x32 Version: 1.3.2.6 - Lenovo Group Limited) Hidden
Lenovo Patch Utility 64 bit (HKLM\...\{ABE4638D-D208-4061-9F26-E3E11E3A1E0C}) (Version: 1.3.1.1 - Lenovo Group Limited)
Lenovo Patch Utility 64 bit (Version: 1.4.0.4 - Lenovo Group Limited) Hidden
Lenovo Peer Connect SDK (HKLM\...\{75C87855-9CBB-4892-B1A9-74C73A19CACA}_is1) (Version: 1.0.0.1 - Lenovo)
Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.10.20 - Lenovo)
Lenovo QuickControl (HKLM-x32\...\{4855C42F-5197-4AAD-A50D-5066D2CC4647}) (Version: 2.00 - Lenovo Group Limited)
Lenovo Settings - Camera Audio (HKLM\...\{88C6A6D9-324C-46E8-BA87-563D14021442}_is1) (Version: 4.3.30.280 - Lenovo Corporation)
Lenovo Settings - Location Awareness (HKLM-x32\...\{C79D4402-E622-4922-9C02-89F9080BF081}_is1) (Version: 1.5.0.3 - Lenovo Group Limited)
Lenovo Settings Dependency Package (HKLM\...\{3694BA2E-BE31-4B7E-886B-A0B559E69D4D}_is1) (Version: 2.4.0.21 - Lenovo Group Limited)
Lenovo Settings Mobile Hotspot (HKLM\...\{42603F7D-B08D-436B-B0D8-3E2DEF1AFD41}_is1) (Version: 2.3.0.90 - Lenovo)
Lenovo Settings Service (HKLM\...\{8C6F1EBA-17F1-4481-B688-9777E63E985F}_is1) (Version: 2.4.0.9 - Lenovo Group Limited)
Lenovo Settings UMDF driver (HKLM\...\{2BDC7413-65EA-4B99-8C4B-02F11075BE6D}_is1) (Version: 1.2.0.7 - Lenovo Group Limited)
Lenovo System Update (HKLM-x32\...\{25C64847-B900-48AD-A164-1B4F9B774650}) (Version: 5.07.0037 - Lenovo)
Lenovo USB 2.0 Ethernet Adapter (HKLM-x32\...\{29584513-DC7F-4EB9-8654-7C541DF0DDCE}) (Version: 1.02 - Lenovo)
Lenovo User Guide (HKLM-x32\...\{13F59938-C595-479C-B479-F171AB9AF64F}) (Version: 1.0.0012.00 - Lenovo Group Limited)
Lenovo Warranty Information (HKLM-x32\...\{FD4EC278-C1B1-4496-99ED-C0BE1B0AA521}) (Version: 1.0.0011.00 - Lenovo)
LinuxLive USB Creator (HKLM-x32\...\LinuxLive USB Creator) (Version: 2.9 - Thibaut Lauziere)
Malwarebytes Anti-Malware verze 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Martech RCDx 3.2 (HKLM-x32\...\{42F968A9-1B08-45C2-81C2-7D5710B07142}_is1) (Version: 3.2 - Martech, Inc.)
Medialooks Screen Capture 2.0.3.3984 (HKLM-x32\...\{CD23D8DC-10C4-40CF-8595-A3A966935AB2}) (Version: 2.0.3.3984 - Medialooks)
Metric Collection SDK (x32 Version: 1.1.0008.00 - Lenovo Group Limited) Hidden
Metric Collection SDK 35 (x32 Version: 1.2.0001.00 - Lenovo Group Limited) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
MiniTool Partition Wizard Professional Edition 8.1.1 (HKLM-x32\...\{2991A446-D356-44EC-930A-42E8B02A67C0}_is1) (Version:  - MiniTool Solution Ltd.)
Mobile Broadband Drivers (HKLM-x32\...\{68D0E8C7-E4F8-424E-A6D6-97A06A323FFE}) (Version: 8.0.10.1 - Ericsson AB)
Mobile Broadband Drivers (HKLM-x32\...\{EA9640BE-414E-4195-B53B-7905BF1A5A09}) (Version: 7.2.5.4 - Ericsson AB)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 50.0.2 (x86 cs) (HKLM-x32\...\Mozilla Firefox 50.0.2 (x86 cs)) (Version: 50.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.0.2.6177 - Mozilla)
Mozilla Thunderbird 45.5.0 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 45.5.0 (x86 cs)) (Version: 45.5.0 - Mozilla)
Nmap 6.46 (HKLM-x32\...\Nmap) (Version:  - )
Oracle VM VirtualBox 5.1.6 (HKLM\...\{EEDDD7E2-A7A2-4FA9-8C32-ADB29A5096FF}) (Version: 5.1.6 - Oracle Corporation)
OSTotoHotspot (HKLM-x32\...\OSTotoHotspot) (Version: 4.1.10.8 - 深圳市驱动人生软件技术有限公司)
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{29DB9165-5FC1-48F0-9188-26123F526848}) (Version: 5.0.1 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{5905C8CF-1C88-4478-A48E-4E458AD1BC7E}) (Version: 5.0.1 - Apple Inc.)
Polar Daemon (HKLM-x32\...\{2BA9320D-E061-4C71-ACCB-AC0E9D4FC82B}) (Version: 2.2.20000 - Polar Electro Oy)
Polar WebSync (HKLM-x32\...\{A3C03067-855A-4B5B-B08B-A1BFD68FCAF8}) (Version: 2.8.30000 - Polar Electro Oy)
Potplayer-64 Bits (HKLM\...\PotPlayer64) (Version:  - Daum Communications Corp.)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7040 - Realtek Semiconductor Corp.)
RICOH_Media_Driver_v2.25.18.01 (HKLM-x32\...\{FE041B02-234C-4AAA-9511-80DF6482A458}) (Version: 2.25.18.01 - RICOH)
RMPrepUSB (HKLM-x32\...\RMPrepUSB) (Version:  - )
