Additional scan result of Farbar Recovery Scan Tool (x86) Version: 11-04-2015
Ran by Emila at 2015-04-12 13:01:40
Running from C:\Users\Emila\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 16 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Polish (HKLM\...\{AC76BA86-7AD7-1045-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Bluetooth Stack for Windows by Toshiba (HKLM\...\{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}) (Version: v8.00.12(T) - TOSHIBA CORPORATION)
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 6.30.223.228 - Broadcom Corporation)
Chromodo (HKLM\...\Chromodo) (Version: 36.6.0.50 - Comodo)
Cisco EAP-FAST Module (Version: 2.2.14 - Cisco Systems, Inc.) Hidden
Cisco LEAP Module (Version: 1.0.19 - Cisco Systems, Inc.) Hidden
Cisco PEAP Module (Version: 1.1.6 - Cisco Systems, Inc.) Hidden
GeekBuddy (HKLM\...\{D43B9708-6C72-4797-971D-B878CBF45385}) (Version: 4.19.131 - Comodo Security Solutions Inc)
Intel(R) Management Engine Components (HKLM\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Intel(R) Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2993 - Intel Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Polski pakiet językowy dla narzędzi Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - PLK) (Version: 10.0.50903 - Microsoft Corporation)
Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile PLK Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Realtek Ethernet Controller Driver For Windows 7 (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.23.623.2010 - Realtek)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version:  - Microsoft)
Skype Click to Call (HKLM\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype™ 7.2 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.2.103 - Skype Technologies S.A.)
TOSHIBA Wireless LAN Indicator (HKLM\...\{5BA99779-6E12-49EF-BE49-F35B1EDB4DF9}) (Version: 1.0.4 - TOSHIBA CORPORATION)
WinRAR 5.20 (32-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-3902054133-238818361-3723810987-1001_Classes\CLSID\{45C6AFA5-2C13-402f-BC5D-45CC8172EF6B}\InprocServer32 -> C:\Program Files\Toshiba\Bluetooth Toshiba Stack\sys\TosBtExt.dll (TOSHIBA)

==================== Restore Points  =========================

02-04-2015 00:12:11 Zaplanowany punkt kontrolny
11-04-2015 15:21:12 Operacja przywracania
11-04-2015 18:11:03 avast! antivirus system restore point
11-04-2015 20:52:15 avast! antivirus system restore point

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:04 - 2015-03-06 15:58 - 00000858 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       drivereasy.com

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {105C0E74-48D7-49B6-97B8-6B54BB9A2D23} - System32\Tasks\DriverEasy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
Task: {39765B34-3D1D-45C8-A954-58A27F15EA93} - System32\Tasks\AVAST Software\Avast Integrity Check => C:\Windows\AswCheck.exe
Task: {3CC8B0B8-EDA5-4E03-A11F-654517007687} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: {4B138018-2D51-4EB1-A7B0-56F3E40DDF33} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {4E5BBC49-7D69-4E4C-B00B-F72B4AF41BC8} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {5F10B9E6-6892-4354-989E-96E38C0A3CAF} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {6641F904-971D-449B-BB46-248D6DF6431F} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
Task: {7C0E58B2-6F9D-4A1F-AB7A-60EBF626B252} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {7DE02B12-3374-446C-9305-4979C33743E3} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-03-10] (Adobe Systems Incorporated)
Task: {8D1D7A3A-8B99-46D4-B149-50F56F9B5810} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {9245AD34-D50A-4B2C-9C29-BA50314F5156} - System32\Tasks\Microsoft Office 15 Sync Maintenance for laptop-Komputer-laptop laptop-Komputer => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [2015-02-10] (Microsoft Corporation)
Task: {ACC5288C-404B-4BA9-8D3C-8BCF8A188878} - System32\Tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {BAE87075-209E-4665-961C-5372DEECA55E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {EA3BA80A-9F73-4609-A6E3-E26079D96CFB} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DriverEasy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe

==================== Loaded Modules (whitelisted) ==============

2015-01-21 15:58 - 2015-01-21 15:58 - 08898720 _____ () C:\Program Files\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2013-02-19 14:43 - 2013-02-19 14:43 - 00094208 _____ () C:\Windows\System32\IccLibDll.dll
2015-03-05 16:44 - 2015-03-05 16:44 - 00976088 _____ () C:\Program Files\Comodo\GeekBuddy\QtNetwork4.dll
2015-03-05 16:44 - 2015-03-05 16:44 - 02254552 _____ () C:\Program Files\Comodo\GeekBuddy\QtCore4.dll
2015-03-05 16:44 - 2015-03-05 16:44 - 08024792 _____ () C:\Program Files\Comodo\GeekBuddy\QtGui4.dll
2015-03-05 16:44 - 2015-03-05 16:44 - 00032984 _____ () C:\Program Files\Comodo\GeekBuddy\imageformats\qgif4.dll
2015-03-05 16:44 - 2015-03-05 16:44 - 01299672 _____ () C:\Program Files\Comodo\GeekBuddy\QtScript4.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3902054133-238818361-3723810987-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Emila\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: Media is not connected to internet.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== Accounts: =============================

Administrator (S-1-5-21-3902054133-238818361-3723810987-500 - Administrator - Disabled)
Emila (S-1-5-21-3902054133-238818361-3723810987-1001 - Administrator - Enabled) => C:\Users\Emila
Gość (S-1-5-21-3902054133-238818361-3723810987-501 - Limited - Disabled)
laptop (S-1-5-21-3902054133-238818361-3723810987-1000 - Limited - Enabled) => C:\Users\laptop

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Could not start eventlog service, could not read events.

Us�uga Dziennik zdarze� systemu Windows jest w�a�nie uruchamiana.
Nie mo�na uruchomi� us�ugi Dziennik zdarze� systemu Windows.

Wyst�pi� b��d systemu.

Wyst�pi� b��d systemu 1747.

Us�uga uwierzytelniania jest nieznana.


==================== Memory info =========================== 

Processor: Intel(R) Pentium(R) CPU P6200 @ 2.13GHz
Percentage of memory in use: 29%
Total physical RAM: 2930.67 MB
Available physical RAM: 2054.75 MB
Total Pagefile: 5859.64 MB
Available Pagefile: 4944.79 MB
Total Virtual: 2047.88 MB
Available Virtual: 1886.83 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:149.04 GB) (Free:116.97 GB) NTFS
Drive d: (Data) (Fixed) (Total:148.65 GB) (Free:140.7 GB) NTFS
Drive e: (15.0.4420.1017) (CDROM) (Total:0.65 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: C38C78AC)
Partition 1: (Active) - (Size=400 MB) - (Type=27)
Partition 2: (Not Active) - (Size=149 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=148.7 GB) - (Type=07 NTFS)

==================== End Of Log ============================