Additional scan result of Farbar Recovery Scan Tool (x86) Version: 11-03-2015 Ran by KaMiLa at 2015-03-18 19:24:07 Running from C:\Documents and Settings\KaMiLa\Pulpit Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 7-Zip 9.20 (HKLM\...\7-Zip) (Version: - ) AIMP3 (HKLM\...\AIMP3) (Version: v3.10.1065, 04.07.2012 - AIMP DevTeam) Aktualizacja dla systemu Windows XP (KB2345886) (HKLM\...\KB2345886) (Version: 1 - Microsoft Corporation) Aktualizacja zabezpieczeń dla systemu Windows Internet Explorer 8 (KB2510531) (HKLM\...\KB2510531-IE8) (Version: 1 - Microsoft Corporation) Aktualizacja zabezpieczeń dla systemu Windows Internet Explorer 8 (KB2544521) (HKLM\...\KB2544521-IE8) (Version: 1 - Microsoft Corporation) Aktualizacja zabezpieczeń dla systemu Windows Internet Explorer 8 (KB2761465) (HKLM\...\KB2761465-IE8) (Version: 1 - Microsoft Corporation) Aktualizacja zabezpieczeń dla systemu Windows Internet Explorer 8 (KB2799329) (HKLM\...\KB2799329-IE8) (Version: 1 - Microsoft Corporation) Aktualizacja zabezpieczeń dla systemu Windows XP (KB2753842-v2) (HKLM\...\KB2753842-v2) (Version: 2 - Microsoft Corporation) Aktualizacja zabezpieczeń dla systemu Windows XP (KB2757638) (HKLM\...\KB2757638) (Version: 1 - Microsoft Corporation) Aktualizacja zabezpieczeń dla systemu Windows XP (KB923789) (HKLM\...\KB923789) (Version: - Microsoft Corporation) Aktualizacja zabezpieczeń dla systemu Windows XP (KB970430) (HKLM\...\KB970430) (Version: 1 - Microsoft Corporation) ATI Display Driver (HKLM\...\ATI Display Driver) (Version: 8.593.100-100210a-095952E-ATI - ) CCleaner (HKLM\...\CCleaner) (Version: 5.03 - Piriform) C-Media WDM Audio Driver (HKLM\...\C-Media Audio Driver) (Version: - ) Malwarebytes Anti-Malware wersja 2.0.4.1028 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation) Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation) Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft User-Mode Driver Framework Feature Pack 1.0 (HKLM\...\Wudf01000) (Version: - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Millennium Racer (HKLM\...\Millennium Racer) (Version: - ) Mozilla Firefox 36.0.1 (x86 pl) (HKLM\...\Mozilla Firefox 36.0.1 (x86 pl)) (Version: 36.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 36.0.1 - Mozilla) Platform (Version: 1.34 - VIA Technologies, Inc.) Hidden Real Alternative 2.0.2 (HKLM\...\RealAlt_is1) (Version: 2.0.2 - ) Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) VIA Platforma Menedżera urządzeń (HKLM\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.) WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation) Windows PowerShell(TM) 1.0 (HKLM\...\KB926139-v2) (Version: 2 - Microsoft Corporation) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) ==================== Restore Points ========================= ATTENTION: System Restore is disabled. ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2008-04-15 13:00 - 2008-04-15 13:00 - 00000742 ____A C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\WINDOWS\Tasks\User_Feed_Synchronization-{34A26859-A87C-425A-818C-1BA009C4AE56}.job => C:\WINDOWS\system32\msfeedssync.exe ==================== Loaded Modules (whitelisted) ============== 2013-02-10 23:24 - 2011-10-04 22:42 - 00086016 _____ () C:\WINDOWS\system32\custmon32i.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\nm => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\nm.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver" ==================== EXE Association (whitelisted) =============== (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-1123561945-776561741-1801674531-1004\Control Panel\Desktop\\Wallpaper -> C:\Documents and Settings\KaMiLa\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp DNS Servers: 192.168.1.4 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: Cmaudio => RunDll32 cmicnfg.cpl,CMICtrlWnd ==================== Accounts: ============================= Administrator (S-1-5-21-1123561945-776561741-1801674531-500 - Administrator - Enabled) ASPNET (S-1-5-21-1123561945-776561741-1801674531-1006 - Limited - Disabled) Gość (S-1-5-21-1123561945-776561741-1801674531-501 - Limited - Enabled) KaMiLa (S-1-5-21-1123561945-776561741-1801674531-1004 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\KaMiLa Pomocnik (S-1-5-21-1123561945-776561741-1801674531-1000 - Limited - Disabled) SUPPORT_388945a0 (S-1-5-21-1123561945-776561741-1801674531-1002 - Limited - Disabled) ==================== Faulty Device Manager Devices ============= Name: Karta Realtek RTL8139 Family PCI Fast Ethernet NIC Description: Karta Realtek RTL8139 Family PCI Fast Ethernet NIC Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318} Manufacturer: Realtek Service: rtl8139 Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Zasoby płyty głównej Description: Zasoby płyty głównej Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standardowe urządzenia systemowe) Service: Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Description: Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318} Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (03/16/2015 04:03:00 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Aplikacja powodująca błąd regedit.exe, wersja 5.1.2600.5512, moduł powodujący błąd shdocvw.dll, wersja 6.0.2900.5512, adres błędu 0x000b194c. Przetwarzanie zdarzenia określonego nośnika dla [regedit.exe!ws!] Error: (03/16/2015 01:41:08 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Aplikacja powodująca błąd acrord32.exe, wersja 11.0.1.36, moduł powodujący błąd user32.dll, wersja 5.1.2600.5512, adres błędu 0x00009dda. Przetwarzanie zdarzenia określonego nośnika dla [acrord32.exe!ws!] Error: (03/16/2015 00:43:14 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Aplikacja powodująca błąd frst.exe, wersja 11.3.2015.0, moduł powodujący błąd frst.exe, wersja 11.3.2015.0, adres błędu 0x0001f09e. Przetwarzanie zdarzenia określonego nośnika dla [frst.exe!ws!] Error: (03/05/2015 03:22:57 PM) (Source: Ci) (EventID: 4126) (User: ) Description: Czyszczenie uszkodzonych metadanych indeksu zawartości na c:\system volume information\catalog.wci. Indeks zostanie automatycznie przywrócony przez ponowne przefiltrowanie wszystkich dokumentów. Error: (03/05/2015 03:22:57 PM) (Source: Ci) (EventID: 4124) (User: ) Description: Indeks zawartości na c:\system volume information\catalog.wci jest uszkodzony. Zamknij i ponownie uruchom Usługę indeksowania (cisvc). System errors: ============= Error: (03/16/2015 08:08:54 PM) (Source: 0) (EventID: 9) (User: ) Description: \Device\Ide\IdePort0 Error: (03/16/2015 05:29:18 PM) (Source: 0) (EventID: 9) (User: ) Description: \Device\Ide\IdePort0 Error: (03/16/2015 05:20:35 PM) (Source: 0) (EventID: 9) (User: ) Description: \Device\Ide\IdePort0 Error: (03/16/2015 05:14:08 PM) (Source: 0) (EventID: 9) (User: ) Description: \Device\Ide\IdePort0 Error: (03/16/2015 05:08:16 PM) (Source: 0) (EventID: 9) (User: ) Description: \Device\Ide\IdePort0 Error: (03/16/2015 05:05:16 PM) (Source: 0) (EventID: 9) (User: ) Description: \Device\Ide\IdePort0 Error: (03/16/2015 04:57:41 PM) (Source: 0) (EventID: 9) (User: ) Description: \Device\Ide\IdePort0 Error: (03/16/2015 04:45:56 PM) (Source: 0) (EventID: 9) (User: ) Description: \Device\Ide\IdePort0 Error: (03/16/2015 04:44:18 PM) (Source: 0) (EventID: 9) (User: ) Description: \Device\Ide\IdePort0 Error: (03/16/2015 04:43:22 PM) (Source: 0) (EventID: 11) (User: ) Description: \Device\Ide\IdePort0 Microsoft Office Sessions: ========================= ==================== Memory info =========================== Processor: AMD Sempron(tm) 2600+ Percentage of memory in use: 50% Total physical RAM: 767.48 MB Available physical RAM: 378.44 MB Total Pagefile: 1876.55 MB Available Pagefile: 1541.17 MB Total Virtual: 2047.88 MB Available Virtual: 1927.44 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:24.41 GB) (Free:12.98 GB) NTFS ==>[Drive with boot components (Windows XP)] Drive d: () (Fixed) (Total:50.11 GB) (Free:0.93 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 74.5 GB) (Disk ID: BD67BD67) Partition 1: (Active) - (Size=24.4 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=50.1 GB) - (Type=OF Extended) ==================== End Of Log ============================