Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Hijackthis Log


  • This topic is locked This topic is locked
2 replies to this topic

#1 Ash Heron

Ash Heron

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:11:56 AM

Posted 21 November 2007 - 06:52 PM

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:43:55 PM, on 21/11/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Razer\DeathAdder\razerhid.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Common Files\Logitech\KhalShared\KHALMNPR.EXE
C:\Program Files\Razer\DeathAdder\razertra.exe
C:\Program Files\Razer\DeathAdder\razerofa.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Program Files\Mozilla Firefox\firefox.exe

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [DeathAdder] C:\Program Files\Razer\DeathAdder\razerhid.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [NVIDIA nTune] "C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" boot "C:\Documents and Settings\Owner\Local Settings\Application Data\NVIDIA Corporation\nTune\Profiles\350-800.nsu"
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: nTune Service (nTuneService) - NVIDIA - C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

--
End of file - 2794 bytes

Uninstall List

???? 4.6.9(?????)
7-Zip 4.42
Ad-Aware 2007
Adobe Flash Player 9 ActiveX
ASUS Enhanced Display Driver
Audacity 1.2.6
Baku
BugOff 1.10
CCleaner (remove only)
CDDRV_Installer
Celestia 1.4.1
Cloanto SkinCalc
Counter-Strike: Source
DH Driver Cleaner Professional Edition
DivX Codec
DivX Player
DivX Web Player
Doom 3
EasyCleaner
Enemy Territory - QUAKE Wars™ Demo
Enemy Territory - QUAKE Wars™ Demo 1.1 Patch
EuropeMapleStory
EVEREST Home Edition v2.20
Exact Audio Copy 0.95b4
Ext2 IFS 1.10c for Windows XP
FlashFXP v3
Foxit Reader
GOM Player
GTK+ Runtime 2.10.13 rev a (remove only)
GTR 2 Demo
Half-Life 2
HDCleaner
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.0 (KB932471)
Hydrogen
Image Resizer Powertoy for Windows XP
InfraRecorder
Intel® PRO Network Connections 12.3.31.0
Java™ 6 Update 3
KalEncyclopedia
KalOnlineEng
KhalInstallWrapper
KompoZer 0.77
LimeWire PRO 4.13.0
Logic Hit Kit
Logitech SetPoint
Media Library Management Wizard
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Hotfix (KB928366)
Microsoft .NET Framework 2.0
Microsoft .NET Framework 3.0
Microsoft .NET Framework 3.0
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Bootvis
Microsoft Color Control Panel Applet for Windows XP
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual Web Developer 2005 Express Edition - ENU
Microsoft Visual Web Developer 2005 Express Edition - ENU
Microsoft Windows XP Video Decoder Checkup Utility
Microsoft XNA Framework Redistributable 1.0 Refresh
Movie Maker Background Music Files
Movie Maker Sound Effects
Movie Maker Title Images
Mozilla Firefox (2.0.0.9)
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 Parser and SDK
MSXML 6.0 Parser (KB933579)
NVCleaner (Remove Only)
NVIDIA Drivers
NVIDIA nTune
NVIDIA PureVideo Decoder
Opera 9.24
Paint.NET v3.07
Pidgin
Project64 1.6
Project64 1.7.0.55
Q3E Minimizer v1.51
Quake 4 Multiplayer Demo 1.4.2
Quake III Arena
QuickTime Alternative 1.95
Razer DeathAdder™ Mouse
Real Alternative 1.51 Lite
Registry Distiller
Registry Mechanic 6.0
RemoveIT Pro v4 - SE
RivaTuner v2.05
Safari
San Andreas Radio V1.0
Security Update for Microsoft .NET Framework 2.0 (KB928365)
Security Update for Windows Internet Explorer 7 (KB928090)
Security Update for Windows Internet Explorer 7 (KB929969)
Security Update for Windows Internet Explorer 7 (KB931768)
Security Update for Windows Internet Explorer 7 (KB933566)
Security Update for Windows Internet Explorer 7 (KB937143)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows XP (KB913433)
Silkroad
SoulSeek Client 156c
SoundMAX
Spybot - Search & Destroy 1.4
SpywareBlaster v3.5.1
Steam
Steinberg Cubase SX v3.1.1.944
Stella 2.3.5
Stellarium 0.9.0
SyncroSoft Emu (Remove only)
Syncrosoft's License Control
Taksi Desktop Video Recorder
TeamSpeak 2 RC2
The GIMP 2.2.13
Tomb Raider II
TuneUp Utilities 2007
Tweak UI
Unlocker 1.8.5
VideoLAN VLC media player 0.8.6c
Winamp (remove only)
Windows Communication Foundation
Windows Imaging Component
Windows Internet Explorer 7
Windows Live Messenger
Windows Media Bonus Pack for Windows XP
Windows Media Connect
Windows Media Format 11 runtime
Windows Media Format 11 runtime
Windows Media Player 11
Windows Media Player 11
Windows Media Player Playlist Import to Excel Wizard
Windows Media Player Skin Importer
Windows Media Player Tray Control
Windows Presentation Foundation
Windows Rights Management Client Backwards Compatibility SP2
Windows Rights Management Client with Service Pack 2
Windows Workflow Foundation
Wings 3D 0.98.32a
WinTricks v5.0a
Wise Registry Cleaner 2.9.5
Wolfenstein - Enemy Territory
Xfire (remove only)
X-Moto
XP TCP/IP Repair 1.0
xp-AntiSpy 3.96-4
ZoneAlarm Pro

BC AdBot (Login to Remove)

 


#2 rookie147

rookie147

  • Members
  • 5,321 posts
  • OFFLINE
  •  
  • Local time:05:56 PM

Posted 07 December 2007 - 03:12 PM

Sorry for the delay. If you are still having problems please post a brand new HijackThis log as a reply to this topic. Before posting the log, please make sure you follow all the steps found in this topic:
Preparation Guide For Use Before Posting A HijackThis Log
I'd also like some detailed descriptions of the problems you are currently experiencing.
Thanks,
Charles

If you are pleased with the service I have offered, you may like to consider making a donation. Posted Image
Posted Image


#3 rookie147

rookie147

  • Members
  • 5,321 posts
  • OFFLINE
  •  
  • Local time:05:56 PM

Posted 16 December 2007 - 12:24 PM

Due to lack of feedback, this topic is now closed.
If you need this topic reopened, please request this by sending me a Personal Message including a link to your thread.
This applies only to the original topic starter. Everyone else please begin a New Topic.

If you are pleased with the service I have offered, you may like to consider making a donation. Posted Image
Posted Image





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users