Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Missing desktop/toobar at startup

Started by cookiemonsternbrat , Aug 06 2006 04:42 AM

  • Please log in to reply

#1
cookiemonsternbrat
Posted 06 August 2006 - 04:42 AM

cookiemonsternbrat

    New Member

  • Member
  • Pip
  • 3 posts
:I need help! i have tryed everything you can think of.

When I boot in to windows2000 all I get it a Blank Black scWeen. They only thing I can do is ctrl alt delete and Run Task manager and fromt here I am able to use RUN. the same thing happens in Safemode.

I my first scan I did with Mcafee showed 2 Virus W32/SdBot.worm.gen.by and another one SdBot.!FTP

I also found A trogen but was able to write that down before the program got rid of it.

Here is My hijackthis Log..... PLEASE Help

Logfile of HijackThis v1.99.1
Scan saved at 1:59:10 AM, on 8/6/2006
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\csrss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\TPSrv.exe
C:\WINNT\system32\svchost.exe
C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\pavsrv50.exe
C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\WebProxy.exe
C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\AVENGINE.EXE
c:\program files\panda software\panda titanium 2006 antivirus + antispyware\firewall\PNMSRV.EXE
C:\WINNT\system32\spoolsv.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\system32\hidserv.exe
C:\WINNT\system32\nvsvc32.exe
C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\PavFnSvr.exe
C:\Program Files\Common Files\Panda Software\PavShld\pavprsrv.exe
C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\PsImSvc.exe
C:\WINNT\system32\MSTask.exe
C:\WINNT\system32\stisvc.exe
C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
C:\WINNT\system32\taskmgr.exe
C:\WINNT\System32\WBEM\WinMgmt.exe
C:\WINNT\system32\mspmspsv.exe
C:\WINNT\system32\svchost.exe
C:\Program Files\MSN\MSNCoreFiles\msn.exe
C:\Program Files\MSN\MSNIA\msniasvc.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Documents and Settings\Administrator.J3RK\My Documents\EXE\HijackThis.exe
C:\WINNT\system32\userinit.exe
C:\WINNT\system32\userinit.exe
C:\WINNT\system32\userinit.exe
C:\WINNT\system32\userinit.exe
C:\WINNT\system32\userinit.exe
C:\WINNT\system32\userinit.exe
C:\WINNT\system32\userinit.exe
C:\WINNT\system32\userinit.exe
C:\WINNT\system32\userinit.exe
C:\WINNT\system32\userinit.exe
C:\WINNT\system32\userinit.exe
C:\WINNT\system32\userinit.exe
C:\WINNT\system32\userinit.exe
C:\WINNT\system32\userinit.exe
C:\WINNT\system32\userinit.exe
C:\WINNT\system32\userinit.exe
C:\WINNT\system32\userinit.exe
C:\WINNT\system32\userinit.exe
C:\WINNT\system32\userinit.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://red.clientapp.../search/ie.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://red.clientapp...//www.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://red.clientapp...//www.yahoo.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:9022
F2 - REG:system.ini: Shell=userinit.exe,
F2 - REG:system.ini: UserInit=C:\WINNT\system32\Userinit.exe
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O4 - HKLM\..\Run: [SpySweeper] "C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe" /startintray
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\APVXDWIN.EXE" /s
O4 - HKLM\..\RunOnce: [SpybotSnD] "C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe" /autocheck
O4 - HKLM\..\RunOnce: [Panda_cleaner_200583] C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\pavdr.exe 200583
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: View Original Image - C:\program files\msn\msnia\wa\getoriginal.htm
O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Companion\Modules\messmod2\v4\yhexbmes.dll
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Companion\Modules\messmod2\v4\yhexbmes.dll
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O12 - Plugin for .png: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin4.dll
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcaf...01/mcinsctl.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://cookiemonster...ad/MsnPUpld.cab
O16 - DPF: {596AF4AC-40A0-474A-9F86-33F0A90F0FD6} (PictureItLauncher Class) - http://photos.msn.co...ls/DigWebX2.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.micros...b?1149891670934
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.micros...b?1151561801028
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://cdn2.zone.msn...ro.cab34246.cab
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} (DwnldGroupMgr Class) - http://download.mcaf...,26/mcgdmgr.cab
O16 - DPF: {DAF5D9A2-D982-4671-83E4-0398706A5F6A} (SCEWebLauncherCtl Object) - http://zone.msn.com/...WebLauncher.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{A716469B-6A3E-47E4-9A7B-CB1AF5D87AAA}: NameServer = 209.244.0.3 209.244.0.4
O18 - Protocol: bw+0 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {55335F87-DEBC-4867-A1F1-6E194BF11082} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: avldr - C:\WINNT\SYSTEM32\avldr.dll
O20 - Winlogon Notify: WRNotifier - C:\WINNT\SYSTEM32\WRLogonNTF.dll
O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - VERITAS Software Corp. - C:\WINNT\System32\dmadmin.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINNT\system32\nvsvc32.exe
O23 - Service: Panda Function Service (PAVFNSVR) - Panda Software International - C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\PavFnSvr.exe
O23 - Service: Panda Process Protection Service (PavPrSrv) - Panda Software - C:\Program Files\Common Files\Panda Software\PavShld\pavprsrv.exe
O23 - Service: Panda anti-virus service (PAVSRV) - Panda Software International - C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\pavsrv50.exe
O23 - Service: Panda Network Manager (PNMSRV) - Panda Software - c:\program files\panda software\panda titanium 2006 antivirus + antispyware\firewall\PNMSRV.EXE
O23 - Service: Panda IManager Service (PSIMSVC) - Panda Software - C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\PsImSvc.exe
O23 - Service: Webroot Spy Sweeper Engine (svcWRSSSDK) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
O23 - Service: Panda TPSrv (TPSrv) - Panda Software - C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\TPSrv.exe
  • 0

Advertisements

#2
cookiemonsternbrat
Posted 06 August 2006 - 08:02 AM

cookiemonsternbrat

    New Member

  • Topic Starter
  • Member
  • Pip
  • 3 posts
Here is my Hijackthis Log and My smithfraud

Logfile of HijackThis

v1.99.1
Scan saved at

6:50:15 AM, on

8/6/2006
Platform: Windows

2000 SP4 (WinNT

5.00.2195)
MSIE: Internet

Explorer v6.00 SP1

(6.00.2800.1106)

Running processes:
C:\WINNT\System32\

smss.exe
C:\WINNT\system32\

csrss.exe
C:\WINNT\system32\

winlogon.exe
C:\WINNT\system32\

services.exe
C:\WINNT\system32\

lsass.exe
C:\Program

Files\Panda

Software\Panda

Titanium 2006

Antivirus +

Antispyware\TPSrv.ex

e
C:\WINNT\system32\

svchost.exe
C:\Program

Files\Panda

Software\Panda

Titanium 2006

Antivirus +

Antispyware\pavsrv5

0.exe
C:\Program

Files\Panda

Software\Panda

Titanium 2006

Antivirus +

Antispyware\WebPro

xy.exe
C:\Program

Files\Panda

Software\Panda

Titanium 2006

Antivirus +

Antispyware\AVENGI

NE.EXE
c:\program

files\panda

software\panda

titanium 2006

antivirus +

antispyware\firewall\

PNMSRV.EXE
C:\WINNT\system32\

spoolsv.exe
C:\WINNT\System32\

svchost.exe
C:\WINNT\system32\

hidserv.exe
C:\WINNT\system32\

nvsvc32.exe
C:\Program

Files\Panda

Software\Panda

Titanium 2006

Antivirus +

Antispyware\PavFnSv

r.exe
C:\Program

Files\Common

Files\Panda

Software\PavShld\pa

vprsrv.exe
C:\Program

Files\Panda

Software\Panda

Titanium 2006

Antivirus +

Antispyware\PsImSvc.

exe
C:\WINNT\system32\

MSTask.exe
C:\WINNT\system32\

stisvc.exe
C:\Program

Files\Webroot\Spy

Sweeper\WRSSSDK.ex

e
C:\WINNT\System32\

WBEM\WinMgmt.exe
C:\WINNT\system32\

mspmspsv.exe
C:\WINNT\system32\

svchost.exe
C:\Program

Files\MSN

Messenger\msnmsgr.

exe
C:\WINNT\Explorer.e

xe
C:\Program

Files\MSN\MSNCoreFi

les\msn.exe
C:\Program

Files\MSN\MSNIA\ms

niasvc.exe
C:\WINNT\system32\

taskmgr.exe
C:\WINNT\system32\

NOTEPAD.EXE
C:\Documents and

Settings\Administrat

or.J3RK\My

Documents\EXE\Hija

ckThis.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe
C:\WINNT\system32\

userinit.exe

R1 -

HKCU\Software\Micr

osoft\Internet

Explorer\Main,Search

Bar =

http://red.clientapps.

yahoo.com/customiz

e/ycomp/defaults/sb

/*http://www.yahoo.

com/search/ie.html
R1 -

HKCU\Software\Micr

osoft\Internet

Explorer\Main,Search

Page =

http://red.clientapps.

yahoo.com/customiz

e/ycomp/defaults/sp

/*http://www.yahoo.

com
R1 -

HKCU\Software\Micr

osoft\Internet

Explorer\SearchURL,(

Default) =

http://red.clientapps.

yahoo.com/customiz

e/ycomp/defaults/su

/*http://www.yahoo.

com
R1 -

HKCU\Software\Micr

osoft\Windows\Curre

ntVersion\Internet

Settings,ProxyServer

=

http=127.0.0.1:9022
F2 - REG:system.ini:

Shell=userinit.exe,
F2 - REG:system.ini:

UserInit=C:\WINNT\s

ystem32\Userinit.exe
O2 - BHO: (no name)

-

{53707962-6F74-2D

53-2644-206D79424

84F} -

C:\PROGRA~1\SPYBO

T~1\SDHelper.dll
O2 - BHO: SSVHelper

Class -

{761497BB-D6F0-46

2C-B6EB-D4DAF1D9

2D43} - C:\Program

Files\Java\jre1.5.0_0

6\bin\ssv.dll
O4 - HKLM\..\Run:

[SpySweeper]

"C:\Program

Files\Webroot\Spy

Sweeper\SpySweeper.

exe" /startintray
O4 - HKLM\..\Run:

[SunJavaUpdateSched

] C:\Program

Files\Java\jre1.5.0_0

6\bin\jusched.exe
O4 - HKLM\..\Run:

[APVXDWIN]

"C:\Program

Files\Panda

Software\Panda

Titanium 2006

Antivirus +

Antispyware\APVXDW

IN.EXE" /s
O4 -

HKLM\..\RunOnce:

[SpybotSnD]

"C:\Program

Files\Spybot - Search

&

Destroy\SpybotSD.ex

e" /autocheck
O4 -

HKLM\..\RunOnce:

[Panda_cleaner_2005

83] C:\Program

Files\Panda

Software\Panda

Titanium 2006

Antivirus +

Antispyware\pavdr.e

xe 200583
O8 - Extra context

menu item: &Yahoo!

Search -

file:///C:\Program

Files\Yahoo!\Commo

n/ycsrch.htm
O8 - Extra context

menu item: View

Original Image -

C:\program

files\msn\msnia\wa\

getoriginal.htm
O8 - Extra context

menu item: Yahoo!

&Dictionary -

file:///C:\Program

Files\Yahoo!\Commo

n/ycdict.htm
O8 - Extra context

menu item: Yahoo!

&Maps -

file:///C:\Program

Files\Yahoo!\Commo

n/ycdict.htm
O9 - Extra button:

(no name) -

{08B0E5C0-4FCB-11

CF-AAA5-00401C60

8501} - C:\Program

Files\Java\jre1.5.0_0

6\bin\ssv.dll
O9 - Extra 'Tools'

menuitem: Sun Java

Console -

{08B0E5C0-4FCB-11

CF-AAA5-00401C60

8501} - C:\Program

Files\Java\jre1.5.0_0

6\bin\ssv.dll
O9 - Extra button:

Messenger -

{4528BBE0-4E08-11

D5-AD55-00010333

D0AD} - C:\Program

Files\Yahoo!\Compan

ion\Modules\messm

od2\v4\yhexbmes.dll
O9 - Extra 'Tools'

menuitem: Yahoo!

