kzagaja
14.12.04, 19:46
Logfile of HijackThis v1.98.2
Scan saved at 21:42:31, on 2004-12-13
Platform: Windows XP Dodatek SP. 1 (WinNT 5.01.2600)
MSIE: Unable to get Internet Explorer version!
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\MKS\Bin\mksmonsv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\MKS\Bin\mks_scan.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\logfile.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Documents and Settings\Danusia\Pulpit\AntyWirusy\HijackThis.exe
C:\Program Files\Internet Explorer\iexplore.exe
O2 - BHO: IEHlprObj Class - {D14641FA-445B-448E-9994-209F7AF15641} -
C:\windows\system32\mbho.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} -
C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [REEGRUN] C:\index.exe
O4 - HKLM\..\Run: [winlogin.exe] C:\WINDOWS\logfile.exe
O4 - HKLM\..\RunServices: [MSNMSGR5] MSNMSGR5.exe
O4 - HKLM\..\RunServices: [Mirate Sp 2 Information] miratesp2.exe
O4 - HKLM\..\RunServices: [NAV Scan Service] NAVscan32.exe
O4 - HKLM\..\RunServices: [Microsoft WinUpdate] spoolsvs.exe
O4 - HKLM\..\RunServices: [dlite] dllmanager.exe
O4 - HKLM\..\RunServices: [NDIS Adapter] lsass2.exe
O4 - HKLM\..\RunServices: [Windows Compliant] rihsyi.exe
O4 - HKLM\..\RunServices: [blah service] msnmsgrr.exe
O4 - HKLM\..\RunServices: [MSN Updater] msnms.exe
O4 - HKLM\..\RunServices: [ScManager] scman.exe
O4 - HKLM\..\RunServices: [MS Remote Procedure Call] msrpc32.exe
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} -
C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-
00aa003c157a} - C:\WINDOWS\web\related.htm
O15 - Trusted Zone: *.awmdabest.com
O15 - Trusted Zone: *.c4tdownload.com
O15 - Trusted Zone: *.clickspring.net
O15 - Trusted Zone: *.finefind.net
O15 - Trusted Zone: *.iframe.biz
O15 - Trusted Zone: *.mt-download.com
O15 - Trusted Zone: *.newiframe.biz
O15 - Trusted Zone: *.overpro.com
O15 - Trusted Zone: *.pi..to.biz
O15 - Trusted Zone: *.slotch.com
O15 - Trusted Zone: *.sp2admin.biz
O15 - Trusted Zone: *.vse-moe.biz
O15 - Trusted Zone: *.windupdates.com
O15 - Trusted Zone: *.ysbweb.com
O16 - DPF: {10000000-1000-0000-1000-000000000000} - file://C:\Program
Files\Internet Explorer\trttnudg.exe
O16 - DPF: {11111111-1111-1111-1111-111111113457} - file://c:\ied_s7.cab
O16 - DPF: {11111111-1111-1111-1111-511111113457} - file://c:\x.cab
O16 - DPF: {11111111-1111-1111-1111-511111113458} - file://c:\x.cab
O16 - DPF: {E7544C6C-CFD6-43EA-B4E9-360CEE20BDF7} (MainControl Class) -
skaner.mks.com.pl/SkanerOnline.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{5C1E8A35-4F85-4E2A-B035-
16D3C0ED249D}: NameServer = 195.205.94.1,194.204.159.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{D805684A-4A04-4C4A-AF79-
C6CF4E3E9D7A}: NameServer = 194.204.150.193 194.204.152.34
O17 - HKLM\System\CS1\Services\Tcpip\..\{5C1E8A35-4F85-4E2A-B035-
16D3C0ED249D}: NameServer = 195.205.94.1,194.204.159.1
O21 - SSODL: Sysctl Desktop Handler - {23456789-0000-0020-0900-00AAFF6D2EA4} -
C:\WINDOWS\System32\ntosv.dll
O21 - SSODL: SystemCheck2 - {54645654-2225-4455-44A1-9F4543D34545} -
C:\WINDOWS\System32\vbsys2 (file missing)