Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-07-2013 01 Ran by Maka at 2013-07-14 00:10:03 Running from C:\Users\Maka\Downloads Boot Mode: Normal ========================================================== ==================== Restore Points ========================= 13-07-2013 15:44:21 Windows Update ==================== Hosts content: ========================== 2009-07-14 04:34 - 2013-07-13 23:01 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Scheduled Tasks (whitelisted) ============= Task: {02CB21AE-DF42-4B77-AC6D-4CBB094DBDEC} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe No File Task: {08155528-EB4A-4028-B65A-32CC781F687A} - System32\Tasks\ASUS P4G => C:\Program Files\P4G\BatteryLife.exe [2009-08-29] (ATK) Task: {1BBB1519-FB1C-442D-85B6-7651ADD98EE6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-05-17] (Google Inc.) Task: {1BF24E85-EED2-4552-A862-D9317186DC5D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-05-17] (Google Inc.) Task: {22477E4D-78E3-46AA-B311-41EFC830C90F} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2013-06-18] (COMODO) Task: {2BD73798-52ED-48F1-9C4F-CDE696DE0909} - System32\Tasks\SlimDrivers Startup => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe [2013-06-21] (SlimWare Utilities, Inc.) Task: {51339815-1BAB-4185-9747-038026330EA3} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-06-12] (Adobe Systems Incorporated) Task: {6244BDB5-EED0-4235-8E9B-DD71487F5763} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2013-06-18] (COMODO) Task: {799E4898-4E5E-4FCE-A004-D041D881D6AE} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe No File Task: {7D8DC971-19CB-4A49-8E6D-AA87A313F936} - System32\Tasks\User_Feed_Synchronization-{B9324C97-2CBA-497F-AB14-CF8FB7CDF9E6} => C:\Windows\system32\msfeedssync.exe [2013-07-04] (Microsoft Corporation) Task: {8ACED809-72FA-4401-B251-3687F5772FB3} - System32\Tasks\WC3 => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2009-07-24] () Task: {96CCF99D-575F-4EEE-90EF-E81CDA8DFAEE} - System32\Tasks\AnVir Task Manager => C:\Program Files (x86)\AnVir Task Manager Free\anvir.exe No File Task: {AA9CBC58-BABB-4292-825A-9A2EE2461887} - System32\Tasks\COMODO\COMODO Welcome {CEB54B45-2B5E-4FF5-9223-6735CD80FE69} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [2013-06-18] (COMODO) Task: {B1A06A2E-53EE-4EE0-8E23-BB454EC484FC} - System32\Tasks\P4GIntlCtrl => C:\Program Files\P4G\IntlCtrl.exe [2009-08-11] (TODO: ) Task: {BC067285-9606-4F55-9AC6-5C6B13AD46AB} - System32\Tasks\ASUSControlDeck => C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe [2009-09-03] () Task: {C98CDFD7-4220-4DBB-B799-941AD0D7F014} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2013-06-18] (COMODO) Task: {D896B4E2-2344-4E8D-8BD7-95E759A2C51F} - System32\Tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2013-06-18] (COMODO) Task: {D9F7EF50-187E-4167-9E36-6E6D94EE5A91} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2010-11-20] (Microsoft Corporation) Task: {E7179DDA-6D44-4551-A0F4-202AD37E33B6} - System32\Tasks\JetCleanLoginCheckUpdate => C:\Program Files (x86)\BlueSprig\JetClean\AutoUpdate.exe [2013-05-14] (BlueSprig) Task: {EDA7D370-75D2-4746-AE9E-ABCD500CFA3D} - System32\Tasks\ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe No File Task: {EFC5964D-6128-4097-8340-BF85B5D9A671} - System32\Tasks\JetBoost_AutoUpdate => C:\Program Files (x86)\BlueSprig\JetBoost\AutoUpdate.exe [2012-11-27] (BlueSprig) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\SlimDrivers Startup.job => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe ==================== Faulty Device Manager Devices ============= Name: BT-253 Description: BT-253 Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974} Manufacturer: Broadcom Service: BTHUSB Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Event log errors: ========================= Application errors: ================== Error: (07/13/2013 08:01:42 PM) (Source: Application Hang) (User: ) Description: Program OTL.exe w wersji 3.2.69.0 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: ce0 Godzina rozpoczęcia: 01ce7ff08b1a4eb5 Godzina zakończenia: 3 Ścieżka aplikacji: C:\Users\Maka\Desktop\OTL.exe Identyfikator raportu: 43caaee0-ebe6-11e2-8dd3-90e6ba859cd1 Error: (07/11/2013 06:12:48 PM) (Source: SideBySide) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "assemblyIdentity1". Błąd w pliku manifestu lub w pliku zasad "assemblyIdentity2" w wierszu assemblyIdentity3. Wartość "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" atrybutu "version" elementu "assemblyIdentity" jest nieprawidłowa. Error: (07/10/2013 11:40:03 PM) (Source: Microsoft Security Client Setup) (User: Maka-Komputer) Description: HRESULT:0x8004FF0A Description:Microsoft Security Essentials installation was canceled. You canceled the Security Essentials installation on your computer. Error code:0x8004FF0A. Error: (07/10/2013 11:31:16 PM) (Source: Microsoft Security Client Setup) (User: Maka-Komputer) Description: HRESULT:0x8004FF66 Description:Windows did not pass genuine validation. You may be a victim of software counterfeiting.. Security Essentials is available for use on genuine licensed Windows PCs. To complete installation of Security Essentials, click Go online and resolve now and get genuine Windows. After validating your system, run the Security Essentials Installation Wizard. Go online and resolve now Error code:0x8004FF66. Error: (07/10/2013 11:30:50 PM) (Source: Windows Activation Technologies) (User: ) Description: Błąd testu kondycji: hr = 0x8004FE21, StanKondycji: 0x0001000000000000 System errors: ============= Error: (07/13/2013 10:57:49 PM) (Source: Service Control Manager) (User: ) Description: Usługa PEVSystemStart jest oznaczona jako usługa interakcyjna. System jest jednak skonfigurowany tak, aby nie zezwalać na usługi interakcyjne, dlatego ta usługa może nie działać właściwie. Error: (07/13/2013 10:54:42 PM) (Source: Application Popup) (User: ) Description: Ładowanie sterownika \??\C:\ComboFix\catchme.sys zostało zablokowane z powodu niezgodności z tym systemem. Skontaktuj się z dostawcą oprogramowania w celu uzyskania zgodnej wersji sterownika. Error: (07/13/2013 10:48:20 PM) (Source: Service Control Manager) (User: ) Description: Usługa PEVSystemStart jest oznaczona jako usługa interakcyjna. System jest jednak skonfigurowany tak, aby nie zezwalać na usługi interakcyjne, dlatego ta usługa może nie działać właściwie. Error: (07/13/2013 07:23:58 AM) (Source: Ntfs) (User: ) Description: Struktura systemu plików na dysku jest uszkodzona i nie nadaje się do użytku. Uruchom narzędzie chkdsk na woluminie C:. Error: (07/13/2013 07:24:42 AM) (Source: EventLog) (User: ) Description: Poprzednie zamknięcie systemu przy 07:15:51 na ‎2013-‎07-‎13 było nieoczekiwane. Error: (07/13/2013 04:13:06 AM) (Source: volsnap) (User: ) Description: Wykonywanie kopii w tle woluminu C: zostało przerwane, ponieważ nie można powiększyć magazynu kopii w tle z powodu limitu wprowadzonego przez użytkownika. Error: (07/13/2013 01:32:15 AM) (Source: EventLog) (User: ) Description: Poprzednie zamknięcie systemu przy 23:03:35 na ‎2013-‎07-‎12 było nieoczekiwane. Error: (07/12/2013 00:35:20 AM) (Source: Disk) (User: ) Description: Sterownik wykrył błąd kontrolera na \Device\Harddisk1\DR4. Error: (07/12/2013 00:35:18 AM) (Source: Disk) (User: ) Description: Sterownik wykrył błąd kontrolera na \Device\Harddisk1\DR4. Error: (07/12/2013 00:35:18 AM) (Source: Disk) (User: ) Description: Sterownik wykrył błąd kontrolera na \Device\Harddisk1\DR4. Microsoft Office Sessions: ========================= Error: (07/14/2013 00:05:31 AM) (Source: Application Hang)(User: ) Description: OTL.exe3.2.69.0e3801ce8014c01006ca2C:\Users\Maka\Desktop\OTL.exe53f39840-ec08-11e2-ba23-90e6ba859cd1 Error: (07/14/2013 00:03:01 AM) (Source: Application Hang)(User: ) Description: OTL.exe3.2.69.010dc01ce80146bdc13591C:\Users\Maka\Desktop\OTL.exefae69353-ec07-11e2-ba23-90e6ba859cd1 Error: (07/13/2013 08:44:33 PM) (Source: Application Hang)(User: ) Description: OTL.exe3.2.69.0178c01ce7ff8c380002c10C:\Users\Maka\Desktop\OTL.exe40992ddd-ebec-11e2-8dd3-90e6ba859cd1 Error: (07/13/2013 08:42:34 PM) (Source: Application Hang)(User: ) Description: OTL.exe3.2.69.059801ce7ff85505e99b3C:\Users\Maka\Desktop\OTL.exef9f0ea0e-ebeb-11e2-8dd3-90e6ba859cd1 Error: (07/13/2013 08:36:38 PM) (Source: Application Hang)(User: ) Description: OTL.exe3.2.69.036801ce7ff753b22c083C:\Users\Maka\Desktop\OTL.exe25cc173c-ebeb-11e2-8dd3-90e6ba859cd1 Error: (07/13/2013 08:01:42 PM) (Source: Application Hang)(User: ) Description: OTL.exe3.2.69.0ce001ce7ff08b1a4eb53C:\Users\Maka\Desktop\OTL.exe43caaee0-ebe6-11e2-8dd3-90e6ba859cd1 Error: (07/11/2013 06:12:48 PM) (Source: SideBySide)(User: ) Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3 Error: (07/10/2013 11:40:03 PM) (Source: Microsoft Security Client Setup)(User: Maka-Komputer) Description: HRESULT:0x8004FF0A Description:Microsoft Security Essentials installation was canceled. You canceled the Security Essentials installation on your computer. Error code:0x8004FF0A. Error: (07/10/2013 11:31:16 PM) (Source: Microsoft Security Client Setup)(User: Maka-Komputer) Description: HRESULT:0x8004FF66 Description:Windows did not pass genuine validation. You may be a victim of software counterfeiting.. Security Essentials is available for use on genuine licensed Windows PCs. To complete installation of Security Essentials, click Go online and resolve now and get genuine Windows. After validating your system, run the Security Essentials Installation Wizard. Go online and resolve now Error code:0x8004FF66. Error: (07/10/2013 11:30:50 PM) (Source: Windows Activation Technologies)(User: ) Description: 0x8004FE210x0001000000000000 CodeIntegrity Errors: =================================== Date: 2013-07-13 22:54:42.290 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-07-13 22:54:42.196 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-03-27 12:05:10.961 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\MBWrp64.dll because the set of per-page image hashes could not be found on the system. Date: 2013-03-27 12:05:10.914 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\MBWrp64.dll because the set of per-page image hashes could not be found on the system. Date: 2013-03-27 12:03:12.554 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\MBWrp64.dll because the set of per-page image hashes could not be found on the system. Date: 2013-03-27 12:03:12.508 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\MBWrp64.dll because the set of per-page image hashes could not be found on the system. Date: 2013-03-27 12:02:43.212 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\MBWrp64.dll because the set of per-page image hashes could not be found on the system. Date: 2013-03-27 12:02:43.150 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\MBWrp64.dll because the set of per-page image hashes could not be found on the system. Date: 2013-03-27 12:02:41.465 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\MBWrp64.dll because the set of per-page image hashes could not be found on the system. Date: 2013-03-27 12:02:41.403 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\MBWrp64.dll because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Percentage of memory in use: 48% Total physical RAM: 4085.16 MB Available physical RAM: 2106.36 MB Total Pagefile: 8166.34 MB Available Pagefile: 5730.73 MB Total Virtual: 8192 MB Available Virtual: 8191.8 MB ==================== Drives ================================ Drive c: (OS) (Fixed) (Total:200.1 GB) (Free:1.4 GB) NTFS (Disk=0 Partition=1) ==>[System with boot components (obtained from reading drive)] Drive d: () (Fixed) (Total:49.16 GB) (Free:2.08 GB) NTFS (Disk=0 Partition=2) Drive e: (New_Label) (Fixed) (Total:48.83 GB) (Free:8.57 GB) NTFS (Disk=0 Partition=3) ==>[System with boot components (obtained from reading drive)] ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: B1ADB1AD) Partition 1: (Not Active) - (Size=200 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=49 GB) - (Type=07 NTFS) Partition 3: (Active) - (Size=49 GB) - (Type=07 NTFS) ==================== End Of Log ============================