SDFormatter (HKLM-x32\...\{179324FF-7B16-4BA8-9836-055CAAEE4F08}) (Version: 4.0.0 - SD Association)
Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.)
ThinkPad UltraNav Driver (HKLM\...\SynTPDeinstKey) (Version: 16.2.19.14 - )
ThinkVantage Fingerprint Software (HKLM\...\{68D50088-CE92-4FF0-A220-D875E2E73151}) (Version: 6.0.0.8102 - Authentec Inc.)
ThinkVantage Password Manager (HKLM-x32\...\{70EE2BAA-F82A-4B8A-950E-649EFD64D5B9}) (Version: 4.70.2.0 - Lenovo Group Limited)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.51 RC2 - Ghisler Software GmbH)
TransMac version 11.8 (HKLM-x32\...\TransMac_is1) (Version: 11.8 - Acute Systems)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WhatsApp (HKU\S-1-5-21-800057701-3447766818-2358033227-1001\...\WhatsApp) (Version: 0.2.1880 - WhatsApp)
WIDCOMM Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.9580 - Broadcom Corporation)
WiFi8 (HKLM-x32\...\{D8946C10-3AF0-1453-F579-944742CF5EBF}) (Version: 1.0.0.0 - The Windows Club)
Win32DiskImager version 0.9.5 (HKLM-x32\...\{D074CE74-912A-4AD3-A0BF-3937D9D01F17}_is1) (Version: 0.9.5 - ImageWriter Developers)
Windows Driver Package - Beats Electronics, LLC (KernelModeUSB) USBDevice  (08/03/2015 11.13.37.619) (HKLM\...\C8D774814AD57905AFADFC0987F6CE54830F5DCD) (Version: 08/03/2015 11.13.37.619 - Beats Electronics, LLC)
Windows Driver Package - Intel (ISCT) System  (05/04/2012 1.0.7.0) (HKLM\...\C8CA88388A58C08FD1318BB111CC8BDC79A3B577) (Version: 05/04/2012 1.0.7.0 - Intel)
Windows Driver Package - Intel System  (01/11/2012 9.3.0.1020) (HKLM\...\09839A9B5EDA69DA2DCC34637B5140AAF8A53B44) (Version: 01/11/2012 9.3.0.1020 - Intel)
Windows Driver Package - Intel System  (08/26/2011 9.3.0.1011) (HKLM\...\9D7CD466F7FC8B18FF1B84943B7BB8648D17FCE8) (Version: 08/26/2011 9.3.0.1011 - Intel)
Windows Driver Package - Intel System  (08/26/2011 9.3.0.1011) (HKLM\...\D8EF6CACF49BD33CC1FACD124C8CC2B1A8E8AE35) (Version: 08/26/2011 9.3.0.1011 - Intel)
Windows Driver Package - Intel USB  (08/26/2011 9.3.0.1011) (HKLM\...\97EE1802A0385A37DE6323FA39EC76BEB2D73E41) (Version: 08/26/2011 9.3.0.1011 - Intel)
Windows Driver Package - Lenovo 1.66.00.07 (08/15/2012 1.66.00.07) (HKLM\...\E56A6B34B44A7A597FFEBE0E14D81095E0FD4D73) (Version: 08/15/2012 1.66.00.07 - Lenovo)
Windows Driver Package - Synaptics (SmbDrv) System  (10/17/2012 16.2.19.2) (HKLM\...\A77C050AE33CE8C74E71FDF8578DB13900B8A1F4) (Version: 10/17/2012 16.2.19.2 - Synaptics)
Windows Driver Package - Synaptics (SynTP) Mouse  (10/17/2012 16.2.19.2) (HKLM\...\8305FD4F3A6C1E86A14473501EA23FDEB1382CB7) (Version: 10/17/2012 16.2.19.2 - Synaptics)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - CACE Technologies)
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Wondershare Dr.Fone for iOS(Build 6.4.3.9) (HKLM-x32\...\{A26F8BBD-EC10-4bdc-8AD8-F146825A8A63}_is1) (Version: 6.4.3.9 - Wondershare Software Co.,Ltd.)
WPS Office (9.1.0.4746) (HKU\S-1-5-21-800057701-3447766818-2358033227-1001\...\WPS Office) (Version: 9.1.0.4746 - Kingsoft Corp.)
WSM Brokers Trader (HKLM-x32\...\WSM Brokers Trader) (Version: 4.00 - MetaQuotes Software Corp.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-800057701-3447766818-2358033227-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-800057701-3447766818-2358033227-1001_Classes\CLSID\{9E506282-69D3-5ABA-9C1D-15994B37F4AC}\InprocServer32 -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp_x64.dll (Intel)
CustomCLSID: HKU\S-1-5-21-800057701-3447766818-2358033227-1001_Classes\CLSID\{9E506282-69D3-5ABA-9C1D-15994B37F4AD}\InprocServer32 -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp_x64.dll (Intel)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {2C281AD6-5271-421C-98C4-AB7ECE32162F} - System32\Tasks\Dolby Selector => C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [2012-08-31] (Dolby Laboratories Inc.)
Task: {3C1B85B7-FAD6-4470-9503-0A2CCCBFE094} - System32\Tasks\{9F212D58-0C3C-4913-81F9-D7E0852A084D} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-08-07] (Skype Technologies S.A.)
