system
9
Avant is not letting me post my entire hijack this log as it is too long, so I am cutting it into two posts.
First half:
Logfile of HijackThis v1.97.7
Scan saved at 11:34:33 AM, on 9/27/2004
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\system32\spoolsv.exe
C:\WINNT\System32\PackethSvc.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\WINNT\System32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\system32\hidserv.exe
C:\WINNT\myCIO\VScan\McShield.exe
C:\WINNT\myCIO\Agent\myAgtSvc.exe
C:\WINNT\System32\ofps.exe
C:\WINNT\system32\regsvc.exe
C:\Program Files\Dantz\Retrospect\retrorun.exe
C:\WINNT\system32\MSTask.exe
C:\WINNT\system32\stisvc.exe
C:\WINNT\myCIO\Agent\swAgent.exe
C:\WINNT\System32\Tablet.exe
C:\WINNT\System32\TSIRCSRV.EXE
C:\WINNT\wanmpsvc.exe
C:\WINNT\System32\mspmspsv.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\System32\ZipToA.exe
C:\WINNT\TSI32\tsircusr.exe
C:\WINNT\Explorer.EXE
C:\WINNT\myCIO\Agent\myagttry.exe
C:\Program Files\Java\j2re1.4.2_05\bin\jusched.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\QuickTime\qttask.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashmaisv.exe
C:\Program Files\Visioneer\PaperPort\PPWebCap.exe
C:\Program Files\Yahoo!\Messenger\ypager.exe
C:\Program Files\SpyKiller\spykiller.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
C:\timtemp\Spyware-Cop.exe
C:\timtemp\timtemp2_files\Spyware Doctor\spydoctor.exe
C:\WINNT\system32\wuauclt.exe
C:\Documents and Settings\Administrator\Application Data\q??o.exe
C:\WINNT\system32?hkdsk.exe
C:\Program Files\Photo Manager\Monitor.exe
C:\Program Files\America Online 8.0a\aoltray.exe
C:\Program Files\Sony Corporation\Image Transfer\SonyTray.exe
C:\Program Files\Visioneer\PaperPort\Config\Ereg\REMIND32.EXE
C:\Program Files\Netscape\Netscape\Netscp.exe
C:\Program Files\Web_Rebates\WebRebates1.exe
C:\WINNT\myCIO\Agent\UpdDlg.exe
C:\Program Files\Web_Rebates\WebRebates0.exe
C:\Program Files\Microsoft Office\Office\WINWORD.EXE
C:\PROGRA~1\HEWLET~1\HPSHAR~1\hpgs2wnf.exe
C:\timtemp\timtemp2_files\HijackThis1.exe