«
»

Hijackthis Log – Any Suggestions? – System Is Slow And Uploading A Ton Of Packets?

Logfile of HijackThis v1.99.1
Scan saved at 11:15:01 AM, on 8/3/2007
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\SLIMSE~1\server\Bin\MSWIN3…
C:\Program Files\SlimServer\server\slim.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\BRMFRSMG.EXE
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Creative\SBAudigy2\Surround Mixer\CTSysVol.exe
C:\WINDOWS\BCMSMMSG.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.ex…
C:\WINDOWS\System32\LVCOMSX.EXE
C:\Program Files\AWS\WeatherBug\Weather.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Documents and Settings\Mark\Desktop\HijackThis.exe
C:\Program Files\SlimServer\SlimTray.exe
C:\Program Files\Zone Labs\ZoneAlarm\zapro.exe
C:\Program Files\Skype\Plugin Manager\SkypePM.exe
R3 – Default URLSearchHook is missing
O2 – BHO: AcroIEHlprObj Class – {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} – C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 – BHO: IexploreOmea – {09628AAA-66AD-4FA2-82E2-698185B66463} – (no file)
O2 – BHO: (no name) – {53707962-6F74-2D53-2644-206D7942484F} – C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O3 – Toolbar: &Radio – {8E718888-423F-11D2-876E-00A0C9082467} – C:\WINDOWS\System32\msdxm.ocx
O4 – HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SBAudigy2\Surround Mixer\CTSysVol.exe
O4 – HKLM\..\Run: [BCMSMMSG] BCMSMMSG.exe
O4 – HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 – HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 – HKCU\..\Run: [Weather] C:\Program Files\AWS\WeatherBug\Weather.exe 1
O4 – HKCU\..\Run: [Skype] “C:\Program Files\Skype\Phone\Skype.exe” /nosplash /minimized
O4 – HKCU\..\Run: [HijackThis startup scan] C:\Documents and Settings\Mark\Desktop\HijackThis.exe /startupscan
O4 – HKCU\..\RunOnce: [Index Washer] C:\Program Files\Webroot\Washer\WashIdx.exe “Mark”
O4 – Global Startup: SlimServer Tray Tool.lnk = C:\Program Files\SlimServer\SlimTray.exe
O4 – Global Startup: ZoneAlarm Pro.lnk = C:\Program Files\Zone Labs\ZoneAlarm\zapro.exe
O8 – Extra context menu item: E&xport to Microsoft Excel – res://C:\PROGRA~1\MICROS~2\Office10\EXCE…
O9 – Extra button: (no name) – {08B0E5C0-4FCB-11CF-AAA5-00401C608501} – C:\WINDOWS\System32\msjava.dll
O9 – Extra ‘Tools’ menuitem: Sun Java Console – {08B0E5C0-4FCB-11CF-AAA5-00401C608501} – C:\WINDOWS\System32\msjava.dll
O9 – Extra button: WeatherBug – {AF6CABAB-61F9-4f12-A198-B7D41EF1CB52} – C:\PROGRA~1\AWS\WEATHE~1\Weather.exe (HKCU)
O10 – Unknown file in Winsock LSP: c:\spjavashim\spjvshim.dll
O10 – Unknown file in Winsock LSP: c:\spjavashim\spjvshim.dll
O10 – Unknown file in Winsock LSP: c:\spjavashim\spjvshim.dll
O10 – Unknown file in Winsock LSP: c:\spjavashim\spjvshim.dll
O10 – Unknown file in Winsock LSP: c:\spjavashim\spjvshim.dll
O12 – Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 – DPF: ActiveGS.cab – http://www.virtualapple.org/activegs.cab
O16 – DPF: {231B1C6E-F934-42A2-92B6-C2FEFEC24276} (yucsetreg Class) – C:\Program Files\Yahoo!\common\yucconfig.dll
O16 – DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} –
O17 – HKLM\System\CCS\Services\Tcpip\..\{1536A… NameServer = 208.67.222.222,208.67.220.220
O17 – HKLM\System\CS1\Services\Tcpip\..\{1536A… NameServer = 208.67.222.222,208.67.220.220
O17 – HKLM\System\CS2\Services\Tcpip\..\{1536A… NameServer = 208.67.222.222,208.67.220.220
O18 – Protocol: skype4com – {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} – C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 – Service: AdobeActiveFileMonitor – Unknown owner – C:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsFileAgent.exe
O23 – Service: avast! iAVS4 Control Service (aswUpdSv) – ALWIL Software – C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 – Service: Ati HotKey Poller – Unknown owner – C:\WINDOWS\System32\Ati2evxx.exe
O23 – Service: avast! Antivirus – ALWIL Software – C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 – Service: avast! Mail Scanner – Unknown owner – C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe” /service (file missing)
O23 – Service: avast! Web Scanner – Unknown owner – C:\Program Files\Alwil Software\Avast4\ashWebSv.exe” /service (file missing)
O23 – Service: InstallDriver Table Manager (IDriverT) – Macrovision Corporation – C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 – Service: iPod Service – Apple Inc. – C:\Program Files\iPod\bin\iPodService.exe
O23 – Service: LVPrcSrv – Logitech Inc. – c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
O23 – Service: PhotoshopElementsDeviceConnect – Unknown owner – C:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsDeviceConnect.exe
O23 – Service: SlimServerMySQL – Unknown owner – C:\PROGRA~1\SLIMSE~1\server\Bin\MSWIN3~1…
O23 – Service: SlimServer (slimsvc) – Unknown owner – C:\Program Files\SlimServer\server\slim.exe
O23 – Service: TrueVector Internet Monitor (vsmon) – Zone Labs Inc. – C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 – Service: wwSecSvc – Webroot Software, Inc. – C:\WINDOWS\System32\wwSecure.exe

