sry for posting it here but didnt know how to make my own thread thats why i posted it here

On the top of the page, below "Threads in Viruses, Spyware and other Nasties Forum" is a grey button on the left side. It says "post a new thread" and this is my first recommendation for you, too. Only a few people will find your posting here.

Unfortunately I am not a virus removal expert so I can't help you much. The only unusual thing I can see in your log is
O4 - HKLM\..\RunServices: [Windowsz] rwnt.exe
something that looks like debris fromWin32/IRCBot.worm.98304.AL or a similar caliber. Read more here:
http://info.ahnlab.com/securityinfo/virus_view_eng_new2.jsp?SEQ_NO=2909

You also ran HJt from the download archive in a temporary folder. This is not recommended. Create a new older like C:\HJT and copy the HiJackThis.exe to that folder. Then run it again and post the log to your new thread, together with information on what happened, which virus scanners were used before and what they found. Good luck!

"Piggybacked" post, and Xpenetrator's perceptive response, split into a new thread.

sTyLe,

Your HijackThis log also indicates that you are running two antivirus programs (McAfee and AVG) at the same time. That is definitely not recommended, as multipe AV programs can interfere with each other and cause conflicts and instabilities. (Note that running multiple antispyware programs is a different story- those types of utilities can coexist peacefully.

Please uninstall one or the other of the AV programs, and follow Xpenetrator's advice about moving HijackThis.exe, before we continue.
In terms of unzipping the hijackthis file to a new folder, please do the following:

* Create a new folder for HijackThis outside of any Temp/Temporary folders. A folder such such as C:\HijackThis or C:\Spyware Tools\HijackThis will do.
* Right-click on the HijackThis.zip folder you downloaded and choose the "Extract all..." option from the resulting drop-down menu. This will start Windows' Folder Extraction Wizard. Click the "Next" button to start the wizard.
* In the next window, click on the "Browse" button. In the destination selection box, navigate to the new folder you created for HJT, hilight it, and click "OK".
* Click "Next", and then click "Finished"; a window dispaying the newly-extracted hijackthis.exe file should open.
* Double-click on the hijackthis.exe file to verify that the program works.

I think that Is not a virus or a spyware. You have to disable the messenger service from Control Panel-Administration tools-Services (I think it is named so, my XP is in italian). In the list of services you have to search for Messanger and select it then dx click choosing Properties. You have to Stop (click on the button on the bottom) and then to modify the type of starting from Auto to Disable. Then press OK and restart Windows.

Ciao, ciao.

hope anybody can respond to my post sry for posting it here but didnt know how to make my own thread thats why i posted it here
a window shows up every 10-15 second and says windows found 55 critical system errors

I think that Is not a virus or a spyware.

Yes, it is; as Xpenetrator indicated, therwnt.exe file is a component of one of the IRC worms. However, your suggestion of disabling Windows' Messenger Service (which is not MSN Messenger) is good advice, and should be followed.

sTyLe,

The following info in your HJT log's header shows that you are running a totally "virgin" version of Windows XP. That is, no Service Packs, Security/Bug Fixes, etc. have been installed.:

Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running such an outdated, unpatched version of Windows, your system will almost certainly get reinfected in no time. You should use the Windows Update feature to bring your system up to a fully-patched version of Service Pack 1 (note that upgrading to Service Pack 2 on an infected system is not recommended!). Once you've done that, the info in your log's header should read as follows:
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)