Messenger -

{4528BBE0-4E08-11

D5-AD55-00010333

D0AD} - C:\Program

Files\Yahoo!\Compan

ion\Modules\messm

od2\v4\yhexbmes.dll
O9 - Extra button:

AIM -

{AC9E2541-2814-11

d5-BC6D-00B0D0A1

DE45} - C:\Program

Files\AIM\aim.exe
O12 - Plugin for

.png: C:\Program

Files\Internet

Explorer\PLUGINS\np

qtplugin4.dll
O16 - DPF:

{4ED9DDF0-7479-4B

BE-9335-5A1EDB1D8

A21} (McAfee.com

Operating System

Class) -

http://download.mca

fee.com/molbin/shar

ed/mcinsctl/4,0,0,10

1/mcinsctl.cab
O16 - DPF:

{4F1E5B1A-2A80-42

CA-8532-2D05CB95

9537} (MSN Photo

Upload Tool) -

http://cookiemonster

nbrat.spaces.msn.co

m//PhotoUpload/Msn

PUpld.cab
O16 - DPF:

{596AF4AC-40A0-47

4A-9F86-33F0A90F0

FD6}

(PictureItLauncher

Class) -

http://photos.msn.co

m/resources/neutral

/controls/DigWebX2.

cab
O16 - DPF:

{6414512B-B978-45

1D-A0D8-FCFDF33E

833C}

(WUWebControl

Class) -

http://update.micros

oft.com/windowsupd

ate/v6/V5Controls/e

n/x86/client/wuweb_

site.cab?1149891670

934
O16 - DPF:

{6E32070A-766D-4E

E6-879C-DC1FA91D

2FC3} (MUWebControl

Class) -

http://update.micros

oft.com/microsoftup

date/v6/V5Controls/

en/x86/client/muwe

b_site.cab?11515618

01028
O16 - DPF:

{9A9307A0-7DA4-4D

AF-B042-5009F29E0

9E1} (ActiveScan

Installer Class) -

http://acs.pandasoft

ware.com/activescan

/as5free/asinst.cab
O16 - DPF:

{B8BE5E93-A60C-4D

26-A2DC-22031317

5592} (ZoneIntro

Class) -

http://cdn2.zone.ms

n.com/binFramework

/v10/ZIntro.cab3424

6.cab
O16 - DPF:

{BCC0FF27-31D9-46

14-A68E-C18E1ADA

4389}

(DwnldGroupMgr

Class) -

http://download.mca

fee.com/molbin/shar

ed/mcgdmgr/1,0,0,2

6/mcgdmgr.cab
O16 - DPF:

{DAF5D9A2-D982-46

71-83E4-0398706A5

F6A}

(SCEWebLauncherCtl

Object) -

http://zone.msn.com

/bingame/hsol/defau

lt/SCEWebLauncher.c

ab
O17 -

HKLM\System\CCS\S

ervices\Tcpip\..\{A71

6469B-6A3E-47E4-9

A7B-CB1AF5D87AAA}

: NameServer =

209.244.0.3

209.244.0.4
O18 - Protocol:

bw+0 -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bw+0s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bw-0

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bw-0s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bw00

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bw00s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bw10

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bw10s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bw20

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bw20s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bw30

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bw30s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bw40

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bw40s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bw50

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bw50s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bw60

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bw60s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bw70

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bw70s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bw80

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bw80s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bw90

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bw90s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bwa0

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bwa0s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bwb0

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bwb0s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bwc0

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bwc0s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bwd0

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bwd0s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bwe0

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bwe0s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bwf0

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bwf0s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bwfile-8876480 -

{9462A756-7B47-47

BC-8C80-C34B9B80B

32B} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\GAPlugProt

ocol-8876480.dll
O18 - Protocol: bwg0

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bwg0s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bwh0

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bwh0s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bwi0

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bwi0s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bwj0

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bwj0s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bwk0

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bwk0s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bwl0

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bwl0s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bwm0 -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bwm0s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bwn0

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bwn0s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bwo0

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bwo0s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bwp0

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bwp0s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bwq0

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bwq0s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bwr0

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bwr0s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bws0

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bws0s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bwt0

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bwt0s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bwu0

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bwu0s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bwv0

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bwv0s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bww0 -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bww0s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bwx0

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bwx0s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bwy0

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bwy0s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol: bwz0

-

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

bwz0s -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O18 - Protocol:

offline-8876480 -

{55335F87-DEBC-48

67-A1F1-6E194BF11

082} - C:\Program

Files\Logitech\Deskt

op

Messenger\8876480\

Program\BWPlugProt

ocol-8876480.dll
O20 - Winlogon

Notify: avldr -

C:\WINNT\SYSTEM32

\avldr.dll
O20 - Winlogon

Notify: WRNotifier -

C:\WINNT\SYSTEM32

\WRLogonNTF.dll
O23 - Service:

Logical Disk Manager

Administrative

Service (dmadmin) -

VERITAS Software

Corp. -

C:\WINNT\System32\

dmadmin.exe
O23 - Service:

NVIDIA Display Driver

Service (NVSvc) -

NVIDIA Corporation -

C:\WINNT\system32\

nvsvc32.exe
O23 - Service: Panda

Function Service

(PAVFNSVR) - Panda

Software

International -

C:\Program

Files\Panda

Software\Panda

Titanium 2006

Antivirus +

Antispyware\PavFnSv

r.exe
O23 - Service: Panda

Process Protection

Service (PavPrSrv) -

Panda Software -

C:\Program

Files\Common

Files\Panda

Software\PavShld\pa

vprsrv.exe
O23 - Service: Panda

anti-virus service

(PAVSRV) - Panda

Software

International -

C:\Program

Files\Panda

Software\Panda

Titanium 2006

Antivirus +

Antispyware\pavsrv5

0.exe
O23 - Service: Panda

Network Manager

(PNMSRV) - Panda

Software -

c:\program

files\panda

software\panda

titanium 2006

antivirus +

antispyware\firewall\

PNMSRV.EXE
O23 - Service: Panda

IManager Service

(PSIMSVC) - Panda

Software -

C:\Program

Files\Panda

Software\Panda

Titanium 2006

Antivirus +

Antispyware\PsImSvc.

exe
O23 - Service:

Webroot Spy Sweeper

Engine (svcWRSSSDK)

- Webroot Software,

Inc. - C:\Program

Files\Webroot\Spy

Sweeper\WRSSSDK.ex

e
O23 - Service: PandTPSrv (TPSrv) - Panda Software - C:\Program Files\Panda Software\Panda Titanium 200Antivirus + Antispyware\TPSrv.exe

SmitFraudFix v2.81

Scan done at 6:04:39.97, Sun 08/06/2006
Run from C:\Documents and Settings\Administrator.J3RK\Desktop\SmitfraudFix
OS: Microsoft Windows 2000 [Version 5.00.2195] - Windows_NT
Fix ran in normal mode

»»»»»»»»»»»»»»»»»»»»»»»» C:\


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINNT


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINNT\system


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINNT\Web


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINNT\system32


»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Administrator.J3RK\Application Data


»»»»»»»»»»»»»»»»»»»»»»»» Start Menu


»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\ADMINI~1.J3R\FAVORI~1


»»»»»»»»»»»»»»»»»»»»»»»» Desktop


»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files


»»»»»»»»»»»»»»»»»»»»»»»» Corrupted keys


»»»»»»»»»»»»»»»»»»»»»»»» Desktop Components

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="My Current Home Page"


»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, following keys are not inevitably infected!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» Scanning wininet.dll infection


»»»»»»»»»»»»»»»»»»»»»»»» End
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP