Logfile of HijackThis v1.98.1
Scan saved at 20:32:04, on 04–08–02
Platform: Windows 98 SE (Win9x 4.10.2222A)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:WINDOWSSYSTEMKERNEL32.DLL
C:WINDOWSSYSTEMMSGSRV32.EXE
C:WINDOWSSYSTEMMPREXE.EXE
C:WINDOWSSYSTEMNVSVC.EXE
C:WINDOWSSYSTEMONELABSVSMON.EXE
C:WINDOWSSYSTEMmmtask.tsk
C:WINDOWSEXPLORER.EXE
C:WINDOWSSYSTEMINTERNAT.EXE
C:WINDOWSTASKMON.EXE
C:WINDOWSSYSTEMSYSTRAY.EXE
C:PROGRAM FILESONE LABSONEALARMLCLIENT.EXE
C:PROGRAM FILESGADU–GADUGG.EXE
C:WINDOWSRUNDLL32.EXE
C:PROGRAM FILESMICROSOFT OFFICEOFFICE1045MSOFFICE.EXE
C:WINDOWSSYSTEMWMIEXE.EXE
C:PROGRAM FILESOPERA7OPERA.EXE
C:WINDOWSSYSTEMDDHELP.EXE
C:WINDOWSSYSTEMSPOOL32.EXE
C:WINDOWSPULPITHIJACKTHIS.EXE

R0 – HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.interia.pl/
R0 – HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Łącza
O2 – BHO: AcroIEHlprObj Class – {06849E9F–C8D7–4D59–B87D–784B7D6BE0B3} – C:PROGRAM FILESADOBEACROBAT 5.0READERACTIVEXACROIEHELPER.OCX
O2 – BHO: Google Toolbar Helper – {AA58ED58–01DD–4d91–8333–CF10577473F7} – c:program filesgooglegoogletoolbar1.dll
O2 – BHO: (no name) – {53707962–6F74–2D53–2644–206D7942484F} – C:Program FilesSpybot – Search & DestroySDHelper.dll
O3 – Toolbar: &Radio – {8E718888–423F–11D2–876E–00A0C9082467} – C:WINDOWSSYSTEMMSDXM.OCX
O3 – Toolbar: &Google – {2318C2B1–4965–11d4–9B18–009027A5CD4F} – c:program filesgooglegoogletoolbar1.dll
O4 – HKLM..Run: [internat.exe] internat.exe
O4 – HKLM..Run: [ScanRegistry] C:WINDOWSscanregw.exe /autorun
O4 – HKLM..Run: [TaskMonitor] C:WINDOWS askmon.exe
O4 – HKLM..Run: [SystemTray] SysTray.ExE
O4 – HKLM..Run: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 – HKLM..Run: [Zasobnik systemowy] SysTray.Exe
O4 – HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSSYSTEMNvCpl.dll,NvStartup
O4 – HKLM..Run: [nwiz] nwiz.exe /install
O4 – HKLM..Run: [Zone Labs Client] "C:Program Filesone LabsoneAlarmzlclient.exe"
O4 – HKLM..RunServices: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 – HKLM..RunServices: [NVSvc] C:WINDOWSSYSTEM vsvc.exe –runservice
O4 – HKLM..RunServices: [TrueVector] C:WINDOWSSYSTEMONELABSVSMON.EXE –service
O4 – HKCU..Run: [Gadu–Gadu] "C:PROGRAM FILESGADU–GADUGG.EXE" /tray
O4 – HKCU..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSSYSTEMNVMCTRAY.DLL,NvTaskbarInit
O4 – Startup: Pasek skrótów pakietu Microsoft Office.lnk = C:Program FilesMicrosoft OfficeOfficeOSA9.EXE
O8 – Extra context menu item: &Google Search – res://C:PROGRAM FILESGOOGLEGOOGLETOOLBAR1.DLL/cmsearch.html
O8 – Extra context menu item: Cac&hed Snapshot of Page – res://C:PROGRAM FILESGOOGLEGOOGLETOOLBAR1.DLL/cmcache.html
O8 – Extra context menu item: Si&milar Pages – res://C:PROGRAM FILESGOOGLEGOOGLETOOLBAR1.DLL/cmsimilar.html
O8 – Extra context menu item: Backward &Links – res://C:PROGRAM FILESGOOGLEGOOGLETOOLBAR1.DLL/cmbacklinks.html
O8 – Extra context menu item: Translate into English – res://C:PROGRAM FILESGOOGLEGOOGLETOOLBAR1.DLL/cmtrans.html
O9 – Extra button: Real.com – {CD67F990–D8E9–11d2–98FE–00C0F0318AFE} – C:WINDOWSSYSTEMShdocvw.dll
O9 – Extra button: (no name) – {08B0E5C0–4FCB–11CF–AAA5–00401C608501} – C:WINDOWSSYSTEMMSJAVA.DLL
O9 – Extra 'Tools' menuitem: Sun Java Console – {08B0E5C0–4FCB–11CF–AAA5–00401C608501} – C:WINDOWSSYSTEMMSJAVA.DLL
O12 – Plugin for .spop: C:PROGRA~1INTERN~1PluginsNPDocBox.dll
O16 – DPF: {E7544C6C–CFD6–43EA–B4E9–360CEE20BDF7} (MainControl Class) – http://skaner.mks.com.pl/SkanerOnline.cab
O16 – DPF: {9A9307A0–7DA4–4DAF–B042–5009F29E09E1} (ActiveScan Installer Class) – http://www.pandasoftware.com/activescan/as5/asinst.cab