Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-10-2016
- Ran by user (31-10-2016 21:19:30)
- Running from C:\Users\user\Desktop
- Windows 7 Professional Service Pack 1 (X64) (2013-04-13 21:19:56)
- Boot Mode: Normal
- ==========================================================
- ==================== Accounts: =============================
- Administrator (S-1-5-21-1672755891-3679524991-3395194512-500 - Administrator - Disabled)
- Guest (S-1-5-21-1672755891-3679524991-3395194512-501 - Limited - Disabled)
- HomeGroupUser$ (S-1-5-21-1672755891-3679524991-3395194512-1002 - Limited - Enabled)
- user (S-1-5-21-1672755891-3679524991-3395194512-1000 - Administrator - Enabled) => C:\Users\user
- ==================== Security Center ========================
- (If an entry is included in the fixlist, it will be removed.)
- AV: Microsoft Security Essentials (Enabled - Up to date) {768124D7-F5F7-6D2F-DDC2-94DFA4017C95}
- AS: Microsoft Security Essentials (Enabled - Up to date) {CDE0C533-D3CD-62A1-E772-AFADDF863628}
- AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- ==================== Installed Programs ======================
- (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
- Adobe Flash Player 23 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 23.0.0.205 - Adobe Systems Incorporated)
- Adobe Reader XI (11.0.18) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.18 - Adobe Systems Incorporated)
- CCleaner (HKLM\...\CCleaner) (Version: 4.05 - Piriform)
- Conexant 20585 SmartAudio HD (HKLM\...\CNXT_AUDIO_HDA) (Version: 4.95.48.50 - Conexant)
- CyberLink YouCam 5 (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.2219 - CyberLink Corp.)
- Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
- Integrated Camera Driver Installer Package Ver.1.1.0.48 (HKLM-x32\...\{C3CD17B4-08B0-492D-8A4C-81716D33E520}) (Version: 1.1.0.48 - RICOH)
- Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
- Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.2.50.1050 - Intel Corporation)
- Intel® PROSet/Wireless Software (HKLM-x32\...\{9bffdf20-c3a3-4e93-9cbf-61712c6a38be}) (Version: 17.13.2 - Intel Corporation)
- Lenovo Patch Utility (x32 Version: 1.4.0.4 - Lenovo Group Limited) Hidden
- Lenovo Patch Utility 64 bit (Version: 1.4.0.4 - Lenovo Group Limited) Hidden
- Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.12.10 - Lenovo)
- Lenovo System Interface Driver (HKLM\...\LENOVO.SMIIF) (Version: 1.05 - )
- Lenovo System Update (HKLM-x32\...\{25C64847-B900-48AD-A164-1B4F9B774650}) (Version: 5.02.0018 - Lenovo)
- Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
- Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISER) (Version: 12.0.4518.1014 - Microsoft Corporation)
- Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.9.218.0 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
- NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.19.0 - NEC Electronics Corporation)
- NEC Electronics USB 3.0 Host Controller Driver (x32 Version: 1.0.19.0 - NEC Electronics Corporation) Hidden
- NVIDIA Graphics Driver 312.69 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 312.69 - NVIDIA Corporation)
- NVIDIA HD Audio Driver 1.3.18.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.18.0 - NVIDIA Corporation)
- NVIDIA nView 136.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 136.53 - NVIDIA Corporation)
- On Screen Display (HKLM\...\OnScreenDisplay) (Version: 6.73.00 - )
- Power Manager (HKLM-x32\...\{DAC01CEE-5BAE-42D5-81FC-B687E84E8405}) (Version: 6.66.3 - Lenovo Group Limited)
- RICOH R5U230 Media Driver ver.2.06.02.02 (HKLM-x32\...\{022CBB38-CEF0-42BA-906A-A49BEFAE0BEE}) (Version: 2.06.02.02 - RICOH)
- TaxCalc (HKU\S-1-5-21-1672755891-3679524991-3395194512-1000\...\TaxCalcHub) (Version: 5.2.061 - Acorah Software Products)
- ThinkPad Bluetooth with Enhanced Data Rate Software (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.1.3200 - Broadcom Corporation)
- ThinkPad FullScreen Magnifier (HKLM\...\ThinkPad FullScreen Magnifier) (Version: 2.41 - )
- ThinkPad Modem Adapter (HKLM\...\CNXT_MODEM_HDA_HSF) (Version: 7.80.5.0 - Conexant Systems)
- ThinkPad UltraNav Driver (HKLM\...\SynTPDeinstKey) (Version: 16.2.19.14 - )
- ThinkPad UltraNav Utility (HKLM-x32\...\{17CBC505-D1AE-459D-B445-3D2000A85842}) (Version: 2.13.0 - Lenovo)
- ThinkVantage Access Connections (HKLM-x32\...\{8E537894-A559-4D60-B3CB-F4485E3D24E3}) (Version: 6.01 - Lenovo)
- ThinkVantage Active Protection System (HKLM\...\{46A84694-59EC-48F0-964C-7E76E9F8A2ED}) (Version: 1.77.0.26 - Lenovo)
- ThinkVantage Communications Utility (HKLM\...\{88C6A6D9-324C-46E8-BA87-563D14021442}_is1) (Version: 2.11.0.0 - Lenovo)
- ThinkVantage Fingerprint Software (HKLM\...\{F58DA859-016E-492D-A588-317D9BB28002}) (Version: 5.9.9.7282 - Authentec Inc.)
- Windows Driver Package - Broadcom (BTHUSB) Bluetooth (04/08/2010 6.3.5.430) (HKLM\...\DE7217D2A8B057F15EC6E52329FDAB84231521E8) (Version: 04/08/2010 6.3.5.430 - Broadcom)
- Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) (HKLM\...\3BA80AB4C7E9F8497C115C844953A3D4BEB84D21) (Version: 07/28/2009 6.2.0.9800 - Broadcom)
- ==================== Custom CLSID (Whitelisted): ==========================
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- ==================== Scheduled Tasks (Whitelisted) =============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- Task: {43D6691A-EF94-4E65-9480-5CFFCC9CEC8B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-16] (Adobe Systems Incorporated)
- Task: {474B4316-A228-429B-9FBB-C328EBFC74B4} - System32\Tasks\PMTask => C:\Program Files (x86)\ThinkPad\Utilities\PwmIdTsv.exe [2014-09-10] (Lenovo Group Limited)
- Task: {791E76C8-3204-4715-ADD7-7056BD2D9FE9} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2013-06-26] ()
- Task: {A6881CC5-73E3-469B-8A2C-CD239AC01C7F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-30] (Adobe Systems Incorporated)
- Task: {BDFBB34A-CC88-4B55-BC9E-7DAAC81C60C2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-08-21] (Piriform Ltd)
- Task: {F0855313-655C-4578-8786-45A578320B62} - System32\Tasks\Synaptics TouchPad Enhancements => Program Files\Synaptics\SynTP\SynTPEnh.exe
- (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
- Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
- ==================== Shortcuts =============================
- (The entries could be listed to be restored or removed.)
- ==================== Loaded Modules (Whitelisted) ==============
- 2013-04-13 20:14 - 2013-10-28 20:53 - 00087328 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
- 2013-04-14 01:45 - 2014-09-10 07:06 - 00104960 ____N () C:\Program Files (x86)\ThinkPad\Utilities\US\PWMRT64V.DLL
- 2012-01-10 21:12 - 2012-01-10 21:12 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
- 2011-06-13 19:37 - 2011-06-13 19:37 - 00173344 _____ () C:\Program Files\ThinkPad\Bluetooth Software\btkeyind.dll
- 2013-03-18 17:26 - 2013-03-18 17:26 - 00092456 _____ () C:\Program Files (x86)\Lenovo\Access Connections\AcWrpc.dll
- 2006-10-26 21:30 - 2006-10-26 21:30 - 00065312 _____ () C:\Program Files (x86)\Microsoft Office\Office12\ADDINS\ColleagueImport.dll
- 2006-10-27 15:35 - 2006-10-27 15:35 - 00436512 _____ () C:\Program Files (x86)\Microsoft Office\Office12\ADDINS\UmOutlookAddin.dll
- 2006-10-26 13:56 - 2006-10-26 13:56 - 00757008 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\MSPTLS.DLL
- ==================== Alternate Data Streams (Whitelisted) =========
- (If an entry is included in the fixlist, only the ADS will be removed.)
- ==================== Safe Mode (Whitelisted) ===================
- (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
- ==================== Association (Whitelisted) ===============
- (If an entry is included in the fixlist, the registry item will be restored to default or removed.)
- ==================== Internet Explorer trusted/restricted ===============
- (If an entry is included in the fixlist, it will be removed from the registry.)
- ==================== Hosts content: ===============================
- (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
- 2009-07-13 22:34 - 2009-06-10 17:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
- ==================== Other Areas ============================
- (Currently there is no automatic fix for this section.)
- HKU\S-1-5-21-1672755891-3679524991-3395194512-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\user\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
- DNS Servers: 192.168.1.1
- HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
- Windows Firewall is enabled.
- ==================== MSCONFIG/TASK MANAGER disabled items ==
- ==================== FirewallRules (Whitelisted) ===============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
- FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
- FirewallRules: [{CE7D0F3B-A449-4AE3-B0F7-FA4DF941E334}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
- FirewallRules: [{725612D4-C5E7-4005-B0FA-B14D5D9B01C4}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\UNCServer.exe
- FirewallRules: [{835A03FC-8495-4316-8787-5FA0BEDA8189}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\UNCServer.exe
- FirewallRules: [{DB73E758-D4AA-43A4-BF0F-72A03166716B}] => (Allow) C:\Program Files (x86)\Acorah Software Products\TaxCalcHub\TaxCalcHub.exe
- ==================== Restore Points =========================
- 25-04-2016 13:58:47 Windows Update
- 25-04-2016 15:36:58 Windows Update
- 30-09-2016 18:57:04 Scheduled Checkpoint
- 29-10-2016 21:12:23 Installed Microsoft Office Enterprise 2007
- 30-10-2016 03:00:16 Windows Update
- ==================== Faulty Device Manager Devices =============
- ==================== Event log errors: =========================
- Application errors:
- ==================
- Error: (10/31/2016 08:42:14 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
- Description: A problem prevented Customer Experience Improvement Program data from being sent to Microsoft, (Error 80004005).
