HiJackThis

Siemka. Ostatnio zrobiłem skana nim i nie wiem czy cos wykrył nie znam sie. co myslicie?

Jeżeli udało wam się znaleźć coś groźnego, lub niewłaściwego proszę o napisanie co i jak usunąć.





Logfile of HijackThis v1.99.1
Scan saved at 19:57:57, on 2012-08-08
Platform: Unknown Windows (WinNT 6.01.3505 SP1)
MSIE: Internet Explorer v9.00 (9.00.8112.16447)

Running processes:
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate*****
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2*****
C:\ProgramData\FLEXnet\Connect\11\ISUSPM*****
C:\Program Files (x86)\syncables\syncables desktop\syncables*****
C:\Program Files (x86)\syncables\syncables desktop\jre\bin\javaw*****
C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray*****
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia*****
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser*****
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier*****
C:\Program Files (x86)\Windows Searchqu Toolbar\Datamngr\datamngrUI*****
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\avp*****
C:\Program Files (x86)\Nokia\Nokia PC Suite 6\LaunchApplication*****
C:\Program Files (x86)\PLAY ONLINE\UIExec*****
C:\Windows\AsScrPro*****
C:\Program Files (x86)\AVG Secure Search\vprot*****
C:\Program Files (x86)\PLAY ONLINE\UIMain*****
C:\Program Files (x86)\PLAY ONLINE\CMUpdater*****
C:\Users\Administrator\AppData\Local\Google\Chrome \Application\chrome*****
C:\Users\Administrator\AppData\Local\Google\Chrome \Application\chrome*****
C:\Users\Administrator\AppData\Local\Google\Chrome \Application\chrome*****
C:\Users\Administrator\AppData\Local\Google\Chrome \Application\chrome*****
C:\Users\Administrator\AppData\Local\Google\Chrome \Application\chrome*****
C:\Users\Administrator\AppData\Local\Google\Chrome \Application\chrome*****
C:\Users\Administrator\AppData\Local\Google\Chrome \Application\chrome*****
C:\Users\Administrator\AppData\Local\Google\Chrome \Application\chrome*****
C:\Users\Administrator\AppData\Local\Google\Chrome \Application\chrome*****
C:\Users\Administrator\AppData\Local\Google\Chrome \Application\chrome*****
C:\Users\Administrator\AppData\Local\Google\Chrome \Application\chrome*****
C:\Users\Administrator\Downloads\wwdc*****
C:\Users\Administrator\AppData\Local\Google\Chrome \Application\chrome*****
C:\Users\Administrator\AppData\Local\Google\Chrome \Application\chrome*****
C:\PROGRA~2\IZArc\IZArc*****
C:\Windows\SysWOW64\NOTEPAD*****
C:\Users\ADMINI~1\AppData\Local\Temp\$$_D399\Hijac kThis*****