Task: {45296503-49ED-4F1E-BE60-9D81A23A0233} - System32\Tasks\Uninstaller_SkipUac_DK => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-01-12] (IObit)
Task: {468420A3-1694-494F-AD32-9C86C76C7751} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe
Task: {46F401BB-CB38-4E5B-A683-34D202F366F3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {4B31819E-213E-490E-8898-A73F8714208A} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2016-09-10] ()
Task: {6ACED935-1C73-49DF-8355-0693722C824B} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-08] (Adobe Systems Incorporated)
Task: {7185BBB9-3045-4266-B7E4-A567CAA97472} - System32\Tasks\{E44B7947-242D-4F4B-998E-A0C5C8ED5D7E} => pcalua.exe -a C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IINSHBP.EXE -c /R /APD /P:"EPSON NX430 TX435 Series"
Task: {733D5263-4D04-4610-9B84-3F17552C4CDD} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [2015-08-17] (Lenovo)
Task: {74E69A8F-A35D-49F5-8FEC-B9B2BE455D92} - System32\Tasks\Synaptics TouchPad Enhancements => Program Files\Synaptics\SynTP\SynTPEnh.exe
Task: {7B983E12-08C9-4D18-B0EA-35A0366E8B34} - System32\Tasks\PMTask => C:\Program Files (x86)\ThinkPad\Utilities\PwmIdTsv.exe
Task: {8072CBAD-AC21-4BA9-861D-7FC98539C6AD} - System32\Tasks\Driver Booster SkipUAC (DK) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
Task: {93A9F6CD-DA96-4823-AD89-043790777F2F} - System32\Tasks\Lenovo\Lenovo-20061 => C:\ProgramData\Lenovo-20061.vbs [2013-06-01] ()
Task: {9B138DEE-B57B-4423-84FF-EF544419206A} - System32\Tasks\AutoKMS => C:\WINDOWS\AutoKMS.exe
Task: {9E32916F-614A-4F51-8370-03ED6A41D17C} - System32\Tasks\{D3C1DA1E-C8AA-4C0B-8855-7E921B4C102A} => pcalua.exe -a "C:\Users\DK\Desktop\YT2-1380L_S0216_150428_ROW\tools\MT6577 USB VCOM drivers\InstallDriver.exe" -d "C:\Users\DK\Desktop\YT2-1380L_S0216_150428_ROW\tools\MT6577 USB VCOM drivers"
Task: {9F23A357-63ED-4C3A-BCAC-DA8392B737FC} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => Rundll32.exe C:\WINDOWS\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {A2664945-7948-44E4-8E27-3D23919EC4D2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated)
Task: {A5B61B88-5BB8-40F9-B9DA-F8BE2D87BAF6} - System32\Tasks\Lenovo\Dependency Package Auto Update => C:\Program Files\Lenovo\iMController\AutoUpdate.exe [2015-12-14] ()
Task: {AECC168C-64D0-435A-B7D2-DD6FEE412CB5} - System32\Tasks\AutoKMSDaily => C:\WINDOWS\AutoKMS.exe
Task: {B9B389EF-6650-4688-BE58-9677F94082C6} - System32\Tasks\{6D341C6E-DBD7-4E15-A905-700278633CF7} => pcalua.exe -a "C:\Program Files (x86)\PodoWeb\PodoWebuninstall.exe"
Task: {C559D1D0-DE53-4435-986C-C3841262E2FA} - System32\Tasks\avast! Emergency Update => C:\Program Files\Avast5\AvastEmUpdate.exe [2016-06-23] (AVAST Software)
Task: {C8DF82BE-DF14-43B7-BF5D-6F8FD02F7177} - System32\Tasks\XTBOI => C:\Users\DK\AppData\Roaming\XTBOI.exe <==== ATTENTION
Task: {C9B81F84-54EC-4CD1-BBB2-6278CBE23B27} - System32\Tasks\AOMUOS => C:\Users\DK\AppData\Roaming\AOMUOS.exe <==== ATTENTION
Task: {CC5A4A8B-775A-4899-8467-E87C9DF97366} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {DADC5CA5-DF52-4A7C-A293-3A3A7DF6D4A7} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2016-09-10] ()
Task: {EE844E93-04D9-46FA-9222-3AB5177FB5AB} - System32\Tasks\Lenovo\Lenovo Settings Power => Rundll32.exe "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.dll",PwrMgrBkGndMonitor
Task: {F70E9AD6-5EC7-4A58-9200-D3DE3EE4CACE} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2015-07-01] (Lenovo)
Task: {FFBEBFEE-2CE6-452A-8D45-67498337E65E} - System32\Tasks\ASC Task (One-Time) => C:\Program Files (x86)\IObit\Advanced SystemCare\PromoteASCAfterInstall.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\AOMUOS.job => C:\Users\DK\AppData\Roaming\AOMUOS.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\AutoKMS.job => C:\WINDOWS\AutoKMS.exe
Task: C:\WINDOWS\Tasks\AutoKMSDaily.job => C:\WINDOWS\AutoKMS.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_DK.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: C:\WINDOWS\Tasks\XTBOI.job => C:\Users\DK\AppData\Roaming\XTBOI.exe <==== ATTENTION

