Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Home Browser Search Page

Started by waynf , Oct 19 2006 04:58 PM

  • Please log in to reply

#16
exparisstevie
Posted 21 October 2006 - 05:05 PM

exparisstevie

    Member

  • Member
  • PipPipPip
  • 113 posts
Hi

Logitech - asked about this as it's showing a duplicated error in your HJT log

Dial up accelerator - asked about this as it seemed odd that you'd have it if you weren't on dial up. As long as you know what this is - that's ok (not researched it - but if you're aware of it and it's use - should be ok)

Still concerned that I cannot find your post on the malware section.....


Please be aware that you shouldn't just move the HJT program that you have from it's current location - it needs to be put where I asked you FROM INSTALL so it's necessary to uninstal your current copy and to install a fresh copy to the C directory.

If you are struggling to finf Java - apart from their own site - you can find it on filehippo.com (safe there)

Hope that helps some.



Stevie
:whistling:
  • 0

Advertisements

#17
Retired Tech
Posted 22 October 2006 - 08:04 AM

Retired Tech

    Retired Staff

  • Retired Staff
  • 20,563 posts
HJT Log here

http://www.geekstogo...s...st&p=816725
  • 0

#18
waynf
Posted 22 October 2006 - 01:35 PM

waynf

    Member 1K

  • Topic Starter
  • Member
  • PipPipPipPip
  • 1,130 posts
Trying to update java, and uninstall original Java on system. Cannot find it in add/remove programs. Where should I look otherwise.
  • 0

#19
Retired Tech
Posted 22 October 2006 - 02:06 PM

Retired Tech

    Retired Staff

  • Retired Staff
  • 20,563 posts
Disc clean up, downloaded files for the active x control

Anything for JRE in add / remove
  • 0

#20
waynf
Posted 22 October 2006 - 02:51 PM

waynf

    Member 1K

  • Topic Starter
  • Member
  • PipPipPipPip
  • 1,130 posts
What about J2SE Runtime Environment? Am iI getting close?
  • 0

#21
Retired Tech
Posted 22 October 2006 - 02:55 PM

Retired Tech

    Retired Staff

  • Retired Staff
  • 20,563 posts
That's the one
  • 0

#22
Guest_rushin1nd_*
Posted 22 October 2006 - 02:59 PM

Guest_rushin1nd_*
  • Guest
What about J2SE Runtime EnvironmenT

thats the correct one
  • 0

#23
waynf
Posted 22 October 2006 - 03:40 PM

waynf

    Member 1K

  • Topic Starter
  • Member
  • PipPipPipPip
  • 1,130 posts
I am currently dowloading newest version of Java from www.hippo.com, but when all is said and done, we have to ask the question: Do I have Malware, Spyware. How can I be sure?

Waynf
  • 0

#24
Guest_rushin1nd_*
Posted 22 October 2006 - 03:55 PM

Guest_rushin1nd_*
  • Guest
your hijack log appears to missing some lines like 020 when these dont show there is a possibilty that something maybe hiding in that area

so right click on hijack icon

go to rename

rename it JHK.EXE

then post a new log and if its good your ok
  • 0

#25
waynf
Posted 22 October 2006 - 04:33 PM

waynf

    Member 1K

  • Topic Starter
  • Member
  • PipPipPipPip
  • 1,130 posts
Logfile of HijackThis v1.99.1
Scan saved at 7:26:26 PM, on 10/22/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\Mixer.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Aliant Dial-up Accelerator\slipcore.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\Program Files\Logitech\Video\LogiTray.exe
C:\WINDOWS\system32\LVComS.exe
C:\Program Files\Logitech\Video\LowLight.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Aliant Dial-up Accelerator\slipgui.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\WINDOWS\system32\sistray.exe
C:\Program Files\Internet Call Manager\ICM.EXE
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Documents and Settings\Wayne\Desktop\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.c...rch/search.html
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.c...//www.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.siteadvis...stall/?aff_id=0
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:5401
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\Program Files\SiteAdvisor\4144\SiteAdv.dll
O2 - BHO: PBlockHelper Class - {4115122B-85FF-4DD3-9515-F075BEDE5EB5} - C:\Program Files\Aliant Dial-up Accelerator\PBHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: NOW!Imaging - {9AA2F14F-E956-44B8-8694-A5B615CDF341} - C:\Program Files\Aliant Dial-up Accelerator\components\NOWImaging.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Program Files\SiteAdvisor\4144\SiteAdv.dll
O3 - Toolbar: Aliant Dial-up Accelerator - {8B79EE88-E62D-4AA8-B530-CC357BA112B7} - C:\Program Files\Aliant Dial-up Accelerator\Toolband.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [SlipStream] "C:\Program Files\Aliant Dial-up Accelerator\slipcore.exe"
O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - Startup: Internet Call Manager.LNK = C:\Program Files\Internet Call Manager\ICM.EXE
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Aliant Dial-up Accelerator.lnk = C:\Program Files\Aliant Dial-up Accelerator\slipgui.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Utility Tray.lnk = C:\WINDOWS\system32\sistray.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Show All Original Images - res://C:\Program Files\Aliant Dial-up Accelerator\gui_resource.dll/327
O8 - Extra context menu item: Show Original Image - res://C:\Program Files\Aliant Dial-up Accelerator\gui_resource.dll/328
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoft...free/asinst.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{BF0F0033-2E26-4B88-B93E-0F9413B9F849}: NameServer = 198.164.30.2 198.164.4.2
O18 - Protocol: bw+0 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: offline-8876480 - {132A8A23-C952-485D-AD8A-A25A06246C65} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: siteadvisor - {3A5DC592-7723-4EAA-9EE6-AF4222BCF879} - C:\Program Files\SiteAdvisor\4144\SiteAdv.dll
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
  • 0