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://isearch.avg.com/?cid={42E8B231-EF7E-4D3F-AE29-2D8AB5038C83}&mid=591bfa22c58b47d0824b7cb5f4326a5f-710819e9f189c7ac3ce382047a610a0274a25ffe&lang=pl&d s=cv011&pr=sa&d=2012-07-21 23:14:30&v=12.1.0.20&sap=hp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {687578b9-7132-4a7a-80e4-30ee31099e03} - (no file)
F2 - REG:system.ini: UserInit=userinit*****
O2 - BHO: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.6.4.6\bh\Bab ylonToolbar.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Pomocnik logowania za pomocą identyfikatora Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\12.1.0.20\AVG Secure Search_toolbar.dll
O2 - BHO: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~2\WIA6EB~1\Datamngr\ToolBar\searchqudtx. dll
O2 - BHO: DataMngr - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\PROGRA~2\WIA6EB~1\Datamngr\BROWSE~1.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
O2 - BHO: Softonic Helper Object - {E87806B5-E908-45FD-AF5E-957D83E58E68} - C:\Program Files (x86)\Softonic\softonic\1.5.11.5\bh\softonic.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~2\WIA6EB~1\Datamngr\ToolBar\searchqudtx. dll
O3 - Toolbar: Softonic Toolbar - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - C:\Program Files (x86)\Softonic\softonic\1.5.11.5\softonicTlbr.dll
O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\12.1.0.20\AVG Secure Search_toolbar.dll
O3 - Toolbar: Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.6.4.6\Babylo nToolbarTlbr.dll
O4 - HKLM\..\Run: [SonicMasterTray] C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray*****
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2*****
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia*****
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser*****
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier*****
O4 - HKLM\..\Run: [DATAMNGR] C:\PROGRA~2\WIA6EB~1\Datamngr\DATAMN~1*****
O4 - HKLM\..\Run: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\avp*****"
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files (x86)\Nokia\Nokia PC Suite 6\LaunchApplication***** -startup
O4 - HKLM\..\Run: [UIExec] "C:\Program Files (x86)\PLAY ONLINE\UIExec*****"
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\AsScrPro*****
O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot*****"
O4 - HKLM\..\Run: [COMODO] C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLA*****
O4 - HKLM\..\Run: [CPA] C:\Program Files\COMODO\COMODO GeekBuddy\VALA*****
O4 - HKCU\..\Run: [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM***** -scheduler
O4 - HKCU\..\Run: [ares] "C:\Program Files (x86)\Ares\Ares*****" -h
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar***** /autoRun
O4 - HKCU\..\Run: [Google Update] "C:\Users\Administrator\AppData\Local\Google\Updat e\GoogleUpdate*****" /c
O4 - HKCU\..\Run: [Syncables] C:\Program Files (x86)\syncables\syncables desktop\Syncables*****
O4 - HKCU\..\Run: [Oracle Java] "C:\Windows\system32\javaw*****" -jar "C:\Users\Administrator\AppData\Roaming\java_u.jar "
O4 - Global Startup: FancyStart daemon.lnk = ?
O8 - Extra context menu item: Dodaj do blokowanych banerów - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\ie_banner_deny.htm
O8 - Extra context menu item: Search the Web - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
O9 - Extra button: Statystyki dla ochrony WWW - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\scieplgn.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nlaapi.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\napinsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O11 - Options group: [INTERNATIONAL] International
O13 - Gopher Prefix:
O17 - HKLM\System\CCS\Services\Tcpip\..\{AC1C7549-E490-479C-AB48-D307BF322887}: NameServer = 8.26.56.26,156.154.70.22
O17 - HKLM\System\CCS\Services\Tcpip\..\{E81E739D-4683-4BEA-A1A2-E73650D5BE59}: NameServer = 89.108.195.21 89.108.202.21
O17 - HKLM\System\CCS\Services\Tcpip\..\{FA8B79A9-BB98-4A05-88A0-98435854CF8C}: NameServer = 8.26.56.26,156.154.70.22
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\12.1.3\ViProtocol.dll
O18 - Protocol: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\PROGRA~2\WIA6EB~1\Datamngr\datamngr.dll C:\PROGRA~2\WIA6EB~1\Datamngr\IEBHO.dll C:\Windows\SysWOW64\nvinit.dll,C:\PROGRA~2\KASPER~ 1\KASPER~1.0FO\kloehk.dll,C:\PROGRA~2\KASPER~1\KAS PER~1.0FO\adialhk.dll C:\Windows\SysWOW64\guard32.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpda teService*****
O23 - Service: @%SystemRoot%\system32\Alg*****,-112 (ALG) - Unknown owner - C:\Windows\System32\alg***** (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv*****
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent*****
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice*****
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv*****
O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Unknown owner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\avp*****" -r (file missing)
O23 - Service: COMODO livePCsupport Service (CLPSLS) - COMODO - C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLS*****
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent*****
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass***** (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc***** (file missing)
O23 - Service: Usługa Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate*****" /svc (file missing)
O23 - Service: Usługa Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate*****" /medsvc (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass***** (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc***** (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass***** (file missing)
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc***** (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu*****
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass***** (file missing)
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - %windir%\system32\svchost***** (file missing)
O23 - Service: @%systemroot%\system32\Locator*****,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator***** (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass***** (file missing)
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - %windir%\system32\svchost***** (file missing)
O23 - Service: ServiceLayer - Nokia. - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer*****
O23 - Service: @%SystemRoot%\system32\snmptrap*****,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap***** (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc*****,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc***** (file missing)
O23 - Service: Intel(R) Turbo Boost Technology Monitor (TurboBoost) - Intel(R) Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost*****
O23 - Service: UI Assistant Service - Unknown owner - C:\Program Files (x86)\PLAY ONLINE\AssistantServices*****
O23 - Service: @%SystemRoot%\system32\ui0detect*****,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect***** (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass***** (file missing)
O23 - Service: @%SystemRoot%\system32\vds*****,-100 (vds) - Unknown owner - C:\Windows\System32\vds***** (file missing)
O23 - Service: @%systemroot%\system32\vssvc*****,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc***** (file missing)
O23 - Service: vToolbarUpdater12.1.3 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.1.3\ToolbarUpdater*****
O23 - Service: @%SystemRoot%\system32\Wat\WatUX*****,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc***** (file missing)
O23 - Service: @%systemroot%\system32\wbengine*****,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine***** (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv*****,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv***** (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk*****,-101 (WMPNetworkSvc) - Unknown owner - %PROGRAMFILES%\Windows Media Player\wmpnetwk***** (file missing)










