Additional scan result of Farbar Recovery Scan Tool (x86) Version: 31-01-2015 Ran by Admin at 2015-01-31 15:21:42 Running from F:\mozilla Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-1935655697-2147138623-1417001333-1003\...\uTorrent) (Version: 3.4.2.37754 - BitTorrent Inc.) 7-Zip 9.20 (HKLM\...\7-Zip) (Version: - ) Adobe Flash Player 14 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 14.0.0.145 - Adobe Systems Incorporated) Adobe Flash Player 16 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 16.0.0.296 - Adobe Systems Incorporated) AQQ (HKLM\...\AQQ) (Version: 3.0.0.50 - Myportal - Daniel Zaborowski) ATI Catalyst Control Center (HKLM\...\{055EE59D-217B-43A7-ABFF-507B966405D8}) (Version: 2.009.0409.2130 - ) ATI Display Driver (HKLM\...\ATI Display Driver) (Version: 8.61-090409a-084714C - ) Brother MFL-Pro Suite (HKLM\...\{A3FEC306-FBFF-4B0D-95B9-F9C67C65079E}) (Version: 1.00 - Brother Industries, Ltd.) ccc-core-preinstall (Version: 2009.0409.2131.36802 - ATI) Hidden ccc-core-static (Version: 2009.0409.2131.36802 - ATI) Hidden CDisplay 1.8 (HKLM\...\CDisplay_is1) (Version: - dvd8n) ChomikBox (HKLM\...\{C7B52FAF-58D8-438C-B810-F78C3C927504}) (Version: 2.0.8.0 - Chomikuj.pl) CWK (Czasowy Wyłącznik Komputera) (HKLM\...\CWK) (Version: 2.52.3.43 - Damian Pasternak) ETDWare PS/2-x86 7.0.5.3 WHQL (HKLM\...\Elantech) (Version: - ) Fallout (HKLM\...\GOGPACKFALLOUT_is1) (Version: 2.0.0.14 - GOG.com) foobar2000 v1.3.3 (HKLM\...\foobar2000) (Version: 1.3.3 - Peter Pawlowski) Guitar Pro 5.2 (HKLM\...\Guitar Pro 5_is1) (Version: - Arobas Music) Icewind Dale + Serce Zimy (HKLM\...\{F4428A9F-5FB4-44BB-941F-4C66DF7C7A26}) (Version: 1.0 - Black Isle Studios) Java 8 Update 31 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation) K-Lite Mega Codec Pack 10.6.0 (HKLM\...\KLiteCodecPack_is1) (Version: 10.6.0 - ) Last.fm Scrobbler 2.1.36 (HKLM\...\LastFM_is1) (Version: - Last.fm) Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation) Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation) Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Mozilla Firefox 35.0.1 (x86 pl) (HKLM\...\Mozilla Firefox 35.0.1 (x86 pl)) (Version: 35.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 32.0.1 - Mozilla) NapiProjekt (2.2.0.2399) (HKLM\...\NapiProjekt_is1) (Version: - ) Narzêdzie Software Uninstall Utility firmy ATI (HKLM\...\All ATI Software) (Version: 6.14.10.1022 - ) OpenAL (HKLM\...\OpenAL) (Version: - ) PDF-XChange Viewer (HKLM\...\{3A6F4A31-8CFD-46B4-8385-E1F384DB121E}) (Version: 2.5.309.0 - Tracker Software Products (Canada) Ltd.) Platform (Version: 1.39 - VIA Technologies, Inc.) Hidden Quake Live (HKLM\...\Quake Live) (Version: - id Software) Skins (Version: 2009.0409.2131.36802 - ATI) Hidden Skype™ 7.0 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.) Unity Web Player (HKU\S-1-5-21-1935655697-2147138623-1417001333-1003\...\UnityWebPlayer) (Version: 4.5.3f3 - Unity Technologies ApS) Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) USB 2.0 1.3M UVC WebCam (HKLM\...\USB 2.0 1.3M UVC WebCam) (Version: - ) VIA Platform Device Manager (HKLM\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.) WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden Windows Live ID Sign-in Assistant (HKLM\...