Addition

Additional scan result of Farbar Recovery Scan Tool (x64) Version:18-04-2016
Ran by Brigida (2016-04-25 09:45:45)

Running from C:\Users\Brigida\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2015-12-03 18:57:44)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-189698660-2070287651-1503288294-500 - Administrator - Di
sabled)
Brigida (S-1-5-21-189698660-2070287651-1503288294-1000 - Administrator - Enabled
) => C:\Users\Brigida
Guest (S-1-5-21-189698660-2070287651-1503288294-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-189698660-2070287651-1503288294-1004 - Limited - Enable
d)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avira Antivirus (Enabled - Out of date) {4D041356-F94D-285F-8768-AAE50FA3685
9}
AS: Avira Antivirus (Enabled - Out of date) {F665F2B2-DF77-27D1-BDD8-9197742422E
4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF
46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to un
hide them. The adware programs should be uninstalled manually.)
Adobe Acrobat Reader DC - Italiano (HKLM-x32\...\{AC76BA86-7AD7-1040-7B44-AC0F07
4E4100}) (Version: 15.010.20060 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21
.0.0.197 - Adobe Systems Incorporated)
AVG 2016 (Version: 16.0.4556 - AVG Technologies) Hidden
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.10.434 - Avira Ope
rations GmbH & Co. KG)
CCleaner (HKLM\...\CCleaner) (Version: 5.16 - Piriform)
Dolby Advanced Audio v2 (HKLM-x32\...\{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}) (V
ersion: 7.2.8000.17 - Dolby Laboratories Inc)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 50.0.2661.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.21.169 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91
F3700}) (Version: 10.0.30.1072 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
) (Version: 10.18.14.4029 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology(patch version 17.0
.1419.2) (HKLM\...\{302600C1-6BDF-4FD1-1405-148929CC1385}) (Version: 17.0.1405.0
462 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA2114
0}) (Version: 13.5.0.1056 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{B991A1BC-DE0F-41B3-9037-B2F948F706EC}) (V
ersion: 3.1.1228 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E94029-9DF7-95650D040CF2}) (Version: 3.0.2.54 - Intel Corporation)
Intel(R) WiDi (HKLM\...\{2F97FBC6-7992-4DF7-A7C7-B68455E307F7}) (Version: 5.1.20

.0 - Intel Corporation)
Java 8 Update 73 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version:
8.0.730.2 - Oracle Corporation)
Lenovo EasyCamera (HKLM-x32\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version
: 6.0.1323.0_WHQL - Sonix)
Lenovo pointing device (HKLM\...\Elantech) (Version: 11.4.44.3 - ELAN Microelect
ronic Corp.)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132}
- 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16
.0.4266.1001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a
-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a190
9659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporatio
n)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{9571
6cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporatio
n)
OEM Application Profile (HKLM-x32\...\{1D464EFF-EC8B-F225-2F74-F74143200DDF}) (V
ersion: 1.00.0000 - Nome societ)
Outils de vrification linguistique 2016 de Microsoft Office- Franais (Version: 16.0
.4266.1001 - Microsoft Corporation) Hidden
Pacchetto driver Windows - Lenovo (ACPIVPC) System (12/15/2011 7.1.0.1) (HKLM\.
..\99841829BE839365AA67B2AD0E50D371F59F8A1E) (Version: 12/15/2011 7.1.0.1 - Leno
vo)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Versi
on: 6.2.9600.29071 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEE
D9A476}) (Version: 7.78.1218.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-9581
08FE7DBC}) (Version: 6.0.1.7383 - Realtek Semiconductor Corp.)
Software Intel PROSet/Wireless (HKLM-x32\...\{7991b5ae-96d7-4df2-97fb-a605b7cb638
b}) (Version: 17.12.0 - Intel Corporation)
Software per periferiche con chipset Intel (x32 Version: 10.0.22 - Intel(R) Corpo
ration) Hidden
Spotify (HKU\S-1-5-21-189698660-2070287651-1503288294-1000\...\Spotify) (Version
: 1.0.25.127.g58007b4c - Spotify AB)
Strumenti di correzione di Microsoft Office 2016 - Italiano (Version: 16.0.4266.
1001 - Microsoft Corporation) Hidden
Visual C++ 8.0 Runtime Setup Package (x64) (HKLM-x32\...\{2FDBBCEA-62DB-45F4-B6E
5-0E1FB2A1F29D}) (Version: 9.0.0.623 - AVG Technologies CZ, s.r.o.)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB71
36F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F
06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WinRAR 5.30 beta 6 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.6 - win.ra
r GmbH)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. T
he file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-189698660-2070287651-1503288294-1000_Classes\CLSID\{82
0D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.
exe (Intel Corporation)
==================== Scheduled Tasks (Whitelisted) =============
Task: {08D1C42D-41EE-41F2-9B0E-B50E104C642B} - System32\Tasks\Microsoft\Office\O
ffice 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Share
d\Office16\OLicenseHeartbeat.exe [2015-07-31] (Microsoft Corporation)
Task: {31147B14-306B-44C8-9E81-68CC93BFEDCC} - System32\Tasks\GoogleUpdateTaskMa
chineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-24]
(Google Inc.)
Task: {408EA43B-64D2-40FC-8FF1-96E9EEF04638} - System32\Tasks\Adobe Flash Player
Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [201
6-03-26] (Adobe Systems Incorporated)
Task: {59297023-B06A-4887-B57A-85E8B64205DB} - System32\Tasks\Adobe Acrobat Upda
te Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [201512-14] (Adobe Systems Incorporated)
Task: {601C17F5-079B-4CAE-B4BC-F45D4865D6FD} - System32\Tasks\IUM-F1E24CA0-B63E4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Man
ager\bin\iumsvc.exe [2015-09-26] (Intel Corporation)
Task: {7825F60F-5446-4686-A619-3576FE5C9C58} - System32\Tasks\Paky89-Loader\WATR
emover => cmd.exe /c C:\Windows\wat.exe -silent
Task: {92BF2490-47CD-4A61-874C-A47234039916} - System32\Tasks\GoogleUpdateTaskMa
chineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-24] (G
oogle Inc.)
Task: {9D3A33D3-59D5-419E-9899-68B11DC46F9C} - System32\Tasks\{462727F5-9A72-4F4
D-A832-069DEB314174} => Chrome.exe hxxp://ui.skype.com/ui/0/7.16.0.101/it/go/hel
p.faq.installer?source=lightinstaller&LastError=1618
Task: {B3A2CD44-5FE4-401D-9419-CD9FDBB27357} - System32\Tasks\Microsoft\Office\O
fficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia
.exe [2015-07-31] (Microsoft Corporation)
Task: {C8A01F99-2BAF-4A6D-B40E-104C0FD394DC} - System32\Tasks\IUM-F1E24CA0-B63E4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\b
in\iumsvc.exe [2015-09-26] (Intel Corporation)
Task: {D407342B-21DB-458A-A104-5A9B896D1604} - System32\Tasks\CCleanerSkipUAC =>
C:\Program Files\CCleaner\CCleaner.exe [2016-03-11] (Piriform Ltd)
Task: {D7AC34D3-3D4E-408C-BD75-B9B8F0BB6BB6} - System32\Tasks\Microsoft\Office\O
fficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\ms
oia.exe [2015-07-31] (Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The
file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Mac
romed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)
\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\G
oogle\Update\GoogleUpdate.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2016-03-11 22:31 - 2016-03-11 22:31 - 00061440 _____ () C:\Program Files\CCleane
r\lang\lang-1040.dll
2015-12-03 21:34 - 2014-11-21 17:54 - 00456808 _____ () C:\Windows\system32\igfx
Tray.exe
==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
he "AlternateShell" will be restored.)
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to d
efault or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2016-04-24 23:30 - 2015-07-10 13:02 - 00000824 ____A C:\Windows\system32\Drivers
\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-189698660-2070287651-1503288294-1000\Control Panel\Desktop\\Wallpap
er -> C:\Users\Brigida\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpa
per.jpg
DNS Servers: 208.67.222.222 - 208.67.220.220
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPrompt
BehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /mi
nimized /regrun
MSCONFIG\startupreg: Spotify => "C:\Users\Brigida\AppData\Roaming\Spotify\Spotif
y.exe" -autostart -minimized
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Brigida\AppData\Roaming\Spo
tify\SpotifyWebHelper.exe"
==================== FirewallRules (Whitelisted) ===============
FirewallRules: [{52F9DF54-7080-41A9-B010-F3256348E555}] => (Allow) C:\Program Fi
les\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{B8D297EC-09EC-4B00-8EF4-9F6A52DFEA0A}] => (Allow) C:\Program Fi

les\Intel Corporation\USB over IP\bin\UoipService.exe
FirewallRules: [{4E1ADF89-9C68-4E96-8031-86362AA1D58C}] => (Allow) C:\Program Fi
les\Intel Corporation\Intel WiDi\WiDiApp.exe
FirewallRules: [TCP Query User{8CC0D7D3-2F0D-4FA6-861D-AFF0ECDF9B5F}C:\users\bri
gida\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\brigida\appdata\ro
aming\spotify\spotify.exe
FirewallRules: [UDP Query User{A0FAAB24-3806-4A3C-B8DC-C92586BF0F32}C:\users\bri
gida\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\brigida\appdata\ro
aming\spotify\spotify.exe
FirewallRules: [{0DAAD1D7-8056-4210-A319-ACBCC6B70EF9}] => (Allow) C:\Program Fi
les (x86)\Google\Chrome\Application\chrome.exe
==================== Restore Points =========================
19-04-2016
22-04-2016
22-04-2016
0
23-04-2016
24-04-2016
24-04-2016
24-04-2016
24-04-2016
24-04-2016
24-04-2016
24-04-2016
24-04-2016
25-04-2016
08:43:58 Windows Update

21:44:15 Windows Update
21:59:14 Driver Booster : Controller Host estendibile Intel(R) USB 3.
21:29:18
20:09:43
20:15:17
21:24:00
22:27:42
22:56:40
22:58:26
23:08:55
23:13:50
09:24:24
Operazione di ripristino
Installed AVG 9.0
Avg Update
Avg Update
Avg Update
Installed AVG 2016
Removed AVG 9.0
Removed Skype 7.21
PROPLUS
Windows Update
==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================
Application errors:
==================
Error: (04/25/2016 09:26:24 AM) (Source: Office 2016 Licensing Service) (EventID
: 0) (User: )
Description: Subscription licensing service failed: -1073418220
Error: (04/25/2016 09:24:38 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513)
(User: )
Description: Servizi di crittografia: impossibile elaborare la chiamata OnIdenti
ty() nell'oggetto writer del sistema.
Details:
AddWin32ServiceFiles: Unable to back up image of service Servizio Licenze Window
s since QueryServiceConfig API failed
System Error:
Impossibile trovare il file specificato.
.
Error: (04/24/2016 11:41:05 PM) (Source: Service1) (EventID: 0) (User: )
Description: Service cannot be started. Handle non valido
Error: (04/24/2016 11:39:45 PM) (Source: Office Software Protection Platform Ser
vice) (EventID: 1017) (User: )
Description: Installation of the Proof of Purchase failed. 0xC004D301
Partial Pkey=WFG99
ACID=d450596f-894d-49e0-966a-fd39ed4c4c64
Detailed Error[?]
Partial Pkey=WFG99
Detailed Error[?]
Partial Pkey=WFG99
Detailed Error[?]
Partial Pkey=WFG99
Detailed Error[?]
Partial Pkey=WFG99
Detailed Error[?]
Partial Pkey=WFG99
Detailed Error[?]
Partial Pkey=WFG99
Detailed Error[?]
System errors:
=============
Error: (04/24/2016 11:39:15 PM) (Source: Service Control Manager) (EventID: 7022
) (User: )
Description: Servizio Service_21 bloccato in partenza.
) (User: )
Description: Il servizio Servizio Licenze Windows non stato avviato per il segue
nte errore:
%%2
) (User: )
Description: Arresto imprevista del servizio Intel(R) PROSet/Wireless Zero Confi
guration Service. Questo evento si gi verificato 1 volta(e).
Error: (04/24/2016 11:19:27 PM) (Source: Microsoft-Windows-DNS-Client) (EventID:
1012) (User: NT AUTHORITY)
Description: Errore durante il tentativo di lettura del file degli host locali.
) (User: )
Description: Il servizio Servizio Licenze Windows non stato avviato per il segue
nte errore:
%%2
) (User: )
Description: Il servizio Service_21 non stato avviato per il seguente errore:
%%1053
) (User: )
Description: Timeout (30000 millisecondi) durante l'attesa della connessione del
servizio Service_21.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz
Percentage of memory in use: 62%
Total physical RAM: 4014.94 MB
Available physical RAM: 1511.47 MB
Total Virtual: 8028.09 MB
Available Virtual: 5505.63 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:465.66 GB) (Free:409.86 GB) NTFS
Drive e: (KINGSTON) (Removable) (Total:1.86 GB) (Free:0.47 GB) FAT
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: D9FA2484)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 1.9 GB) (Disk ID: 36AC2DDD)
Partition 1: (Active) - (Size=1.9 GB) - (Type=06)

==================== End of Addition.txt ============================

Addition

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Addition

Uploaded by

Copyright:

Available Formats

Additional scan result of Farbar Recovery Scan Tool (x64) Version:18-04-2016

Ran by Brigida (2016-04-25 09:45:45)

Intel(R) WiDi (HKLM\...\{2F97FBC6-7992-4DF7-A7C7-B68455E307F7}) (Version: 5.1.20

==================== Alternate Data Streams (Whitelisted) =========

FirewallRules: [{B8D297EC-09EC-4B00-8EF4-9F6A52DFEA0A}] => (Allow) C:\Program Fi

08:43:58 Windows Update

==================== Faulty Device Manager Devices =============

Partition 1: (Active) - (Size=1.9 GB) - (Type=06)

You might also like