comps been acting strange, hijackthis log

m0nk3ys1ms · 07-04-2006, 09:42 PM

my comps been acting strange lately, ive been getting alot of notifications from my firewall (when usually i get none), and i found a limewire stubinstaller downloaded on my HDD, and i dont have limewire. i ran a virus scan last night and got nothing, here is my hijack this log:

Logfile of HijackThis v1.99.1
Scan saved at 3:38:47 PM, on 7/4/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
C:\Program Files\Common Files\AOL\1151545360\ee\AOLSoftware.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\WINDOWS\system32\acs.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Documents and Settings\Administrator\Desktop\rw2_021_w02_enu.exe
c:\temp\HP All-in-One Series Web Release\Setup.exe
c:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\Mozilla Firefox\firefox.exe
c:\program files\common files\aol\1151545360\ee\aim6.exe
C:\Documents and Settings\Administrator\Desktop\hijackthis\HijackTh is.exe

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [ViewMgr] C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1151545360\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [IPHSend] C:\Program Files\Common Files\AOL\IPHSend\IPHSend.exe
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKCU\..\Run: [AIM] C:\Program Files\AIM\aim.exe -cnetwait.odl
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Aim6] "C:\Program Files\Common Files\AOL\Launch\AOLLaunch.exe" /d locale=en-US ee://aol/imApp
O4 - Global Startup: hp psc 1000 series.lnk = ?
O4 - Global Startup: hpoddt01.exe.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Atheros Configuration Service (ACS) - Unknown owner - C:\WINDOWS\system32\acs.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

monksims

jp198780 · 07-04-2006, 09:58 PM

run Panda 2 monkey.

**Buzz1927** · 07-04-2006, 10:03 PM

Quote:

Originally Posted by jp198780

run Panda 2 monkey.

What the hell's panda 2

jp198780 · 07-04-2006, 10:18 PM

i say 2 instead of to lol, sorry, Panda Scan.

m0nk3ys1ms · 07-04-2006, 10:27 PM

Quote:

Originally Posted by Buzz1927

What the hell's panda 2

lol

holyjunk · 07-05-2006, 02:42 AM

JP he said he ran a virus scan though...... Anyways why don't you just deleted the entry monkeysims?

jp198780 · 07-05-2006, 03:15 AM

Panda finds pratically everything.

m0nk3ys1ms · 07-05-2006, 03:51 AM

i reformatted my drive

jp198780 · 07-05-2006, 03:52 AM

easiest way 2 remove any viruses.

m0nk3ys1ms · 07-05-2006, 03:54 AM

Quote:

Originally Posted by jp198780

easiest way 2 remove any viruses.

very true, no problems now. hope not to have any...

07-04-2006, 09:58 PM	#2 (permalink)
jp198780 Diamond Member Join Date: Mar 2006 Location: Deptford, New Jersey Age: 18 Posts: 4,095	run Panda 2 monkey. __________________ My computer:Amd x2 4400+@2.30ghz 2gb ram 160gb 7200rpm hard drive EVGA 9600gt ssc(512MB) xp pro

07-04-2006, 10:18 PM	#4 (permalink)
jp198780 Diamond Member Join Date: Mar 2006 Location: Deptford, New Jersey Age: 18 Posts: 4,095	i say 2 instead of to lol, sorry, Panda Scan. __________________ My computer:Amd x2 4400+@2.30ghz 2gb ram 160gb 7200rpm hard drive EVGA 9600gt ssc(512MB) xp pro

07-05-2006, 02:42 AM	#6 (permalink)
holyjunk Diamond Member Join Date: Feb 2006 Age: 17 Posts: 1,622	JP he said he ran a virus scan though...... Anyways why don't you just deleted the entry monkeysims? __________________ pentium 4 1.5GHz 512mb pc133 19inch crt monitor Radeon 9200se X-Fi Extreme Music LOGITECH Z-5300E!! *family pc, hope to get mine in a year or so.

07-05-2006, 03:15 AM	#7 (permalink)
jp198780 Diamond Member Join Date: Mar 2006 Location: Deptford, New Jersey Age: 18 Posts: 4,095	Panda finds pratically everything. __________________ My computer:Amd x2 4400+@2.30ghz 2gb ram 160gb 7200rpm hard drive EVGA 9600gt ssc(512MB) xp pro

07-05-2006, 03:52 AM	#9 (permalink)
jp198780 Diamond Member Join Date: Mar 2006 Location: Deptford, New Jersey Age: 18 Posts: 4,095	easiest way 2 remove any viruses. __________________ My computer:Amd x2 4400+@2.30ghz 2gb ram 160gb 7200rpm hard drive EVGA 9600gt ssc(512MB) xp pro

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode