Additional scan result of Farbar Recovery Scan Tool (x86) Version: 25-11-2013 01 Ran by magdalena at 2013-11-25 21:19:14 Running from C:\Users\magdalena\Desktop Boot Mode: Normal ========================================================== ==================== Security Center ======================== AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== Acrobat.com (Version: 0.0.0) Acrobat.com (Version: 1.1.377) Activation Assistant for the 2007 Microsoft Office suites Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0) ActiveCheck component for HP Active Support Library (Version: 1.1.18.0) Adobe AIR (Version: 1.0.4990) Adobe AIR (Version: 1.0.8.4990) Adobe Flash Player 11 ActiveX (Version: 11.9.900.117) Adobe Flash Player 11 Plugin (Version: 11.9.900.152) Adobe Reader 9 (Version: 9.0.0) Adobe Shockwave Player (Version: 11.0) Ashampoo Burning Studio 6 FREE (Version: 6.7.6) Atheros Driver Installation Program (Version: 5.2) avast! Free Antivirus (Version: 7.0.1474.0) CCleaner (Version: 3.26) Cisco EAP-FAST Module (Version: 2.1.6) Cisco LEAP Module (Version: 1.0.12) Cisco PEAP Module (Version: 1.0.13) Conexant HD Audio (Version: 4.58.0.0) CyberLink DVD Suite (Version: 6.0.2203) CyberLink YouCam (Version: 2.0.1616) DivX Setup (Version: 2.5.0.15) ESU for Microsoft Vista (Version: 1.0.0) ffdshow v1.2.4422 [2012-04-09] (Version: 1.2.4422.0) Google Chrome (Version: 30.0.1599.101) Google Earth Plug-in (Version: 7.1.1.1888) Google Update Helper (Version: 1.3.21.165) HDAUDIO Soft Data Fax Modem with SmartCP HP Active Support Library (Version: 3.1.9.1) HP Customer Experience Enhancements (Version: 5.7.0.2664) HP Doc Viewer (Version: 1.03.0001) HP DVD Play 3.7 (Version: 3.7.0.5723) HP Quick Launch Buttons 6.40 H2 (Version: 6.40 H2) HP Total Care Advisor (Version: 2.4.4941.2798) HP Update (Version: 4.000.010.008) HP User Guides 0118 (Version: 1.00.0000) HP Wireless Assistant (Version: 3.00 K2) HPAsset component for HP Active Support Library (Version: 2.0.64.3) HPNetworkAssistant (Version: 1.1.70) HPTCSSetup (Version: 1.1.1963.2799) Intel(R) Graphics Media Accelerator Driver Java 7 Update 45 (Version: 7.0.450) Java Auto Updater (Version: 2.1.9.8) K-Lite Codec Pack 3.6.5 Full (Version: 3.6.5) LabelPrint (Version: 2.5.0926) LightScribe System Software 1.14.17.1 (Version: 1.14.17.1) Malwarebytes Anti-Malware wersja 1.75.0.1300 (Version: 1.75.0.1300) Microsoft .NET Framework 3.5 SP1 Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729) Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319) Microsoft Office File Validation Add-In (Version: 14.0.5130.5003) Microsoft Office Professional Edition 2003 (Version: 11.0.8173.0) Microsoft Silverlight (Version: 5.1.20913.0) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053) Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161) Microsoft Works (Version: 9.7.0621) Mozilla Firefox 25.0.1 (x86 pl) (Version: 25.0.1) Mozilla Maintenance Service (Version: 25.0.1) MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0) MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0) OpenOffice.org 3.1 (Version: 3.1.9420) Pakiet zgodności dla systemu Office 2007 (Version: 12.0.6612.1000) Picasa 3 (Version: 3.9) PLAY ONLINE (Version: 11.302.09.00.264) Qtrax Player Realtek 8169 8168 8101E 8102E Ethernet Driver (Version: 1.00.0000) Realtek USB 2.0 Card Reader (Version: 3.0.1.3) Skype Click to Call (Version: 6.13.13771) Synaptics Pointing Device Driver (Version: 11.1.3.0) Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1) VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0) ==================== Restore Points ========================= 22-09-2013 17:47:17 Windows Update 24-09-2013 21:32:00 Windows Update 02-10-2013 11:48:22 Windows Update 02-10-2013 12:17:38 Windows Defender Checkpoint 04-10-2013 15:52:25 Windows Update 08-10-2013 11:39:38 Windows Update 11-10-2013 19:16:51 Windows Update 14-10-2013 13:27:10 Windows Update 15-10-2013 07:33:25 Windows Update 18-10-2013 15:33:35 Windows Update 25-10-2013 18:53:08 Windows Update 08-11-2013 20:43:25 Windows Update 16-11-2013 00:11:47 Windows Update 18-11-2013 06:32:43 Windows Update 25-11-2013 11:17:16 Skonfigurowane PowerDirector 25-11-2013 11:30:46 Removed NetWaiting 25-11-2013 11:31:57 Removed NetWaiting 25-11-2013 11:47:42 Windows Update 25-11-2013 11:59:10 Windows Update 25-11-2013 12:12:53 Installed Java 7 Update 45 25-11-2013 13:27:37 Removed HP Help and Support. ==================== Hosts content: ========================== 2006-11-02 11:23 - 2006-09-18 22:41 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ::1 localhost ==================== Scheduled Tasks (whitelisted) ============= Task: {1216E1C9-FB18-4F36-89BA-00E9337B4DA3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2012-12-19] (Piriform Ltd) Task: {18DFD9FC-082E-4E9B-8285-5F21D2B4EDAE} - System32\Tasks\Microsoft\Windows\MobilePC\TMM Task: {5916F864-469C-4391-8604-E4EA141A2699} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\System32\gatherWirelessInfo.vbs [2008-01-21] () Task: {5BB7A530-6722-45CA-AD16-D75AA28953B0} - System32\Tasks\HP Health Check => C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-10-09] (Hewlett-Packard) Task: {5C7EF580-4F31-41EB-9B1F-D2C5F22F5C36} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe [2010-02-12] (Microsoft Corporation) Task: {7C5A51E8-1AD7-48C6-8879-257A8A9609F5} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI Task: {7DCBEC8E-C42D-4829-A1C6-6E0A988E4A9C} - System32\Tasks\{D9EBAFB7-F66D-4AC2-AB6A-7D2B87B3CC0A} => Firefox.exe http://ui.skype.com/ui/0/6.3.0.105/pl/abandoninstall?source=lightinstaller&page=tsProgressBar Task: {82FE034A-98A0-4CA0-97BA-D9BBBEA2BD9C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-25] (Adobe Systems Incorporated) Task: {8B0E6FAB-F43A-4988-AF0A-A21646C212F0} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages Task: {9B0C5345-DD2C-4436-9EE4-7E98F69BDCF6} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2012-10-30] (AVAST Software) Task: {9ED703A9-5FFD-40D5-895A-4385EE1509DE} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\System32\RacAgent.exe [2008-01-21] (Microsoft Corporation) Task: {E8C37260-4E8B-422F-A9FA-F672566D16AD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2011-03-31] (Google Inc.) Task: {FAF81AB2-9C1A-4395-BB58-17C6E9BFAC4D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2011-03-31] (Google Inc.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2013-10-25 20:35 - 2013-10-09 01:02 - 04055504 _____ () C:\Program Files\Google\Chrome\Application\30.0.1599.101\pdf.dll 2013-10-25 20:35 - 2013-10-09 01:02 - 00415184 _____ () C:\Program Files\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll 2013-10-25 20:35 - 2013-10-09 01:01 - 01604560 _____ () C:\Program Files\Google\Chrome\Application\30.0.1599.101\ffmpegsumo.dll 2013-10-25 20:35 - 2013-10-09 01:01 - 00698832 _____ () C:\Program Files\Google\Chrome\Application\30.0.1599.101\libglesv2.dll 2013-10-25 20:35 - 2013-10-09 01:01 - 00099792 _____ () C:\Program Files\Google\Chrome\Application\30.0.1599.101\libegl.dll ==================== Alternate Data Streams (whitelisted) ========= ==================== Safe Mode (whitelisted) =================== HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver" ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (11/25/2013 09:08:39 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (11/25/2013 02:34:24 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (11/25/2013 01:56:27 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (11/25/2013 01:11:25 PM) (Source: Microsoft-Windows-RestartManager) (User: magdalena-PC) Description: 0C:\Program Files\Java\jre1.6.0_07\bin\jucheck.exeJava(TM) Update Checker0211727560 Error: (11/25/2013 00:56:51 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (11/25/2013 00:31:56 PM) (Source: VSS) (User: ) Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005. This is often caused by incorrect security settings in either the writer or requestor process. Operation: Gathering Writer Data Context: Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220} Writer Name: System Writer Writer Instance ID: {abd1b610-7a24-4ed2-86ef-bc27950192df} Error: (11/25/2013 00:30:46 PM) (Source: VSS) (User: ) Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005. This is often caused by incorrect security settings in either the writer or requestor process. Operation: Gathering Writer Data Context: Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220} Writer Name: System Writer Writer Instance ID: {abd1b610-7a24-4ed2-86ef-bc27950192df} Error: (11/25/2013 00:17:01 PM) (Source: VSS) (User: ) Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005. This is often caused by incorrect security settings in either the writer or requestor process. Operation: Gathering Writer Data Context: Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220} Writer Name: System Writer Writer Instance ID: {abd1b610-7a24-4ed2-86ef-bc27950192df} Error: (11/25/2013 00:10:09 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (11/19/2013 11:10:27 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 System errors: ============= Microsoft Office Sessions: ========================= Error: (11/25/2013 09:08:39 PM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (11/25/2013 02:34:24 PM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (11/25/2013 01:56:27 PM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (11/25/2013 01:11:25 PM) (Source: Microsoft-Windows-RestartManager)(User: magdalena-PC) Description: 0C:\Program Files\Java\jre1.6.0_07\bin\jucheck.exeJava(TM) Update Checker0211727560 Error: (11/25/2013 00:56:51 PM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (11/25/2013 00:31:56 PM) (Source: VSS)(User: ) Description: 0x80070005 Operation: Gathering Writer Data Context: Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220} Writer Name: System Writer Writer Instance ID: {abd1b610-7a24-4ed2-86ef-bc27950192df} Error: (11/25/2013 00:30:46 PM) (Source: VSS)(User: ) Description: 0x80070005 Operation: Gathering Writer Data Context: Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220} Writer Name: System Writer Writer Instance ID: {abd1b610-7a24-4ed2-86ef-bc27950192df} Error: (11/25/2013 00:17:01 PM) (Source: VSS)(User: ) Description: 0x80070005 Operation: Gathering Writer Data Context: Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220} Writer Name: System Writer Writer Instance ID: {abd1b610-7a24-4ed2-86ef-bc27950192df} Error: (11/25/2013 00:10:09 PM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (11/19/2013 11:10:27 AM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 CodeIntegrity Errors: =================================== Date: 2013-11-25 21:17:38.733 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system. Date: 2013-11-25 21:17:38.150 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system. Date: 2013-11-25 21:17:37.571 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system. Date: 2013-11-25 21:17:36.999 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system. Date: 2013-11-25 21:17:36.050 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system. Date: 2013-11-25 21:17:35.522 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system. Date: 2013-11-25 21:17:34.951 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system. Date: 2013-11-25 21:17:34.350 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system. Date: 2013-11-25 14:58:13.008 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system. Date: 2013-11-25 14:58:12.322 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Percentage of memory in use: 69% Total physical RAM: 954.45 MB Available physical RAM: 286.71 MB Total Pagefile: 2173.22 MB Available Pagefile: 959.91 MB Total Virtual: 2047.88 MB Available Virtual: 1924.55 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:138.97 GB) (Free:35.31 GB) NTFS ==>[Drive with boot components (obtained from BCD)] Drive d: (RECOVERY) (Fixed) (Total:10.08 GB) (Free:1.74 GB) NTFS ==>[System with boot components (obtained from reading drive)] ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 149 GB) (Disk ID: 1FE134FF) Partition 1: (Active) - (Size=139 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=10 GB) - (Type=07 NTFS) ==================== End Of Log ============================