- Error: (10/31/2016 07:41:38 PM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Faulting application name: CAMService.exe, version: 1.0.0.1, time stamp: 0x54077d08
- Faulting module name: ntdll.dll, version: 6.1.7601.23418, time stamp: 0x5708a857
- Exception code: 0xc0000005
- Fault offset: 0x0000000000048d84
- Faulting process id: 0x788
- Faulting application start time: 0x01d233d04d62bd9b
- Faulting application path: C:\Program Files\Intel\CAM\bin\CAMService.exe
- Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
- Report Id: 9099fc9f-9fc3-11e6-ad94-f0def10ed838
- Error: (10/30/2016 10:11:44 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
- Description: A problem prevented Customer Experience Improvement Program data from being sent to Microsoft, (Error 80004005).
- Error: (10/30/2016 09:37:41 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
- Description: A problem prevented Customer Experience Improvement Program data from being sent to Microsoft, (Error 80004005).
- Error: (10/30/2016 05:02:26 PM) (Source: SideBySide) (EventID: 33) (User: )
- Description: Activation context generation failed for "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe".
- Dependent Assembly 54.0.2840.71,language="*",type="win32",version="54.0.2840.71" could not be found.
- Please use sxstrace.exe for detailed diagnosis.
- Error: (10/30/2016 05:01:31 PM) (Source: SideBySide) (EventID: 33) (User: )
- Description: Activation context generation failed for "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe".
- Dependent Assembly 54.0.2840.71,language="*",type="win32",version="54.0.2840.71" could not be found.
- Please use sxstrace.exe for detailed diagnosis.
- Error: (10/30/2016 04:57:50 PM) (Source: Application Hang) (EventID: 1002) (User: )
- Description: The program iexplore.exe version 11.0.9600.18377 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
- Process ID: 1004
- Start Time: 01d232efc4d77dc2
- Termination Time: 0
- Application Path: C:\Program Files\Internet Explorer\iexplore.exe
- Report Id: 7ef61cef-9ee3-11e6-8864-f0def10ed838
- Error: (10/30/2016 03:30:59 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
- Description: A problem prevented Customer Experience Improvement Program data from being sent to Microsoft, (Error 80004005).
- Error: (10/29/2016 12:15:12 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
- Description: A problem prevented Customer Experience Improvement Program data from being sent to Microsoft, (Error 80004005).
- Error: (10/28/2016 11:54:42 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
- Description: A problem prevented Customer Experience Improvement Program data from being sent to Microsoft, (Error 80004005).
- System errors:
- =============
- Error: (10/31/2016 09:18:14 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
- Description: The following fatal alert was generated: 51. The internal error state is 802.
- Error: (10/31/2016 09:18:14 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
- Description: The following fatal alert was generated: 51. The internal error state is 1106.
- Error: (10/31/2016 09:12:45 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
- Description: The following fatal alert was generated: 51. The internal error state is 900.
- Error: (10/31/2016 09:11:29 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
- Description: The following fatal alert was received: 50.
- Error: (10/31/2016 09:10:59 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
- Description: The following fatal alert was generated: 51. The internal error state is 802.
- Error: (10/31/2016 09:10:59 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
- Description: The following fatal alert was generated: 51. The internal error state is 1106.
- Error: (10/31/2016 08:53:48 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
- Description: The following fatal alert was received: 51.
- Error: (10/31/2016 08:42:21 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
- Description: The following fatal alert was received: 51.
- Error: (10/31/2016 07:41:42 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
- Description: The CAM Service service terminated unexpectedly. It has done this 1 time(s).
- Error: (10/31/2016 07:41:17 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
- Description: A timeout was reached (30000 milliseconds) while waiting for the Lenovo Platform Service service to connect.
- ==================== Memory info ===========================
- Processor: Intel(R) Core(TM) i5 CPU M 520 @ 2.40GHz
- Percentage of memory in use: 53%
- Total physical RAM: 3891.67 MB
- Available physical RAM: 1808.56 MB
- Total Virtual: 7781.52 MB
- Available Virtual: 4876.53 MB
- ==================== Drives ================================
- Drive c: () (Fixed) (Total:297.99 GB) (Free:242.32 GB) NTFS
- ==================== MBR & Partition Table ==================
- ========================================================
- Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 7371E21E)
- Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
- Partition 2: (Not Active) - (Size=298 GB) - (Type=07 NTFS)
- ==================== End of Addition.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement