Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 13-03-2014  01
Ran by Giza at 2014-04-05 17:20:22 Run:1
Running from C:\Documents and Settings\Giza\Pulpit
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
() C:\{$1284-9213-2940-1289$}\svchost.exe
(Ask) C:\Program Files\Ask.com\Updater\Updater.exe
() C:\Program Files\Mobogenie\DaemonProcess.exe
(Microsoft Corporation) C:\WINDOWS\System32\WScript.exe
IFEO\avcenter.exe: [Debugger] nsjw.exe
IFEO\avguard.exe: [Debugger] nsjw.exe
IFEO\avp.exe: [Debugger] nsjw.exe
IFEO\bdagent.exe: [Debugger] nsjw.exe
IFEO\cavwp.exe: [Debugger] nsjw.exe
IFEO\ccuac.exe: [Debugger] nsjw.exe
IFEO\cis.exe: [Debugger] nsjw.exe
IFEO\cistray.exe: [Debugger] nsjw.exe
IFEO\cmdagent.exe: [Debugger] nsjw.exe
IFEO\ComboFix.exe: [Debugger] nsjw.exe
IFEO\egui.exe: [Debugger] nsjw.exe
IFEO\hijackthis.exe: [Debugger] nsjw.exe
IFEO\keyscrambler.exe: [Debugger] nsjw.exe
IFEO\mbam.exe: [Debugger] nsjw.exe
IFEO\MpCmdRun.exe: [Debugger] nsjw.exe
IFEO\MSASCui.exe: [Debugger] nsjw.exe
IFEO\MsMpEng.exe: [Debugger] nsjw.exe
IFEO\msseces.exe: [Debugger] nsjw.exe
IFEO\SDUpdate.exe: [Debugger] nsjw.exe
IFEO\spybotsd.exe: [Debugger] nsjw.exe
IFEO\vprot.exe: [Debugger] nsjw.exe
IFEO\wireshark.exe: [Debugger] nsjw.exe
IFEO\zlclient.exe: [Debugger] nsjw.exe
InternetURL: C:\Documents and Settings\Giza\Menu Start\Programy\Autostart\svchost.exe.url -> 0
HKLM\...\Run: [ApnUpdater] - C:\Program Files\Ask.com\Updater\Updater.exe [1391272 2012-01-03] (Ask)
HKLM\...\Run: [vProt] - "C:\Program Files\AVG Secure Search\vprot.exe"
HKLM\...\Run: [COMODO Internet Security] - C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
HKLM\...\Run: [SDTray] - "C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe"
HKLM\...\Run: [mobilegeni daemon] - C:\Program Files\Mobogenie\DaemonProcess.exe [738496 2013-10-18] ()
HKLM\...\Run: [Host Process for Windows Services] - C:\{$1284-9213-2940-1289$}\svchost.exe -rundll32 /SYSTEM32 "C:\Windows\System32\taskmgr.exe" "C:\Program Files\Microsoft\Windows"
HKLM\...\Winlogon: [Userinit] userinit.exe,EXPLORER.EXE
Winlogon\Notify\LogonInit: C:\Program Files\Common Files\logonInit.dll ()
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKU\S-1-5-21-1844237615-527237240-725345543-1004\...\Run: [EXPLORER.EXE] - C:\WINDOWS\EXPLORER.EXE [1035264 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-21-1844237615-527237240-725345543-1004\...\Run: [SDP] - C:\Program Files\FilesFrog Update Checker\update_checker.exe [201808 2013-01-31] (Somoto)
HKU\S-1-5-21-1844237615-527237240-725345543-1004\...\CurrentVersion\Windows: [Load] C:\{$1284-9213-2940-1289$}\svchost.exe <===== ATTENTION
HKU\S-1-5-21-1844237615-527237240-725345543-1004\...\MountPoints2: {feb4573f-8f67-11e0-841f-001d7d7b7c33} - N:\EXPLORER.EXE
S4 IBUpdaterService; C:\WINDOWS\system32\dmwu.exe [1432368 2013-10-15] ()
S4 vToolbarUpdater17.2.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.2.0\ToolbarUpdater.exe [1771544 2013-12-09] (AVG Secure Search)
S2 cmdAgent; "C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe" [X]
S3 cmdvirth; "C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe" [X]
S4 DragonUpdater; C:\Program Files\Comodo\Dragon\dragon_updater.exe [X]
S4 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [X]
S4 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [X]
S4 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [X]
R1 avgtp; C:\WINDOWS\system32\drivers\avgtpx86.sys [37664 2013-11-10] (AVG Technologies)
S3 EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys [X]
S3 EagleXNt; \??\C:\WINDOWS\system32\drivers\EagleXNt.sys [X]
S1 MpKsl341bf57d; \??\C:\WINDOWS\system32\MpEngineStore\MpKsl341bf57d.sys [X]
U3 mbr; \??\C:\DOCUME~1\Giza\USTAWI~1\Temp\mbr.sys [X]
Task: C:\WINDOWS\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job => C:\WINDOWS\TEMP\{1CE4FC5A-4BF4-4703-BC30-4E3536A86CCA}.exe
Task: C:\WINDOWS\Tasks\AWC AutoSweep.job => C:\PROGRA~1\IObit\ADVANC~1\AutoSweep.exe
Task: C:\WINDOWS\Tasks\Check for updates (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe
Task: C:\WINDOWS\Tasks\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85}.job => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: C:\WINDOWS\Tasks\DLL-files.com Fixer_MONTHLY.job => C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
Task: C:\WINDOWS\Tasks\DLL-files.com Fixer_UPDATES.job => C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
Task: C:\WINDOWS\Tasks\Refresh immunization (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe
Task: C:\WINDOWS\Tasks\Scan the system (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe
Task: C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job => C:\Program Files\Ask.com\UpdateTask.exe
C:\Documents and Settings\All Users\Dane aplikacji\27218346293184.exe
C:\Documents and Settings\Giza\Dane aplikacji\msconfig.ini
C:\Program Files\Common Files\logonInit.dll
C:\Program Files\Common Files\userInit.dll
C:\{$1284-9213-2940-1289$}
C:\Hydra
C:\hydra.exe
C:\pw-inspector.exe
C:\*.dll
C:\*.TXT
Reboot:
*****************

[2804] C:\{$1284-9213-2940-1289$}\svchost.exe => Process closed successfully.
[3104] C:\Program Files\Ask.com\Updater\Updater.exe => Process closed successfully.
[3280] C:\Program Files\Mobogenie\DaemonProcess.exe => Process closed successfully.
[3520] C:\WINDOWS\System32\WScript.exe => Process closed successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\avcenter.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\avguard.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\avp.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\bdagent.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\cavwp.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\ccuac.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\cis.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\cistray.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\cmdagent.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\ComboFix.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\egui.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\hijackthis.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\keyscrambler.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\mbam.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\MpCmdRun.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\MSASCui.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\MsMpEng.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\msseces.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\SDUpdate.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\spybotsd.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\vprot.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\wireshark.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\zlclient.exe => Key deleted successfully.
C:\Documents and Settings\Giza\Menu Start\Programy\Autostart\svchost.exe.url => Moved successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ApnUpdater => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\vProt => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\COMODO Internet Security => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SDTray => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\mobilegeni daemon => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Host Process for Windows Services => Value deleted successfully.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Userinit => Value was restored successfully.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LogonInit => Key deleted successfully.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SDWinLogon => Key deleted successfully.
HKU\S-1-5-21-1844237615-527237240-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Run\\EXPLORER.EXE => Value deleted successfully.
HKU\S-1-5-21-1844237615-527237240-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Run\\SDP => Value deleted successfully.
HKU\S-1-5-21-1844237615-527237240-725345543-1004\Software\Microsoft\Windows NT\CurrentVersion\Windows\\Load => Value was restored successfully.
HKU\S-1-5-21-1844237615-527237240-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{feb4573f-8f67-11e0-841f-001d7d7b7c33} => Key deleted successfully.
HKCR\CLSID\{feb4573f-8f67-11e0-841f-001d7d7b7c33} => Key not found.
IBUpdaterService => Service deleted successfully.
vToolbarUpdater17.2.0 => Service deleted successfully.
cmdAgent => Service deleted successfully.
cmdvirth => Service deleted successfully.
DragonUpdater => Service deleted successfully.
SDScannerService => Service deleted successfully.
SDUpdateService => Service deleted successfully.
SDWSCService => Service deleted successfully.
avgtp => Service stopped successfully.
avgtp => Service deleted successfully.
EagleNT => Service deleted successfully.
EagleXNt => Service deleted successfully.
MpKsl341bf57d => Service deleted successfully.
mbr => Service not found.
C:\WINDOWS\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job => Moved successfully.
C:\WINDOWS\Tasks\AWC AutoSweep.job => Moved successfully.
C:\WINDOWS\Tasks\Check for updates (Spybot - Search & Destroy).job => Moved successfully.
C:\WINDOWS\Tasks\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85}.job => Moved successfully.
C:\WINDOWS\Tasks\DLL-files.com Fixer_MONTHLY.job => Moved successfully.
C:\WINDOWS\Tasks\DLL-files.com Fixer_UPDATES.job => Moved successfully.
C:\WINDOWS\Tasks\Refresh immunization (Spybot - Search & Destroy).job => Moved successfully.
C:\WINDOWS\Tasks\Scan the system (Spybot - Search & Destroy).job => Moved successfully.
C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job => Moved successfully.
C:\Documents and Settings\All Users\Dane aplikacji\27218346293184.exe => Moved successfully.
C:\Documents and Settings\Giza\Dane aplikacji\msconfig.ini => Moved successfully.
C:\Program Files\Common Files\logonInit.dll => Moved successfully.
C:\Program Files\Common Files\userInit.dll => Moved successfully.
C:\{$1284-9213-2940-1289$} => Moved successfully.
C:\Hydra => Moved successfully.
C:\hydra.exe => Moved successfully.
C:\pw-inspector.exe => Moved successfully.
C:\*.dll => Moved successfully.
C:\*.TXT => Moved successfully.


The system needed a reboot. 

==== End of Fixlog ====