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\DK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MinGW-W64 project\i686-6.2.0-posix-dwarf-rt_v5-rev1\Run terminal.lnk -> C:\Program Files (x86)\mingw-w64\i686-6.2.0-posix-dwarf-rt_v5-rev1\mingw-w64.bat ()

==================== Loaded Modules (Whitelisted) ==============


==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:56E2E879 [118]
AlternateDataStreams: C:\ProgramData\TEMP:8927A071 [408]
AlternateDataStreams: C:\Users\DK\ntuser.dat.log:{A6C81178-175B-3950-982F-9976CFC048E6} [48]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="1"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "UseAlternateShell"="1"


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-800057701-3447766818-2358033227-1001\Software\Classes\.exe:  =>  <===== ATTENTION

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-800057701-3447766818-2358033227-1001\...\msn.com -> g.msn.com
IE restricted site: HKU\S-1-5-21-800057701-3447766818-2358033227-1001\...\msn.com -> hxxp://g.msn.com
IE restricted site: HKU\S-1-5-21-800057701-3447766818-2358033227-1001\...\skype.com -> hxxp://apps.skype.com
IE restricted site: HKU\S-1-5-21-800057701-3447766818-2358033227-1001\...\skype.com -> hxxps://apps.skype.com

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2016-11-14 23:13 - 00000855 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 fvc_stat.freemake.com

