Additional scan result of Farbar Recovery Scan Tool (x86) Version:25-08-2015 02 Ran by Krzysiek (2015-08-27 19:16:11) Running from F:\ Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-1993962763-1935655697-1708537768-500 - Administrator - Enabled) Guest (S-1-5-21-1993962763-1935655697-1708537768-501 - Limited - Disabled) HelpAssistant (S-1-5-21-1993962763-1935655697-1708537768-1000 - Limited - Disabled) Krzysiek (S-1-5-21-1993962763-1935655697-1708537768-1003 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Krzysiek SUPPORT_388945a0 (S-1-5-21-1993962763-1935655697-1708537768-1002 - Limited - Disabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 7-Zip 9.20 (HKLM\...\7-Zip) (Version: - ) Adobe Flash Player 10 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 10.0.42.34 - Adobe Systems Incorporated) Adobe Reader 9 - Polish (HKLM\...\{AC76BA86-7AD7-1045-7B44-A90000000001}) (Version: 9.0.0 - Adobe Systems Incorporated) Adobe SVG Viewer 3.0 (HKLM\...\Adobe SVG Viewer) (Version: 3.0 - ) ALLDATA Repair (HKLM\...\{73090A5A-E0C0-4E0B-A320-E183877061A5}) (Version: 9.90.1000 - ALLDATA Corporation) Archiwizator WinRAR (HKLM\...\WinRAR archiver) (Version: - ) AVG 2011 (Version: 10.0.4031 - AVG Technologies) Hidden Bosch Viewer (HKLM\...\Bosch Viewer) (Version: - ) DAEMON Tools (HKLM\...\{3DED3A72-61A8-4B87-98A5-EF0BC8038AA0}) (Version: 3.47.0 - DAEMON'S HOME) ESI[tronic] (HKLM\...\ESI[tronic]) (Version: - ) ESI-Wartości kontrolne (HKLM\...\ESI-Wartości kontrolne) (Version: - ) Fujitsu Button Driver Application Component (HKLM\...\{C1108168-3364-4F6F-B19E-1ECA24192164}) (Version: 1.01.0000 - Fujitsu PC Corp) Fujitsu Pen Service (HKLM\...\{5337BED2-73A0-4EB8-A33C-91DFD4C2F82D}) (Version: 1.03.000 - ) Google Chrome (HKLM\...\Google Chrome) (Version: 12.0.742.100 - Google Inc.) Google Update Helper (Version: 1.2.183.39 - Google Inc.) Hidden Intel(R) Extreme Graphics Driver (HKLM\...\{8A708DD8-A5E6-11D4-A706-000629E95E20}) (Version: - ) Lucent Technologies Soft Modem AMR (HKLM\...\Lucent Technologies Soft Modem) (Version: - ) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Mozilla Firefox (3.0.17) (HKLM\...\Mozilla Firefox (3.0.17)) (Version: 3.0.17 (pl) - Mozilla) Nero 6 Enterprise Edition (HKLM\...\Nero - Burning Rom!UninstallKey) (Version: - ) OnDemand5 (HKLM\...\{5F7DFDFA-27B3-4E06-BCDE-B371424C0032}) (Version: 5.8.0.10 - ) PLAY ONLINE (HKLM\...\PLAY ONLINE) (Version: 11.002.03.08.264 - Huawei Technologies Co.,Ltd) PRISM 11Mbps Wireless LAN for Windows (HKLM\...\{9B690E75-4B22-46EC-8DAE-A4CF7688F05C}) (Version: - ) RTLSetup for Realtek RTL8139/810x Family NIC 3.00 (HKLM\...\{97AA0C55-AFAD-4126-B21C-F1318FB6DADA}) (Version: - ) SigmaTel AC97 Audio Drivers (HKLM\...\{7959721D-8268-4565-9E0E-C41A9F4848A9}) (Version: - ) Tablet PC Edition 2005 Multilingual User Interface (MUI) Pack (Version: 1.7.0.0 - Microsoft Corporation) Hidden The Bat! (Ekspert / Pro) v3.99 (HKLM\...\{AF87A1A6-F5A7-464C-92ED-D2D5FB33AE1A}) (Version: 3.99.0.0 - Ritlabs) Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: - ) WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden xp-AntiSpy 3.96-8 (HKLM\...\xp-AntiSpy) (Version: - Christian Taubenheim) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== Restore Points ========================= 14-12-2009 00:01:40 Punkt kontrolny systemu 14-12-2009 18:51:46 Punkt kontrolny systemu ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2004-08-03 21:00 - 2015-08-26 22:21 - 00000726 ____A C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (Whitelisted) ============== 2009-05-19 22:21 - 2009-05-19 22:21 - 03301376 _____ () c:\windows\assembly\nativeimages1_v1.0.3705\mscorlib\1.0.3300.0__b77a5c561934e089_26dba3be\mscorlib.dll 2009-05-19 22:21 - 2009-05-19 22:21 - 00847872 _____ () c:\windows\assembly\nativeimages1_v1.0.3705\system.drawing\1.0.3300.0__b03f5f7f11d50a3a_58c2131c\system.drawing.dll 2009-05-19 22:21 - 2009-05-19 22:21 - 02953216 _____ () c:\windows\assembly\nativeimages1_v1.0.3705\system.windows.forms\1.0.3300.0__b77a5c561934e089_5611e80d\system.windows.forms.dll 2009-05-19 22:21 - 2009-05-19 22:21 - 01855488 _____ () c:\windows\assembly\nativeimages1_v1.0.3705\system\1.0.3300.0__b77a5c561934e089_3ff407e9\system.dll 2009-05-19 22:21 - 2009-05-19 22:21 - 02027520 _____ () c:\windows\assembly\nativeimages1_v1.0.3705\system.xml\1.0.3300.0__b77a5c561934e089_b7011832\system.xml.dll 2004-08-22 17:04 - 2004-08-22 17:04 - 00069120 _____ () C:\WINDOWS\daemon.dll 2003-12-30 21:52 - 2003-12-30 21:52 - 00007168 _____ () C:\Program Files\D-Tools\Plugins\Images\bw5mount.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\WINDOWS\Temp:temp ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot => "AlternateShell"="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys => ""="Driver" ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-1993962763-1935655697-1708537768-1003\Control Panel\Desktop\\Wallpaper -> C:\Documents and Settings\Krzysiek\Local Settings\Application Data\Microsoft\Wallpaper1.bmp DNS Servers: Media is not connected to internet. sharedaccess Firewall Service is not running. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) DomainProfile\AuthorizedApplications: [C:\WINDOWS\system32\wmisrvc.exe] => Enabled:UPnP Firewall StandardProfile\AuthorizedApplications: [C:\WINDOWS\system32\wmisrvc.exe] => Enabled:UPnP Firewall StandardProfile\AuthorizedApplications: [F:\DTLite4491-0356.1394761051\DTLite4491-0356.1394761051.exe] => Enabled:ipsec StandardProfile\AuthorizedApplications: [C:\WINDOWS\SYSTEM32\WISPTIS.EXE] => Enabled:ipsec StandardProfile\AuthorizedApplications: [C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe] => Enabled:ipsec StandardProfile\AuthorizedApplications: [C:\WINDOWS\system32\NeroCheck.exe] => Enabled:ipsec StandardProfile\AuthorizedApplications: [C:\WINDOWS\Explorer.EXE] => Enabled:ipsec StandardProfile\AuthorizedApplications: [C:\Program Files\Common Files\Microsoft Shared\Ink\TCServer.exe] => Enabled:ipsec StandardProfile\AuthorizedApplications: [C:\WINDOWS\System32\tabbtnu.exe] => Enabled:ipsec StandardProfile\AuthorizedApplications: [F:\enynq.pif] => Enabled:ipsec ==================== Faulty Device Manager Devices ============= Could not list Devices. Check "winmgmt" service or repair WMI. ==================== Event log errors: ========================= Application errors: ================== Error: (08/27/2015 07:03:41 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Aplikacja powodująca błąd mbamservice.exe, wersja 3.2.13.0, moduł powodujący błąd Qt5Core.dll, wersja 5.4.1.0, adres błędu 0x00026f16. Przetwarzanie zdarzenia określonego nośnika dla [mbamservice.exe!ws!] Error: (08/27/2015 06:09:06 PM) (Source: MsiInstaller) (EventID: 10005) (User: KRZYSZTO-1A03A9) Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2011 -- Error 27013. CA_Error27013: ProcessAvgLicense_c0001(0xE0010406): Processing license failed Error: (08/27/2015 06:07:20 PM) (Source: MsiInstaller) (EventID: 10005) (User: KRZYSZTO-1A03A9) Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2011 -- Error 27013. CA_Error27013: ProcessAvgLicense_c0001(0xE0010406): Processing license failed Error: (08/27/2015 06:04:39 PM) (Source: MsiInstaller) (EventID: 10005) (User: KRZYSZTO-1A03A9) Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2011 -- Error 27013. CA_Error27013: ProcessAvgLicense_c0001(0xE0010406): Processing license failed Error: (08/27/2015 06:02:56 PM) (Source: MsiInstaller) (EventID: 10005) (User: KRZYSZTO-1A03A9) Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2011 -- Error 27013. CA_Error27013: ProcessAvgLicense_c0001(0xE0010406): Processing license failed Error: (08/27/2015 06:00:09 PM) (Source: MsiInstaller) (EventID: 10005) (User: KRZYSZTO-1A03A9) Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2011 -- Error 27013. CA_Error27013: ProcessAvgLicense_c0001(0xE0010406): Processing license failed Error: (08/27/2015 05:58:00 PM) (Source: MsiInstaller) (EventID: 10005) (User: KRZYSZTO-1A03A9) Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2011 -- Error 27013. CA_Error27013: ProcessAvgLicense_c0001(0xE001003D): Processing license failed Error: (08/27/2015 05:56:47 PM) (Source: MsiInstaller) (EventID: 10005) (User: KRZYSZTO-1A03A9) Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2011 -- Error 27013. CA_Error27013: ProcessAvgLicense_c0001(0xE0010406): Processing license failed Error: (08/27/2015 05:54:03 PM) (Source: MsiInstaller) (EventID: 10005) (User: KRZYSZTO-1A03A9) Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2011 -- Error 27013. CA_Error27013: ProcessAvgLicense_c0001(0xE001003D): Processing license failed Error: (08/27/2015 05:53:45 PM) (Source: MsiInstaller) (EventID: 10005) (User: KRZYSZTO-1A03A9) Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2011 -- Error 27013. CA_Error27013: ProcessAvgLicense_c0001(0xE001003D): Processing license failed System errors: ============= Error: (08/27/2015 07:08:37 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Computer Browser zakończyła działanie; wystąpił następujący błąd: %%1460 Error: (08/27/2015 07:05:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa MBAMService niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (08/27/2015 07:05:19 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Usługa MBAMService zawiesiła się podczas uruchamiania. Error: (08/27/2015 07:04:50 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi AVG WatchDog z powodu następującego błędu: %%2 Error: (08/27/2015 07:04:50 PM) (Source: Service Control Manager) (EventID: 7003) (User: ) Description: Usługa AVGIDSAgent zależy od następującej nieistniejącej usługi: AVGIDSDriver. Error: (08/27/2015 07:00:49 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi AVG WatchDog z powodu następującego błędu: %%2 Error: (08/27/2015 07:00:49 PM) (Source: Service Control Manager) (EventID: 7003) (User: ) Description: Usługa AVGIDSAgent zależy od następującej nieistniejącej usługi: AVGIDSDriver. Error: (08/27/2015 07:00:22 PM) (Source: System Error) (EventID: 1003) (User: ) Description: Kod błędu 1000008e, parametr 1 c0000005, parametr 2 804d917e, parametr 3 ef9e0b04, parametr 4 00000000. Error: (08/27/2015 07:00:19 PM) (Source: System Error) (EventID: 1003) (User: ) Description: Kod błędu 1000008e, parametr 1 c0000092, parametr 2 00001163, parametr 3 ee197e28, parametr 4 00000000. Error: (08/27/2015 07:00:16 PM) (Source: System Error) (EventID: 1003) (User: ) Description: Kod błędu 10000050, parametr 1 ef2f9b00, parametr 2 00000001, parametr 3 821000a7, parametr 4 00000000. Microsoft Office: ========================= Error: (08/27/2015 07:03:41 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: mbamservice.exe3.2.13.0Qt5Core.dll5.4.1.000026f16 Error: (08/27/2015 06:09:06 PM) (Source: MsiInstaller) (EventID: 10005) (User: KRZYSZTO-1A03A9) Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2011 -- Error 27013. CA_Error27013: ProcessAvgLicense_c0001(0xE0010406): Processing license failed(NULL)(NULL)(NULL) Error: (08/27/2015 06:07:20 PM) (Source: MsiInstaller) (EventID: 10005) (User: KRZYSZTO-1A03A9) Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2011 -- Error 27013. CA_Error27013: ProcessAvgLicense_c0001(0xE0010406): Processing license failed(NULL)(NULL)(NULL) Error: (08/27/2015 06:04:39 PM) (Source: MsiInstaller) (EventID: 10005) (User: KRZYSZTO-1A03A9) Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2011 -- Error 27013. CA_Error27013: ProcessAvgLicense_c0001(0xE0010406): Processing license failed(NULL)(NULL)(NULL) Error: (08/27/2015 06:02:56 PM) (Source: MsiInstaller) (EventID: 10005) (User: KRZYSZTO-1A03A9) Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2011 -- Error 27013. CA_Error27013: ProcessAvgLicense_c0001(0xE0010406): Processing license failed(NULL)(NULL)(NULL) Error: (08/27/2015 06:00:09 PM) (Source: MsiInstaller) (EventID: 10005) (User: KRZYSZTO-1A03A9) Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2011 -- Error 27013. CA_Error27013: ProcessAvgLicense_c0001(0xE0010406): Processing license failed(NULL)(NULL)(NULL) Error: (08/27/2015 05:58:00 PM) (Source: MsiInstaller) (EventID: 10005) (User: KRZYSZTO-1A03A9) Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2011 -- Error 27013. CA_Error27013: ProcessAvgLicense_c0001(0xE001003D): Processing license failed(NULL)(NULL)(NULL) Error: (08/27/2015 05:56:47 PM) (Source: MsiInstaller) (EventID: 10005) (User: KRZYSZTO-1A03A9) Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2011 -- Error 27013. CA_Error27013: ProcessAvgLicense_c0001(0xE0010406): Processing license failed(NULL)(NULL)(NULL) Error: (08/27/2015 05:54:03 PM) (Source: MsiInstaller) (EventID: 10005) (User: KRZYSZTO-1A03A9) Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2011 -- Error 27013. CA_Error27013: ProcessAvgLicense_c0001(0xE001003D): Processing license failed(NULL)(NULL)(NULL) Error: (08/27/2015 05:53:45 PM) (Source: MsiInstaller) (EventID: 10005) (User: KRZYSZTO-1A03A9) Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2011 -- Error 27013. CA_Error27013: ProcessAvgLicense_c0001(0xE001003D): Processing license failed(NULL)(NULL)(NULL) ==================== Memory info =========================== Processor: Mobile Intel(R) Pentium(R) III CPU - M 800MHz Percentage of memory in use: 40% Total physical RAM: 502.98 MB Available physical RAM: 297.55 MB Total Virtual: 1229.29 MB Available Virtual: 1039.7 MB ==================== Drives ================================ Drive c: (Sysstem) (Fixed) (Total:19.53 GB) (Free:10.66 GB) NTFS ==>[drive with boot components (Windows XP)] Drive d: (data) (Fixed) (Total:36.35 GB) (Free:18.67 GB) NTFS Drive f: () (Removable) (Total:7.27 GB) (Free:1.59 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows XP) (Size: 55.9 GB) (Disk ID: 7A467A46) Partition 1: (Active) - (Size=19.5 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=36.3 GB) - (Type=OF Extended) ======================================================== Disk: 1 (Size: 7.3 GB) (Disk ID: BE3DAF35) Partition 1: (Not Active) - (Size=7.3 GB) - (Type=07 NTFS) ==================== End of Addition.txt ============================