\{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}) (Version: 6.500.3165.0 - Microsoft Corporation) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-1935655697-2147138623-1417001333-1003_Classes\CLSID\{444785F1-DE89-4295-863A-D46C3A781394}\InprocServer32 -> C:\Documents and Settings\Admin\Local Settings\Application Data\Unity\WebPlayer\loader\UnityWebPluginAX.ocx (Unity Technologies ApS) ==================== Restore Points ========================= 21-01-2015 17:53:32 Installed Microsoft Office Enterprise 2007 21-01-2015 17:59:31 Printer Driver Send To Microsoft OneNote Driver Installed 21-01-2015 17:59:41 Printer Driver Microsoft Office Document Image Writer Installed 21-01-2015 18:08:36 Software Distribution Service 3.0 22-01-2015 10:40:43 Software Distribution Service 3.0 23-01-2015 08:41:44 Software Distribution Service 3.0 24-01-2015 10:10:09 Software Distribution Service 3.0 26-01-2015 23:30:43 System Checkpoint 28-01-2015 23:46:49 System Checkpoint ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2015-01-24 21:36 - 2015-01-31 15:10 - 00000027 ____A C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\JetCleanLoginCheckUpdate.job => D:\Programy\JetClean\AutoUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2014-08-15 13:42 - 2014-08-15 13:42 - 00014848 _____ () C:\WINDOWS\assembly\GAC_MSIL\AxInterop.WBOCXLib\1.0.0.0__90ba9c70f846762e\AxInterop.WBOCXLib.dll 2008-10-24 10:29 - 2008-10-24 10:29 - 00016384 ____R () C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll 2014-08-15 13:42 - 2014-08-15 13:42 - 00270336 _____ () C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll 2015-01-27 09:23 - 2015-01-27 09:24 - 03925104 _____ () D:\Programy\Mozilla\mozjs.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) ========================= Accounts: ========================== Admin (S-1-5-21-1935655697-2147138623-1417001333-1003 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Admin Administrator (S-1-5-21-1935655697-2147138623-1417001333-500 - Administrator - Disabled) Guest (S-1-5-21-1935655697-2147138623-1417001333-501 - Limited - Disabled) HelpAssistant (S-1-5-21-1935655697-2147138623-1417001333-1000 - Limited - Disabled) SUPPORT_388945a0 (S-1-5-21-1935655697-2147138623-1417001333-1002 - Limited - Disabled) ==================== Faulty Device Manager Devices ============= Name: SM Bus Controller Description: SM Bus Controller Class Guid: {4D36E97E-E325-11CE-BFC1-08002BE10318} Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Description: Class Guid: {4D36E97E-E325-11CE-BFC1-08002BE10318} Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (01/31/2015 03:20:41 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application frst.exe, version 31.1.2015.0, faulting module frst.exe, version 31.1.2015.0, fault address 0x0001f09e. Processing media-specific event for [frst.exe!ws!] Error: (01/27/2015 07:48:26 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application plugin-container.exe, version 35.0.1.5500, faulting module mozalloc.dll, version 35.0.1.5500, fault address 0x00001425. Processing media-specific event for [plugin-container.exe!ws!] Error: (01/26/2015 06:07:38 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application plugin-container.exe, version 35.0.0.5486, faulting module mozalloc.dll, version 35.0.0.5486, fault address 0x00001425. Processing media-specific event for [plugin-container.exe!ws!] Error: (01/21/2015 05:28:21 PM) (Source: Office Software Protection Platform Service) (EventID: 1012) (User: ) Description: hr=0xC004C003fdf3ecb9-b56f-43b2-a9b8-1b48b6bae1a7 Error: (01/21/2015 05:28:21 PM) (Source: Office Software Protection Platform Service) (EventID: 8200) (User: ) Description: hr=0xC004C00300010001(0x00000000, 17:28:21:125 - http://go.microsoft.com/fwlink/?LinkID=120751) 00020001(0x00000000, 17:28:21:125) 00030001(0x00000000, 17:28:21:125 - http://go.microsoft.com) 00030002(0x00000000, 17:28:21:125 - 1) 00020005(0x00000000, 17:28:21:125 - 0) 0002000C(0x00000000, 17:28:21:328 - 302) 0002000E(0x00000000, 17:28:21:328 - https://activation.sls.microsoft.com/slpkc/SLCertifyProduct.asmx?configextension=o14) 00020001(0x00000000, 17:28:21:328) 00030001(0x00000000, 17:28:21:328 - https://activation.sls.microsoft.com) 00030002(0x00000000, 17:28:21:328 - 1) 00020005(0x00000000, 17:28:21:328 - 0) 0002000C(0x00000000, 17:28:21:531 - 500) 00010002(0x8004FC01, 17:28:21:531 - soap:ServerSoapException0xC004C003103 (Activation) - [PA Product key blocked. ---> Product key blocked]) 00010003(0x8004FC01, 17:28:21:531) Error: (01/17/2015 11:42:28 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application plugin-container.exe, version 34.0.5.5443, faulting module mozalloc.dll, version 34.0.5.5443, fault address 0x00001425. Processing media-specific event for [plugin-container.exe!ws!] System errors: ============= Error: (01/31/2015 03:12:41 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY) Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF} Error: (01/31/2015 03:11:15 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: The following boot-start or system-start driver(s) failed to load: AmdPPM Fips Error: (01/31/2015 03:10:20 PM) (Source: DCOM) (EventID: 10005) (User: WXPPX86BE-0677) Description: DCOM got error "%%1084" attempting to start the service StiSvc with arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811} Error: (01/31/2015 03:10:15 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY) Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF} Error: (01/17/2015 02:45:20 PM) (Source: Dhcp) (EventID: 1000) (User: ) Description: Your computer has lost the lease to its IP address 10.0.0.39 on the Network Card with network address 0025D36E48A4. Error: (12/27/2014 11:55:05 PM) (Source: 0) (EventID: 8003) (User: ) Description: \Device\LanmanDatagramReceiverAZRIEL-KOMPUTERNetBT_Tcpip_{732C3324-1E2 Error: (12/27/2014 10:55:05 PM) (Source: 0) (EventID: 8003) (User: ) Description: \Device\LanmanDatagramReceiverAZRIEL-KOMPUTERNetBT_Tcpip_{732C3324-1E2 Error: (12/27/2014 09:55:00 PM) (Source: 0) (EventID: 8003) (User: ) Description: \Device\LanmanDatagramReceiverAZRIEL-KOMPUTERNetBT_Tcpip_{732C3324-1E2 Error: (12/27/2014 08:43:03 PM) (Source: 0) (EventID: 8003) (User: ) Description: \Device\LanmanDatagramReceiverAZRIEL-KOMPUTERNetBT_Tcpip_{732C3324-1E2 Error: (12/27/2014 07:31:07 PM) (Source: 0) (EventID: 8003) (User: ) Description: \Device\LanmanDatagramReceiverAZRIEL-KOMPUTERNetBT_Tcpip_{732C3324-1E2 Microsoft Office Sessions: ========================= ==================== Memory info =========================== Processor: AMD Athlon(tm) X2 Dual-Core QL-64 Percentage of memory in use: 25% Total physical RAM: 3071.04 MB Available physical RAM: 2299.28 MB Total Pagefile: 4956.35 MB Available Pagefile: 4305.84 MB Total Virtual: 2047.88 MB Available Virtual: 1940.43 MB ==================== Drives ================================ Drive c: (System) (Fixed) (Total:19.53 GB) (Free:7.2 GB) NTFS ==>[Drive with boot components (Windows XP)] Drive d: (Gry, programy) (Fixed) (Total:78.13 GB) (Free:4.63 GB) NTFS Drive e: (Multimedia) (Fixed) (Total:156.25 GB) (Free:4.01 GB) NTFS Drive f: (Dupeszwance) (Fixed) (Total:44.17 GB) (Free:22.06 GB) NTFS Drive i: (Elements) (Fixed) (Total:1397.26 GB) (Free:130.37 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows XP) (Size: 298.1 GB) (Disk ID: 9DD59DD5) Partition 1: (Active) - (Size=19.5 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=278.5 GB) - (Type=OF Extended) ======================================================== Disk: 1 (MBR Code: Windows XP) (Size: 1397.3 GB) (Disk ID: 00129742) Partition 1: (Not Active) - (Size=1397.3 GB) - (Type=07 NTFS) ==================== End Of Log ============================