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-800057701-3447766818-2358033227-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Lenovo\thinkdesktop.png
DNS Servers: Media is not connected to internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\startupreg: update => 
MSCONFIG\startupreg: Windows Mobile-based device management => 
HKLM\...\StartupApproved\StartupFolder: => "Polar WebSync.lnk"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "APSDaemon"
HKLM\...\StartupApproved\Run32: => "mnclvvtSrv"
HKLM\...\StartupApproved\Run32: => "jswtrayutil"
HKU\S-1-5-21-800057701-3447766818-2358033227-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-800057701-3447766818-2358033227-1001\...\StartupApproved\Run: => "iFunBox Price Watch"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => LPort=139
FirewallRules: [{5D150ADC-198D-46A3-8E99-270D6441B0A9}] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
FirewallRules: [{C275D7D9-BB0D-4792-A14F-2ACBDC0EE208}] => C:\Program Files\Intel Corporation\Intel WiDi\WiDiApp.exe
FirewallRules: [{A2680593-9A63-4A35-88F7-0B7D7792A53D}] => C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe
FirewallRules: [{9F200E3B-DA76-46D6-B399-AA44F7AFD0EB}] => C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe
FirewallRules: [TCP Query User{BE386215-D0B3-4E63-9A6A-46AC35515B51}C:\program files (x86)\skype\phone\skype.exe] => C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{00374B73-BF2E-45CB-8453-41257B427F15}C:\program files (x86)\skype\phone\skype.exe] => C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{A1CFF3C1-FB9B-452E-B4C2-53136E31B9A3}C:\program files (x86)\skype\phone\skype.exe] => C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{0AFC649D-5CBB-4FB2-A9C0-CCC777070883}C:\program files (x86)\skype\phone\skype.exe] => C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{D3A4A278-2B99-403B-8B14-ADB25F114B0C}C:\program files (x86)\mozilla firefox\plugin-container.exe] => C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [UDP Query User{382A9B43-631E-45A3-8FFB-382B4CDFE3E9}C:\program files (x86)\mozilla firefox\plugin-container.exe] => C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [TCP Query User{45570AAB-2713-4C8D-B95B-53B6AD535569}C:\program files (x86)\linuxlive usb creator\lili usb creator.exe] => C:\program files (x86)\linuxlive usb creator\lili usb creator.exe
FirewallRules: [UDP Query User{47FBCB57-9E83-4630-8D34-FF4630CB9E7D}C:\program files (x86)\linuxlive usb creator\lili usb creator.exe] => C:\program files (x86)\linuxlive usb creator\lili usb creator.exe
FirewallRules: [TCP Query User{1AB946ED-AF4E-47B1-B4FD-195BB4622DE1}C:\totalcmd\totalcmd64.exe] => C:\totalcmd\totalcmd64.exe
FirewallRules: [UDP Query User{27DF3318-9954-46B9-AB99-C07953C2FC97}C:\totalcmd\totalcmd64.exe] => C:\totalcmd\totalcmd64.exe
FirewallRules: [TCP Query User{7D942FB4-222B-45A5-88FF-50DB3DA6AA56}C:\program files (x86)\java\jre7\bin\javaw.exe] => C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{6BF8F7DC-9903-42DA-80B7-BB673E9C5A6B}C:\program files (x86)\java\jre7\bin\javaw.exe] => C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{EB047756-8EE2-4ADA-8AFA-D90049FD9DBE}C:\program files (x86)\java\jre7\bin\javaw.exe] => C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{E376D1DD-5528-49F3-BEF4-73BF5365E4BE}C:\program files (x86)\java\jre7\bin\javaw.exe] => C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [{90235E60-6F46-4F40-BCAE-8B7214436E9E}] => C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{A2E514BA-3B32-40F3-B7C6-64037B5F530A}] => LPort=2869
FirewallRules: [{FBD7192E-AAA3-4EF8-8B3F-9EB81EE761AC}] => LPort=1900
FirewallRules: [TCP Query User{FF33ADEF-934B-4DA5-ABC3-E94F006995EC}C:\program files (x86)\vlc\vlc.exe] => C:\program files (x86)\vlc\vlc.exe
FirewallRules: [UDP Query User{ECB24F75-23B1-4A75-B501-A3F874D19AAC}C:\program files (x86)\vlc\vlc.exe] => C:\program files (x86)\vlc\vlc.exe
FirewallRules: [{A176DDAC-7CA5-4755-A3D3-7C920679B6F3}] => C:\Program Files\DAUM\PotPlayer\PotPlayerMini64.exe
FirewallRules: [TCP Query User{6692C813-E482-4221-8C67-649AC6BA6710}C:\program files (x86)\linuxlive usb creator\lili usb creator.exe] => C:\program files (x86)\linuxlive usb creator\lili usb creator.exe
FirewallRules: [UDP Query User{C608A91E-7C2C-45F2-9A53-87F8BD9219B2}C:\program files (x86)\linuxlive usb creator\lili usb creator.exe] => C:\program files (x86)\linuxlive usb creator\lili usb creator.exe
FirewallRules: [{7B6C5DA2-5D27-4147-96A8-D6EA007B967D}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{55EEEEAD-1BF3-4D9F-A09B-5E5AEC138407}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{5F9F9636-B786-4908-A14E-D1BEEC0D289B}C:\program files (x86)\mozilla firefox\firefox.exe] => C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{82DF11C1-BBC5-4DD2-B664-A49FA701A534}C:\program files (x86)\mozilla firefox\firefox.exe] => C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{36700350-C615-4065-8D61-AC0F826D3A4C}] => C:\Program Files (x86)\AVG2015\avgmfapx.exe
FirewallRules: [{35018B48-9FFB-49D4-A840-7651A3787D2A}] => C:\Program Files (x86)\AVG2015\avgmfapx.exe
FirewallRules: [{C495A319-81C8-4EAE-9834-46664E9BF7F7}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{2A5B1832-4006-4C75-BC35-6BBA031BC843}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{4F1F4189-32E2-45A8-9F1D-C21D7F4E915B}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{EE5B4805-0723-4EB1-BB12-A55D08B4F4A6}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{4181F19E-1D11-48A6-A681-A1CAB99C86A2}] => C:\Users\DK\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{19A242D2-F91E-4AD5-86F9-436FCE293375}] => C:\Users\DK\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6535F8EE-88D3-4241-ADB4-F76E0A003D17}] => C:\Users\DK\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{499D721A-A4C9-469C-B2F9-61323081AD76}] => C:\Users\DK\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{96C3153D-7F11-429B-9141-E96D1ACE338B}] => C:\Users\DK\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{70D9D61C-D51C-443B-9B04-A4CC7B56A926}] => C:\Users\DK\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D4932D3A-62A7-455C-953F-9E0AD4B37DAE}] => C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{4C51F526-F340-4990-AD3E-7A099BF9B8D7}] => C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{8D759E3E-7759-452D-ABC1-F8A2AACBDA9A}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{FEF4328A-971D-4DFC-BCEB-5E3C11FC915B}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{C01E8F16-E1BC-492E-BD82-10A0AC88D56A}] => C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{44586FBC-2611-4F50-85D0-89FB02B28BFB}] => C:\Program Files (x86)\OSTotoHotspot\helptool.exe
FirewallRules: [{4742C4F0-8FE1-41E3-AF4C-406CD2BD0A3D}] => C:\Program Files (x86)\OSTotoHotspot\YunExplorer.exe
FirewallRules: [{09F48CEC-EF95-495F-BC48-DC03BCABF581}] => C:\Program Files (x86)\OSTotoHotspot\WifiService.exe
FirewallRules: [{90943A30-C7A3-435F-A54D-448B95D66F52}] => C:\Program Files (x86)\OSTotoHotspot\OSTotoHotspot.exe
FirewallRules: [{DB4CC68E-6200-4ACE-B5CA-66572D4F4F97}] => %systemroot%\system32\alg.exe
FirewallRules: [{8CEE051F-5C25-4855-A622-2067C74D3415}] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
FirewallRules: [{84F6DBF9-DB91-45F0-8E1F-23F13FE4FE19}] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
FirewallRules: [TCP Query User{467CA5BD-9AD0-4B63-8009-34385E1830F7}C:\program files (x86)\beats by dr. dre\beats updater.exe] => C:\program files (x86)\beats by dr. dre\beats updater.exe
FirewallRules: [UDP Query User{12E8A3DB-FABE-46DC-AC88-D5CE9442936F}C:\program files (x86)\beats by dr. dre\beats updater.exe] => C:\program files (x86)\beats by dr. dre\beats updater.exe
FirewallRules: [{13C09017-422D-4CEA-A016-EB68E242D812}] => C:\Program Files (x86)\OSTotoHotspot\OSTotoHotspot.exe
FirewallRules: [{E09320CF-600D-4EE0-A71B-340D7564346A}] => C:\Program Files (x86)\OSTotoHotspot\OSTotoHotspot.exe
FirewallRules: [{EFD65C03-3723-425A-AD8E-D2B580034327}] => C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
FirewallRules: [{EE470115-A0D0-48B3-8321-1C2AC686ADD6}] => C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
FirewallRules: [{2D508B4B-A4A0-41D9-A99F-F8439A2A2238}] => C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{0866660A-17BA-497A-9AC9-B589C0DC7FB3}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{2FB785FC-C14A-4C24-B769-43C001AD3133}] => C:\Program Files (x86)\OSTotoHotspot\DrvHelp.exe
FirewallRules: [{57ED159D-89EB-4583-9BDB-26C2C0F10F09}] => C:\Program Files (x86)\OSTotoHotspot\WifiService.exe

==================== Restore Points =========================

04-12-2016 10:16:21 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices =============

Name: Lenovo Settings
Description: Lenovo Settings
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Lenovo Corporation
Service: WUDFRd
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Lenovo Settings Camera Audio
Description: Lenovo Settings Camera Audio
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Lenovo Corporation
Service: WUDFRd
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Lenovo Settings Power
Description: Lenovo Settings Power
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Lenovo Corporation
Service: WUDFRd
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Lenovo Primary iM Controller
Description: Lenovo Primary iM Controller
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Lenovo Corporation
Service: WUDFRd
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


==================== Event log errors: =========================

Application errors:
==================
Error: (12/04/2016 10:45:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: WsAppService.exe, verze: 2.2.4.1, časové razítko: 0x5784a857
Název chybujícího modulu: KERNELBASE.dll, verze: 6.3.9600.18007, časové razítko: 0x55c4c341
Kód výjimky: 0xe053534f
Posun chyby: 0x000000000000871c
ID chybujícího procesu: 0x%9
Čas spuštění chybující aplikace: 0xWsAppService.exe0
Cesta k chybující aplikaci: WsAppService.exe1
Cesta k chybujícímu modulu: WsAppService.exe2
ID zprávy: WsAppService.exe3
Úplný název chybujícího balíčku: WsAppService.exe4
ID aplikace související s chybujícím balíčkem: WsAppService.exe5

Error: (12/04/2016 10:44:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: WsAppService.exe, verze: 2.2.4.1, časové razítko: 0x5784a857
Název chybujícího modulu: KERNELBASE.dll, verze: 6.3.9600.18007, časové razítko: 0x55c4c341
Kód výjimky: 0xe053534f
Posun chyby: 0x000000000000871c
ID chybujícího procesu: 0x%9
Čas spuštění chybující aplikace: 0xWsAppService.exe0
Cesta k chybující aplikaci: WsAppService.exe1
Cesta k chybujícímu modulu: WsAppService.exe2
ID zprávy: WsAppService.exe3
Úplný název chybujícího balíčku: WsAppService.exe4
ID aplikace související s chybujícím balíčkem: WsAppService.exe5

Error: (12/04/2016 09:52:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: WsAppService.exe, verze: 2.2.4.1, časové razítko: 0x5784a857
Název chybujícího modulu: KERNELBASE.dll, verze: 6.3.9600.18007, časové razítko: 0x55c4c341
Kód výjimky: 0xe053534f
Posun chyby: 0x000000000000871c
ID chybujícího procesu: 0x%9
Čas spuštění chybující aplikace: 0xWsAppService.exe0
Cesta k chybující aplikaci: WsAppService.exe1
Cesta k chybujícímu modulu: WsAppService.exe2
ID zprávy: WsAppService.exe3
Úplný název chybujícího balíčku: WsAppService.exe4
ID aplikace související s chybujícím balíčkem: WsAppService.exe5

Error: (12/04/2016 09:46:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: WsAppService.exe, verze: 2.2.4.1, časové razítko: 0x5784a857
Název chybujícího modulu: KERNELBASE.dll, verze: 6.3.9600.18007, časové razítko: 0x55c4c341
Kód výjimky: 0xe053534f
Posun chyby: 0x000000000000871c
ID chybujícího procesu: 0x%9
Čas spuštění chybující aplikace: 0xWsAppService.exe0
Cesta k chybující aplikaci: WsAppService.exe1
Cesta k chybujícímu modulu: WsAppService.exe2
ID zprávy: WsAppService.exe3
Úplný název chybujícího balíčku: WsAppService.exe4
ID aplikace související s chybujícím balíčkem: WsAppService.exe5

Error: (12/04/2016 09:45:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: WsAppService.exe, verze: 2.2.4.1, časové razítko: 0x5784a857
Název chybujícího modulu: KERNELBASE.dll, verze: 6.3.9600.18007, časové razítko: 0x55c4c341
Kód výjimky: 0xe053534f
Posun chyby: 0x000000000000871c
ID chybujícího procesu: 0x%9
Čas spuštění chybující aplikace: 0xWsAppService.exe0
Cesta k chybující aplikaci: WsAppService.exe1
Cesta k chybujícímu modulu: WsAppService.exe2
ID zprávy: WsAppService.exe3
Úplný název chybujícího balíčku: WsAppService.exe4
ID aplikace související s chybujícím balíčkem: WsAppService.exe5

Error: (12/04/2016 09:44:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: WsAppService.exe, verze: 2.2.4.1, časové razítko: 0x5784a857
Název chybujícího modulu: KERNELBASE.dll, verze: 6.3.9600.18007, časové razítko: 0x55c4c341
Kód výjimky: 0xe053534f
Posun chyby: 0x000000000000871c
ID chybujícího procesu: 0x%9
Čas spuštění chybující aplikace: 0xWsAppService.exe0
Cesta k chybující aplikaci: WsAppService.exe1
Cesta k chybujícímu modulu: WsAppService.exe2
ID zprávy: WsAppService.exe3
Úplný název chybujícího balíčku: WsAppService.exe4
ID aplikace související s chybujícím balíčkem: WsAppService.exe5

Error: (12/04/2016 09:43:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: WsAppService.exe, verze: 2.2.4.1, časové razítko: 0x5784a857
Název chybujícího modulu: KERNELBASE.dll, verze: 6.3.9600.18007, časové razítko: 0x55c4c341
Kód výjimky: 0xe053534f
Posun chyby: 0x000000000000871c
ID chybujícího procesu: 0x%9
Čas spuštění chybující aplikace: 0xWsAppService.exe0
Cesta k chybující aplikaci: WsAppService.exe1
Cesta k chybujícímu modulu: WsAppService.exe2
ID zprávy: WsAppService.exe3
Úplný název chybujícího balíčku: WsAppService.exe4
ID aplikace související s chybujícím balíčkem: WsAppService.exe5

Error: (12/04/2016 06:39:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: WsAppService.exe, verze: 2.2.4.1, časové razítko: 0x5784a857
Název chybujícího modulu: KERNELBASE.dll, verze: 6.3.9600.18007, časové razítko: 0x55c4c341
Kód výjimky: 0xe053534f
Posun chyby: 0x000000000000871c
ID chybujícího procesu: 0x%9
Čas spuštění chybující aplikace: 0xWsAppService.exe0
Cesta k chybující aplikaci: WsAppService.exe1
Cesta k chybujícímu modulu: WsAppService.exe2
ID zprávy: WsAppService.exe3
Úplný název chybujícího balíčku: WsAppService.exe4
ID aplikace související s chybujícím balíčkem: WsAppService.exe5