Logfile of HijackThis v1.99.1
Scan saved at 19:55:06, on 2012-08-08
Platform: Unknown Windows (WinNT 6.01.3505 SP1)
MSIE: Internet Explorer v9.00 (9.00.8112.16447)

Running processes:
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate*****
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2*****
C:\ProgramData\FLEXnet\Connect\11\ISUSPM*****
C:\Program Files (x86)\syncables\syncables desktop\syncables*****
C:\Program Files (x86)\syncables\syncables desktop\jre\bin\javaw*****
C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray*****
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia*****
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser*****
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier*****
C:\Program Files (x86)\Windows Searchqu Toolbar\Datamngr\datamngrUI*****
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\avp*****
C:\Program Files (x86)\Nokia\Nokia PC Suite 6\LaunchApplication*****
C:\Program Files (x86)\PLAY ONLINE\UIExec*****
C:\Windows\AsScrPro*****
C:\Program Files (x86)\AVG Secure Search\vprot*****
C:\Program Files (x86)\PLAY ONLINE\UIMain*****
C:\Program Files (x86)\PLAY ONLINE\CMUpdater*****
C:\Users\Administrator\AppData\Local\Google\Chrome \Application\chrome*****
C:\Users\Administrator\AppData\Local\Google\Chrome \Application\chrome*****
C:\Users\Administrator\AppData\Local\Google\Chrome \Application\chrome*****
C:\Users\Administrator\AppData\Local\Google\Chrome \Application\chrome*****
C:\Users\Administrator\AppData\Local\Google\Chrome \Application\chrome*****
C:\Users\Administrator\AppData\Local\Google\Chrome \Application\chrome*****
C:\Users\Administrator\AppData\Local\Google\Chrome \Application\chrome*****
C:\Users\Administrator\AppData\Local\Google\Chrome \Application\chrome*****
C:\Users\Administrator\AppData\Local\Google\Chrome \Application\chrome*****
C:\Users\Administrator\AppData\Local\Google\Chrome \Application\chrome*****
C:\Users\Administrator\AppData\Local\Google\Chrome \Application\chrome*****
C:\Users\Administrator\Downloads\wwdc*****
C:\Users\Administrator\AppData\Local\Google\Chrome \Application\chrome*****
C:\Users\Administrator\AppData\Local\Google\Chrome \Application\chrome*****
C:\PROGRA~2\IZArc\IZArc*****
C:\Users\ADMINI~1\AppData\Local\Temp\$$_BE7\Hijack This*****

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://isearch.avg.com/?cid={42E8B231-EF7E-4D3F-AE29-2D8AB5038C83}&mid=591bfa22c58b47d0824b7cb5f4326a5f-710819e9f189c7ac3ce382047a610a0274a25ffe&lang=pl&d s=cv011&pr=sa&d=2012-07-21 23:14:30&v=12.1.0.20&sap=hp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {687578b9-7132-4a7a-80e4-30ee31099e03} - (no file)
F2 - REG:system.ini: UserInit=userinit*****
O2 - BHO: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.6.4.6\bh\Bab ylonToolbar.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Pomocnik logowania za pomocą identyfikatora Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\12.1.0.20\AVG Secure Search_toolbar.dll
O2 - BHO: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~2\WIA6EB~1\Datamngr\ToolBar\searchqudtx. dll
O2 - BHO: DataMngr - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\PROGRA~2\WIA6EB~1\Datamngr\BROWSE~1.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
O2 - BHO: Softonic Helper Object - {E87806B5-E908-45FD-AF5E-957D83E58E68} - C:\Program Files (x86)\Softonic\softonic\1.5.11.5\bh\softonic.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~2\WIA6EB~1\Datamngr\ToolBar\searchqudtx. dll
O3 - Toolbar: Softonic Toolbar - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - C:\Program Files (x86)\Softonic\softonic\1.5.11.5\softonicTlbr.dll
O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\12.1.0.20\AVG Secure Search_toolbar.dll
O3 - Toolbar: Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.6.4.6\Babylo nToolbarTlbr.dll
O4 - HKLM\..\Run: [SonicMasterTray] C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray*****
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2*****
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia*****
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser*****
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier*****
O4 - HKLM\..\Run: [DATAMNGR] C:\PROGRA~2\WIA6EB~1\Datamngr\DATAMN~1*****
O4 - HKLM\..\Run: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\avp*****"
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files (x86)\Nokia\Nokia PC Suite 6\LaunchApplication***** -startup
O4 - HKLM\..\Run: [UIExec] "C:\Program Files (x86)\PLAY ONLINE\UIExec*****"
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\AsScrPro*****
O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot*****"
O4 - HKLM\..\Run: [COMODO] C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLA*****
O4 - HKLM\..\Run: [CPA] C:\Program Files\COMODO\COMODO GeekBuddy\VALA*****
O4 - HKCU\..\Run: [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM***** -scheduler
O4 - HKCU\..\Run: [ares] "C:\Program Files (x86)\Ares\Ares*****" -h
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar***** /autoRun
O4 - HKCU\..\Run: [Google Update] "C:\Users\Administrator\AppData\Local\Google\Updat e\GoogleUpdate*****" /c
O4 - HKCU\..\Run: [Syncables] C:\Program Files (x86)\syncables\syncables desktop\Syncables*****
O4 - HKCU\..\Run: [Oracle Java] "C:\Windows\system32\javaw*****" -jar "C:\Users\Administrator\AppData\Roaming\java_u.jar "
O4 - Global Startup: FancyStart daemon.lnk = ?
O8 - Extra context menu item: Dodaj do blokowanych banerów - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\ie_banner_deny.htm
O8 - Extra context menu item: Search the Web - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
O9 - Extra button: Statystyki dla ochrony WWW - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\scieplgn.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nlaapi.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\napinsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O11 - Options group: [INTERNATIONAL] International
O13 - Gopher Prefix:
O17 - HKLM\System\CCS\Services\Tcpip\..\{AC1C7549-E490-479C-AB48-D307BF322887}: NameServer = 8.26.56.26,156.154.70.22
O17 - HKLM\System\CCS\Services\Tcpip\..\{E81E739D-4683-4BEA-A1A2-E73650D5BE59}: NameServer = 89.108.195.21 89.108.202.21
O17 - HKLM\System\CCS\Services\Tcpip\..\{FA8B79A9-BB98-4A05-88A0-98435854CF8C}: NameServer = 8.26.56.26,156.154.70.22
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\12.1.3\ViProtocol.dll
O18 - Protocol: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\PROGRA~2\WIA6EB~1\Datamngr\datamngr.dll C:\PROGRA~2\WIA6EB~1\Datamngr\IEBHO.dll C:\Windows\SysWOW64\nvinit.dll,C:\PROGRA~2\KASPER~ 1\KASPER~1.0FO\kloehk.dll,C:\PROGRA~2\KASPER~1\KAS PER~1.0FO\adialhk.dll C:\Windows\SysWOW64\guard32.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpda teService*****
O23 - Service: @%SystemRoot%\system32\Alg*****,-112 (ALG) - Unknown owner - C:\Windows\System32\alg***** (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv*****
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent*****
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice*****
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv*****
O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Unknown owner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\avp*****" -r (file missing)
O23 - Service: COMODO livePCsupport Service (CLPSLS) - COMODO - C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLS*****
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent*****
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass***** (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc***** (file missing)
O23 - Service: Usługa Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate*****" /svc (file missing)
O23 - Service: Usługa Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate*****" /medsvc (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass***** (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc***** (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass***** (file missing)
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc***** (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu*****
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass***** (file missing)
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - %windir%\system32\svchost***** (file missing)
O23 - Service: @%systemroot%\system32\Locator*****,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator***** (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass***** (file missing)
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - %windir%\system32\svchost***** (file missing)
O23 - Service: ServiceLayer - Nokia. - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer*****
O23 - Service: @%SystemRoot%\system32\snmptrap*****,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap***** (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc*****,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc***** (file missing)
O23 - Service: Intel(R) Turbo Boost Technology Monitor (TurboBoost) - Intel(R) Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost*****
O23 - Service: UI Assistant Service - Unknown owner - C:\Program Files (x86)\PLAY ONLINE\AssistantServices*****
O23 - Service: @%SystemRoot%\system32\ui0detect*****,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect***** (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass***** (file missing)
O23 - Service: @%SystemRoot%\system32\vds*****,-100 (vds) - Unknown owner - C:\Windows\System32\vds***** (file missing)
O23 - Service: @%systemroot%\system32\vssvc*****,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc***** (file missing)
O23 - Service: vToolbarUpdater12.1.3 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.1.3\ToolbarUpdater*****
O23 - Service: @%SystemRoot%\system32\Wat\WatUX*****,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc***** (file missing)
O23 - Service: @%systemroot%\system32\wbengine*****,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine***** (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv*****,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv***** (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk*****,-101 (WMPNetworkSvc) - Unknown owner - %PROGRAMFILES%\Windows Media Player\wmpnetwk***** (file missing)

[Vadimq]

O4 - HKLM\..\Run: [DATAMNGR] C:\PROGRA~2\WIA6EB~1\Datamngr\DATAMN~1*****

Wyglada podejrzanie. Ale log z hijackthisa mozna sobie o kant dupy rozbic. Daj logi z OTL, wrzuc je np. na http://wklej.org/ i daj linki. Forum obcina koncowki rozszerzen.