Advertisements

#26
Guest_rushin1nd_*
Posted 22 October 2006 - 04:42 PM

Guest_rushin1nd_*
  • Guest
YOU NEED TO RENAME HIJACK THIS THE PROGRAM ITS SELF


RIGHT CLICK ON THE HIJACK LIKE YOUR GOING TO RUN IT

BUT IT STEAD OF RUNNING IT YOU GO DOWN TO ONE OF ITS OPTIONS CLICK ON RENAME

THEN RENAME IT TO >> JHK.EXE

THEN RUN THE PROGRAM AND POST LOG HERE

YOU DIDNT REMAME CAUSE ITS STILL THE SAME

C:\Documents and Settings\Wayne\Desktop\HijackThis.exe

Edited by rushin1nd, 22 October 2006 - 04:46 PM.

  • 0

#27
Guest_rushin1nd_*
Posted 22 October 2006 - 05:17 PM

Guest_rushin1nd_*
  • Guest
Wareout Trojan is one of your problems

is the one that i can see but you already have a post in the malware forum leave things the way they are and let the malware experts fix your problem
  • 0

#28
waynf
Posted 22 October 2006 - 07:02 PM

waynf

    Member 1K

  • Topic Starter
  • Member
  • PipPipPipPip
  • 1,130 posts
Its about all I can do right now. Do I still rename Hijackthis program and resend log?
  • 0

#29
Guest_rushin1nd_*
Posted 22 October 2006 - 07:21 PM

Guest_rushin1nd_*
  • Guest
if i were you i would remove all yahoo from your computer. download a cleaner there are some out there and give your computer a good cleaning,

http://www.ccleaner.com/ try that and i recommend you remove and uninstall all of yahoo
and its components

your already posted in the malware forum

Edited by rushin1nd, 23 October 2006 - 05:41 AM.

  • 0

#30
waynf
Posted 23 October 2006 - 06:00 AM

waynf

    Member 1K

  • Topic Starter
  • Member
  • PipPipPipPip
  • 1,130 posts
Infsofar changing homepage on firefox, as per your instructions which indicated that Firefox Mozilla has its own system(Tools>Options>Location) so I was able to solve that problem. What remains is the Trojan. I have to keep Yahoo Messenger on system until I find replacement such as Trillian due to fact that I have recently lost my wife and daughters living in Montreal use Messenger to keep in contact with me.

I currently have on my system "CCleaner" and "RegCleaner" and CCleaner quite regularily as I do a lot of browsing.

When I first remvoed Yahoo Messenger vers. 8.0 it appeard gone but apparently the program drops files all over the registry, so I've heard from a technician. He also told me that Yahoo Messenger or Yahoo toolbar with antispy has been causing problems on many computers. So he therefore advised me to download an older version (Yahoo Messenger 7.5147) which I did, but what happens is I still eneded up with version 8.0 with Voice (BETA) So that's whats on there now, but I am seeeriously thinking of dropping this Yahoo Messenger stuff and replace it with Trillian or some other one.

In summary, I was able to reinstate my "Google" home page on Firefox. and what remains is this Wareout Trojan.

Only one more thing. When I downloaded newest version of Java Runetime, it sent a shortcut to my destop, but nothing to my Control Panel. Is this a problem?
  • 0
Back to Windows XP, 2000, 2003, NT · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Retired Forums
  3. Windows XP, 2000, 2003, NT

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP