"C: Program Files LimeWire LimeWire.exe"
Anonymous
4/26/2007 12:27:00 AM - US
| reply
Logfile of HijackThis v1.99.1
Scan saved at 12:22:34 PM, on 2 2 2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C: WINDOWS System32 smss.exe
C: WINDOWS system32 winlogon.exe
C: WINDOWS system32 services.exe
C: WINDOWS system32 lsass.exe
C: WINDOWS system32 svchost.exe
C: Program Files Ahead InCD InCDsrv.exe
C: Program Files Common Files Symantec Shared ccSetMgr.exe
C: Program Files Common Files Symantec Shared SNDSrvc.exe
C: WINDOWS Explorer.EXE
C: Program Files Common Files Symantec Shared ccEvtMgr.exe
C: WINDOWS system32 spoolsv.exe
C: Program Files Symantec LiveUpdate ALUSchedulerSvc.exe
C: Program Files Common Files Microsoft Shared VS7Debug mdm.exe
C: Program Files Norton SystemWorks Norton AntiVirus navapsvc.exe
C: Program Files Norton SystemWorks Norton AntiVirus IWP NPFMntor.exe
C: PROGRA~1 NORTON~1 NORTON~1 NPROTECT.EXE
C: PROGRA~1 NORTON~1 NORTON~1 SPEEDD~1 NOPDB.EXE
C: WINDOWS system32 svchost.exe
C: Program Files Common Files Symantec Shared CCPD-LC symlcsvc.exe
C: WINDOWS system32 wwSecure.exe
C: Program Files CyberLink DVD Solution PowerDVD PDVDServ.exe
C: Program Files Ahead InCD InCD.exe
C: Program Files Common Files Symantec Shared ccApp.exe
C: WINDOWS Mixer.exe
C: WINDOWS system32 ctfmon.exe
C: Program Files Utilities TClock tclock.exe
C: WINDOWS System32 svchost.exe
C: Program Files Windows Media Player wmplayer.exe
C: Program Files Security hijackthis.exe
R0 - HKCU Software Microsoft Internet Explorer Main,Start Page = http: www.myspace.com
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C: Program Files Adobe Acrobat 5.0 Reader ActiveX AcroIEHelper.ocx
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C: Program Files Norton SystemWorks Norton AntiVirus NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C: Program Files Norton SystemWorks Norton AntiVirus NavShExt.dll
O4 - HKLM .. Run: [RemoteControl] "C: Program Files CyberLink DVD Solution PowerDVD PDVDServ.exe"
O4 - HKLM .. Run: [InCD] C: Program Files Ahead InCD InCD.exe
O4 - HKLM .. Run: [NeroFilterCheck] C: WINDOWS system32 NeroCheck.exe
O4 - HKLM .. Run: [ccApp] "C: Program Files Common Files Symantec Shared ccApp.exe"
O4 - HKLM .. Run: [Symantec NetDriver Monitor] C: PROGRA~1 SYMNET~1 SNDMon.exe Consumer
O4 - HKLM .. Run: [C-Media Mixer] Mixer.exe startup
O4 - HKLM .. Run: [UserFaultCheck] %systemroot% system32 dumprep 0 -u
O4 - HKCU .. Run: [ctfmon.exe] C: WINDOWS system32 ctfmon.exe
O4 - HKCU .. Run: [Norton SystemWorks] "C: Program Files Norton SystemWorks cfgwiz.exe" GUID {05858CFD-5CC4-4ceb-AAAF-CF00BF39736A} MODE CfgWiz
O4 - HKCU .. Run: [MsnMsgr] "C: Program Files MSN Messenger MsnMsgr.Exe" background
O4 - Startup: LimeWire On Startup.lnk = C: Program Files LimeWire LimeWire.exe
O4 - Global Startup: Microsoft Office.lnk = C: Program Files Microsoft Office Office10 OSA.EXE
O4 - Global Startup: TClock.lnk = C: Program Files Utilities TClock tclock.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res: C: PROGRA~1 MICROS~2 Office10 EXCEL.EXE 3000
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C: Program Files Messenger msmsgs.exe
O9 - Extra ´Tools´ menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C: Program Files Messenger msmsgs.exe
O12 - Plugin for .spop: C: Program Files Internet Explorer Plugins NPDocBox.dll
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http: ak.exe.imgfarm.com images nocache funwebproducts ei ZwinkyInitialSetup1.0.0.15.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http: messenger.zone.msn.com binary MessengerStatsClient.cab31267.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http: messenger.msn.com download MsnMessengerSetupDownloader.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C: PROGRA~1 MSNMES~1 msgrapp.dll" (file missing)
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C: Program Files Symantec LiveUpdate ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C: Program Files Common Files Symantec Shared ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C: Program Files Common Files Symantec Shared ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C: Program Files Common Files Symantec Shared ccSetMgr.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C: Program Files Ahead InCD InCDsrv.exe
O23 - Service: LiveUpdate - Symantec Corporation - C: PROGRA~1 Symantec LIVEUP~1 LUCOMS~1.EXE
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C: Program Files Norton SystemWorks Norton AntiVirus navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C: Program Files Norton SystemWorks Norton AntiVirus IWP NPFMntor.exe
O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C: PROGRA~1 NORTON~1 NORTON~1 NPROTECT.EXE
O23 - Service: SAVScan - Symantec Corporation - C: Program Files Norton SystemWorks Norton AntiVirus SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C: PROGRA~1 COMMON~1 SYMANT~1 SCRIPT~1 SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C: Program Files Common Files Symantec Shared SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C: Program Files Common Files Symantec Shared SPBBC SPBBCSvc.exe
O23 - Service: Speed Disk service - Symantec Corporation - C: PROGRA~1 NORTON~1 NORTON~1 SPEEDD~1 NOPDB.EXE
O23 - Service: Symantec Core LC - Symantec Corporation - C: Program Files Common Files Symantec Shared CCPD-LC symlcsvc.exe
O23 - Service: Washer AutoComplete (wwSecSvc) - Webroot Software, Inc. - C: WINDOWS system32 wwSecure.exe
View Page
Show all comments
Post your comment
reply
Mail this page