Tags: , , , , ,

This entry was posted on Tuesday, September 29th, 2009 at 5:43 pm and is filed under ocx files. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

2 Responses to “Hijackthis Log – Any Suggestions? – System Is Slow And Uploading A Ton Of Packets?”

  1. Jason F says:
    September 29, 2009 at 5:43 pm

    you have a TON of programs running as it is, without spyware issues
    ouch..
    lets tackle this
    your winsock layers are messed up O10
    fix them with winsock xp fixhttp://www.supportcave.com/software/wins…
    you will have to reboot
    see if you can remove WeatherBug via the add/remove progams if not will hijackthis can remove it.
    rerun hijackthis and remove
    R3 – Default URLSearchHook is missing
    O2 – BHO: IexploreOmea – {09628AAA-66AD-4FA2-82E2-69818… – (no file)
    O4 – HKLM..Run: [BCMSMMSG] BCMSMMSG.exe
    O4 – HKLM..Run: [LVCOMSX] C:WINDOWSSystem32LVCOMSX.EX.
    O4 – HKCU..Run: [Weather] C:Program FilesAWSWeatherBugWeather.e… 1
    O4 – HKCU..Run: [HijackThis startup scan] C:Documents and SettingsMarkDesktopHijackTh… /startupscan
    O9 – Extra button: WeatherBug – {AF6CABAB-61F9-4f12-A198-B7D41… – C:PROGRA~1AWSWEATHE~1Weath… (HKCU)
    O16 – DPF: ActiveGS.cab – http://www.virtualapple.org/activegs.cab…
    O16 – DPF: {231B1C6E-F934-42A2-92B6-C2FEF… (yucsetreg Class) – C:Program FilesYahoo!commonyucconfig….
    O16 – DPF: {30528230-99f7-4bb4-88d8-fa1d4… -
    O17 – HKLMSystemCCSServicesTcpip… NameServer = 208.67.222.222,208.67.220.220
    O17 – HKLMSystemCS1ServicesTcpip… NameServer = 208.67.222.222,208.67.220.220
    O17 – HKLMSystemCS2ServicesTcpip… NameServer = 208.67.222.222,208.67.220.220
    additionally you have legitimate software running that does need to be – remove some of them to speed up the pc
    The best way to tackle pc slow down issues is using msconfig
    go to start then in run type in msconfig
    at the top click startup at the bottom disable all
    then click the services tab, at the bottom check hide all MS services then disable all, hit ok & restart the computer.
    It should be much faster, then open msconfig back up and go to the services tab enable a few items reboot do the same for the startup tab. most of the items running you dont need.
    you also need better spyware protection
    Dump internet explorer and get firefox
    this can solve a LOT of spyware & popup issues
    get it herehttp://www.supportcave.com/software/mozi…
    or get in in the google pack, along with a few other spyware and virus tools. including Norton Security Scan & Spyware Doctor Starter Edition
    Get the google pack herehttp://www.supportcave.com/software/goog…
    The best spyware program, 15 day trial version (sorry not free)
    is spy sweeper – run the free scan and removerhttp://www.supportcave.com/files/spyswee…
    A few of the top free spyware removal programs
    superantispywarehttp://www.supportcave.com/spyware/super…
    spybot search and destroy (dont google this one, tons of fakes out there)http://www.supportcave.com/spyware/spybo…
    cwshredderhttp://www.supportcave.com/spyware/cwshr…
    avg-antispywarehttp://www.supportcave.com/spyware/avg-a…
    windows defenderhttp://www.supportcave.com/spyware/windo…
    xcleanerhttp://www.supportcave.com/spyware/xclea…
    Also why are you running Windows XP SP1
    you should have SP2 its a must – DONT install till the pc is clean..
    Get the Network Installation Packagehttp://www.supportcave.com/spyware/windo…

  2. slvrfx24 says:
    September 29, 2009 at 5:43 pm

    Go here.

Leave a Reply