Error: (12/04/2016 06:38:56 PM) (Source: MsiInstaller) (EventID: 11722) (User: DK-PC)
Description: Product: Java 8 Update 111 -- Error 1722. There is a problem with this Windows Installer package. A program run as part of the setup did not finish as expected. Contact your support personnel or package vendor. Action installexe, location: C:\Program Files (x86)\Java\jre1.8.0_111\installer.exe, command: /s INSTALLDIR="C:\Program Files (x86)\Java\jre1.8.0_111\\" REPAIRMODE=0 ProductCode={26A24AE4-039D-4CA4-87B4-2F32180111F0}

Error: (12/04/2016 05:23:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: esetonlinescanner_enu.exe, verze: 2.0.12.0, časové razítko: 0x57ac3e59
Název chybujícího modulu: esetonlinescanner_enu.exe, verze: 2.0.12.0, časové razítko: 0x57ac3e59
Kód výjimky: 0xc0000005
Posun chyby: 0x000361d1
ID chybujícího procesu: 0x1fd8
Čas spuštění chybující aplikace: 0x01d24e3a63ec854f
Cesta k chybující aplikaci: C:\Users\DK\Downloads\esetonlinescanner_enu.exe
Cesta k chybujícímu modulu: C:\Users\DK\Downloads\esetonlinescanner_enu.exe
ID zprávy: 0270957b-ba3e-11e6-bf3c-a40998527960
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (12/04/2016 10:53:40 PM) (Source: DCOM) (EventID: 10005) (User: DK-PC)
Description: Služba DCOM zjistila chybu 1084 při pokusu o spuštění služby WSearch s argumenty Není k dispozici za účelem spuštění serveru: 
{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (12/04/2016 10:53:40 PM) (Source: DCOM) (EventID: 10005) (User: DK-PC)
Description: Služba DCOM zjistila chybu 1084 při pokusu o spuštění služby WSearch s argumenty Není k dispozici za účelem spuštění serveru: 
{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (12/04/2016 10:53:40 PM) (Source: DCOM) (EventID: 10005) (User: DK-PC)
Description: Služba DCOM zjistila chybu 1084 při pokusu o spuštění služby WSearch s argumenty Není k dispozici za účelem spuštění serveru: 
{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (12/04/2016 10:53:40 PM) (Source: DCOM) (EventID: 10005) (User: DK-PC)
Description: Služba DCOM zjistila chybu 1084 při pokusu o spuštění služby WSearch s argumenty Není k dispozici za účelem spuštění serveru: 
{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (12/04/2016 10:53:39 PM) (Source: DCOM) (EventID: 10005) (User: DK-PC)
Description: Služba DCOM zjistila chybu 1084 při pokusu o spuštění služby WSearch s argumenty Není k dispozici za účelem spuštění serveru: 
{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (12/04/2016 10:53:39 PM) (Source: DCOM) (EventID: 10005) (User: DK-PC)
Description: Služba DCOM zjistila chybu 1084 při pokusu o spuštění služby WSearch s argumenty Není k dispozici za účelem spuštění serveru: 
{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (12/04/2016 10:53:34 PM) (Source: DCOM) (EventID: 10005) (User: DK-PC)
Description: Služba DCOM zjistila chybu 1084 při pokusu o spuštění služby WSearch s argumenty Není k dispozici za účelem spuštění serveru: 
{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (12/04/2016 10:53:34 PM) (Source: DCOM) (EventID: 10005) (User: DK-PC)
Description: Služba DCOM zjistila chybu 1084 při pokusu o spuštění služby WSearch s argumenty Není k dispozici za účelem spuštění serveru: 
{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (12/04/2016 10:53:34 PM) (Source: DCOM) (EventID: 10005) (User: DK-PC)
Description: Služba DCOM zjistila chybu 1084 při pokusu o spuštění služby WSearch s argumenty Není k dispozici za účelem spuštění serveru: 
{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (12/04/2016 10:53:34 PM) (Source: DCOM) (EventID: 10005) (User: DK-PC)
Description: Služba DCOM zjistila chybu 1084 při pokusu o spuštění služby WSearch s argumenty Není k dispozici za účelem spuštění serveru: 
{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}


CodeIntegrity:
===================================
  Date: 2016-12-04 12:55:30.268
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-10-10 16:39:24.675
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-10-10 16:22:41.562
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-10-10 14:43:31.051
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-10-09 21:54:01.181
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-09-12 23:39:14.771
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-09-12 23:39:13.177
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-08-18 10:32:18.590
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-08-18 10:31:42.263
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-08-18 10:31:40.636
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-3667U CPU @ 2.00GHz
Percentage of memory in use: 7%
Total physical RAM: 8010.84 MB
Available physical RAM: 7404.13 MB
Total Virtual: 16202.84 MB
Available Virtual: 15657.45 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:218.1 GB) (Free:0.54 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (MYLINUXLIVE) (Removable) (Total:3.75 GB) (Free:3.75 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: A53E61CE)

Partition: GPT.

========================================================
Disk: 1 (Size: 3.8 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt ============================